Format du document : text/plain
Prévisualisation
~ ZHPDiag v2016.10.12.186 By Nicolas Coolman (2016/10/12)
~ Run by moez (Administrator) (2016/10/12 23:19:59)
~ Web: https://www.nicolascoolman.com
~ Blog: https://www.anti-malware.top
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\moez\Desktop\ZHPDiag.txt
~ Report: C:\Users\moez\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ System startup: Normal (Normal boot)
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601) =>.Microsoft Corporation
---\\ Internet Browsers (3) - 0s
~ GCIE: Google Chrome v53.0.2785.143
~ MFIE: Mozilla Firefox 49.0.1 (x86 en-US)
~ MSIE: Internet Explorer v8.0.7601.17514
---\\ Windows Product Information (4) - 4s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : KO
Windows Activation Technologies : KO
---\\ System protection software (1) - 0s
Kaspersky Internet Security v16.0.0.614 => Software.Protection
---\\ Surveillance software (1) - 1s
Adobe Acrobat Reader DC =>.Software.Surveillance
---\\ Sharing software PeerToPeer (1) - 1s
µTorrent v3.4.8.42445 =>.Software.P2P
---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4086.36 MB (22% free)
System Restore: Activé (Enable)
System drive C: has 68 GB () free of 153 GB
---\\ Connection to the system mode (3) - 0s
~ Computer Name: MOEZ-PC
~ User Name: moez
~ Logged in as Administrator
---\\ Enumeration of the disk units (4) - 0s
~ Drive C: has 68 GB free of 153 GB (System)
~ Drive D: has 17 GB free of 233 GB
~ Drive E: has 13 GB free of 217 GB
~ Drive F: has 10 GB free of 319 GB
---\\ State of the Windows Security Center (10) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Search Generic System Files (24) - 4s
[MD5.AC4C51EB24AA95B77F705AB159189E24] - 21/11/2010 - (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\Explorer.exe [2872320] =>.Microsoft Corporation
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - 14/07/2009 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe [44544] =>.Microsoft Corporation
[MD5.B5C5DCAD3899512020D135600129D665] - 14/07/2009 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\Windows\System32\Wininit.exe [96256] =>.Microsoft Corporation
[MD5.44214C94911C7CFB1D52CB64D5E8368D] - 21/11/2010 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [980992] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Windows Logon Application.) -- C:\Windows\System32\Winlogon.exe [0] =>.Microsoft Corporation
[MD5.E3AE23569749DE12D45BA3B489A036AE] - 21/11/2010 - (.Microsoft Corporation - Software Licensing Library.) -- C:\Windows\System32\sppcomapi.dll [193536] =>.Microsoft Corporation
[MD5.59DF156711A76BCB993253EC6C9BBF41] - 21/11/2010 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\System32\dnsapi.dll [270336] =>.Microsoft Corporation
[MD5.59DF156711A76BCB993253EC6C9BBF41] - 21/11/2010 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\Syswow64\dnsapi.dll [270336] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [0] =>.Microsoft Windows®
[MD5.] - 0 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\drivers\i8042prt.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [0] =>.Microsoft Windows®
[MD5.] - 0 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\drivers\Parport.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\drivers\volsnap.sys [0] =>.Microsoft Windows®
---\\ Non Microsoft non disabled Windows Services (13) - 2s
O23 - Service: خدمة Kaspersky Anti-Virus 16.0.0 (AVP16.0.0) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe =>.Kaspersky Lab®
O23 - Service: egGetSvc (egGetSvc) . (.Copyright (C) EagleGet 2014~2015 - EGMonitor.) - E:\Program Files (x86)\EagleGet\EGMonitor.exe {00BDA37A7848C63896}
O23 - Service: Energy Server Service WILLAMETTE (ESRV_SVC_WILLAMETTE) . (.Copyright (C) 2016 Intel Corporation. All rights rese - Intel(R) System Usage Report.) - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe =>.Intel(R) Software Development Products®
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation - NVIDIA GeForce ExperienceService.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe =>.NVIDIA Corporation®
O23 - Service: خدمة Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\system32\igfxCUIService.exe =>.Intel Corporation
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe =>.NVIDIA Corporation®
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe =>.NVIDIA Corporation®
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 368.8.) - C:\Windows\system32\nvvsvc.exe =>.NVIDIA Corporation
O23 - Service: Corel License Validation Service V2 x64, Powered by arvato (PSI_SVC_2_x64) . (.arvato digital services llc - PsiService PsiService.) - C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe =>.Arvato Digital Services Canada Inc®
O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp®
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
O23 - Service: Intel(R) System Usage Report Service SystemUsageReportSvc_W (SystemUsageReportSvc_WILLAMETTE) . (.Copyright (C) 2016 Intel Corporation. All rights rese - Intel(R) System Usage Report.) - C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe =>.Intel(R) Software Development Products®
---\\ Services not Microsoft (SR=Run, SS=Stop) (24) - 22s
SS - Disabl [16/09/2016] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SR - Auto [31/08/2015] [ 194000] خدمة Kaspersky Anti-Virus 16.0.0 (AVP16.0.0) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe =>.Kaspersky Lab®
SS - Demand [04/06/2015] [ 280680] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation - pGFX®
SR - Auto [13/09/2016] [ 247984] egGetSvc (egGetSvc) . (.Copyright (C) EagleGet 2014~2015.) - E:\Program Files (x86)\EagleGet\EGMonitor.exe {00BDA37A7848C63896}
SR - Auto [08/06/2016] [ 416408] Energy Server Service WILLAMETTE (ESRV_SVC_WILLAMETTE) . (.Copyright (C) 2016 Intel Corporation. All rights rese.) - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe =>.Intel(R) Software Development Products®
SR - Auto [14/06/2016] [ 1163712] NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe =>.NVIDIA Corporation®
SS - Auto [27/07/2016] [ 154440] خدمة Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [27/07/2016] [ 154440] خدمة Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [24/04/2012] [ 169752] Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe =>.Intel Corporation®
SR - Auto [04/06/2015] [ 319080] Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\Windows\system32\igfxCUIService.exe =>.Intel Corporation
SS - Demand [28/09/2016] [ 172488] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [14/06/2016] [ 1879488] NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe =>.NVIDIA Corporation®
SR - Demand [14/06/2016] [ 3632576] NVIDIA Streamer Network Service (NvStreamNetworkSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe =>.NVIDIA Corporation®
SR - Auto [14/06/2016] [ 2521024] NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe =>.NVIDIA Corporation®
SR - Auto [11/07/2016] [ 1364536] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe =>.NVIDIA Corporation
SR - Auto [13/09/2013] [ 337776] Corel License Validation Service V2 x64, Powered by arvato (PSI_SVC_2_x64) . (.arvato digital services llc.) - C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe =>.Arvato Digital Services Canada Inc®
SR - Auto [07/10/2015] [ 307456] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp®
SS - Demand [15/04/2016] [ 33224] (ShareItSvc) . (.SHAREit Technologies Co.Ltd.) - E:\Program Files (x86)\SHAREit\Shareit.Service.exe =>.LENOVO®
SS - Demand [23/07/2016] [ 837312] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe =>.Valve®
SR - Auto [02/07/2015] [ 237736] SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
SR - Auto [08/06/2016] [ 117400] Intel(R) System Usage Report Service SystemUsageReportSvc_W (SystemUsageReportSvc_WILLAMETTE) . (.Copyright (C) 2016 Intel Corporation. All rights rese.) - C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe =>.Intel(R) Software Development Products®
SS - Demand [08/06/2016] [ 416408] User Energy Server Service WILLAMETTE (USER_ESRV_SVC_WILLAMETTE) . (.Copyright (C) 2016 Intel Corporation. All rights rese.) - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe =>.Intel(R) Software Development Products®
SS - Demand [09/07/2015] [ 144640] vssbrigde64 (vssbrigde64) . (.AO Kaspersky Lab.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe =>.Kaspersky Lab®
---\\ Task Planned Automatically (31) - 10s
[MD5.959F100D1BC00D7BCDE44BF1D9A835C7] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1156824] (.Activate.) =>.Adobe Systems, Incorporated®
[MD5.EBEDE718F2AFEA1BBF2243AC701894AD] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- E:\Program Files (x86)\cc\CCleaner.exe [6854360] (.Activate.) =>.Piriform Ltd®
[MD5.B649A96A5A56D763C590A76E63771C0C] [APT] [Driver Easy Scheduled Scan] (.Easeware.) -- E:\Program Files (x86)\DriverEasy\DriverEasy.exe [2724720] (.Activate.) =>.Easeware Technology Limited®
[MD5.00000000000000000000000000000000] [APT] [Driver Genius Scheduler] (...) -- E:\Program Files (x86)\DriverGeniusx\DriverGenius.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [Driver Genius Skip UAC] (...) -- E:\Program Files (x86)\DriverGeniusx\DriverGenius.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [DriverToolkit] (...) -- E:\Program Files (x86)\DriverToolkit\DriverToolkit.exe (.not file.) [0] (.Activate.) =>.Superfluous.DriverToolkit
[MD5.00000000000000000000000000000000] [APT] [DriverToolkit Autorun] (...) -- E:\Program Files (x86)\DriverToolkit\DriverToolkit.exe (.not file.) [0] (.Activate.) =>.Superfluous.DriverToolkit
[MD5.750446ED76A5D13E902174DDDDA1A62B] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440] (.Activate.) =>.Google Inc®
[MD5.750446ED76A5D13E902174DDDDA1A62B] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440] (.Activate.) =>.Google Inc®
[MD5.5D70FB23D73046FAB8BB9F66A16BD1EF] [APT] [klcp_update] (...) -- C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1179648] (.Activate.)
