~ ZHPDiag v2021.11.2.336 By Nicolas Coolman (2021/11/02) ~ Run by LAID SOFI (Administrator) (2021/11/05 19:35:09) ~ Web: https://www.nicolascoolman.com ~ Blog: https://nicolascoolman.eu/ ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Certificate ZHPDiag: Illegal ~ State version: ~ Mode: Scan ~ Report: C:\Users\LAID SOFI\Desktop\ZHPDiag.txt ~ Report: C:\Users\LAID SOFI\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ System startup: Normal (Normal boot) Windows 7 Professional, 64-bit Service Pack 1 (Build 7601) =>.Microsoft Corporation ---\\ Internet Browsers (2) - 0s ~ MSIE: Internet Explorer v11.0.9600.19596 ~ OBIE: Microsoft Edge v95.0.1020.40 ---\\ Windows Product Information (3) - 3s ~ Windows Server License Manager Script : OK Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ Surveillance software (1) - 0s ~ Adobe Acrobat Reader DC (Surveillance) ---\\ System optimization software (1) - 0s ~ CCleaner (Optimisation) ---\\ Informations on the system (6) - 0s ~ Operating System: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) Total RAM: 4157.944 MB (60% free) : OK =>.RAM Value System Restore: Activé (Enable) System drive C: has 288 GB (85%) free of 338 GB : OK =>.Disk Space ---\\ Connection to the system mode (3) - 0s ~ Computer Name: LAIDSOFI-PC ~ User Name: LAID SOFI ~ Logged in as Administrator ---\\ Enumeration of the disk units (2) - 0s ~ Drive C: has 288 GB free of 338 GB (System) ~ Drive D: has 122 GB free of 128 GB ---\\ State of the Windows Security Center (11) - 0s [HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ---\\ Search Generic System Files (27) - 0s [MD5.38AE1B3C38FAEF56FE4907922F0385BA] - 29/08/2016 - (.Microsoft Corporation - مستكشف Windows.) -- C:\Windows\Explorer.exe [3229696] [Unsigned] =>.Microsoft Corporation [MD5.C36BB659F08F046B139C8D1B980BF1AC] - 30/03/2017 - (.Microsoft Corporation - عملية مضيف Windows (Rundll32)‎.) -- C:\Windows\System32\rundll32.exe [46080] [Unsigned] =>.Microsoft Corporation [MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - ‎‎تطبيق بدء تشغيل Windows.) -- C:\Windows\System32\Wininit.exe [129024] [Unsigned] =>.Microsoft Corporation [MD5.05B14D2A76DD045041963CF0B50E3B91] - 17/12/2019 - (.Microsoft Corporation - ملحقات الإنترنت لـ Win32.) -- C:\Windows\System32\wininet.dll [4859392] [Unsigned] =>.Microsoft Corporation [MD5.CA0E2DF49879C57652531331EF5AE632] - 14/08/2019 - (.Microsoft Corporation - تطبيق تسجيل دخول Windows.) -- C:\Windows\System32\Winlogon.exe [455680] [Unsigned] =>.Microsoft Corporation [MD5.067FA52BFB59A56110A12312EF9AF243] - 21/11/2010 - (.Microsoft Corporation - مكتبة تراخيص البرامج.) -- C:\Windows\System32\sppcomapi.dll [232448] [Unsigned] =>.Microsoft Corporation [MD5.9B86DF86D1EFF32893BC3FB49BFAA993] - 08/06/2018 - (.Microsoft Corporation - مكتبة الارتباط الديناميكي لواجهة برمجة تطبي.) -- C:\Windows\System32\dnsapi.dll [357888] [Unsigned] =>.Microsoft Corporation [MD5.4A35D7B172AFF9C6B362D7297568836A] - 08/06/2018 - (.Microsoft Corporation - مكتبة الارتباط الديناميكي لواجهة برمجة تطبي.) -- C:\Windows\Syswow64\dnsapi.dll [269824] [Unsigned] =>.Microsoft Corporation [MD5.2AAF07F577E41E6BECD715A2780B2046] - 10/12/2019 - (.Microsoft Corporation - عامل Windows Update.) -- C:\Windows\System32\wuaueng.dll [2651136] [Unsigned] =>.Microsoft Corporation [MD5.0D57D091E06BB1E58E72E5D08479FDDF] - 18/04/2016 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] [Unsigned] =>.Microsoft Corporation [MD5.0DC2A9882540DEA4A55B08785E09D8FC] - 04/04/2017 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [496128] [Unsigned] =>.Microsoft Corporation [MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] [Unsigned] =>.Microsoft Corporation [MD5.B861DF1DC9CA9259934DBAC5E069681B] - 10/02/2019 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92672] [Unsigned] =>.Microsoft Corporation [MD5.F036CE71586E93D94DAB220D7BDF4416] - 21/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] [Unsigned] =>.Microsoft Corporation [MD5.63705A08981F7EDD376241D6E0A9C2AC] - 25/04/2018 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [115200] [Unsigned] =>.Microsoft Corporation [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 21/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] [Unsigned] =>.Microsoft Corporation [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 14/07/2009 - (.Microsoft Corporation - برنامج تشغيل منفذ i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] [Unsigned] =>.Microsoft Corporation [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] [Unsigned] =>.Microsoft Corporation [MD5.360F7406B9CEA63F9FA61335233C451A] - 03/01/2020 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [161280] [Unsigned] =>.Microsoft Corporation [MD5.0805034EA6F5273D4CB130D726AA5450] - 21/02/2019 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [262656] [Unsigned] =>.Microsoft Corporation [MD5.1D728E2DA93EE1F7766DE97D0BEEFC57] - 10/02/2019 - (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [1680104] [Unsigned] =>.Microsoft Corporation [MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - برنامج تشغيل المنفذ المتوازي.) -- C:\Windows\System32\drivers\Parport.sys [97280] [Unsigned] =>.Microsoft Corporation [MD5.471815800AE33E6F1C32FB1B97C490CA] - 21/11/2010 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] [Unsigned] =>.Microsoft Corporation [MD5.1B6163C503398B23FF8B939C67747683] - 21/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [165888] [Unsigned] =>.Microsoft Corporation [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] [Unsigned] =>.Microsoft Corporation [MD5.4DD986720F7CB7A8A5D1226793097B9A] - 29/07/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [117248] [Unsigned] =>.Microsoft Corporation [MD5.0D08D2F3B3FF84E433346669B5E0F639] - 21/11/2010 - (.Microsoft Corporation - برنامج تشغيل خدمة ملفات الظل الاحتياطية لوح.) -- C:\Windows\System32\drivers\volsnap.sys [295808] [Unsigned] =>.Microsoft Corporation ---\\ No disabled Windows Services (54) - 2s O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Inc. - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Inc.® O23 - Service: C:\Windows\System32\inetsrv\iisres.dll (AppHostSvc) . (.Microsoft Corporation - IIS Application Host Helper Service.) - C:\Windows\System32\inetsrv\apphostsvc.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\audiosrv.dll (AudioEndpointBuilder) . (.Microsoft Corporation - خدمة صوت Windows.) - C:\Windows\System32\Audiosrv.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\audiosrv.dll (AudioSrv) . (.Microsoft Corporation - خدمة صوت Windows.) - C:\Windows\System32\Audiosrv.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\bfe.dll (BFE) . (.Microsoft Corporation - Base Filtering Engine.) - C:\Windows\System32\bfe.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\qmgr.dll (BITS) . (.Microsoft Corporation - خدمة النقل الذكي في الخلفية.) - C:\Windows\System32\qmgr.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\CISVC.EXE,-1 (CISVC) . (.Microsoft Corporation - Content Index service.) - C:\Windows\System32\CISVC.EXE [Unsigned] =>.Microsoft Corporation O23 - Service: Microsoft .NET Framework NGEN v4.0.30319_X86 (clr_optimization_v4.0.30319_32) . (.Microsoft Corporation - .NET Runtime Optimization Service.) - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe =>.Microsoft® O23 - Service: Microsoft .NET Framework NGEN v4.0.30319_X64 (clr_optimization_v4.0.30319_64) . (.Microsoft Corporation - .NET Runtime Optimization Service.) - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe =>.Microsoft® O23 - Service: C:\Windows\System32\cryptsvc.dll (CryptSvc) . (.Microsoft Corporation - خدمات تشفيرية.) - C:\Windows\System32\cryptsvc.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\cscsvc.dll (CscService) . (.Microsoft Corporation - مكتبة الارتباط الديناميكي لخدمة CSC.) - C:\Windows\System32\cscsvc.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\dhcpcore.dll (Dhcp) . (.Microsoft Corporation - خدمة عميل DHCP.) - C:\Windows\System32\dhcpcore.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\UtcResources.dll (DiagTrack) . (.Microsoft Corporation - Microsoft Windows Diagnostics Tracking.) - C:\Windows\System32\diagtrack.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\dnsapi.dll (Dnscache) . (.Microsoft Corporation - خدمة محلل التخزين المؤقت لـ DNS.) - C:\Windows\System32\dnsrslvr.dll [Unsigned] =>.Microsoft Corporation O23 - Service: خدمة تحديث Microsoft Edge (edgeupdate) (edgeupdate) . (.Microsoft Corporation - Microsoft Edge Update.) - C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe =>.Microsoft® O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET Security\ekrn.exe =>.ESET, spol. s r.o.® O23 - Service: C:\Windows\System32\wevtsvc.dll (eventlog) . (.Microsoft Corporation - Host Process for Windows Services.) - C:\Windows\System32\svchost.exe [Unsigned] =>.Microsoft Corporation O23 - Service: @comres.dll,-2450 (EventSystem) . (.Microsoft Corporation - COM+.) - C:\Windows\System32\es.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\FntCache.dll (FontCache) . (.Microsoft Corporation - Windows Font Cache Service.) - C:\Windows\System32\FntCache.dll [Unsigned] =>.Microsoft Corporation O23 - Service: @gpapi.dll,-112 (gpsvc) . (.Microsoft Corporation - عميل نهج المجموعة.) - C:\Windows\System32\gpsvc.dll [Unsigned] =>.Microsoft Corporation O23 - Service: خدمة Google Update (gupdate) (gupdate) . (.Google LLC - مثبِّت Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google LLC® O23 - Service: C:\Windows\System32\ikeext.dll (IKEEXT) . (.Microsoft Corporation - IKE extension.) - C:\Windows\System32\ikeext.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\iphlpsvc.dll (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) - C:\Windows\System32\iphlpsvc.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\srvsvc.dll (LanmanServer) . (.Microsoft Corporation - مكتبة الارتباط الديناميكي لخدمة الخادم.) - C:\Windows\System32\srvsvc.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\wkssvc.dll (LanmanWorkstation) . (.Microsoft Corporation - مكتبة الارتباط الديناميكي لخدمة محطة العمل.) - C:\Windows\System32\wkssvc.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\lmhsvc.dll (lmhosts) . (.Microsoft Corporation - TCPIP NetBios Transport Services DLL.) - C:\Windows\System32\lmhsvc.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\mmcss.dll (MMCSS) . (.Microsoft Corporation - خدمة جدولة فئات تعدد الوسائط.) - C:\Windows\System32\mmcss.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\FirewallAPI.dll (MpsSvc) . (.Microsoft Corporation - خدمة حماية Microsoft.) - C:\Windows\System32\mpssvc.dll [Unsigned] =>.Microsoft Corporation O23 - Service: Nero BackItUp Scheduler 3 (Nero BackItUp Scheduler 3) . (.Nero AG - Nero BackItUp.) - C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe =>.Nero AG® O23 - Service: C:\Windows\System32\nlasvc.dll (NlaSvc) . (.Microsoft Corporation - Network Location Awareness 2.) - C:\Windows\System32\nlasvc.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\nsisvc.dll (nsi) . (.Microsoft Corporation - Network Store Interface RPC server.) - C:\Windows\System32\nsisvc.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\pcasvc.dll (PcaSvc) . (.Microsoft Corporation - خدمة مساعد توافق البرامج.) - C:\Windows\System32\pcasvc.dll [Unsigned] =>.Microsoft Corporation O23 - Service: PLFlash DeviceIoControl Service (PLFlash DeviceIoControl Service) . (.Prolific Technology Inc. - PLFlash DeviceIoControl Service.) - C:\Windows\SysWOW64\IoctlSvc.exe [Unsigned] =>.Prolific Technology Inc. O23 - Service: C:\Windows\System32\umpnpmgr.dll (PlugPlay) . (.Microsoft Corporation - خدمة 'التوصيل والتشغيل' لوضع المستخدم.) - C:\Windows\System32\umpnpmgr.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\umpo.dll (Power) . (.Microsoft Corporation - User-mode Power Service.) - C:\Windows\System32\umpo.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\profsvc.dll (ProfSvc) . (.Microsoft Corporation - ProfSvc.) - C:\Windows\System32\profsvc.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\system32\RpcEpMap.dll (RpcEptMapper) . (.Microsoft Corporation - معين نقطة نهاية RPC.) - C:\Windows\System32\RpcEpMap.dll [Unsigned] =>.Microsoft Corporation O23 - Service: @oleres.dll,-5010 (RpcSs) . (.Microsoft Corporation - Distributed COM Services.) - C:\Windows\System32\rpcss.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\schedsvc.dll (Schedule) . (.Microsoft Corporation - خدمة جدولة المهام.) - C:\Windows\System32\schedsvc.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\Sens.dll (SENS) . (.Microsoft Corporation - خدمة الإعلام بأحداث النظام (SENS).) - C:\Windows\System32\Sens.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\shsvcs.dll (ShellHWDetection) . (.Microsoft Corporation - مكتبة الارتباط الديناميكي لخدمات Windows Sh.) - C:\Windows\System32\shsvcs.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\spoolsv.exe,-1 (Spooler) . (.Microsoft Corporation - Spooler SubSystem App.) - C:\Windows\System32\spoolsv.exe [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\sppsvc.exe,-101 (sppsvc) . (.Microsoft Corporation - ‎‎خدمة النظام الأساسي لحماية البرامج لـ Mic.) - C:\Windows\System32\sppsvc.exe [Unsigned] =>.Microsoft Corporation O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe =>.DEVGURU CO LTD® O23 - Service: C:\Windows\System32\wiaservc.dll (stisvc) . (.Microsoft Corporation - خدمة أجهزة الصور الثابتة.) - C:\Windows\System32\wiaservc.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\sysmain.dll (SysMain) . (.Microsoft Corporation - مضيف خدمة الإحضار المسبق.) - C:\Windows\System32\sysmain.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\themeservice.dll (Themes) . (.Microsoft Corporation - مكتبة الارتباط الديناميكي لخدمات نُسق Windo.) - C:\Windows\System32\themeservice.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\dwm.exe,-2000 (UxSms) . (.Microsoft Corporation - Microsoft User Experience Session Managemen.) - C:\Windows\System32\uxsms.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\inetsrv\iisres.dll (W3SVC) . (.Microsoft Corporation - IIS Web Admin Service.) - C:\Windows\System32\inetsrv\iisw3adm.dll [Unsigned] =>.Microsoft Corporation O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) . (.Microsoft Corporation - Service Module.) - C:\Program Files\Windows Defender\MpSvc.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\wbem\wmisvc.dll (Winmgmt) . (.Microsoft Corporation - WMI.) - C:\Windows\System32\wbem\WMIsvc.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\wscsvc.dll (wscsvc) . (.Microsoft Corporation - خدمة مركز أمان Windows.) - C:\Windows\System32\wscsvc.dll [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\SearchIndexer.exe,-103 (WSearch) . (.Microsoft Corporation - Microsoft Windows Search Indexer.) - C:\Windows\System32\SearchIndexer.exe [Unsigned] =>.Microsoft Corporation O23 - Service: C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation - عامل Windows Update.) - C:\Windows\System32\wuaueng.dll [Unsigned] =>.Microsoft Corporation ---\\ Services not Microsoft (SR=Run, SS=Stop) (67) - 4s SR - Auto [26/01/2021] [ 169672] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Inc..) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Inc.® SR - Demand [14/07/2009] [ 491088] (adp94xx) . (.Adaptec, Inc..) - C:\Windows\System32\drivers\adp94xx.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 339536] (adpahci) . (.Adaptec, Inc..) - C:\Windows\System32\drivers\adpahci.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 182864] (adpu320) . (.Adaptec, Inc..) - C:\Windows\System32\drivers\adpu320.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 15440] (aliide) . (.Acer Laboratories Inc..) - C:\Windows\System32\drivers\aliide.sys =>.Microsoft Windows® SR - Demand [15/05/2016] [ 107904] (amdsata) . (.Advanced Micro Devices.) - C:\Windows\System32\drivers\amdsata.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 194128] (amdsbs) . (.AMD Technologies Inc..) - C:\Windows\System32\drivers\amdsbs.sys =>.Microsoft Windows® SR - Boot [15/05/2016] [ 27008] (amdxata) . (.Advanced Micro Devices.) - C:\Windows\System32\drivers\amdxata.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 87632] (arc) . (.Adaptec, Inc..) - C:\Windows\System32\drivers\arc.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 97856] (arcsas) . (.Adaptec, Inc..) - C:\Windows\System32\drivers\arcsas.sys =>.Microsoft Windows® SR - Demand [10/06/2009] [ 468480] Broadcom NetXtreme II VBD (b06bdrv) . (.Broadcom Corporation.) - C:\Windows\System32\drivers\bxvbda.sys [Unsigned] =>.Broadcom Corporation SR - Demand [10/06/2009] [ 270848] Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 (b57nd60a) . (.Broadcom Corporation.) - C:\Windows\System32\DRIVERS\b57nd60a.sys [Unsigned] =>.Broadcom Corporation SR - Demand [10/06/2009] [ 18432] Brother USB Mass-Storage Lower Filter Driver (BrFiltLo) . (.Brother Industries, Ltd..) - C:\Windows\System32\drivers\BrFiltLo.sys [Unsigned] =>.Brother Industries, Ltd. SR - Demand [10/06/2009] [ 8704] Brother USB Mass-Storage Upper Filter Driver (BrFiltUp) . (.Brother Industries, Ltd..) - C:\Windows\System32\drivers\BrFiltUp.sys [Unsigned] =>.Brother Industries, Ltd. SR - Demand [14/07/2009] [ 286720] Brother MFC Serial Port Interface Driver (WDM) (Brserid) . (.Brother Industries Ltd..) - C:\Windows\System32\Drivers\Brserid.sys [Unsigned] =>.Brother Industries Ltd. SR - Demand [10/06/2009] [ 47104] Brother WDM Serial driver (BrSerWdm) . (.Brother Industries Ltd..) - C:\Windows\System32\Drivers\BrSerWdm.sys [Unsigned] =>.Brother Industries Ltd. SR - Demand [10/06/2009] [ 14976] Brother MFC USB Fax Only Modem (BrUsbMdm) . (.Brother Industries Ltd..) - C:\Windows\System32\Drivers\BrUsbMdm.sys [Unsigned] =>.Brother Industries Ltd. SR - Demand [10/06/2009] [ 14720] Brother MFC USB Serial WDM Driver (BrUsbSer) . (.Brother Industries Ltd..) - C:\Windows\System32\Drivers\BrUsbSer.sys [Unsigned] =>.Brother Industries Ltd. SR - Demand [14/07/2009] [ 17488] (cmdide) . (.CMD Technology, Inc..) - C:\Windows\System32\drivers\cmdide.sys =>.Microsoft Windows® SR - Auto [00/00/0000] [ 0] DgiVecp (DgiVecp) . (...) - C:\Windows\system32\Drivers\DgiVecp.sys (.not file.) [Unsigned] SR - System [12/10/2021] [ 183408] eamonm (eamonm) . (.ESET.) - C:\Windows\System32\DRIVERS\eamonm.sys =>.ESET, spol. s r.o.® SR - Demand [10/06/2009] [ 3286016] Broadcom NetXtreme II 10 GigE VBD (ebdrv) . (.Broadcom Corporation.) - C:\Windows\System32\drivers\evbda.sys [Unsigned] =>.Broadcom Corporation SR - Boot [12/10/2021] [ 124496] edevmon (edevmon) . (.ESET.) - C:\Windows\System32\DRIVERS\edevmon.sys =>.ESET, spol. s r.o.® SR - System [12/10/2021] [ 201984] ehdrv (ehdrv) . (.ESET.) - C:\Windows\System32\DRIVERS\ehdrv.sys =>.ESET, spol. s r.o.® SR - Auto [12/10/2021] [ 43920] ekbdflt (ekbdflt) . (.ESET.) - C:\Windows\System32\DRIVERS\ekbdflt.sys =>.ESET, spol. s r.o.® SR - Auto [12/10/2021] [ 3141480] ESET Service (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET Security\ekrn.exe =>.ESET, spol. s r.o.® SS - Demand [12/10/2021] [ 3141480] ESET Firewall Helper (ekrnEpfw) . (.ESET.) - C:\Program Files\ESET\ESET Security\ekrn.exe =>.ESET, spol. s r.o.® SR - Demand [14/07/2009] [ 530496] (elxstor) . (.Emulex.) - C:\Windows\System32\drivers\elxstor.sys =>.Microsoft Windows® SR - System [12/10/2021] [ 69736] epfw (epfw) . (.ESET.) - C:\Windows\System32\DRIVERS\epfw.sys =>.ESET, spol. s r.o.® SR - System [12/10/2021] [ 55840] ESET Firewall (EpfwLWF) . (.ESET.) - C:\Windows\System32\DRIVERS\EpfwLWF.sys =>.ESET, spol. s r.o.® SR - System [12/10/2021] [ 107456] epfwwfp (epfwwfp) . (.ESET.) - C:\Windows\System32\DRIVERS\epfwwfp.sys =>.ESET, spol. s r.o.® SR - Auto [17/10/2021] [ 156232] خدمة Google Update (gupdate) (gupdate) . (.Google LLC.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google LLC® SS - Demand [17/10/2021] [ 156232] خدمة Google Update (gupdatem) (gupdatem) . (.Google LLC.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google LLC® SR - Demand [10/06/2009] [ 31232] Hauppauge Consumer Infrared Receiver (hcw85cir) . (.Hauppauge Computer Works, Inc..) - C:\Windows\System32\drivers\hcw85cir.sys [Unsigned] =>.Hauppauge Computer Works, Inc. SR - Demand [18/06/2007] [ 18432] HpqKbFilter Driver (HpqKbFiltr) . (.Hewlett-Packard Development Company, L.P..) - C:\Windows\System32\DRIVERS\HpqKbFiltr.sys [Unsigned] =>.Hewlett-Packard Development Company, L.P. SR - Demand [21/11/2010] [ 78720] (HpSAMD) . (.Hewlett-Packard Company.) - C:\Windows\System32\drivers\HpSAMD.sys =>.Microsoft Windows® SR - Demand [15/05/2016] [ 410496] (iaStorV) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaStorV.sys =>.Microsoft Windows® SR - Auto [20/12/2018] [ 229296] IDMWFP (IDMWFP) . (.Tonec Inc..) - C:\Windows\System32\DRIVERS\idmwfp.sys =>.Tonec Inc.® SR - Demand [13/10/2011] [10629184] (igfx) . (.Intel Corporation.) - C:\Windows\System32\DRIVERS\igdkmd64.sys [Unsigned] =>.Intel Corporation SR - Demand [14/07/2009] [ 44112] (iirsp) . (.Intel Corp./ICP vortex GmbH.) - C:\Windows\System32\drivers\iirsp.sys =>.Microsoft Windows® SR - Demand [18/10/2011] [ 2957544] Service for Realtek HD Audio (WDM) (IntcAzAudAddService) . (.Realtek Semiconductor Corp..) - C:\Windows\System32\drivers\RTKVHD64.sys =>.Realtek Semiconductor Corp® SR - Demand [14/07/2009] [ 114752] (LSI_FC) . (.LSI Corporation.) - C:\Windows\System32\drivers\lsi_fc.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 106560] (LSI_SAS) . (.LSI Corporation.) - C:\Windows\System32\drivers\lsi_sas.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 65600] (LSI_SAS2) . (.LSI Corporation.) - C:\Windows\System32\drivers\lsi_sas2.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 115776] (LSI_SCSI) . (.LSI Corporation.) - C:\Windows\System32\drivers\lsi_scsi.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 35392] (megasas) . (.LSI Corporation.) - C:\Windows\System32\drivers\megasas.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 284736] (MegaSR) . (.LSI Corporation, Inc..) - C:\Windows\System32\drivers\MegaSR.sys =>.Microsoft Windows® SR - Auto [08/06/2008] [ 877864] Nero BackItUp Scheduler 3 (Nero BackItUp Scheduler 3) . (.Nero AG.) - C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe =>.Nero AG® SR - Demand [14/07/2009] [ 51264] (nfrd960) . (.IBM Corporation.) - C:\Windows\System32\drivers\nfrd960.sys =>.Microsoft Windows® SS - Demand [24/06/2008] [ 537896] NMIndexingService (NMIndexingService) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe =>.Nero AG® SR - Demand [15/05/2016] [ 148352] (nvraid) . (.NVIDIA Corporation.) - C:\Windows\System32\drivers\nvraid.sys =>.Microsoft Windows® SR - Demand [15/05/2016] [ 166272] (nvstor) . (.NVIDIA Corporation.) - C:\Windows\System32\drivers\nvstor.sys =>.Microsoft Windows® SR - Auto [19/12/2006] [ 81920] PLFlash DeviceIoControl Service (PLFlash DeviceIoControl Service) . (.Prolific Technology Inc..) - C:\Windows\SysWOW64\IoctlSvc.exe [Unsigned] =>.Prolific Technology Inc. SR - Demand [14/07/2009] [ 1524816] (ql2300) . (.QLogic Corporation.) - C:\Windows\System32\drivers\ql2300.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 128592] (ql40xx) . (.QLogic Corporation.) - C:\Windows\System32\drivers\ql40xx.sys =>.Microsoft Windows® SR - Demand [29/09/2020] [ 47280] Revoflt (Revoflt) . (.VS Revo Group.) - C:\Windows\System32\DRIVERS\revoflt.sys =>.VS Revo Group Ltd.® SR - Demand [29/10/2008] [ 52736] Realtek 10/100 NIC Family NDIS x64 Driver (RTL8023x64) . (.Realtek Semiconductor Corporation.) - C:\Windows\System32\DRIVERS\Rtnic64.sys [Unsigned] =>.Realtek Semiconductor Corporation SR - Demand [14/07/2009] [ 43584] (SiSRaid2) . (.Silicon Integrated Systems Corp..) - C:\Windows\System32\drivers\SiSRaid2.