Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2018.1.26.15 By Nicolas Coolman (2018/01/26)
~ Run by HP (Administrator) (2018/01/27 13:51:07)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\HP\Desktop\ZHPDiag.txt
~ Report: C:\Users\HP\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 16299) =>.Microsoft Corporation
---\\ Internet Browsers (4) - 1s
~ GCIE: Google Chrome v63.0.3239.132
~ MFIE: Mozilla Firefox 57.0.3 (x64 en-US)
~ MSIE: Microsoft Edge v40
~ MSIE: Internet Explorer v11.192.16299.0
---\\ Windows Product Information (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
---\\ System protection software (2) - 10s
Malwarebytes version 3.3.1.2183 v3.3.1.2183 (Protection)
Windows Defender (Deactivate)
---\\ System protection software (Superfluous) (1) - 10s
~ SpyHunter 4 v4.28.5.4848 (Superfluous)
---\\ System optimization software (1) - 10s
~ CCleaner v5.39 (Optimize)
---\\ Surveillance software (2) - 10s
~ Adobe Flash Player 28 PPAPI (Surveillance)
~ Adobe Acrobat Reader DC (Surveillance)
---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 61 Stepping 4, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4107.668 MB (9% free) : ATTENTION =>Warning RAM
System Restore: Activé (Enable)
System drive C: has 86 GB (42%) free of 203 GB : OK =>.Disk Space
---\\ Connection to the system mode (3) - 0s
~ Computer Name: HP
~ User Name: HP
~ Logged in as Administrator
---\\ Enumeration of the disk units (2) - 0s
~ Drive C: has 86 GB free of 203 GB (System)
~ Drive D: has 136 GB free of 272 GB
---\\ State of the Windows Security Center (7) - 0s
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Search Generic System Files (24) - 6s
[MD5.92B369312AF5D0B83AEF82D5DE0428D2] - 01/01/2018 - (.Microsoft Corporation - Windows Explorer.) -- C:\WINDOWS\Explorer.exe [3904808] =>.Microsoft Windows®
[MD5.731A783A36A8E69A6434D19D98B12A09] - 29/09/2017 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [71168] =>.Microsoft Corporation
[MD5.BF3E1D9B2360C6BE4CC3094CD2DDC617] - 29/09/2017 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\WINDOWS\System32\Wininit.exe [359584] =>.Microsoft Windows Publisher®
[MD5.CDBD10B47A1BEA8B6A009064E90FA298] - 01/01/2018 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\WINDOWS\System32\wininet.dll [3334144] =>.Microsoft Corporation
[MD5.D0926E8FC082646487BD159538F4D9F5] - 01/01/2018 - (.Microsoft Corporation - Windows Logon Application.) -- C:\WINDOWS\System32\Winlogon.exe [715776] =>.Microsoft Corporation
[MD5.4D487E7D2B047FB929BE00117C09F9EC] - 29/09/2017 - (.Microsoft Corporation - Software Licensing Library.) -- C:\WINDOWS\System32\sppcomapi.dll [414720] =>.Microsoft Corporation
[MD5.A94E2533A7604E4AA05DCCC675A9F396] - 25/12/2017 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\System32\dnsapi.dll [739696] =>.Microsoft Windows®
[MD5.0A821BF024E347943D6F5C5180FAEA31] - 25/12/2017 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\Syswow64\dnsapi.dll [597160] =>.Microsoft Windows®
[MD5.7AE4EBDC221235BF9E1008B515C0B8DB] - 01/01/2018 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [614296] =>.Microsoft Windows®
[MD5.6191B9B2EE0E8CB957C683B9B341CC86] - 29/09/2017 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28568] =>.Microsoft Windows®
[MD5.9E82A95D77AC78C84BA75FF896B060BF] - 29/09/2017 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [93184] =>.Microsoft Corporation
[MD5.6D83565C1652E80447EDEA6947FA89D7] - 29/09/2017 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [159744] =>.Microsoft Corporation
[MD5.9910E9CFF5ECDCB225F82E72CE9DE459] - 29/09/2017 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [151040] =>.Microsoft Corporation
[MD5.99A34FD1F6431A10D8C3BB50E170D0F2] - 29/09/2017 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [86016] =>.Microsoft Corporation
[MD5.56FF074E50F9042FD2856AB3418F4B18] - 29/09/2017 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [105984] =>.Microsoft Corporation
[MD5.7BEC2AF23F586EFF0DB4DBF4331B0C70] - 29/09/2017 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [214016] =>.Microsoft Corporation
[MD5.34898F29BF0E9A84E183046318D17814] - 25/12/2017 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [495000] =>.Microsoft Windows®
[MD5.7FC54F2AF5EC52C7AC05AD90FFC757E6] - 01/01/2018 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [316928] =>.Microsoft Corporation
[MD5.E20EC8E25969ABD9F5FED6EDEA57EC0C] - 01/01/2018 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2395032] =>.Microsoft Windows®
[MD5.2E07EC2C1622F5E7B535D62DCD61F3AB] - 29/09/2017 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\WINDOWS\System32\drivers\Parport.sys [98816] =>.Microsoft Corporation
[MD5.E0220BB6580D34001D4D1D133052DAA4] - 29/09/2017 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [106496] =>.Microsoft Corporation
[MD5.DF83769C92527DB50653F8FB57D001FF] - 29/09/2017 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [182784] =>.Microsoft Corporation
[MD5.571D82ABAC428D902ACA0CF60373C039] - 29/09/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [121240] =>.Microsoft Windows®
[MD5.5B27846CF4B1C21AFB3A35A8336BA02F] - 25/12/2017 - (.Microsoft Corporation - Volume Shadow Copy driver.) -- C:\WINDOWS\System32\drivers\volsnap.sys [401304] =>.Microsoft Windows®
---\\ Non Microsoft non disabled Windows Services (29) - 12s
O23 - Service: Autodesk Desktop App Service (AdAppMgrSvc) . (.Autodesk Inc. - Autodesk Desktop App.) - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe =>.Autodesk, Inc.®
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: AdobeUpdateService (AdobeUpdateService) . (.Adobe Systems Incorporated - Adobe Update Service.) - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe =>.Adobe Systems Incorporated®
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) . (.Adobe Systems, Incorporated - Adobe Genuine Software Integrity Service.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Systems Incorporated®
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\DriverStore\FileRepository\c0321058.inf_amd64_c0aa1a2b512afe19\atiesrxx.exe =>.Advanced Micro Devices, Inc.®
O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
O23 - Service: Avira Phantom VPN (AviraPhantomVPN) . (.Avira Operations GmbH & Co. KG - Avira.VpnService.) - C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Bluetooth Driver Management Service (BcmBtRSupport) . (.Broadcom Corporation. - Bluetooth Radio Management Support.) - C:\Windows\system32\BtwRSupportService.exe =>.Broadcom Corporation.
O23 - Service: Bonjour Service (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
O23 - Service: Canon Driver Information Assist Service (Canon Driver Information Assist Service) . (.CANON INC. - Driver Information Assist Core Module.) - C:\Program Files\Canon\DIAS\CnxDIAS.exe =>.CANON INC.®
O23 - Service: @oem1.inf,%WIN32_DPTF_POLICY_CRITICAL_SERVICE_DISPLAY_NAME% (DptfPolicyCriticalService) . (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Frame.) - C:\WINDOWS\System32\DptfPolicyCriticalService.exe =>.Intel Corporation
O23 - Service: @oem1.inf,%WIN32_DPTF_POLICY_LPM_SERVICE_DISPLAY_NAME%;Inte (DptfPolicyLpmService) . (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Frame.) - C:\WINDOWS\System32\DptfPolicyLpmService.exe =>.Intel Corporation
O23 - Service: SCP DS3 Service (Ds3Service) . (.Scarlet.Crush Productions - ScpService.) - C:\Program Files\Scarlet. Crush Productions\bin\ScpService.exe =>.Scarlet.Crush Productions
O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET Security\ekrn.exe =>.ESET, spol. s r.o.®
O23 - Service: خدمة Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: HP SI Service (HPSIService) . (.HP - HP Smart-Install Service.) - C:\WINDOWS\system32\HPSIsvc.exe =>.HP
O23 - Service: HPWMISVC (HPWMISVC) . (.HP Inc. - HP WMI Service.) - C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe =>.Hewlett-Packard Company®
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\WINDOWS\System32\igfxCUIService.exe =>.Intel Corporation
O23 - Service: Iskysoft Application Framework Service (IsAppService) . (.Iskysoft - Iskysoft Passport.) - C:\Program Files (x86)\iSkysoft\IAF\2.4.2.223\IsAppService.exe =>.Shenzhen Yi Xing Investment Co., Ltd.®
O23 - Service: KMS-host Service (KMSEmulator) . (.MSFree Inc. - KMS emulator by Ratiborus, thanks to Hotbir.) - C:\ProgramData\KMSAutoS\bin\KMSSS.exe =>HackTool.WinActivator
O23 - Service: Malwarebytes Service (MBAMService) . (.Malwarebytes - Malwarebytes Service.) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
O23 - Service: MEmusvc (MEmusvc) . (.Microvirt Software Technology Co. Ltd. - MEmu Service.) - D:\Program Files\Microvirt\MEmu\MemuService.exe =>.Microvirt Software Technology Co., Ltd.®
O23 - Service: PMBDeviceInfoProvider (PMBDeviceInfoProvider) . (.Sony Corporation - Device Information Provider.) - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe =>.Sony Corporation®
O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp.®
O23 - Service: SpyHunter4 Service (SpyHunter 4 Service) . (.Enigma Software Group USA, LLC. - Service scanner interface.) - C:\Program Files\Enigma Software Group\SpyHunter\Sh4Service.exe =>.Enigma Software Group USA, LLC®
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
O23 - Service: TeamViewer 12 (TeamViewer) . (.TeamViewer GmbH - TeamViewer 12.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH®
O23 - Service: Wondershare Application Framework Service (WsAppService) . (.Wondershare - Wondershare Passport.) - C:\Program Files (x86)\Wondershare\WAF\2.4.3.227\WsAppService.exe =>.Wondershare Technology Co.,Ltd®
O23 - Service: Wondershare Driver Install Service (WsDrvInst) . (.Wondershare - MobileGo Driver Installer.) - C:\Program Files (x86)\Wondershare\Wondershare dr.fone toolkit for Android\Library\DriverInstaller\DriverInstall.exe =>.Wondershare Technology Co.,Ltd®
---\\ Services not Microsoft (SR=Run, SS=Stop) (36) - 37s
SR - Auto [19/12/2017] [ 1364904] Autodesk Desktop App Service (AdAppMgrSvc) . (.Autodesk Inc..) - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe =>.Autodesk, Inc.®
SR - Auto [27/09/2017] [ 83984] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SS - Demand [12/12/2017] [ 272384] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [14/03/2017] [ 771672] AdobeUpdateService (AdobeUpdateService) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [23/08/2017] [ 2257016] Adobe Genuine Software Integrity Service (AGSService) . (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Systems Incorporated®
SR - Auto [10/12/2017] [ 481144] (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\DriverStore\FileRepository\c0321058.inf_amd64_c0aa1a2b512afe19\atiesrxx.exe =>.Advanced Micro Devices, Inc.®
SR - Auto [27/11/2017] [ 83768] Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
SS - Auto [20/03/2017] [ 316976] Avira Phantom VPN (AviraPhantomVPN) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe =>.Avira Operations GmbH & Co. KG®
SR - Auto [30/04/2017] [ 2251992] Bluetooth Driver Management Service (BcmBtRSupport) . (.Broadcom Corporation..) - C:\Windows\system32\BtwRSupportService.exe =>.Broadcom Corporation®
SR - Auto [12/08/2015] [ 462096] Bonjour Service (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
SR - Auto [18/01/2016] [ 5043144] Canon Driver Information Assist Service (Canon Driver Information Assist Service) . (.CANON INC..) - C:\Program Files\Canon\DIAS\CnxDIAS.exe =>.CANON INC.®
SS - Demand [13/01/2017] [ 301528] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel(R) pGFX®
SR - Auto [30/04/2017] [ 148160] @oem1.inf,%WIN32_DPTF_POLICY_CRITICAL_SERVICE_DISPLAY_NAME% (DptfPolicyCriticalService) . (.Intel Corporation.) - C:\WINDOWS\System32\DptfPolicyCriticalService.exe =>.Intel(R) Software®
SR - Auto [30/04/2017] [ 124904] @oem1.inf,%WIN32_DPTF_POLICY_LPM_SERVICE_DISPLAY_NAME%;Inte (DptfPolicyLpmService) . (.Intel Corporation.) - C:\WINDOWS\System32\DptfPolicyLpmService.exe =>.Intel(R) Software®
SR - Auto [13/03/2014] [ 381952] SCP DS3 Service (Ds3Service) . (.Scarlet.Crush Productions.) - C:\Program Files\Scarlet. Crush Productions\bin\ScpService.exe =>.Scarlet.Crush Productions
SR - Auto [18/12/2017] [ 1940584] ESET Service (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET Security\ekrn.exe =>.ESET, spol. s r.o.®
SR - Demand [02/05/2017] [ 1591264] FlexNet Licensing Service 64 (FlexNet Licensing Service 64) . (.Flexera Software LLC.) - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe =>.Flexera Software LLC®
SS - Auto [24/11/2017] [ 153168] خدمة Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [24/11/2017] [ 153168] خدمة Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [27/09/2012] [ 126880] HP SI Service (HPSIService) . (.HP.) - C:\WINDOWS\system32\HPSIsvc.exe =>.Hewlett-Packard Company®
SR - Auto [18/04/2016] [ 606224] HPWMISVC (HPWMISVC) . (.HP Inc..) - C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe =>.Hewlett-Packard Company®
SR - Auto [13/01/2017] [ 373720] Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation.) - C:\WINDOWS\System32\igfxCUIService.exe =>.Intel(R) pGFX®
SS - Demand [11/12/2017] [ 672568] خدمة iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe =>.Apple Inc.®
SS - Auto [30/03/2017] [ 473352] Iskysoft Application Framework Service (IsAppService) . (.Iskysoft.) - C:\Program Files (x86)\iSkysoft\IAF\2.4.2.223\IsAppService.exe =>.Shenzhen Yi Xing Investment Co., Ltd.®
SS - Auto [02/05/2017] [ 35504] KMS-host Service (KMSEmulator) . (.MSFree Inc..) - C:\ProgramData\KMSAutoS\bin\KMSSS.exe =>HackTool.WinActivator
SS - Auto [01/11/2017] [ 6234056] Malwarebytes Service (MBAMService) . (.Malwarebytes.) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
SS - Auto [26/05/2017] [ 269480] MEmusvc (MEmusvc) . (.Microvirt Software Technology Co. Ltd..) - D:\Program Files\Microvirt\MEmu\MemuService.exe =>.Microvirt Software Technology Co., Ltd.®
SS - Demand [11/01/2018] [ 194000] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [27/11/2010] [ 398176] PMBDeviceInfoProvider (PMBDeviceInfoProvider) . (.Sony Corporation.) - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe =>.Sony Corporation®
SR - Auto [15/10/2016] [ 326656] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp.®
SS - Auto [18/01/2018] [ 889016] SpyHunter4 Service (SpyHunter 4 Service) . (.Enigma Software Group USA, LLC..) - C:\Program Files\Enigma Software Group\SpyHunter\Sh4Service.exe =>.Enigma Software Group USA, LLC®
SR - Auto [18/08/2017] [ 278616] SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
SR - Auto [26/07/2017] [10803440] TeamViewer 12 (TeamViewer) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH®
SS - Demand [11/09/2017] [ 33224] SHAREit Hotspot Service (uSHAREitSvc) . (.SHAREit Technologies Co.Ltd.) - C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.Service.exe =>.SHAREit Technologies Co.Ltd®
SS - Auto [21/06/2017] [ 492768] Wondershare Application Framework Service (WsAppService) . (.Wondershare.) - C:\Program Files (x86)\Wondershare\WAF\2.4.3.227\WsAppService.exe =>.Wondershare Technology Co.,Ltd®
SR - Auto [22/06/2017] [ 118048] Wondershare Driver Install Service (WsDrvInst) . (.Wondershare.) - C:\Program Files (x86)\Wondershare\Wondershare dr.fone toolkit for Android\Library\DriverInstaller\DriverInstall.exe =>.Wondershare Technology Co.,Ltd®
---\\ Task Planned Automatically (Register) (13) - 27s
O38 - TASK: {04EB6D20-7074-4F5C-9A8B-FA6B4D30CC2C} [64Bits][\GoogleUpdateTaskMachineUA] - (.Google Inc. - Google Installer.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168] =>.Google Inc.
O38 - TASK: {051B4E58-5A5B-4312-9AA0-490D0B10428C} [64Bits][\Adobe Flash Player PPAPI Notifier] - (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_28_0_0_126_pepper.exe [1332736] =>.Adobe Systems Incorporated
O38 - TASK: {217496E9-0F36-4BA6-B99B-01ED0919F5E8} [64Bits][\Apple\AppleSoftwareUpdate] - (.Apple Inc. - Apple Software Update.) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320] =>.Apple Inc.
O38 - TASK: {2C226C89-C024-4F92-B58D-DC2325976802} [64Bits][\CCleaner Update] - (.Piriform Ltd - CCleaner emergency updater.) -- C:\Program Files\CCleaner\CCUpdate.exe [501040] =>.Piriform Ltd
O38 - TASK: {37B520B9-5802-4539-8758-61AB62051681} [64Bits][\StartCN] - (.Advanced Micro Devices, Inc. - Radeon Settings: Command Line Interface.) -- C:\Program Files\AMD\CNext\CNext\cncmd.exe [49032] =>.Advanced Micro Devices, Inc.
O38 - TASK: {3AF1F8DB-479C-4118-8440-6997080F82BF} [64Bits][\CCleanerSkipUAC] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe [7980776] =>.Piriform Ltd
O38 - TASK: {3DA6343E-23EE-451A-AA7D-1B28FAAB687B} [64Bits][\KMSAutoNet] - (.MSFree Inc. - KMSAuto Net.) -- C:\ProgramData\KMSAutoS\KMSAuto Net.exe [8767160] =>HackTool.WinActivator
O38 - TASK: {6FC1395F-BFE1-4E6E-9809-E19E0398E48E} [64Bits][\GoogleUpdateTaskMachineCore] - (.Google Inc. - Google Installer.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168] =>.Google Inc.
O38 - TASK: {72B821F8-FEDB-478A-BCD4-CA1E9606DFE4} [64Bits][\Adobe Flash Player Updater] - (.Adobe Systems Incorporated - Adobe® Flash® Player Update Service 28.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384] =>.Adobe Systems Incorporated
O38 - TASK: {8C017762-37F1-413E-9811-1D2269635E28} [64Bits][\Adobe Acrobat Update Task] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1171480] =>.Adobe Systems Incorporated
O38 - TASK: {BDC71671-2BF5-4C79-99DA-75ED32E84326} [64Bits][\AdobeAAMUpdater-1.0-DESKTOP-MUEAEVH-HP] - (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128] =>.Adobe Systems Incorporated
O38 - TASK: {C1908329-4606-43A1-9DB1-0BFAE983F5D3} [64Bits][\ScpUpdater] - (.Nefarius Software Solutions - ScpUpdater 1.7.277.16103 © Nefarius Softwar.) -- C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpUpdater.exe [460480] =>.Nefarius Software Solutions
O38 - TASK: {EC0A91DB-227A-43D1-BEF6-683D0A3DBA7A} [64Bits][\SpyHunter4Startup] - (.HP\HP - .) -- C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
---\\ Auto loading programs from Registry and folders (12) - 5s
O4 - HKLM\..\Run: [SecurityHealth] . (.Microsoft Corporation - Windows Defender notification icon.) -- C:\Program Files\Windows Defender\MSASCuiL.exe =>.Microsoft Windows®
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp.®
O4 - HKLM\..\Run: [TNOD UP] . (. - .) -- C:\Users\HP\Desktop\TNod User & Password Finder 1.6.2 Beta 3\TNod-1.6.3.1-Final-Portable\TNod-1.6.3.1-Final-Portable\TNODUP-Portable.exe (.Not File.) =>.SUP.Orphan
O4 - HKLM\..\Run: [DptfPolicyLpmServiceHelper] . (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Frame.) -- C:\WINDOWS\system32\DptfPolicyLpmServiceHelper.exe =>.Intel Corporation
O4 - HKLM\..\Run: [egui] . (.ESET - ESET command line interface.) -- C:\Program Files\ESET\ESET Security\ecmds.exe =>.ESET, spol. s r.o.®
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKLM\..\Wow6432Node\Run: [PMBVolumeWatcher] . (.Sony Corporation - Media Check Tool.) -- C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe =>.Sony Corporation®
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [Autodesk Desktop App] . (.Autodesk, Inc. - Autodesk Desktop App.) -- C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe =>.Autodesk, Inc.®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-21-1561305810-3505110792-3158112729-1001\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
---\\ Process running (57) - 18s
[MD5.00000000000000000000000000000000] - (.Intel Corporation - igfxCUIService Module.) -- C:\WINDOWS\system32\igfxCUIService.exe [0] [PID.1848] =>.Intel Corporation
[MD5.19439C88A3A95FA5CA987E0B71D18E71] - (.AMD - AMD External Events Service Module.) -- C:\Windows\System32\DriverStore\FileRepository\c0321058.inf_amd64_c0aa1a2b512afe19\atiesrxx.exe [481144] [PID.1884] =>.Advanced Micro Devices, Inc.®
[MD5.7615992F35982471546A3DE5B7587250] - (.Realtek Semiconductor - Realtek Audio Service.) -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [326656] [PID.2916] =>.Realtek Semiconductor Corp.®
[MD5.5BD9B3EC9874ADB5B550EBABC4C22D14] - (.Autodesk Inc. - Autodesk Desktop App.) -- C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1364904] [PID.3640] =>.Autodesk, Inc.®
[MD5.E0CBB79ADB89A233928AF60FB2B729DE] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768] [PID.3628] =>.Apple Inc.®
[MD5.00000000000000000000000000000000] - (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Frame.) -- C:\WINDOWS\system32\DptfPolicyLpmService.exe [0] [PID.3700] =>.Intel Corporation
[MD5.00000000000000000000000000000000] - (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Frame.) -- C:\WINDOWS\system32\DptfPolicyConfigTDPService.exe [0] [PID.3844] =>.Intel Corporation
[MD5.00000000000000000000000000000000] - (.HP - HP Smart-Install Service.) -- C:\WINDOWS\system32\HPSIsvc.exe [0] [PID.3820] =>.HP
[MD5.00000000000000000000000000000000] - (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Frame.) -- C:\WINDOWS\system32\DptfPolicyCriticalService.exe [0] [PID.3812] =>.Intel Corporation
[MD5.00000000000000000000000000000000] - (.Broadcom Corporation. - Bluetooth Radio Management Support.) -- C:\Windows\system32\BtwRSupportService.exe [0] [PID.3832] =>.Broadcom Corporation.