[MD5.00000000000000000000000000000000] [APT] [{539C7835-F3A5-4BE0-AA6F-8EC9766A8141}] (...) -- E:\New folder (3)e\New folder (3)\New folder (2)\TSPussyhunters - Maitresse Madeline (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{F3A134A3-0A8D-46B6-86D6-9AE150D30785}] (...) -- H:\lide20lide30n670un676un1240uvst7031a_xpen\SetupSG.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.9E954EB288272F584735E53D48567ADA] [APT] [Intel] (.Intel Corporation.) -- C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1741576] (.Activate.) =>.Intel(R) Software®
O39 - APT: Driver Easy Scheduled Scan - (.Easeware.) -- C:\Windows\Tasks\Driver Easy Scheduled Scan.job [392] =>.Easeware Technology Limited®
O39 - APT: DriverToolkit Autorun - (...) -- C:\Windows\Tasks\DriverToolkit Autorun.job [356] (.Orphan.) =>.Superfluous.DriverToolkit
O39 - APT: DriverToolkit - (...) -- C:\Windows\Tasks\DriverToolkit.job [402] (.Orphan.) =>.Superfluous.DriverToolkit
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [838] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [842] =>.Google Inc®
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [4476] =>.Adobe Systems, Incorporated®
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2786] =>.Piriform Ltd®
O39 - APT: Driver Easy Scheduled Scan - (.Easeware.) -- C:\Windows\System32\Tasks\Driver Easy Scheduled Scan [3796] =>.Easeware Technology Limited®
O39 - APT: Driver Genius Scheduler - (...) -- C:\Windows\System32\Tasks\Driver Genius Scheduler [3216] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: Driver Genius Skip UAC - (...) -- C:\Windows\System32\Tasks\Driver Genius Skip UAC [2896] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: DriverToolkit - (...) -- C:\Windows\System32\Tasks\DriverToolkit [3056] (.Orphan.) =>.Superfluous.DriverToolkit
O39 - APT: DriverToolkit Autorun - (...) -- C:\Windows\System32\Tasks\DriverToolkit Autorun [2708] (.Orphan.) =>.Superfluous.DriverToolkit
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3586] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [3838] =>.Google Inc®
O39 - APT: klcp_update - (...) -- C:\Windows\System32\Tasks\klcp_update [3562]
O39 - APT: Orphan - (...) -- C:\Windows\System32\Tasks\USER_ESRV_SVC_WILLAMETTE [3036] =>.Superfluous.Orphan
O39 - APT: {539C7835-F3A5-4BE0-AA6F-8EC9766A8141} - (...) -- C:\Windows\System32\Tasks\{539C7835-F3A5-4BE0-AA6F-8EC9766A8141} [3870] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {F3A134A3-0A8D-46B6-86D6-9AE150D30785} - (...) -- C:\Windows\System32\Tasks\{F3A134A3-0A8D-46B6-86D6-9AE150D30785} [3198] (.Orphan.) =>.Superfluous.Orphan
---\\ Process running (49) - 4s
[MD5.00000000000000000000000000000000] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 368.8.) -- C:\Windows\system32\nvvsvc.exe [0] [PID.716] =>.NVIDIA Corporation
[MD5.00000000000000000000000000000000] - (.Intel Corporation - igfxCUIService Module.) -- C:\Windows\system32\igfxCUIService.exe [0] [PID.1256] =>.Intel Corporation
[MD5.7E45C7B61C4A3865608418BF4077DF82] - (.Realtek Semiconductor - Realtek Audio Service.) -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [307456] [PID.1296] =>.Realtek Semiconductor Corp®
[MD5.1E9965D9AB360142D11B3E08818B02F7] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407744] [PID.1340] =>.Realtek Semiconductor Corp®
[MD5.EF3F07EC6ECC2DB0950151070A53E97A] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1289272] [PID.1564] =>.NVIDIA Corporation®
[MD5.50C3C62FFE6337E6E4F2F01CB07DF63C] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [194000] [PID.1992] =>.Kaspersky Lab®
[MD5.0071FC818E9DE7718404D228306253EB] - (.Copyright (C) EagleGet 2014~2015 - EGMonitor.) -- E:\Program Files (x86)\EagleGet\EGMonitor.exe [247984] [PID.1240] {00BDA37A7848C63896}
[MD5.F78BC07DCED5EDDD6D477E923620F8EA] - (.NVIDIA Corporation - NVIDIA GeForce ExperienceService.) -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712] [PID.836] =>.NVIDIA Corporation®
[MD5.020F45E362D3B57CCC5735582BB1A6EC] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488] [PID.1488] =>.NVIDIA Corporation®
[MD5.0EDF9504CA5174075BA5902AFC1F57C8] - (.NVIDIA Corporation - NVIDIA Streamer Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024] [PID.1848] =>.NVIDIA Corporation®
[MD5.02EB0277D29B172F27BFB392422C1F05] - (.arvato digital services llc - PsiService PsiService.) -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776] [PID.1812] =>.Arvato Digital Services Canada Inc®
[MD5.C1345EB0C9A974657563BB38F71CB9E1] - (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) -- C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [237736] [PID.2124] =>.Synaptics Incorporated®
[MD5.2BE3A44B764D6C43CBF4650E862CB807] - (.Copyright (C) 2016 Intel Corporation. All rights rese - Intel(R) System Usage Report.) -- C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [117400] [PID.2180] =>.Intel(R) Software Development Products®
[MD5.200185E99AA0922D1D12A6BF4345E65D] - (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16407296] [PID.2672] =>.Realtek Semiconductor Corp®
[MD5.94A8196066774252DF015EEDF02CCA44] - (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120] [PID.2684] =>.NVIDIA Corporation®
[MD5.CB7436970181F2C0578E835D9CFEE1DC] - (.EagleGet.com - EagleGet Free Downloader.) -- E:\Program Files (x86)\EagleGet\EagleGet.exe [1945776] [PID.2708] {00BDA37A7848C63896}
[MD5.9209D57C1AA24841EF8D5DE6A5B2AAEB] - (.NVIDIA Corporation - NVIDIA Network Stream Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576] [PID.3124] =>.NVIDIA Corporation®
[MD5.0071FC818E9DE7718404D228306253EB] - (.Copyright (C) EagleGet 2014~2015 - EGMonitor.) -- E:\Program Files (x86)\EagleGet\EGMonitor.exe [247984] [PID.3188] {00BDA37A7848C63896}
[MD5.35AA4B404689D5CC233D6ED2A3A7E0AE] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3936936] [PID.3228] =>.Synaptics Incorporated®
[MD5.58332C83C4A329A744B0B98F934934BB] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe [288920] [PID.3380] =>.Google Inc®
[MD5.6CF22C519FC54D73786A176872CB66EF] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE [201384] [PID.3516] =>.Synaptics Incorporated®
[MD5.788321A2C0C45F16820E00A8BA8FD3DA] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe [366232] [PID.3720] =>.Google Inc®
[MD5.D5212713CE090D5915DC7112A0522A9C] - (.NVIDIA Corporation - NVIDIA Streamer User Agent.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe [21330880] [PID.3796] =>.NVIDIA Corporation®
[MD5.2D68F7A85C9B28A3B28C08526649467B] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [2456120] [PID.3896] =>.NVIDIA Corporation®
[MD5.932A21CF0DA4E951C7C4A62D27E6D8FB] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe [211712] [PID.4636] =>.Kaspersky Lab®
[MD5.00000000000000000000000000000000] - (.Intel Corporation - igfxEM Module.) -- C:\Windows\system32\igfxEM.exe [0] [PID.5016] =>.Intel Corporation
[MD5.00000000000000000000000000000000] - (.Intel Corporation - igfxHK Module.) -- C:\Windows\system32\igfxHK.exe [0] [PID.5032] =>.Intel Corporation
[MD5.00000000000000000000000000000000] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxTray.exe [0] [PID.5040] =>.Intel Corporation
[MD5.C6F8B8139F93FE4853E0615838D60C89] - (.Copyright (C) 2016 Intel Corporation. All rights rese - Intel(R) System Usage Report.) -- C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv.exe [458904] [PID.1552] =>.Intel(R) Software Development Products®
[MD5.F4D8F67474DDA4FEF3935393AAA0173F] - (.Copyright (C) 2016 Intel Corporation. All rights rese - Intel(R) System Usage Report.) -- C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408] [PID.2696] =>.Intel(R) Software Development Products®
[MD5.153112F0FAA6BCC9F25A5F4ACC74D7EC] - (.Alexander Roshal - WinRAR archiver.) -- C:\Program Files (x86)\WinRAR\WinRAR.exe [1463288] [PID.5620] =>.win.rar GmbH®
[MD5.59EFE18E0373FA9F57B9178E1CEF246F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1135208] [PID.1280] =>.Google Inc®
[MD5.59EFE18E0373FA9F57B9178E1CEF246F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1135208] [PID.4692] =>.Google Inc®
[MD5.59EFE18E0373FA9F57B9178E1CEF246F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1135208] [PID.1108] =>.Google Inc®
[MD5.59EFE18E0373FA9F57B9178E1CEF246F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1135208] [PID.3332] =>.Google Inc®
[MD5.59EFE18E0373FA9F57B9178E1CEF246F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1135208] [PID.1728] =>.Google Inc®
[MD5.59EFE18E0373FA9F57B9178E1CEF246F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1135208] [PID.5588] =>.Google Inc®
[MD5.59EFE18E0373FA9F57B9178E1CEF246F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1135208] [PID.3596] =>.Google Inc®
[MD5.59EFE18E0373FA9F57B9178E1CEF246F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1135208] [PID.5244] =>.Google Inc®
[MD5.59EFE18E0373FA9F57B9178E1CEF246F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1135208] [PID.5732] =>.Google Inc®
[MD5.59EFE18E0373FA9F57B9178E1CEF246F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1135208] [PID.5564] =>.Google Inc®
[MD5.59EFE18E0373FA9F57B9178E1CEF246F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1135208] [PID.2480] =>.Google Inc®
[MD5.59EFE18E0373FA9F57B9178E1CEF246F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1135208] [PID.1976] =>.Google Inc®
[MD5.59EFE18E0373FA9F57B9178E1CEF246F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1135208] [PID.6200] =>.Google Inc®
[MD5.59EFE18E0373FA9F57B9178E1CEF246F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1135208] [PID.6272] =>.Google Inc®
[MD5.59EFE18E0373FA9F57B9178E1CEF246F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1135208] [PID.6324] =>.Google Inc®
[MD5.59EFE18E0373FA9F57B9178E1CEF246F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1135208] [PID.6564] =>.Google Inc®
[MD5.D80874196ED668403A59296CD89C87B2] - (.MPC-HC Team - MPC-HC x64.) -- C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe [8909824] [PID.2060] =>.MPC-HC Team
[MD5.5B0856CEC3D279777DCA580A2A2D6A23] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\moez\Desktop\ZHPDiag3.exe [2404864] [PID.6500] =>.Nicolas Coolman
---\\ Google Chrome, Start,Search,Extensions (21) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ltt.ly
G0 - GCSP: Preferences [User Data\Default][HomePage] http://apis.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients5.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://gc.kis.scr.kaspersky-labs.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://lh3.googleusercontent.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ogs.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com.ly
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [eahebamiopdhefndnmappcihfajigkka] __MSG_ExtensionName__
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [kaebhgioafceeldhgjmendlfhbfjefmo] EagleGet Free Downloader
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (5) - 7s
P2 - EXT: (.Microsoft Corporation - The plugin allows you to have a better expe.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npMeetingJoinPluginOC.dll =>.Microsoft Corporation®
P2 - EXT FILE: (.anonymoX - Easy anonymous web browsing and bypass.) -- C:\Users\moez\AppData\Roaming\Mozilla\Firefox\Profiles\3y9rp38n.default\extensions\client@anonymox.net.xpi =>.anonymoX