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 80464] (SiSRaid4) . (.Silicon Integrated Systems.) - C:\Windows\System32\drivers\sisraid4.sys =>.Microsoft Windows® SR - Demand [10/06/2009] [ 411136] (SrvHsfPCI) . (.Conexant Systems, Inc..) - C:\Windows\System32\DRIVERS\VSTBS26.SYS [Unsigned] =>.Conexant Systems, Inc. SR - Demand [10/06/2009] [ 1485312] (SrvHsfV92) . (.Conexant Systems, Inc..) - C:\Windows\System32\DRIVERS\VSTDPV6.SYS [Unsigned] =>.Conexant Systems, Inc. SR - Demand [10/06/2009] [ 740864] (SrvHsfWinac) . (.Conexant Systems, Inc..) - C:\Windows\System32\DRIVERS\VSTCNXT6.SYS [Unsigned] =>.Conexant Systems, Inc. SR - Auto [00/00/0000] [ 0] SSPORT (SSPORT) . (...) - C:\Windows\System32\drivers\SSPORT.SYS (.not file.) [Unsigned] SR - Auto [03/12/2014] [ 743688] SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD..) - C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe =>.DEVGURU CO LTD® SR - Demand [14/07/2009] [ 24656] (stexstor) . (.Promise Technology.) - C:\Windows\System32\drivers\stexstor.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 17488] (viaide) . (.VIA Technologies, Inc..) - C:\Windows\System32\drivers\viaide.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 161872] (vsmraid) . (.VIA Technologies Inc.,Ltd.) - C:\Windows\System32\drivers\vsmraid.sys =>.Microsoft Windows® ---\\ Task Planned Automatically (Register) (14) - 4s O38 - TASK: {2BA5F8F2-A2A5-4B3E-97D2-6E8211A662A5} [64Bits][\CCleanerSkipUAC - LAID SOFI] - (.Piriform Software Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [35116160] =>.Piriform Software Ltd O38 - TASK: {2C016A7A-A647-495D-9526-D57A609DFAB6} [64Bits][\GoogleUpdateTaskUserS-1-5-21-1088729164-1456366878-2410094502-1000UA] - (.Google LLC - مثبِّت Google.) -- C:\Users\LAID SOFI\AppData\Local\Google\Update\GoogleUpdate.exe [156104] =>.Google LLC O38 - TASK: {4E6121EA-5603-4271-B93E-332FD0D86BDF} [64Bits][\Adobe Acrobat Update Task] - (.Adobe Inc. - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200] =>.Adobe Inc. O38 - TASK: {5069E520-2173-470A-8BAF-93FD107E5C48} [64Bits][\TechSmith Updater] - (.TechSmith Corporation - TechSmith Updater.) -- C:\Program Files (x86)\Common Files\TechSmith Shared\Updater\TSCUpdClt.exe [56704] =>.TechSmith Corporation O38 - TASK: {70E9CCF2-C7DD-47FC-8589-27C459070542} [64Bits][\GoogleUpdateTaskUserS-1-5-21-1088729164-1456366878-2410094502-1000Core] - (.Google LLC - مثبِّت Google.) -- C:\Users\LAID SOFI\AppData\Local\Google\Update\GoogleUpdate.exe [156104] =>.Google LLC O38 - TASK: {D1BFBEDC-0FDE-48A5-89C3-EB6652C24C7D} [64Bits][\GoogleUpdateTaskMachineUA] - (.Google LLC - مثبِّت Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232] =>.Google LLC O38 - TASK: {E8C42169-7734-48F1-9AA2-214F1ED226CA} [64Bits][\GoogleUpdateTaskMachineCore] - (.Google LLC - مثبِّت Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232] =>.Google LLC C:\Windows\System32\Tasks\CCleanerSkipUAC - LAID SOFI - (.Piriform Software Ltd.) -- C:\Program Files\CCleaner\CCleaner64.exe [$(Arg0)] =>.Piriform Software Ltd C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1088729164-1456366878-2410094502-1000UA - (.Google LLC.) -- C:\Users\LAID SOFI\AppData\Local\Google\Update\GoogleUpdate.exe [/ua ./ua] =>.Google LLC C:\Windows\System32\Tasks\Adobe Acrobat Update Task - (.Adobe Inc..) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [] =>.Adobe Inc. C:\Windows\System32\Tasks\TechSmith Updater - (.TechSmith Corporation.) -- C:\Program Files (x86)\Common Files\TechSmith Shared\Updater\TSCUpdClt.exe [all] =>.TechSmith Corporation C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1088729164-1456366878-2410094502-1000Core - (.Google LLC.) -- C:\Users\LAID SOFI\AppData\Local\Google\Update\GoogleUpdate.exe [/c] =>.Google LLC C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA - (.Google LLC.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [/ua ./ua] =>.Google LLC C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore - (.Google LLC.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [/c] =>.Google LLC ---\\ Auto loading programs from Registry and folders (17) - 2s O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe [Unsigned] =>.Intel Corporation O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe [Unsigned] =>.Intel Corporation O4 - HKLM\..\Run: [egui] . (.ESET - ESET command line interface.) -- C:\Program Files\ESET\ESET Security\ecmds.exe =>.ESET, spol. s r.o.® O4 - HKLM\..\RunOnce: [!MOF64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe [Unsigned] =>.Microsoft Corporation O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [Unsigned] =>.Tonec Inc. O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] . (.Nero AG - Nero Home.) -- C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe =>.Nero AG® O4 - HKCU\..\Run: [CCleaner Smart Cleaning] . (.Piriform Software Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Software Ltd® O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - ‎‎MCTAdmin.) -- C:\Windows\System32\mctadmin.exe [Unsigned] =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - ‎‎MCTAdmin.) -- C:\Windows\System32\mctadmin.exe [Unsigned] =>.Microsoft Corporation O4 - HKLM\..\Wow6432Node\Run: [BCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe =>.Microsoft Corporation® O4 - HKLM\..\Wow6432Node\Run: [PWRISOVM.EXE] . (.Power Software Ltd - PowerISO Virtual Drive Manager.) -- C:\Program Files\PowerISO\PWRISOVM.EXE {19EA4DAF089570861408E9F05EFD9B89}. =>.Power Software Ltd O4 - HKLM\..\Wow6432Node\Run: [NBKeyScan] . (.Nero AG - Nero BackItUp.) -- C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe =>.Nero AG® O4 - HKLM\..\Wow6432Node\Run: [A0380mon] . (...) -- C:\Windows\SysWOW64\A0380mon.exe [Unsigned] O4 - HKLM\..\Wow6432Node\Run: [DHTray] . (. - DHTray Microsoft Base Application.) -- C:\Windows\SysWOW64\DHTray.exe [Unsigned] O4 - HKUS\S-1-5-21-1088729164-1456366878-2410094502-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [Unsigned] =>.Tonec Inc. O4 - HKUS\S-1-5-21-1088729164-1456366878-2410094502-1000\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] . (.Nero AG - Nero Home.) -- C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe =>.Nero AG® O4 - HKUS\S-1-5-21-1088729164-1456366878-2410094502-1000\..\Run: [CCleaner Smart Cleaning] . (.Piriform Software Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Software Ltd® ---\\ Process running (5) - 3s [MD5.561DC5C2431BA71C7747518807ABEC8F] - (.ESET - ESET Service.) -- C:\Program Files\ESET\ESET Security\ekrn.exe [3141480] [PID.872] =>.ESET, spol. s r.o.® [MD5.C21CA0767FA0EEDF37387A52E6AF3E21] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [386840] [PID.1968] [Unsigned] =>.Intel Corporation [MD5.DA6892508A39662C44866C49128D4A6E] - (.ESET - ESET Proxy GUI.) -- C:\Program Files\ESET\ESET Security\eguiproxy.exe [939992] [PID.740] =>.ESET, spol. s r.o.® [MD5.C5AAD6E955D2BA739A46168CF2F181AF] - (.Piriform Software Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [35116160] [PID.3836] =>.Piriform Software Ltd® [MD5.8B360BA4CCDCDDCC858468D91B24155C] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\LAID SOFI\Desktop\ZHPDiag3_2.exe [3282072] [PID.3616] [Unsigned] =>.Nicolas Coolman ---\\ Google Chrome, Start,Search,Extensions (21) - 0s G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://google.fr =>.Google Inc. G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.com =>.Google Inc. G2 - GCE: Preference [LAID SOFI][User Data\Default\Extensions] [aapbdbdomjkkjkaonfhkkikfgjllcleb] =>.Google Inc. {Traduction} G2 - GCE: Preference [LAID SOFI][User Data\Default\Extensions] [cfhdojbkjhnklbpkdaibdccddilifddb] eyeo GmbH =>.Eyeo GmbH G2 - GCE: Preference [LAID SOFI][User Data\Default\Extensions] [cjpalhdlnbpafiamejdnhcphjbkeiagm] uBlock Origin =>.Raymond Hill G2 - GCE: Preference [LAID SOFI][User Data\Default\Extensions] [efaidnbmnnnibpcajpcglclefindmkaj] =>.Adobe Inc. {Acrobat} G2 - GCE: Preference [LAID SOFI][User Data\Default\Extensions] [gighmmpiobklfepjocnamgkkbiglidom] Toggle Pause/Resume on all sites =>.Legitimate G2 - GCE: Preference [LAID SOFI][User Data\Default\Extensions] [gmbmikajjgmnabiglmofipeabaddhgne] =>.Google Inc. G2 - GCE: Preference [LAID SOFI][User Data\Default\Extensions] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module =>.IDM Computer Solutions, Inc. G2 - GCE: Preference [LAID SOFI][User Data\Default\Extensions] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet} G2 - GCE: Preference [LAID SOFI][User Data\Default\Extensions] [ohmmkhmmmpcnpikjeljgnaoabkaalbgc] Chrome Apps & Extensions Developer Tool =>.Legitimate G2 - GCE: Preference [LAID SOFI][User Data\Default\Local Extension Settings] [aapbdbdomjkkjkaonfhkkikfgjllcleb] =>.Google Inc. {Traduction} G2 - GCE: Preference [LAID SOFI][User Data\Default\Local Extension Settings] [cfhdojbkjhnklbpkdaibdccddilifddb] =>.eyeo GmbH {AdBlock Plus} G2 - GCE: Preference [LAID SOFI][User Data\Default\Local Extension Settings] [cjpalhdlnbpafiamejdnhcphjbkeiagm] =>.uBlock Origin G2 - GCE: Preference [LAID SOFI][User Data\Default\Local Extension Settings] [gighmmpiobklfepjocnamgkkbiglidom] =>.Wladimir Palant {AdBlock} G2 - GCE: Preference [LAID SOFI][User Data\Default\Local Extension Settings] [ngpampappnmepgilojfohadhhmbhlaek] =>.Legitimate G2 - GCE: Preference [LAID SOFI][User Data\Default\Managed Extension Settings] [cfhdojbkjhnklbpkdaibdccddilifddb] =>.eyeo GmbH {AdBlock Plus} G2 - GCE: Preference [LAID SOFI][User Data\Default\Managed Extension Settings] [cjpalhdlnbpafiamejdnhcphjbkeiagm] =>.uBlock Origin G2 - GCE: Preference [LAID SOFI][User Data\Default\Managed Extension Settings] [gighmmpiobklfepjocnamgkkbiglidom] =>.Wladimir Palant {AdBlock} G2 - GCE: Preference [LAID SOFI][User Data\Default\Sync Extension Settings] [ednfpjleaanokkjcgljbmamhlbkddcgh] G2 - GCE: Preference [LAID SOFI][User Data\Default\Sync Extension Settings] [gmbmikajjgmnabiglmofipeabaddhgne] =>.Google Inc. ---\\ Internet Explorer Extensions, Start, Search (15) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - مستعرض الإنترنت.) (11.00.9600.19597 (winblue_ltsb_escrow.191216-1311)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation ---\\ INTERNET EXPLORER, trusted site and sensitive site (2) - 0s ~ Microsoft Internet Explorer Restricted Site(s) Domains: 0(Good) / 0(Bad) ~ Microsoft Internet Explorer Restricted Site(s) EscDomains: 0(Good) / 0(Bad) ---\\ Microsoft Edge,Plugins,Start,Search,Extensions (4) - 0s E2 - GCE: Preference [LAID SOFI][User Data\Default\Extensions] [Temp] E2 - GCE: Preference [LAID SOFI][User Data\Default\Extensions] [llbjbkhnmlidjebalopleeepgdfgcpec] IDM Integration Module =>.IDM Computer Solutions, Inc. E2 - GCE: Preference [LAID SOFI][User Data\Default\Local Extension Settings] [jdiccldimpdaibmpdkjnbmckianbfold] =>.Microsoft Corporation E2 - GCE: Preference [LAID SOFI][User Data\Default\Local Extension Settings] [llbjbkhnmlidjebalopleeepgdfgcpec] ---\\ Internet Explorer, Proxy Management (5) - 0s R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 =>.Default.Value R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 =>.Default.Value R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 =>.Default.Value R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft ---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation ---\\ Hosts file redirection (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (21) ---\\ Browser Helper Object (BHO) (4) - 0s O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll =>.Tonec Inc.® O2 - BHO: IEToEdge BHO [64Bits] - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} . (.Microsoft Corporation - IEToEdge BHO.) -- C:\Program Files (x86)\Microsoft\Edge\Application\95.0.1020.40\BHO\ie_to_edge_bho_64.dll =>.Microsoft® O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation® O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL =>.Microsoft Corporation® ---\\ Global shortcuts Startup (131) - 11s O4 - GS\Desktop [Administrator]: Downloads.lnk . (...) C:\Users\LAID SOFI\Downloads [Unsigned] O4 - GS\Desktop [Administrator]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe [Unsigned] =>.Free Time Co., Ltd. O4 - GS\Desktop [Administrator]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Users\LAID SOFI\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google LLC® O4 - GS\Desktop [Administrator]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe [Unsigned] =>.Tonec Inc. O4 - GS\Desktop [Administrator]: Microsoft Excel 2010.lnk . (...) C:\Windows\Installer\{90140000-0011-0000-0000-0000000FF1CE}\xlicons.exe =>.Microsoft Corporation® O4 - GS\Desktop [Administrator]: Microsoft Outlook 2010.lnk . (...) C:\Windows\Installer\{90140000-0011-0000-0000-0000000FF1CE}\outicon.exe =>.Microsoft Corporation® O4 - GS\Desktop [Administrator]: Microsoft Word 2010.lnk . (...) C:\Windows\Installer\{90140000-0011-0000-0000-0000000FF1CE}\wordicon.exe =>.Microsoft Corporation® O4 - GS\Desktop [Administrator]: Okdo PDF Encrypter.lnk . (.Okdo Software - .) C:\Program Files (x86)\Okdo PDF Encrypter\pdftools.exe [Unsigned] O4 - GS\Desktop [Administrator]: PhotoScape.lnk . (...) C:\Program Files (x86)\PhotoScape\PhotoScape.exe =>.Mooii Tech® O4 - GS\Desktop [Administrator]: Snagit 12 Editor.lnk . (.TechSmith Corporation - Snagit Editor.) C:\Windows\Installer\{FDEC2BE1-5F84-4249-943B-4364251A56BE}\SnagitEditorIcon.exe =>.TechSmith Corporation® O4 - GS\Desktop [Administrator]: Snagit 12.lnk . (.TechSmith Corporation - Snagit.) C:\Windows\Installer\{FDEC2BE1-5F84-4249-943B-4364251A56BE}\SnagitIcon.exe =>.TechSmith Corporation® O4 - GS\Desktop [Administrator]: المستندات - رمز اختصار.lnk . (...) C:\Users\LAID SOFI\AppData\Roaming\Microsoft\Windows\Libraries\Documents.library-ms [Unsigned] O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Users\LAID SOFI\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google LLC® O4 - GS\Quicklaunch [Administrator]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft® O4 - GS\Quicklaunch [Administrator]: Nero StartSmart Essentials.lnk . (.Nero AG - Nero StartSmart 8 Application.) C:\Program Files (x86)\Nero\Nero8\Nero StartSmart\NeroStartSmart.exe -ScParameter=65 =>.Nero AG® O4 - GS\Quicklaunch [Administrator]: PhotoScape.lnk . (...) C:\Program Files (x86)\PhotoScape\PhotoScape.exe =>.Mooii Tech® O4 - GS\Quicklaunch [Administrator]: ‏‏Microsoft Edge.lnk . (.Microsoft Corporation - Microsoft Edge.) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft® O4 - GS\sendTo [Administrator]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo [Unsigned] =>.Microsoft Corporation O4 - GS\sendTo [Administrator]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe [Unsigned] =>.Free Time Co., Ltd. O4 - GS\TaskBar [Administrator]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Users\LAID SOFI\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google LLC® O4 - GS\TaskBar [Administrator]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft® O4 - GS\TaskBar [Administrator]: Windows Explorer.lnk . (.Microsoft Corporation - مستكشف Windows.) C:\Windows\explorer.exe [Unsigned] =>.Microsoft Corporation O4 - GS\TaskBar [Administrator]: Windows Media Player.lnk . (.Microsoft Corporation - ‎‎Windows Media Player.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 [Unsigned] =>.Microsoft Corporation O4 - GS\TaskBar [Administrator]: ‏‏Microsoft Edge.lnk . (.Microsoft Corporation - Microsoft Edge.) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --profile-directory=Default =>.Microsoft® O4 - GS\Programs [Administrator]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Users\LAID SOFI\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google LLC® O4 - GS\Programs [Administrator]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft® O4 - GS\Desktop [Guest]: Downloads.lnk . (...) C:\Users\LAID SOFI\Downloads [Unsigned] O4 - GS\Desktop [Guest]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe [Unsigned] =>.Free Time Co., Ltd. O4 - GS\Desktop [Guest]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Users\LAID SOFI\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google LLC® O4 - GS\Desktop [Guest]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe [Unsigned] =>.Tonec Inc. O4 - GS\Desktop [Guest]: Microsoft Excel 2010.lnk . (...) C:\Windows\Installer\{90140000-0011-0000-0000-0000000FF1CE}\xlicons.exe =>.Microsoft Corporation® O4 - GS\Desktop [Guest]: Microsoft Outlook 2010.lnk . (...) C:\Windows\Installer\{90140000-0011-0000-0000-0000000FF1CE}\outicon.exe =>.Microsoft Corporation® O4 - GS\Desktop [Guest]: Microsoft Word 2010.lnk . (...) C:\Windows\Installer\{90140000-0011-0000-0000-0000000FF1CE}\wordicon.exe =>.Microsoft Corporation® O4 - GS\Desktop [Guest]: Okdo PDF Encrypter.lnk . (.Okdo Software - .) C:\Program Files (x86)\Okdo PDF Encrypter\pdftools.exe [Unsigned] O4 - GS\Desktop [Guest]: PhotoScape.lnk . (...) C:\Program Files (x86)\PhotoScape\PhotoScape.exe =>.Mooii Tech® O4 - GS\Desktop [Guest]: Snagit 12 Editor.lnk . (.TechSmith Corporation - Snagit Editor.) C:\Windows\Installer\{FDEC2BE1-5F84-4249-943B-4364251A56BE}\SnagitEditorIcon.exe =>.TechSmith Corporation® O4 - GS\Desktop [Guest]: Snagit 12.lnk . (.TechSmith Corporation - Snagit.) C:\Windows\Installer\{FDEC2BE1-5F84-4249-943B-4364251A56BE}\SnagitIcon.exe =>.TechSmith Corporation® O4 - GS\Desktop [Guest]: المستندات - رمز اختصار.lnk . (...) C:\Users\LAID SOFI\AppData\Roaming\Microsoft\Windows\Libraries\Documents.library-ms [Unsigned] O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Users\LAID SOFI\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google LLC® O4 - GS\Quicklaunch [Guest]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft® O4 - GS\Quicklaunch [Guest]: Nero StartSmart Essentials.lnk . (.Nero AG - Nero StartSmart 8 Application.) C:\Program Files (x86)\Nero\Nero8\Nero StartSmart\NeroStartSmart.exe -ScParameter=65 =>.Nero AG® O4 - GS\Quicklaunch [Guest]: PhotoScape.lnk . (...) C:\Program Files (x86)\PhotoScape\PhotoScape.exe =>.Mooii Tech® O4 - GS\Quicklaunch [Guest]: ‏‏Microsoft Edge.lnk . (.Microsoft Corporation - Microsoft Edge.) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft® O4 - GS\sendTo [Guest]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo [Unsigned] =>.Microsoft Corporation O4 - GS\sendTo [Guest]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe [Unsigned] =>.Free Time Co., Ltd. O4 - GS\TaskBar [Guest]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Users\LAID SOFI\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google LLC® O4 - GS\TaskBar [Guest]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft® O4 - GS\TaskBar [Guest]: Windows Explorer.lnk . (.Microsoft Corporation - مستكشف Windows.) C:\Windows\explorer.exe [Unsigned] =>.Microsoft Corporation O4 - GS\TaskBar [Guest]: Windows Media Player.lnk . (.Microsoft Corporation - ‎‎Windows Media Player.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 [Unsigned] =>.Microsoft Corporation O4 - GS\TaskBar [Guest]: ‏‏Microsoft Edge.lnk . (.Microsoft Corporation - Microsoft Edge.) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --profile-directory=Default =>.Microsoft® O4 - GS\Programs [Guest]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Users\LAID SOFI\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google LLC® O4 - GS\Programs [Guest]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft® O4 - GS\Desktop [LAID SOFI]: Downloads.lnk . (...) C:\Users\LAID SOFI\Downloads [Unsigned] O4 - GS\Desktop [LAID SOFI]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe [Unsigned] =>.Free Time Co., Ltd. O4 - GS\Desktop [LAID SOFI]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Users\LAID SOFI\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google LLC® O4 - GS\Desktop [LAID SOFI]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe [Unsigned] =>.Tonec Inc. O4 - GS\Desktop [LAID SOFI]: Microsoft Excel 2010.lnk . (...) C:\Windows\Installer\{90140000-0011-0000-0000-0000000FF1CE}\xlicons.exe =>.Microsoft Corporation® O4 - GS\Desktop [LAID SOFI]: Microsoft Outlook 2010.lnk . (...) C:\Windows\Installer\{90140000-0011-0000-0000-0000000FF1CE}\outicon.exe =>.Microsoft Corporation® O4 - GS\Desktop [LAID SOFI]: Microsoft Word 2010.lnk . (...) C:\Windows\Installer\{90140000-0011-0000-0000-0000000FF1CE}\wordicon.exe =>.Microsoft Corporation® O4 - GS\Desktop [LAID SOFI]: Okdo PDF Encrypter.lnk . (.Okdo Software - .) C:\Program Files (x86)\Okdo PDF Encrypter\pdftools.exe [Unsigned] O4 - GS\Desktop [LAID SOFI]: PhotoScape.lnk . (...) C:\Program Files (x86)\PhotoScape\PhotoScape.exe =>.Mooii Tech® O4 - GS\Desktop [LAID SOFI]: Snagit 12 Editor.lnk . (.TechSmith Corporation - Snagit Editor.) C:\Windows\Installer\{FDEC2BE1-5F84-4249-943B-4364251A56BE}\SnagitEditorIcon.exe =>.TechSmith Corporation® O4 - GS\Desktop [LAID SOFI]: Snagit 12.lnk . (.TechSmith Corporation - Snagit.) C:\Windows\Installer\{FDEC2BE1-5F84-4249-943B-4364251A56BE}\SnagitIcon.exe =>.TechSmith Corporation® O4 - GS\Desktop [LAID SOFI]: المستندات - رمز اختصار.lnk . (...) C:\Users\LAID SOFI\AppData\Roaming\Microsoft\Windows\Libraries\Documents.library-ms [Unsigned] O4 - GS\Quicklaunch [LAID SOFI]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Users\LAID SOFI\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google LLC® O4 - GS\Quicklaunch [LAID SOFI]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft® O4 - GS\Quicklaunch [LAID SOFI]: Nero StartSmart Essentials.lnk . (.Nero AG - Nero StartSmart 8 Application.) C:\Program Files (x86)\Nero\Nero8\Nero StartSmart\NeroStartSmart.exe -ScParameter=65 =>.Nero AG® O4 - GS\Quicklaunch [LAID SOFI]: PhotoScape.lnk . (...) C:\Program Files (x86)\PhotoScape\PhotoScape.exe =>.Mooii Tech® O4 - GS\Quicklaunch [LAID SOFI]: ‏‏Microsoft Edge.lnk . (.Microsoft Corporation - Microsoft Edge.) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft® O4 - GS\sendTo [LAID SOFI]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo [Unsigned] =>.Microsoft Corporation O4 - GS\sendTo [LAID SOFI]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe [Unsigned] =>.Free Time Co., Ltd. O4 - GS\TaskBar [LAID SOFI]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Users\LAID SOFI\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google LLC® O4 - GS\TaskBar [LAID SOFI]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft® O4 - GS\TaskBar [LAID SOFI]: Windows Explorer.lnk . (.Microsoft Corporation - مستكشف Windows.) C:\Windows\explorer.exe [Unsigned] =>.Microsoft Corporation O4 - GS\TaskBar [LAID SOFI]: Windows Media Player.lnk . (.Microsoft Corporation - ‎‎Windows Media Player.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 [Unsigned] =>.Microsoft Corporation O4 - GS\TaskBar [LAID SOFI]: ‏‏Microsoft Edge.lnk . (.Microsoft Corporation - Microsoft Edge.) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --profile-directory=Default =>.Microsoft® O4 - GS\Programs [LAID SOFI]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Users\LAID SOFI\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google LLC® O4 - GS\Programs [LAID SOFI]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft® O4 - GS\CommonDesktop [Public]: Acrobat Reader DC.lnk . (.Adobe Systems Incorporated - Adobe Acrobat Reader DC.) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe =>.Adobe Inc.® O4 - GS\CommonDesktop [Public]: Camtasia Studio 8.lnk . (.TechSmith Corporation - Camtasia Studio.) C:\Program Files (x86)\TechSmith\Camtasia Studio 8\CamtasiaStudio.exe =>.TechSmith Corporation® O4 - GS\CommonDesktop [Public]: CCleaner.lnk . (.Piriform Software Ltd - CCleaner.) C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Software Ltd® O4 - GS\CommonDesktop [Public]: CPUID CPU-Z.lnk . (.CPUID - CPU-Z Application.) C:\Program Files\CPUID\CPU-Z\cpuz.exe =>.CPUID S.A.R.L.U.