[MD5.38622FFE9369D3EC01C0097235BD9279] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [83984] [PID.4116] =>.Adobe Systems, Incorporated®
[MD5.79EE5A2B3BF3685AF9B7AC4780371A25] - (.Adobe Systems Incorporated - Adobe Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [771672] [PID.4248] =>.Adobe Systems Incorporated®
[MD5.63694C307273062A2167AE4CE80730EF] - (.Sony Corporation - Device Information Provider.) -- C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [398176] [PID.4264] =>.Sony Corporation®
[MD5.0677F5ECD4F801403C428BBAE1286379] - (.Adobe Systems, Incorporated - Adobe Genuine Software Integrity Service.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016] [PID.4272] =>.Adobe Systems Incorporated®
[MD5.91AF2EF13E4F1A555F16C49F50BF8746] - (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) -- C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616] [PID.4280] =>.Synaptics Incorporated®
[MD5.9C0B950F93833EC22A5D971AB77F263D] - (.TeamViewer GmbH - TeamViewer 12.) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10803440] [PID.4288] =>.TeamViewer GmbH®
[MD5.9EEBDF7B21D16A8AF897D30607C2AB45] - (.Wondershare - MobileGo Driver Installer.) -- C:\Program Files (x86)\Wondershare\Wondershare dr.fone toolkit for Android\Library\DriverInstaller\DriverInstall.exe [118048] [PID.4304] =>.Wondershare Technology Co.,Ltd®
[MD5.DE406AB237CBA3E57C740C387FE3CC7C] - (.CANON INC. - Driver Information Assist Core Module.) -- C:\Program Files\Canon\DIAS\CnxDIAS.exe [5043144] [PID.4328] =>.CANON INC.®
[MD5.7109608928D8AB470D60F47BAD5D153A] - (.HP Inc. - HP WMI Service.) -- C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [606224] [PID.4336] =>.Hewlett-Packard Company®
[MD5.B5C2F92EE1106DFE7BB1CCE4D35B6037] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462096] [PID.4344] =>.Apple Inc.®
[MD5.0545A3EB959CFA4790D267BFB8C1ACA4] - (.Google Inc. - Google Installer.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168] [PID.6492] =>.Google Inc®
[MD5.900236357482B00944826354EEC6B93F] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe [288848] [PID.3488] =>.Google Inc®
[MD5.F107219B133E7E574DA052C5C88FFBF3] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe [366672] [PID.6892] =>.Google Inc®
[MD5.CC8C8479B0C9FC6803B6905D99158FE4] - (.Scarlet.Crush Productions - ScpService.) -- C:\Program Files\Scarlet. Crush Productions\bin\ScpService.exe [381952] [PID.6092] =>.Scarlet.Crush Productions
[MD5.00000000000000000000000000000000] - (.AMD - AMD External Events Client Module.) -- C:\WINDOWS\system32\atieclxx.exe [0] [PID.4900] =>.AMD
[MD5.AEBC1AFA26110E24B324B10FFD7D99D7] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [4397144] [PID.6692] =>.Synaptics Incorporated®
[MD5.D00AC6142241788FD9E26D53893F1C40] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1476104] [PID.4488] =>.Realtek Semiconductor Corp.®
[MD5.00000000000000000000000000000000] - (.Intel Corporation - igfxEM Module.) -- C:\WINDOWS\system32\igfxEM.exe [0] [PID.5912] =>.Intel Corporation
[MD5.0486C5A48DB97E46E7E4BE47BA302A3A] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE [228960] [PID.6068] =>.Synaptics Incorporated®
[MD5.00000000000000000000000000000000] - (.Intel Corporation - igfxHK Module.) -- C:\WINDOWS\system32\igfxHK.exe [0] [PID.1780] =>.Intel Corporation
[MD5.00000000000000000000000000000000] - (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Frame.) -- C:\Windows\System32\DptfPolicyLpmServiceHelper.exe [0] [PID.7844] =>.Intel Corporation
[MD5.0B01E387818E38287B412C98222DF64F] - (.ESET - ESET Main GUI.) -- C:\Program Files\ESET\ESET Security\egui.exe [6506616] [PID.8044] =>.ESET, spol. s r.o.®
[MD5.1DC726B72BEF08C8F04828F6D9AE7F4F] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [10257872] [PID.7576] =>.Piriform Ltd®
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.8504] =>.Google Inc®
[MD5.1E2C16C021F8E297898610F28F76B473] - (.Advanced Micro Devices, Inc. - Radeon Settings: Host Application.) -- C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [8932744] [PID.7652] =>.Advanced Micro Devices, Inc.®
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.6356] =>.Google Inc®
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.4616] =>.Google Inc®
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.4444] =>.Google Inc®
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.2992] =>.Google Inc®
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.2108] =>.Google Inc®
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.8436] =>.Google Inc®
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.9360] =>.Google Inc®
[MD5.F40FB72316DCCE31A13F214CA01DA5C5] - (...) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.274.0_x64__kzf8qxf38zg5c\SkypeHost.exe [86528] [PID.7188] =>.Skype Technologies
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.10008] =>.Google Inc®
[MD5.A38290BF8E9B2D9427D20B92CFAE61B4] - (.Autodesk, Inc. - AutoCAD Application.) -- C:\Program Files\Autodesk\AutoCAD 2018\acad.exe [5639128] [PID.7164] =>.Autodesk, Inc®
[MD5.384E354214956DF119745D1E0FC0EC67] - (.Autodesk - Chromium host executable.) -- C:\Program Files\Common Files\Autodesk Shared\CLM\V5\MSVC14\cliccore\acwebbrowser.exe [542120] [PID.10132] =>.Autodesk, Inc®
[MD5.384E354214956DF119745D1E0FC0EC67] - (.Autodesk - Chromium host executable.) -- C:\Program Files\Common Files\Autodesk Shared\CLM\V5\MSVC14\cliccore\acwebbrowser.exe [542120] [PID.4056] =>.Autodesk, Inc®
[MD5.384E354214956DF119745D1E0FC0EC67] - (.Autodesk - Chromium host executable.) -- C:\Program Files\Common Files\Autodesk Shared\CLM\V5\MSVC14\cliccore\acwebbrowser.exe [542120] [PID.1776] =>.Autodesk, Inc®
[MD5.1B04D931B3EFA5FE67FA7D8510722222] - (.Flexera Software LLC - Activation Licensing Service.) -- C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe [1591264] [PID.6352] =>.Flexera Software LLC®
[MD5.2C3C3A386B2F0714548037633B6FD4B5] - (.Autodesk, Inc. - Autodesk InfoCenter.) -- C:\Program Files\Common Files\Autodesk Shared\WSCommCntr4\Lib\WSCommCntr4.exe [473992] [PID.5820] =>.Autodesk, Inc®
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.11588] =>.Google Inc®
[MD5.ECB71ED87260507EB75BEF0037627C1D] - (.BitTorrent Inc. - BitTorrent.) -- C:\Users\HP\AppData\Roaming\BitTorrent\BitTorrent.exe [2150088] [PID.11236] =>.BitTorrent Inc®
[MD5.D83F6B47CF96292802BF052E4D574BF4] - (.BitTorrent Inc. - WebHelper.) -- C:\Users\HP\AppData\Roaming\BitTorrent\updates\7.10.0_43917\bittorrentie.exe [396992] [PID.9476] =>.BitTorrent Inc®
[MD5.D83F6B47CF96292802BF052E4D574BF4] - (.BitTorrent Inc. - WebHelper.) -- C:\Users\HP\AppData\Roaming\BitTorrent\updates\7.10.0_43917\bittorrentie.exe [396992] [PID.8152] =>.BitTorrent Inc®
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.10824] =>.Google Inc®
[MD5.B0691C2D76AC07AA2D4B2CD5F529A34B] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\HP\ZHPDiag3.exe [2967936] [PID.7880] =>.Nicolas Coolman
[MD5.90F99E48BD2D142395E749258F32ED82] - (...) -- C:\Flashtool\FlashTool64.exe [409088] [PID.8020]
---\\ Google Chrome, Start,Search,Extensions (23) - 2s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://assets.onestore.ms
G0 - GCSP: Preferences [User Data\Default][HomePage] http://c.microsoft.com =>.Microsoft Corporation
G0 - GCSP: Preferences [User Data\Default][HomePage] http://c1.microsoft.com =>.Microsoft Corporation
G0 - GCSP: Preferences [User Data\Default][HomePage] http://compass-ssl.microsoft.com =>.Microsoft Corporation
G0 - GCSP: Preferences [User Data\Default][HomePage] http://cs.microsoft.com =>.Microsoft Corporation
G0 - GCSP: Preferences [User Data\Default][HomePage] http://go.microsoft.com =>.Microsoft Corporation
G0 - GCSP: Preferences [User Data\Default][HomePage] http://mem.gfx.ms
G0 - GCSP: Preferences [User Data\Default][HomePage] http://statics-uhf-neu.akamaized.net =>.SUP.AkamaiHD
G0 - GCSP: Preferences [User Data\Default][HomePage] http://support.microsoft.com =>.Microsoft Corporation
G0 - GCSP: Preferences [User Data\Default][HomePage] http://web.vortex.data.microsoft.com =>.Microsoft Corporation
G2 - GCE: Preference [HP][User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] =>.Google Inc. {Slides}
G2 - GCE: Preference [HP][User Data\Default] [aohghmighlieiainnegkcijnfilokake] =>.Google Inc. {Docs}
G2 - GCE: Preference [HP][User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] http://drive.google.com/ =>.Google Inc. {Drive}
G2 - GCE: Preference [HP][User Data\Default] [bkkbcggnhapdmkeljlodobbkopceiche] Poper Blocker =>.DingoSolutions
G2 - GCE: Preference [HP][User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] http://www.youtube.com =>.Youtube {Youtube}
G2 - GCE: Preference [HP][User Data\Default] [dldimlnkedgledlgkjjhpgbhgjbgljpm]
G2 - GCE: Preference [HP][User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] =>.Google Inc. {Sheets}
G2 - GCE: Preference [HP][User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion}
G2 - GCE: Preference [HP][User Data\Default] [jacihiikpacjaggdldhcdfjpbibbfjmh] Adblock Genesis Plus =>.Genesis Plus adblocker
G2 - GCE: Preference [HP][User Data\Default] [mjnbclmflcpookeapghfhapeffmpodij] UltraSurf Security Privacy & Unblock VPN =>.Ultrareach
G2 - GCE: Preference [HP][User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet}
G2 - GCE: Preference [HP][User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] http://mail.google.com/ =>.Google Inc. {Gmail}
G2 - GCE: Preference [HP][User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (4) - 8s
P2 - EXT FILE: (.Microsoft Corporation - The plugin allows you to have a better expe.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npMeetingJoinPluginOC.dll =>.Microsoft Corporation®
P2 - EXT FILE: (.AdBlock - __MSG_description2__.) -- C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\k00ju5rd.default\extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi =>.AdBlock
P2 - EXT FILE: (.Video DownloadHelper - Download Videos from the Web.) -- C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\k00ju5rd.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi =>.Video DownloadHelper
P2 - EXT FILE: (. - __MSG_extDescription__.) -- C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\k00ju5rd.default\extensions\{bee8b1f2-823a-424c-959c-f8f76c8b2306}.xpi
---\\ Internet Explorer Extensions, Start, Search (15) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Browser.) (11.00.16299.15 (WinBuild.160101.0800)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation
---\\ Internet Explorer, Proxy Management (3) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (29)
---\\ Browser Helper Object (BHO) (2) - 1s
O2 - BHO: Skype for Business Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files\Microsoft Office\Office15\OCHelper.dll =>.Microsoft Corporation®
O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
---\\ Global shortcuts Startup (94) - 40s
O4 - GS\Desktop [Administrator]: SpyHunter.lnk . (...) C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe
O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\HP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrator]: dr.fone toolkit para Android.lnk . (.Wondershare - dr.fone toolkit loader.) C:\Program Files (x86)\Wondershare\Wondershare dr.fone toolkit for Android\DrFoneLoader.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrator]: iSkysoft Toolbox for Android.lnk . (.iSkysoft - iSkysoft Toolbox loader.) C:\Program Files (x86)\iSkysoft\iSkysoft Toolbox for Android\iSkyToolboxLoader.exe =>.Shenzhen Yi Xing Investment Co., Ltd.®
O4 - GS\sendTo [Administrator]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [Administrator]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrator]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\TaskBar [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrator]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrator]: Task Manager.lnk . (.Microsoft Corporation - Task Manager.) C:\WINDOWS\system32\taskmgr.exe /7 =>.Microsoft Windows®
O4 - GS\Programs [Administrator]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\HP\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [Administrator]: Optional Features.lnk . (.Microsoft Corporation - Features On Demand Helper.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Desktop [Guest]: SpyHunter.lnk . (...) C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe
O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\HP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Guest]: dr.fone toolkit para Android.lnk . (.Wondershare - dr.fone toolkit loader.) C:\Program Files (x86)\Wondershare\Wondershare dr.fone toolkit for Android\DrFoneLoader.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Guest]: iSkysoft Toolbox for Android.lnk . (.iSkysoft - iSkysoft Toolbox loader.) C:\Program Files (x86)\iSkysoft\iSkysoft Toolbox for Android\iSkyToolboxLoader.exe =>.Shenzhen Yi Xing Investment Co., Ltd.®
O4 - GS\sendTo [Guest]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [Guest]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Guest]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\TaskBar [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Guest]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Guest]: Task Manager.lnk . (.Microsoft Corporation - Task Manager.) C:\WINDOWS\system32\taskmgr.exe /7 =>.Microsoft Windows®
O4 - GS\Programs [Guest]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\HP\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [Guest]: Optional Features.lnk . (.Microsoft Corporation - Features On Demand Helper.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Desktop [HP]: SpyHunter.lnk . (...) C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe
O4 - GS\Desktop [HP]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\HP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [HP]: dr.fone toolkit para Android.lnk . (.Wondershare - dr.fone toolkit loader.) C:\Program Files (x86)\Wondershare\Wondershare dr.fone toolkit for Android\DrFoneLoader.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\Quicklaunch [HP]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [HP]: iSkysoft Toolbox for Android.lnk . (.iSkysoft - iSkysoft Toolbox loader.) C:\Program Files (x86)\iSkysoft\iSkysoft Toolbox for Android\iSkyToolboxLoader.exe =>.Shenzhen Yi Xing Investment Co., Ltd.®
O4 - GS\sendTo [HP]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [HP]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [HP]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\TaskBar [HP]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [HP]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [HP]: Task Manager.lnk . (.Microsoft Corporation - Task Manager.) C:\WINDOWS\system32\taskmgr.exe /7 =>.Microsoft Windows®
O4 - GS\Programs [HP]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\HP\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [HP]: Optional Features.lnk . (.Microsoft Corporation - Features On Demand Helper.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Desktop [WDAGUtilityAccount]: SpyHunter.lnk . (...) C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe
O4 - GS\Desktop [WDAGUtilityAccount]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\HP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [WDAGUtilityAccount]: dr.fone toolkit para Android.lnk . (.Wondershare - dr.fone toolkit loader.) C:\Program Files (x86)\Wondershare\Wondershare dr.fone toolkit for Android\DrFoneLoader.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: iSkysoft Toolbox for Android.lnk . (.iSkysoft - iSkysoft Toolbox loader.) C:\Program Files (x86)\iSkysoft\iSkysoft Toolbox for Android\iSkyToolboxLoader.exe =>.Shenzhen Yi Xing Investment Co., Ltd.®
O4 - GS\sendTo [WDAGUtilityAccount]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [WDAGUtilityAccount]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [WDAGUtilityAccount]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\TaskBar [WDAGUtilityAccount]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [WDAGUtilityAccount]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [WDAGUtilityAccount]: Task Manager.lnk . (.Microsoft Corporation - Task Manager.) C:\WINDOWS\system32\taskmgr.exe /7 =>.Microsoft Windows®
O4 - GS\Programs [WDAGUtilityAccount]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\HP\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [WDAGUtilityAccount]: Optional Features.lnk . (.Microsoft Corporation - Features On Demand Helper.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\CommonDesktop [Public]: AutoCAD 2018 - English.lnk . (.Autodesk, Inc. - .) C:\Program Files (x86)\Autodesk\AutoCAD 2018\acad.exe /product ACAD /language "en-US" =>.Autodesk, Inc.
O4 - GS\CommonDesktop [Public]: Autodesk Desktop App.lnk . (.Autodesk, Inc. - Autodesk Desktop App.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe =>.Autodesk, Inc.®
O4 - GS\CommonDesktop [Public]: Avira Phantom VPN.lnk . (.Avira Operations GmbH & Co. KG - Avira.WebAppHost.) C:\Program Files (x86)\Avira\VPN\Avira.WebAppHost.exe =>.Avira Operations GmbH & Co. KG®
O4 - GS\CommonDesktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - GS\CommonDesktop [Public]: dr.fone toolkit para Android.lnk . (.Wondershare - dr.fone toolkit loader.) C:\Program Files (x86)\Wondershare\Wondershare dr.fone toolkit for Android\DrFoneLoader.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\CommonDesktop [Public]: ETABS 2016.lnk . (.Computers and Structures, Inc. - ETABS 2016.) C:\Program Files (x86)\Computers and Structures\ETABS 2016 Eval\ETABS.exe {678AB5ADC9489443DCCDA97056080D0B} =>.Computers and Structures, Inc.
O4 - GS\CommonDesktop [Public]: iSkysoft Toolbox for Android.lnk . (.iSkysoft - iSkysoft Toolbox loader.) C:\Program Files (x86)\iSkysoft\iSkysoft Toolbox for Android\iSkyToolboxLoader.exe =>.Shenzhen Yi Xing Investment Co., Ltd.®
O4 - GS\CommonDesktop [Public]: iTunes.lnk . (.Apple Inc. - .) C:\Program Files (x86)\iTunes\iTunes.exe =>.Apple Inc.
O4 - GS\CommonDesktop [Public]: Malwarebytes.lnk . (.Malwarebytes - Malwarebytes.) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe =>.Malwarebytes Corporation®
O4 - GS\CommonDesktop [Public]: progeCAD 2018 - English (x64).lnk . (.ProgeSOFT sa - progeCAD® 2018 (x64).) C:\Program Files\PSOFT\progeCAD 2018 Professional ENG\pcad.exe
O4 - GS\CommonDesktop [Public]: progeCAD Center 2018 - English (x64).lnk . (...) C:\Program Files\PSOFT\progeCAD 2018 Professional ENG\center.exe
O4 - GS\CommonDesktop [Public]: Revit 2017.lnk . (.Autodesk, Inc. - .) C:\Program Files (x86)\Autodesk\Revit 2017\Revit.exe /language ENU =>.Autodesk, Inc.
O4 - GS\CommonDesktop [Public]: RogueKiller.lnk . (.Adlice Software - Anti-malware remediation tool.) C:\Program Files\RogueKiller\RogueKiller64.exe =>.Adlice®
O4 - GS\CommonDesktop [Public]: SHAREit.lnk . (.SHAREit Technologies Co.Ltd - SHAREit.) C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.exe =>.SHAREit Technologies Co.Ltd®
O4 - GS\CommonDesktop [Public]: TeamViewer 12.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH®
O4 - GS\Programs [Public]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\HP\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [Public]: Optional Features.lnk . (.Microsoft Corporation - Features On Demand Helper.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\internet explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Notepad.) C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Quick Assist.lnk . (.Microsoft Corporation - Quick Assist.) C:\WINDOWS\system32\quickassist.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Remote Desktop Connection.) C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Snipping Tool.) C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Steps Recorder.) C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Windows Wordpad Application.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - XPS Viewer.) C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Character Map.) C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Acrobat Reader DC.lnk . (.Flexera Software LLC - InstallShield.) C:\WINDOWS\Installer\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}\SC_Reader.ico =>.Flexera Software LLC
O4 - GS\ProgramsCommon [Public]: Adobe Creative Cloud.lnk . (.Adobe Systems Incorporated - Adobe Creative Cloud.) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Photoshop CC 2017 (32 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CC 2017.) C:\Program Files (x86)\Adobe\Adobe Photoshop CC 2017 (32 Bit)\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Apple Software Update.lnk . (...) C:\WINDOWS\Installer\{C1BBFD2A-BCDD-45B3-8C0B-66BD434970A8}\AppleSoftwareUpdateIco.exe =>.Apple Inc.
O4 - GS\ProgramsCommon [Public]: DTS Audio Control.lnk . (.Microsoft Corporation - Windows host process (Rundll32).) C:\Windows\System32\rundll32.exe shell32.dll,Control_RunDLL RTSnMg64.cpl,, =>..Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\WINDOWS\System32\Control.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: PMB.lnk . (.Sony Corporation - Browser.) C:\Program Files (x86)\Sony\PMB\PMBBrowser.exe =>.Sony Corporation
O4 - GS\ProgramsCommon [Public]: TeamViewer 12.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH®
O4 - GS\ProgramsCommon [Public]: Windows 10 Upgrade Assistant.lnk . (.Microsoft Corporation - Windows 10 Update Assistant.) C:\Windows10Upgrade\Windows10UpgraderApp.exe /ClientID "Win10Upgrade:VNL:Hadron5:{}" =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
---\\ Lop.com/Domain Hijackers (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.8.1 192.168.8.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{38047c75-f668-44a2-a7a5-88e7901d7e12}: DhcpNameServer = 192.168.8.1 192.168.8.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{8bd901c9-0c54-4efb-b90a-9eedf97ccd12}: DhcpNameServer = 192.168.42.129 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{dba52955-39ef-42b0-9d62-5cbd6f88c8f1}: DhcpNameServer = 192.168.8.1 192.168.8.1 =>.Local IP Adress
---\\ Extra protocols (25) - 3s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files\Microsoft Office\Office15\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL =>.Microsoft Corporation®
---\\ Software installed (150) - 66s
O42 - Logiciel: ACA & MEP 2018 Object Enabler - (.Autodesk.) [HKLM][64Bits] -- {28B89EEF-1004-0000-5102-CF3F3A09B77D} =>.Autodesk
O42 - Logiciel: ACAD Private - (.Autodesk.) [HKLM][64Bits] -- {28B89EEF-1001-0000-3102-CF3F3A09B77D} =>.Autodesk
O42 - Logiciel: Adobe Acrobat Reader DC - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-AC0F074E4100} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Creative Cloud - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Creative Cloud =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 28 PPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player PPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Photoshop CC 2017 (32 Bit) - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- PHSP_18_0_32 =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824245926} =>.Adobe Systems Incorporated
O42 - Logiciel: Akamai NetSession Interface - (.Akamai Technologies, Inc.) [HKCU][64Bits] -- Akamai =>.SUP.AkamaiHD
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {BD6778C5-6FA5-492A-ADD6-E706339C2A7B} =>.Apple Inc.
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {C1BBFD2A-BCDD-45B3-8C0B-66BD434970A8} =>.Apple Inc.
O42 - Logiciel: AutoCAD 2018 - (.Autodesk.) [HKLM][64Bits] -- {28B89EEF-1001-0000-0102-CF3F3A09B77D} =>.Autodesk
O42 - Logiciel: AutoCAD 2018 - English - (.Autodesk.) [HKLM][64Bits] -- {28B89EEF-1001-0409-2102-CF3F3A09B77D} =>.Autodesk, Inc®
O42 - Logiciel: AutoCAD 2018 Language Pack - English - (.Autodesk.) [HKLM][64Bits] -- {28B89EEF-1001-0409-1102-CF3F3A09B77D} =>.Autodesk
O42 - Logiciel: Autodesk A360 Collaboration for Revit 2017 - (.Autodesk.) [HKLM][64Bits] -- {AA384BE4-1700-0010-0000-97E7D7D00B17} =>.Autodesk
O42 - Logiciel: Autodesk A360 Collaboration for Revit 2017 - (.Autodesk.) [HKLM][64Bits] -- Autodesk A360 Collaboration for Revit 2017 =>.Autodesk, Inc®
O42 - Logiciel: Autodesk Advanced Material Library Image Library 2018 - (.Autodesk.) [HKLM][64Bits] -- {177AD7F6-9C77-4E50-BA53-B7259C5F282D} =>.Autodesk
O42 - Logiciel: Autodesk App Manager 2016-2018 - (.Autodesk.) [HKLM][64Bits] -- {20EC0CA2-346E-4660-9903-51B278DF15F6} =>.Autodesk
O42 - Logiciel: Autodesk AutoCAD 2018 - English - (.Autodesk.) [HKLM][64Bits] -- AutoCAD 2018 - English =>.Autodesk, Inc®
O42 - Logiciel: Autodesk AutoCAD Performance Feedback Tool 1.2.8 - (.Autodesk.) [HKLM][64Bits] -- {214D3370-746E-4886-8EAA-5769EB87D044} =>.Autodesk
O42 - Logiciel: Autodesk BIM 360 Revit 2017 Add-in 64 bit - (.Autodesk.) [HKLM][64Bits] -- {A26EBAD5-9591-407F-9D6C-C7A4F3DFE506} =>.Autodesk
O42 - Logiciel: Autodesk CAD Manager Tools - (.Autodesk.) [HKLM][64Bits] -- {28B89EEF-0111-0409-0110-CF3F3A09B77D} =>.Autodesk
O42 - Logiciel: Autodesk Desktop App - (.Autodesk.) [HKLM][64Bits] -- Autodesk Desktop App =>.Autodesk, Inc.®
O42 - Logiciel: Autodesk Featured Apps 2016-2018 - (.Autodesk.) [HKLM][64Bits] -- {384C4B74-B749-4AB6-9367-4D51A6AA9CB8} =>.Autodesk
O42 - Logiciel: Autodesk License Service (x64) - 3.1 - (.Autodesk.) [HKLM][64Bits] -- {EB6FE58F-8576-4272-BB9C-6B47D9EDFA4D} =>.Autodesk
O42 - Logiciel: Autodesk License Service (x64) - 5.1.4 - (.Autodesk.) [HKLM][64Bits] -- {3609A8D9-FC0C-4C9B-9F58-0B1D1A4FE556} =>.Autodesk
O42 - Logiciel: Autodesk Material Library 2016 - (.Autodesk.) [HKLM][64Bits] -- {29A7D6EC-63C2-42FD-8143-5812ABD2923F} =>.Autodesk
O42 - Logiciel: Autodesk Material Library 2017 - (.Autodesk.) [HKLM][64Bits] -- {8FB9F735-D64C-4991-8D91-4CDDAB1ABDEE} =>.Autodesk
O42 - Logiciel: Autodesk Material Library 2018 - (.Autodesk.) [HKLM][64Bits] -- {7847611E-92E9-4917-B395-71C91D523104} =>.Autodesk
O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2016 - (.Autodesk.) [HKLM][64Bits] -- {6B4CFC6E-ECB0-47FE-95D3-65C680ED0687} =>.Autodesk
O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2017 - (.Autodesk.) [HKLM][64Bits] -- {3FBFBC43-9882-43FA-B979-2D53896747B3} =>.Autodesk
O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2018 - (.Autodesk.) [HKLM][64Bits] -- {FCDED119-A969-4E48-8A32-D21AD6B03253} =>.Autodesk
O42 - Logiciel: Autodesk Material Library Low Resolution Image Library 2016 - (.Autodesk.) [HKLM][64Bits] -- {FA5DF4D1-CD59-4183-B3D4-779A56498786} =>.Autodesk
O42 - Logiciel: Autodesk Material Library Low Resolution Image Library 2017 - (.Autodesk.) [HKLM][64Bits] -- {360AC116-6CD4-4E7D-8174-28D47B05E898} =>.Autodesk
O42 - Logiciel: Autodesk Material Library Medium Resolution Image Library 2016 - (.Autodesk.) [HKLM][64Bits] -- {415A5A54-325E-4815-9940-62A889CA3877} =>.Autodesk
O42 - Logiciel: Autodesk Material Library Medium Resolution Image Library 2017 - (.Autodesk.) [HKLM][64Bits] -- {CB6E007E-701D-42CD-AF0E-4BE9C36C7F7C} =>.Autodesk
O42 - Logiciel: Autodesk Network License Manager - (.Autodesk.) [HKLM][64Bits] -- {4BE91685-1632-47FC-B563-A8A542C6664C} =>.Autodesk
O42 - Logiciel: Autodesk Revit 2017 - (..) [HKLM][64Bits] -- Revit 2017
O42 - Logiciel: Autodesk Revit 2017 - (.Autodesk.) [HKLM][64Bits] -- Autodesk Revit 2017 =>.Autodesk, Inc®
O42 - Logiciel: Autodesk Revit Content Libraries 2016 - (.Autodesk.) [HKLM][64Bits] -- Autodesk Revit Content Libraries 2016 =>.Autodesk, Inc®
O42 - Logiciel: Autodesk Revit Content Libraries 2017 - (..) [HKLM][64Bits] -- Revit Content Libraries 2017
O42 - Logiciel: Autodesk Revit Content Libraries 2017 - (.Autodesk.) [HKLM][64Bits] -- Autodesk Revit Content Libraries 2017 =>.Autodesk, Inc®
O42 - Logiciel: Autodesk Revit MEP Imperial Content v2.0 - (.Autodesk.) [HKLM][64Bits] -- {F2538944-3E07-4E97-B41A-FC48AB53EE9D} =>.Autodesk
O42 - Logiciel: Autodesk Revit MEP Metric Content v2.0 - (.Autodesk.) [HKLM][64Bits] -- {DEF775C7-84BF-4730-976A-FE3747F1757C} =>.Autodesk
O42 - Logiciel: Autodesk Workflows 2016 - (.Autodesk, Inc..) [HKLM][64Bits] -- {535CDED0-D690-4738-83EE-09056A365BAC} =>.Autodesk, Inc.