P2 - EXT FILE: (.User-Agent Switcher - Quickly and easily switch between popu.) -- C:\Users\moez\AppData\Roaming\Mozilla\Firefox\Profiles\3y9rp38n.default\extensions\jid1-kyxEAcWua7BEKq@jetpack.xpi
P2 - EXT: (.Yandex - Yandex Elements.) -- C:\Users\moez\AppData\Roaming\Mozilla\Firefox\Profiles\3y9rp38n.default\extensions\yasearch@yandex.ru
P2 - EXT: (. - Video AdBlock.) -- C:\Users\moez\AppData\Roaming\Mozilla\Firefox\Profiles\3y9rp38n.default\extensions\{7b8a500a-a464-4624-bd4f-73eaafe0f766}
---\\ Internet Explorer Extensions, Start, Search (17) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://mhotspot.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer
---\\ Internet Explorer, Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (25)
---\\ Browser Helper Object (BHO) (6) - 0s
O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll =>.Microsoft Corporation®
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (Orphan)
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL =>.Microsoft Corporation®
O2 - BHO: ScriptInjectionPluginBrowserHelperObject [64Bits] - {C66D064F-82FE-4E1A-B06A-B2490BA48B18} . (.AO Kaspersky Lab - Kaspersky Protection plugins.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll =>.Kaspersky Lab®
O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} (Orphan)
---\\ Auto loading programs from Registry and folders (9) - 1s
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe =>.NVIDIA Corporation®
O4 - HKLM\..\Run: [ShadowPlay] . (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [EagleGet] . (.EagleGet.com - EagleGet Free Downloader.) -- E:\Program Files (x86)\EagleGet\EagleGet.exe {00BDA37A7848C63896}
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-318700280-1262799068-3410121159-1000\..\Run: [EagleGet] . (.EagleGet.com - EagleGet Free Downloader.) -- E:\Program Files (x86)\EagleGet\EagleGet.exe {00BDA37A7848C63896}
---\\ Global shortcuts Startup (158) - 25s
O4 - GS\Desktop [Administrator]: Adobe Bridge CC (64bit).lnk . (.Adobe Systems Incorporated - Adobe Bridge CC.) E:\Program Files (x86)\adobe\Adobe Bridge CC (64 Bit)\Bridge.exe =>.Adobe Systems Incorporated®
O4 - GS\Desktop [Administrator]: Adobe Illustrator CC 2015.lnk . (.Adobe Systems Inc. - Adobe Illustrator CC 2015.) E:\Program Files (x86)\adobe\Adobe Illustrator CC 2015\Support Files\Contents\Windows\Illustrator.exe =>.Adobe Systems Incorporated®
O4 - GS\Desktop [Administrator]: Adobe Photoshop CC (64 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CC.) E:\Program Files (x86)\adobe\Adobe Photoshop CC (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\Desktop [Administrator]: Adobe Photoshop CC.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CC.) E:\Program Files (x86)\adobe\Adobe Photoshop CC\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\Desktop [Administrator]: Auslogics Driver Updater.lnk . (.Auslogics - Driver Updater.) E:\Program Files (x86)\Auslogics\Driver Updater\DriverUpdater.exe =>.Auslogics Labs Pty Ltd®
O4 - GS\Desktop [Administrator]: Downloads.lnk . (...) C:\Users\moez\Downloads
O4 - GS\Desktop [Administrator]: InDesign - 64.lnk . (.Adobe Systems Incorporated - Adobe InDesign CC.) E:\Program Files (x86)\adobe\Adobe InDesign CC (64 bit)\InDesign.exe =>.Adobe Systems Incorporated®
O4 - GS\Desktop [Administrator]: InDesign.lnk . (.Adobe Systems Incorporated - Adobe InDesign CC.) E:\Program Files (x86)\adobe\Adobe InDesign CC\InDesign.exe =>.Adobe Systems Incorporated®
O4 - GS\Desktop [Administrator]: IP Video System Design Tool 8 VIVOTEK.lnk . (.JVSG Team - Video Surveillance System Design Tool.) E:\Program Files (x86)\IP Video System Design Tool 8 VIVOTEK\IPVideoSystemDesignTool.exe {00BC436077F8F80202A08B7BDD37A3B717}
O4 - GS\Desktop [Administrator]: Microsoft Office Excel 2007.lnk . (...) C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Administrator]: mpc-hc64 - Shortcut (2).lnk . (.MPC-HC Team - MPC-HC x64.) C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\Desktop [Administrator]: mpc-hc64 - Shortcut.lnk . (.MPC-HC Team - MPC-HC x64.) C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\Desktop [Administrator]: Nmap - Zenmap GUI.lnk . (...) E:\Program Files (x86)\Nmap\zenmap.exe {08304B42D738E05D14039D55A29A00C8}
O4 - GS\Desktop [Administrator]: Start Tor Browser.lnk . (.Mozilla Corporation - Tor Browser.) E:\Program Files (x86)\Tor Browser\Browser\firefox.exe =>.Mozilla Corporation
O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\moez\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrator]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\moez\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Desktop [Administrator]: الخدمات النقدية الآمنة.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe -safebanking =>.Kaspersky Lab®
O4 - GS\Quicklaunch [Administrator]: EagleGet.lnk . (.EagleGet.com - EagleGet Free Downloader.) E:\Program Files (x86)\EagleGet\EagleGet.exe {00BDA37A7848C63896}
O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrator]: Inside.lnk . (...) D:\GAME)\Inside\INSIDE.exe
O4 - GS\Quicklaunch [Administrator]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Administrator]: Oracle VM VirtualBox.lnk . (.Oracle Corporation - VirtualBox Manager.) E:\Program Files (x86)\Oracle\VirtualBox\VirtualBox.exe =>.Oracle Corporation®
O4 - GS\sendTo [Administrator]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [Administrator]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\TaskBar [Administrator]: Calculator.lnk . (.Microsoft Corporation - Windows Calculator.) C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrator]: EagleGet.lnk . (.EagleGet.com - EagleGet Free Downloader.) E:\Program Files (x86)\EagleGet\EagleGet.exe {00BDA37A7848C63896}
O4 - GS\TaskBar [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrator]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\TaskBar [Administrator]: Media Player Classic.lnk . (.MPC-HC Team - MPC-HC x64.) C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\TaskBar [Administrator]: Notepad.lnk . (.Microsoft Corporation - Notepad.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrator]: Snipping Tool.lnk . (.Microsoft Corporation - Snipping Tool.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrator]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrator]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [Administrator]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Administrator]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Guest]: Adobe Bridge CC (64bit).lnk . (.Adobe Systems Incorporated - Adobe Bridge CC.) E:\Program Files (x86)\adobe\Adobe Bridge CC (64 Bit)\Bridge.exe =>.Adobe Systems Incorporated®
O4 - GS\Desktop [Guest]: Adobe Illustrator CC 2015.lnk . (.Adobe Systems Inc. - Adobe Illustrator CC 2015.) E:\Program Files (x86)\adobe\Adobe Illustrator CC 2015\Support Files\Contents\Windows\Illustrator.exe =>.Adobe Systems Incorporated®
O4 - GS\Desktop [Guest]: Adobe Photoshop CC (64 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CC.) E:\Program Files (x86)\adobe\Adobe Photoshop CC (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\Desktop [Guest]: Adobe Photoshop CC.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CC.) E:\Program Files (x86)\adobe\Adobe Photoshop CC\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\Desktop [Guest]: Auslogics Driver Updater.lnk . (.Auslogics - Driver Updater.) E:\Program Files (x86)\Auslogics\Driver Updater\DriverUpdater.exe =>.Auslogics Labs Pty Ltd®
O4 - GS\Desktop [Guest]: Downloads.lnk . (...) C:\Users\moez\Downloads
O4 - GS\Desktop [Guest]: InDesign - 64.lnk . (.Adobe Systems Incorporated - Adobe InDesign CC.) E:\Program Files (x86)\adobe\Adobe InDesign CC (64 bit)\InDesign.exe =>.Adobe Systems Incorporated®
O4 - GS\Desktop [Guest]: InDesign.lnk . (.Adobe Systems Incorporated - Adobe InDesign CC.) E:\Program Files (x86)\adobe\Adobe InDesign CC\InDesign.exe =>.Adobe Systems Incorporated®
O4 - GS\Desktop [Guest]: IP Video System Design Tool 8 VIVOTEK.lnk . (.JVSG Team - Video Surveillance System Design Tool.) E:\Program Files (x86)\IP Video System Design Tool 8 VIVOTEK\IPVideoSystemDesignTool.exe {00BC436077F8F80202A08B7BDD37A3B717}
O4 - GS\Desktop [Guest]: Microsoft Office Excel 2007.lnk . (...) C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Guest]: mpc-hc64 - Shortcut (2).lnk . (.MPC-HC Team - MPC-HC x64.) C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\Desktop [Guest]: mpc-hc64 - Shortcut.lnk . (.MPC-HC Team - MPC-HC x64.) C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\Desktop [Guest]: Nmap - Zenmap GUI.lnk . (...) E:\Program Files (x86)\Nmap\zenmap.exe {08304B42D738E05D14039D55A29A00C8}
O4 - GS\Desktop [Guest]: Start Tor Browser.lnk . (.Mozilla Corporation - Tor Browser.) E:\Program Files (x86)\Tor Browser\Browser\firefox.exe =>.Mozilla Corporation
O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\moez\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Guest]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\moez\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Desktop [Guest]: الخدمات النقدية الآمنة.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe -safebanking =>.Kaspersky Lab®
O4 - GS\Quicklaunch [Guest]: EagleGet.lnk . (.EagleGet.com - EagleGet Free Downloader.) E:\Program Files (x86)\EagleGet\EagleGet.exe {00BDA37A7848C63896}
O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Guest]: Inside.lnk . (...) D:\GAME)\Inside\INSIDE.exe
O4 - GS\Quicklaunch [Guest]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Guest]: Oracle VM VirtualBox.lnk . (.Oracle Corporation - VirtualBox Manager.) E:\Program Files (x86)\Oracle\VirtualBox\VirtualBox.exe =>.Oracle Corporation®
O4 - GS\sendTo [Guest]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [Guest]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\TaskBar [Guest]: Calculator.lnk . (.Microsoft Corporation - Windows Calculator.) C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Guest]: EagleGet.lnk . (.EagleGet.com - EagleGet Free Downloader.) E:\Program Files (x86)\EagleGet\EagleGet.exe {00BDA37A7848C63896}
O4 - GS\TaskBar [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Guest]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\TaskBar [Guest]: Media Player Classic.lnk . (.MPC-HC Team - MPC-HC x64.) C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\TaskBar [Guest]: Notepad.lnk . (.Microsoft Corporation - Notepad.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Guest]: Snipping Tool.lnk . (.Microsoft Corporation - Snipping Tool.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Guest]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Guest]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [Guest]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Guest]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [moez]: Adobe Bridge CC (64bit).lnk . (.Adobe Systems Incorporated - Adobe Bridge CC.) E:\Program Files (x86)\adobe\Adobe Bridge CC (64 Bit)\Bridge.exe =>.Adobe Systems Incorporated®
O4 - GS\Desktop [moez]: Adobe Illustrator CC 2015.lnk . (.Adobe Systems Inc. - Adobe Illustrator CC 2015.) E:\Program Files (x86)\adobe\Adobe Illustrator CC 2015\Support Files\Contents\Windows\Illustrator.exe =>.Adobe Systems Incorporated®