® O4 - GS\CommonDesktop [Public]: ESET حماية المعاملات المصرفية والدفع.lnk . (.ESET - .) C:\Program Files (x86)\ESET\ESET Security\ecmd.exe /startprotectedbrowser [Unsigned] =>.ESET O4 - GS\CommonDesktop [Public]: Euro Truck Simulator 2.lnk . (.SCS Software - Euro Truck Simulator 2.) C:\Program Files (x86)\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe =>.SCS Software s.r.o.® O4 - GS\CommonDesktop [Public]: Google Earth Pro.lnk . (.Google - Google Earth Pro.) C:\Program Files (x86)\Google\Google Earth Pro\client\googleearth.exe [Unsigned] =>.Google O4 - GS\CommonDesktop [Public]: LiveCam.lnk . (...) C:\Program Files (x86)\Webcam\CNLTF_A380\Driver\WinXP\LiveCam.exe [Unsigned] O4 - GS\CommonDesktop [Public]: Microsoft Edge.lnk . (.Microsoft Corporation - Microsoft Edge.) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft® O4 - GS\CommonDesktop [Public]: Nero StartSmart Essentials.lnk . (.Nero AG - Nero StartSmart 8 Application.) C:\Program Files (x86)\Nero\Nero8\Nero StartSmart\NeroStartSmart.exe -ScParameter=65 =>.Nero AG® O4 - GS\CommonDesktop [Public]: PowerISO.lnk . (.Power Software Ltd - PowerISO.) C:\Program Files\PowerISO\PowerISO.exe {19EA4DAF089570861408E9F05EFD9B89}. =>.Power Software Ltd O4 - GS\CommonDesktop [Public]: Revo Uninstaller Pro.lnk . (.VS Revo Group - Revo Uninstaller Pro.) C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe =>.VS Revo Group Ltd.® O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files\VideoLAN\VLC\vlc.exe =>.VideoLAN® O4 - GS\Programs [Public]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Users\LAID SOFI\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google LLC® O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft® O4 - GS\Accessories [Public]: Command Prompt.lnk . (.Microsoft Corporation - Windows Command Processor.) C:\Windows\system32\cmd.exe [Unsigned] =>.Microsoft Corporation O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - ‎‎المفكرة.) C:\Windows\system32\notepad.exe [Unsigned] =>.Microsoft Corporation O4 - GS\Accessories [Public]: Windows Explorer.lnk . (.Microsoft Corporation - مستكشف Windows.) C:\Windows\explorer.exe [Unsigned] =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe -extoff =>.Microsoft® O4 - GS\SystemTools [Public]: Private Character Editor.lnk . (.Microsoft Corporation - ‎‎محرر الأحرف الخاصة.) C:\Windows\system32\eudcedit.exe [Unsigned] =>.Microsoft Corporation O4 - GS\Startup [Public]: Snagit 12.lnk . (.TechSmith Corporation - Snagit.) C:\Program Files (x86)\TechSmith\Snagit 12\Snagit32.exe =>.TechSmith Corporation® O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - ‎‎حاسبة Windows.) C:\Windows\system32\calc.exe [Unsigned] =>.Microsoft Corporation O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - ‎‎تبديل شاشة العرض.) C:\Windows\system32\displayswitch.exe [Unsigned] =>.Microsoft Corporation O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - ‎‎ملحق لوحة إدخال العمليات الرياضية.) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe [Unsigned] =>.Microsoft Corporation O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - ‎‎‫مركز إعدادات الكمبيوتر المحمول لـ Window.) C:\Windows\system32\mblctr.exe /open [Unsigned] =>.Microsoft Corporation O4 - GS\Accessories [Public]: NetworkProjection.lnk . (.Microsoft Corporation - Connect to a Network Projector.) C:\Windows\system32\NetProj.exe [Unsigned] =>.Microsoft Corporation O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - ‎‎الرسام.) C:\Windows\system32\mspaint.exe [Unsigned] =>.Microsoft Corporation O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - ‎‎الاتصال بسطح المكتب البعيد.) C:\Windows\system32\mstsc.exe [Unsigned] =>.Microsoft Corporation O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - ‎‎أداة القطع.) C:\Windows\system32\SnippingTool.exe [Unsigned] =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - ‎‎مسجل صوت Windows.) C:\Windows\system32\SoundRecorder.exe [Unsigned] =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - ‎‎Sticky Notes.) C:\Windows\system32\StikyNot.exe [Unsigned] =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) C:\Windows\System32\mobsync.exe [Unsigned] =>.Microsoft Corporation O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - عملية مضيف Windows (Rundll32)‎.) C:\Windows\system32\rundll32.exe [Unsigned] =>..Microsoft Corporation O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - ‎‎تطبيق المفكرة لـ Windows.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe [Unsigned] =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - ‎‎مخطط توزيع الأحرف.) C:\Windows\system32\charmap.exe [Unsigned] =>.Microsoft Corporation O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - ‎‎Microsoft® Disk Defragmenter.) C:\Windows\system32\dfrgui.exe [Unsigned] =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - ‎‎إدارة تنظيف مساحة القرص لـ Windows.) C:\Windows\system32\cleanmgr.exe [Unsigned] =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - ‎‎مراقبة الأداء والموارد.) C:\Windows\system32\perfmon.exe /res [Unsigned] =>.Microsoft Corporation O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - ‎‎معلومات النظام.) C:\Windows\system32\msinfo32.exe [Unsigned] =>.Microsoft Corporation O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - ‎‎Microsoft® Windows System Restore.) C:\Windows\system32\rstrui.exe [Unsigned] =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc /s [Unsigned] =>..Microsoft Corporation O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - ‎‎تطبيق ما بعد عملية الترحيل لأداة النقل ال.) C:\Windows\system32\migwiz\postmig.exe [Unsigned] =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - ‎‎تطبيق أداة النقل السريع في Windows.) C:\Windows\system32\migwiz\migwiz.exe [Unsigned] =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Acrobat Reader DC.lnk . (.Adobe Systems Incorporated - Adobe Acrobat Reader DC.) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe =>.Adobe Inc.® O4 - GS\ProgramsCommon [Public]: Google Earth Pro.lnk . (.Google - Google Earth Pro.) C:\Program Files (x86)\Google\Google Earth Pro\client\googleearth.exe [Unsigned] =>.Google O4 - GS\ProgramsCommon [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) C:\Windows\ehome\ehshell.exe [Unsigned] =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Microsoft Edge.lnk . (.Microsoft Corporation - Microsoft Edge.) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft® O4 - GS\ProgramsCommon [Public]: Sidebar.lnk . (.Microsoft Corporation - ‎‎الأدوات الذكية على سطح المكتب لـ Windows.) C:\Program Files (x86)\Windows Sidebar\sidebar.exe /showgadgets [Unsigned] =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Windows Anytime Upgrade User Interface.) C:\Windows\system32\WindowsAnytimeUpgradeUI.exe [Unsigned] =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Windows DVD Maker.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\DVD Maker\DVDMaker.exe [Unsigned] =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe [Unsigned] =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - ‎‎Windows Media Player.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 [Unsigned] =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: XPS Viewer.lnk . (.Microsoft Corporation - ‎‎عارض XPS.) C:\Windows\system32\xpsrchvw.exe [Unsigned] =>.Microsoft Corporation ---\\ Lop.com/Domain Hijackers (1) - 0s O17 - HKLM\System\CCS\Services\Tcpip\..\{298E5979-6575-4177-97BB-1F6E9DD06520}: NameServer = 192.168.0.1 =>.Local IP Adress ---\\ Extra protocols (21) - 1s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - عارض Microsoft (R) HTML.) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - عنصر تحكم ActiveX للفيديو المتدفق.) -- C:\Windows\System32\MSVidCtl.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - عارض Microsoft (R) HTML.) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - عارض Microsoft (R) HTML.) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - عارض Microsoft (R) HTML.) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - عنصر تحكم ActiveX للفيديو المتدفق.) -- C:\Windows\System32\MSVidCtl.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - عارض Microsoft (R) HTML.) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL =>.Microsoft Corporation® ---\\ AppInit_DLLs Registry value Autorun (1) - 0s O20 - Winlogon : UserInit . (.Microsoft Corporation - ‎‎تطبيق تسجيل دخول Userinit.) - C:\Windows\system32\userinit.exe =>.Microsoft Corporation ---\\ ASIC (ActiveSetup Installed Components) (10) - 1s O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - ‎‎الأداة المساعدة لإعداد Microsoft Windows.) -- C:\Windows\System32\unregmp2.exe [Unsigned] =>.Microsoft Corporation O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll [Unsigned] =>.Microsoft Corporation O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - خادم تسجيل (C)‏Microsoft.) -- C:\Windows\System32\regsvr32.exe [Unsigned] =>.Microsoft Corporation O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - ‎‎بريد Windows.) -- C:\Program Files\Windows Mail\WinMail.exe [Unsigned] =>.Microsoft Corporation O40 - ASIC: Enable TLS1.1 and 1.2 [64Bits] - {66C64F22-FC60-4E6C-A6B5-F0D580E680CE} . (.Microsoft Corporation - ‎‎الأداة المساعدة للتهيئة لكل مستخدم لـ IE.) -- C:\Windows\System32\ie4uinit.exe [Unsigned] =>.Microsoft Corporation O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - ‎‎الأداة المساعدة لإعداد Microsoft Windows.) -- C:\Windows\System32\unregmp2.exe [Unsigned] =>.Microsoft Corporation O40 - ASIC: Disable SSL3 [64Bits] - {7D715857-A67C-4C2F-A929-038448584D63} . (.Microsoft Corporation - ‎‎الأداة المساعدة للتهيئة لكل مستخدم لـ IE.) -- C:\Windows\System32\ie4uinit.exe [Unsigned] =>.Microsoft Corporation O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - ‎‎الأداة المساعدة للتهيئة لكل مستخدم لـ IE.) -- C:\Windows\System32\ie4uinit.exe [Unsigned] =>.Microsoft Corporation O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll =>.Microsoft® O40 - ASIC: ‏‏Microsoft Edge [64Bits] - {9459C573-B17A-45AE-9F64-1857B5D58CEE} . (.Microsoft Corporation - Microsoft Edge Installer.) -- C:\Program Files (x86)\Microsoft\Edge\Application\95.0.1020.40\Installer\setup.exe =>.Microsoft® ---\\ Software installed (78) - 13s =>.Microsoft O42 - Logiciel: Adobe Acrobat Reader DC - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-AC0F074E4100} [Unsigned] =>.Adobe Systems Incorporated O42 - Logiciel: Adobe AIR - (.HARMAN International.) [HKLM][64Bits] -- {73615109-74E8-4A40-9FB4-64FF9F0E2691} [Unsigned] (Hidden) O42 - Logiciel: Adobe AIR - (.HARMAN International.) [HKLM][64Bits] -- Adobe AIR {0501443D58E65BFCA6683E1489AEFD40}. O42 - Logiciel: Camtasia Studio 8 - (.TechSmith Corporation.) [HKLM][64Bits] -- {765AD29A-7EF5-4456-8F6F-83467E52AB52} [Unsigned] =>.TechSmith Corporation O42 - Logiciel: CCleaner - (..) [HKLM][64Bits] -- CCleaner [Unsigned] O42 - Logiciel: CPUID CPU-Z 1.93 - (.CPUID, Inc..) [HKLM][64Bits] -- CPUID CPU-Z_is1 [Unsigned] =>.CPUID, Inc. O42 - Logiciel: ESET Security - (.ESET, spol. s r.o..) [HKLM][64Bits] -- {9BC1D59F-3F14-41F4-BB7D-3D703D730BA3} [Unsigned] =>.ESET, spol. s r.o. O42 - Logiciel: Euro Truck Simulator 2 - (.SCS Software.) [HKLM][64Bits] -- {1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1 =>.SCS Software s.r.o.® O42 - Logiciel: FormatFactory 4.6.0.0 - (.Free Time.) [HKLM][64Bits] -- FormatFactory [Unsigned] =>.Free Time O42 - Logiciel: Google Chrome - (.Google LLC.) [HKCU][64Bits] -- Google Chrome =>.Google LLC® O42 - Logiciel: Google Earth Pro - (.Google.) [HKLM][64Bits] -- {9BFB06CD-3925-49E2-BAB7-EA695821CE4C} [Unsigned] =>.Google O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation® O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.® O42 - Logiciel: Kutools for Word version 8.9.0 - (.ExtendOffice.) [HKLM][64Bits] -- {E9A0AD37-5BA2-4E60-85F1-8B785CF2FBF5}_is1 [Unsigned] =>.ExtendOffice O42 - Logiciel: Microsoft .NET AppHost Pack - 5.0.11 (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {6637078F-7ECD-44E0-8207-5D3E5DD06F63} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft .NET AppHost Pack - 5.0.11 (x64_arm) - (.Microsoft Corporation.) [HKLM][64Bits] -- {BAAAB43B-E5E0-4CDF-81C7-E8456B8AB1DC} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft .NET AppHost Pack - 5.0.11 (x64_arm64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {40BBF15B-2B54-4C49-8531-6DAE52080F91} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft .NET AppHost Pack - 5.0.11 (x64_x86) - (.Microsoft Corporation.) [HKLM][64Bits] -- {EBF3F1CF-2AA3-48C9-9FA2-2C01C816ECF2} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft .NET Core 5.0 Templates 5.0.402 (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F40B8646-CD41-4AF3-A545-0A7C0F6ABA48} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft .NET Framework 4.8 - (.Microsoft Corporation.) [HKLM][64Bits] -- {16735AF7-1D8D-3681-94A5-C578A61EC832} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft .NET Framework 4.8 - (.Microsoft Corporation.) [HKLM][64Bits] -- {92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033 =>.Microsoft® O42 - Logiciel: Microsoft .NET Framework 4.8 (ARA) - (.Microsoft Corporation.) [HKLM][64Bits] -- {87B4DBDA-5268-3152-9781-9E8907990041} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft .NET Framework 4.8 (FRA) - (.Microsoft Corporation.) [HKLM][64Bits] -- {EED6E294-BB0E-32E8-B448-92F2B59EB418} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft .NET Framework 4.8 (Français) - (.Microsoft Corporation.) [HKLM][64Bits] -- {92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036 =>.Microsoft Corporation® O42 - Logiciel: Microsoft .NET Framework 4.8 (العربية) - (.Microsoft Corporation.) [HKLM][64Bits] -- {92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1025 =>.Microsoft Corporation® O42 - Logiciel: Microsoft .NET Host - 5.0.11 (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {15150450-57AB-4186-B520-329EED51AF7A} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft .NET Host FX Resolver - 5.0.11 (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {303BF805-644E-4A76-8964-B39786190EAC} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft .NET Runtime - 5.0.11 (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {9E190CBD-B034-491A-BD02-BDDBB4D67F74} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft .NET SDK 5.0.402 (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2e80d295-2f42-4be2-a231-63341cf9e650} =>.Microsoft® O42 - Logiciel: Microsoft .NET Standard Targeting Pack - 2.1.0 (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {A7036CFB-B403-4598-85FF-D397ABB88173} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft .NET Targeting Pack - 5.0.0 (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F9CD5A8F-B00B-4770-9E4A-A3C818BE840F} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft .NET Toolset 5.0.402 (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {723BCA89-29F7-478C-9127-DD47355B9D61} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft ASP.NET Core 5.0.0 Targeting Pack (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {7E0C04EC-9D6F-36CD-A821-DC8493EE407F} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft ASP.NET Core 5.0.11 Shared Framework (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {3D00715C-E6E6-3F40-B075-594D6F9CCE23} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: ‏‏Microsoft Edge - (.‏‏Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Edge =>.Microsoft® O42 - Logiciel: Microsoft Edge Update - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Edge Update [Unsigned] =>.Microsoft Corporation O42 - Logiciel: Microsoft Office Access MUI (Arabic) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0015-0401-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Excel MUI (Arabic) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0016-0401-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Groove MUI (Arabic) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-00BA-0401-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office InfoPath MUI (Arabic) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0044-0401-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Office 64-bit Components 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-002A-0000-1000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office OneNote MUI (Arabic) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-00A1-0401-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Outlook MUI (Arabic) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001A-0401-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office PowerPoint MUI (Arabic) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0018-0401-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Professional Plus 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Professional Plus 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.PROPLUS =>.Microsoft Corporation® O42 - Logiciel: Microsoft Office Proof (Arabic) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0401-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Proof (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0409-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Proof (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-040C-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Proofing (Arabic) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-002C-0401-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Publisher MUI (Arabic) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0019-0401-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Shared 64-bit MUI (Arabic) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-002A-0401-1000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Shared MUI (Arabic) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-006E-0401-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Word MUI (Arabic) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001B-0401-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Windows Desktop Runtime - 5.0.11 (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {59d2a8eb-a667-428d-a393-42df4da226a4} =>.Microsoft® O42 - Logiciel: Microsoft Windows Desktop Runtime - 5.0.11 (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {EB19F3DA-DB90-4269-BBD9-0FDC8056B372} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Windows Desktop Targeting Pack - 5.0.0 (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {B7846BB6-4EDE-409B-9147-631286EF7FDD} [Unsigned] =>.Microsoft Corporation (Hidden) O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} [Unsigned] =>.Microsoft Corporation O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} [Unsigned] =>.Microsoft Corporation O42 - Logiciel: Nero 8 Essentials - (.Nero AG.) [HKLM][64Bits] -- {0A5F80AA-FCA7-41C5-BF1C-74727ECE90A6} [Unsigned] =>.Nero AG O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B} [Unsigned] =>.Nero AG (Hidden) O42 - Logiciel: Okdo PDF Encrypter 2.6 - (.Okdo Software, Inc..) [HKLM][64Bits] -- Okdo PDF Encrypter_is1 [Unsigned] O42 - Logiciel: PhotoScape - (.Mooii Tech Software.) [HKLM][64Bits] -- PhotoScape [Unsigned] =>.Mooii Tech Software O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM][64Bits] -- PowerISO [Unsigned] =>.Power Software Ltd O42 - Logiciel: Quran in Ms Word - (.Taufiq Product, Inc..) [HKLM][64Bits] -- Quran in Ms Word_is1 [Unsigned] =>.Taufiq Product, Inc. O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp® O42 - Logiciel: Revo Uninstaller Pro 4.5.0 - (.VS Revo Group, Ltd..) [HKLM][64Bits] -- {67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1 [Unsigned] =>.VS Revo Group, Ltd. O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44} =>.Samsung Electronics CO., LTD.® O42 - Logiciel: Snagit 12 - (.TechSmith Corporation.) [HKLM][64Bits] -- {8f4df1fe-49bb-4295-99d2-0e29ad8f99c6} =>.TechSmith Corporation® O42 - Logiciel: Snagit 12 - (.TechSmith Corporation.) [HKLM][64Bits] -- {FDEC2BE1-5F84-4249-943B-4364251A56BE} [Unsigned] =>.TechSmith Corporation (Hidden) O42 - Logiciel: Update for Microsoft .NET Framework 4.8 (KB4503575) - (.Microsoft Corporation.) [HKLM][64Bits] -- {92FB6C44-E685-45AD-9B20-CADF4CABA132}.KB4503575 =>.Microsoft® O42 - Logiciel: USB2.0 PC Camera Driver - (.Legitimate.) [HKLM][64Bits] -- {5E2A70F7-5A7B-4C65-B647-2DD0ACB62F12} =>.Macrovision Corporation® O42 - Logiciel: VCRedistSetup - (.Nero AG.) [HKLM][64Bits] -- {3921A67A-5AB1-4E48-9444-C71814CF3027} [Unsigned] =>.Nero AG (Hidden) O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player [Unsigned] =>.VideoLAN O42 - Logiciel: WinRAR 5.60 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH® O42 - Logiciel: الصيانة Samsung ML-1660 Series - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- Samsung ML-1660 Series =>.Samsung Electronics CO., LTD.