O42 - Logiciel: Autodesk Workflows 2017 - (.Autodesk, Inc..) [HKLM][64Bits] -- {23A13F78-5B67-441A-ABF9-48BE8B5455DB} =>.Autodesk, Inc.
O42 - Logiciel: Avira Phantom VPN v2.7.1.26756 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- Avira Phantom VPN =>.Avira Operations GmbH & Co. KG®
O42 - Logiciel: BitTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- BitTorrent
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {56DDDFB8-7F79-4480-89D5-25E1F52AB28F} =>.Apple Inc.
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: Color Network ScanGear Ver.2.71 - (.CANON INC..) [HKLM][64Bits] -- {4E5CA273-5771-450A-AFDD-C58DAD9205DC} =>.Canon Inc.
O42 - Logiciel: dr.fone toolkit para Android (Version 8.3.3) - (.Wondershare Technology Co.,Ltd..) [HKLM][64Bits] -- {7B08A1E1-3644-4237-B39D-762B5F5564D0}_is1 =>.Wondershare Technology Co.,Ltd®
O42 - Logiciel: ESET Security - (.ESET, spol. s r.o..) [HKLM][64Bits] -- {37E67F0A-50BB-430A-A2A5-F5E2F6EE96DB} =>.ESET, spol. s r.o.
O42 - Logiciel: ETABS 2016 Eval - (.Computers and Structures, Inc..) [HKLM][64Bits] -- {0CB74374-F2FE-4B7D-972C-1BF77F71BD98} =>.Computers and Structures, Inc.
O42 - Logiciel: Flashtool - (.Androxyde.) [HKLM][64Bits] -- Flashtool =>.Androxyde
O42 - Logiciel: FormIt 360 Converter For Revit 2017 - (.Autodesk.) [HKLM][64Bits] -- {637211B6-D2E9-474A-BF06-4F61F1254104} =>.Autodesk
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: HP LaserJet Professional P1100-P1560-P1600 Series - (.Hewlett-Packard.) [HKLM][64Bits] -- HP LaserJet Professional P1100-P1560-P1600 Series =>.Hewlett-Packard Company®
O42 - Logiciel: HP System Event Utility - (.HP Inc..) [HKLM][64Bits] -- {29E20347-C62F-4657-938E-876A182B67F1} =>.HP Inc.
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel(R) pGFX®
O42 - Logiciel: IronPython 2.7.3 - (.IronPython Team.) [HKLM][64Bits] -- {1EBADAEA-1A0F-40E3-848C-0DD8C5E5A10D} =>.IronPython Team
O42 - Logiciel: iSkysoft Toolbox for Android (Version 5.1.0) - (.iSkysoft Software Co.,Ltd..) [HKLM][64Bits] -- {9CB91A95-C548-4BA5-9D4C-18C7DEAAC30F}_is1 {06CA235604256C403D3AD30F362C84F7}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {64D202EE-E223-422F-AFE9-B41AE606297E} =>.Apple Inc.
O42 - Logiciel: Java 8 Update 151 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F32180151F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: KB4023057 - (.Microsoft Corporation.) [HKLM][64Bits] -- {27C6D60B-CAD4-4C70-A1F2-299C731EA8F7} =>.Microsoft Corporation
O42 - Logiciel: Kodi - (.XBMC-Foundation.) [HKCU][64Bits] -- Kodi =>.XBMC-Foundation
O42 - Logiciel: Malwarebytes version 3.3.1.2183 - (.Malwarebytes.) [HKLM][64Bits] -- {35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1 =>.Malwarebytes Corporation®
O42 - Logiciel: MEmu - (.Microvirt Software Technology Co. Ltd..) [HKLM][64Bits] -- MEmu {299C159C7A2E6CA3BB44606517CA9B24}
O42 - Logiciel: Microsoft Access MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Access MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Access Setup Metadata MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0117-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft DCF MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft DCF MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Excel MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Excel MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Groove MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Groove MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft HEVC Media Extension Installation for Microsoft.HEVCVideoExtensio - (.Microsoft Corporation.) [HKLM][64Bits] -- {B0169E83-757B-EF66-E2F0-391944D785BC} =>.Microsoft Corporation
O42 - Logiciel: Microsoft InfoPath MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft InfoPath MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Lync MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Lync MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe =>.Microsoft Corporation®
O42 - Logiciel: Microsoft OneNote MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft OneNote MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Outlook MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Outlook MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft PowerPoint MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft PowerPoint MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Publisher MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Publisher MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Research Mesh Virtual WIFI - (.Microsoft Research.) [HKLM][64Bits] -- {034A32D5-699E-4AED-A2EB-2CCB6E7F37F1} =>.Microsoft Research
O42 - Logiciel: Microsoft SharePoint Designer MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0017-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Word MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Word MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft X MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0101-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Minimal ADB and Fastboot version 1.4.2 - (.Sam Rodberg.) [HKLM][64Bits] -- {1901BAF7-7E78-4041-BC88-D0EE5DD1DFD9}_is1 =>.Sam Rodberg
O42 - Logiciel: Mozilla Firefox 57.0.3 (x64 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 57.0.3 (x64 en-US) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94} =>.Microsoft Corporation
O42 - Logiciel: Need For Speed(TM) Most Wanted v1.5.0.0 / RePack by Baracuda - (.Games Software.) [HKLM][64Bits] -- {767BA4BF-8419-4771-8CE7-9707EB287C32}_is1 =>.Games Software
O42 - Logiciel: PCMSCAN - (.Palmer Performance Engineering.) [HKLM][64Bits] -- {979B748C-6095-4A5A-BC7B-C15E720529D6}
O42 - Logiciel: Personal Accelerator for Revit - (.Autodesk.) [HKLM][64Bits] -- {7C317DB0-F31F-4024-A289-92CF4B6FB256} =>.Autodesk
O42 - Logiciel: Personal Accelerator for Revit - (.Autodesk.) [HKLM][64Bits] -- Personal Accelerator for Revit =>.Autodesk, Inc®
O42 - Logiciel: PlayReady PC Runtime amd64 - (.Microsoft Corporation.) [HKLM][64Bits] -- {BCA9334F-B6C9-4F65-9A73-AC5A329A4D04} =>.Microsoft Corporation
O42 - Logiciel: PMB - (.Sony Corporation.) [HKLM][64Bits] -- {B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C} =>.Sony Corporation
O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM][64Bits] -- PowerISO =>.Power Software Ltd
O42 - Logiciel: Pro Evolution Soccer 2018 - (..) [HKLM][64Bits] -- Pro Evolution Soccer 2018_is1
O42 - Logiciel: progeCAD 2018 Professional English (x64) version 18.0.6.11 - (.ProgeSOFT SA.) [HKLM][64Bits] -- {8FB75ECB-A902-4C49-9E6D-5917644793D3}_is1 {279690B4AFF5C0000D9C3E630503C11F}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.®
O42 - Logiciel: Revit 2017 - (.Autodesk.) [HKLM][64Bits] -- {7346B4A0-1700-0510-0000-705C0D862004} =>.Autodesk
O42 - Logiciel: Revit Content Libraries 2016 - (.Autodesk.) [HKLM][64Bits] -- {941030D0-1600-0410-0000-818BB38A95FC} =>.Autodesk
O42 - Logiciel: Revit Content Libraries 2017 - (.Autodesk.) [HKLM][64Bits] -- {941030D0-1700-0410-0000-818BB38A95FC} =>.Autodesk
O42 - Logiciel: RogueKiller version 12.12.1.0 - (.Adlice Software.) [HKLM][64Bits] -- 8B3D7924-ED89-486B-8322-E8594065D5CB_is1 =>.Adlice®
O42 - Logiciel: ScpToolkit - (.Nefarius Software Solutions.) [HKLM][64Bits] -- {1EA84ED4-28D4-4836-BF8B-0E31BF1704C5} =>.Nefarius Software Solutions
O42 - Logiciel: Security Update for Skype for Business 2015 (KB3191937) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-0401-1000-0000000FF1CE}_Office15.OMUI.ar-sa_{42E7889A-F282-4CD3-8BD5-A78D7E4FB6B3} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Skype for Business 2015 (KB3191937) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6FE94EC3-6C8C-4D87-A846-0DC8A5AE7D9F} =>.Microsoft Corporation®
O42 - Logiciel: SHAREit - (.SHAREit Technologies Co.Ltd.) [HKLM][64Bits] -- www.ushareit.com_is1 =>.SHAREit Technologies Co.Ltd
O42 - Logiciel: SpyHunter 4 - (.Enigma Software Group, LLC.) [HKLM][64Bits] -- SpyHunter
O42 - Logiciel: StarWind V2V Image Converter V8.0 (build 20161115) - (.StarWind Software.) [HKLM][64Bits] -- StarWind Converter_is1 =>.StarWind Software
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey =>.Synaptics Incorporated®
O42 - Logiciel: TeamViewer 12 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer =>.TeamViewer GmbH®
O42 - Logiciel: TV 3L PC version 2.1.4.0 - (.Smart PC Soft, LTD..) [HKLM][64Bits] -- {D8CE29B4-FEA1-46F1-B773-1B5FE502C740}_is1 =>.Smart PC Soft®
O42 - Logiciel: UFR II Printer Driver Uninstaller - (.Canon Inc..) [HKLM][64Bits] -- Canon UFR II Printer Driver =>.CANON INC.®
O42 - Logiciel: Update for Skype for Business 2015 (KB4011638) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{8B0F5A1C-5EFC-423D-91C5-EAB7F8CEC9E7} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2015 (KB4011638) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{8B0F5A1C-5EFC-423D-91C5-EAB7F8CEC9E7} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2015 (KB4011638) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-0401-1000-0000000FF1CE}_Office15.OMUI.ar-sa_{8B0F5A1C-5EFC-423D-91C5-EAB7F8CEC9E7} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2015 (KB4011638) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{8B0F5A1C-5EFC-423D-91C5-EAB7F8CEC9E7} =>.Microsoft Corporation®
O42 - Logiciel: UpdateAssistant - (.Microsoft Corporation.) [HKLM][64Bits] -- {4E67FF7F-C24E-4279-9AB2-C26D57B53742} =>.Microsoft Corporation
O42 - Logiciel: Uplay - (.Ubisoft.) [HKLM][64Bits] -- Uplay =>.Ubisoft Entertainment Sweden AB®
O42 - Logiciel: Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 - (.Microsoft Corporation.) [HKLM][64Bits] -- {6DA2B636-698A-3294-BF4A-B5E11B238CDD}.KB958357 =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 - (.Microsoft Corporation.) [HKLM][64Bits] -- {8CCEA24C-51AE-3B71-9092-7D0C44DDA2DF}.KB958357 =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 - (.Microsoft Corporation.) [HKLM][64Bits] -- {C3A57BB3-9AA6-3F6F-9395-6C062BDD5FC4}.KB958357 =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 - (.Microsoft Corporation.) [HKLM][64Bits] -- {F6F09DD8-F39B-3A16-ADB9-C9E6B56903F9}.KB958357 =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 - (.Microsoft Corporation.) [HKLM][64Bits] -- {04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357 =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 - (.Microsoft Corporation.) [HKLM][64Bits] -- {14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357 =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 - (.Microsoft Corporation.) [HKLM][64Bits] -- {4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357 =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 - (.Microsoft Corporation.) [HKLM][64Bits] -- {B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357 =>.Microsoft Corporation
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: Vulkan Run Time Libraries 1.0.39.1 - (.LunarG, Inc..) [HKLM][64Bits] -- VulkanRT1.0.39.1 =>.LunarG, Inc.®
O42 - Logiciel: Vulkan Run Time Libraries 1.0.54.0 - (.LunarG, Inc..) [HKLM][64Bits] -- VulkanRT1.0.54.0 =>.LunarG, Inc.®
O42 - Logiciel: Vulkan Run Time Libraries 1.0.61.0 - (.LunarG, Inc..) [HKLM][64Bits] -- VulkanRT1.0.61.0 =>.LunarG, Inc.®
O42 - Logiciel: Vulkan Run Time Libraries 1.0.65.0 - (.LunarG, Inc..) [HKLM][64Bits] -- VulkanRT1.0.65.0 =>.LunarG, Inc.®
O42 - Logiciel: Windows 10 Upgrade Assistant - (.Microsoft Corporation.) [HKLM][64Bits] -- {D5C69738-B486-402E-85AC-2456D98A64E4} =>.Microsoft Corporation®
O42 - Logiciel: WinRAR 5.30 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: World in Conflict - (.Ubisoft.) [HKLM][64Bits] -- Uplay Install 90 =>.Ubisoft Entertainment Sweden AB®
O42 - Logiciel: دعم تطبيقات Apple (32 بت) - (.Apple Inc..) [HKLM][64Bits] -- {BC7C46A4-D7A7-48EC-A98C-32A7762B5EFA} =>.Apple Inc.
O42 - Logiciel: دعم تطبيقات Apple (64 بت) - (.Apple Inc..) [HKLM][64Bits] -- {F0C4B709-8BF4-4A72-B527-12E7BF5482F8} =>.Apple Inc.
---\\ HKCU & HKLM Software Keys (172) - 66s
HKLM\SOFTWARE\Adobe =>.Adobe
HKLM\SOFTWARE\Ammyy =>.SUP.Ammyy
HKLM\SOFTWARE\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\ATI =>.ATI
HKLM\SOFTWARE\ATI Technologies =>.ATI Technologies
HKLM\SOFTWARE\Autodesk =>.Autodesk
HKLM\SOFTWARE\Baidu_Drp_pos =>.Baidu Technology
HKLM\SOFTWARE\C:
HKLM\SOFTWARE\Canon =>.Canon
HKLM\SOFTWARE\Caphyon =>.Caphyon
HKLM\SOFTWARE\Computers and Structures, Inc. =>.Computers and Structures, Inc.
HKLM\SOFTWARE\DC-Unlocker
HKLM\SOFTWARE\DTP =>.DTP
HKLM\SOFTWARE\EA Games =>.EA Games
HKLM\SOFTWARE\ESET =>.ESET
HKLM\SOFTWARE\Flashtool =>.Androxyde
HKLM\SOFTWARE\Google =>.Google
HKLM\SOFTWARE\HewlettPackard =>.Hewlett-Packard
HKLM\SOFTWARE\Intel =>.Intel
HKLM\SOFTWARE\IronPython =>.Python
HKLM\SOFTWARE\iSkysoft =>.iSkysoft Software
HKLM\SOFTWARE\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\Khronos =>.Khronos
HKLM\SOFTWARE\Macromedia =>.Macromedia
HKLM\SOFTWARE\Mozilla =>.Mozilla
HKLM\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Nefarius Software Solutions =>.Nefarius Software Solutions
HKLM\SOFTWARE\Nuance =>.Nuance
HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\PowerISO =>.PowerISO Computing
HKLM\SOFTWARE\PowerPivot =>.PowerPivot
HKLM\SOFTWARE\PTE Patch 2016 =>.Games Software
HKLM\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\SecureAge Technology =>.SecureAge Technology
HKLM\SOFTWARE\SHAREit Technologies =>..SUP.SHAREit
HKLM\SOFTWARE\Sony Corporation =>.Sony Corporation
HKLM\SOFTWARE\Synetic =>.Synetic
HKLM\SOFTWARE\TeamViewer =>.TeamViewer
HKLM\SOFTWARE\TrueSoftware =>.TrueSoftware
HKLM\SOFTWARE\TVInstallTemp =>.TeamViewer GmbH
HKLM\SOFTWARE\Ubisoft =>.Ubisoft
HKLM\SOFTWARE\Valve =>.Valve
HKLM\SOFTWARE\VideoLAN =>.VideoLAN
HKLM\SOFTWARE\Volatile =>.Microsoft Corporation
HKLM\SOFTWARE\WafCX =>.WafCX
HKLM\SOFTWARE\WinRAR =>.WinRAR
HKLM\SOFTWARE\Wondershare =>.Wondershare
HKLM\SOFTWARE\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\WOW6432Node\Ammyy =>.SUP.Ammyy
HKLM\SOFTWARE\WOW6432Node\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\WOW6432Node\ATI =>.ATI
HKLM\SOFTWARE\WOW6432Node\ATI Technologies =>.ATI Technologies
HKLM\SOFTWARE\WOW6432Node\Autodesk =>.Autodesk
HKLM\SOFTWARE\WOW6432Node\Baidu_Drp_pos =>.Baidu Technology
HKLM\SOFTWARE\WOW6432Node\C: =>Trojan.Downloader
HKLM\SOFTWARE\WOW6432Node\Canon =>.Canon
HKLM\SOFTWARE\WOW6432Node\Caphyon =>.Caphyon
HKLM\SOFTWARE\WOW6432Node\Computers and Structures, Inc. =>.Computers and Structures, Inc.
HKLM\SOFTWARE\WOW6432Node\DC-Unlocker
HKLM\SOFTWARE\WOW6432Node\DTP =>.DTP
HKLM\SOFTWARE\WOW6432Node\EA Games =>.EA Games
HKLM\SOFTWARE\WOW6432Node\ESET =>.ESET
HKLM\SOFTWARE\WOW6432Node\Flashtool =>.Androxyde
HKLM\SOFTWARE\WOW6432Node\Google =>.Google
HKLM\SOFTWARE\WOW6432Node\HewlettPackard =>.Hewlett-Packard
HKLM\SOFTWARE\WOW6432Node\Intel =>.Intel
HKLM\SOFTWARE\WOW6432Node\IronPython =>.Python
HKLM\SOFTWARE\WOW6432Node\iSkysoft =>.iSkysoft Software
HKLM\SOFTWARE\WOW6432Node\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\WOW6432Node\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\WOW6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\WOW6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\WOW6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\WOW6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\WOW6432Node\Nefarius Software Solutions =>.Nefarius Software Solutions
HKLM\SOFTWARE\WOW6432Node\Nuance =>.Nuance
HKLM\SOFTWARE\WOW6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\WOW6432Node\PowerISO =>.PowerISO Computing
HKLM\SOFTWARE\WOW6432Node\PowerPivot =>.PowerPivot
HKLM\SOFTWARE\WOW6432Node\PTE Patch 2016 =>.Games Software
HKLM\SOFTWARE\WOW6432Node\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\WOW6432Node\SecureAge Technology =>.SecureAge Technology
HKLM\SOFTWARE\WOW6432Node\SHAREit Technologies =>..SUP.SHAREit
HKLM\SOFTWARE\WOW6432Node\Sony Corporation =>.Sony Corporation
HKLM\SOFTWARE\WOW6432Node\Synetic =>.Synetic
HKLM\SOFTWARE\WOW6432Node\TeamViewer =>.TeamViewer
HKLM\SOFTWARE\WOW6432Node\TrueSoftware =>.TrueSoftware
HKLM\SOFTWARE\WOW6432Node\TVInstallTemp =>.TeamViewer GmbH
HKLM\SOFTWARE\WOW6432Node\Ubisoft =>.Ubisoft
HKLM\SOFTWARE\WOW6432Node\Valve =>.Valve
HKLM\SOFTWARE\WOW6432Node\VideoLAN =>.VideoLAN
HKLM\SOFTWARE\WOW6432Node\Volatile =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\WafCX =>.WafCX
HKLM\SOFTWARE\WOW6432Node\WinRAR =>.WinRAR
HKLM\SOFTWARE\WOW6432Node\Wondershare =>.Wondershare
HKLM\SOFTWARE\WOW6432Node\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\5cd8f17f4086744065eb0992a09e05a2 =>Adware.CrossRider
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\Affinix =>.Affinix Software
HKCU\SOFTWARE\Akamai =>.SUP.AkamaiHD
HKCU\SOFTWARE\Akeo Consulting =>.Akeo Consulting
HKCU\SOFTWARE\AMD =>.AMD
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc. =>.Apple Inc.
HKCU\SOFTWARE\ATI =>.ATI
HKCU\SOFTWARE\Autodesk =>.Autodesk
HKCU\SOFTWARE\Baidu Security =>.Baidu Technology
HKCU\SOFTWARE\Baidu WiFiHotspot
HKCU\SOFTWARE\BlueStacks =>.BlueStack Systems, Inc.
HKCU\SOFTWARE\Canon =>.Canon
HKCU\SOFTWARE\Caphyon =>.Caphyon
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\DuoDianApp =>.DuoDianApp
HKCU\SOFTWARE\DynamoStability
HKCU\SOFTWARE\DynamoUXG
HKCU\SOFTWARE\ej-technologies =>.ej-technologies
HKCU\SOFTWARE\ERDAS =>.Erdas Inc
HKCU\SOFTWARE\ESET =>.ESET
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\GrandUtils
HKCU\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard
HKCU\SOFTWARE\HP =>.HP
HKCU\SOFTWARE\IM Providers =>.IM Providers
HKCU\SOFTWARE\iMazing
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\IO Interactive =>.IO Interactive
HKCU\SOFTWARE\IronPython =>.Python
HKCU\SOFTWARE\iSkysoft =>.iSkysoft Software
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\JavaVersion
HKCU\SOFTWARE\Kodi =>.XBMC Foundation
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\Malwarebytes =>.Malwarebytes
HKCU\SOFTWARE\Marvell =>.Marvell
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKCU\SOFTWARE\PANTONE =>.PANTONE
HKCU\SOFTWARE\Piriform =>.Piriform
HKCU\SOFTWARE\PowerISO =>.PowerISO Computing
HKCU\SOFTWARE\ProgeCAD =>.progeCAD
HKCU\SOFTWARE\PSOFT =>.PSOFT
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\SaurikIT =>.SaurikIT, LLC
HKCU\SOFTWARE\Scarlet.Crush Productions =>.Scarlet.Crush Productions
HKCU\SOFTWARE\SecureAge Technology =>.SecureAge Technology
HKCU\SOFTWARE\SHAREit Technologies =>..SUP.SHAREit
HKCU\SOFTWARE\Sony Corporation =>.Sony Corporation
HKCU\SOFTWARE\StripMtext
HKCU\SOFTWARE\Synaptics =>.Synaptics
HKCU\SOFTWARE\Sysinternals =>.Sysinternals
HKCU\SOFTWARE\TeamViewer =>.TeamViewer
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\Tukero[X]Team =>.Tukero[X]Team
HKCU\SOFTWARE\undefined =>.SUP.Downloader
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\VB and VBA Program Settings =>.Microsoft Corporation
HKCU\SOFTWARE\VideoLAN =>.VideoLAN
HKCU\SOFTWARE\WGSoft =>.WGSoft
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\Wondershare =>.Wondershare
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
---\\ Contents of the Common Files folders (384) - 177s
O43 - CFD: 04/05/2017 - [] D -- C:\Program Files\Adobe =>.Adobe
O43 - CFD: 26/12/2017 - [] AD -- C:\Program Files\AMD =>.Advanced Micro Devices, Inc.®
O43 - CFD: 26/08/2017 - [] AD -- C:\Program Files\Autodesk =>.Autodesk
O43 - CFD: 22/08/2017 - [] AD -- C:\Program Files\Bonjour =>.Apple Inc.
O43 - CFD: 03/05/2017 - [] D -- C:\Program Files\Canon =>.CANON INC.®
O43 - CFD: 18/01/2018 - [] AD -- C:\Program Files\CCleaner =>.Piriform Ltd
O43 - CFD: 26/12/2017 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 18/01/2018 - [] D -- C:\Program Files\Enigma Software Group =>.Enigma Software Group, LLC
O43 - CFD: 18/01/2018 - [] D -- C:\Program Files\ESET =>.ESET, spol. s r.o.®
O43 - CFD: 07/01/2018 - [] D -- C:\Program Files\HP =>.Hewlett-Packard
O43 - CFD: 29/12/2017 - [] D -- C:\Program Files\Hyper-V =>.Microsoft Corporation
O43 - CFD: 25/12/2017 - [] D -- C:\Program Files\Intel =>.Intel Corporation
O43 - CFD: 09/01/2018 - [] D -- C:\Program Files\internet explorer =>.Microsoft Corporation
O43 - CFD: 14/12/2017 - [] D -- C:\Program Files\iPod =>.Apple Inc.®
O43 - CFD: 14/12/2017 - [] AD -- C:\Program Files\iTunes =>.Apple Inc.