O4 - GS\Desktop [moez]: Adobe Photoshop CC (64 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CC.) E:\Program Files (x86)\adobe\Adobe Photoshop CC (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\Desktop [moez]: Adobe Photoshop CC.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CC.) E:\Program Files (x86)\adobe\Adobe Photoshop CC\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\Desktop [moez]: Auslogics Driver Updater.lnk . (.Auslogics - Driver Updater.) E:\Program Files (x86)\Auslogics\Driver Updater\DriverUpdater.exe =>.Auslogics Labs Pty Ltd®
O4 - GS\Desktop [moez]: Downloads.lnk . (...) C:\Users\moez\Downloads
O4 - GS\Desktop [moez]: InDesign - 64.lnk . (.Adobe Systems Incorporated - Adobe InDesign CC.) E:\Program Files (x86)\adobe\Adobe InDesign CC (64 bit)\InDesign.exe =>.Adobe Systems Incorporated®
O4 - GS\Desktop [moez]: InDesign.lnk . (.Adobe Systems Incorporated - Adobe InDesign CC.) E:\Program Files (x86)\adobe\Adobe InDesign CC\InDesign.exe =>.Adobe Systems Incorporated®
O4 - GS\Desktop [moez]: IP Video System Design Tool 8 VIVOTEK.lnk . (.JVSG Team - Video Surveillance System Design Tool.) E:\Program Files (x86)\IP Video System Design Tool 8 VIVOTEK\IPVideoSystemDesignTool.exe {00BC436077F8F80202A08B7BDD37A3B717}
O4 - GS\Desktop [moez]: Microsoft Office Excel 2007.lnk . (...) C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe =>.Microsoft Corporation®
O4 - GS\Desktop [moez]: mpc-hc64 - Shortcut (2).lnk . (.MPC-HC Team - MPC-HC x64.) C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\Desktop [moez]: mpc-hc64 - Shortcut.lnk . (.MPC-HC Team - MPC-HC x64.) C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\Desktop [moez]: Nmap - Zenmap GUI.lnk . (...) E:\Program Files (x86)\Nmap\zenmap.exe {08304B42D738E05D14039D55A29A00C8}
O4 - GS\Desktop [moez]: Start Tor Browser.lnk . (.Mozilla Corporation - Tor Browser.) E:\Program Files (x86)\Tor Browser\Browser\firefox.exe =>.Mozilla Corporation
O4 - GS\Desktop [moez]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\moez\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [moez]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\moez\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Desktop [moez]: الخدمات النقدية الآمنة.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe -safebanking =>.Kaspersky Lab®
O4 - GS\Quicklaunch [moez]: EagleGet.lnk . (.EagleGet.com - EagleGet Free Downloader.) E:\Program Files (x86)\EagleGet\EagleGet.exe {00BDA37A7848C63896}
O4 - GS\Quicklaunch [moez]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [moez]: Inside.lnk . (...) D:\GAME)\Inside\INSIDE.exe
O4 - GS\Quicklaunch [moez]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [moez]: Oracle VM VirtualBox.lnk . (.Oracle Corporation - VirtualBox Manager.) E:\Program Files (x86)\Oracle\VirtualBox\VirtualBox.exe =>.Oracle Corporation®
O4 - GS\sendTo [moez]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [moez]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\TaskBar [moez]: Calculator.lnk . (.Microsoft Corporation - Windows Calculator.) C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\TaskBar [moez]: EagleGet.lnk . (.EagleGet.com - EagleGet Free Downloader.) E:\Program Files (x86)\EagleGet\EagleGet.exe {00BDA37A7848C63896}
O4 - GS\TaskBar [moez]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [moez]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\TaskBar [moez]: Media Player Classic.lnk . (.MPC-HC Team - MPC-HC x64.) C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\TaskBar [moez]: Notepad.lnk . (.Microsoft Corporation - Notepad.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\TaskBar [moez]: Snipping Tool.lnk . (.Microsoft Corporation - Snipping Tool.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\TaskBar [moez]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [moez]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [moez]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [moez]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\CommonDesktop [Public]: Acrobat Reader DC.lnk . (.Adobe Systems Incorporated - Adobe Acrobat Reader DC.) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: Adobe Application Manager.lnk . (.Adobe Systems Incorporated - Adobe Application Manager.) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDapp.exe --appletID=CCM_UI --appletVersion=1.0 --workflow=CCM_workflow_launch =>.Adobe Systems Incorporated®
O4 - GS\CommonDesktop [Public]: Bitstream Font Navigator (64-Bit).lnk . (.Bitstream Inc. - FontNav.) E:\Program Files (x86)\CorelDRAW Graphics Suite X7\FontNav64\FontNav.exe =>.Corel Corporation®
O4 - GS\CommonDesktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) E:\Program Files (x86)\cc\CCleaner64.exe =>.Piriform Ltd®
O4 - GS\CommonDesktop [Public]: Corel CAPTURE X7 (64-Bit).lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{2C91CB9D-323D-43E5-A433-229B71CFB773}\NewShortcut8_65BCA6E0337A452DA55C0654EAAD7A0B.exe =>.Corel Corporation®
O4 - GS\CommonDesktop [Public]: Corel CONNECT X7 (64-Bit).lnk . (.Corel Corporation - Corel CONNECT X7 (64-Bit).) E:\Program Files (x86)\CorelDRAW Graphics Suite X7\Connect64\Connect.exe =>.Corel Corporation®
O4 - GS\CommonDesktop [Public]: Corel PHOTO-PAINT X7 (64-Bit).lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{C922F325-DD52-4E22-B204-431A06E63E51}\NewShortcut2_EBB51BFEE10948A888CB7ADF96E8EC80.exe =>.Corel Corporation®
O4 - GS\CommonDesktop [Public]: CorelDRAW X7 (64-Bit).lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{2C0DDC74-5234-43DD-BB5A-0645B8FE5289}\NewShortcut1_68427AB8B2C044C58AA777A4C3F75634.exe =>.Corel Corporation®
O4 - GS\CommonDesktop [Public]: Driver Easy.lnk . (.Easeware - DriverEasy.) E:\Program Files (x86)\DriverEasy\DriverEasy.exe =>.Easeware Technology Limited®
O4 - GS\CommonDesktop [Public]: EagleGet.lnk . (.EagleGet.com - EagleGet Free Downloader.) E:\Program Files (x86)\EagleGet\EagleGet.exe {00BDA37A7848C63896}
O4 - GS\CommonDesktop [Public]: GeForce Experience.lnk . (.NVIDIA Corporation - NVIDIA GeForce Experience Launcher Applicat.) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\LaunchGFExperience.exe =>.NVIDIA Corporation®
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: Inside.lnk . (...) D:\GAME)\Inside\INSIDE.exe
O4 - GS\CommonDesktop [Public]: Intel(R) Driver Update Utility 2.6.lnk . (.Intel - Intel Driver Update Utility.) C:\Program Files (x86)\Intel Driver Update Utility\DriverUpdateUI.exe =>.Intel(R) Driver Update Utility®
O4 - GS\CommonDesktop [Public]: Intel(R) HD Graphics Control Panel.lnk . (.Intel Corporation - GFXUIEX Module.) C:\Windows\system32\GfxUIEx.exe =>.Intel Corporation - pGFX®
O4 - GS\CommonDesktop [Public]: Kaspersky Internet Security.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe =>.Kaspersky Lab®
O4 - GS\CommonDesktop [Public]: mHotspot.lnk . (.1BN Software & IT Solutions Pvt. Ltd. - mHotspot.) E:\Program Files (x86)\mHotspot\mHotspot.exe
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) E:\Program Files (x86)\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Oracle VM VirtualBox.lnk . (.Oracle Corporation - VirtualBox Manager.) E:\Program Files (x86)\Oracle\VirtualBox\VirtualBox.exe =>.Oracle Corporation®
O4 - GS\CommonDesktop [Public]: PrimoPDF - Drop Files Here to Convert!.lnk . (.Nitro PDF - PrimoPDF.) C:\Program Files (x86)\Nitro PDF\PrimoPDF\PrimoPDF.exe =>.Nitro PDF
O4 - GS\CommonDesktop [Public]: SHAREit.lnk . (.SHAREit Technologies Co.Ltd - SHAREit.) E:\Program Files (x86)\SHAREit\SHAREit.exe =>.LENOVO®
O4 - GS\CommonDesktop [Public]: Steam.lnk . (.Valve Corporation - Steam Client Bootstrapper.) E:\Program Files (x86)\Steam\Steam.exe =>.Valve®
O4 - GS\CommonDesktop [Public]: Virtual CloneDrive.lnk . (.Elaborate Bytes AG - VirtualCloneDrive Preferences.) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDPrefs.exe =>.Elaborate Bytes AG
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) E:\Program Files (x86)\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\Accessories [Public]: Command Prompt.lnk . (.Microsoft Corporation - Windows Command Processor.) C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Notepad.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe -extoff =>.Microsoft Corporation®
O4 - GS\SystemTools [Public]: Private Character Editor.lnk . (.Microsoft Corporation - Private Character Editor.) C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation
O4 - GS\Programs [Public]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Bluetooth File Transfer Wizard.lnk . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Windows Calculator.) C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Display Switch.) C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Math Input Panel Accessory.) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Windows Mobility Center.) C:\Windows\system32\mblctr.exe /open =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Remote Desktop Connection.) C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Snipping Tool.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Windows Sound Recorder.) C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Sticky Notes.) C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) C:\Windows\System32\mobsync.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Windows host process (Rundll32).) C:\Windows\system32\rundll32.exe %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Windows Wordpad Application.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Character Map.) C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Microsoft® Disk Defragmenter.) C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Disk Space Cleanup Manager for Windows.) C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Resource and Performance Monitor.) C:\Windows\system32\perfmon.exe /res =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - System Information.) C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Microsoft® Windows System Restore.) C:\Windows\system32\rstrui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc /s
O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Windows Easy Transfer Post Migration Applic.) C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Windows Easy Transfer Application.) C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation
---\\ Lop.com/Domain Hijackers (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.240.32.5 62.68.42.2 =>.USA Eli Lilly And Company
O17 - HKLM\System\CCS\Services\Tcpip\..\{49C2C95E-1790-4D78-8806-D3DBD630AF07}: DhcpNameServer = 192.168.10.10 192.168.10.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{8533FD6F-1DCD-47F7-8B2A-B3F3F3C6FC61}: DhcpNameServer = 62.240.32.5 62.68.42.2 =>.USA Eli Lilly And Company
---\\ Extra protocols (26) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: grooveLocalGWS [64Bits] - {88FED34C-F0CA-4636-A375-3CB6248B04CD} . (.Microsoft Corporation - GrooveSystemServices Module.) -- E:\Program Files (x86)\Microsoft Office2\Office12\GrooveSystemServices.dll =>.Microsoft Corporation®
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL =>.Microsoft Corporation®
---\\ AppInit_DLLs Registry value Autorun (1) - 0s
O20 - AppInit_DLLs: . (.NVIDIA Corporation - NVIDIA shim initialization dll, Version 368.) - C:\Windows\system32\nvinitx.dll =>.NVIDIA Corporation
---\\ Software installed (92) - 13s
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>.BitTorrent Inc.