® O42 - Logiciel: مشغل الفلاش العربي - (..) [HKLM][64Bits] -- مشغل الفلاش العربي [Unsigned] ---\\ HKCU & HKLM Software Keys (117) - 13s HKLM\SOFTWARE\Addpcs HKLM\SOFTWARE\ATI Technologies =>.ATI Technologies HKLM\SOFTWARE\Audible =>.Audible.com HKLM\SOFTWARE\CBSTEST =>.CBS Test HKLM\SOFTWARE\CPUID =>.CPUID Inc HKLM\SOFTWARE\Creative Tech =>.Creative Tech HKLM\SOFTWARE\CXT =>.CXT Software HKLM\SOFTWARE\dotnet HKLM\SOFTWARE\ESET =>.ESET HKLM\SOFTWARE\ExtendOffice =>.ExtendOffice HKLM\SOFTWARE\Google =>.Google HKLM\SOFTWARE\Intel =>.Intel HKLM\SOFTWARE\Malwarebytes =>.Malwarebytes HKLM\SOFTWARE\MozillaPlugins =>.MozillaPlugins HKLM\SOFTWARE\Nero =>.Ahead Corporation HKLM\SOFTWARE\Nero ShowTime Essentials =>.Ahead Corporation HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions HKLM\SOFTWARE\Piriform =>.Piriform HKLM\SOFTWARE\Realtek =>.Realtek Semiconductor Corp. HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation HKLM\SOFTWARE\SAMSUNG =>.Samsung Electronics HKLM\SOFTWARE\Sonic =>.Sonic HKLM\SOFTWARE\SRS Labs =>.SRS Labs HKLM\SOFTWARE\SSPrint =>.Sprint Software HKLM\SOFTWARE\VideoLAN =>.VideoLan Team HKLM\SOFTWARE\Waves Audio =>.Waves Audio HKLM\SOFTWARE\Wow6432Node =>.Microsoft Corporation HKLM\SOFTWARE\WOW6432Node\Adobe =>.Adobe HKLM\SOFTWARE\WOW6432Node\Ahead =>.Ahead HKLM\SOFTWARE\WOW6432Node\Audible =>.Audible.com HKLM\SOFTWARE\WOW6432Node\dotnet HKLM\SOFTWARE\WOW6432Node\ESET =>.ESET HKLM\SOFTWARE\WOW6432Node\ExtendOffice =>.ExtendOffice HKLM\SOFTWARE\WOW6432Node\Google =>.Google HKLM\SOFTWARE\WOW6432Node\Intel =>.Intel HKLM\SOFTWARE\WOW6432Node\Internet Download Manager =>.Tonec Inc HKLM\SOFTWARE\WOW6432Node\KasperskyLab =>.Kaspersky Labs HKLM\SOFTWARE\WOW6432Node\Macromedia =>.Macromedia HKLM\SOFTWARE\WOW6432Node\Malwarebytes =>.Malwarebytes HKLM\SOFTWARE\WOW6432Node\Mooii =>.Mooii HKLM\SOFTWARE\WOW6432Node\MozillaPlugins =>.MozillaPlugins HKLM\SOFTWARE\WOW6432Node\Nero =>.Ahead Corporation HKLM\SOFTWARE\WOW6432Node\NeroDigital =>.Nero Digital HKLM\SOFTWARE\WOW6432Node\ODBC =>.DB Connectivity Solutions HKLM\SOFTWARE\WOW6432Node\PowerISO =>.PowerISO Computing HKLM\SOFTWARE\WOW6432Node\Samsung =>.Samsung Electronics HKLM\SOFTWARE\WOW6432Node\SCS Software =>.SCS Software HKLM\SOFTWARE\WOW6432Node\SPanel HKLM\SOFTWARE\WOW6432Node\SSPrint =>.Sprint Software HKLM\SOFTWARE\WOW6432Node\TechSmith =>.TechSmith HKLM\SOFTWARE\WOW6432Node\USB2.0 PC Camera Driver HKLM\SOFTWARE\WOW6432Node\WinRAR =>.WinRAR HKLM\SOFTWARE\WOW6432Node\RegisteredApplications =>.Microsoft Corporation HKCU\SOFTWARE\Adobe =>.Adobe HKCU\SOFTWARE\Ahead =>.Ahead HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation HKCU\SOFTWARE\Chromium =>.Chromium HKCU\SOFTWARE\DownloadManager =>.DownloadManager HKCU\SOFTWARE\ESET =>.ESET HKCU\SOFTWARE\FreeTime =>.FreeTime Inc HKCU\SOFTWARE\Google =>.Google HKCU\SOFTWARE\Intel =>.Intel HKCU\SOFTWARE\Local AppWizard-Generated Applications =>.ZWCAD HKCU\SOFTWARE\Macromedia =>.Macromedia HKCU\SOFTWARE\MainConcept =>.MainConcept AG HKCU\SOFTWARE\Mirage =>.Mirage Game HKCU\SOFTWARE\Mooii =>.Mooii HKCU\SOFTWARE\Mozilla =>.Mozilla HKCU\SOFTWARE\Nero =>.Ahead Corporation HKCU\SOFTWARE\Netscape =>.Netscape HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions HKCU\SOFTWARE\Piriform =>.Piriform HKCU\SOFTWARE\PowerISO =>.PowerISO Computing HKCU\SOFTWARE\QtProject =>.QtProject HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp. HKCU\SOFTWARE\Samsung =>.Samsung Electronics HKCU\SOFTWARE\SSPrint =>.Sprint Software HKCU\SOFTWARE\TechSmith =>.TechSmith HKCU\SOFTWARE\VS Revo Group =>.VS Revo Group HKCU\SOFTWARE\WinRAR =>.WinRAR HKCU\SOFTWARE\WinRAR SFX =>.RarLab HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation HKCU\SOFTWARE\ZHP =>.Nicolas Coolman HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation HKU\.DEFAULT\SOFTWARE\ESET =>.ESET HKU\.DEFAULT\SOFTWARE\SSPrint =>.Sprint Software HKU\.DEFAULT\SOFTWARE\TechSmith =>.TechSmith HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\Adobe =>.Adobe HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\Ahead =>.Ahead HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\AppDataLow =>.Microsoft Corporation HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\Chromium =>.Chromium HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\DownloadManager =>.DownloadManager HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\ESET =>.ESET HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\FreeTime =>.FreeTime Inc HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\Google =>.Google HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\Intel =>.Intel HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\Local AppWizard-Generated Applications =>.ZWCAD HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\Macromedia =>.Macromedia HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\MainConcept =>.MainConcept AG HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\Mirage =>.Mirage Game HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\Mooii =>.Mooii HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\Mozilla =>.Mozilla HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\Nero =>.Ahead Corporation HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\Netscape =>.Netscape HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\ODBC =>.DB Connectivity Solutions HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\Piriform =>.Piriform HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\PowerISO =>.PowerISO Computing HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\QtProject =>.QtProject HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\Realtek =>.Realtek Semiconductor Corp. HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\Samsung =>.Samsung Electronics HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\SSPrint =>.Sprint Software HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\TechSmith =>.TechSmith HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\VS Revo Group =>.VS Revo Group HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\WinRAR =>.WinRAR HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\WinRAR SFX =>.RarLab HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\Wow6432Node =>.Microsoft Corporation HKU\S-1-5-21-1088729164-1456366878-2410094502-1000\SOFTWARE\ZHP =>.Nicolas Coolman ---\\ Contents of the Common Files folders (186) - 4s O43 - CFD: 05/11/2021 - [] D -- C:\Program Files\CCleaner =>.Piriform Ltd O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation O43 - CFD: 18/10/2021 - [] D -- C:\Program Files\CPUID =>.CPUID Inc O43 - CFD: 05/11/2021 - [] D -- C:\Program Files\dotnet =>.Microsoft® O43 - CFD: 05/11/2021 - [] D -- C:\Program Files\DVD Maker =>.Aone Software O43 - CFD: 25/10/2021 - [] D -- C:\Program Files\ESET =>.ESET, spol. s r.o.® O43 - CFD: 05/11/2021 - [] D -- C:\Program Files\Google =>.Google LLC® O43 - CFD: 14/10/2021 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation O43 - CFD: 10/10/2021 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation O43 - CFD: 15/05/2016 - [] D -- C:\Program Files\Microsoft.NET =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation O43 - CFD: 14/10/2021 - [] D -- C:\Program Files\PowerISO =>.PowerISO Computing O43 - CFD: 09/10/2021 - [] D -- C:\Program Files\Realtek =>.Realtek O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation O43 - CFD: 09/10/2021 - [] D -- C:\Program Files\SAMSUNG =>.Samsung Electronics O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation O43 - CFD: 09/10/2021 - [] D -- C:\Program Files\VideoLAN =>.VideoLan Team O43 - CFD: 05/11/2021 - [] D -- C:\Program Files\VS Revo Group =>.VS Revo Group O43 - CFD: 05/11/2021 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation O43 - CFD: 05/11/2021 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation O43 - CFD: 05/11/2021 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation O43 - CFD: 20/10/2021 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation O43 - CFD: 05/11/2021 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation O43 - CFD: 21/11/2010 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation O43 - CFD: 05/11/2021 - [] D -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation O43 - CFD: 09/10/2021 - [] D -- C:\Program Files\WinRAR =>.WinRAR O43 - CFD: 09/10/2021 - [] D -- C:\Program Files\مشغل الفلاش العربي [Unsigned] O43 - CFD: 09/10/2021 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems Incorporated® O43 - CFD: 20/10/2021 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation O43 - CFD: 18/10/2021 - [] D -- C:\Program Files (x86)\Euro Truck Simulator 2 =>.SCS Software s.r.o.® O43 - CFD: 10/10/2021 - [] D -- C:\Program Files (x86)\ExtendOffice [Unsigned] =>.ExtendOffice O43 - CFD: 10/10/2021 - [] D -- C:\Program Files (x86)\FormatFactory [Unsigned] =>.FormatFactory O43 - CFD: 05/11/2021 - [] D -- C:\Program Files (x86)\Google =>.Google LLC® O43 - CFD: 18/10/2021 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield O43 - CFD: 09/10/2021 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation O43 - CFD: 09/10/2021 - [] D -- C:\Program Files (x86)\Internet Download Manager =>.Tonec Inc O43 - CFD: 14/10/2021 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation O43 - CFD: 14/10/2021 - [] D -- C:\Program Files (x86)\Microsoft =>.Microsoft Corporation O43 - CFD: 10/10/2021 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services =>.Microsoft Corporation O43 - CFD: 10/10/2021 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation O43 - CFD: 10/10/2021 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition =>.Microsoft Corporation O43 - CFD: 10/10/2021 - [] D -- C:\Program Files (x86)\Microsoft Sync Framework =>.Microsoft Corporation O43 - CFD: 10/10/2021 - [] D -- C:\Program Files (x86)\Microsoft Synchronization Services =>.Microsoft Corporation O43 - CFD: 09/10/2021 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8 =>.Microsoft Corporation O43 - CFD: 05/11/2021 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation O43 - CFD: 10/10/2021 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation O43 - CFD: 05/11/2021 - [] D -- C:\Program Files (x86)\MSECache =>.Microsoft Corporation O43 - CFD: 14/10/2021 - [0] D -- C:\Program Files (x86)\MSXML 4.0 =>.Microsoft Corporation O43 - CFD: 14/10/2021 - [] D -- C:\Program Files (x86)\Nero =>.Ahead Corporation O43 - CFD: 09/10/2021 - [] D -- C:\Program Files (x86)\Okdo PDF Encrypter [Unsigned] O43 - CFD: 09/10/2021 - [] D -- C:\Program Files (x86)\PhotoScape =>.Mooii Tech Software O43 - CFD: 13/10/2021 - [] D -- C:\Program Files (x86)\Quran_in_Word [Unsigned] O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation O43 - CFD: 09/10/2021 - [] D -- C:\Program Files (x86)\Samsung =>.Samsung Electronics O43 - CFD: 09/10/2021 - [] D -- C:\Program Files (x86)\SamsungPrinterLiveUpdate =>.Samsung Electronics O43 - CFD: 20/10/2021 - [] D -- C:\Program Files (x86)\TechSmith =>.TechSmith O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information =>.Microsoft Corporation O43 - CFD: 09/10/2021 - [] D -- C:\Program Files (x86)\VS Revo Group =>.VS Revo Group O43 - CFD: 18/10/2021 - [] D -- C:\Program Files (x86)\Webcam [Unsigned] O43 - CFD: 05/11/2021 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation O43 - CFD: 05/11/2021 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation O43 - CFD: 05/11/2021 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation O43 - CFD: 05/11/2021 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation O43 - CFD: 05/11/2021 - [] D -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation O43 - CFD: 09/10/2021 - [] D -- C:\Program Files (x86)\WinRAR [Unsigned] =>.WinRAR O43 - CFD: 09/10/2021 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation O43 - CFD: 14/10/2021 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools O43 - CFD: 05/11/2021 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner =>.Piriform Ltd O43 - CFD: 18/10/2021 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID =>.CPUID Inc O43 - CFD: 25/10/2021 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET =>.ESET O43 - CFD: 18/10/2021 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2 O43 - CFD: 12/04/2011 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation O43 - CFD: 09/10/2021 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc O43 - CFD: 10/10/2021 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kutools for Word =>.Addin Technology Inc O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation O43 - CFD: 10/10/2021 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office =>.Microsoft Corporation O43 - CFD: 14/10/2021 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 8 =>.Ahead Corporation O43 - CFD: 09/10/2021 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Okdo PDF Encrypter O43 - CFD: 09/10/2021 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape =>.Mooii Tech Software O43 - CFD: 14/10/2021 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO =>.PowerISO Computing O43 - CFD: 05/11/2021 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro =>.VS Revo Group O43 - CFD: 09/10/2021 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers =>.Samsung Electronics O43 - CFD: 10/10/2021 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint =>.Microsoft Corporation O43 - CFD: 09/10/2021 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation O43 - CFD: 20/10/2021 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith =>.TechSmith O43 - CFD: 18/10/2021 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB2.0 PC Camera =>.USB2.0 PC Camera O43 - CFD: 09/10/2021 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLan Team O43 - CFD: 09/10/2021 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR O43 - CFD: 09/10/2021 - [] D -- C:\ProgramData\Adobe =>.Adobe O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation O43 - CFD: 25/10/2021 - [] D -- C:\ProgramData\ESET =>.ESET O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites =>.Microsoft Corporation O43 - CFD: 09/10/2021 - [0] D -- C:\ProgramData\IDM =>.IDM O43 - CFD: 18/10/2021 - [] D -- C:\ProgramData\InstallShield =>.InstallShield O43 - CFD: 14/10/2021 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation O43 - CFD: 10/10/2021 - [] D -- C:\ProgramData\Microsoft Help =>.Microsoft Corporation O43 - CFD: 14/10/2021 - [] D -- C:\ProgramData\Nero =>.Ahead Corporation O43 - CFD: 05/11/2021 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation O43 - CFD: 20/10/2021 - [] D -- C:\ProgramData\Real =>.RealNetworks Inc. O43 - CFD: 20/10/2021 - [] D -- C:\ProgramData\regid.1995-08.com.techsmith =>.TechSmith Corporation O43 - CFD: 05/11/2021 - [] D -- C:\ProgramData\Samsung =>.Samsung Electronics O43 - CFD: 20/10/2021 - [0] D -- C:\ProgramData\Skype =>.Skype O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation O43 - CFD: 20/10/2021 - [] D -- C:\ProgramData\TechSmith =>.TechSmith O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation O43 - CFD: 05/11/2021 - [] D -- C:\ProgramData\VS Revo Group =>.VS Revo Group O43 - CFD: 09/10/2021 - [0] SHD -- C:\ProgramData\سطح المكتب O43 - CFD: 09/10/2021 - [0] SHD -- C:\ProgramData\قائمة ابدأ O43 - CFD: 09/10/2021 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe O43 - CFD: 09/10/2021 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR =>.Adobe Inc. O43 - CFD: 10/10/2021 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER =>.Designer O43 - CFD: 18/10/2021 - [] D -- C:\Program Files (x86)\Common Files\InstallShield =>.InstallShield O43 - CFD: 10/10/2021 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared =>.Microsoft Corporation O43 - CFD: 14/10/2021 - [] D -- C:\Program Files (x86)\Common Files\Nero =>.Ahead Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation O43 - CFD: 20/10/2021 - [] D -- C:\Program Files (x86)\Common Files\Skype =>.Skype O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines =>.Microsoft Corporation O43 - CFD: 10/10/2021 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation O43 - CFD: 20/10/2021 - [] D -- C:\Program Files (x86)\Common Files\TechSmith Shared =>.TechSmith O43 - CFD: 09/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Roaming\Adobe =>.Adobe O43 - CFD: 05/11/2021 - [] D -- C:\Users\LAID SOFI\AppData\Roaming\DMCache =>.DMCache O43 - CFD: 09/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Roaming\Identities =>.Microsoft Corporation O43 - CFD: 05/11/2021 - [] D -- C:\Users\LAID SOFI\AppData\Roaming\IDM =>.IDM O43 - CFD: 18/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Roaming\InstallShield =>.InstallShield O43 - CFD: 09/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Roaming\Macromedia =>.Macromedia O43 - CFD: 12/04/2011 - [0] D -- C:\Users\LAID SOFI\AppData\Roaming\Media Center Programs =>.Microsoft Corporation O43 - CFD: 18/10/2021 - [] SD -- C:\Users\LAID SOFI\AppData\Roaming\Microsoft =>.Microsoft Corporation O43 - CFD: 14/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Roaming\Nero =>.Ahead Corporation O43 - CFD: 05/11/2021 - [0] D -- C:\Users\LAID SOFI\AppData\Roaming\PhotoScape =>.Mooii Tech Software O43 - CFD: 14/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Roaming\PowerISO =>.PowerISO Computing O43 - CFD: 20/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Roaming\TechSmith =>.TechSmith O43 - CFD: 05/11/2021 - [] D -- C:\Users\LAID SOFI\AppData\Roaming\vlc =>.VideoLan Team O43 - CFD: 09/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Roaming\WinRAR =>.WinRAR O43 - CFD: 09/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Roaming\YCanPDF =>.YCanPDF O43 - CFD: 05/11/2021 - [] D -- C:\Users\LAID SOFI\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 09/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Local\Adobe =>.Adobe O43 - CFD: 14/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Local\Ahead =>.Ahead Corporation O43 - CFD: 09/10/2021 - [0] SHD -- C:\Users\LAID SOFI\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 09/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Local\assembly =>.Assembly O43 - CFD: 05/11/2021 - [0] D -- C:\Users\LAID SOFI\AppData\Local\CrashDumps =>.Microsoft Corporation O43 - CFD: 13/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Local\ESET =>.ESET O43 - CFD: 10/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Local\fontconfig =>.Portable Apps O43 - CFD: 04/11/2021 - [] D -- C:\Users\LAID SOFI\AppData\Local\Google =>.Google O43 - CFD: 09/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Local\History =>.Microsoft Corporation O43 - CFD: 10/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Local\mbam =>.Malwarebytes O43 - CFD: 10/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Local\mbamtray =>.Malwarebytes O43 - CFD: 05/11/2021 - [] D -- C:\Users\LAID SOFI\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 09/10/2021 - [0] D -- C:\Users\LAID SOFI\AppData\Local\Microsoft Help =>.Microsoft Corporation O43 - CFD: 09/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Local\Programs =>.Microsoft Corporation O43 - CFD: 20/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Local\TechSmith =>.TechSmith O43 - CFD: 05/11/2021 - [] D -- C:\Users\LAID SOFI\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 09/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 17/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Local\VirtualStore =>.Microsoft Corporation O43 - CFD: 05/11/2021 - [] D -- C:\Users\LAID SOFI\AppData\Local\VS Revo Group =>.VS Revo Group O43 - CFD: 30/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Local\ZHP =>.Nicolas Coolman O43 - CFD: 09/10/2021 - [0] D -- C:\Users\LAID SOFI\AppData\Local\Programs\Common =>.Microsoft Corporation O43 - CFD: 09/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\LocalLow\Adobe =>.Adobe O43 - CFD: 04/11/2021 - [] D -- C:\Users\LAID SOFI\AppData\LocalLow\Google =>.Google O43 - CFD: 09/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\LocalLow\Microsoft =>.Microsoft Corporation O43 - CFD: 05/11/2021 - [] D -- C:\Users\LAID SOFI\Desktop\مجلد جديد ‫‬ O43 - CFD: 14/07/2009 - [] RD -- C:\Users\LAID SOFI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation O43 - CFD: 14/10/2021 - [] RD -- C:\Users\LAID SOFI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools O43 - CFD: 10/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory =>.FormatFactory O43 - CFD: 09/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc O43 - CFD: 05/11/2021 - [0] D -- C:\Users\LAID SOFI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\KMS Tools O43 - CFD: 14/07/2009 - [] RD -- C:\Users\LAID SOFI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation O43 - CFD: 14/10/2021 - [] RD -- C:\Users\LAID SOFI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation O43 - CFD: 09/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR O43 - CFD: 09/10/2021 - [] D -- C:\Users\LAID SOFI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\مشغل الفلاش العربي O43 - CFD: 05/11/2021 - [] D -- C:\Users\LAID SOFI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\‏تطبيقات Chrome O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default\AppData\Local\History =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default User\AppData\Local\History =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] SD -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft Corporation ---\\ ShellIconOverlayIdentifiers (SIOI) (9) - 0s O106 - SIOI: [ IDM Shell Extension] - {CDC95B92-E27C-4745-A8C5-64A52A78855D}. (.Tonec FZE - Internet Download Manager Shell Extension.) -- C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll =>.Tonec Inc.® O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - مكتبة DLL الخاصة بملحق Shell للتخزين المحسّ.) -- C:\Windows\System32\EhStorShell.dll [Unsigned] =>.Microsoft Corporation O106 - SIOI: Groove Explorer Icon Overlay 1 (GFS Unread Stub) [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] - {99FD978C-D287-4F50-827F-B2C658EDA8E7}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Groove Explorer Icon Overlay 2 (GFS Stub) [Groove Explorer Icon Overlay 2 (GFS Stub)] - {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] - {920E6DB1-9907-4370-B3A0-BAFC03D81399}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Groove Explorer Icon Overlay 3 (GFS Folder) [Groove Explorer Icon Overlay 3 (GFS Folder)] - {16F3DD56-1AF5-4347-846D-7C10C4192619}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Groove Explorer Icon Overlay 4 (GFS Unread Mark) [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] - {2916C86E-86A6-43FE-8112-43ABE6BF8DCC}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - واجهة مستخدم ذاكرة التخزين المؤقت من جانب ا.) -- C:\Windows\System32\cscui.dll [Unsigned] =>.Microsoft Corporation O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - امتداد Shell الخاص بالمشاركة.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation ---\\ Search Context Menu Handlers (SCMH) (42) - 2s O108 - CMH1: BriefcaseMenu [64Bits] - {85BBD920-42A0-1069-A2E4-08002B30309D} . (.Microsoft Corporation - حقيبة ملفات Windows.) -- C:\Windows\System32\syncui.dll [Unsigned] =>.Microsoft Corporation O108 - CMH1: Cover Designer [64Bits] - {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} . (.Orphan.) [Unsigned] O108 - CMH1: ESET Security Shell [64Bits] - {B089FE88-FB52-11D3-BDF1-0050DA34150D} . (.ESET - ESET Shell Extension.) -- C:\Program Files\ESET\ESET Security\shellExt.dll =>.ESET, spol. s r.o.® O108 - CMH1: FormatFactoryShell [64Bits] - {A3888923-CFD3-4A6B-89BF-08E6B95716E8} . (.Free Time - FormatFactory Shell Menu Module.) -- C:\Program Files (x86)\FormatFactory\ShellEx64_105.dll [Unsigned] =>.Free Time O108 - CMH1: Open With [64Bits] - {09799AFB-AD67-11d1-ABCD-00C04FC30936} . (.Microsoft Corporation - مكتبة الارتباط الديناميكي لـ Windows Shell.) -- C:\Windows\System32\shell32.dll [Unsigned] =>.Microsoft Corporation O108 - CMH1: Open With EncryptionMenu [64Bits] - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - مكتبة الارتباط الديناميكي لـ Windows Shell.) -- C:\Windows\System32\shell32.dll [Unsigned] =>.Microsoft Corporation O108 - CMH1: PowerISO [64Bits] - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} . (.Power Software Ltd - PowerISOShell DLL.) -- C:\Program Files\PowerISO\PWRISOSH.DLL {19EA4DAF089570861408E9F05EFD9B89}. =>.Power Software Ltd O108 - CMH1: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - امتداد Shell الخاص بالمشاركة.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation O108 - CMH1: SnagItMainShellExt [64Bits] - {CF74B903-3389-469c-B3B6-0204D204FCBD} . (.TechSmith Corporation - Snagit Shell Extension DLL.) -- C:\Program Files (x86)\TechSmith\Snagit 12\DLLx64\SnagitShellExt64.dll =>.TechSmith Corporation® O108 - CMH1: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files (x86)\WinRAR\RarExt64.dll =>.win.rar GmbH® O108 - CMH1: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.) [Unsigned] O108 - CMH1: XXX Groove GFS Context Menu Handler XXX [64Bits] - {6C467336-8281-4E60-8204-430CED96822D} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation® O108 - CMH2: Compatibility [64Bits] - {1d27f844-3a1f-4410-85ac-14651078412d} . (.Microsoft Corporation - مكتبة ملحق Shell لعلامة تبويب التوافق.) -- C:\Windows\System32\acppage.dll [Unsigned] =>.Microsoft Corporation O108 - CMH2: ESET Security Shell [64Bits] - {B089FE88-FB52-11D3-BDF1-0050DA34150D} . (.ESET - ESET Shell Extension.) -- C:\Program Files\ESET\ESET Security\shellExt.dll =>.ESET, spol. s r.o.® O108 - CMH2: OpenContainingFolderMenu [64Bits] - {37ea3a21-7493-4208-a011-7f9ea79ce9f5} . (.Microsoft Corporation - مكتبة الارتباط الديناميكي لـ Windows Shell.) -- C:\Windows\System32\shell32.dll [Unsigned] =>.Microsoft Corporation O108 - CMH2: RUShellExt [64Bits] - {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} . (.VS Revo Group - Revo Uninstaller Pro Extension.) -- C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll =>.VS Revo Group Ltd.