O43 - CFD: 27/12/2017 - [] D -- C:\Program Files\Malwarebytes =>.Malwarebytes
O43 - CFD: 30/04/2017 - [] D -- C:\Program Files\Microsoft Analysis Services =>.Microsoft Corporation
O43 - CFD: 30/04/2017 - [] AD -- C:\Program Files\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 09/08/2017 - [] AD -- C:\Program Files\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 02/05/2017 - [] D -- C:\Program Files\Microsoft SQL Server =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\Program Files\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 12/01/2018 - [] AD -- C:\Program Files\Mozilla Firefox =>.Mozilla
O43 - CFD: 02/05/2017 - [] D -- C:\Program Files\MPC-HC =>.MPC-HC Team
O43 - CFD: 25/12/2017 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 28/12/2017 - [] D -- C:\Program Files\Nefarius Software Solutions =>.Open Source Developer, Benjamin Höglinger-Stelzer®
O43 - CFD: 03/05/2017 - [] AD -- C:\Program Files\PlayReady =>.Microsoft Corporation
O43 - CFD: 30/04/2017 - [] AD -- C:\Program Files\PowerISO =>.PowerISO Computing
O43 - CFD: 11/11/2017 - [] D -- C:\Program Files\PSOFT =>.PSOFT
O43 - CFD: 25/12/2017 - [] D -- C:\Program Files\Realtek =>.Realtek
O43 - CFD: 25/12/2017 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 21/07/2017 - [] AD -- C:\Program Files\rempl =>.Microsoft Corporation®
O43 - CFD: 27/01/2018 - [] D -- C:\Program Files\RogueKiller =>.Adlice Software
O43 - CFD: 29/12/2017 - [] D -- C:\Program Files\Scarlet. Crush Productions
O43 - CFD: 22/06/2017 - [] D -- C:\Program Files\supdt
O43 - CFD: 25/12/2017 - [] D -- C:\Program Files\Synaptics =>.Synaptics Incorporated®
O43 - CFD: 26/07/2017 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 12/08/2017 - [] D -- C:\Program Files\VideoLAN =>.VideoLan Team
O43 - CFD: 29/12/2017 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 29/12/2017 - [] D -- C:\Program Files\Windows Defender Advanced Threat Protection =>.Microsoft Corporation
O43 - CFD: 25/12/2017 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 29/12/2017 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\windows nt =>.Microsoft Corporation
O43 - CFD: 29/12/2017 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\Windows Security =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] SHD -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 26/01/2018 - [] HD -- C:\Program Files\WindowsApps =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 28/08/2017 - [] AD -- C:\Program Files (x86)\Adobe =>.Adobe Systems Incorporated®
O43 - CFD: 30/04/2017 - [] AD -- C:\Program Files (x86)\AMD =>.Advanced Micro Devices, Inc.®
O43 - CFD: 16/09/2017 - [] AD -- C:\Program Files (x86)\Apple Software Update =>.Apple Inc.
O43 - CFD: 30/04/2017 - [] D -- C:\Program Files (x86)\Autodesk =>.Autodesk
O43 - CFD: 23/12/2017 - [] D -- C:\Program Files (x86)\Avira =>.Avira Software
O43 - CFD: 17/08/2017 - [] D -- C:\Program Files (x86)\Bignox =>.BigNox
O43 - CFD: 22/08/2017 - [] AD -- C:\Program Files (x86)\Bonjour =>.Apple Inc.
O43 - CFD: 09/05/2017 - [] D -- C:\Program Files (x86)\Canon =>.Canon
O43 - CFD: 26/12/2017 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 19/08/2017 - [] D -- C:\Program Files (x86)\Computers and Structures =>.Computers and Structures, Inc.
O43 - CFD: 04/12/2017 - [] D -- C:\Program Files (x86)\Elite Software
O43 - CFD: 25/11/2017 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 24/12/2017 - [] D -- C:\Program Files (x86)\HP =>.Hewlett-Packard
O43 - CFD: 30/04/2017 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation
O43 - CFD: 09/01/2018 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 24/08/2017 - [] AD -- C:\Program Files (x86)\IronPython 2.7 =>.Python
O43 - CFD: 07/05/2017 - [] D -- C:\Program Files (x86)\iSkysoft =>.BugSplat LLC®
O43 - CFD: 14/11/2017 - [] D -- C:\Program Files (x86)\Java =>.Oracle
O43 - CFD: 17/11/2017 - [] D -- C:\Program Files (x86)\Kodi =>.XBMC Foundation
O43 - CFD: 30/04/2017 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services =>.Microsoft Corporation
O43 - CFD: 30/04/2017 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 09/01/2018 - [] D -- C:\Program Files (x86)\Microsoft Research =>.Microsoft Corporation
O43 - CFD: 27/12/2017 - [] D -- C:\Program Files (x86)\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 02/05/2017 - [] D -- C:\Program Files (x86)\Microsoft SQL Server =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 11/01/2018 - [] D -- C:\Program Files (x86)\Minimal ADB and Fastboot
O43 - CFD: 14/07/2017 - [] D -- C:\Program Files (x86)\Mobile Partner =>.HUAWEI Technologies Co., Ltd.®
O43 - CFD: 13/07/2017 - [] D -- C:\Program Files (x86)\MobileBrServ =>.Huawei Technologies Co.,Ltd
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla
O43 - CFD: 12/01/2018 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla
O43 - CFD: 25/12/2017 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 15/05/2017 - [] D -- C:\Program Files (x86)\MSECache =>.Microsoft Corporation
O43 - CFD: 15/08/2017 - [] AD -- C:\Program Files (x86)\MSXML 4.0 =>.Microsoft Corporation
O43 - CFD: 17/08/2017 - [0] D -- C:\Program Files (x86)\Nox =>.FFmpeg Project
O43 - CFD: 14/12/2017 - [] D -- C:\Program Files (x86)\PCMSCAN
O43 - CFD: 19/05/2017 - [] D -- C:\Program Files (x86)\R.G. Games
O43 - CFD: 25/12/2017 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 30/04/2017 - [] D -- C:\Program Files (x86)\SHAREit Technologies =>.SHAREit Technologies Co.Ltd®
O43 - CFD: 02/05/2017 - [] D -- C:\Program Files (x86)\Smart PC Soft =>.Smart PC Soft
O43 - CFD: 15/08/2017 - [] D -- C:\Program Files (x86)\Sony =>.Sony
O43 - CFD: 24/12/2017 - [] D -- C:\Program Files (x86)\StarWind Software =>.StarWind Software
O43 - CFD: 14/01/2018 - [] AD -- C:\Program Files (x86)\TeamViewer =>.TeamViewer GmbH
O43 - CFD: 23/12/2017 - [] D -- C:\Program Files (x86)\Ubisoft =>.Ubisoft
O43 - CFD: 04/11/2017 - [] D -- C:\Program Files (x86)\VideoLAN =>.VideoLan Team
O43 - CFD: 14/12/2017 - [] D -- C:\Program Files (x86)\VulkanRT =>.LunarG, Inc
O43 - CFD: 29/12/2017 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 25/12/2017 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 29/12/2017 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\windows nt =>.Microsoft Corporation
O43 - CFD: 29/12/2017 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] SHD -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 02/05/2017 - [] AD -- C:\Program Files (x86)\WinRAR =>.win.rar GmbH®
O43 - CFD: 08/01/2018 - [] D -- C:\Program Files (x86)\Wondershare =>.Wondershare
O43 - CFD: 29/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 25/12/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Problem Report Wizard
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings =>.Advanced Micro Devices Inc
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoCAD 2018 - English
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk =>.Autodesk
O43 - CFD: 21/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira =>.Avira Software
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner =>.Piriform Ltd
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Color Network ScanGear
O43 - CFD: 26/07/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike Global Offensive
O43 - CFD: 26/07/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crash Time 5 - Undercover
O43 - CFD: 18/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET =>.ESET
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ETABS 2016 Eval
O43 - CFD: 17/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 17 =>.Electronic Arts, Inc.
O43 - CFD: 07/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP =>.Hewlett-Packard
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IronPython 2.7 =>.Python
O43 - CFD: 25/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iSkysoft =>.iSkySoft
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes =>.Apple Inc.
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java =>.Oracle
O43 - CFD: 25/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KaOs
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodi =>.XBMC Foundation
O43 - CFD: 29/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 18/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes =>.Malwarebytes
O43 - CFD: 10/01/2018 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 =>.Microsoft Corporation
O43 - CFD: 27/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 11/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minimal ADB and Fastboot
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64 =>.MPC-HC Team
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMB =>.Sony Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO =>.PowerISO Computing
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\progeCAD 2018 - English (x64)
O43 - CFD: 25/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Games
O43 - CFD: 27/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller =>.Adlice Software
O43 - CFD: 10/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScpToolkit
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHAREit =>.Lenovo Group Limited
O43 - CFD: 25/01/2018 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp =>.Microsoft Corporation
O43 - CFD: 25/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarWind Software =>.StarWind Software
O43 - CFD: 29/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TV 3L PC
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLan Team
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 08/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare =>.Wondershare
O43 - CFD: 28/08/2017 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 14/07/2017 - [] D -- C:\ProgramData\AMMYY =>.SUP.Ammyy
O43 - CFD: 22/08/2017 - [] D -- C:\ProgramData\Apple =>.Apple Inc.
O43 - CFD: 22/08/2017 - [] D -- C:\ProgramData\Apple Computer =>.Apple Inc.
O43 - CFD: 26/12/2017 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 30/04/2017 - [] D -- C:\ProgramData\ATI =>.ATI
O43 - CFD: 26/08/2017 - [] AD -- C:\ProgramData\Autodesk =>.Autodesk
O43 - CFD: 23/12/2017 - [] D -- C:\ProgramData\Avira =>.Avira Software
O43 - CFD: 24/08/2017 - [] D -- C:\ProgramData\boost_interprocess =>.boost.org
O43 - CFD: 30/04/2017 - [] D -- C:\ProgramData\Canon =>.Canon
O43 - CFD: 30/04/2017 - [] D -- C:\ProgramData\ClamAV =>.Legitimate
O43 - CFD: 30/10/2015 - [0] D -- C:\ProgramData\Comms =>.Microsoft Corporation
O43 - CFD: 14/07/2017 - [] D -- C:\ProgramData\DatacardService =>.Entriq, Inc.
O43 - CFD: 26/12/2017 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation
O43 - CFD: 31/10/2017 - [] D -- C:\ProgramData\DigiDNA =>.DigiDNA
O43 - CFD: 26/12/2017 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 17/11/2017 - [] D -- C:\ProgramData\Electronic Arts =>.Electronic Arts
O43 - CFD: 18/01/2018 - [] D -- C:\ProgramData\ESET =>.ESET
O43 - CFD: 30/04/2017 - [] D -- C:\ProgramData\FARO =>.FARO
O43 - CFD: 24/08/2017 - [] D -- C:\ProgramData\FLEXnet =>.Flexera Software
O43 - CFD: 24/12/2017 - [] D -- C:\ProgramData\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 07/05/2017 - [] D -- C:\ProgramData\iSkysoft =>.iSkySoft
O43 - CFD: 27/01/2018 - [] D -- C:\ProgramData\KMSAutoS =>HackTool.WinActivator
O43 - CFD: 25/01/2018 - [] D -- C:\ProgramData\KONAMI =>.Konami
O43 - CFD: 18/01/2018 - [] D -- C:\ProgramData\Malwarebytes =>.Malwarebytes
O43 - CFD: 17/01/2018 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation
O43 - CFD: 10/01/2018 - [] D -- C:\ProgramData\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft OneDrive =>.Microsoft Corporation
O43 - CFD: 30/04/2017 - [] D -- C:\ProgramData\Microsoft Toolkit =>.Microsoft Corporation
O43 - CFD: 14/01/2018 - [] D -- C:\ProgramData\Nefarius Software Solutions =>.Nefarius Software Solutions
O43 - CFD: 14/11/2017 - [] D -- C:\ProgramData\Oracle =>.Oracle
O43 - CFD: 16/11/2017 - [] D -- C:\ProgramData\Origin =>.Electronic Arts, Inc.
O43 - CFD: 28/12/2017 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 17/01/2018 - [] D -- C:\ProgramData\PSOFT =>.PSOFT
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\regid.1986-12.com.adobe =>.Adobe Inc.
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft =>.Microsoft Corporation
O43 - CFD: 15/11/2017 - [0] D -- C:\ProgramData\RevitInterProcess
O43 - CFD: 27/01/2018 - [] D -- C:\ProgramData\RogueKiller =>.Adlice Software
O43 - CFD: 19/08/2017 - [] D -- C:\ProgramData\SafeNet Sentinel =>.SafeNet
O43 - CFD: 30/04/2017 - [] D -- C:\ProgramData\SecureAge Technology =>.SecureAge Technology
O43 - CFD: 08/08/2017 - [] SHD -- C:\ProgramData\SecuROM =>.SecuROM
O43 - CFD: 22/11/2017 - [] D -- C:\ProgramData\Socialclub =>.Legitimate
O43 - CFD: 29/09/2017 - [0] D -- C:\ProgramData\SoftwareDistribution =>.Microsoft Corporation
O43 - CFD: 09/05/2017 - [0] D -- C:\ProgramData\SolidDocuments =>.SolidDocuments
O43 - CFD: 15/08/2017 - [] D -- C:\ProgramData\Sony Corporation =>.Sony Corporation
O43 - CFD: 26/07/2017 - [] D -- C:\ProgramData\SRS Labs =>.SRS Labs
O43 - CFD: 26/12/2017 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation
O43 - CFD: 14/06/2017 - [] D -- C:\ProgramData\Steam =>.Steam Games
O43 - CFD: 30/04/2017 - [] D -- C:\ProgramData\Synaptics =>.Synaptics
O43 - CFD: 01/06/2017 - [] D -- C:\ProgramData\Synetic =>.Synetic
O43 - CFD: 26/12/2017 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\USOPrivate =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\USOShared =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\ProgramData\WindowsHolographicDevices =>.Microsoft Corporation
O43 - CFD: 08/01/2018 - [] D -- C:\ProgramData\Wondershare =>.Wondershare
O43 - CFD: 07/05/2017 - [] D -- C:\ProgramData\wsr
O43 - CFD: 30/11/2017 - [] D -- C:\ProgramData\X360CE =>.Microsoft Corporation
O43 - CFD: 19/08/2017 - [] D -- C:\ProgramData\{80E395FA-7630-4011-BB34-91DBDC5AE93B}
O43 - CFD: 28/08/2017 - [] AD -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 22/08/2017 - [] D -- C:\Program Files (x86)\Common Files\Apple =>.Apple Inc.
O43 - CFD: 03/05/2017 - [] AD -- C:\Program Files (x86)\Common Files\Autodesk Shared =>.Autodesk
O43 - CFD: 25/12/2017 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation
O43 - CFD: 14/11/2017 - [] D -- C:\Program Files (x86)\Common Files\Java =>.Oracle
O43 - CFD: 26/12/2017 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 29/12/2017 - [] D -- C:\Program Files (x86)\Common Files\system =>.Microsoft Corporation
O43 - CFD: 14/12/2017 - [] D -- C:\Program Files (x86)\Common Files\Wise Installation Wizard =>.Seagate
O43 - CFD: 11/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\ADBDriverInstaller =>.Samsung Electronics
O43 - CFD: 28/08/2017 - [] D -- C:\Users\HP\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 30/08/2017 - [] D -- C:\Users\HP\AppData\Roaming\Analytics
O43 - CFD: 23/08/2017 - [] D -- C:\Users\HP\AppData\Roaming\Apple Computer =>.Apple Inc.
O43 - CFD: 13/08/2017 - [] D -- C:\Users\HP\AppData\Roaming\Appԁata
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Roaming\ATI =>.ATI
O43 - CFD: 05/06/2017 - [] D -- C:\Users\HP\AppData\Roaming\Autodesk =>.Autodesk
O43 - CFD: 09/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\Baidu =>.Baidu
O43 - CFD: 27/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\BitTorrent
O43 - CFD: 17/08/2017 - [0] D -- C:\Users\HP\AppData\Roaming\BluestacksCN
O43 - CFD: 02/05/2017 - [] D -- C:\Users\HP\AppData\Roaming\DRPNPS
O43 - CFD: 28/08/2017 - [] D -- C:\Users\HP\AppData\Roaming\Dynamo
O43 - CFD: 04/12/2017 - [] D -- C:\Users\HP\AppData\Roaming\Elite Software
O43 - CFD: 18/01/2018 - [0] D -- C:\Users\HP\AppData\Roaming\Enigma Software Group =>.Enigma Software Group, LLC
O43 - CFD: 15/07/2017 - [] D -- C:\Users\HP\AppData\Roaming\ESET =>.ESET
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Roaming\Google =>.Google
O43 - CFD: 24/12/2017 - [] D -- C:\Users\HP\AppData\Roaming\hpqLog =>.Hewlett-Packard
O43 - CFD: 07/05/2017 - [] D -- C:\Users\HP\AppData\Roaming\iSkysoft =>.iSkySoft
O43 - CFD: 26/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\Kodi =>.XBMC Foundation
O43 - CFD: 11/11/2017 - [] SHD -- C:\Users\HP\AppData\Roaming\Latas
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 26/12/2017 - [] SD -- C:\Users\HP\AppData\Roaming\Microsoft =>.Microsoft Corporation
O43 - CFD: 30/11/2017 - [] D -- C:\Users\HP\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Roaming\MPC-HC =>.MPC-HC Team
O43 - CFD: 13/12/2017 - [0] D -- C:\Users\HP\AppData\Roaming\mpv
O43 - CFD: 28/12/2017 - [] D -- C:\Users\HP\AppData\Roaming\Nefarius Software Solutions =>.Nefarius Software Solutions
O43 - CFD: 29/05/2017 - [] D -- C:\Users\HP\AppData\Roaming\PDAppFlex =>Trojan.Elpman
O43 - CFD: 13/08/2017 - [] SHD -- C:\Users\HP\AppData\Roaming\Pr
O43 - CFD: 11/11/2017 - [] D -- C:\Users\HP\AppData\Roaming\PSOFT =>.PSOFT
O43 - CFD: 09/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\ScanMaster-ELM
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Roaming\SecureAge Technology =>.SecureAge Technology
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Roaming\Skype =>.Skype
O43 - CFD: 09/05/2017 - [] D -- C:\Users\HP\AppData\Roaming\SolidDocuments =>.SolidDocuments
O43 - CFD: 15/08/2017 - [] D -- C:\Users\HP\AppData\Roaming\Sony Corporation =>.Sony Corporation
O43 - CFD: 14/11/2017 - [] D -- C:\Users\HP\AppData\Roaming\Sun =>.Oracle
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Roaming\Synaptics =>.Synaptics
O43 - CFD: 13/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\TeamViewer =>.TeamViewer GmbH
O43 - CFD: 16/07/2017 - [] D -- C:\Users\HP\AppData\Roaming\Umeng
O43 - CFD: 17/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\vlc =>.VideoLan Team
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 08/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\Wondershare =>.Wondershare
O43 - CFD: 27/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 04/11/2017 - [] D -- C:\Users\HP\AppData\Local\ACTI2.0
O43 - CFD: 30/04/2017 - [0] D -- C:\Users\HP\AppData\Local\ActiveSync =>.Microsoft Corporation
O43 - CFD: 24/12/2017 - [] D -- C:\Users\HP\AppData\Local\Adobe =>.Adobe
O43 - CFD: 06/11/2017 - [] D -- C:\Users\HP\AppData\Local\Akamai =>.SUP.AkamaiHD
O43 - CFD: 18/12/2017 - [] D -- C:\Users\HP\AppData\Local\AMD =>.AMD
O43 - CFD: 22/08/2017 - [] D -- C:\Users\HP\AppData\Local\Apple =>.Apple Inc.
O43 - CFD: 22/08/2017 - [] D -- C:\Users\HP\AppData\Local\Apple Computer =>.Apple Inc.
O43 - CFD: 26/12/2017 - [0] SHD -- C:\Users\HP\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 18/12/2017 - [] D -- C:\Users\HP\AppData\Local\Apps =>.Microsoft Corporation
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Local\ATI =>.ATI
O43 - CFD: 09/11/2017 - [] D -- C:\Users\HP\AppData\Local\Autodesk =>.Autodesk
O43 - CFD: 28/12/2017 - [] D -- C:\Users\HP\AppData\Local\BetterDS3
O43 - CFD: 29/11/2017 - [] D -- C:\Users\HP\AppData\Local\Bluestacks =>.BlueStack Systems, Inc.
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Local\CEF =>.CEF
O43 - CFD: 17/11/2017 - [] D -- C:\Users\HP\AppData\Local\Comms =>.Microsoft Corporation
O43 - CFD: 19/08/2017 - [] D -- C:\Users\HP\AppData\Local\Computers and Structures =>.Computers and Structures, Inc.
O43 - CFD: 26/12/2017 - [] D -- C:\Users\HP\AppData\Local\ConnectedDevicesPlatform =>.Microsoft Corporation
O43 - CFD: 09/08/2017 - [0] D -- C:\Users\HP\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 26/07/2017 - [0] D -- C:\Users\HP\AppData\Local\DBG =>.DBG
O43 - CFD: 14/01/2018 - [] D -- C:\Users\HP\AppData\Local\Diagnostics =>.Microsoft Corporation
O43 - CFD: 31/10/2017 - [] D -- C:\Users\HP\AppData\Local\DigiDNA =>.DigiDNA
O43 - CFD: 09/01/2018 - [] D -- C:\Users\HP\AppData\Local\Downloaded Installations =>.Microsoft Corporation
O43 - CFD: 24/01/2018 - [] D -- C:\Users\HP\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation
O43 - CFD: 04/12/2017 - [] D -- C:\Users\HP\AppData\Local\Elite Software
O43 - CFD: 20/12/2017 - [] D -- C:\Users\HP\AppData\Local\Embratoria =>.Embratoria
O43 - CFD: 15/07/2017 - [] D -- C:\Users\HP\AppData\Local\ESET =>.ESET
O43 - CFD: 02/05/2017 - [] D -- C:\Users\HP\AppData\Local\Geckofx =>.Geckofx
O43 - CFD: 25/11/2017 - [] D -- C:\Users\HP\AppData\Local\Google =>.Google
O43 - CFD: 26/12/2017 - [0] SHD -- C:\Users\HP\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 27/01/2018 - [] D -- C:\Users\HP\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 16/11/2017 - [] D -- C:\Users\HP\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Local\MicrosoftEdge =>.Microsoft Corporation
O43 - CFD: 14/01/2018 - [] D -- C:\Users\HP\AppData\Local\Microvirt =>.Microvirt
O43 - CFD: 30/11/2017 - [] D -- C:\Users\HP\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\Users\HP\AppData\Local\MSfree Inc =>HackTool.WinActivator
O43 - CFD: 30/04/2017 - [0] D -- C:\Users\HP\AppData\Local\NetworkTiles =>.NetworkTiles
O43 - CFD: 17/08/2017 - [] D -- C:\Users\HP\AppData\Local\Nox =>.FFmpeg Project
O43 - CFD: 10/01/2018 - [] D -- C:\Users\HP\AppData\Local\Packages =>.Microsoft Corporation
O43 - CFD: 30/04/2017 - [0] D -- C:\Users\HP\AppData\Local\PeerDistRepub =>.Microsoft Corporation
O43 - CFD: 08/01/2018 - [0] D -- C:\Users\HP\AppData\Local\PlaceholderTileLogoFolder
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Local\Publishers =>.Microsoft Corporation
O43 - CFD: 06/09/2017 - [0] D -- C:\Users\HP\AppData\Local\RaaSForRevitAddin
O43 - CFD: 04/11/2017 - [] D -- C:\Users\HP\AppData\Local\RadeonInstaller
O43 - CFD: 03/08/2017 - [] D -- C:\Users\HP\AppData\Local\Recovery =>.Recovery Labs
O43 - CFD: 17/07/2017 - [] D -- C:\Users\HP\AppData\Local\Rockstar Games =>.Rockstar Games
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Local\SHAREit Technologies
O43 - CFD: 11/01/2018 - [] D -- C:\Users\HP\AppData\Local\SHAREit_Technologies_Co.L
O43 - CFD: 20/11/2017 - [] D -- C:\Users\HP\AppData\Local\Smart PC Soft =>.Smart PC Soft
O43 - CFD: 14/11/2017 - [] D -- C:\Users\HP\AppData\Local\Smart_PC_Soft =>.Smart PC Soft
O43 - CFD: 12/08/2017 - [] D -- C:\Users\HP\AppData\Local\speech =>.Microsoft Corporation
O43 - CFD: 27/01/2018 - [] D -- C:\Users\HP\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [0] SHD -- C:\Users\HP\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 21/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign029fc3a71e11be3f =>.SUP.Temporary
O43 - CFD: 25/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign117eb30c0d08c40b =>.SUP.Temporary
O43 - CFD: 19/09/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign247f7cf38fc04e5d =>.SUP.Temporary
O43 - CFD: 14/05/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign2d0b2cffe39fde4e =>.SUP.Temporary
O43 - CFD: 14/05/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign3cbb35943e7048b1 =>.SUP.Temporary
O43 - CFD: 25/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign3da1615d062e65bd =>.SUP.Temporary
O43 - CFD: 14/05/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign4d163639a858b2c7 =>.SUP.Temporary
O43 - CFD: 19/09/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign4ea31d676fe2ddc6 =>.SUP.Temporary
O43 - CFD: 17/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign4f203f1d04afb6a0 =>.SUP.Temporary
O43 - CFD: 17/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign555e0f44ce5939ff =>.SUP.Temporary
O43 - CFD: 19/09/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign5daa5d261229090a =>.SUP.Temporary
O43 - CFD: 16/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign6c2865db5cf1675e =>.SUP.Temporary
O43 - CFD: 06/05/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign73ffcc09c1afe6f5 =>.SUP.Temporary
O43 - CFD: 17/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign74378edb96195a0c =>.SUP.Temporary
O43 - CFD: 16/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign7c6979147ea4af2a =>.SUP.Temporary
O43 - CFD: 14/05/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign973f23cc07412fcc =>.SUP.Temporary
O43 - CFD: 25/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsigna26107e25cf3c96e =>.SUP.Temporary
O43 - CFD: 16/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsigna63f429788279ab3 =>.SUP.Temporary
O43 - CFD: 17/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsignc2d8506218b72a83 =>.SUP.Temporary
O43 - CFD: 21/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsigncdf4925f0580d85b =>.SUP.Temporary
O43 - CFD: 06/05/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsignd1e8e1a0fe0b9d99 =>.SUP.Temporary
O43 - CFD: 06/05/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsignd684eace63e7bb9c =>.SUP.Temporary
O43 - CFD: 14/05/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsigne497590a4cd7ccb8 =>.SUP.Temporary
O43 - CFD: 26/12/2017 - [] D -- C:\Users\HP\AppData\Local\TileDataLayer =>.Microsoft Corporation
O43 - CFD: 27/12/2017 - [] D -- C:\Users\HP\AppData\Local\Ubisoft Game Launcher =>.Ubisoft
O43 - CFD: 09/01/2018 - [] D -- C:\Users\HP\AppData\Local\VirtualRouterPlus
O43 - CFD: 20/12/2017 - [] D -- C:\Users\HP\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 30/12/2017 - [] D -- C:\Users\HP\AppData\Local\Zemana =>.Zemana
O43 - CFD: 25/01/2018 - [] D -- C:\Users\HP\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 14/11/2017 - [] D -- C:\Users\HP\AppData\Local\__SHARED
O43 - CFD: 30/04/2017 - [0] D -- C:\Users\HP\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 09/05/2017 - [] D -- C:\Users\HP\AppData\LocalLow\Adobe =>.Adobe
O43 - CFD: 27/01/2018 - [] D -- C:\Users\HP\AppData\LocalLow\BitTorrent
O43 - CFD: 04/05/2017 - [] D -- C:\Users\HP\AppData\LocalLow\Microsoft =>.Microsoft Corporation
O43 - CFD: 23/01/2018 - [0] D -- C:\Users\HP\AppData\LocalLow\Mozilla =>.Mozilla Corporation
O43 - CFD: 14/11/2017 - [] D -- C:\Users\HP\AppData\LocalLow\Sun =>.Oracle
O43 - CFD: 17/09/2017 - [] D -- C:\Users\HP\AppData\LocalLow\Temp =>.Microsoft Corporation
O43 - CFD: 04/01/2018 - [] D -- C:\Users\HP\Desktop\hanger
O43 - CFD: 25/12/2017 - [] D -- C:\Users\HP\Desktop\TNod User & Password Finder 1.6.2 Beta 3
O43 - CFD: 25/01/2018 - [] D -- C:\Users\HP\Desktop\watch
O43 - CFD: 11/01/2018 - [] D -- C:\Users\HP\Desktop\wifi
O43 - CFD: 21/12/2017 - [] D -- C:\Users\HP\Desktop\روضة زلوم
O43 - CFD: 30/10/2017 - [] D -- C:\Users\HP\Desktop\شهادات سعودة
O43 - CFD: 06/11/2017 - [] D -- C:\Users\HP\Desktop\ملفات pdf
O43 - CFD: 13/09/2017 - [] D -- C:\Users\HP\Desktop\مناقصة الإستثمار
O43 - CFD: 29/09/2017 - [] RD -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [] RD -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 09/01/2018 - [] RD -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 26/12/2017 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autodesk =>.Autodesk
O43 - CFD: 27/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flashtool =>.Androxyde
O43 - CFD: 29/09/2017 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEmu =>.Microvirt Software Technology Ltd.