O42 - Logiciel: 7-Zip 16.02 (x64) - (.Igor Pavlov.) [HKLM][64Bits] -- 7-Zip =>.Igor Pavlov
O42 - Logiciel: Adobe Acrobat Reader DC - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-AC0F074E4100} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Bridge CC (64 Bit) - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {359F8007-6486-429C-A8C5-D67F6897C88C} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Illustrator CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {5680D629-B263-49CC-821E-3CEBD4507B51} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Photoshop CC - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {2D99B50E-431D-4AA8-85C1-172A6F8BCF09} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824202044} =>.Adobe Systems Incorporated
O42 - Logiciel: Age of Mythology: Extended Edition Tale of the Dragon - (...) [HKLM][64Bits] -- YWdlb2ZteXRob2xvZ3lleHRlbmRlZGVkaXRpb24_is1
O42 - Logiciel: Ansel - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel =>.NVIDIA Corporation
O42 - Logiciel: Arabic Rappelz - (.Game Power 7.) [HKLM][64Bits] -- Arabic Rappelz
O42 - Logiciel: Auslogics Driver Updater - (.Auslogics Labs Pty Ltd.) [HKLM][64Bits] -- {23BB1B18-3537-48F7-BEF7-42BC65DBF993}_is1 =>.Auslogics Labs Pty Ltd®
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: CGS17_Setup_x64 - (.Corel Corporation.) [HKLM][64Bits] -- {83646B67-A878-4E95-BB4B-AF4A6E61F28C} =>.Corel Corporation
O42 - Logiciel: Corel Graphics - Windows Shell Extension - (.Corel Corporation.) [HKLM][64Bits] -- _{4AB916EE-ABA8-4079-9889-745798B6D809} =>.Corel Corporation®
O42 - Logiciel: Corel Graphics - Windows Shell Extension - (.Corel Corporation.) [HKLM][64Bits] -- {4AB916EE-ABA8-4079-9889-745798B6D809} =>.Corel Corporation
O42 - Logiciel: Corel Graphics - Windows Shell Extension 32 Bit - (.Corel Corporation.) [HKLM][64Bits] -- {FD4A43CE-ABAE-4161-83AC-314A3C804F42} =>.Corel Corporation
O42 - Logiciel: CorelDRAW Graphics Suite X7 - Capture (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {2C91CB9D-323D-43E5-A433-229B71CFB773} =>.Corel Corporation
O42 - Logiciel: CorelDRAW Graphics Suite X7 - Common (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {9178F0A8-B6F6-4DA7-AD63-317CC4875F4B} =>.Corel Corporation
O42 - Logiciel: CorelDRAW Graphics Suite X7 - Connect (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {BD036E95-A9CD-4DED-B744-95AB1DCAFF0C} =>.Corel Corporation
O42 - Logiciel: CorelDRAW Graphics Suite X7 - Custom Data (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {5162E418-BB43-4C8F-ACD6-069645EF98C3} =>.Corel Corporation
O42 - Logiciel: CorelDRAW Graphics Suite X7 - Draw (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {2C0DDC74-5234-43DD-BB5A-0645B8FE5289} =>.Corel Corporation
O42 - Logiciel: CorelDRAW Graphics Suite X7 - EN (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {3BB8EB77-737B-4B32-BAB9-08C7110C46BD} =>.Corel Corporation
O42 - Logiciel: CorelDRAW Graphics Suite X7 - Filters (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {D10A5CFA-FE33-4F06-AE37-554604F00A52} =>.Corel Corporation
O42 - Logiciel: CorelDRAW Graphics Suite X7 - FontNav (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {5406029B-67AD-4F8E-9F2D-F1959CD9CD86} =>.Corel Corporation
O42 - Logiciel: CorelDRAW Graphics Suite X7 - IPM Content (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {EF44BCCD-13F9-4974-862C-CCFAF43EE082} =>.Corel Corporation
O42 - Logiciel: CorelDRAW Graphics Suite X7 - IPM T (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {13179AB2-69FD-459B-800F-81865A501AD4} =>.Corel Corporation
O42 - Logiciel: CorelDRAW Graphics Suite X7 - PHOTO-PAINT (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {C922F325-DD52-4E22-B204-431A06E63E51} =>.Corel Corporation
O42 - Logiciel: CorelDRAW Graphics Suite X7 - Photozoom Plugin (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {1A73168F-5983-46A6-AAAB-FD83BC231E02} =>.Corel Corporation
O42 - Logiciel: CorelDRAW Graphics Suite X7 - Redist (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {C57EDB5A-AC8E-4E03-9F1A-DC013A2BB9B2} =>.Corel Corporation
O42 - Logiciel: CorelDRAW Graphics Suite X7 - Setup Files (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {5CB73140-806C-42C6-A05A-1AFD0E92DEB5} =>.Corel Corporation
O42 - Logiciel: CorelDRAW Graphics Suite X7 - VBA (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {5672E0DC-7489-4EAC-8CFD-E01B3868FCB5} =>.Corel Corporation
O42 - Logiciel: CorelDRAW Graphics Suite X7 - VideoBrowser (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {966996DC-D67C-40E3-8BD4-31FA0F093571} =>.Corel Corporation
O42 - Logiciel: CorelDRAW Graphics Suite X7 - Writing Tools (x64) - (. Corel Corporation.) [HKLM][64Bits] -- {D63404AC-C2F1-4B3D-96EA-9727AC9D994C} =>. Corel Corporation
O42 - Logiciel: CorelDRAW Graphics Suite X7 (64-Bit) - (.Corel Corporation.) [HKLM][64Bits] -- _{5CB73140-806C-42C6-A05A-1AFD0E92DEB5} =>.Corel Corporation®
O42 - Logiciel: Driver Easy 5.1.0 - (.Easeware.) [HKLM][64Bits] -- DriverEasy_is1 =>.Easeware Technology Limited®
O42 - Logiciel: EagleGet version 2.0.4.15 - (.EagleGet.) [HKLM][64Bits] -- {F6D8142A-B30B-454B-9EE0-08A7B997DFE4}_is1 =>.EagleGet
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Inside - (.Playdead.) [HKLM][64Bits] -- {9BD4503F-F711-491D-984A-AB4ABD66B8C2}_is1 =>.Playdead
O42 - Logiciel: Intel(R) C++ Redistributables for Windows* on Intel(R) 64 - (.Intel Corporation.) [HKLM][64Bits] -- {D2437C5C-2D8C-40D2-8059-689AD7239FA3} =>.Intel Corporation
O42 - Logiciel: Intel(R) Driver Update Utility 2.6 - (.Intel.) [HKLM][64Bits] -- {2B710CA5-99F0-4D29-962C-29A7CFF7A989} =>.Intel
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation - pGFX®
O42 - Logiciel: Intel(R) Product Improvement Program - (.Intel.) [HKLM][64Bits] -- {B9FD2F32-B6ED-477A-98A3-380720F1B553} =>.Intel
O42 - Logiciel: Intel® Driver Update Utility - (.Intel.) [HKLM][64Bits] -- {3e714701-b89c-4cf2-bf3b-41b2c105ffdc} =>.Intel(R) Driver Update Utility®
O42 - Logiciel: IP Video System Design Tool 8 VIVOTEK v.8.1.0.1347 - (.www.jvsg.com.) [HKLM][64Bits] -- IP Video System Design Tool 8 VIVOTEK_is1 {6DD1FD9DC2EB35E76F150FFF9AD4C417}
O42 - Logiciel: Java 8 Update 101 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F64180101F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: Kaspersky Internet Security - (.Kaspersky Lab.) [HKLM][64Bits] -- {77E7AE5C-181C-4CAF-ADBF-946F11C1CE26} =>.Kaspersky Lab
O42 - Logiciel: Kaspersky Internet Security - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26} =>.Kaspersky Lab
O42 - Logiciel: K-Lite Codec Pack 12.0.5 Full - (.KLCP.) [HKLM][64Bits] -- KLiteCodecPack_is1 =>.KLCP
O42 - Logiciel: mHotspot version 7.8.8.0 - (.1BN Software & IT Solutions Pvt. Ltd..) [HKLM][64Bits] -- {beeb7906-9268-4520-8850-8d8af9b1c7c8}_is1
O42 - Logiciel: Microsoft Access MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft DCF MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Excel MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Groove MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft InfoPath MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Lync MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft OneNote MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Outlook MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft PowerPoint MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Publisher MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Word MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Mozilla Firefox 49.0.1 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 49.0.1 (x86 en-US) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: Nmap 7.25BETA2 - (...) [HKLM][64Bits] -- Nmap
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++ =>.Notepad++ Team
O42 - Logiciel: NVIDIA Control Panel 368.81 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA GeForce Experience 2.11.4.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA GeForce Experience Service - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GfExperienceService =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Graphics Driver 368.81 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA LED Visualizer 1.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Network Service - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Optimus Update 2.11.4.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA PhysX System Software 9.16.0318 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA ShadowPlay 2.11.4.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Update 2.11.4.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Update Core - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Virtual Audio 1.2.40 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver =>.NVIDIA Corporation
O42 - Logiciel: Oracle VM VirtualBox 5.0.20 - (.Oracle Corporation.) [HKLM][64Bits] -- {8209969B-9A31-4021-B0D8-E6F719F7F995} =>.Oracle Corporation
O42 - Logiciel: PDF Settings CC - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {1FBAE18D-4DE4-47AA-83EC-D1B046F262DC} =>.Adobe Systems Incorporated
O42 - Logiciel: PrimoPDF -- by Nitro PDF Software - (.Nitro PDF Software.) [HKLM][64Bits] -- PrimoPDF =>.Nitro PDF Software
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp®
O42 - Logiciel: SHAREit - (.Lenovo.) [HKLM][64Bits] -- SHAREit_is1 =>.Lenovo
O42 - Logiciel: SHIELD Streaming - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv =>.NVIDIA Corporation
O42 - Logiciel: SHIELD Wireless Controller Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController =>.NVIDIA Corporation
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- Steam =>.Valve®
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey =>.Synaptics Incorporated
O42 - Logiciel: Tomb Raider - The Last Revelation - (...) [HKLM][64Bits] -- Tomb Raider - The Last Revelation
O42 - Logiciel: VirtualCloneDrive - (.Elaborate Bytes.) [HKLM][64Bits] -- VirtualCloneDrive =>.Elaborate Bytes
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: WinRAR 5.30 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
---\\ HKCU & HKLM Software Keys (96) - 13s
HKLM\SOFTWARE\Wow6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies =>.AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\Auslogics =>.Auslogics
HKLM\SOFTWARE\Wow6432Node\BSD
HKLM\SOFTWARE\Wow6432Node\Core Design
HKLM\SOFTWARE\Wow6432Node\Corel =>.Corel
HKLM\SOFTWARE\Wow6432Node\Driver-Soft =>.Driver-Soft
HKLM\SOFTWARE\Wow6432Node\drpsu
HKLM\SOFTWARE\Wow6432Node\EagleGet =>.EagleGet
HKLM\SOFTWARE\Wow6432Node\Elaborate Bytes =>.Elaborate Bytes
HKLM\SOFTWARE\Wow6432Node\GNU =>.GNU
HKLM\SOFTWARE\Wow6432Node\Google =>.Google
HKLM\SOFTWARE\Wow6432Node\HewlettPackard
HKLM\SOFTWARE\Wow6432Node\Icaros
HKLM\SOFTWARE\Wow6432Node\Intel =>.Intel
HKLM\SOFTWARE\Wow6432Node\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\Wow6432Node\KasperskyLab =>.KasperskyLab
HKLM\SOFTWARE\Wow6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\Wow6432Node\KLCodecPack
HKLM\SOFTWARE\Wow6432Node\LAV
HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\Wow6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\nFlavor
HKLM\SOFTWARE\Wow6432Node\Notepad++
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation =>.NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Opera Software =>.Opera Software
HKLM\SOFTWARE\Wow6432Node\PowerPivot
HKLM\SOFTWARE\Wow6432Node\SHAREit
HKLM\SOFTWARE\Wow6432Node\TOSHIBA =>.TOSHIBA
HKLM\SOFTWARE\Wow6432Node\Uniblue =>.Superfluous.Uniblue
HKLM\SOFTWARE\Wow6432Node\Valve =>.Valve
HKLM\SOFTWARE\Wow6432Node\VideoLAN =>.VideoLAN
HKLM\SOFTWARE\Wow6432Node\WinRAR =>.WinRAR
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\BitTorrent =>.BitTorrent
HKCU\SOFTWARE\Boneloaf
HKCU\SOFTWARE\BSD
HKCU\SOFTWARE\Core Design
HKCU\SOFTWARE\Corel =>.Corel
HKCU\SOFTWARE\DriverToolkit =>.Superfluous.DriverToolkit
HKCU\SOFTWARE\drpsu
HKCU\SOFTWARE\EagleGet =>.EagleGet
HKCU\SOFTWARE\Elaborate Bytes =>.Elaborate Bytes
HKCU\SOFTWARE\Epic Games =>.Epic Games
HKCU\SOFTWARE\giveawayoftheday.com
HKCU\SOFTWARE\GNU =>.GNU
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\Icaros
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\INCAInternet =>.INCAInternet
HKCU\SOFTWARE\Informer Technologies, Inc. =>.Informer Technologies, Inc.