® O108 - CMH3: CopyAsPathMenu [64Bits] - {f3d06e7c-1e45-4a26-847e-f9fcdee59be0} . (.Microsoft Corporation - مكتبة الارتباط الديناميكي لـ Windows Shell.) -- C:\Windows\System32\shell32.dll [Unsigned] =>.Microsoft Corporation O108 - CMH3: SendTo [64Bits] - {7BA4C740-9E81-11CF-99D3-00AA004AE837} . (.Microsoft Corporation - مكتبة الارتباط الديناميكي لـ Windows Shell.) -- C:\Windows\System32\shell32.dll [Unsigned] =>.Microsoft Corporation O108 - CMH3: XXX Groove GFS Context Menu Handler XXX [64Bits] - {6C467336-8281-4E60-8204-430CED96822D} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation® O108 - CMH4: EncryptionMenu [64Bits] - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - مكتبة الارتباط الديناميكي لـ Windows Shell.) -- C:\Windows\System32\shell32.dll [Unsigned] =>.Microsoft Corporation O108 - CMH4: FormatFactoryShell [64Bits] - {A3888923-CFD3-4A6B-89BF-08E6B95716E8} . (.Free Time - FormatFactory Shell Menu Module.) -- C:\Program Files (x86)\FormatFactory\ShellEx64_105.dll [Unsigned] =>.Free Time O108 - CMH4: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - واجهة مستخدم ذاكرة التخزين المؤقت من جانب ا.) -- C:\Windows\System32\cscui.dll [Unsigned] =>.Microsoft Corporation O108 - CMH4: PowerISO [64Bits] - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} . (.Power Software Ltd - PowerISOShell DLL.) -- C:\Program Files\PowerISO\PWRISOSH.DLL {19EA4DAF089570861408E9F05EFD9B89}. =>.Power Software Ltd O108 - CMH4: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - امتداد Shell الخاص بالمشاركة.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation O108 - CMH4: SnagItMainShellExt [64Bits] - {CF74B903-3389-469c-B3B6-0204D204FCBD} . (.TechSmith Corporation - Snagit Shell Extension DLL.) -- C:\Program Files (x86)\TechSmith\Snagit 12\DLLx64\SnagitShellExt64.dll =>.TechSmith Corporation® O108 - CMH4: XXX Groove GFS Context Menu Handler XXX [64Bits] - {6C467336-8281-4E60-8204-430CED96822D} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation® O108 - CMH5: Gadgets [64Bits] - {6B9228DA-9C15-419e-856C-19E768A13BDC} . (.Microsoft Corporation - Sidebar droptarget.) -- C:\Program Files\Windows Sidebar\sbdrop.dll [Unsigned] =>.Microsoft Corporation O108 - CMH5: New [64Bits] - {D969A300-E7FF-11d0-A93B-00A0C90F2719} . (.Microsoft Corporation - مكتبة الارتباط الديناميكي لـ Windows Shell.) -- C:\Windows\System32\shell32.dll [Unsigned] =>.Microsoft Corporation O108 - CMH5: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - امتداد Shell الخاص بالمشاركة.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation O108 - CMH5: XXX Groove GFS Context Menu Handler XXX [64Bits] - {6C467336-8281-4E60-8204-430CED96822D} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation® O108 - CMH6: BriefcaseMenu [64Bits] - {85BBD920-42A0-1069-A2E4-08002B30309D} . (.Microsoft Corporation - حقيبة ملفات Windows.) -- C:\Windows\System32\syncui.dll [Unsigned] =>.Microsoft Corporation O108 - CMH6: ESET Security Shell [64Bits] - {B089FE88-FB52-11D3-BDF1-0050DA34150D} . (.ESET - ESET Shell Extension.) -- C:\Program Files\ESET\ESET Security\shellExt.dll =>.ESET, spol. s r.o.® O108 - CMH6: Library Location [64Bits] - {3dad6c5d-2167-4cae-9914-f99e41c12cfa} . (.Microsoft Corporation - مكتبة الارتباط الديناميكي لـ Windows Shell.) -- C:\Windows\System32\shell32.dll [Unsigned] =>.Microsoft Corporation O108 - CMH6: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - واجهة مستخدم ذاكرة التخزين المؤقت من جانب ا.) -- C:\Windows\System32\cscui.dll [Unsigned] =>.Microsoft Corporation O108 - CMH6: PowerISO [64Bits] - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} . (.Power Software Ltd - PowerISOShell DLL.) -- C:\Program Files\PowerISO\PWRISOSH.DLL {19EA4DAF089570861408E9F05EFD9B89}. =>.Power Software Ltd O108 - CMH6: RUShellExt [64Bits] - {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} . (.VS Revo Group - Revo Uninstaller Pro Extension.) -- C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll =>.VS Revo Group Ltd.® O108 - CMH6: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files (x86)\WinRAR\RarExt64.dll =>.win.rar GmbH® O108 - CMH6: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.) [Unsigned] O108 - CMH6: XXX Groove GFS Context Menu Handler XXX [64Bits] - {6C467336-8281-4E60-8204-430CED96822D} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation® O108 - CMH7: EnhancedStorageShell [64Bits] - {2854F705-3548-414C-A113-93E27C808C85} . (.Microsoft Corporation - مكتبة DLL الخاصة بملحق Shell للتخزين المحسّ.) -- C:\Windows\System32\EhStorShell.dll [Unsigned] =>.Microsoft Corporation O108 - CMH7: ESET Security Shell [64Bits] - {B089FE88-FB52-11D3-BDF1-0050DA34150D} . (.ESET - ESET Shell Extension.) -- C:\Program Files\ESET\ESET Security\shellExt.dll =>.ESET, spol. s r.o.® O108 - CMH7: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - امتداد Shell الخاص بالمشاركة.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation ---\\ Image File Execution Options (4) - 0s O50 - IFEO:C:\Windows\System32\ie4uinit.exe - (.Microsoft Corporation - ‎‎الأداة المساعدة للتهيئة لكل مستخدم لـ IE.) [MitigationOptions\\256] [Unsigned] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - ‎‎أداة التثبيت المساعدة غير المراقبة لـ IE.) [MitigationOptions\\256] [Unsigned] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] [Unsigned] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - ‎‎مضيف تطبيق Microsoft (R) HTML.) [MitigationOptions\\256] [Unsigned] =>.Microsoft Corporation ---\\ System Drivers List (302) - 10s O58 - SDL:2009/07/14 01:06:38 A . (.Microsoft Corporation - 1394 Bus Device Driver.) -- C:\Windows\System32\drivers\1394bus.sys [68096] [Unsigned] =>.Microsoft Corporation O58 - SDL:2010/11/21 04:23:47 A . (.Microsoft Corporation - 1394 OpenHCI Driver.) -- C:\Windows\System32\drivers\1394ohci.sys [229888] [Unsigned] =>.Microsoft Corporation O58 - SDL:2018/02/10 19:35:38 A . (.Microsoft Corporation - برنامج تشغيل ACPI الخاص بـ NT.) -- C:\Windows\System32\drivers\acpi.sys [334528] =>.Microsoft Windows® O58 - SDL:2010/11/21 04:23:47 A . (.Microsoft Corporation - ACPI Power Metering Driver.) -- C:\Windows\System32\drivers\acpipmi.sys [12800] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] =>.Microsoft Windows® O58 - SDL:2017/04/04 15:53:18 A . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\afd.sys [496128] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:10:24 A . (.Microsoft Corporation - RAS Agile Vpn Miniport Call Manager.) -- C:\Windows\System32\drivers\agilevpn.sys [60416] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/04/19 03:43:45 A . (.Microsoft Corporation - عامل تصفية 440 NT AGP.) -- C:\Windows\System32\drivers\AGP440.sys [60648] =>.Microsoft® O58 - SDL:2009/07/14 02:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:52:21 A . (.Microsoft Corporation - برنامج تشغيل AMD IDE.) -- C:\Windows\System32\drivers\amdide.sys [15440] =>.Microsoft Windows® O58 - SDL:2020/01/03 03:55:43 A . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\drivers\amdk8.sys [64512] [Unsigned] =>.Microsoft Corporation O58 - SDL:2020/01/03 03:55:43 A . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\drivers\amdppm.sys [60928] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/05/15 14:00:52 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] =>.Microsoft Windows® O58 - SDL:2016/05/15 14:00:52 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] =>.Microsoft Windows® O58 - SDL:2020/01/03 04:05:05 A . (.Microsoft Corporation - AppID Driver.) -- C:\Windows\System32\drivers\appid.sys [62464] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:10:13 A . (.Microsoft Corporation - MS Remote Access serial network driver.) -- C:\Windows\System32\drivers\asyncmac.sys [23040] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:52:21 A . (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] =>.Microsoft Windows® O58 - SDL:2016/05/15 14:11:38 A . (.Microsoft Corporation - ATAPI Driver Extension.) -- C:\Windows\System32\drivers\ataport.sys [155584] =>.Microsoft® O58 - SDL:2009/06/10 21:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] [Unsigned] =>.Broadcom Corporation O58 - SDL:2009/07/14 02:52:21 A . (.Microsoft Corporation - Battery Class Driver.) -- C:\Windows\System32\drivers\battc.sys [28240] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:00:13 A . (.Microsoft Corporation - BEEP Driver.) -- C:\Windows\System32\drivers\beep.sys [6656] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 00:35:59 A . (.Microsoft Corporation - BLB Drive Driver.) -- C:\Windows\System32\drivers\blbdrive.sys [45056] [Unsigned] =>.Microsoft Corporation O58 - SDL:2018/07/18 16:18:04 A . (.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) -- C:\Windows\System32\drivers\bowser.sys [90112] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/06/10 21:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] [Unsigned] =>.Brother Industries, Ltd. O58 - SDL:2009/06/10 21:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] [Unsigned] =>.Brother Industries, Ltd. O58 - SDL:2019/02/07 17:01:53 A . (.Microsoft Corporation - MAC Bridge Driver.) -- C:\Windows\System32\drivers\bridge.sys [95232] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:19:07 A . (.Brother Industries Ltd. - برنامج تشغيل I/F التسلسلي لـ Brotehr (WDM)‎.) -- C:\Windows\System32\drivers\BrSerId.sys [286720] [Unsigned] =>.Brother Industries Ltd. O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] [Unsigned] =>.Brother Industries Ltd. O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] [Unsigned] =>.Brother Industries Ltd. O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] [Unsigned] =>.Brother Industries Ltd. O58 - SDL:2009/07/14 01:06:52 A . (.Microsoft Corporation - Bluetooth Communications Driver.) -- C:\Windows\System32\drivers\bthmodem.sys [72192] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/06/10 21:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] [Unsigned] =>.Broadcom Corporation O58 - SDL:2019/02/10 16:35:32 A . (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\cdfs.sys [92672] [Unsigned] =>.Microsoft Corporation O58 - SDL:2010/11/21 04:23:47 A . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\cdrom.sys [147456] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:06:34 A . (.Microsoft Corporation - Consumer IR Class Driver for eHome.) -- C:\Windows\System32\drivers\circlass.sys [45568] [Unsigned] =>.Microsoft Corporation O58 - SDL:2010/11/21 04:24:24 A . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\Windows\System32\drivers\Classpnp.sys [179072] =>.Microsoft Windows® O58 - SDL:2009/07/14 00:31:03 A . (.Microsoft Corporation - Control Method Battery Driver.) -- C:\Windows\System32\drivers\CmBatt.sys [17664] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] =>.Microsoft Windows® O58 - SDL:2018/11/18 03:43:42 A . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\drivers\cng.sys [467856] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:52:31 A . (.Microsoft Corporation - Composite Battery Driver.) -- C:\Windows\System32\drivers\compbatt.sys [21584] =>.Microsoft Windows® O58 - SDL:2010/11/21 04:23:47 A . (.Microsoft Corporation - Multi-Transport Composite Bus Enumerator.) -- C:\Windows\System32\drivers\CompositeBus.sys [38912] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:47:48 A . (.Microsoft Corporation - Crash Dump Driver.) -- C:\Windows\System32\drivers\crashdmp.sys [39504] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:47:48 A . (.Microsoft Corporation - Disk Block Verification Filter Driver.) -- C:\Windows\System32\drivers\crcdisk.sys [24144] =>.Microsoft Windows® O58 - SDL:2018/06/29 16:14:19 A . (.Microsoft Corporation - Windows Client Side Caching Driver.) -- C:\Windows\System32\drivers\csc.sys [516096] [Unsigned] =>.Microsoft Corporation O58 - SDL:2018/04/25 16:18:53 A . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\dfsc.sys [115200] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 00:37:18 A . (.Microsoft Corporation - System Indexer/Cache Driver.) -- C:\Windows\System32\drivers\discache.sys [40448] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/05/15 14:37:41 A . (.Microsoft Corporation - PnP Disk Driver.) -- C:\Windows\System32\drivers\disk.sys [73664] =>.Microsoft® O58 - SDL:2016/05/15 14:15:04 A . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\Windows\System32\drivers\Diskdump.sys [27584] =>.Microsoft® O58 - SDL:2016/09/23 17:36:15 A . (.Microsoft Corporation - Dynamic Memory.) -- C:\Windows\System32\drivers\dmvsc.sys [29696] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/05/15 14:35:04 A . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\drivers\drmk.sys [116736] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/05/15 14:35:04 A . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\drivers\drmkaud.sys [5632] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:47:48 A . (.Microsoft Corporation - ATAPI Dump Driver.) -- C:\Windows\System32\drivers\Dumpata.sys [28736] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:43:14 A . (.Microsoft Corporation - Bitlocker Drive Encryption Crashdump Filter.) -- C:\Windows\System32\drivers\dumpfve.sys [55128] =>.Microsoft Windows® O58 - SDL:2009/07/14 00:38:28 A . (.Microsoft Corporation - DirectX API Driver.) -- C:\Windows\System32\drivers\dxapi.sys [16896] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 00:38:28 A . (.Microsoft Corporation - DirectX Graphics Driver.) -- C:\Windows\System32\drivers\dxg.sys [98816] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/08/13 23:19:53 A . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\drivers\dxgkrnl.sys [988384] =>.Microsoft® O58 - SDL:2019/08/13 23:19:53 A . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\Windows\System32\drivers\dxgmms1.sys [267488] =>.Microsoft® O58 - SDL:2021/10/12 08:50:06 A . (.ESET - ESET real-time file system monitor.) -- C:\Windows\System32\drivers\eamonm.sys [183408] =>.ESET, spol. s r.o.® O58 - SDL:2021/10/12 08:50:06 A . (.ESET - Devmon monitor.) -- C:\Windows\System32\drivers\edevmon.sys [124496] =>.ESET, spol. s r.o.® O58 - SDL:2021/10/12 08:50:06 A . (.ESET - ESET Helper driver.) -- C:\Windows\System32\drivers\ehdrv.sys [201984] =>.ESET, spol. s r.o.® O58 - SDL:2021/10/12 08:50:06 A . (.ESET - ESET OPP Keyboard Filter.) -- C:\Windows\System32\drivers\ekbdflt.sys [43920] =>.ESET, spol. s r.o.® O58 - SDL:2009/07/14 02:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] =>.Microsoft Windows® O58 - SDL:2021/10/12 08:50:06 A . (.ESET - ESET Firewall Driver.) -- C:\Windows\System32\drivers\epfw.sys [69736] =>.ESET, spol. s r.o.® O58 - SDL:2021/10/12 08:50:06 A . (.ESET - Epfw NDIS LightWeight Filter.) -- C:\Windows\System32\drivers\EpfwLWF.sys [55840] =>.ESET, spol. s r.o.® O58 - SDL:2021/10/12 08:50:06 A . (.ESET - ESET Firewall Driver.) -- C:\Windows\System32\drivers\epfwwfp.sys [107456] =>.ESET, spol. s r.o.® O58 - SDL:2018/02/10 18:25:26 A . (.Microsoft Corporation - Error Device Driver.) -- C:\Windows\System32\drivers\errdev.sys [9728] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/06/10 21:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] [Unsigned] =>.Broadcom Corporation O58 - SDL:2019/02/10 16:36:06 A . (.Microsoft Corporation - Microsoft Extended FAT File System.) -- C:\Windows\System32\drivers\exfat.sys [195584] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/02/10 16:36:06 A . (.Microsoft Corporation - Fast FAT File System Driver.) -- C:\Windows\System32\drivers\fastfat.sys [205312] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/09/23 17:36:14 A . (.Microsoft Corporation - Microsoft Virtual Fibre Channel HBA minipor.) -- C:\Windows\System32\drivers\fcvsc.sys [32768] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:00:54 A . (.Microsoft Corporation - Floppy Disk Controller Driver.) -- C:\Windows\System32\drivers\fdc.sys [29696] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:47:48 A . (.Microsoft Corporation - FileInfo Filter Driver.) -- C:\Windows\System32\drivers\fileinfo.sys [70224] =>.Microsoft Windows® O58 - SDL:2009/07/14 00:25:40 A . (.Microsoft Corporation - File Trace Filter Driver.) -- C:\Windows\System32\drivers\filetrace.sys [34304] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:00:54 A . (.Microsoft Corporation - Floppy Driver.) -- C:\Windows\System32\drivers\flpydisk.sys [24576] [Unsigned] =>.Microsoft Corporation O58 - SDL:2018/01/01 03:21:11 A . (.Microsoft Corporation - إدارة عوامل تصفية نظام ملفات Microsoft.) -- C:\Windows\System32\drivers\fltMgr.sys [288488] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:47:49 A . (.Microsoft Corporation - File System Dependency Manager Mini Filter.) -- C:\Windows\System32\drivers\fsdepends.sys [55376] =>.Microsoft Windows® O58 - SDL:2016/05/15 14:14:20 A . (.Microsoft Corporation - File System Recognizer Driver.) -- C:\Windows\System32\drivers\fs_rec.sys [23408] =>.Microsoft Windows® O58 - SDL:2016/05/15 14:09:18 A . (.Microsoft Corporation - BitLocker Drive Encryption Driver.) -- C:\Windows\System32\drivers\fvevol.sys [223752] =>.Microsoft® O58 - SDL:2019/07/13 09:36:19 A . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\drivers\FWPKCLNT.SYS [289720] =>.Microsoft® O58 - SDL:2009/07/14 02:47:48 A . (.Microsoft Corporation - عامل تصفية MS Generic AGPv3.0 الخاص بالأنظم.) -- C:\Windows\System32\drivers\GAGP30KX.SYS [65088] =>.Microsoft Windows® O58 - SDL:2009/06/10 21:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] [Unsigned] =>.Hauppauge Computer Works, Inc. O58 - SDL:2010/11/21 04:23:47 A . (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\hdaudbus.sys [122368] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/08/27 03:34:01 A . (.Microsoft Corporation - High Definition Audio Function Driver.) -- C:\Windows\System32\drivers\HdAudio.sys [350208] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 00:31:06 A . (.Microsoft Corporation - Hid Battery Driver.) -- C:\Windows\System32\drivers\hidbatt.sys [26624] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:06:52 A . (.Microsoft Corporation - برنامج تشغيل منفذ صغير Bluetooth لأجهزة HID.) -- C:\Windows\System32\drivers\hidbth.sys [100864] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/03/05 03:44:58 A . (.Microsoft Corporation - Hid Class Library.) -- C:\Windows\System32\drivers\hidclass.sys [76800] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:06:23 A . (.Microsoft Corporation - Infrared Miniport Driver for Input Devices.) -- C:\Windows\System32\drivers\hidir.sys [46592] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/03/05 03:44:58 A . (.Microsoft Corporation - Hid Parsing Library.) -- C:\Windows\System32\drivers\hidparse.sys [33280] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/03/05 03:44:59 A . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\Windows\System32\drivers\hidusb.sys [30208] [Unsigned] =>.Microsoft Corporation O58 - SDL:2007/06/18 13:13:12 A . (.Hewlett-Packard Development Company, L.P. - HpqKbFiltr Keyboard Filter Driver.) -- C:\Windows\System32\drivers\HpqKbFiltr.sys [18432] [Unsigned] =>.Hewlett-Packard Development Company, L.P. O58 - SDL:2010/11/21 04:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] =>.Microsoft Windows® O58 - SDL:2019/12/10 08:56:19 A . (.Microsoft Corporation - HTTP Protocol Stack.) -- C:\Windows\System32\drivers\http.sys [754176] [Unsigned] =>.Microsoft Corporation O58 - SDL:2010/11/21 04:24:24 A . (.Microsoft Corporation - Hardware Policy Driver.) -- C:\Windows\System32\drivers\hwpolicy.sys [14720] =>.Microsoft Windows® O58 - SDL:2016/09/23 17:36:15 A . (.Microsoft Corporation - Microsoft VMBus Synthetic Keyboard Driver.) -- C:\Windows\System32\drivers\hyperkbd.sys [13824] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 00:19:57 A . (.Microsoft Corporation - برنامج تشغيل منفذ i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/05/15 14:00:52 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] =>.Microsoft Windows® O58 - SDL:2018/12/20 00:05:20 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [229296] =>.Tonec Inc.® O58 - SDL:2011/10/13 20:05:48 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [10629184] [Unsigned] =>.Intel Corporation O58 - SDL:2009/07/14 02:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:48:04 A . (.Microsoft Corporation - Intel PCI IDE Driver.) -- C:\Windows\System32\drivers\intelide.sys [16960] =>.Microsoft Windows® O58 - SDL:2020/01/03 03:55:43 A . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\drivers\intelppm.sys [62464] [Unsigned] =>.Microsoft Corporation O58 - SDL:2010/11/21 04:24:27 A . (.Microsoft Corporation - IP FILTER DRIVER.) -- C:\Windows\System32\drivers\ipfltdrv.sys [82944] [Unsigned] =>.Microsoft Corporation O58 - SDL:2010/11/21 04:23:48 A . (.Microsoft Corporation - برنامج تشغيل WMI IPMI.) -- C:\Windows\System32\drivers\IPMIDrv.sys [78848] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:10:03 A . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\ipnat.sys [116224] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:09:02 A . (.Microsoft Corporation - IRDA Protocol Driver.) -- C:\Windows\System32\drivers\irda.sys [120320] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:08:59 A . (.Microsoft Corporation - Infra-Red Bus Enumerator.) -- C:\Windows\System32\drivers\irenum.sys [17920] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/04/19 03:43:21 A . (.Microsoft Corporation - برنامج تشغيل ناقل PNP ISA.) -- C:\Windows\System32\drivers\isapnp.sys [20200] =>.Microsoft® O58 - SDL:2009/07/14 02:48:04 A . (.Microsoft Corporation - برنامج تشغيل فئة لوحة المفاتيح.) -- C:\Windows\System32\drivers\kbdclass.sys [50768] =>.Microsoft Windows® O58 - SDL:2010/11/21 04:23:47 A . (.Microsoft Corporation - برنامج تشغيل عامل تصفية لوحة المفاتيح HID.) -- C:\Windows\System32\drivers\kbdhid.sys [33280] [Unsigned] =>.Microsoft Corporation O58 - SDL:2018/08/28 06:50:21 A . (.Microsoft Corporation - Kernel CSA Library.) -- C:\Windows\System32\drivers\ks.sys [243200] [Unsigned] =>.Microsoft Corporation O58 - SDL:2020/01/03 04:37:18 A . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\drivers\ksecdd.sys [96992] =>.Microsoft® O58 - SDL:2020/01/03 04:36:58 A . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\drivers\ksecpkg.sys [155360] =>.Microsoft® O58 - SDL:2009/07/14 01:00:19 A . (.Microsoft Corporation - Kernel Streaming WOW Thunk Service.) -- C:\Windows\System32\drivers\ksthunk.sys [20992] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:08:51 A . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) -- C:\Windows\System32\drivers\lltdio.sys [60928] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] =>.Microsoft Windows® O58 - SDL:2019/03/29 02:36:55 A . (.Microsoft Corporation - برنامج تشغيل عوامل تصفية إظهار ملفات LUA.) -- C:\Windows\System32\drivers\luafv.sys [114688] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:01:06 A . (.Microsoft Corporation - Medium changer class driver.) -- C:\Windows\System32\drivers\mcd.sys [22016] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:10:48 A . (.Microsoft Corporation - Modem Device Driver.) -- C:\Windows\System32\drivers\modem.sys [40448] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/09/10 02:52:59 A . (.Microsoft Corporation - Monitor Driver.) -- C:\Windows\System32\drivers\monitor.sys [30208] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:48:27 A . (.Microsoft Corporation - برنامج تشغيل فئة الماوس.) -- C:\Windows\System32\drivers\mouclass.sys [49216] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:00:20 A . (.Microsoft Corporation - برنامج تشغيل عامل تصفية الماوس HID.) -- C:\Windows\System32\drivers\mouhid.sys [31232] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/06/12 16:11:00 A . (.Microsoft Corporation - إدارة نقطة التحميل.) -- C:\Windows\System32\drivers\mountmgr.sys [94440] =>.Microsoft® O58 - SDL:2010/11/21 04:23:47 A . (.Microsoft Corporation - برنامج تشغيل ناقل دعم MultiPath.) -- C:\Windows\System32\drivers\mpio.sys [155008] =>.Microsoft Windows® O58 - SDL:2018/08/10 16:27:40 A . (.Microsoft Corporation - Microsoft Protection Service Driver.) -- C:\Windows\System32\drivers\mpsdrv.sys [77312] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/10/16 20:52:29 A . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\drivers\mrxdav.sys [142336] [Unsigned] =>.Microsoft Corporation O58 - SDL:2020/01/03 03:57:21 A . (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\mrxsmb.sys [161280] [Unsigned] =>.Microsoft Corporation O58 - SDL:2020/01/03 03:57:00 A . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\drivers\mrxsmb10.sys [291328] [Unsigned] =>.Microsoft Corporation O58 - SDL:2020/01/03 03:56:59 A . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\drivers\mrxsmb20.sys [129536] [Unsigned] =>.Microsoft Corporation O58 - SDL:2010/11/21 04:23:47 A . (.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) -- C:\Windows\System32\drivers\msahci.sys [31104] =>.Microsoft Windows® O58 - SDL:2010/11/21 04:23:47 A . (.Microsoft Corporation - الوحدة النمطية المحددة للجهاز لـ Microsoft.) -- C:\Windows\System32\drivers\msdsm.sys [140672] =>.Microsoft Windows® O58 - SDL:2019/02/03 16:36:04 A . (.Microsoft Corporation - Mailslot driver.) -- C:\Windows\System32\drivers\msfs.sys [26112] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:06:24 A . (.Microsoft Corporation - Pass-through HID to KMDF Filter Driver.) -- C:\Windows\System32\drivers\mshidkmdf.sys [8192] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/04/19 03:42:25 A . (.Microsoft Corporation - ISA Driver.) -- C:\Windows\System32\drivers\msisadrv.sys [15080] =>.Microsoft® O58 - SDL:2016/05/15 14:15:04 A . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\Windows\System32\drivers\msiscsi.sys [274880] =>.Microsoft® O58 - SDL:2009/07/14 01:00:18 A . (.Microsoft Corporation - MS KS Server.) -- C:\Windows\System32\drivers\mskssrv.sys [11136] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:00:17 A . (.Microsoft Corporation - MS Proxy Clock.) -- C:\Windows\System32\drivers\mspclock.sys [7168] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:00:17 A . (.Microsoft Corporation - MS Proxy Quality Manager.) -- C:\Windows\System32\drivers\mspqm.sys [6784] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/11/05 22:23:14 A . (.Microsoft Corporation - Kernel Remote Procedure Call Provider.) -- C:\Windows\System32\drivers\msrpc.sys [368352] =>.Microsoft® O58 - SDL:2019/04/19 03:43:43 A . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\Windows\System32\drivers\mssmbios.sys [31976] =>.Microsoft® O58 - SDL:2009/07/14 01:00:17 A . (.Microsoft Corporation - WDM Tee/Communication Transform Filter.) -- C:\Windows\System32\drivers\mstee.sys [8064] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:02:08 A . (.Microsoft Corporation - برنامج تشغيل HID باللمس المتعدد لـ Microsof.) -- C:\Windows\System32\drivers\MTConfig.sys [15360] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/05/15 14:20:49 A . (.Microsoft Corporation - Multiple UNC Provider Driver.) -- C:\Windows\System32\drivers\mup.sys [104896] =>.Microsoft® O58 - SDL:2018/07/06 17:09:54 A . (.Microsoft Corporation - برنامج التشغيل NDIS 6.20.) -- C:\Windows\System32\drivers\ndis.sys [947904] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:08:13 A . (.Microsoft Corporation - NDIS Packet Capture Filter Driver.) -- C:\Windows\System32\drivers\ndiscap.sys [35328] [Unsigned] =>.Microsoft Corporation O58 - SDL:2018/12/08 03:47:13 A . (.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) -- C:\Windows\System32\drivers\ndistapi.sys [24064] [Unsigned] =>.Microsoft Corporation O58 - SDL:2010/11/21 04:24:32 A . (.Microsoft Corporation - برنامج تشغيل I/O لوضع المستخدم NDIS.) -- C:\Windows\System32\drivers\ndisuio.sys [56832] [Unsigned] =>.Microsoft Corporation O58 - SDL:2010/11/21 04:24:08 A . (.Microsoft Corporation - MS PPP Framing Driver (Strong Encryption).) -- C:\Windows\System32\drivers\ndiswan.sys [164352] [Unsigned] =>.Microsoft Corporation O58 - SDL:2018/12/08 03:47:15 A . (.Microsoft Corporation - NDIS Proxy.) -- C:\Windows\System32\drivers\ndproxy.sys [58368] [Unsigned] =>.Microsoft Corporation O58 - SDL:2018/01/01 02:55:00 A . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\Windows\System32\drivers\netbios.sys [45056] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/02/21 16:37:54 A . (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netbt.sys [262656] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/07/13 09:35:09 A . (.Microsoft Corporation - Network I/O Subsystem.) -- C:\Windows\System32\drivers\netio.sys [378808] =>.Microsoft® O58 - SDL:2009/07/14 02:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] =>.Microsoft Windows® O58 - SDL:2020/01/03 03:55:59 A . (.Microsoft Corporation - NPFS Driver.) -- C:\Windows\System32\drivers\npfs.sys [44544] [Unsigned] =>.Microsoft Corporation O58 - SDL:2017/08/11 06:58:55 A . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\drivers\nsiproxy.sys [26112] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/02/10 17:10:47 A . (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [1680104] =>.Microsoft® O58 - SDL:2009/07/14 00:19:38 A . (.Microsoft Corporation - NULL Driver.) -- C:\Windows\System32\drivers\null.sys [6144] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/05/15 14:00:52 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] =>.Microsoft Windows® O58 - SDL:2016/05/15 14:00:52 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] =>.Microsoft Windows® O58 - SDL:2019/04/19 03:42:37 A . (.Microsoft Corporation - عامل تصفية NForce NT AGP.) -- C:\Windows\System32\drivers\NV_AGP.SYS [122600] =>.Microsoft® O58 - SDL:2017/09/13 16:05:20 A . (.Microsoft Corporation - برنامج تشغيل المنفذ المصغر NativeWiFi.) -- C:\Windows\System32\drivers\nwifi.sys [324608] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:06:45 A . (.Microsoft Corporation - 1394 OpenHCI Port Driver.) -- C:\Windows\System32\drivers\ohci1394.sys [72832] [Unsigned] =>.Microsoft Corporation O58 - SDL:2018/01/01 02:55:05 A . (.Microsoft Corporation - QoS Packet Scheduler.) -- C:\Windows\System32\drivers\pacer.sys [131584] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:00:41 A . (.Microsoft Corporation - برنامج تشغيل المنفذ المتوازي.) -- C:\Windows\System32\drivers\parport.sys [97280] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/05/15 14:05:55 A . (.Microsoft Corporation - Partition Management Driver.) -- C:\Windows\System32\drivers\partmgr.sys [75120] =>.Microsoft Windows® O58 - SDL:2019/04/19 03:44:22 A . (.Microsoft Corporation - عدّاد PCI الخاص بـ "التوصيل والتشغيل لـ NT".) -- C:\Windows\System32\drivers\pci.sys [185064] =>.Microsoft® O58 - SDL:2009/07/14 02:45:45 A . (.Microsoft Corporation - Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\pciide.sys [12352] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:45:46 A . (.Microsoft Corporation - PCI IDE Bus Driver Extension.) -- C:\Windows\System32\drivers\pciidex.sys [48720] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:45:45 A . (.Microsoft Corporation - برنامج تشغيل ناقل PCMCIA.) -- C:\Windows\System32\drivers\pcmcia.sys [220752] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:45:45 A . (.Microsoft Corporation - Performance Counters for Windows Driver.) -- C:\Windows\System32\drivers\pcw.sys [50768] =>.Microsoft Windows® O58 - SDL:2019/06/12 16:01:52 A . (.Microsoft Corporation - Protected Environment Authentication and Au.) -- C:\Windows\System32\drivers\PEAuth.sys [663552] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/05/15 14:35:04 A . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport.) -- C:\Windows\System32\drivers\portcls.sys [230400] [Unsigned] =>.Microsoft Corporation O58 - SDL:2020/01/03 03:55:43 A . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\drivers\processr.sys [60928] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:09:48 A . (.Microsoft Corporation - Microsoft Quality Windows Audio Video Exper.) -- C:\Windows\System32\drivers\qwavedrv.sys [46592] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:10:09 A . (.Microsoft Corporation - RAS Automatic Connection Driver.) -- C:\Windows\System32\drivers\rasacd.sys [14848] [Unsigned] =>.Microsoft Corporation O58 - SDL:2010/11/21 04:24:33 A . (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\rasl2tp.sys [129536] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:10:17 A . (.Microsoft Corporation - RAS PPPoE mini-port/call-manager driver.) -- C:\Windows\System32\drivers\raspppoe.sys [92672] [Unsigned] =>.Microsoft Corporation O58 - SDL:2010/11/21 04:24:33 A . (.Microsoft Corporation - Peer-to-Peer Tunneling Protocol.) -- C:\Windows\System32\drivers\raspptp.sys [111104] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:10:25 A . (.Microsoft Corporation - RAS SSTP Miniport Call Manager.) -- C:\Windows\System32\drivers\rassstp.sys [83968] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/09/10 02:49:51 A . (.Microsoft Corporation - برنامج تشغيل النظام الفرعي لتخزين القرص الم.) -- C:\Windows\System32\drivers\rdbss.sys [317440] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:17:46 A . (.Microsoft Corporation - Microsoft RDP Bus Device driver.) -- C:\Windows\System32\drivers\rdpbus.sys [24064] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:16:34 A . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\drivers\RDPCDD.sys [7680] [Unsigned] =>.Microsoft Corporation O58 - SDL:2010/11/21 04:25:07 A . (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [165888] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:16:34 A . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\drivers\RDPENCDD.sys [7680] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:16:35 A . (.Microsoft Corporation - RDP Reflector Driver Miniport.) -- C:\Windows\System32\drivers\RDPREFMP.sys [8192] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/05/15 14:03:36 A . (.Microsoft Corporation - Microsoft RDP Video Miniport driver.) -- C:\Windows\System32\drivers\rdpvideominiport.sys [19456] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/05/15 14:19:49 A . (.Microsoft Corporation - RDP Terminal Stack Driver.) -- C:\Windows\System32\drivers\rdpwd.sys [212480] [Unsigned] =>.Microsoft Corporation O58 - SDL:2018/01/01 03:21:11 A . (.Microsoft Corporation - ReadyBoost Driver.) -- C:\Windows\System32\drivers\rdyboost.sys [213736] =>.Microsoft Windows® O58 - SDL:2020/09/29 09:54:08 A . (.VS Revo Group - Revo Uninstaller Pro Minifilter.) -- C:\Windows\System32\drivers\revoflt.sys [47280] =>.VS Revo Group Ltd.® O58 - SDL:2016/05/15 14:34:40 A . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\Windows\System32\drivers\rmcast.sys [146944] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/05/15 14:06:41 A . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\Windows\System32\drivers\RNDISMP.sys [41472] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:10:47 A . (.Microsoft Corporation - Legacy Non-Pnp Modem Device Driver.) -- C:\Windows\System32\drivers\rootmdm.sys [11264] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:08:51 A . (.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) -- C:\Windows\System32\drivers\rspndr.sys [76800] [Unsigned] =>.Microsoft Corporation O58 - SDL:2011/10/18 19:53:14 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [2957544] =>.Realtek Semiconductor Corp® O58 - SDL:2008/10/29 22:29:56 A . (.Realtek Semiconductor Corporation - Realtek 10/100 X64 Driver.) -- C:\Windows\System32\drivers\Rtnic64.sys [52736] [Unsigned] =>.Realtek Semiconductor Corporation O58 - SDL:2010/11/21 04:23:47 A . (.Microsoft Corporation - SBP-2 Protocol Driver.) -- C:\Windows\System32\drivers\sbp2port.sys [103808] =>.Microsoft Windows® O58 - SDL:2017/06/07 01:36:28 A . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\Windows\System32\drivers\scdemu.sys [138296] =>.Power Software Limited® O58 - SDL:2010/11/21 04:24:09 A . (.Microsoft Corporation - برنامج تشغيل عامل تصفية قارئ البطاقة الذكية.) -- C:\Windows\System32\drivers\scfilter.sys [29696] [Unsigned] =>.Microsoft Corporation O58 - SDL:2010/11/21 04:24:00 A . (.Microsoft Corporation - SCSI Port Driver.) -- C:\Windows\System32\drivers\scsiport.sys [171392] =>.Microsoft Windows® O58 - SDL:2009/06/10 21:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] [Unsigned] =>.Rovi Corporation O58 - SDL:2009/07/14 01:00:33 A . (.Microsoft Corporation - Serial Port Enumerator.) -- C:\Windows\System32\drivers\serenum.sys [23552] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:00:40 A . (.Microsoft Corporation - Serial Device Driver.) -- C:\Windows\System32\drivers\serial.sys [94208] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:00:20 A . (.Microsoft Corporation - برنامج تشغيل عامل تصفية الماوس التسلسلي.) -- C:\Windows\System32\drivers\sermouse.sys [26624] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:01:01 A . (.Microsoft Corporation - Small Form Factor Disk Driver.) -- C:\Windows\System32\drivers\sffdisk.sys [14336] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:01:03 A . (.Microsoft Corporation - Small Form Factor MMC Protocol Driver.) -- C:\Windows\System32\drivers\sffp_mmc.sys [13824] [Unsigned] =>.Microsoft Corporation O58 - SDL:2010/11/21 04:23:47 A . (.Microsoft Corporation - Small Form Factor SD Protocol Driver.) -- C:\Windows\System32\drivers\sffp_sd.sys [14336] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:01:02 A . (.Microsoft Corporation - SCSI Floppy Driver.) -- C:\Windows\System32\drivers\sfloppy.sys [16896] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:09:09 A . (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:00:35 A . (.Microsoft Corporation - Smart Card Driver Library.) -- C:\Windows\System32\drivers\smclib.sys [20992] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:45:55 A . (.Microsoft Corporation - loader for security processor.) -- C:\Windows\System32\drivers\spldr.sys [19008] =>.Microsoft Windows® O58 - SDL:2009/06/10 21:48:43 A . (.Microsoft Corporation - security processor.) -- C:\Windows\System32\drivers\spsys.sys [426496] [Unsigned] =>.Microsoft Corporation O58 - SDL:2020/01/03 03:57:25 A . (.Microsoft Corporation - Server driver.) -- C:\Windows\System32\drivers\srv.sys [464384] [Unsigned] =>.Microsoft Corporation O58 - SDL:2020/01/03 03:57:08 A . (.Microsoft Corporation - Smb 2.0 Server driver.) -- C:\Windows\System32\drivers\srv2.sys [406016] [Unsigned] =>.Microsoft Corporation O58 - SDL:2020/01/03 03:57:00 A . (.Microsoft Corporation - Server Network driver.) -- C:\Windows\System32\drivers\srvnet.sys [169984] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] =>.Microsoft Windows® O58 - SDL:2016/05/15 14:15:04 A . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\drivers\storport.sys [190912] =>.Microsoft® O58 - SDL:2016/09/23 17:36:14 A . (.Microsoft Corporation - Storage VSC Driver.) -- C:\Windows\System32\drivers\storvsc.sys [45680] =>.Microsoft® O58 - SDL:2016/05/15 14:27:36 A . (.Microsoft Corporation - WDM CODEC Class Device Driver 2.0.) -- C:\Windows\System32\drivers\stream.sys [69888] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/04/19 03:42:25 A . (.Microsoft Corporation - Plug and Play Software Device Enumerator.) -- C:\Windows\System32\drivers\swenum.sys [12136] =>.Microsoft® O58 - SDL:2016/09/23 17:36:15 A . (.Microsoft Corporation - Synthetic 3D SMT Support Driver.) -- C:\Windows\System32\drivers\Synth3dVsc.sys [56432] =>.Microsoft® O58 - SDL:2009/07/14 01:01:04 A . (.Microsoft Corporation - SCSI Tape Class Driver.) -- C:\Windows\System32\drivers\tape.sys [29184] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/07/13 09:35:09 A . (.Microsoft Corporation - ‏‏برنامج تشغيل TCP/IP.) -- C:\Windows\System32\drivers\tcpip.sys [1894840] =>.Microsoft® O58 - SDL:2016/09/23 17:35:09 A . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\System32\drivers\tcpipreg.sys [46080] [Unsigned] =>.Microsoft Corporation O58 - SDL:2010/11/21 04:24:01 A . (.Microsoft Corporation - TDI Wrapper.) -- C:\Windows\System32\drivers\tdi.sys [26624] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:16:32 A . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\Windows\System32\drivers\tdpipe.sys [15872] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/05/15 14:04:07 A . (.Microsoft Corporation - TCP Transport Driver.) -- C:\Windows\System32\drivers\tdtcp.sys [23552] [Unsigned] =>.Microsoft Corporation O58 - SDL:2017/07/29 15:56:30 A . (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [117248] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/04/19 03:43:21 A . (.Microsoft Corporation - Remote Desktop Server Driver.) -- C:\Windows\System32\drivers\termdd.sys [63208] =>.Microsoft® O58 - SDL:2016/05/15 14:03:36 A . (.Microsoft Corporation - Terminal Server Input Driver.) -- C:\Windows\System32\drivers\terminpt.sys [29696] [Unsigned] =>.Microsoft Corporation O58 - SDL:2017/08/13 22:45:28 A . (.Microsoft Corporation - TS Security Filter Driver.) -- C:\Windows\System32\drivers\tssecsrv.sys [40448] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/05/15 14:10:29 A . (.Microsoft Corporation - Remote Desktop USB Hub Filter Driver.) -- C:\Windows\System32\drivers\TsUsbFlt.sys [56832] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/05/15 14:10:29 A . (.Microsoft Corporation - Remote Desktop Generic USB Driver.) -- C:\Windows\System32\drivers\TsUsbGD.sys [29696] [Unsigned] =>.Microsoft Corporation O58 - SDL:2010/11/21 04:24:15 A . (.Microsoft Corporation - برنامج تشغيل واجهة النفق لـ Microsoft.) -- C:\Windows\System32\drivers\tunnel.sys [125440] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:45:55 A . (.Microsoft Corporation - عامل تصفية MS AGPv3.5.) -- C:\Windows\System32\drivers\UAGP35.SYS [64080] =>.Microsoft Windows® O58 - SDL:2019/02/10 16:36:11 A . (.Microsoft Corporation - UDF File System Driver.) -- C:\Windows\System32\drivers\udfs.sys [328192] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/04/19 03:43:59 A . (.Microsoft Corporation - عامل تصفية ULi AGPv3.0 الخاص بالأنظمة الأسا.) -- C:\Windows\System32\drivers\ULIAGPKX.SYS [64232] =>.Microsoft® O58 - SDL:2010/11/21 04:23:47 A . (.Microsoft Corporation - User-Mode Bus Enumerator.) -- C:\Windows\System32\drivers\umbus.sys [48640] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:06:52 A . (.Microsoft Corporation - Generic pass-through driver.) -- C:\Windows\System32\drivers\umpass.sys [9728] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/05/15 14:09:36 A . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\drivers\usb8023.sys [19968] [Unsigned] =>.Microsoft Corporation O58 - SDL:2010/11/21 04:24:11 A . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\drivers\USBCAMD2.sys [32896] [Unsigned] =>.Microsoft Corporation O58 - SDL:2018/05/02 16:32:35 A . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\drivers\usbccgp.sys [99840] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/05/15 14:12:46 A . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\Windows\System32\drivers\usbcir.sys [100864] [Unsigned] =>.Microsoft Corporation O58 - SDL:2018/05/02 16:32:25 A . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\drivers\usbd.sys [7808] [Unsigned] =>.Microsoft Corporation O58 - SDL:2018/05/02 16:32:31 A . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\drivers\usbehci.sys [56320] [Unsigned] =>.Microsoft Corporation O58 - SDL:2018/05/02 16:32:58 A . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\Windows\System32\drivers\usbhub.sys [344064] [Unsigned] =>.Microsoft Corporation O58 - SDL:2018/05/02 16:32:29 A . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\Windows\System32\drivers\usbohci.sys [25600] [Unsigned] =>.Microsoft Corporation O58 - SDL:2018/05/02 16:32:31 A . (.Microsoft Corporation - برنامج تشغيل منفذ USB 1.1 و 2.0.) -- C:\Windows\System32\drivers\usbport.sys [325632] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:38:18 A . (.Microsoft Corporation - USB Printer driver.) -- C:\Windows\System32\drivers\usbprint.sys [25088] [Unsigned] =>.Microsoft Corporation O58 - SDL:2010/11/21 04:24:39 A . (.Microsoft Corporation - إدارة نهج إعادة توجيه USB لـ Windows.) -- C:\Windows\System32\drivers\usbrpm.sys [31744] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/05/15 14:38:54 A . (.Microsoft Corporation - USB Mass Storage Class Driver.) -- C:\Windows\System32\drivers\USBSTOR.SYS [91648] [Unsigned] =>.Microsoft Corporation O58 - SDL:2018/05/02 16:32:28 A . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\drivers\usbuhci.sys [30720] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/04/19 03:42:46 A . (.Microsoft Corporation - العدّاد الجذر لمحرك الأقراص الظاهري.) -- C:\Windows\System32\drivers\vdrvroot.sys [36064] =>.Microsoft® O58 - SDL:2009/07/14 00:38:47 A . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\drivers\vga.sys [29184] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 00:38:47 A . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\drivers\vgapnp.sys [29184] [Unsigned] =>.Microsoft Corporation O58 - SDL:2010/11/21 04:23:47 A . (.Microsoft Corporation - VHD Miniport Driver.) -- C:\Windows\System32\drivers\vhdmp.sys [215936] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] =>.Microsoft Windows® O58 - SDL:2020/01/03 04:01:17 A . (.Microsoft Corporation - Video Port Driver.) -- C:\Windows\System32\drivers\videoprt.sys [129536] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/09/23 17:36:14 A . (.Microsoft Corporation - Hyper-V VMBus KMCL.) -- C:\Windows\System32\drivers\vmbkmcl.sys [89200] =>.Microsoft® O58 - SDL:2016/09/23 17:36:14 A . (.Microsoft Corporation - Microsoft Hyper-V Virtual Machine Bus Child.) -- C:\Windows\System32\drivers\vmbus.sys [96880] =>.Microsoft® O58 - SDL:2016/09/23 17:36:15 A . (.Microsoft Corporation - Microsoft VMBus HID Miniport.) -- C:\Windows\System32\drivers\VMBusHID.sys [21760] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/09/23 17:36:14 A . (.Microsoft Corporation - Virtual Machine Generation Counter.) -- C:\Windows\System32\drivers\vmgencounter.sys [11264] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/09/23 17:36:15 A . (.Microsoft Corporation - Microsoft S3 Emulated Device Cap Driver.) -- C:\Windows\System32\drivers\vms3cap.sys [7168] [Unsigned] =>.Microsoft Corporation O58 - SDL:2010/11/21 04:23:48 A . (.Microsoft Corporation - Virtual Storage Filter Driver.) -- C:\Windows\System32\drivers\vmstorfl.sys [46464] =>.Microsoft Windows® O58 - SDL:2019/04/19 03:42:25 A . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\drivers\volmgr.sys [68328] =>.Microsoft® O58 - SDL:2017/07/07 16:33:36 A . (.Microsoft Corporation - برنامج تشغيل ملحق إدارة وحدة التخزين.) -- C:\Windows\System32\drivers\volmgrx.sys [363752] =>.Microsoft Windows® O58 - SDL:2010/11/21 04:23:47 A . (.Microsoft Corporation - برنامج تشغيل خدمة ملفات الظل الاحتياطية لوح.) -- C:\Windows\System32\drivers\volsnap.sys [295808] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] =>.Microsoft Windows® O58 - SDL:2009/06/10 22:01:11 A . (.Conexant Systems, Inc. - HSF_HWB2 WDM driver.) -- C:\Windows\System32\drivers\VSTBS26.SYS [411136] [Unsigned] =>.Conexant Systems, Inc. O58 - SDL:2009/06/10 22:01:11 A . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\System32\drivers\VSTCNXT6.SYS [740864] [Unsigned] =>.Conexant Systems, Inc. O58 - SDL:2009/06/10 22:01:11 A . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\System32\drivers\VSTDPV6.SYS [1485312] [Unsigned] =>.Conexant Systems, Inc. O58 - SDL:2009/07/14 01:07:21 A . (.Microsoft Corporation - برنامج تشغيل ناقل Wifi الظاهري.) -- C:\Windows\System32\drivers\vwifibus.sys [24576] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:07:22 A . (.Microsoft Corporation - Virtual WiFi Filter Driver.) -- C:\Windows\System32\drivers\vwififlt.sys [59904] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:07:28 A . (.Microsoft Corporation - Virtual WiFi Miniport Driver.) -- C:\Windows\System32\drivers\vwifimp.sys [17920] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:02:07 A . (.Microsoft Corporation - Wacom Serial Pen Tablet HID Driver.) -- C:\Windows\System32\drivers\wacompen.sys [27776] [Unsigned] =>.Microsoft Corporation O58 - SDL:2018/12/08 03:47:22 A . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\Windows\System32\drivers\wanarp.sys [88576] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 00:37:35 A . (.Microsoft Corporation - Watchdog Driver.) -- C:\Windows\System32\drivers\watchdog.sys [42496] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:45:55 A . (.Microsoft Corporation - Microsoft Watchdog Timer Driver.) -- C:\Windows\System32\drivers\wd.sys [21056] =>.Microsoft Windows® O58 - SDL:2016/05/15 14:12:37 A . (.Microsoft Corporation - Kernel Mode Driver Framework Runtime.) -- C:\Windows\System32\drivers\Wdf01000.sys [785624] =>.Microsoft® O58 - SDL:2016/05/15 14:05:36 A . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\Windows\System32\drivers\WdfLdr.sys [54376] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:09:26 A . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) -- C:\Windows\System32\drivers\wfplwf.sys [12800] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:45:56 A . (.Microsoft Corporation - Wim file system Driver.) -- C:\Windows\System32\drivers\wimmount.sys [22096] =>.Microsoft Windows® O58 - SDL:2016/09/23 17:36:14 A . (.Microsoft Corporation - Windows Hypervisor Interface Driver.) -- C:\Windows\System32\drivers\winhv.sys [61040] =>.Microsoft® O58 - SDL:2018/02/10 18:25:26 A . (.Microsoft Corporation - Windows Management Interface for ACPI.) -- C:\Windows\System32\drivers\wmiacpi.sys [14336] [Unsigned] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:45:55 A . (.Microsoft Corporation - WMILIB WMI support library Dll.) -- C:\Windows\System32\drivers\wmilib.sys [16464] =>.Microsoft Windows® O58 - SDL:2019/08/20 04:59:17 A . (.Microsoft Corporation - طبقة Winsock2 IFS.) -- C:\Windows\System32\drivers\ws2ifsl.sys [22016] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/05/15 14:05:45 A . (.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) -- C:\Windows\System32\drivers\WUDFPf.sys [87040] [Unsigned] =>.Microsoft Corporation O58 - SDL:2016/05/15 14:05:45 A . (.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) -- C:\Windows\System32\drivers\WUDFRd.sys [198656] [Unsigned] =>.Microsoft Corporation O58 - SDL:2019/12/10 10:36:36 A . (.Microsoft Corporation - Common Log File System Driver.) -- C:\Windows\System32\clfs.sys [375008] =>.Microsoft® O58 - SDL:2019/12/10 09:01:33 A . (.Microsoft Corporation - برنامج تشغيل Win32 متعدد المستخدمين.) -- C:\Windows\System32\win32k.sys [3233280] [Unsigned] =>.Microsoft Corporation ---\\ File Associations Shell Spawning (11) - 1s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe [Unsigned] =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - ‎‎مشغل الأداة الإضافية لعارض الأحداث.) -- C:\Windows\System32\eventvwr.exe [Unsigned] =>.Microsoft Corporation O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft® O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (...) -- C:\Windows\System32\WScript.exe "%1" %* =>.Default.Value O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - ‎‎محرر التسجيل.) -- C:\Windows\regedit.exe [Unsigned] =>.Microsoft Corporation O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S =>.Default.Value O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Google LLC - Google Chrome.) -- C:\Users\LAID SOFI\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google LLC® ---\\ Start Menu Internet (12) - 0s O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Google LLC - Google Chrome.) -- C:\Users\LAID SOFI\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google LLC® O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft® O68 - StartMenuInternet: <‏‏Microsoft Edge> [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Microsoft Edge.) -- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft® O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Google LLC - Google Chrome.) -- C:\Users\LAID SOFI\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google LLC O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - ‎‎الأداة المساعدة للتهيئة لكل مستخدم لـ IE.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: <‏‏Microsoft Edge> [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Microsoft Edge.) -- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Google LLC - Google Chrome.) -- C:\Users\LAID SOFI\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google LLC O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - ‎‎الأداة المساعدة للتهيئة لكل مستخدم لـ IE.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: <‏‏Microsoft Edge> [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Microsoft Edge.) -- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Google LLC - Google Chrome.) -- C:\Users\LAID SOFI\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google LLC O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - ‎‎الأداة المساعدة للتهيئة لكل مستخدم لـ IE.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: <‏‏Microsoft Edge> [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Microsoft Edge.) -- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft Corporation ---\\ Search Browser Infection (2) - 0s O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com ---\\ Search Svchost Services (33) - 2s O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - خدمة نشر شهادة البطاقة الذكية لـ Microsoft.) -- C:\Windows\System32\certprop.dll [80384] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - خدمة نشر شهادة البطاقة الذكية لـ Microsoft.) -- C:\Windows\System32\certprop.dll [80384] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - مكتبة الارتباط الديناميكي لخدمة الخادم.) -- C:\Windows\System32\srvsvc.dll [236032] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - عميل نهج المجموعة.) -- C:\Windows\System32\gpsvc.dll [794624] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\IKEEXT.DLL [863232] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - خدمة صوت Windows.) -- C:\Windows\System32\audiosrv.dll [680960] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - إدارة الطلب التلقائي للوصول عن بُعد.) -- C:\Windows\System32\rasauto.dll [99328] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [344064] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [97792] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - خدمة الإعلام بأحداث النظام (SENS).) -- C:\Windows\System32\Sens.dll [64512] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [316928] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [688128] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - عامل Windows Update.) -- C:\Windows\System32\wuaueng.dll [2651136] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - خدمة النقل الذكي في الخلفية.) -- C:\Windows\System32\qmgr.dll [849920] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - مكتبة الارتباط الديناميكي لخدمات Windows Sh.) -- C:\Windows\System32\shsvcs.dll [371712] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [572416] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - مكتبة الارتباط الديناميكي الخاصة بخدمة تسجي.) -- C:\Windows\System32\seclogon.dll [30720] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - خدمة معلومات التطبيقات.) -- C:\Windows\System32\appinfo.dll [70144] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - خدمة اكتشاف iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - خدمة جدولة فئات تعدد الوسائط.) -- C:\Windows\System32\mmcss.dll [67584] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - خدمة تكوين سطح المكتب البعيد.) -- C:\Windows\System32\SessEnv.dll [121856] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - مكتبة الارتباط الديناميكي لخدمة مستعرض الكم.) -- C:\Windows\System32\browser.dll [136704] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - خدمة جدولة المهام.) -- C:\Windows\System32\schedsvc.dll [1110528] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\System32\KMSVC.DLL [90624] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - تقارير المشاكل وحلولها.) -- C:\Windows\System32\wercplsupport.dll [86016] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [210432] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - مكتبة الارتباط الديناميكي لخدمات نُسق Windo.) -- C:\Windows\System32\themeservice.dll [44544] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - خدمة BDE.) -- C:\Windows\System32\bdesvc.dll [100864] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - خدمة تثبت البرامج.) -- C:\Windows\System32\appmgmts.dll [193536] [Unsigned] =>.Microsoft Corporation ---\\ Firewall Active Exception List (4) - 0s O87 - FAEL: "{64BD96E2-F792-4643-90D0-778D061483B0}" [In-None-P17-TRUE] .(.Free Time Co., Ltd. - FormatFactory.) -- C:\Program Files (x86)\FormatFactory\FormatFactory.exe [Unsigned] =>.Free Time Co., Ltd. O87 - FAEL: "{49FB0720-9D4A-4CF5-AC79-1914584273E9}" [In-None-P17-TRUE] .(.Free Time Co., Ltd. - Format Factory EBook Codec Online Installer.) -- C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe =>.Free Time Co., Ltd.® O87 - FAEL: "{638E1B3E-B05C-4F2E-A463-A470CA878DCE}" [In-None-P17-TRUE] .(.Free Time Co., Ltd. - FormatFactory.) -- C:\Program Files (x86)\FormatFactory\FormatFactory.exe [Unsigned] =>.Free Time Co., Ltd. O87 - FAEL: "{4F1A9619-E599-4614-BA27-16C3640492BC}" [In-None-P17-TRUE] .(.Free Time Co., Ltd. - Format Factory EBook Codec Online Installer.) -- C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe =>.Free Time Co., Ltd.® ---\\ Product Upgrade Codes (46) - 2s O90 - PUC: "00004109110000000000000000F01FEC" [HKLM] . (.Microsoft Office Professional Plus 2010.) =>.Microsoft Corporation O90 - PUC: "000041091A0010400000000000F01FEC" [HKLM] . (.Microsoft Office OneNote MUI (Arabic) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109440010400000000000F01FEC" [HKLM] . (.Microsoft Office InfoPath MUI (Arabic) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109510010400000000000F01FEC" [HKLM] . (.Microsoft Office Access MUI (Arabic) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109610010400000000000F01FEC" [HKLM] . (.Microsoft Office Excel MUI (Arabic) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109810010400000000000F01FEC" [HKLM] . (.Microsoft Office PowerPoint MUI (Arabic) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109910010400000000000F01FEC" [HKLM] . (.Microsoft Office Publisher MUI (Arabic) 2010.) =>.bl.org O90 - PUC: "00004109A10010400000000000F01FEC" [HKLM] . (.Microsoft Office Outlook MUI (Arabic) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109A20000000100000000F01FEC" [HKLM] . (.Microsoft Office Office 64-bit Components 2010.) =>.Microsoft Corporation O90 - PUC: "00004109A20010400100000000F01FEC" [HKLM] . (.Microsoft Office Shared 64-bit MUI (Arabic) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109AB0010400000000000F01FEC" [HKLM] . (.Microsoft Office Groove MUI (Arabic) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109B10010400000000000F01FEC" [HKLM] . (.Microsoft Office Word MUI (Arabic) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109C20010400000000000F01FEC" [HKLM] . (.Microsoft Office Proofing (Arabic) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109E60010400000000000F01FEC" [HKLM] . (.Microsoft Office Shared MUI (Arabic) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109F10010400000000000F01FEC" [HKLM] . (.Microsoft Office Proof (Arabic) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109F10090400000000000F01FEC" [HKLM] . (.Microsoft Office Proof (English) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109F100C0400000000000F01FEC" [HKLM] . (.Microsoft Office Proof (French) 2010.) =>.Microsoft Corporation O90 - PUC: "05405151BA7568145B0223E9DE15FAA7" [HKLM] . (.Microsoft .NET Host - 5.0.11 (x64).) =>.Microsoft Corporation O90 - PUC: "1EB2CEDF48F5942449B3344652A165EB" [HKLM] . (.Snagit 12.) =>.TechSmith O90 - PUC: "492E6DEEE0BB8E234B84292F5BE94B81" [HKLM] . (.Microsoft .NET Framework 4.8 (FRA).) =>.Microsoft Corporation O90 - PUC: "508FB303E44667A498463B796891E0CA" [HKLM] . (.Microsoft .NET Host FX Resolver - 5.0.11 (x64).) =>.Microsoft Corporation O90 - PUC: "6468B04F14DC3FA45A54A0C7F0A6AB84" [HKLM] . (.Microsoft .NET Core 5.0 Templates 5.0.402 (x64).) =>.Microsoft Corporation O90 - PUC: "68AB67CA7DA73301B744CAF070E41400" [HKLM] . (.Adobe Acrobat Reader DC.) -- C:\Windows\Installer\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}\SC_Reader.ico =>.Adobe Inc. O90 - PUC: "6BB6487BEDE4B9041974362168FEF7DD" [HKLM] . (.Microsoft Windows Desktop Targeting Pack - 5.0.0 (x64).) =>.Microsoft Corporation O90 - PUC: "6E8A266FCD4F2A1409E1C8110F44DBCE" [HKLM] . (.MSXML 4.0 SP2 (KB973688).) =>.Microsoft Corporation O90 - PUC: "7FA53761D8D11863495A5C876AE18C23" [HKLM] . (.Microsoft .NET Framework 4.8.) =>.Microsoft Corporation O90 - PUC: "901516378E4704A4F94B46FFF9E06219" [HKLM] . (.Adobe AIR.) =>.Adobe Inc. O90 - PUC: "98ACB3277F92C8741972DD7453B5D916" [HKLM] . (.Microsoft .NET Toolset 5.0.402 (x64).) =>.Microsoft Corporation O90 - PUC: "A76A12931BA584E449447C8141FC0372" [HKLM] . (.VCRedistSetup.) =>.Nero Digital O90 - PUC: "A92DA5675FE76544F8F63864E725BA25" [HKLM] . (.Camtasia Studio 8.) -- C:\Windows\Installer\{765AD29A-7EF5-4456-8F6F-83467E52AB52}\CamStudio.ico =>.Camtasia O90 - PUC: "AA08F5A07ACF5C14FBC14727E7EC096A" [HKLM] . (.Nero 8 Essentials.) -- C:\Windows\Installer\{0A5F80AA-FCA7-41C5-BF1C-74727ECE90A6}\ARPPRODUCTICON.exe =>.Ahead Corporation O90 - PUC: "AD3F91BE09BD9624BB9DF0CD08653B27" [HKLM] . (.Microsoft Windows Desktop Runtime - 5.0.11 (x64).) =>.Microsoft Corporation O90 - PUC: "ADBD4B78862525137918E99870990014" [HKLM] . (.Microsoft .NET Framework 4.8 (ARA).) =>.Microsoft Corporation O90 - PUC: "B34BAAAB0E5EFDC4187C8E54B6A81BCD" [HKLM] . (.Microsoft .NET AppHost Pack - 5.0.11 (x64_arm).) =>.Microsoft Corporation O90 - PUC: "B51FBB0445B294C45813D6EA2580F019" [HKLM] . (.Microsoft .NET AppHost Pack - 5.0.11 (x64_arm64).) =>.Microsoft Corporation O90 - PUC: "BFC6307A304B895458FF3D79BA8B1837" [HKLM] . (.Microsoft .NET Standard Targeting Pack - 2.1.0 (x64).) =>.Microsoft Corporation O90 - PUC: "C51700D36E6E04F30B5795D4F6C9EC32" [HKLM] . (.Microsoft ASP.NET Core 5.0.11 Shared Framework (x64).) =>.Microsoft Corporation O90 - PUC: "CE40C0E7F6D9DC638A12CD4839EE04F7" [HKLM] . (.Microsoft ASP.NET Core 5.0.0 Targeting Pack (x64).) =>.Microsoft Corporation O90 - PUC: "DBC091E9430BA194DB20DBBD4B6DF747" [HKLM] . (.Microsoft .NET Runtime - 5.0.11 (x64).) =>.Microsoft Corporation O90 - PUC: "DC60BFB952932E94AB7BAE968512ECC4" [HKLM] . (.Google Earth Pro.) -- C:\Windows\Installer\{9BFB06CD-3925-49E2-BAB7-EA695821CE4C}\MainIcon.ico =>.Google Inc. O90 - PUC: "DDA39468D428E8B4DB27C8D5DC5CA217" [HKLM] . (.MSXML 4.0 SP2 (KB954430).) =>.Microsoft Corporation O90 - PUC: "EB940C659E972054EB7A79453A6EF0B9" [HKLM] . (.neroxml.) =>.Ahead Corporation O90 - PUC: "F8707366DCE70E442870D5E3D50DF636" [HKLM] . (.Microsoft .NET AppHost Pack - 5.0.11 (x64).) =>.Microsoft Corporation O90 - PUC: "F8A5DC9FB00B0774E9A43A8C81EB48F0" [HKLM] . (.Microsoft .NET Targeting Pack - 5.0.0 (x64).) =>.Microsoft Corporation O90 - PUC: "F95D1CB941F34F14BBD7D307D337B03A" [HKLM] . (.ESET Security.) -- C:\Windows\Installer\{9BC1D59F-3F14-41F4-BB7D-3D703D730BA3}\Icon_Product O90 - PUC: "FC1F3FBE3AA29C84F92AC2108C61CE2F" [HKLM] . (.Microsoft .NET AppHost Pack - 5.0.11 (x64_x86).) =>.Microsoft Corporation ---\\ Windows Installer Scan (11) - 9s [MD5.23B97F4BEDD554D3F629B60637AFC936] [WIS][2015/03/17 09:42:22] (.Adobe Systems Incorporated.) -- C:\Windows\Installer\195adf.msi [2792960] =>.Adobe Systems Incorporated [MD5.DB4470F16B383963AACFF820629031CC] [WIS][2021/11/04 21:52:11] (.Google - Google Earth Pro.) -- C:\Windows\Installer\1c3ac34.msi [65593344] =>.Google [MD5.A4E38CFE9E7D24ADCC71EBF910821B64] [WIS][2007/09/21 15:25:05] (.Nero AG.) -- C:\Windows\Installer\39283.msi [5990400] =>.Nero AG [MD5.B95F7333B297E5B72C36E879E842657E] [WIS][2008/07/29 08:25:25] (.Nero AG - Nero 8, Copyright 2007 Nero AG and its lice.) -- C:\Windows\Installer\39287.msi [7817216] =>.Nero AG [MD5.2FC1E7A12F792B6627C4FB92CDCCD4CD] [WIS][2007/10/01 14:38:00] (.Nero AG.) -- C:\Windows\Installer\3928d.msi [1404416] =>.Nero AG [MD5.C8368AB4E3C7A1D19D8E1C93EE78708B] [WIS][2021/10/25 19:29:14] (.ESET, spol. s r.o. - ESET Security.) -- C:\Windows\Installer\42a991.msi [49852416] =>.ESET, spol. s r.o. [MD5.D7E8F00B17F619BA5EB637FCA7E46BC3] [WIS][2014/08/24 23:45:12] (.TechSmith Corporation - Camtasia Studio 8.4.3.1792.) -- C:\Windows\Installer\8b6a4e.msi [9719808] =>.TechSmith Corporation [MD5.2BA30DE07CF520D577D66E7CDE23B2C8] [WIS][2014/08/15 17:24:38] (.TechSmith Corporation - Snagit 12.2.0.1656.) -- C:\Windows\Installer\a786b4.msi [86554624] =>.TechSmith Corporation [MD5.DC89127BF1180F8C084F562F3ED0D348] [WIS][2021/10/09 20:49:37] (.HARMAN International - Adobe AIR Installer.) -- C:\Windows\Installer\edac9.msi [49152] [MD5.9242BE4961C7389870DB2F79939E7A09] [WIS][2021/07/24 11:06:49] (.Adobe Inc..) -- C:\Windows\Installer\195ae0.msp [261931008] =>.Adobe Inc. [MD5.1A911EC85EA4173139A94F90168C2E1D] [WIS][2012/01/12 13:39:29] (. - Customization Patch.) -- C:\Windows\Installer\7282c.msp [5640192] ---\\ FEATURE CONTROL. (169) - 0s [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ACTIVEX_REPURPOSEDETECTION]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:clview.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:GROOVE.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:infopath.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:ehexthost32.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:clview.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_INPUT_PROMPTS]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_IMG]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_OBJECT]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_SCRIPT]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:AcroRd32.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:CamtasiaStudio.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_ISO_2022_JP_SNIFFING]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_LEGACY_COMPRESSION]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPfewgsrv.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPGuiIT.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPGUI.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPLgPad.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPLOGON.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:Scale_for_R3.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:ehexthost32.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:clview.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_SQM_UPLOAD_FOR_APP]:ieuser.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_SQM_UPLOAD_FOR_APP]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_TELNET_PROTOCOL]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_UNICODE_HANDLE_CLOSING_CALLBACK]:YahooMusicEngine.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_SCRIPT_PASTE_URLACTION_IF_PROMPT]:devenv.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_SCRIPT_PASTE_URLACTION_IF_PROMPT]:dexplore.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_SCRIPT_PASTE_URLACTION_IF_PROMPT]:helppane.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_SCRIPT_PASTE_URLACTION_IF_PROMPT]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_FEEDS]:msfeedssync.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_FORCE_ADDR_AND_STATUS]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_FORCE_ADDR_AND_STATUS]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HIGH_CONTRAST_BACKGROUND_IMAGES]:sidebar.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:ehexthost32.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:clview.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:GROOVE.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IGNORE_XML_PROLOG]:msiexec.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IMAGING_USE_ART]:wm.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IMAGING_USE_ART]:cs.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IMAGING_USE_ART]:waol.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_INTERNET_SHELL_FOLDERS]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LEGACY_DISPPARAMS]:helppane.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LEGACY_DLCONTROL_BEHAVIORS]:wlmail.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:clview.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:msaccess.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:Groove.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MAXCONNECTIONSPER1_0SERVER]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MAXCONNECTIONSPERSERVER]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:ehexthost32.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:clview.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:GROOVE.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:ehexthost32.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:clview.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:GROOVE.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MSHTML_AUTOLOAD_IEFRAME]:mshta.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MSHTML_AUTOLOAD_IEFRAME]:outlook.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MSHTML_AUTOLOAD_IEFRAME]:sidebar.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:ehexthost32.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:clview.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:GROOVE.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:ehexthost32.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RELEASE_CALLBACK_ON_STOP_BINDING]:communicator.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ABOUT_PROTOCOL_IE7]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ABOUT_PROTOCOL_IE7]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:GROOVE.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:clview.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:msimn.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:winmail.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:clview.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:GROOVE.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_OBJECT_DATA_ATTRIBUTE]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_RES_TO_LMZ]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_RES_TO_LMZ]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:ehexthost32.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:clview.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:GROOVE.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:clview.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:GROOVE.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SHIM_MSHELP_COMBINE]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SHOW_APP_PROTOCOL_WARN_DIALOG]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SSLUX]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SUBDOWNLOAD_LOCKDOWN]:winmail.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SUBDOWNLOAD_LOCKDOWN]:msimn.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SUBDOWNLOAD_LOCKDOWN]:outlook.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:ehexthost32.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:clview.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:GROOVE.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_WINDOWEDSELECTCONTROL]:infopath.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_WINDOWEDSELECTCONTROL]:winword.