O43 - CFD: 26/12/2017 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PCMSCAN
O43 - CFD: 18/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
O43 - CFD: 09/01/2018 - [] RD -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] RD -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft =>.Ubisoft
O43 - CFD: 29/09/2017 - [] RD -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 26/12/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [0] SHD -- C:\Users\Default\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [0] D -- C:\Users\Default\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [0] D -- C:\Users\Default User\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 25/01/2018 - [0] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\DBG =>.DBG
O43 - CFD: 18/01/2018 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 29/12/2017 - [0] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\PeerDistRepub =>.Microsoft Corporation
O43 - CFD: 11/01/2018 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft Corporation
---\\ ShellIconOverlayIdentifiers (SIOI) (8) - 0s
O106 - SIOI: [ AccExtIco1] - {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}. (.Copyright © 2013-2016, Adobe Systems Incorporated. Al - Core Sync.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll =>.Adobe Systems Incorporated®
O106 - SIOI: [ AccExtIco2] - {853B7E05-C47D-4985-909A-D0DC5C6D7303}. (.Copyright © 2013-2016, Adobe Systems Incorporated. Al - Core Sync.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll =>.Adobe Systems Incorporated®
O106 - SIOI: [ AccExtIco3] - {42D38F2E-98E9-4382-B546-E24E4D6D04BB}. (.Copyright © 2013-2016, Adobe Systems Incorporated. Al - Core Sync.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll =>.Adobe Systems Incorporated®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - Client Side Caching UI.) -- C:\WINDOWS\System32\cscui.dll =>.Microsoft Corporation
---\\ Search Context Menu Handlers (SCMH) (39) - 4s
O108 - CMH1: AccExt [64Bits] - {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} . (.Copyright © 2013-2016, Adobe Systems Incorporated. Al - Core Sync.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll =>.Adobe Systems Incorporated®
O108 - CMH1: AcShellExtension.AcContextMenuHandler [64Bits] - {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} . (.Autodesk - AutoCAD Dwg common shell extension handler.) -- C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll =>.Autodesk, Inc®
O108 - CMH1: ESET Security Shell [64Bits] - {B089FE88-FB52-11D3-BDF1-0050DA34150D} . (.ESET - ESET Shell Extension.) -- C:\Program Files\ESET\ESET Security\shellExt.dll =>.ESET, spol. s r.o.®
O108 - CMH1: ModernSharing [64Bits] - {e2bf9676-5f8f-435c-97eb-11607a5bedf7} . (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH1: Open With [64Bits] - {09799AFB-AD67-11d1-ABCD-00C04FC30936} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH1: PowerISO [64Bits] - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} . (.Power Software Ltd - PowerISOShell DLL.) -- C:\Program Files\PowerISO\PWRISOSH.DLL =>.Power Software Limited®
O108 - CMH1: SAScanShlExt [64Bits] - {94243EC1-AEE5-4d44-A6CF-6407ED967FED} . (.Orphan.)
O108 - CMH1: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH1: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files (x86)\WinRAR\RarExt64.dll =>.win.rar GmbH®
O108 - CMH1: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH1: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Microsoft (C) Work Folders Shell Extension.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH2: ESET Security Shell [64Bits] - {B089FE88-FB52-11D3-BDF1-0050DA34150D} . (.ESET - ESET Shell Extension.) -- C:\Program Files\ESET\ESET Security\shellExt.dll =>.ESET, spol. s r.o.®
O108 - CMH2: OpenContainingFolderMenu [64Bits] - {37ea3a21-7493-4208-a011-7f9ea79ce9f5} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH3: CopyAsPathMenu [64Bits] - {f3d06e7c-1e45-4a26-847e-f9fcdee59be0} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH3: MBAMShlExt [64Bits] - {57CE581A-0CB6-4266-9CA0-19364C90A0B3} . (.Malwarebytes - Malwarebytes.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll =>.Malwarebytes Corporation®
O108 - CMH3: SendTo [64Bits] - {7BA4C740-9E81-11CF-99D3-00AA004AE837} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH4: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - Client Side Caching UI.) -- C:\WINDOWS\System32\cscui.dll =>.Microsoft Corporation
O108 - CMH4: PowerISO [64Bits] - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} . (.Power Software Ltd - PowerISOShell DLL.) -- C:\Program Files\PowerISO\PWRISOSH.DLL =>.Power Software Limited®
O108 - CMH4: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH4: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Microsoft (C) Work Folders Shell Extension.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH5: ACE [64Bits] - {5E2121EE-0300-11D4-8D3B-444553540000} . (.Orphan.)
O108 - CMH5: igfxcui [64Bits] - {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} . (.Orphan.)
O108 - CMH5: igfxDTCM [64Bits] - {9B5F5829-A529-4B12-814A-E81BCB8D93FC} . (.Intel Corporation - igfxDTCM Module.) -- C:\WINDOWS\system32\igfxDTCM.dll =>.Intel Corporation
O108 - CMH5: New [64Bits] - {D969A300-E7FF-11d0-A93B-00A0C90F2719} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH5: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH5: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Microsoft (C) Work Folders Shell Extension.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH6: AccExt [64Bits] - {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} . (.Copyright © 2013-2016, Adobe Systems Incorporated. Al - Core Sync.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll =>.Adobe Systems Incorporated®
O108 - CMH6: ESET Security Shell [64Bits] - {B089FE88-FB52-11D3-BDF1-0050DA34150D} . (.ESET - ESET Shell Extension.) -- C:\Program Files\ESET\ESET Security\shellExt.dll =>.ESET, spol. s r.o.®
O108 - CMH6: Library Location [64Bits] - {3dad6c5d-2167-4cae-9914-f99e41c12cfa} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH6: MBAMShlExt [64Bits] - {57CE581A-0CB6-4266-9CA0-19364C90A0B3} . (.Malwarebytes - Malwarebytes.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll =>.Malwarebytes Corporation®
O108 - CMH6: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - Client Side Caching UI.) -- C:\WINDOWS\System32\cscui.dll =>.Microsoft Corporation
O108 - CMH6: PintoStartScreen [64Bits] - {470C0EBD-5D73-4d58-9CED-E91E22E23282} . (.Microsoft Corporation - App Resolver.) -- C:\Windows\System32\appresolver.dll =>.Microsoft Windows®
O108 - CMH6: PowerISO [64Bits] - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} . (.Power Software Ltd - PowerISOShell DLL.) -- C:\Program Files\PowerISO\PWRISOSH.DLL =>.Power Software Limited®
O108 - CMH6: SAScanShlExt [64Bits] - {94243EC1-AEE5-4d44-A6CF-6407ED967FED} . (.Orphan.)
O108 - CMH6: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files (x86)\WinRAR\RarExt64.dll =>.win.rar GmbH®
O108 - CMH6: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH7: EnhancedStorageShell [64Bits] - {2854F705-3548-414C-A113-93E27C808C85} . (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O108 - CMH7: ESET Security Shell [64Bits] - {B089FE88-FB52-11D3-BDF1-0050DA34150D} . (.ESET - ESET Shell Extension.) -- C:\Program Files\ESET\ESET Security\shellExt.dll =>.ESET, spol. s r.o.®
O108 - CMH7: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
---\\ Image File Execution Options (18) - 8s
O50 - IFEO:C:\Windows\System32\cscript.exe - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\dllhost.exe - (.Microsoft Corporation - COM Surrogate.) [DisableExceptionChainValidation\\3] =>.Microsoft Windows®
O50 - IFEO:C:\WINDOWS\System32\drvinst.exe - (.Microsoft Corporation - Driver Installation Module.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\ie4uinit.exe - (.Microsoft Corporation - IE Per-User Initialization Utility.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - IE 7.0 Unattended Install Utility.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mmc.exe - (.Microsoft Corporation - Microsoft Management Console.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\MRT.exe - (.Microsoft Corporation - Microsoft Windows Malicious Software Remova.) [CFGOptions\\1] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Microsoft (R) HTML Application host.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\rundll32.exe - (.Microsoft Corporation - Windows host process (Rundll32).) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\searchprotocolhost.exe - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Spooler SubSystem App.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Host Process for Windows Services.) [MinimumStackCommitInBytes\\32768] =>.Microsoft Windows Publisher®
O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Host Process for Windows Services.) [MitigationAuditOptions\\17660905521152] =>.Microsoft Windows Publisher®
O50 - IFEO:C:\Windows\System32\wscript.exe - (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
---\\ System Drivers List (110) - 109s
O58 - SDL:2017/09/29 16:41:02 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107416] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135512] =>.Microsoft Windows®
O58 - SDL:2017/04/30 08:39:47 A . (.Advanced Micro Devices - AMD ACP Binaries.) -- C:\WINDOWS\System32\drivers\amdacpksd.sys [296648] =>.Advanced Micro Devices, Inc.®
O58 - SDL:2017/09/29 16:41:02 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83352] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [258592] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [27032] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131992] =>.Microsoft Windows®
O58 - SDL:2015/09/25 20:19:48 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\atikmdag.sys [21653520] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2015/09/25 20:19:46 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\WINDOWS\System32\drivers\atikmpag.sys [684560] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2016/09/14 02:00:40 A . (.Broadcom Corporation. - Broadcom Bluetooth Firmware Download Filter.) -- C:\WINDOWS\System32\drivers\bcbtums.sys [186152] =>.Broadcom Corporation®
O58 - SDL:2017/09/29 16:41:02 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] =>.Windows (R) Win 7 DDK provider
O58 - SDL:2017/07/13 03:16:38 A . (.Broadcom Corp - Broadcom WiFi Driver wireless driver.) -- C:\WINDOWS\System32\drivers\bcmwl63a.sys [11794376] =>.Broadcom Corporation®
O58 - SDL:2016/09/14 01:59:02 A . (.Broadcom Corporation. - Broadcom Bluetooth USB AMP Filter.) -- C:\WINDOWS\System32\drivers\btwampfl.sys [204592] =>.Broadcom Corporation®
O58 - SDL:2017/09/29 16:41:01 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [533912] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\WINDOWS\System32\drivers\cht4dx64.sys [141208] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\WINDOWS\System32\drivers\cht4sx64.sys [357272] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T5/T6 Chip.) -- C:\WINDOWS\System32\drivers\cht4vx64.sys [1723288] =>.Microsoft Windows®
O58 - SDL:2018/01/09 10:56:00 A . (.Connectify - NDIS filter driver.) -- C:\WINDOWS\System32\drivers\cnnctfy2.sys [31344] =>.Connectify®
O58 - SDL:2017/04/30 08:41:24 A . (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Frame.) -- C:\WINDOWS\System32\drivers\DptfManager.sys [493240] =>.Intel(R) Software®
O58 - SDL:2017/04/30 08:41:25 A . (.Intel Corporation - DPTF ACPI Device (32-Bit).) -- C:\WINDOWS\System32\drivers\dptf_cpu.sys [38720] =>.Intel(R) Software®
O58 - SDL:2017/04/30 08:41:25 A . (.Intel Corporation - DPTF ACPI Device (64-Bit).) -- C:\WINDOWS\System32\drivers\dptf_pch.sys [38208] =>.Intel(R) Software®
O58 - SDL:2017/11/07 09:19:18 A . (.ESET - Amon monitor.) -- C:\WINDOWS\System32\drivers\eamonm.sys [134368] =>.ESET, spol. s r.o.®
O58 - SDL:2017/11/07 09:19:20 A . (.ESET - Devmon monitor.) -- C:\WINDOWS\System32\drivers\edevmon.sys [107328] =>.ESET, spol. s r.o.®
O58 - SDL:2017/12/25 11:41:01 A . (.ESET - ESET ELAM driver.) -- C:\WINDOWS\System32\drivers\eelam.sys [15392] =>.Microsoft Windows Early Launch Anti-malware Publisher®
O58 - SDL:2017/11/07 09:19:24 A . (.ESET - ESET Helper driver.) -- C:\WINDOWS\System32\drivers\ehdrv.sys [180088] =>.ESET, spol. s r.o.®
O58 - SDL:2017/11/07 09:19:14 A . (.ESET - ESET OPP Keyboard Filter.) -- C:\WINDOWS\System32\drivers\ekbdflt.sys [50744] =>.ESET, spol. s r.o.®
O58 - SDL:2017/11/07 09:19:38 A . (.ESET - ESET Firewall Driver.) -- C:\WINDOWS\System32\drivers\epfw.sys [81880] =>.ESET, spol. s r.o.®
O58 - SDL:2017/11/07 09:19:36 A . (.ESET - ESET Firewall Driver.) -- C:\WINDOWS\System32\drivers\epfwwfp.sys [106304] =>.ESET, spol. s r.o.®
O58 - SDL:2017/07/24 12:34:10 A . (.ESET - ESET Cleaners Driver.) -- C:\WINDOWS\System32\drivers\ESETCleanersDriver.sys [181160] =>.ESET, spol. s r.o.®
O58 - SDL:2018/01/18 14:19:14 A . (...) -- C:\WINDOWS\System32\drivers\EsgScanner.sys [22704] =>.Enigma Software Group USA, LLC®
O58 - SDL:2016/08/22 11:17:34 A . (.Intel Corporation - DPTF Zone (64-Bit).) -- C:\WINDOWS\System32\drivers\esif_lf.sys [350272] =>.Intel Corporation®
O58 - SDL:2017/04/30 08:41:26 A . (.ELAN Microelectronic Corp. - ELAN SMBus Driver.) -- C:\WINDOWS\System32\drivers\ETDSMBus.sys [22712] =>.ELAN Microelectronics Corporation®
O58 - SDL:2017/09/29 16:41:01 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3419032] =>.Microsoft Windows®
O58 - SDL:2010/10/08 14:29:40 A . (.Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) -- C:\WINDOWS\System32\drivers\ewdcsc.sys [32768] =>.Huawei Tech. Co., Ltd.
O58 - SDL:2014/09/11 13:06:18 A . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\WINDOWS\System32\drivers\ewusbwwan.sys [457728] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2014/07/25 14:38:22 A . (.Huawei Technologies Co., Ltd. - ew_cdcacm Driver.) -- C:\WINDOWS\System32\drivers\ew_cdcacm.sys [125952] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2010/09/26 15:39:28 A . (.Huawei Technologies Co., Ltd. - ew_hwupgrade Driver.) -- C:\WINDOWS\System32\drivers\ew_hwupgrade.sys [22016] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2013/01/25 06:46:40 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\ew_hwusbdev.sys [109568] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2013/11/30 14:40:22 A . (.Huawei Technologies Co., Ltd. - ew_jubusenum Driver.) -- C:\WINDOWS\System32\drivers\ew_jubusenum.sys [91648] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2013/11/30 14:40:22 A . (.Huawei Technologies Co., Ltd. - ew_jucdcacm Driver.) -- C:\WINDOWS\System32\drivers\ew_jucdcacm.sys [110592] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2013/11/30 14:40:22 A . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\WINDOWS\System32\drivers\ew_jucdcecm.sys [77312] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2013/11/30 14:40:20 A . (.Huawei Technologies Co., Ltd. - ew_juextctrl Driver.) -- C:\WINDOWS\System32\drivers\ew_juextctrl.sys [30720] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2014/08/21 11:10:54 A . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\WINDOWS\System32\drivers\ew_juwwanecm.sys [248320] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2015/01/07 14:51:22 A . (.Huawei Technologies Co., Ltd. - Filter Driver.) -- C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys [18560] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2015/01/07 14:46:44 A . (.Huawei Technologies Co., Ltd. - ew_cdcndis Driver.) -- C:\WINDOWS\System32\drivers\ew_wwanecm.sys [380800] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2017/09/29 16:41:02 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [63520] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:40:59 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iagpio.sys [36864] =>.Intel(R) Corporation
O58 - SDL:2017/09/29 16:40:59 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [91648] =>.Intel(R) Corporation
O58 - SDL:2017/09/29 16:40:59 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [79360] =>.Intel Corporation
O58 - SDL:2017/09/29 16:40:59 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [88576] =>.Intel Corporation
O58 - SDL:2017/09/29 16:40:59 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [171520] =>.Intel Corporation
O58 - SDL:2017/09/29 16:40:59 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [174592] =>.Intel Corporation
O58 - SDL:2017/09/29 16:41:01 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2017/09/29 16:40:59 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation
O58 - SDL:2017/09/29 16:41:03 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [674200] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:03 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412056] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [526232] =>.Microsoft Windows®
O58 - SDL:2017/01/13 19:37:06 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdkmd64.sys [7969752] =>.Intel(R) pGFX®
O58 - SDL:2016/05/12 05:32:26 N . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\System32\drivers\IntcDAud.sys [481768] =>.Intel(R) OWR®
O58 - SDL:2017/09/29 16:41:02 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108064] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [123800] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [103320] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82840] =>.Microsoft Windows®
O58 - SDL:2017/11/29 09:11:26 A . (...) -- C:\WINDOWS\System32\drivers\mbae64.sys [77432] =>.Malwarebytes Corporation®
O58 - SDL:2017/09/29 16:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59800] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\MegaSas2i.sys [63520] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575896] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [842648] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63896] =>.Microsoft Windows®
O58 - SDL:2012/09/26 08:45:35 A . (.Marvell Semiconductor, Inc. - USB EWS Device Driver.) -- C:\WINDOWS\System32\drivers\mvusbews.sys [20480] =>.Marvell Semiconductor, Inc.
O58 - SDL:2017/09/29 16:41:02 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [108952] =>.Microsoft Windows®
O58 - SDL:2012/12/07 10:28:06 A . (.Khalil Azzouzi - Azzouzi HotSpot helper driver.) -- C:\WINDOWS\System32\drivers\ndiskhaz.sys [30536] =>.Khalil Azzouzi®
O58 - SDL:2016/12/21 13:20:00 A . (.Apple Inc. - Apple Mobile Device Ethernet.) -- C:\WINDOWS\System32\drivers\netaapl64.sys [23040] =>.Apple Inc.
O58 - SDL:2017/09/29 16:41:02 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150424] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166296] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58776] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [61848] =>.Microsoft Windows®
O58 - SDL:2017/10/25 17:34:00 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver (NDIS 6..) -- C:\WINDOWS\System32\drivers\phantomtap.sys [45056] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2018/01/18 19:07:16 A . (.Sysinternals - www.sysinternals.com - Process Explorer.) -- C:\WINDOWS\System32\drivers\PROCEXP152.SYS [34328] =>.Sysinternals®
O58 - SDL:2017/09/29 16:41:03 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.40 64-bit Dri.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [604160] =>.Realtek
O58 - SDL:2017/09/29 16:41:14 RA . (.Realtek - Realtek PCIe GBE Family Controller Flight.) -- C:\WINDOWS\System32\drivers\rteth.sys [59904] =>.Realtek
O58 - SDL:2016/10/15 00:31:36 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [5346312] =>.Realtek Semiconductor Corp.®
O58 - SDL:2015/02/28 06:26:36 A . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\WINDOWS\System32\drivers\scdemu.sys [127760] =>.Power Software Limited®
O58 - SDL:2013/05/19 10:02:52 A . (.Scarlet.Crush Productions - Scp Virtual Bus Driver.) -- C:\WINDOWS\System32\drivers\ScpVBus.sys [39168] =>.Bruce James®
O58 - SDL:2017/09/29 16:41:02 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44952] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81816] =>.Microsoft Windows®
O58 - SDL:2015/03/05 14:17:30 A . (.SecureAge Technology - SLogDrv.) -- C:\WINDOWS\System32\drivers\SLogDrv.sys [68120] =>.SecureAge Technology Pte Ltd®
O58 - SDL:2017/08/18 02:23:50 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_AMDASF_Aux.sys [53848] =>.Synaptics Incorporated®
O58 - SDL:2016/12/27 03:38:02 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel(1344).sys [72792] =>.Synaptics Incorporated®
O58 - SDL:2017/08/18 02:23:50 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [55384] =>.Synaptics Incorporated®
O58 - SDL:2017/08/18 02:23:50 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel_Aux.sys [55384] =>.Synaptics Incorporated®
O58 - SDL:2017/01/12 11:46:34 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudbus.sys [110336] =>.DEVGURU CO LTD®
O58 - SDL:2017/01/12 11:46:34 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudmdm.sys [206080] =>.DEVGURU CO LTD®
O58 - SDL:2017/05/18 22:17:44 A . (.Samsung Electronics Co., Ltd. - SAMSUNG USB Mobile Logging Device Driver.) -- C:\WINDOWS\System32\drivers\ssudserd.sys [166288] =>.Samsung Electronics Co., Ltd.®
O58 - SDL:2017/09/29 16:41:02 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31128] =>.Microsoft Windows®
O58 - SDL:2017/08/18 02:23:52 A . (.Synaptics Incorporated - Synaptics I2C Driver.) -- C:\WINDOWS\System32\drivers\SynRMIHID_Aux.sys [66136] =>.Synaptics Incorporated®
O58 - SDL:2017/08/18 02:23:52 A . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\WINDOWS\System32\drivers\SynTP.sys [716384] =>.Synaptics Incorporated®
O58 - SDL:2017/03/20 16:51:36 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver (NDIS 6..) -- C:\WINDOWS\System32\drivers\tap0901.sys [35784] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2017/04/30 08:41:43 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [185600] =>.Intel Corporation - Embedded Subsystems and IP Blocks Group®
O58 - SDL:2018/01/27 11:43:16 A . (...) -- C:\WINDOWS\System32\drivers\TrueSight.sys [28272] =>.Adlice®
O58 - SDL:2016/12/21 13:20:26 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\System32\drivers\usbaapl64.sys [54784] =>.Apple, Inc.