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\JVSG
HKCU\SOFTWARE\KasperskyLab =>.KasperskyLab
HKCU\SOFTWARE\KasperskyLabSetup
HKCU\SOFTWARE\Lenovo =>.Lenovo
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\madshi
HKCU\SOFTWARE\Marvell =>.Marvell
HKCU\SOFTWARE\MediaChance =>.Mediachance
HKCU\SOFTWARE\MediaInfo
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\Nmap
HKCU\SOFTWARE\NVIDIA Corporation =>.NVIDIA Corporation
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software =>.Opera Software
HKCU\SOFTWARE\Oracle =>.Oracle
HKCU\SOFTWARE\Piriform =>.Piriform
HKCU\SOFTWARE\Playdead =>.Playdead
HKCU\SOFTWARE\PortableApps.com =>.PortableApps.com
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\Realtek =>.Realtek
HKCU\SOFTWARE\SHAREit
HKCU\SOFTWARE\SKS
HKCU\SOFTWARE\Synaptics =>.Synaptics
HKCU\SOFTWARE\TOSHIBA =>.TOSHIBA
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
---\\ Contents of the Common Files folders (208) - 16s
O43 - CFD: 04/10/2016 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 01/08/2016 - [] D -- C:\Program Files\Corel =>.Corel
O43 - CFD: 27/07/2016 - [] D -- C:\Program Files\DIFX =>.Superfluous.KuzyakovArtur
O43 - CFD: 27/07/2015 - [] D -- C:\Program Files\DVD Maker =>.Aone Software
O43 - CFD: 10/10/2016 - [] D -- C:\Program Files\HP =>.Hewlett-Packard
O43 - CFD: 27/07/2016 - [] D -- C:\Program Files\Intel =>.Intel(R) Software®
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 03/08/2016 - [] D -- C:\Program Files\Microsoft Analysis Services =>.Microsoft Corporation®
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files\Microsoft Games =>.Microsoft Corporation
O43 - CFD: 04/10/2016 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 04/10/2016 - [] D -- C:\Program Files\Microsoft SQL Server =>.Microsoft Corporation
O43 - CFD: 04/10/2016 - [] D -- C:\Program Files\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 27/09/2016 - [] D -- C:\Program Files\Npcap
O43 - CFD: 27/07/2016 - [] D -- C:\Program Files\NVIDIA Corporation =>.NVIDIA Corporation®
O43 - CFD: 26/07/2016 - [] D -- C:\Program Files\Realtek =>.Andrea Electronics®
O43 - CFD: 28/09/2016 - [0] D -- C:\Program Files\Reason
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 26/07/2016 - [] D -- C:\Program Files\Synaptics =>.Synaptics Incorporated®
O43 - CFD: 27/07/2016 - [] D -- C:\Program Files\TOSHIBA =>.Toshiba
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files\Windows Journal =>.Microsoft Corporation
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 26/07/2016 - [0] D -- C:\Program Files (x86)\360
O43 - CFD: 04/08/2016 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 04/10/2016 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 27/07/2016 - [] D -- C:\Program Files (x86)\DriverPack Notifier =>.DriverPack Solution
O43 - CFD: 03/08/2016 - [] D -- C:\Program Files (x86)\Elaborate Bytes =>.Elaborate Bytes
O43 - CFD: 27/07/2016 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 27/07/2016 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation - pGFX®
O43 - CFD: 27/07/2016 - [] D -- C:\Program Files (x86)\Intel Driver Update Utility =>.Intel(R) Driver Update Utility®
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files (x86)\K-Lite Codec Pack =>.K-Lite
O43 - CFD: 27/07/2016 - [] D -- C:\Program Files (x86)\Kaspersky Lab =>.Kaspersky Lab®
O43 - CFD: 03/08/2016 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services =>.Microsoft Corporation®
O43 - CFD: 03/08/2016 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 04/10/2016 - [] D -- C:\Program Files (x86)\Microsoft SQL Server =>.Microsoft Corporation
O43 - CFD: 04/10/2016 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio =>.Microsoft Corporation
O43 - CFD: 04/10/2016 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 04/10/2016 - [] D -- C:\Program Files (x86)\Microsoft Works =>.Microsoft Corporation
O43 - CFD: 04/10/2016 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 04/10/2016 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla
O43 - CFD: 01/10/2016 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla Corporation®
O43 - CFD: 04/10/2016 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 22/08/2016 - [] D -- C:\Program Files (x86)\Nitro PDF =>.Nitro PDF
O43 - CFD: 27/07/2016 - [] D -- C:\Program Files (x86)\NVIDIA Corporation =>.NVIDIA Corporation®
O43 - CFD: 10/09/2016 - [] D -- C:\Program Files (x86)\Opera =>.Opera Software ASA®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 27/07/2016 - [] D -- C:\Program Files (x86)\Toshiba =>.Toshiba
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 28/07/2016 - [] D -- C:\Program Files (x86)\VulkanRT =>.Kronos Group
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 26/07/2016 - [] D -- C:\Program Files (x86)\WinRAR =>.win.rar GmbH®
O43 - CFD: 22/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip =>.Igor Pavlov
O43 - CFD: 08/08/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 31/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arabic Rappelz
O43 - CFD: 16/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics =>.Auslogics
O43 - CFD: 03/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner =>.Piriform
O43 - CFD: 26/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Design =>.Core Design
O43 - CFD: 01/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X7 (64-bit)
O43 - CFD: 16/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy
O43 - CFD: 31/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Genius
O43 - CFD: 31/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverToolkit =>.Superfluous.DriverToolkit
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EagleGet =>.EagleGet
O43 - CFD: 03/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes =>.Elaborate Bytes
O43 - CFD: 26/07/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 11/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inside
O43 - CFD: 27/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility
O43 - CFD: 11/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IP Video System Design Tool 8 VIVOTEK
O43 - CFD: 27/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java =>.Oracle
O43 - CFD: 31/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack =>.K-Lite
O43 - CFD: 27/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security =>.Kaspersky Lab
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 27/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mHotspot
O43 - CFD: 04/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 04/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
O43 - CFD: 27/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ =>.Notepad++ Team
O43 - CFD: 27/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation =>.NVIDIA Corporation
O43 - CFD: 12/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox =>.Oracle
O43 - CFD: 22/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrimoPDF
O43 - CFD: 01/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHAREit
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 13/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam =>.SteamApps
O43 - CFD: 12/04/2011 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC =>.Wacom Technology
O43 - CFD: 28/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA =>.Toshiba
O43 - CFD: 12/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLAN
O43 - CFD: 26/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 04/08/2016 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 27/07/2016 - [0] D -- C:\ProgramData\ALM =>.ALM
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 10/08/2016 - [] D -- C:\ProgramData\Auslogics =>.Auslogics
O43 - CFD: 08/08/2016 - [] D -- C:\ProgramData\BSD =>.Berkeley Software Distribution
O43 - CFD: 02/08/2016 - [] D -- C:\ProgramData\Corel =>.Corel
O43 - CFD: 01/08/2016 - [0] D -- C:\ProgramData\CorelDRAW Graphics Suite X7 x64
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 27/07/2016 - [] D -- C:\ProgramData\DriverGenius
O43 - CFD: 27/07/2016 - [] D -- C:\ProgramData\EagleGet =>.EagleGet
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites =>.Microsoft Corporation
O43 - CFD: 27/07/2016 - [] D -- C:\ProgramData\Intel =>.Intel Corporation
O43 - CFD: 27/07/2016 - [] D -- C:\ProgramData\IntelDLM =>.Intel Corporation
O43 - CFD: 12/10/2016 - [] D -- C:\ProgramData\Kaspersky Lab =>.Kaspersky Lab
O43 - CFD: 01/08/2016 - [] D -- C:\ProgramData\Lenovo =>.Lenovo
O43 - CFD: 04/10/2016 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft
O43 - CFD: 04/10/2016 - [] D -- C:\ProgramData\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 27/07/2016 - [] D -- C:\ProgramData\NVIDIA =>.NVIDIA Corporation
O43 - CFD: 08/08/2016 - [] D -- C:\ProgramData\NVIDIA Corporation =>.NVIDIA Corporation
O43 - CFD: 27/07/2016 - [] D -- C:\ProgramData\Oracle =>.Oracle
O43 - CFD: 01/08/2016 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 26/07/2016 - [] D -- C:\ProgramData\PC Drivers HeadQuarters =>.Superfluous.PCDriversHeadQuarters
O43 - CFD: 01/08/2016 - [] D -- C:\ProgramData\Protexis64 =>.Protexis
O43 - CFD: 29/07/2016 - [] D -- C:\ProgramData\regid.1986-12.com.adobe =>.Adobe Inc.
O43 - CFD: 04/10/2016 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation
O43 - CFD: 28/09/2016 - [] D -- C:\ProgramData\Steam =>.SteamApps
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation
O43 - CFD: 26/07/2016 - [] D -- C:\ProgramData\Uniblue =>.Superfluous.Uniblue
O43 - CFD: 04/08/2016 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 28/07/2016 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR =>.Adobe Inc.