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_WINDOWEDSELECTCONTROL]:excel.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_WINDOWEDSELECTCONTROL]:powerpnt.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:ehexthost32.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:GROOVE.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_MOVESIZECHILD]:msn.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:GROOVE.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:clview.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:GROOVE.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_XSSFILTER]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_XSSFILTER]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:ehexthost32.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:clview.exe =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:GROOVE.EXE =>.Legitimate [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:OUTLOOK.EXE =>.Legitimate ---\\ Observer Of Events (137) - 64s Application.Error: Application Error (18) ~Numéro: 18271 ~Date: 11/05/2021 07:05:55 PM ~ID: 1005 ~Description: ‏‏يتعذر على Windows الوصول إلى الملف %1 نظرًا لأحد الأسباب التالية: حدثت مشكلة متعلقة باتصال الشبكة أو أن القرص الذي تم تخزين الملف عليه مفقود أو أن برامج تشغيل وحدات التخزين المثبتة على هذا الكمبيوتر مفقودة أو أن القرص مفقود. قام Windows بإغلاق الب ~Suggestion: Aucune Application.Warning: ESENT (10) ~Numéro: 18269 ~Date: 11/05/2021 07:02:02 PM ~ID: 508 ~Description: %1 (%2) %3A request to write to the file "%4" at offset %5 for %6 bytes succeeded, but took an abnormally long time (%7 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further Application.Warning: Windows Search Service (26) ~Numéro: 18268 ~Date: 11/05/2021 06:55:51 PM ~ID: 3036 ~Description: يتعذر الوصول إلى مصدر المحتوى <%2>.السياق: Windows التطبيق، SystemIndex الكتالوجالتفاصيل: ‏‏لم يتم العثور على الكائن. (HRESULT : 0x80041201) (0x80041201) ~Suggestion: https://www.repairwin.com/fix-windows-event-3036-search-content-source-cannot-accessed-solved/ Application.Warning: TechSmith Updater (34) ~Numéro: 18267 ~Date: 11/05/2021 06:54:52 PM ~ID: 0 ~Description: Internet Access Not Present Application.Error: WinMgmt (12) ~Numéro: 18248 ~Date: 11/05/2021 06:51:45 PM ~ID: 10 ~Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Application.Error: Microsoft-Windows-LoadPerf (8) ~Numéro: 18064 ~Date: 11/05/2021 05:15:18 PM ~ID: 3001 ~Description: The performance counter name string value in the registry is not formatted correctly. The malformed string is %1. The first DWORD in the Data section contains the index value to the malformed string while the second and third DWORDs in the Data secti Application.Error: Microsoft-Windows-Defrag (1) ~Numéro: 17815 ~Date: 11/05/2021 01:47:04 PM ~ID: 257 ~Description: ‏‏تم إلغاء ‏‏تجزئة وحدة التخزين %1 نظراً لحدوث الخطأ: ‏‏تعذر إكمال تحسين التمهيد نظراُ لانخفاض المساحة الحرة. (0x89000019) Application.Warning: Wlclntfy (2) ~Numéro: 17802 ~Date: 11/05/2021 12:52:58 PM ~ID: 6006 ~Description: ‏‏استغرق المشترك في إعلام winlogon <%1> %2 ثانية(ثوان) لمعالجة حدث إعلام (%3). ~Suggestion: Supprimer la valeur de registre GpNetworkStartTimeoutPolicyValue de la clé HKLM\SOFTWARE\Policies\Microsoft\Windows\System Application.Warning: Microsoft-Windows-User Profiles Service (17) ~Numéro: 17775 ~Date: 11/05/2021 12:44:48 PM ~ID: 1530 ~Description: ‏‏اكتشف Windows أن ملف السجل مازال قيد الاستخدام من قٍبل تطبيقات أو خدمات أخرى. سيتم إلغاء تحميل الملف الآن. وقد لا تعمل التطبيقات أو الخدمات التي تستخدم ملف السجل بصورة صحيحة في ما بعد. التفاصيل - 1 user registry handles leaked from \Registry\ Application.Error: .NET Runtime (6) ~Numéro: 17455 ~Date: 11/05/2021 10:34:39 AM ~ID: 1026 ~Description: Application: TempFileCleaner.exeFramework Version: v4.0.30319Description: The process was terminated due to an unhandled exception.Exception Info: System.IO.IOException at System.IO.__Error.WinIOError(Int32, System.String) at System.IO.Directory. ~Suggestion: Essayer d'installer la dernière version de l'application ou du dernier correctif Application.Warning: .NET Runtime Optimization Service (79) ~Numéro: 17339 ~Date: 11/05/2021 10:08:33 AM ~ID: 1130 ~Description: .NET Runtime Optimization Service (2.0.50727.8806) - Version or flavor did not match with repository: SrpUxSnapIn Application.Warning: Microsoft-Windows-RestartManager (62) ~Numéro: 17121 ~Date: 11/05/2021 09:55:35 AM ~ID: 10010 ~Description: ‏‏يتعذر إعادة تشغيل التطبيق '%3' (معرف العملية %2) - %9. ~Suggestion: Redémarrer manuellement l'application ou le service Application.Error: MsiInstaller (27) ~Numéro: 16788 ~Date: 11/05/2021 08:01:06 AM ~ID: 1023 ~Description: ‏‏المنتج: %1 - تعذر تثبيت تحديث '%2'. رمز الخطأ %3. تتوفر معلومات أخرى في ملف السجل %4. Application.Error: Application Hang (1) ~Numéro: 14056 ~Date: 11/03/2021 02:34:36 PM ~ID: 1002 ~Description: ‏‏توقف البرنامج %1 الإصدار %2 عن التفاعل مع Windows وتم إغلاقه. لمعرفة ما إذا كان يتوفر مزيد من المعلومات حول المشكلة، قم بالاطلاع على محفوظات المشكلة في "مركز الصيانة" من لوحة التحكم. معرّف العملية: a3c وقت بدء التشغيل: 01d7d0b61a39f62e وقت الإنه ~Suggestion: Essayer les commandes suivantes ipconfig /release et ipconfig / renew. System.Error: Disk (3596) ~Numéro: 45352 ~Date: 11/05/2021 07:28:22 PM ~ID: 7 ~Description: ‏‏الجهاز، %1، به كتلة تالفة. System.Warning: Microsoft-Windows-DNS-Client (10) ~Numéro: 45338 ~Date: 11/05/2021 07:23:08 PM ~ID: 1014 ~Description: ‏‏انتهت مهلة تحليل الاسم الخاص بالاسم %1 بعد عدم استجابة أي من خوادم DNS التي تم تكوينها. ~Suggestion: https://social.technet.microsoft.com/wiki/contents/articles/3336.event-id-1014-microsoft-windows-dns-client.aspx System.Error: DCOM (5) ~Numéro: 45333 ~Date: 11/05/2021 07:22:56 PM ~Description: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C} System.Error: Schannel (29) ~Numéro: 45326 ~Date: 11/05/2021 07:10:41 PM ~ID: 4119 ~Description: ‏‏تم استلام التنبيه الهام التالي: %1. System.Error: Service Control Manager (45) ~Numéro: 45315 ~Date: 11/05/2021 07:05:58 PM ~ID: 7031 ~Description: ‏‏تم إنهاء الخدمة %1 بشكل غير متوقع. حدث هذا %2 مرة. سيتم اتخاذ الإجراء التصحيحي التالي في غضون %3 مللي ثانية: %5. System.Warning: Ntfs (2) ~Numéro: 45307 ~Date: 11/05/2021 07:02:33 PM ~ID: 130 ~Description: The file system structure on volume %2 has now been repaired. System.Error: BugCheck (2) ~Numéro: 45185 ~Date: 11/05/2021 06:50:15 PM ~ID: 1001 ~Description: 0x0000003b (0x00000000c0000005, 0xfffff80002d4ee85, 0xfffff880089acf30, 0x0000000000000000)C:\Windows\MEMORY.DMP110521-25459-01 System.Error: EventLog (3) ~Numéro: 45181 ~Date: 11/05/2021 06:50:14 PM ~ID: 6008 ~Description: The previous system shutdown at %1 on %2 was unexpected. System.Warning: WAS (2) ~Numéro: 45139 ~Date: 11/05/2021 06:32:20 PM ~ID: 5009 ~Description: تم إنهاء عملية تخدم تجمّع التطبيقات '%1' بشكل غير متوقع. معرّف العملية هو '%2'. رمز إنهاء العملية هو '0x%3'. System.Error: Microsoft-Windows-LanguagePackSetup (1) ~Numéro: 44771 ~Date: 11/05/2021 12:50:07 PM ~ID: 1000 ~Description: ‏‏فشلت تهيئة عميل CBS. الخطأ الأخير: 0x80080005 System.Warning: Microsoft-Windows-WLAN-AutoConfig (3) ~Numéro: 44665 ~Date: 11/05/2021 12:46:11 PM ~ID: 4001 ~Description: ‏‏تم إيقاف خدمة التكوين التلقائي لـ WLAN بنجاح. System.Error: Microsoft-Windows-WindowsUpdateClient (15) ~Numéro: 41028 ~Date: 11/04/2021 10:24:26 PM ~ID: 20 ~Description: ‏‏فشل التثبيت: فشل Windows في تثبيت التحديث التالي بسبب الخطأ %1: %2. ~Suggestion: http://kb.eventtracker.com/evtpass/evtpages/EventId_20_Microsoft-Windows-WindowsUpdateClient_63351.asp ---\\ Additional Scan (O88) (6) - 3s HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Cover Designer =>.SUP.Orphan HKLM\Software\Classes\CLSID\{73FCA462-9BD5-4065-A73F-A8E5F6904EF7} =>.SUP.Orphan HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} =>.SUP.Orphan HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan C:\Users\LAID SOFI\AppData\Local\Google\Update =>Heuristic.Suspect ---\\ Summary of the elements found (4) - 0s https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan https://nicolascoolman.eu/forum/Topic/warning-eventlogapp-evenement-dapplication/ =>Warning.EventLogApp https://nicolascoolman.eu/forum/Topic/warning-eventlogsys-evenement-systeme/ =>Warning.EventLogSys https://nicolascoolman.eu/2017/01/28/heuristic-suspect/ =>Heuristic.Suspect ---\\ Serial Number [011F39A2261A993DD15176DA6FE4FBEA] [24/07/2021] (.Adobe Inc..) - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe =>.Adobe Inc. [011F39A2261A993DD15176DA6FE4FBEA] [26/01/2021] (.Adobe Inc..) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Inc. [02FA994D660DE659EE9037ECB437D766] [19/10/2021] (.Piriform Software Ltd.) - C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Software Ltd [034F328F3EFF4FB98F5343811788F78A] [09/10/2021] (.Tonec Inc..) - C:\Users\LAID SOFI\AppData\Roaming\IDM\idmmzcc5\components12\idmmzcc.dll =>.Tonec Inc. [034F328F3EFF4FB98F5343811788F78A] [09/10/2021] (.Tonec Inc..) - C:\Users\LAID SOFI\AppData\Roaming\IDM\idmmzcc5\components12\idmmzcc64.dll =>.Tonec Inc. [034F328F3EFF4FB98F5343811788F78A] [09/10/2021] (.Tonec Inc..) - C:\Users\LAID SOFI\AppData\Roaming\IDM\idmmzcc5\components2\idmcchandler2.dll =>.Tonec Inc. [034F328F3EFF4FB98F5343811788F78A] [09/10/2021] (.Tonec Inc..) - C:\Users\LAID SOFI\AppData\Roaming\IDM\idmmzcc5\components2\idmcchandler2_64.dll =>.Tonec Inc. [036939C475D53C1D70992DB8A87EB7D3] [18/10/2021] (.Macrovision Corporation.) - C:\Program Files (x86)\InstallShield Installation Information\{5E2A70F7-5A7B-4C65-B647-2DD0ACB62F12}\setup.exe =>.Macrovision Corporation [0407ABB64E9990180789EACB81F5F914] [18/06/2021] (.VideoLAN.) - C:\Program Files\VideoLAN\VLC\vlc.exe =>.VideoLAN [0501443D58E65BFCA6683E1489AEFD40] [09/10/2021] (.Harman International Industries, Incorporated.) - c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe =>.Not verified [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\GoogleCrashHandler.exe =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\GoogleCrashHandler64.exe =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\GoogleUpdate.exe =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\GoogleUpdateBroker.exe =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\GoogleUpdateComRegisterShell64.exe =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\GoogleUpdateCore.exe =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\GoogleUpdateOnDemand.exe =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\GoogleUpdateSetup.exe =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdate.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_am.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_ar.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_bg.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_bn.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_ca.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_cs.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_da.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_de.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_el.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_en.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_en-GB.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_es.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_es-419.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_et.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_fa.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_fi.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_fil.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_fr.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_gu.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_hi.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_hr.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_hu.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_id.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_is.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_it.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_iw.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_ja.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_kn.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_ko.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_lt.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_lv.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_ml.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_mr.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_ms.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_nl.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_no.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_pl.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_pt-BR.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_pt-PT.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_ro.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_ru.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_sk.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_sl.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_sr.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_sv.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_sw.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_ta.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_te.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_th.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_tr.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_uk.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_ur.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_vi.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_zh-CN.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\goopdateres_zh-TW.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\psmachine.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\psmachine_64.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\psuser.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\1.3.35.451\psuser_64.dll =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [04/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Update\GoogleUpdate.exe =>.Google LLC [06AEA76BAC46A9E8CFE6D29E45AAF033] [17/10/2021] (.Google LLC.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google LLC [06C5078AA528BBD3B8668AB10B035F94] [03/03/2021] (.Tonec Inc..) - C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll =>.Tonec Inc. [06C5078AA528BBD3B8668AB10B035F94] [12/12/2020] (.Tonec Inc..) - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll =>.Tonec Inc. [06C5078AA528BBD3B8668AB10B035F94] [30/04/2021] (.Tonec Inc..) - C:\Program Files (x86)\Internet Download Manager\Uninstall.exe =>.Tonec Inc. [0788260F8541539D97F49DDAA837B166] [09/10/2021] (.TechSmith Corporation.) - C:\ProgramData\Package Cache\{8f4df1fe-49bb-4295-99d2-0e29ad8f99c6}\Bootstrapper.exe =>.TechSmith Corporation [0788260F8541539D97F49DDAA837B166] [09/10/2021] (.TechSmith Corporation.) - C:\Windows\Installer\{FDEC2BE1-5F84-4249-943B-4364251A56BE}\SnagitEditorIcon.exe =>.TechSmith Corporation [0788260F8541539D97F49DDAA837B166] [09/10/2021] (.TechSmith Corporation.) - C:\Windows\Installer\{FDEC2BE1-5F84-4249-943B-4364251A56BE}\SnagitIcon.exe =>.TechSmith Corporation [0788260F8541539D97F49DDAA837B166] [15/08/2014] (.TechSmith Corporation.) - C:\Program Files (x86)\TechSmith\Snagit 12\DLLx64\SnagitShellExt64.dll =>.TechSmith Corporation [0788260F8541539D97F49DDAA837B166] [15/08/2014] (.TechSmith Corporation.) - C:\Program Files (x86)\TechSmith\Snagit 12\Snagit32.exe =>.TechSmith Corporation [07ED134B1ECF561A9EB5B05388BFF047] [04/10/2021] (.VS Revo Group Ltd..) - C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe =>.VS Revo Group Ltd. [0919DEDF5FA2DC75A4F8199BB690C81E] [11/08/2020] (.CPUID S.A.R.L.U..) - C:\Program Files\CPUID\CPU-Z\cpuz.exe =>.CPUID S.A.R.L.U. [0C15BE4A15BB0903C901B1D6C265302F] [16/07/2021] (.Google LLC.) - C:\Program Files\Google\Google Earth Pro\client\googleearth.exe =>.Google LLC [0D7AAE3B360869A3BA28BD7D1FD0B8F6] [28/09/2020] (.VS Revo Group Ltd..) - C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll =>.VS Revo Group Ltd. [0D7AAE3B360869A3BA28BD7D1FD0B8F6] [29/09/2020] (.VS Revo Group Ltd..) - C:\Windows\System32\DRIVERS\revoflt.sys =>.VS Revo Group Ltd. [0E4418E2DEDE36DD2974C3443AFB5CE5] [05/11/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Chrome\Application\93.0.4577.63\Installer\setup.exe =>.Google LLC [0E4418E2DEDE36DD2974C3443AFB5CE5] [27/08/2021] (.Google LLC.) - C:\Users\LAID SOFI\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google LLC [1044F31AE1F93A0BB95F19AB9FAAC6BB] [05/11/2021] (.ESET, spol. s r.o..) - C:\Users\LAID SOFI\AppData\Local\Google\Chrome\User Data\SwReporter\93.269.200\em000_64.dll =>.ESET, spol. s r.o. [1044F31AE1F93A0BB95F19AB9FAAC6BB] [05/11/2021] (.ESET, spol. s r.o..) - C:\Users\LAID SOFI\AppData\Local\Google\Chrome\User Data\SwReporter\93.269.200\em001_64.dll =>.ESET, spol. s r.o. [19EA4DAF089570861408E9F05EFD9B89] [16/07/2021] (.Power Software Limited.) - C:\Program Files\PowerISO\PowerISO.exe =>.Not verified [19EA4DAF089570861408E9F05EFD9B89] [16/07/2021] (.Power Software Limited.) - C:\Program Files\PowerISO\PWRISOSH.DLL =>.Not verified [19EA4DAF089570861408E9F05EFD9B89] [16/07/2021] (.Power Software Limited.) - C:\Program Files\PowerISO\PWRISOVM.EXE =>.Not verified [1EF0AC7FB103A025C1E8118899C59997] [05/08/2014] (.TechSmith Corporation.) - C:\Program Files (x86)\TechSmith\Camtasia Studio 8\CamtasiaStudio.exe =>.TechSmith Corporation [209BDBEAF16C06F5544AB9A1BFD32C38] [03/12/2014] (.Samsung Electronics CO., LTD..) - C:\Program Files\SAMSUNG\USB Drivers\Uninstall.exe =>.Samsung Electronics CO., LTD. [227EFDF22825BA270530FB09D52B32F8] [07/06/2017] (.Power Software Limited.) - C:\Windows\System32\drivers\scdemu.sys =>.Power Software Limited [2A6AD44A4642FB73942CA2B92DEB3D34] [08/06/2008] (.Nero AG.) - C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe =>.Nero AG [2A6AD44A4642FB73942CA2B92DEB3D34] [08/06/2008] (.Nero AG.) - C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe =>.Nero AG [2A6AD44A4642FB73942CA2B92DEB3D34] [08/07/2008] (.Nero AG.) - C:\Program Files (x86)\Nero\Nero8\Nero StartSmart\NeroStartSmart.exe =>.Nero AG [2A6AD44A4642FB73942CA2B92DEB3D34] [24/06/2008] (.Nero AG.) - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe =>.Nero AG [2A6AD44A4642FB73942CA2B92DEB3D34] [24/06/2008] (.Nero AG.) - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe =>.Nero AG [2C80892E0115B0B77AA3594B9A733953] [17/10/2011] (.Realtek Semiconductor Corp.) - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp [2C80892E0115B0B77AA3594B9A733953] [18/10/2011] (.Realtek Semiconductor Corp.) - C:\Windows\System32\drivers\RTKVHD64.sys =>.Realtek Semiconductor Corp [2C80892E0115B0B77AA3594B9A733953] [29/08/2011] (.Realtek Semiconductor Corp.) - C:\Program Files\Realtek\Audio\HDA\RtlUpd64.exe =>.Realtek Semiconductor Corp [4660FC32BD521D77F211C1336AA98B9E] [09/10/2021] (.Tonec Inc..) - C:\Users\LAID SOFI\AppData\Roaming\IDM\idmmzcc5\components\idmmzcc.dll =>.Tonec Inc. [4660FC32BD521D77F211C1336AA98B9E] [09/10/2021] (.Tonec Inc..) - C:\Users\LAID SOFI\AppData\Roaming\IDM\idmmzcc5\components2\idmmzcc.dll =>.Tonec Inc. [4660FC32BD521D77F211C1336AA98B9E] [09/10/2021] (.Tonec Inc..) - C:\Users\LAID SOFI\AppData\Roaming\IDM\idmmzcc5\components2\idmmzcc64.dll =>.Tonec Inc. [4D4AA1FDF26F9F3353D62614EDA66237] [09/10/2021] (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Adobe\Flash Player\AddIns\airappinstaller\airappinstaller.exe =>.Adobe Systems Incorporated [4D4AA1FDF26F9F3353D62614EDA66237] [09/10/2021] (.Adobe Systems Incorporated.) - C:\Users\LAID SOFI\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe =>.Adobe Systems Incorporated [529E3F9FCF7D58D520D607AB74395002] [24/06/2018] (.win.rar GmbH.) - C:\Program Files (x86)\WinRAR\RarExt64.dll =>.win.rar GmbH [529E3F9FCF7D58D520D607AB74395002] [24/06/2018] (.win.rar GmbH.) - C:\Program Files (x86)\WinRAR\uninstall.exe =>.win.rar GmbH [54C3C910528E537C3ED4225038666D42] [29/09/2010] (.Samsung Electronics CO., LTD..) - C:\Program Files (x86)\Samsung\Samsung ML-1660 Series\Setup\setup.exe =>.Samsung Electronics CO., LTD. [63E1989CF4AE5350298FA168D0921309] [03/12/2014] (.DEVGURU CO LTD.) - C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe =>.DEVGURU CO LTD [6404DB61004532252326E3EE1DAB5AB2] [14/05/2016] (.Free Time Co., Ltd..) - C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe =>.Free Time Co., Ltd. [65628C146ACE93037FC58659F14BD35F] [05/11/2021] (.ESET, spol. s r.o..) - C:\Users\LAID SOFI\AppData\Local\Google\Chrome\User Data\SwReporter\93.269.200\edls_64.dll =>.ESET, spol. s r.o. [65628C146ACE93037FC58659F14BD35F] [05/11/2021] (.ESET, spol. s r.o..) - C:\Users\LAID SOFI\AppData\Local\Google\Chrome\User Data\SwReporter\93.269.200\em002_64.dll =>.ESET, spol. s r.o. [65628C146ACE93037FC58659F14BD35F] [05/11/2021] (.ESET, spol. s r.o..) - C:\Users\LAID SOFI\AppData\Local\Google\Chrome\User Data\SwReporter\93.269.200\em003_64.dll =>.ESET, spol. s r.o. [65628C146ACE93037FC58659F14BD35F] [05/11/2021] (.ESET, spol. s r.o..) - C:\Users\LAID SOFI\AppData\Local\Google\Chrome\User Data\SwReporter\93.269.200\em004_64.dll =>.ESET, spol. s r.o. [65628C146ACE93037FC58659F14BD35F] [05/11/2021] (.ESET, spol. s r.o..) - C:\Users\LAID SOFI\AppData\Local\Google\Chrome\User Data\SwReporter\93.269.200\em005_64.dll =>.ESET, spol. s r.o. [65628C146ACE93037FC58659F14BD35F] [12/10/2021] (.ESET, spol. s r.o..) - C:\Program Files\ESET\ESET Security\callmsi.exe =>.ESET, spol. s r.o. [65628C146ACE93037FC58659F14BD35F] [12/10/2021] (.ESET, spol. s r.o..) - C:\Program Files\ESET\ESET Security\ecmds.exe =>.ESET, spol. s r.o. [65628C146ACE93037FC58659F14BD35F] [12/10/2021] (.ESET, spol. s r.o..) - C:\Program Files\ESET\ESET Security\eguiproxy.exe =>.ESET, spol. s r.o. [65628C146ACE93037FC58659F14BD35F] [12/10/2021] (.ESET, spol. s r.o..) - C:\Program Files\ESET\ESET Security\ekrn.exe =>.ESET, spol. s r.o. [65628C146ACE93037FC58659F14BD35F] [12/10/2021] (.ESET, spol. s r.o..) - C:\Program Files\ESET\ESET Security\shellExt.dll =>.ESET, spol. s r.o. [65628C146ACE93037FC58659F14BD35F] [12/10/2021] (.ESET, spol. s r.o..) - C:\Windows\System32\DRIVERS\eamonm.sys =>.ESET, spol. s r.o. [65628C146ACE93037FC58659F14BD35F] [12/10/2021] (.ESET, spol. s r.o..) - C:\Windows\System32\DRIVERS\edevmon.sys =>.ESET, spol. s r.o. [65628C146ACE93037FC58659F14BD35F] [12/10/2021] (.ESET, spol. s r.o..) - C:\Windows\System32\DRIVERS\ehdrv.sys =>.ESET, spol. s r.o. [65628C146ACE93037FC58659F14BD35F] [12/10/2021] (.ESET, spol. s r.o..) - C:\Windows\System32\DRIVERS\ekbdflt.sys =>.ESET, spol. s r.o. [65628C146ACE93037FC58659F14BD35F] [12/10/2021] (.ESET, spol. s r.o..) - C:\Windows\System32\DRIVERS\epfw.sys =>.ESET, spol. s r.o. [65628C146ACE93037FC58659F14BD35F] [12/10/2021] (.ESET, spol. s r.o..) - C:\Windows\System32\DRIVERS\EpfwLWF.sys =>.ESET, spol. s r.o. [65628C146ACE93037FC58659F14BD35F] [12/10/2021] (.ESET, spol. s r.o..) - C:\Windows\System32\DRIVERS\epfwwfp.sys =>.ESET, spol. s r.o. [74C1C6CB36974A0FCABB9139427CF67D] [18/10/2021] (.SCS Software s.r.o..) - C:\Program Files (x86)\Euro Truck Simulator 2\unins000.exe =>.SCS Software s.r.o. [74C1C6CB36974A0FCABB9139427CF67D] [29/05/2015] (.SCS Software s.r.o..) - C:\Program Files (x86)\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe =>.SCS Software s.r.o. [7828C7315808BC8717710E13FA3C0B24] [20/12/2018] (.Tonec Inc..) - C:\Windows\System32\DRIVERS\idmwfp.sys =>.Tonec Inc. [7A726660859B24864C7E2B8B14EC5EA6] [10/09/2014] (.Mooii Tech.) - C:\Program Files (x86)\PhotoScape\PhotoScape.exe =>.Mooii Tech ~ Unselected Options: WR, O82, ~ End of the scan, 9842 items in 02mn36s (1881)(0)