O58 - SDL:2013/12/18 17:19:54 A . (.Oracle Corporation - VirtualBox Support Driver.) -- C:\WINDOWS\System32\drivers\VBoxDrv.sys [252688] =>.Oracle Corporation®
O58 - SDL:2013/12/18 17:16:44 A . (.Oracle Corporation - VirtualBox Host-Only Network Adapter Driver.) -- C:\WINDOWS\System32\drivers\VBoxNetAdp.sys [140560] =>.Oracle Corporation®
O58 - SDL:2013/12/18 17:16:44 A . (.Oracle Corporation - VirtualBox USB Monitor Driver.) -- C:\WINDOWS\System32\drivers\VBoxUSBMon.sys [126736] =>.Oracle Corporation®
O58 - SDL:2017/09/29 16:41:02 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166808] =>.Microsoft Windows®
O58 - SDL:2016/10/21 11:48:42 A . (.VMware, Inc. - VMware Virtual Storage Volume Driver.) -- C:\WINDOWS\System32\drivers\vstor2-mntapi10-shared.sys [33432] =>.VMware, Inc.®
O58 - SDL:2017/09/29 16:41:02 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305560] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [32152] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [64920] =>.Microsoft Windows®
O58 - SDL:2017/06/21 17:04:22 A . (.HP - HP Wireless Button Driver.) -- C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [30368] =>.HP Inc.®
---\\ File Associations Shell Spawning (10) - 2s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (...) -- %1" %*
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
---\\ Start Menu Internet (12) - 2s
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
---\\ Search Browser Infection (2) - 4s
O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com
---\\ Search Svchost Services (50) - 8s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\WINDOWS\System32\certprop.dll [188928] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [188928] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\System32\srvsvc.dll [270848] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [1275904] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\IKEEXT.DLL [984064] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [820224] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\System32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [144896] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\System32\iscsiexe.dll [150528] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [109056] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\System32\schedsvc.dll [880640] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [220160] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [407040] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [387584] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [108544] =>.Microsoft Corporation
O83 - Search Svchost Services: PushToInstall (PushToInstall) . (.Microsoft Corporation - PushToInstall.) -- C:\Windows\System32\PushToInstall.dll [254976] =>.Microsoft Corporation
O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\Windows\System32\Windows.SharedPC.AccountManager.dll [194560] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1272320] =>.Microsoft Corporation
O83 - Search Svchost Services: NaturalAuthentication (NaturalAuthentication) . (.Microsoft Corporation - Natural Authentication Service.) -- C:\Windows\System32\NaturalAuth.dll [795136] =>.Microsoft Corporation
O83 - Search Svchost Services: TokenBroker (TokenBroker) . (.Microsoft Corporation - Token Broker.) -- C:\Windows\System32\TokenBroker.dll [1231872] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Geolocation Service.) -- C:\Windows\System32\lfsvc.dll [46080] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [1107968] =>.Microsoft Corporation
O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Infrared Monitor.) -- C:\Windows\System32\irmon.dll [24576] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [104960] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [930304] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [491520] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [73216] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [601088] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [307200] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [2783744] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [1345536] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [613376] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - Windows Managent Service DLL.) -- C:\Windows\System32\Windows.Internal.Management.dll [702464] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [57856] =>.Microsoft Corporation
O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Flight Settings.) -- C:\Windows\System32\flightsettings.dll [779264] =>.Microsoft Corporation
O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Windows Push Notification System Service.) -- C:\Windows\System32\WpnService.dll [284672] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1143808] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Update Session Orchestrator Core.) -- C:\Windows\System32\usocore.dll [1289216] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [951808] =>.Microsoft Corporation
O83 - Search Svchost Services: InstallService (InstallService) . (.Microsoft Corporation - InstallService.) -- C:\Windows\System32\InstallService.dll [1313792] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\System32\themeservice.dll [69632] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [387072] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Device Setup Manager.) -- C:\Windows\System32\DeviceSetupManager.dll [238080] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Network Setup Service.) -- C:\Windows\System32\NetSetupSvc.dll [307712] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Microsoft Network Connectivity Assistant Se.) -- C:\Windows\System32\NcaSvc.dll [170496] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Microsoft® Account Service.) -- C:\Windows\System32\wlidsvc.dll [2223104] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxGipSvc (XboxGipSvc) . (.Microsoft Corporation - Xbox Gip Management Service.) -- C:\Windows\System32\XboxGipSvc.dll [57856] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [196096] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [132608] =>.Microsoft Corporation
O83 - Search Svchost Services: hns (hns) . (.Microsoft Corporation - Host Network Service.) -- C:\Windows\System32\HostNetSvc.dll [1412096] =>.Microsoft Corporation
---\\ Windows Installer Scan (63) - 132s
[MD5.95D9EC1D174B1303B1ACB68381B3CB5E] [WIS][2010/12/21 21:01:00] (.Sony Corporation - PMB Installer.) -- C:\WINDOWS\Installer\104e3feb.msi [4926464] =>.Sony Corporation
[MD5.948034049CB927B60EAAB902082FD9C2] [WIS][2017/12/14 08:48:57] (..) -- C:\WINDOWS\Installer\1916cbb9.msi [15107072]
[MD5.86E2B390629665FBC20E06DFBF01A48F] [WIS][2017/05/08 16:11:06] (.Apple Inc. - [ProductName] Installer.) -- C:\WINDOWS\Installer\1adb75bb.msi [2732032] =>.Apple Inc.
[MD5.74A4D2DFBD890D33BA98051D02741970] [WIS][2017/11/03 02:26:38] (.Advanced Micro Devices, Inc. - AMD Settings.) -- C:\WINDOWS\Installer\1c478f.msi [32986624] =>.Advanced Micro Devices, Inc.
[MD5.9464C6455EFEBDF0421F89C565FD1C44] [WIS][2017/11/03 02:36:08] (.Advanced Micro Devices, Inc. - AMD Settings.) -- C:\WINDOWS\Installer\1c4795.msi [54922240] =>.Advanced Micro Devices, Inc.
[MD5.78D613766452D263BB538DB7C1BE111D] [WIS][2017/09/13 13:43:16] (.Advanced Micro Devices, Inc. - Branding.) -- C:\WINDOWS\Installer\1c47a7.msi [2674176] =>.Advanced Micro Devices, Inc.
[MD5.71F3271C26EB7EA371B51D3C54413F67] [WIS][2018/01/18 11:11:07] (.ESET, spol. s r.o. - ESET Security.) -- C:\WINDOWS\Installer\1cc5d968.msi [178311168] =>.ESET, spol. s r.o.
[MD5.71F3271C26EB7EA371B51D3C54413F67] [WIS][2018/01/18 11:11:07] (.ESET, spol. s r.o. - ESET Security.) -- C:\WINDOWS\Installer\1cc5dc3d.msi [178311168] =>.ESET, spol. s r.o.
[MD5.0ACA29C93754E319EB1398494B00C82A] [WIS][2016/01/29 06:54:07] (.Autodesk - Autodesk License Service (x64) - 3.1.) -- C:\WINDOWS\Installer\23b960cb.msi [73768960] =>.Autodesk
[MD5.6CC0E1D66251E3A583BC56863CB7A542] [WIS][2016/02/26 07:54:21] (.Autodesk, Inc. - Install package for Revit 2017.) -- C:\WINDOWS\Installer\23ce2c18.msi [12107776] =>.Autodesk, Inc.
[MD5.674F8C718B58F34A9C6A0B10AF1FB767] [WIS][2016/02/03 23:50:27] (.Autodesk, Inc. - Autodesk Workflows 2017.) -- C:\WINDOWS\Installer\23ce2c1d.msi [13762560] =>.Autodesk, Inc.
[MD5.D953BCF3D027D696105DB17AD0E22509] [WIS][2016/02/26 04:49:53] (.Autodesk, Inc. - Install package for Autodesk A360 Collabora.) -- C:\WINDOWS\Installer\23ce2c22.msi [36552704] =>.Autodesk, Inc.
[MD5.C7B9CF52B63DBBBAD4B5B3DEE371CF9A] [WIS][2016/02/14 00:43:04] (.Autodesk, Inc. - Install package for Personal Accelerator fo.) -- C:\WINDOWS\Installer\23ce2c27.msi [30683136] =>.Autodesk, Inc.
[MD5.86DA233717762FA249E30B7E878C5BA8] [WIS][2015/12/23 10:54:04] (.Autodesk - Autodesk Material Library 2017.) -- C:\WINDOWS\Installer\23ce2c2c.msi [1687552] =>.Autodesk
[MD5.50DADD5E35F674FFF727E878AC9C1C56] [WIS][2015/12/23 10:54:06] (.Autodesk - Autodesk Material Library Base Resolution I.) -- C:\WINDOWS\Installer\23e5b88e.msi [1531904] =>.Autodesk
[MD5.7C81CA3FD53BE2836B2EC2A4AD20047F] [WIS][2015/12/22 18:54:06] (.Autodesk - Autodesk Material Library Low Resolution Im.) -- C:\WINDOWS\Installer\23e5b893.msi [1527808] =>.Autodesk
[MD5.CA4C73A05719437057A1BC1D7A3EDE61] [WIS][2015/01/07 01:20:16] (.IronPython Team - IronPython 2.7.3 (2.7.31000.0).) -- C:\WINDOWS\Installer\23e5b898.msi [16320774] =>.IronPython Team
[MD5.3A93288526DB1C80E8BA2CDF64160AC8] [WIS][2016/02/18 22:59:28] (.Autodesk - Autodesk Revit MEP Metric Content v2.0.) -- C:\WINDOWS\Installer\23e5b8a2.msi [5009408] =>.Autodesk
[MD5.68697813A50534702F2356A84F592759] [WIS][2015/02/25 17:02:52] (.Autodesk, Inc. - Install package for Revit Content Libraries.) -- C:\WINDOWS\Installer\279052a.msi [9867264] =>.Autodesk, Inc.
[MD5.338F246CA96A79F15C94B8145D8CEE13] [WIS][2015/01/13 23:58:17] (.Autodesk, Inc. - Autodesk Workflows 2016.) -- C:\WINDOWS\Installer\2790537.msi [13848576] =>.Autodesk, Inc.
[MD5.BAB755467A836A2D196578F868F933B2] [WIS][2015/01/14 00:01:33] (.Autodesk - Autodesk Material Library 2016.) -- C:\WINDOWS\Installer\279053d.msi [1355776] =>.Autodesk
[MD5.EFC624DB96495B98235FA8D7B70C3176] [WIS][2015/01/14 00:01:35] (.Autodesk - Autodesk Material Library Base Resolution I.) -- C:\WINDOWS\Installer\2790543.msi [1228800] =>.Autodesk
[MD5.338D34F6B89757612714D934BEB8C6CB] [WIS][2015/01/14 00:01:38] (.Autodesk - Autodesk Material Library Low Resolution Im.) -- C:\WINDOWS\Installer\2790549.msi [1220608] =>.Autodesk
[MD5.92D501343F90C4F9DE4B1AFAFEBAD3CF] [WIS][2015/01/14 00:01:49] (.Autodesk - Autodesk Material Library Medium Resolution.) -- C:\WINDOWS\Installer\279054f.msi [1224704] =>.Autodesk
[MD5.9A863E7D1620AF0930B7AAF7CE76D753] [WIS][2017/11/14 21:26:02] (.Oracle Corporation - Java SE Runtime Environment 8 Update 151.) -- C:\WINDOWS\Installer\29cd032e.msi [61034496] =>.Oracle Corporation
[MD5.D181C3EC418B36FD41F61937E31C66A1] [WIS][2017/11/14 21:25:52] (.Oracle Corporation - Java Auto Updater.) -- C:\WINDOWS\Installer\29cd0333.msi [761856] =>.Oracle Corporation
[MD5.69261193FED67D752D4F573EAC48B2EA] [WIS][2016/02/26 06:51:43] (.Autodesk, Inc. - Install package for Revit Content Libraries.) -- C:\WINDOWS\Installer\2ec3b3d1.msi [9588736] =>.Autodesk, Inc.
[MD5.E376E35B8C9626A26357C0A35F6AAA18] [WIS][2016/01/23 01:46:30] (.Autodesk - Autodesk BIM 360 Revit 2017 Add-in 64 bit.) -- C:\WINDOWS\Installer\2ec3b3d6.msi [3612672] =>.Autodesk
[MD5.CB2A78A892FAFE06284428DA98202112] [WIS][2016/02/10 01:35:01] (.Autodesk, Inc. - Install package for FormIt 360 Converter Fo.) -- C:\WINDOWS\Installer\2ec3b3db.msi [34861056] =>.Autodesk, Inc.
[MD5.54432F46A7CB5F19E868D76D957D3065] [WIS][2016/02/18 22:59:28] (.Autodesk - Autodesk Revit MEP Imperial Content v2.0.) -- C:\WINDOWS\Installer\2ec3b3e0.msi [8732672] =>.Autodesk
[MD5.D3F9367AF08DC5EF57863FD6567BB000] [WIS][2016/01/23 01:46:30] (.Autodesk - Autodesk Material Library Medium Resolution.) -- C:\WINDOWS\Installer\2ec3b3e5.msi [1527808] =>.Autodesk
[MD5.2DDD78BF0E4F57D7800F75251DA2AA07] [WIS][2016/01/29 06:54:08] (.Autodesk, Inc..) -- C:\WINDOWS\Installer\2ee205e6.msi [5621760] =>.Autodesk, Inc.
[MD5.9A4729CB1CEFDE1B4F6CFB8AF09822B3] [WIS][2016/02/07 10:38:14] (.Bruce Walker - Autodesk CAD Manager Tools 4.0.) -- C:\WINDOWS\Installer\2ee205eb.msi [3809280]
[MD5.A666B14C461CC7207C0C9B3D0D2D28F3] [WIS][2017/11/16 11:19:36] (.Adobe Systems Incorporated - Adobe ARM Installer.) -- C:\WINDOWS\Installer\31ee8da5.msi [880128] =>.Adobe Systems Incorporated
[MD5.23B97F4BEDD554D3F629B60637AFC936] [WIS][2015/03/17 11:42:22] (.Adobe Systems Incorporated.) -- C:\WINDOWS\Installer\385a8843.msi [2792960] =>.Adobe Systems Incorporated
[MD5.5F1FBBF794EEEF801A22E2E306115B86] [WIS][2017/09/16 11:06:22] (.Apple Inc. - Apple Software Update Installer.) -- C:\WINDOWS\Installer\3c05b338.msi [3608576] =>.Apple Inc.
[MD5.147A507DE55FB357E2701A87A629AEA9] [WIS][2010/07/22 12:23:06] (.CANON INC. - Color Network ScanGear.) -- C:\WINDOWS\Installer\4c2bb30.msi [1752064] =>.CANON INC.
[MD5.581AD54C6CAFE3699578E4AE4AC46D62] [WIS][2016/11/28 03:45:54] (.Autodesk - Autodesk Material Library 2018.) -- C:\WINDOWS\Installer\57414b.msi [1695744] =>.Autodesk
[MD5.0894C6FB88E1E2156DD7BD6CF6E390D2] [WIS][2016/11/28 03:45:56] (.Autodesk - Autodesk Material Library Base Resolution I.) -- C:\WINDOWS\Installer\574151.msi [1536000] =>.Autodesk
[MD5.FC5B78B45A323B94EB373FCE55F5882A] [WIS][2016/12/13 23:41:03] (.Autodesk - Autodesk Advanced Material Library Image Li.) -- C:\WINDOWS\Installer\574157.msi [1314816] =>.Autodesk
[MD5.6FF7E0E02FA8A732E3CFE35A58BE7BAA] [WIS][2018/01/10 17:31:52] (.Nefarius Software Solutions - ScpToolkit.) -- C:\WINDOWS\Installer\656fd5c.msi [2195456] =>.Nefarius Software Solutions
[MD5.E1D92E294A6C566D3E3B16F8AD70A89D] [WIS][2017/02/17 22:55:29] (.Autodesk, Inc. - AutoCAD 2018.) -- C:\WINDOWS\Installer\7b1144.msi [10452992] =>.Autodesk, Inc.
[MD5.70FC2A47477F31574DD9C5865B9D7D14] [WIS][2017/08/19 11:52:48] (.Computers and Structures, Inc. - [ProductName] - InstallShield Wizard.) -- C:\WINDOWS\Installer\94b4861.msi [538805248] =>.Computers and Structures, Inc.
[MD5.BE1EDECD114D816589C42FF4B022AED6] [WIS][2016/05/18 17:22:56] (.© Copyright 2015 HP Development Company, L.P..) -- C:\WINDOWS\Installer\a569f7.msi [4710912]
[MD5.265B92D5D3B44A9449ECE896764B6AB0] [WIS][2017/07/26 22:07:30] (.Advanced Micro Devices, Inc. - AMD Problem Report Wizard (64 bit).) -- C:\WINDOWS\Installer\cbb38.msi [11851776] =>.Advanced Micro Devices, Inc.
[MD5.F0EE2E7F283866A2A0FEA9BE2D12A979] [WIS][2017/11/25 12:35:44] (.Google Inc. - Google Update Helper.) -- C:\WINDOWS\Installer\d8435fd.msi [40960] =>.Google Inc.
[MD5.1706626AF250EA477B8F57F2266A8CE1] [WIS][2017/02/17 22:55:28] (.Autodesk, Inc. - AutoCAD 2018 LanguagePack - English.) -- C:\WINDOWS\Installer\e0ccf8.msi [8228864] =>.Autodesk, Inc.
[MD5.3A7AFE4683A12112EB1E82853D68DDEF] [WIS][2017/02/01 11:53:06] (.Autodesk - ACA & MEP 2018 Object Enabler.) -- C:\WINDOWS\Installer\e0ccff.msi [3317760] =>.Autodesk
[MD5.4CEEBACFFA601D8B711D9B7D1CDB4A37] [WIS][2017/02/17 22:55:30] (.Autodesk, Inc. - AutoCAD 2018.) -- C:\WINDOWS\Installer\e0cd05.msi [7434240] =>.Autodesk, Inc.
[MD5.9681EEADF88BB7603A3533B13ED948AC] [WIS][2017/01/04 14:36:26] (.Autodesk - Autodesk License Service (x64) - 5.1.4.) -- C:\WINDOWS\Installer\e0cd0a.msi [113418240] =>.Autodesk
[MD5.D9EF7E799462E99BCD498B2A7916FBD0] [WIS][2017/02/17 22:55:29] (.Autodesk, Inc. - AutoCAD 2018.) -- C:\WINDOWS\Installer\e0cd8f.msi [9232384] =>.Autodesk, Inc.
[MD5.9D828ABA5B003424B990C80EF5FC0D26] [WIS][2017/02/02 08:54:03] (.AutoCAD Apps - This plug-in can be used with AutoCAD to si.) -- C:\WINDOWS\Installer\e0cd95.msi [2326528] =>.AutoCAD Apps
[MD5.F4009B12B94EBF078BA59E7BF1811C5F] [WIS][2017/02/02 08:40:28] (.AutoCAD Apps - A plug-in to see the apps featured on the A.) -- C:\WINDOWS\Installer\e0cd9a.msi [2349056] =>.AutoCAD Apps
[MD5.0718148FC0E5A43849AF34120A85B24A] [WIS][2016/11/07 12:00:18] (.Autodesk - Autodesk AutoCAD Performance Feedback Tool .) -- C:\WINDOWS\Installer\e0cd9f.msi [1806336] =>.Autodesk
[MD5.6FC9092DCAD7C94F844F37144FC02B00] [WIS][2017/12/14 16:14:08] (.Apple Inc. - Apple Application Support Installer.) -- C:\WINDOWS\Installer\f79051.msi [46120960] =>.Apple Inc.
[MD5.0C53AE07F64461486F492498139742E7] [WIS][2017/12/14 16:17:00] (.Apple Inc. - Apple Application Support Installer.) -- C:\WINDOWS\Installer\f790c0.msi [51093504] =>.Apple Inc.
[MD5.244CE14865CE4E47B3F18A990C68096D] [WIS][2017/12/14 16:18:43] (.Apple Inc. - Apple Mobile Device Support Installer.) -- C:\WINDOWS\Installer\f79108.msi [14045184] =>.Apple Inc.
[MD5.BB15F11479AE037DBC25AACA6F7A33EC] [WIS][2017/12/14 16:25:25] (.Apple Inc. - iTunes Installer.) -- C:\WINDOWS\Installer\f7a767.msi [161886208] =>.Apple Inc.
[MD5.3617A09ABC822D955214EBE86A991CF3] [WIS][2017/11/29 13:42:28] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\1eed93b.msp [1355776] =>.Adobe Systems, Incorporated
[MD5.82F476D2A7125BB7EBF5A2A657BAB293] [WIS][2017/11/13 07:26:16] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\31ee8e48.msp [23506944] =>.Adobe Systems, Incorporated
[MD5.1804509512CA08400FBF29C502540400] [WIS][2017/08/01 03:15:35] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\385a8844.msp [100061184] =>.Adobe Systems, Incorporated
[MD5.BCC43969BE02109C8AC7141C7C3CB9CA] [WIS][2017/08/11 13:04:59] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\386cf8ea.msp [2031616] =>.Adobe Systems, Incorporated
[MD5.77AB51250501ADDD4D491DECDB6121FD] [WIS][2017/08/28 19:40:46] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\d4958.msp [2424832] =>.Adobe Systems, Incorporated
---\\ Additional Scan (O88) (39) - 75s
HKLM\SYSTEM\CurrentControlSet\Services\KMSEmulator =>HackTool.WinActivator
C:\ProgramData\KMSAutoS\bin\KMSSS.exe =>HackTool.WinActivator
C:\ProgramData\KMSAutoS\KMSAuto Net.exe =>HackTool.WinActivator
C:\WINDOWS\System32\Tasks\KMSAutoNet =>HackTool.WinActivator
C:\ProgramData\AMMYY =>.SUP.Ammyy
C:\ProgramData\KMSAutoS =>HackTool.WinActivator
C:\Users\HP\AppData\Roaming\PDAppFlex =>Trojan.Elpman
C:\Users\HP\AppData\Local\Akamai =>.SUP.AkamaiHD
C:\Users\HP\AppData\Local\MSfree Inc =>HackTool.WinActivator
C:\Users\HP\AppData\Local\Tempzxpsign029fc3a71e11be3f =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign117eb30c0d08c40b =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign247f7cf38fc04e5d =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign2d0b2cffe39fde4e =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign3cbb35943e7048b1 =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign3da1615d062e65bd =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign4d163639a858b2c7 =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign4ea31d676fe2ddc6 =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign4f203f1d04afb6a0 =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign555e0f44ce5939ff =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign5daa5d261229090a =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign6c2865db5cf1675e =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign73ffcc09c1afe6f5 =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign74378edb96195a0c =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign7c6979147ea4af2a =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign973f23cc07412fcc =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsigna26107e25cf3c96e =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsigna63f429788279ab3 =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsignc2d8506218b72a83 =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsigncdf4925f0580d85b =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsignd1e8e1a0fe0b9d99 =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsignd684eace63e7bb9c =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsigne497590a4cd7ccb8 =>.SUP.Temporary
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\SAScanShlExt =>.SUP.Orphan
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} =>.SUP.Orphan
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\ACE =>.SUP.Orphan
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\SAScanShlExt =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
---\\ Summary of the elements found (9) - 0s
https://nicolascoolman.eu/2017/01/13/hacktool-winactivator/ =>HackTool.WinActivator
https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan
https://nicolascoolman.eu/2017/12/26/sup-akamaihd/ =>.SUP.AkamaiHD
https://nicolascoolman.eu/2017/04/13/superfluous-ammyy/ =>.SUP.Ammyy
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Trojan.Downloader
https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/ =>Adware.CrossRider
https://nicolascoolman.eu/2017/12/22/sup-downloader/ =>.SUP.Downloader
https://nicolascoolman.eu/2017/09/23/trojan-elpman/ =>Trojan.Elpman
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Temporary
~ Unselected Options: O82,
~ End of the scan, 80777 items in 16mn44s (1538)(0)
~ Run by HP (Administrator) (2018/01/27 13:51:07)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\HP\Desktop\ZHPDiag.txt
~ Report: C:\Users\HP\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 16299) =>.Microsoft Corporation
---\\ Internet Browsers (4) - 1s
~ GCIE: Google Chrome v63.0.3239.132
~ MFIE: Mozilla Firefox 57.0.3 (x64 en-US)
~ MSIE: Microsoft Edge v40
~ MSIE: Internet Explorer v11.192.16299.0
---\\ Windows Product Information (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
---\\ System protection software (2) - 10s
Malwarebytes version 3.3.1.2183 v3.3.1.2183 (Protection)
Windows Defender (Deactivate)
---\\ System protection software (Superfluous) (1) - 10s
~ SpyHunter 4 v4.28.5.4848 (Superfluous)
---\\ System optimization software (1) - 10s
~ CCleaner v5.39 (Optimize)
---\\ Surveillance software (2) - 10s
~ Adobe Flash Player 28 PPAPI (Surveillance)
~ Adobe Acrobat Reader DC (Surveillance)
---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 61 Stepping 4, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4107.668 MB (9% free) : ATTENTION =>Warning RAM
System Restore: Activé (Enable)
System drive C: has 86 GB (42%) free of 203 GB : OK =>.Disk Space
---\\ Connection to the system mode (3) - 0s
~ Computer Name: HP
~ User Name: HP
~ Logged in as Administrator
---\\ Enumeration of the disk units (2) - 0s
~ Drive C: has 86 GB free of 203 GB (System)
~ Drive D: has 136 GB free of 272 GB
---\\ State of the Windows Security Center (7) - 0s
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Search Generic System Files (24) - 6s
[MD5.92B369312AF5D0B83AEF82D5DE0428D2] - 01/01/2018 - (.Microsoft Corporation - Windows Explorer.) -- C:\WINDOWS\Explorer.exe [3904808] =>.Microsoft Windows®
[MD5.731A783A36A8E69A6434D19D98B12A09] - 29/09/2017 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [71168] =>.Microsoft Corporation
[MD5.BF3E1D9B2360C6BE4CC3094CD2DDC617] - 29/09/2017 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\WINDOWS\System32\Wininit.exe [359584] =>.Microsoft Windows Publisher®
[MD5.CDBD10B47A1BEA8B6A009064E90FA298] - 01/01/2018 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\WINDOWS\System32\wininet.dll [3334144] =>.Microsoft Corporation
[MD5.D0926E8FC082646487BD159538F4D9F5] - 01/01/2018 - (.Microsoft Corporation - Windows Logon Application.) -- C:\WINDOWS\System32\Winlogon.exe [715776] =>.Microsoft Corporation
[MD5.4D487E7D2B047FB929BE00117C09F9EC] - 29/09/2017 - (.Microsoft Corporation - Software Licensing Library.) -- C:\WINDOWS\System32\sppcomapi.dll [414720] =>.Microsoft Corporation
[MD5.A94E2533A7604E4AA05DCCC675A9F396] - 25/12/2017 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\System32\dnsapi.dll [739696] =>.Microsoft Windows®
[MD5.0A821BF024E347943D6F5C5180FAEA31] - 25/12/2017 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\Syswow64\dnsapi.dll [597160] =>.Microsoft Windows®
[MD5.7AE4EBDC221235BF9E1008B515C0B8DB] - 01/01/2018 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [614296] =>.Microsoft Windows®
[MD5.6191B9B2EE0E8CB957C683B9B341CC86] - 29/09/2017 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28568] =>.Microsoft Windows®
[MD5.9E82A95D77AC78C84BA75FF896B060BF] - 29/09/2017 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [93184] =>.Microsoft Corporation
[MD5.6D83565C1652E80447EDEA6947FA89D7] - 29/09/2017 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [159744] =>.Microsoft Corporation
[MD5.9910E9CFF5ECDCB225F82E72CE9DE459] - 29/09/2017 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [151040] =>.Microsoft Corporation
[MD5.99A34FD1F6431A10D8C3BB50E170D0F2] - 29/09/2017 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [86016] =>.Microsoft Corporation
[MD5.56FF074E50F9042FD2856AB3418F4B18] - 29/09/2017 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [105984] =>.Microsoft Corporation
[MD5.7BEC2AF23F586EFF0DB4DBF4331B0C70] - 29/09/2017 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [214016] =>.Microsoft Corporation
[MD5.34898F29BF0E9A84E183046318D17814] - 25/12/2017 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [495000] =>.Microsoft Windows®
[MD5.7FC54F2AF5EC52C7AC05AD90FFC757E6] - 01/01/2018 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [316928] =>.Microsoft Corporation
[MD5.E20EC8E25969ABD9F5FED6EDEA57EC0C] - 01/01/2018 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2395032] =>.Microsoft Windows®
[MD5.2E07EC2C1622F5E7B535D62DCD61F3AB] - 29/09/2017 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\WINDOWS\System32\drivers\Parport.sys [98816] =>.Microsoft Corporation
[MD5.E0220BB6580D34001D4D1D133052DAA4] - 29/09/2017 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [106496] =>.Microsoft Corporation
[MD5.DF83769C92527DB50653F8FB57D001FF] - 29/09/2017 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [182784] =>.Microsoft Corporation
[MD5.571D82ABAC428D902ACA0CF60373C039] - 29/09/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [121240] =>.Microsoft Windows®
[MD5.5B27846CF4B1C21AFB3A35A8336BA02F] - 25/12/2017 - (.Microsoft Corporation - Volume Shadow Copy driver.) -- C:\WINDOWS\System32\drivers\volsnap.sys [401304] =>.Microsoft Windows®
---\\ Non Microsoft non disabled Windows Services (29) - 12s
O23 - Service: Autodesk Desktop App Service (AdAppMgrSvc) . (.Autodesk Inc. - Autodesk Desktop App.) - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe =>.Autodesk, Inc.®
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: AdobeUpdateService (AdobeUpdateService) . (.Adobe Systems Incorporated - Adobe Update Service.) - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe =>.Adobe Systems Incorporated®
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) . (.Adobe Systems, Incorporated - Adobe Genuine Software Integrity Service.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Systems Incorporated®
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\DriverStore\FileRepository\c0321058.inf_amd64_c0aa1a2b512afe19\atiesrxx.exe =>.Advanced Micro Devices, Inc.®
O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
O23 - Service: Avira Phantom VPN (AviraPhantomVPN) . (.Avira Operations GmbH & Co. KG - Avira.VpnService.) - C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Bluetooth Driver Management Service (BcmBtRSupport) . (.Broadcom Corporation. - Bluetooth Radio Management Support.) - C:\Windows\system32\BtwRSupportService.exe =>.Broadcom Corporation.