O43 - CFD: 26/07/2016 - [0] D -- C:\Program Files (x86)\Common Files\AV =>.Avast
O43 - CFD: 04/10/2016 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER =>.Designer
O43 - CFD: 17/09/2016 - [] D -- C:\Program Files (x86)\Common Files\EagleGet =>.EagleGet
O43 - CFD: 01/08/2016 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation
O43 - CFD: 27/07/2016 - [] D -- C:\Program Files (x86)\Common Files\Java =>.Oracle
O43 - CFD: 04/10/2016 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines =>.Microsoft Corporation
O43 - CFD: 13/09/2016 - [] D -- C:\Program Files (x86)\Common Files\Steam =>.SteamApps
O43 - CFD: 04/10/2016 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation
O43 - CFD: 18/08/2016 - [] D -- C:\Users\moez\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 01/08/2016 - [] D -- C:\Users\moez\AppData\Roaming\Corel =>.Corel
O43 - CFD: 26/07/2016 - [0] D -- C:\Users\moez\AppData\Roaming\doctor
O43 - CFD: 31/07/2016 - [] AD -- C:\Users\moez\AppData\Roaming\DriverPack Notifier =>.DriverPack Solution
O43 - CFD: 26/07/2016 - [] D -- C:\Users\moez\AppData\Roaming\DRPNano =>.DriverPack Solution
O43 - CFD: 26/07/2016 - [] D -- C:\Users\moez\AppData\Roaming\DRPNPS
O43 - CFD: 26/07/2016 - [] D -- C:\Users\moez\AppData\Roaming\DRPSu =>.DriverPack Solution
O43 - CFD: 26/09/2016 - [] D -- C:\Users\moez\AppData\Roaming\dvdcss =>.VideoLAN
O43 - CFD: 29/08/2016 - [] D -- C:\Users\moez\AppData\Roaming\EagleGet =>.EagleGet
O43 - CFD: 28/07/2016 - [] D -- C:\Users\moez\AppData\Roaming\Easeware =>.Easeware
O43 - CFD: 26/07/2016 - [] D -- C:\Users\moez\AppData\Roaming\Identities =>.Microsoft Corporation
O43 - CFD: 11/10/2016 - [] D -- C:\Users\moez\AppData\Roaming\JVSG
O43 - CFD: 27/07/2016 - [] D -- C:\Users\moez\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 12/04/2011 - [0] D -- C:\Users\moez\AppData\Roaming\Media Center Programs =>.Microsoft Corporation
O43 - CFD: 08/10/2016 - [] SD -- C:\Users\moez\AppData\Roaming\Microsoft =>.Microsoft
O43 - CFD: 26/07/2016 - [] D -- C:\Users\moez\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 10/10/2016 - [] D -- C:\Users\moez\AppData\Roaming\MPC-HC =>.MPC-HC Team
O43 - CFD: 27/07/2016 - [] D -- C:\Users\moez\AppData\Roaming\Notepad++ =>.Notepad++ Team
O43 - CFD: 29/07/2016 - [] D -- C:\Users\moez\AppData\Roaming\NVIDIA =>.NVIDIA Corporation
O43 - CFD: 05/08/2016 - [0] D -- C:\Users\moez\AppData\Roaming\Opera Software =>.Opera Software
O43 - CFD: 09/10/2016 - [] D -- C:\Users\moez\AppData\Roaming\PrimoPDF
O43 - CFD: 27/07/2016 - [] D -- C:\Users\moez\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
O43 - CFD: 29/07/2016 - [] D -- C:\Users\moez\AppData\Roaming\Steam =>.SteamApps
O43 - CFD: 27/09/2016 - [] D -- C:\Users\moez\AppData\Roaming\Subversion
O43 - CFD: 27/07/2016 - [] D -- C:\Users\moez\AppData\Roaming\Sun =>.Oracle
O43 - CFD: 11/10/2016 - [] D -- C:\Users\moez\AppData\Roaming\uTorrent =>.uTorrent
O43 - CFD: 26/09/2016 - [] D -- C:\Users\moez\AppData\Roaming\vlc =>.VideoLAN
O43 - CFD: 27/07/2016 - [] D -- C:\Users\moez\AppData\Roaming\WinBatch =>.winbatch.com
O43 - CFD: 26/07/2016 - [] D -- C:\Users\moez\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 12/10/2016 - [] D -- C:\Users\moez\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 27/07/2016 - [] D -- C:\Users\moez\AppData\Local\1BN_Software_&_IT_Solutio
O43 - CFD: 04/08/2016 - [] D -- C:\Users\moez\AppData\Local\Adobe =>.Adobe
O43 - CFD: 26/07/2016 - [0] SHD -- C:\Users\moez\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 04/08/2016 - [] D -- C:\Users\moez\AppData\Local\CEF =>.CEF
O43 - CFD: 11/10/2016 - [] D -- C:\Users\moez\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 05/10/2016 - [0] D -- C:\Users\moez\AppData\Local\Diagnostics =>.Microsoft Corporation
O43 - CFD: 11/10/2016 - [] D -- C:\Users\moez\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation
O43 - CFD: 27/07/2016 - [] D -- C:\Users\moez\AppData\Local\Google =>.Google
O43 - CFD: 26/07/2016 - [0] SHD -- C:\Users\moez\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 31/07/2016 - [] D -- C:\Users\moez\AppData\Local\Intel =>.Intel Corporation
O43 - CFD: 01/08/2016 - [] D -- C:\Users\moez\AppData\Local\Lenovo =>.Lenovo
O43 - CFD: 31/07/2016 - [] D -- C:\Users\moez\AppData\Local\mHotspot
O43 - CFD: 10/10/2016 - [] D -- C:\Users\moez\AppData\Local\Microsoft =>.Microsoft
O43 - CFD: 12/10/2016 - [] D -- C:\Users\moez\AppData\Local\Microsoft Games =>.Microsoft Corporation
O43 - CFD: 03/08/2016 - [0] D -- C:\Users\moez\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 27/07/2016 - [] D -- C:\Users\moez\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 27/07/2016 - [] D -- C:\Users\moez\AppData\Local\NVIDIA =>.NVIDIA Corporation
O43 - CFD: 27/07/2016 - [] D -- C:\Users\moez\AppData\Local\NVIDIA Corporation =>.NVIDIA Corporation
O43 - CFD: 05/08/2016 - [0] D -- C:\Users\moez\AppData\Local\Opera Software =>.Opera Software
O43 - CFD: 26/07/2016 - [] D -- C:\Users\moez\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 01/08/2016 - [] D -- C:\Users\moez\AppData\Local\SHAREit
O43 - CFD: 13/09/2016 - [] D -- C:\Users\moez\AppData\Local\Steam =>.SteamApps
O43 - CFD: 12/10/2016 - [] D -- C:\Users\moez\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 26/07/2016 - [0] SHD -- C:\Users\moez\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 26/07/2016 - [0] D -- C:\Users\moez\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 26/07/2016 - [0] D -- C:\Users\moez\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\moez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 26/07/2016 - [] RD -- C:\Users\moez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 26/08/2016 - [] D -- C:\Users\moez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\moez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 27/09/2016 - [] D -- C:\Users\moez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nmap
O43 - CFD: 26/07/2016 - [] RD -- C:\Users\moez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 26/07/2016 - [] D -- C:\Users\moez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 03/10/2016 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft
O43 - CFD: 14/07/2009 - [] SD -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft
---\\ ShellIconOverlayIdentifiers (SIOI) (10) - 0s
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: Groove Explorer Icon Overlay 1 (GFS Unread Stub) [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] - {99FD978C-D287-4F50-827F-B2C658EDA8E7}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- E:\Program Files (x86)\Microsoft Office2\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2 (GFS Stub) [Groove Explorer Icon Overlay 2 (GFS Stub)] - {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- E:\Program Files (x86)\Microsoft Office2\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] - {920E6DB1-9907-4370-B3A0-BAFC03D81399}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- E:\Program Files (x86)\Microsoft Office2\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 3 (GFS Folder) [Groove Explorer Icon Overlay 3 (GFS Folder)] - {16F3DD56-1AF5-4347-846D-7C10C4192619}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- E:\Program Files (x86)\Microsoft Office2\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 4 (GFS Unread Mark) [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] - {2916C86E-86A6-43FE-8112-43ABE6BF8DCC}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- E:\Program Files (x86)\Microsoft Office2\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
---\\ ShareTools MSconfig StartupReg (8) - 1s
O53 - SMSR:HKLM\...\startupreg\AdobeAAMUpdater-1.0 [Key] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated
O53 - SMSR:HKLM\...\startupreg\AdobeCEPServiceManager [Key] . (.Adobe Systems Incorporated - Adobe CEP Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe =>.Adobe Systems Incorporated
O53 - SMSR:HKLM\...\startupreg\CCleaner Monitoring [Key] . (.Piriform Ltd - CCleaner.) -- E:\Program Files (x86)\cc\CCleaner64.exe =>.Piriform Ltd
O53 - SMSR:HKLM\...\startupreg\GrooveMonitor [Key] . (.Microsoft Corporation - GrooveMonitor Utility.) -- E:\Program Files (x86)\Microsoft Office2\Office12\GrooveMonitor.exe =>.Microsoft Corporation
O53 - SMSR:HKLM\...\startupreg\Steam [Key] . (.Valve Corporation - Steam Client Bootstrapper.) -- e:\Program Files (x86)\Steam\Steam.exe =>.Valve Corporation
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O53 - SMSR:HKLM\...\startupreg\SynTPEnh [Key] . (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe =>.Synaptics Incorporated
O53 - SMSR:HKLM\...\startupreg\VirtualCloneDrive [Key] . (.Elaborate Bytes AG - Virtual CloneDrive Daemon.) -- C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe =>.Elaborate Bytes AG
---\\ System Drivers List (86) - 24s
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] =>.Microsoft Windows®
O58 - SDL:2010/11/21 05:23:47 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] =>.Microsoft Windows®
O58 - SDL:2010/11/21 05:23:47 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] =>.Microsoft Windows®
O58 - SDL:2013/06/29 00:49:20 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\Windows\System32\drivers\athurx.sys [1930240] =>.Atheros Communications, Inc.
O58 - SDL:2009/06/10 22:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] =>.Broadcom Corporation
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] =>.Brother Industries, Ltd.
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 03:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 22:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] =>.Broadcom Corporation
O58 - SDL:2009/07/14 03:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2015/07/06 00:10:20 A . (.Kaspersky Lab ZAO - Cryptographic Module Driver x64 (Weak).) -- C:\Windows\System32\drivers\cm_km.sys [389816] =>.Kaspersky Lab®
O58 - SDL:2016/09/13 09:54:42 A . (.eagleGet - eagleGet Network Filter.) -- C:\Windows\System32\drivers\eagleGet.sys [77624] =>.EagleGet
O58 - SDL:2009/12/18 00:25:17 A . (.Elaborate Bytes AG - ElbyCD Windows x64 I/O driver.) -- C:\Windows\System32\drivers\ElbyCDIO.sys [34472] =>.Elaborate Bytes AG®
O58 - SDL:2009/07/14 03:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] =>.Microsoft Windows®
O58 - SDL:2009/06/10 22:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] =>.Broadcom Corporation
O58 - SDL:2009/09/09 11:23:46 A . (.Intel Corporation - BIOS Update Driver.) -- C:\Windows\System32\drivers\flashud.sys [51712] =>.Intel Corporation
O58 - SDL:2009/06/10 22:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] =>.Hauppauge Computer Works, Inc.