O23 - Service: Bonjour Service (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
O23 - Service: Canon Driver Information Assist Service (Canon Driver Information Assist Service) . (.CANON INC. - Driver Information Assist Core Module.) - C:\Program Files\Canon\DIAS\CnxDIAS.exe =>.CANON INC.®
O23 - Service: @oem1.inf,%WIN32_DPTF_POLICY_CRITICAL_SERVICE_DISPLAY_NAME% (DptfPolicyCriticalService) . (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Frame.) - C:\WINDOWS\System32\DptfPolicyCriticalService.exe =>.Intel Corporation
O23 - Service: @oem1.inf,%WIN32_DPTF_POLICY_LPM_SERVICE_DISPLAY_NAME%;Inte (DptfPolicyLpmService) . (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Frame.) - C:\WINDOWS\System32\DptfPolicyLpmService.exe =>.Intel Corporation
O23 - Service: SCP DS3 Service (Ds3Service) . (.Scarlet.Crush Productions - ScpService.) - C:\Program Files\Scarlet. Crush Productions\bin\ScpService.exe =>.Scarlet.Crush Productions
O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET Security\ekrn.exe =>.ESET, spol. s r.o.®
O23 - Service: خدمة Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: HP SI Service (HPSIService) . (.HP - HP Smart-Install Service.) - C:\WINDOWS\system32\HPSIsvc.exe =>.HP
O23 - Service: HPWMISVC (HPWMISVC) . (.HP Inc. - HP WMI Service.) - C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe =>.Hewlett-Packard Company®
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\WINDOWS\System32\igfxCUIService.exe =>.Intel Corporation
O23 - Service: Iskysoft Application Framework Service (IsAppService) . (.Iskysoft - Iskysoft Passport.) - C:\Program Files (x86)\iSkysoft\IAF\2.4.2.223\IsAppService.exe =>.Shenzhen Yi Xing Investment Co., Ltd.®
O23 - Service: KMS-host Service (KMSEmulator) . (.MSFree Inc. - KMS emulator by Ratiborus, thanks to Hotbir.) - C:\ProgramData\KMSAutoS\bin\KMSSS.exe =>HackTool.WinActivator
O23 - Service: Malwarebytes Service (MBAMService) . (.Malwarebytes - Malwarebytes Service.) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
O23 - Service: MEmusvc (MEmusvc) . (.Microvirt Software Technology Co. Ltd. - MEmu Service.) - D:\Program Files\Microvirt\MEmu\MemuService.exe =>.Microvirt Software Technology Co., Ltd.®
O23 - Service: PMBDeviceInfoProvider (PMBDeviceInfoProvider) . (.Sony Corporation - Device Information Provider.) - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe =>.Sony Corporation®
O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp.®
O23 - Service: SpyHunter4 Service (SpyHunter 4 Service) . (.Enigma Software Group USA, LLC. - Service scanner interface.) - C:\Program Files\Enigma Software Group\SpyHunter\Sh4Service.exe =>.Enigma Software Group USA, LLC®
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
O23 - Service: TeamViewer 12 (TeamViewer) . (.TeamViewer GmbH - TeamViewer 12.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH®
O23 - Service: Wondershare Application Framework Service (WsAppService) . (.Wondershare - Wondershare Passport.) - C:\Program Files (x86)\Wondershare\WAF\2.4.3.227\WsAppService.exe =>.Wondershare Technology Co.,Ltd®
O23 - Service: Wondershare Driver Install Service (WsDrvInst) . (.Wondershare - MobileGo Driver Installer.) - C:\Program Files (x86)\Wondershare\Wondershare dr.fone toolkit for Android\Library\DriverInstaller\DriverInstall.exe =>.Wondershare Technology Co.,Ltd®
---\\ Services not Microsoft (SR=Run, SS=Stop) (36) - 37s
SR - Auto [19/12/2017] [ 1364904] Autodesk Desktop App Service (AdAppMgrSvc) . (.Autodesk Inc..) - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe =>.Autodesk, Inc.®
SR - Auto [27/09/2017] [ 83984] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SS - Demand [12/12/2017] [ 272384] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [14/03/2017] [ 771672] AdobeUpdateService (AdobeUpdateService) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [23/08/2017] [ 2257016] Adobe Genuine Software Integrity Service (AGSService) . (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Systems Incorporated®
SR - Auto [10/12/2017] [ 481144] (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\DriverStore\FileRepository\c0321058.inf_amd64_c0aa1a2b512afe19\atiesrxx.exe =>.Advanced Micro Devices, Inc.®
SR - Auto [27/11/2017] [ 83768] Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
SS - Auto [20/03/2017] [ 316976] Avira Phantom VPN (AviraPhantomVPN) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe =>.Avira Operations GmbH & Co. KG®
SR - Auto [30/04/2017] [ 2251992] Bluetooth Driver Management Service (BcmBtRSupport) . (.Broadcom Corporation..) - C:\Windows\system32\BtwRSupportService.exe =>.Broadcom Corporation®
SR - Auto [12/08/2015] [ 462096] Bonjour Service (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
SR - Auto [18/01/2016] [ 5043144] Canon Driver Information Assist Service (Canon Driver Information Assist Service) . (.CANON INC..) - C:\Program Files\Canon\DIAS\CnxDIAS.exe =>.CANON INC.®
SS - Demand [13/01/2017] [ 301528] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel(R) pGFX®
SR - Auto [30/04/2017] [ 148160] @oem1.inf,%WIN32_DPTF_POLICY_CRITICAL_SERVICE_DISPLAY_NAME% (DptfPolicyCriticalService) . (.Intel Corporation.) - C:\WINDOWS\System32\DptfPolicyCriticalService.exe =>.Intel(R) Software®
SR - Auto [30/04/2017] [ 124904] @oem1.inf,%WIN32_DPTF_POLICY_LPM_SERVICE_DISPLAY_NAME%;Inte (DptfPolicyLpmService) . (.Intel Corporation.) - C:\WINDOWS\System32\DptfPolicyLpmService.exe =>.Intel(R) Software®
SR - Auto [13/03/2014] [ 381952] SCP DS3 Service (Ds3Service) . (.Scarlet.Crush Productions.) - C:\Program Files\Scarlet. Crush Productions\bin\ScpService.exe =>.Scarlet.Crush Productions
SR - Auto [18/12/2017] [ 1940584] ESET Service (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET Security\ekrn.exe =>.ESET, spol. s r.o.®
SR - Demand [02/05/2017] [ 1591264] FlexNet Licensing Service 64 (FlexNet Licensing Service 64) . (.Flexera Software LLC.) - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe =>.Flexera Software LLC®
SS - Auto [24/11/2017] [ 153168] خدمة Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [24/11/2017] [ 153168] خدمة Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [27/09/2012] [ 126880] HP SI Service (HPSIService) . (.HP.) - C:\WINDOWS\system32\HPSIsvc.exe =>.Hewlett-Packard Company®
SR - Auto [18/04/2016] [ 606224] HPWMISVC (HPWMISVC) . (.HP Inc..) - C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe =>.Hewlett-Packard Company®
SR - Auto [13/01/2017] [ 373720] Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation.) - C:\WINDOWS\System32\igfxCUIService.exe =>.Intel(R) pGFX®
SS - Demand [11/12/2017] [ 672568] خدمة iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe =>.Apple Inc.®
SS - Auto [30/03/2017] [ 473352] Iskysoft Application Framework Service (IsAppService) . (.Iskysoft.) - C:\Program Files (x86)\iSkysoft\IAF\2.4.2.223\IsAppService.exe =>.Shenzhen Yi Xing Investment Co., Ltd.®
SS - Auto [02/05/2017] [ 35504] KMS-host Service (KMSEmulator) . (.MSFree Inc..) - C:\ProgramData\KMSAutoS\bin\KMSSS.exe =>HackTool.WinActivator
SS - Auto [01/11/2017] [ 6234056] Malwarebytes Service (MBAMService) . (.Malwarebytes.) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
SS - Auto [26/05/2017] [ 269480] MEmusvc (MEmusvc) . (.Microvirt Software Technology Co. Ltd..) - D:\Program Files\Microvirt\MEmu\MemuService.exe =>.Microvirt Software Technology Co., Ltd.®
SS - Demand [11/01/2018] [ 194000] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [27/11/2010] [ 398176] PMBDeviceInfoProvider (PMBDeviceInfoProvider) . (.Sony Corporation.) - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe =>.Sony Corporation®
SR - Auto [15/10/2016] [ 326656] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp.®
SS - Auto [18/01/2018] [ 889016] SpyHunter4 Service (SpyHunter 4 Service) . (.Enigma Software Group USA, LLC..) - C:\Program Files\Enigma Software Group\SpyHunter\Sh4Service.exe =>.Enigma Software Group USA, LLC®
SR - Auto [18/08/2017] [ 278616] SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
SR - Auto [26/07/2017] [10803440] TeamViewer 12 (TeamViewer) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH®
SS - Demand [11/09/2017] [ 33224] SHAREit Hotspot Service (uSHAREitSvc) . (.SHAREit Technologies Co.Ltd.) - C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.Service.exe =>.SHAREit Technologies Co.Ltd®
SS - Auto [21/06/2017] [ 492768] Wondershare Application Framework Service (WsAppService) . (.Wondershare.) - C:\Program Files (x86)\Wondershare\WAF\2.4.3.227\WsAppService.exe =>.Wondershare Technology Co.,Ltd®
SR - Auto [22/06/2017] [ 118048] Wondershare Driver Install Service (WsDrvInst) . (.Wondershare.) - C:\Program Files (x86)\Wondershare\Wondershare dr.fone toolkit for Android\Library\DriverInstaller\DriverInstall.exe =>.Wondershare Technology Co.,Ltd®
---\\ Task Planned Automatically (Register) (13) - 27s
O38 - TASK: {04EB6D20-7074-4F5C-9A8B-FA6B4D30CC2C} [64Bits][\GoogleUpdateTaskMachineUA] - (.Google Inc. - Google Installer.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168] =>.Google Inc.
O38 - TASK: {051B4E58-5A5B-4312-9AA0-490D0B10428C} [64Bits][\Adobe Flash Player PPAPI Notifier] - (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_28_0_0_126_pepper.exe [1332736] =>.Adobe Systems Incorporated
O38 - TASK: {217496E9-0F36-4BA6-B99B-01ED0919F5E8} [64Bits][\Apple\AppleSoftwareUpdate] - (.Apple Inc. - Apple Software Update.) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320] =>.Apple Inc.
O38 - TASK: {2C226C89-C024-4F92-B58D-DC2325976802} [64Bits][\CCleaner Update] - (.Piriform Ltd - CCleaner emergency updater.) -- C:\Program Files\CCleaner\CCUpdate.exe [501040] =>.Piriform Ltd
O38 - TASK: {37B520B9-5802-4539-8758-61AB62051681} [64Bits][\StartCN] - (.Advanced Micro Devices, Inc. - Radeon Settings: Command Line Interface.) -- C:\Program Files\AMD\CNext\CNext\cncmd.exe [49032] =>.Advanced Micro Devices, Inc.
O38 - TASK: {3AF1F8DB-479C-4118-8440-6997080F82BF} [64Bits][\CCleanerSkipUAC] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe [7980776] =>.Piriform Ltd
O38 - TASK: {3DA6343E-23EE-451A-AA7D-1B28FAAB687B} [64Bits][\KMSAutoNet] - (.MSFree Inc. - KMSAuto Net.) -- C:\ProgramData\KMSAutoS\KMSAuto Net.exe [8767160] =>HackTool.WinActivator
O38 - TASK: {6FC1395F-BFE1-4E6E-9809-E19E0398E48E} [64Bits][\GoogleUpdateTaskMachineCore] - (.Google Inc. - Google Installer.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168] =>.Google Inc.
O38 - TASK: {72B821F8-FEDB-478A-BCD4-CA1E9606DFE4} [64Bits][\Adobe Flash Player Updater] - (.Adobe Systems Incorporated - Adobe® Flash® Player Update Service 28.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384] =>.Adobe Systems Incorporated
O38 - TASK: {8C017762-37F1-413E-9811-1D2269635E28} [64Bits][\Adobe Acrobat Update Task] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1171480] =>.Adobe Systems Incorporated
O38 - TASK: {BDC71671-2BF5-4C79-99DA-75ED32E84326} [64Bits][\AdobeAAMUpdater-1.0-DESKTOP-MUEAEVH-HP] - (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128] =>.Adobe Systems Incorporated
O38 - TASK: {C1908329-4606-43A1-9DB1-0BFAE983F5D3} [64Bits][\ScpUpdater] - (.Nefarius Software Solutions - ScpUpdater 1.7.277.16103 © Nefarius Softwar.) -- C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpUpdater.exe [460480] =>.Nefarius Software Solutions
O38 - TASK: {EC0A91DB-227A-43D1-BEF6-683D0A3DBA7A} [64Bits][\SpyHunter4Startup] - (.HP\HP - .) -- C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
---\\ Auto loading programs from Registry and folders (12) - 5s
O4 - HKLM\..\Run: [SecurityHealth] . (.Microsoft Corporation - Windows Defender notification icon.) -- C:\Program Files\Windows Defender\MSASCuiL.exe =>.Microsoft Windows®
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp.®
O4 - HKLM\..\Run: [TNOD UP] . (. - .) -- C:\Users\HP\Desktop\TNod User & Password Finder 1.6.2 Beta 3\TNod-1.6.3.1-Final-Portable\TNod-1.6.3.1-Final-Portable\TNODUP-Portable.exe (.Not File.) =>.SUP.Orphan
O4 - HKLM\..\Run: [DptfPolicyLpmServiceHelper] . (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Frame.) -- C:\WINDOWS\system32\DptfPolicyLpmServiceHelper.exe =>.Intel Corporation
O4 - HKLM\..\Run: [egui] . (.ESET - ESET command line interface.) -- C:\Program Files\ESET\ESET Security\ecmds.exe =>.ESET, spol. s r.o.®
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKLM\..\Wow6432Node\Run: [PMBVolumeWatcher] . (.Sony Corporation - Media Check Tool.) -- C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe =>.Sony Corporation®
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [Autodesk Desktop App] . (.Autodesk, Inc. - Autodesk Desktop App.) -- C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe =>.Autodesk, Inc.®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-21-1561305810-3505110792-3158112729-1001\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
---\\ Process running (57) - 18s
[MD5.00000000000000000000000000000000] - (.Intel Corporation - igfxCUIService Module.) -- C:\WINDOWS\system32\igfxCUIService.exe [0] [PID.1848] =>.Intel Corporation
[MD5.19439C88A3A95FA5CA987E0B71D18E71] - (.AMD - AMD External Events Service Module.) -- C:\Windows\System32\DriverStore\FileRepository\c0321058.inf_amd64_c0aa1a2b512afe19\atiesrxx.exe [481144] [PID.1884] =>.Advanced Micro Devices, Inc.®
[MD5.7615992F35982471546A3DE5B7587250] - (.Realtek Semiconductor - Realtek Audio Service.) -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [326656] [PID.2916] =>.Realtek Semiconductor Corp.®
[MD5.5BD9B3EC9874ADB5B550EBABC4C22D14] - (.Autodesk Inc. - Autodesk Desktop App.) -- C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1364904] [PID.3640] =>.Autodesk, Inc.®
[MD5.E0CBB79ADB89A233928AF60FB2B729DE] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768] [PID.3628] =>.Apple Inc.®
[MD5.00000000000000000000000000000000] - (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Frame.) -- C:\WINDOWS\system32\DptfPolicyLpmService.exe [0] [PID.3700] =>.Intel Corporation
[MD5.00000000000000000000000000000000] - (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Frame.) -- C:\WINDOWS\system32\DptfPolicyConfigTDPService.exe [0] [PID.3844] =>.Intel Corporation
[MD5.00000000000000000000000000000000] - (.HP - HP Smart-Install Service.) -- C:\WINDOWS\system32\HPSIsvc.exe [0] [PID.3820] =>.HP
[MD5.00000000000000000000000000000000] - (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Frame.) -- C:\WINDOWS\system32\DptfPolicyCriticalService.exe [0] [PID.3812] =>.Intel Corporation
[MD5.00000000000000000000000000000000] - (.Broadcom Corporation. - Bluetooth Radio Management Support.) -- C:\Windows\system32\BtwRSupportService.exe [0] [PID.3832] =>.Broadcom Corporation.