O58 - SDL:2010/11/21 05:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] =>.Microsoft Windows®
O58 - SDL:2010/11/21 05:23:47 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] =>.Microsoft Windows®
O58 - SDL:2010/08/18 00:28:32 A . (.Intel Corporation - Intel(R) Watchdog Timer Driver (Intel(R) WD.) -- C:\Windows\System32\drivers\ICCWDT.sys [26136] =>.Intel Corporation®
O58 - SDL:2015/05/25 03:20:58 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [3788728] =>.Intel Corporation - pGFX®
O58 - SDL:2009/07/14 03:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] =>.Microsoft Windows®
O58 - SDL:2014/09/09 04:13:28 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [454416] =>.Intel Corporation - Client Components Group®
O58 - SDL:2013/12/10 14:15:46 A . (.Intel Corporation - Intel(R) USB 3.0 eXtensible Host Controller.) -- C:\Windows\System32\drivers\iusb3xhc.sys [795632] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2015/06/22 20:40:04 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\Windows\System32\drivers\kl1.sys [478392] =>.Kaspersky Lab®
O58 - SDL:2015/06/06 08:48:24 A . (.Kaspersky Lab ZAO - Backup Disk Filter [fre_wnet_x64].) -- C:\Windows\System32\drivers\klbackupdisk.sys [53432] =>.Kaspersky Lab®
O58 - SDL:2015/06/27 01:30:00 A . (.Kaspersky Lab ZAO - Backup File Filter [fre_wlh_x64].) -- C:\Windows\System32\drivers\klbackupflt.sys [70000] =>.Kaspersky Lab®
O58 - SDL:2016/07/27 06:49:13 A . (.AO Kaspersky Lab - Virtual Disk [fre_wnet_x64].) -- C:\Windows\System32\drivers\kldisk.sys [77728] =>.Kaspersky Lab®
O58 - SDL:2016/07/27 06:49:13 A . (.AO Kaspersky Lab - Filter Core [fre_wlh_x64].) -- C:\Windows\System32\drivers\klflt.sys [181640] =>.Kaspersky Lab®
O58 - SDL:2016/07/27 06:22:51 A . (.AO Kaspersky Lab - klhk [fre_wlh_x64].) -- C:\Windows\System32\drivers\klhk.sys [237480] =>.Kaspersky Lab®
O58 - SDL:2016/07/27 06:49:14 A . (.AO Kaspersky Lab - Core System Interceptors [fre_wlh_x64].) -- C:\Windows\System32\drivers\klif.sys [943536] =>.Kaspersky Lab®
O58 - SDL:2016/07/27 06:49:14 A . (.AO Kaspersky Lab - Kaspersky Lab Intermediate Network Driver [.) -- C:\Windows\System32\drivers\klim6.sys [49240] =>.Kaspersky Lab®
O58 - SDL:2015/06/06 08:31:42 A . (.Kaspersky Lab ZAO - Keyboard Device Filter [fre_wlh_x64].) -- C:\Windows\System32\drivers\klkbdflt.sys [41144] =>.Kaspersky Lab®
O58 - SDL:2015/06/07 01:50:04 A . (.Kaspersky Lab ZAO - Mouse Device Filter [fre_wlh_x64].) -- C:\Windows\System32\drivers\klmouflt.sys [41648] =>.Kaspersky Lab®
O58 - SDL:2016/07/27 06:49:15 A . (.AO Kaspersky Lab - Format Recognizer [fre_wnet_x64].) -- C:\Windows\System32\drivers\klpd.sys [41352] =>.Kaspersky Lab®
O58 - SDL:2015/06/11 15:56:56 A . (.Kaspersky Lab ZAO - Network filtering component [fre_wnet_amd64.) -- C:\Windows\System32\drivers\kltdi.sys [65208] =>.Kaspersky Lab®
O58 - SDL:2015/06/16 21:56:32 A . (.Kaspersky Lab ZAO - WFP Network Connection Filter Driver [fre_w.) -- C:\Windows\System32\drivers\klwtp.sys [103096] =>.Kaspersky Lab®
O58 - SDL:2015/06/23 18:30:50 A . (.Kaspersky Lab ZAO - Network Processor [fre_wnet_x64].) -- C:\Windows\System32\drivers\kneps.sys [187056] =>.Kaspersky Lab®
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] =>.Microsoft Windows®
O58 - SDL:2016/07/11 04:13:48 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [13581880] =>.NVIDIA Corporation®
O58 - SDL:2016/07/11 04:13:48 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvpciflt.sys [38336] =>.NVIDIA Corporation®
O58 - SDL:2010/11/21 05:23:47 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] =>.Microsoft Windows®
O58 - SDL:2010/11/21 05:23:47 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] =>.Microsoft Windows®
O58 - SDL:2016/04/14 07:38:19 A . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\drivers\nvvad64v.sys [56384] =>.NVIDIA Corporation®
O58 - SDL:2009/07/14 03:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] =>.Microsoft Windows®
O58 - SDL:2015/08/24 09:11:06 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [987888] =>.Realtek Semiconductor Corp®
O58 - SDL:2016/03/10 00:53:10 A . (.Realtek Semiconductor Corporation - Realtek Bluetooth Filter Driver.) -- C:\Windows\System32\drivers\RtkBtfilter.sys [629064] =>.Realtek Semiconductor Corp®
O58 - SDL:2015/10/07 04:41:40 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [4613888] =>.Realtek Semiconductor Corp®
O58 - SDL:2015/06/01 16:44:54 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\Windows\System32\drivers\RtsP2Stor.sys [301784] =>.Realtek Semiconductor Corp®
O58 - SDL:2015/01/06 11:41:20 A . (.Realtek Semiconductor Corporation - Realtek PCIE NDIS Driver 33736.) -- C:\Windows\System32\drivers\rtwlane.sys [3709656] =>.Realtek Semiconductor Corp®
O58 - SDL:2009/06/10 22:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2015/06/04 13:33:50 A . (.Authors - .) -- C:\Windows\System32\drivers\semav6msr64.sys [21984] =>.Intel(R) Code Signing External®
O58 - SDL:2009/07/14 03:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] =>.Microsoft Windows®
O58 - SDL:2015/07/02 00:33:46 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_AMDASF_Aux.sys [33448] =>.Synaptics Incorporated®
O58 - SDL:2015/07/02 00:33:46 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_Intel.sys [33960] =>.Synaptics Incorporated®
O58 - SDL:2015/07/02 00:33:46 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_Intel_Aux.sys [33960] =>.Synaptics Incorporated®
O58 - SDL:2009/07/14 03:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] =>.Microsoft Windows®
O58 - SDL:2015/07/02 00:33:42 A . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\Windows\System32\drivers\SynTP.sys [607400] =>.Synaptics Incorporated®
O58 - SDL:2015/08/31 21:50:26 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\TeeDriverx64.sys [179456] =>.Intel Corporation - Embedded Subsystems and IP Blocks Group®
O58 - SDL:2009/06/29 14:16:20 A . (.TOSHIBA Corporation - TOSHIBA HDD Protection - Shock Sensor Drive.) -- C:\Windows\System32\drivers\Thpevm.sys [14784] =>.TOSHIBA CORPORATION®
O58 - SDL:2014/06/21 14:56:00 A . (.TOSHIBA Corporation - TOSHIBA Bluetooth EC Driver.) -- C:\Windows\System32\drivers\tosrfec.sys [53624] =>.TOSHIBA CORPORATION®
O58 - SDL:2009/07/14 13:31:18 A . (.TOSHIBA Corporation - TOSHIBA ACPI-Based Value Added Logical and.) -- C:\Windows\System32\drivers\TVALZ_O.SYS [26840] =>.TOSHIBA CORPORATION®
O58 - SDL:2016/04/28 15:05:56 A . (.Oracle Corporation - VirtualBox Support Driver.) -- C:\Windows\System32\drivers\VBoxDrv.sys [916520] =>.Oracle Corporation®
O58 - SDL:2016/04/28 15:05:50 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Host-Only Network Adapt.) -- C:\Windows\System32\drivers\VBoxNetAdp6.sys [119712] =>.Oracle Corporation®
O58 - SDL:2016/04/28 15:05:50 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Lightweight Filter Driv.) -- C:\Windows\System32\drivers\VBoxNetLwf.sys [192352] =>.Oracle Corporation®
O58 - SDL:2016/04/28 15:05:50 A . (.Oracle Corporation - VirtualBox USB Driver.) -- C:\Windows\System32\drivers\VBoxUSB.sys [135768] =>.Oracle Corporation®
O58 - SDL:2016/04/28 15:05:50 A . (.Oracle Corporation - VirtualBox USB Monitor Driver.) -- C:\Windows\System32\drivers\VBoxUSBMon.sys [143568] =>.Oracle Corporation®
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] =>.Microsoft Windows®
---\\ Last modified or created user files (4) - 27s
O61 - LFC: 2016/10/10 12:43:21 A . (..) -- C:\Users\moez\AppData\Roaming\NVIDIA\GLCache\15042fc793cfef59658f0cce2a80a727\dfcbc839b528d71b\49be3e1a95f857f9.bin [394185]
O61 - LFC: 2016/10/07 08:30:06 A . (..) -- C:\Users\moez\AppData\Local\NVIDIA\NvBackend\UMDShim\nvcoproc.bin [7459945]
O61 - LFC: 2016/10/04 21:09:25 A . (..) -- C:\Users\moez\AppData\Local\Microsoft\Windows\1033\StructuredQuerySchema.bin [311064]
O61 - LFC: 2016/10/07 00:45:40 A . (..) -- C:\Users\moez\AppData\Local\Adobe\Acrobat\DC\UserCache.bin [894638]
---\\ File Associations Shell Spawning (9) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
---\\ Start Menu Internet (12) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- E:\Program Files (x86)\firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- E:\Program Files (x86)\firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- E:\Program Files (x86)\firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- E:\Program Files (x86)\firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
---\\ Search Browser Infection (2) - 7s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/
---\\ Search Svchost Services (32) - 2s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\system32\srvsvc.dll [236032] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [777728] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\ikeext.dll [853504] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\Audiosrv.dll [679424] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [99328] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [344064] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [97792] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [64512] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [316928] =>.Microsoft Corporation
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [680960] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2477536] =>.Microsoft Windows Component Publisher®
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [849920] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [370688] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [569344] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\system32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [70656] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\system32\iscsiexe.dll [156672] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\system32\mmcss.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [121856] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [136192] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\system32\schedsvc.dll [1110016] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\system32\kmsvc.dll [90624] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [84480] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [209920] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\system32\themeservice.dll [44544] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [100864] =>.Microsoft Corporation
---\\ Firewall Active Exception List (4) - 5s
O87 - FAEL: "{8FF16FAA-4FA3-419D-B48B-733659EB6963}" [In-None-P6-TRUE] .(...) -- H:\mHotspot[1].exe (.not file.)
O87 - FAEL: "{84BA13EA-8E65-4FF1-8536-5F4525AAE49C}" [In-None-P17-TRUE] .(...) -- H:\mHotspot[1].exe (.not file.)
O87 - FAEL: "{6F6C2143-3FD6-4B1E-8877-03257E33B924}" [In-None-P6-TRUE] .(.1BN Software & IT Solutions Pvt. Ltd. - mHotspot.) -- E:\Program Files (x86)\mHotspot\mHotspot.exe
O87 - FAEL: "{8986B0EA-2FE7-455E-9980-1171E267256F}" [In-None-P17-TRUE] .(.1BN Software & IT Solutions Pvt. Ltd. - mHotspot.) -- E:\Program Files (x86)\mHotspot\mHotspot.exe
---\\ Search Tracing Registry Key (2) - 2s
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\driverscanner_RASAPI32 =>PUP.Optional.DriverScanner
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\driverscanner_RASMANCS =>PUP.Optional.DriverScanner
---\\ Additional Scan (O88) (15) - 7s
C:\Windows\Tasks\DriverToolkit Autorun.job =>.Superfluous.DriverToolkit
C:\Windows\Tasks\DriverToolkit.job =>.Superfluous.DriverToolkit
C:\Windows\System32\Tasks\DriverToolkit =>.Superfluous.DriverToolkit
C:\Windows\System32\Tasks\DriverToolkit Autorun =>.Superfluous.DriverToolkit
HKLM\SOFTWARE\Wow6432Node\Uniblue =>.Superfluous.Uniblue
HKCU\SOFTWARE\DriverToolkit =>.Superfluous.DriverToolkit
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverToolkit =>.Superfluous.DriverToolkit
C:\ProgramData\PC Drivers HeadQuarters =>.Superfluous.PCDriversHeadQuarters
C:\ProgramData\Uniblue =>.Superfluous.Uniblue
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\driverscanner_RASAPI32 =>PUP.Optional.DriverScanner
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\driverscanner_RASMANCS =>PUP.Optional.DriverScanner
C:\Users\moez\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d10lpsik1i8c69.cloudfront.net_0.localstorage =>.Superfluous.CloudfrontNet
C:\Users\moez\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d10lpsik1i8c69.cloudfront.net_0.localstorage-journal =>.Superfluous.CloudfrontNet
C:\Users\moez\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_dsms0mj1bbhn4.cloudfront.net_0.localstorage =>.Superfluous.CloudfrontNet
C:\Users\moez\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_dsms0mj1bbhn4.cloudfront.net_0.localstorage-journal =>.Superfluous.CloudfrontNet
---\\ Summary of the elements found (6) - 0s
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.DriverToolkit
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.Uniblue
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.KuzyakovArtur
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.PCDriversHeadQuarters
https://www.nicolascoolman.com/fr/repaquetage-et_infections/ =>PUP.Optional.DriverScanner
https://www.anti-malware.top/2016/08/31/cloudfront-net/ =>.Superfluous.CloudfrontNet
~ End of the scan, 32461 items in 00h04mn10s (1110)