[MD5.38622FFE9369D3EC01C0097235BD9279] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [83984] [PID.4116] =>.Adobe Systems, Incorporated®
[MD5.79EE5A2B3BF3685AF9B7AC4780371A25] - (.Adobe Systems Incorporated - Adobe Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [771672] [PID.4248] =>.Adobe Systems Incorporated®
[MD5.63694C307273062A2167AE4CE80730EF] - (.Sony Corporation - Device Information Provider.) -- C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [398176] [PID.4264] =>.Sony Corporation®
[MD5.0677F5ECD4F801403C428BBAE1286379] - (.Adobe Systems, Incorporated - Adobe Genuine Software Integrity Service.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016] [PID.4272] =>.Adobe Systems Incorporated®
[MD5.91AF2EF13E4F1A555F16C49F50BF8746] - (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) -- C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616] [PID.4280] =>.Synaptics Incorporated®
[MD5.9C0B950F93833EC22A5D971AB77F263D] - (.TeamViewer GmbH - TeamViewer 12.) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10803440] [PID.4288] =>.TeamViewer GmbH®
[MD5.9EEBDF7B21D16A8AF897D30607C2AB45] - (.Wondershare - MobileGo Driver Installer.) -- C:\Program Files (x86)\Wondershare\Wondershare dr.fone toolkit for Android\Library\DriverInstaller\DriverInstall.exe [118048] [PID.4304] =>.Wondershare Technology Co.,Ltd®
[MD5.DE406AB237CBA3E57C740C387FE3CC7C] - (.CANON INC. - Driver Information Assist Core Module.) -- C:\Program Files\Canon\DIAS\CnxDIAS.exe [5043144] [PID.4328] =>.CANON INC.®
[MD5.7109608928D8AB470D60F47BAD5D153A] - (.HP Inc. - HP WMI Service.) -- C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [606224] [PID.4336] =>.Hewlett-Packard Company®
[MD5.B5C2F92EE1106DFE7BB1CCE4D35B6037] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462096] [PID.4344] =>.Apple Inc.®
[MD5.0545A3EB959CFA4790D267BFB8C1ACA4] - (.Google Inc. - Google Installer.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168] [PID.6492] =>.Google Inc®
[MD5.900236357482B00944826354EEC6B93F] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe [288848] [PID.3488] =>.Google Inc®
[MD5.F107219B133E7E574DA052C5C88FFBF3] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe [366672] [PID.6892] =>.Google Inc®
[MD5.CC8C8479B0C9FC6803B6905D99158FE4] - (.Scarlet.Crush Productions - ScpService.) -- C:\Program Files\Scarlet. Crush Productions\bin\ScpService.exe [381952] [PID.6092] =>.Scarlet.Crush Productions
[MD5.00000000000000000000000000000000] - (.AMD - AMD External Events Client Module.) -- C:\WINDOWS\system32\atieclxx.exe [0] [PID.4900] =>.AMD
[MD5.AEBC1AFA26110E24B324B10FFD7D99D7] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [4397144] [PID.6692] =>.Synaptics Incorporated®
[MD5.D00AC6142241788FD9E26D53893F1C40] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1476104] [PID.4488] =>.Realtek Semiconductor Corp.®
[MD5.00000000000000000000000000000000] - (.Intel Corporation - igfxEM Module.) -- C:\WINDOWS\system32\igfxEM.exe [0] [PID.5912] =>.Intel Corporation
[MD5.0486C5A48DB97E46E7E4BE47BA302A3A] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE [228960] [PID.6068] =>.Synaptics Incorporated®
[MD5.00000000000000000000000000000000] - (.Intel Corporation - igfxHK Module.) -- C:\WINDOWS\system32\igfxHK.exe [0] [PID.1780] =>.Intel Corporation
[MD5.00000000000000000000000000000000] - (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Frame.) -- C:\Windows\System32\DptfPolicyLpmServiceHelper.exe [0] [PID.7844] =>.Intel Corporation
[MD5.0B01E387818E38287B412C98222DF64F] - (.ESET - ESET Main GUI.) -- C:\Program Files\ESET\ESET Security\egui.exe [6506616] [PID.8044] =>.ESET, spol. s r.o.®
[MD5.1DC726B72BEF08C8F04828F6D9AE7F4F] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [10257872] [PID.7576] =>.Piriform Ltd®
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.8504] =>.Google Inc®
[MD5.1E2C16C021F8E297898610F28F76B473] - (.Advanced Micro Devices, Inc. - Radeon Settings: Host Application.) -- C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [8932744] [PID.7652] =>.Advanced Micro Devices, Inc.®
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.6356] =>.Google Inc®
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.4616] =>.Google Inc®
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.4444] =>.Google Inc®
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.2992] =>.Google Inc®
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.2108] =>.Google Inc®
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.8436] =>.Google Inc®
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.9360] =>.Google Inc®
[MD5.F40FB72316DCCE31A13F214CA01DA5C5] - (...) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.274.0_x64__kzf8qxf38zg5c\SkypeHost.exe [86528] [PID.7188] =>.Skype Technologies
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.10008] =>.Google Inc®
[MD5.A38290BF8E9B2D9427D20B92CFAE61B4] - (.Autodesk, Inc. - AutoCAD Application.) -- C:\Program Files\Autodesk\AutoCAD 2018\acad.exe [5639128] [PID.7164] =>.Autodesk, Inc®
[MD5.384E354214956DF119745D1E0FC0EC67] - (.Autodesk - Chromium host executable.) -- C:\Program Files\Common Files\Autodesk Shared\CLM\V5\MSVC14\cliccore\acwebbrowser.exe [542120] [PID.10132] =>.Autodesk, Inc®
[MD5.384E354214956DF119745D1E0FC0EC67] - (.Autodesk - Chromium host executable.) -- C:\Program Files\Common Files\Autodesk Shared\CLM\V5\MSVC14\cliccore\acwebbrowser.exe [542120] [PID.4056] =>.Autodesk, Inc®
[MD5.384E354214956DF119745D1E0FC0EC67] - (.Autodesk - Chromium host executable.) -- C:\Program Files\Common Files\Autodesk Shared\CLM\V5\MSVC14\cliccore\acwebbrowser.exe [542120] [PID.1776] =>.Autodesk, Inc®
[MD5.1B04D931B3EFA5FE67FA7D8510722222] - (.Flexera Software LLC - Activation Licensing Service.) -- C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe [1591264] [PID.6352] =>.Flexera Software LLC®
[MD5.2C3C3A386B2F0714548037633B6FD4B5] - (.Autodesk, Inc. - Autodesk InfoCenter.) -- C:\Program Files\Common Files\Autodesk Shared\WSCommCntr4\Lib\WSCommCntr4.exe [473992] [PID.5820] =>.Autodesk, Inc®
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.11588] =>.Google Inc®
[MD5.ECB71ED87260507EB75BEF0037627C1D] - (.BitTorrent Inc. - BitTorrent.) -- C:\Users\HP\AppData\Roaming\BitTorrent\BitTorrent.exe [2150088] [PID.11236] =>.BitTorrent Inc®
[MD5.D83F6B47CF96292802BF052E4D574BF4] - (.BitTorrent Inc. - WebHelper.) -- C:\Users\HP\AppData\Roaming\BitTorrent\updates\7.10.0_43917\bittorrentie.exe [396992] [PID.9476] =>.BitTorrent Inc®
[MD5.D83F6B47CF96292802BF052E4D574BF4] - (.BitTorrent Inc. - WebHelper.) -- C:\Users\HP\AppData\Roaming\BitTorrent\updates\7.10.0_43917\bittorrentie.exe [396992] [PID.8152] =>.BitTorrent Inc®
[MD5.BB15D361B629F50680894BFE78047D59] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664] [PID.10824] =>.Google Inc®
[MD5.B0691C2D76AC07AA2D4B2CD5F529A34B] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\HP\ZHPDiag3.exe [2967936] [PID.7880] =>.Nicolas Coolman
[MD5.90F99E48BD2D142395E749258F32ED82] - (...) -- C:\Flashtool\FlashTool64.exe [409088] [PID.8020]
---\\ Google Chrome, Start,Search,Extensions (23) - 2s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://assets.onestore.ms
G0 - GCSP: Preferences [User Data\Default][HomePage] http://c.microsoft.com =>.Microsoft Corporation
G0 - GCSP: Preferences [User Data\Default][HomePage] http://c1.microsoft.com =>.Microsoft Corporation
G0 - GCSP: Preferences [User Data\Default][HomePage] http://compass-ssl.microsoft.com =>.Microsoft Corporation
G0 - GCSP: Preferences [User Data\Default][HomePage] http://cs.microsoft.com =>.Microsoft Corporation
G0 - GCSP: Preferences [User Data\Default][HomePage] http://go.microsoft.com =>.Microsoft Corporation
G0 - GCSP: Preferences [User Data\Default][HomePage] http://mem.gfx.ms
G0 - GCSP: Preferences [User Data\Default][HomePage] http://statics-uhf-neu.akamaized.net =>.SUP.AkamaiHD
G0 - GCSP: Preferences [User Data\Default][HomePage] http://support.microsoft.com =>.Microsoft Corporation
G0 - GCSP: Preferences [User Data\Default][HomePage] http://web.vortex.data.microsoft.com =>.Microsoft Corporation
G2 - GCE: Preference [HP][User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] =>.Google Inc. {Slides}
G2 - GCE: Preference [HP][User Data\Default] [aohghmighlieiainnegkcijnfilokake] =>.Google Inc. {Docs}
G2 - GCE: Preference [HP][User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] http://drive.google.com/ =>.Google Inc. {Drive}
G2 - GCE: Preference [HP][User Data\Default] [bkkbcggnhapdmkeljlodobbkopceiche] Poper Blocker =>.DingoSolutions
G2 - GCE: Preference [HP][User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] http://www.youtube.com =>.Youtube {Youtube}
G2 - GCE: Preference [HP][User Data\Default] [dldimlnkedgledlgkjjhpgbhgjbgljpm]
G2 - GCE: Preference [HP][User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] =>.Google Inc. {Sheets}
G2 - GCE: Preference [HP][User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion}
G2 - GCE: Preference [HP][User Data\Default] [jacihiikpacjaggdldhcdfjpbibbfjmh] Adblock Genesis Plus =>.Genesis Plus adblocker
G2 - GCE: Preference [HP][User Data\Default] [mjnbclmflcpookeapghfhapeffmpodij] UltraSurf Security Privacy & Unblock VPN =>.Ultrareach
G2 - GCE: Preference [HP][User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet}
G2 - GCE: Preference [HP][User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] http://mail.google.com/ =>.Google Inc. {Gmail}
G2 - GCE: Preference [HP][User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (4) - 8s
P2 - EXT FILE: (.Microsoft Corporation - The plugin allows you to have a better expe.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npMeetingJoinPluginOC.dll =>.Microsoft Corporation®
P2 - EXT FILE: (.AdBlock - __MSG_description2__.) -- C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\k00ju5rd.default\extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi =>.AdBlock
P2 - EXT FILE: (.Video DownloadHelper - Download Videos from the Web.) -- C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\k00ju5rd.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi =>.Video DownloadHelper
P2 - EXT FILE: (. - __MSG_extDescription__.) -- C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\k00ju5rd.default\extensions\{bee8b1f2-823a-424c-959c-f8f76c8b2306}.xpi
---\\ Internet Explorer Extensions, Start, Search (15) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Browser.) (11.00.16299.15 (WinBuild.160101.0800)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation
---\\ Internet Explorer, Proxy Management (3) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (29)
---\\ Browser Helper Object (BHO) (2) - 1s
O2 - BHO: Skype for Business Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files\Microsoft Office\Office15\OCHelper.dll =>.Microsoft Corporation®
O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
---\\ Global shortcuts Startup (94) - 40s
O4 - GS\Desktop [Administrator]: SpyHunter.lnk . (...) C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe
O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\HP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrator]: dr.fone toolkit para Android.lnk . (.Wondershare - dr.fone toolkit loader.) C:\Program Files (x86)\Wondershare\Wondershare dr.fone toolkit for Android\DrFoneLoader.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrator]: iSkysoft Toolbox for Android.lnk . (.iSkysoft - iSkysoft Toolbox loader.) C:\Program Files (x86)\iSkysoft\iSkysoft Toolbox for Android\iSkyToolboxLoader.exe =>.Shenzhen Yi Xing Investment Co., Ltd.®
O4 - GS\sendTo [Administrator]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [Administrator]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrator]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\TaskBar [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrator]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrator]: Task Manager.lnk . (.Microsoft Corporation - Task Manager.) C:\WINDOWS\system32\taskmgr.exe /7 =>.Microsoft Windows®
O4 - GS\Programs [Administrator]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\HP\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [Administrator]: Optional Features.lnk . (.Microsoft Corporation - Features On Demand Helper.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Desktop [Guest]: SpyHunter.lnk . (...) C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe
O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\HP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Guest]: dr.fone toolkit para Android.lnk . (.Wondershare - dr.fone toolkit loader.) C:\Program Files (x86)\Wondershare\Wondershare dr.fone toolkit for Android\DrFoneLoader.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Guest]: iSkysoft Toolbox for Android.lnk . (.iSkysoft - iSkysoft Toolbox loader.) C:\Program Files (x86)\iSkysoft\iSkysoft Toolbox for Android\iSkyToolboxLoader.exe =>.Shenzhen Yi Xing Investment Co., Ltd.®
O4 - GS\sendTo [Guest]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [Guest]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Guest]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\TaskBar [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Guest]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Guest]: Task Manager.lnk . (.Microsoft Corporation - Task Manager.) C:\WINDOWS\system32\taskmgr.exe /7 =>.Microsoft Windows®
O4 - GS\Programs [Guest]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\HP\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [Guest]: Optional Features.lnk . (.Microsoft Corporation - Features On Demand Helper.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Desktop [HP]: SpyHunter.lnk . (...) C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe
O4 - GS\Desktop [HP]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\HP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [HP]: dr.fone toolkit para Android.lnk . (.Wondershare - dr.fone toolkit loader.) C:\Program Files (x86)\Wondershare\Wondershare dr.fone toolkit for Android\DrFoneLoader.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\Quicklaunch [HP]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [HP]: iSkysoft Toolbox for Android.lnk . (.iSkysoft - iSkysoft Toolbox loader.) C:\Program Files (x86)\iSkysoft\iSkysoft Toolbox for Android\iSkyToolboxLoader.exe =>.Shenzhen Yi Xing Investment Co., Ltd.®
O4 - GS\sendTo [HP]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [HP]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [HP]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\TaskBar [HP]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [HP]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [HP]: Task Manager.lnk . (.Microsoft Corporation - Task Manager.) C:\WINDOWS\system32\taskmgr.exe /7 =>.Microsoft Windows®
O4 - GS\Programs [HP]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\HP\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [HP]: Optional Features.lnk . (.Microsoft Corporation - Features On Demand Helper.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Desktop [WDAGUtilityAccount]: SpyHunter.lnk . (...) C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe
O4 - GS\Desktop [WDAGUtilityAccount]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\HP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [WDAGUtilityAccount]: dr.fone toolkit para Android.lnk . (.Wondershare - dr.fone toolkit loader.) C:\Program Files (x86)\Wondershare\Wondershare dr.fone toolkit for Android\DrFoneLoader.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: iSkysoft Toolbox for Android.lnk . (.iSkysoft - iSkysoft Toolbox loader.) C:\Program Files (x86)\iSkysoft\iSkysoft Toolbox for Android\iSkyToolboxLoader.exe =>.Shenzhen Yi Xing Investment Co., Ltd.®
O4 - GS\sendTo [WDAGUtilityAccount]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [WDAGUtilityAccount]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [WDAGUtilityAccount]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\TaskBar [WDAGUtilityAccount]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [WDAGUtilityAccount]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [WDAGUtilityAccount]: Task Manager.lnk . (.Microsoft Corporation - Task Manager.) C:\WINDOWS\system32\taskmgr.exe /7 =>.Microsoft Windows®
O4 - GS\Programs [WDAGUtilityAccount]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\HP\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [WDAGUtilityAccount]: Optional Features.lnk . (.Microsoft Corporation - Features On Demand Helper.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\CommonDesktop [Public]: AutoCAD 2018 - English.lnk . (.Autodesk, Inc. - .) C:\Program Files (x86)\Autodesk\AutoCAD 2018\acad.exe /product ACAD /language "en-US" =>.Autodesk, Inc.
O4 - GS\CommonDesktop [Public]: Autodesk Desktop App.lnk . (.Autodesk, Inc. - Autodesk Desktop App.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe =>.Autodesk, Inc.®
O4 - GS\CommonDesktop [Public]: Avira Phantom VPN.lnk . (.Avira Operations GmbH & Co. KG - Avira.WebAppHost.) C:\Program Files (x86)\Avira\VPN\Avira.WebAppHost.exe =>.Avira Operations GmbH & Co. KG®
O4 - GS\CommonDesktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - GS\CommonDesktop [Public]: dr.fone toolkit para Android.lnk . (.Wondershare - dr.fone toolkit loader.) C:\Program Files (x86)\Wondershare\Wondershare dr.fone toolkit for Android\DrFoneLoader.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\CommonDesktop [Public]: ETABS 2016.lnk . (.Computers and Structures, Inc. - ETABS 2016.) C:\Program Files (x86)\Computers and Structures\ETABS 2016 Eval\ETABS.exe {678AB5ADC9489443DCCDA97056080D0B} =>.Computers and Structures, Inc.
O4 - GS\CommonDesktop [Public]: iSkysoft Toolbox for Android.lnk . (.iSkysoft - iSkysoft Toolbox loader.) C:\Program Files (x86)\iSkysoft\iSkysoft Toolbox for Android\iSkyToolboxLoader.exe =>.Shenzhen Yi Xing Investment Co., Ltd.®
O4 - GS\CommonDesktop [Public]: iTunes.lnk . (.Apple Inc. - .) C:\Program Files (x86)\iTunes\iTunes.exe =>.Apple Inc.
O4 - GS\CommonDesktop [Public]: Malwarebytes.lnk . (.Malwarebytes - Malwarebytes.) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe =>.Malwarebytes Corporation®
O4 - GS\CommonDesktop [Public]: progeCAD 2018 - English (x64).lnk . (.ProgeSOFT sa - progeCAD® 2018 (x64).) C:\Program Files\PSOFT\progeCAD 2018 Professional ENG\pcad.exe
O4 - GS\CommonDesktop [Public]: progeCAD Center 2018 - English (x64).lnk . (...) C:\Program Files\PSOFT\progeCAD 2018 Professional ENG\center.exe
O4 - GS\CommonDesktop [Public]: Revit 2017.lnk . (.Autodesk, Inc. - .) C:\Program Files (x86)\Autodesk\Revit 2017\Revit.exe /language ENU =>.Autodesk, Inc.
O4 - GS\CommonDesktop [Public]: RogueKiller.lnk . (.Adlice Software - Anti-malware remediation tool.) C:\Program Files\RogueKiller\RogueKiller64.exe =>.Adlice®
O4 - GS\CommonDesktop [Public]: SHAREit.lnk . (.SHAREit Technologies Co.Ltd - SHAREit.) C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.exe =>.SHAREit Technologies Co.Ltd®
O4 - GS\CommonDesktop [Public]: TeamViewer 12.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH®
O4 - GS\Programs [Public]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\HP\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [Public]: Optional Features.lnk . (.Microsoft Corporation - Features On Demand Helper.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\internet explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Notepad.) C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Quick Assist.lnk . (.Microsoft Corporation - Quick Assist.) C:\WINDOWS\system32\quickassist.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Remote Desktop Connection.) C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Snipping Tool.) C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Steps Recorder.) C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Windows Wordpad Application.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - XPS Viewer.) C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Character Map.) C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Acrobat Reader DC.lnk . (.Flexera Software LLC - InstallShield.) C:\WINDOWS\Installer\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}\SC_Reader.ico =>.Flexera Software LLC
O4 - GS\ProgramsCommon [Public]: Adobe Creative Cloud.lnk . (.Adobe Systems Incorporated - Adobe Creative Cloud.) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Photoshop CC 2017 (32 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CC 2017.) C:\Program Files (x86)\Adobe\Adobe Photoshop CC 2017 (32 Bit)\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Apple Software Update.lnk . (...) C:\WINDOWS\Installer\{C1BBFD2A-BCDD-45B3-8C0B-66BD434970A8}\AppleSoftwareUpdateIco.exe =>.Apple Inc.
O4 - GS\ProgramsCommon [Public]: DTS Audio Control.lnk . (.Microsoft Corporation - Windows host process (Rundll32).) C:\Windows\System32\rundll32.exe shell32.dll,Control_RunDLL RTSnMg64.cpl,, =>..Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\WINDOWS\System32\Control.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: PMB.lnk . (.Sony Corporation - Browser.) C:\Program Files (x86)\Sony\PMB\PMBBrowser.exe =>.Sony Corporation
O4 - GS\ProgramsCommon [Public]: TeamViewer 12.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH®
O4 - GS\ProgramsCommon [Public]: Windows 10 Upgrade Assistant.lnk . (.Microsoft Corporation - Windows 10 Update Assistant.) C:\Windows10Upgrade\Windows10UpgraderApp.exe /ClientID "Win10Upgrade:VNL:Hadron5:{}" =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
---\\ Lop.com/Domain Hijackers (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.8.1 192.168.8.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{38047c75-f668-44a2-a7a5-88e7901d7e12}: DhcpNameServer = 192.168.8.1 192.168.8.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{8bd901c9-0c54-4efb-b90a-9eedf97ccd12}: DhcpNameServer = 192.168.42.129 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{dba52955-39ef-42b0-9d62-5cbd6f88c8f1}: DhcpNameServer = 192.168.8.1 192.168.8.1 =>.Local IP Adress
---\\ Extra protocols (25) - 3s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files\Microsoft Office\Office15\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL =>.Microsoft Corporation®
---\\ Software installed (150) - 66s
O42 - Logiciel: ACA & MEP 2018 Object Enabler - (.Autodesk.) [HKLM][64Bits] -- {28B89EEF-1004-0000-5102-CF3F3A09B77D} =>.Autodesk
O42 - Logiciel: ACAD Private - (.Autodesk.) [HKLM][64Bits] -- {28B89EEF-1001-0000-3102-CF3F3A09B77D} =>.Autodesk
O42 - Logiciel: Adobe Acrobat Reader DC - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-AC0F074E4100} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Creative Cloud - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Creative Cloud =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 28 PPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player PPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Photoshop CC 2017 (32 Bit) - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- PHSP_18_0_32 =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824245926} =>.Adobe Systems Incorporated
O42 - Logiciel: Akamai NetSession Interface - (.Akamai Technologies, Inc.) [HKCU][64Bits] -- Akamai =>.SUP.AkamaiHD
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {BD6778C5-6FA5-492A-ADD6-E706339C2A7B} =>.Apple Inc.
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {C1BBFD2A-BCDD-45B3-8C0B-66BD434970A8} =>.Apple Inc.
O42 - Logiciel: AutoCAD 2018 - (.Autodesk.) [HKLM][64Bits] -- {28B89EEF-1001-0000-0102-CF3F3A09B77D} =>.Autodesk
O42 - Logiciel: AutoCAD 2018 - English - (.Autodesk.) [HKLM][64Bits] -- {28B89EEF-1001-0409-2102-CF3F3A09B77D} =>.Autodesk, Inc®
O42 - Logiciel: AutoCAD 2018 Language Pack - English - (.Autodesk.) [HKLM][64Bits] -- {28B89EEF-1001-0409-1102-CF3F3A09B77D} =>.Autodesk
O42 - Logiciel: Autodesk A360 Collaboration for Revit 2017 - (.Autodesk.) [HKLM][64Bits] -- {AA384BE4-1700-0010-0000-97E7D7D00B17} =>.Autodesk
O42 - Logiciel: Autodesk A360 Collaboration for Revit 2017 - (.Autodesk.) [HKLM][64Bits] -- Autodesk A360 Collaboration for Revit 2017 =>.Autodesk, Inc®
O42 - Logiciel: Autodesk Advanced Material Library Image Library 2018 - (.Autodesk.) [HKLM][64Bits] -- {177AD7F6-9C77-4E50-BA53-B7259C5F282D} =>.Autodesk
O42 - Logiciel: Autodesk App Manager 2016-2018 - (.Autodesk.) [HKLM][64Bits] -- {20EC0CA2-346E-4660-9903-51B278DF15F6} =>.Autodesk
O42 - Logiciel: Autodesk AutoCAD 2018 - English - (.Autodesk.) [HKLM][64Bits] -- AutoCAD 2018 - English =>.Autodesk, Inc®
O42 - Logiciel: Autodesk AutoCAD Performance Feedback Tool 1.2.8 - (.Autodesk.) [HKLM][64Bits] -- {214D3370-746E-4886-8EAA-5769EB87D044} =>.Autodesk
O42 - Logiciel: Autodesk BIM 360 Revit 2017 Add-in 64 bit - (.Autodesk.) [HKLM][64Bits] -- {A26EBAD5-9591-407F-9D6C-C7A4F3DFE506} =>.Autodesk
O42 - Logiciel: Autodesk CAD Manager Tools - (.Autodesk.) [HKLM][64Bits] -- {28B89EEF-0111-0409-0110-CF3F3A09B77D} =>.Autodesk
O42 - Logiciel: Autodesk Desktop App - (.Autodesk.) [HKLM][64Bits] -- Autodesk Desktop App =>.Autodesk, Inc.®
O42 - Logiciel: Autodesk Featured Apps 2016-2018 - (.Autodesk.) [HKLM][64Bits] -- {384C4B74-B749-4AB6-9367-4D51A6AA9CB8} =>.Autodesk
O42 - Logiciel: Autodesk License Service (x64) - 3.1 - (.Autodesk.) [HKLM][64Bits] -- {EB6FE58F-8576-4272-BB9C-6B47D9EDFA4D} =>.Autodesk
O42 - Logiciel: Autodesk License Service (x64) - 5.1.4 - (.Autodesk.) [HKLM][64Bits] -- {3609A8D9-FC0C-4C9B-9F58-0B1D1A4FE556} =>.Autodesk
O42 - Logiciel: Autodesk Material Library 2016 - (.Autodesk.) [HKLM][64Bits] -- {29A7D6EC-63C2-42FD-8143-5812ABD2923F} =>.Autodesk
O42 - Logiciel: Autodesk Material Library 2017 - (.Autodesk.) [HKLM][64Bits] -- {8FB9F735-D64C-4991-8D91-4CDDAB1ABDEE} =>.Autodesk
O42 - Logiciel: Autodesk Material Library 2018 - (.Autodesk.) [HKLM][64Bits] -- {7847611E-92E9-4917-B395-71C91D523104} =>.Autodesk
O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2016 - (.Autodesk.) [HKLM][64Bits] -- {6B4CFC6E-ECB0-47FE-95D3-65C680ED0687} =>.Autodesk
O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2017 - (.Autodesk.) [HKLM][64Bits] -- {3FBFBC43-9882-43FA-B979-2D53896747B3} =>.Autodesk
O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2018 - (.Autodesk.) [HKLM][64Bits] -- {FCDED119-A969-4E48-8A32-D21AD6B03253} =>.Autodesk
O42 - Logiciel: Autodesk Material Library Low Resolution Image Library 2016 - (.Autodesk.) [HKLM][64Bits] -- {FA5DF4D1-CD59-4183-B3D4-779A56498786} =>.Autodesk
O42 - Logiciel: Autodesk Material Library Low Resolution Image Library 2017 - (.Autodesk.) [HKLM][64Bits] -- {360AC116-6CD4-4E7D-8174-28D47B05E898} =>.Autodesk
O42 - Logiciel: Autodesk Material Library Medium Resolution Image Library 2016 - (.Autodesk.) [HKLM][64Bits] -- {415A5A54-325E-4815-9940-62A889CA3877} =>.Autodesk
O42 - Logiciel: Autodesk Material Library Medium Resolution Image Library 2017 - (.Autodesk.) [HKLM][64Bits] -- {CB6E007E-701D-42CD-AF0E-4BE9C36C7F7C} =>.Autodesk
O42 - Logiciel: Autodesk Network License Manager - (.Autodesk.) [HKLM][64Bits] -- {4BE91685-1632-47FC-B563-A8A542C6664C} =>.Autodesk
O42 - Logiciel: Autodesk Revit 2017 - (..) [HKLM][64Bits] -- Revit 2017
O42 - Logiciel: Autodesk Revit 2017 - (.Autodesk.) [HKLM][64Bits] -- Autodesk Revit 2017 =>.Autodesk, Inc®
O42 - Logiciel: Autodesk Revit Content Libraries 2016 - (.Autodesk.) [HKLM][64Bits] -- Autodesk Revit Content Libraries 2016 =>.Autodesk, Inc®
O42 - Logiciel: Autodesk Revit Content Libraries 2017 - (..) [HKLM][64Bits] -- Revit Content Libraries 2017
O42 - Logiciel: Autodesk Revit Content Libraries 2017 - (.Autodesk.) [HKLM][64Bits] -- Autodesk Revit Content Libraries 2017 =>.Autodesk, Inc®
O42 - Logiciel: Autodesk Revit MEP Imperial Content v2.0 - (.Autodesk.) [HKLM][64Bits] -- {F2538944-3E07-4E97-B41A-FC48AB53EE9D} =>.Autodesk
O42 - Logiciel: Autodesk Revit MEP Metric Content v2.0 - (.Autodesk.) [HKLM][64Bits] -- {DEF775C7-84BF-4730-976A-FE3747F1757C} =>.Autodesk
O42 - Logiciel: Autodesk Workflows 2016 - (.Autodesk, Inc..) [HKLM][64Bits] -- {535CDED0-D690-4738-83EE-09056A365BAC} =>.Autodesk, Inc.
O42 - Logiciel: Autodesk Workflows 2017 - (.Autodesk, Inc..) [HKLM][64Bits] -- {23A13F78-5B67-441A-ABF9-48BE8B5455DB} =>.Autodesk, Inc.
O42 - Logiciel: Avira Phantom VPN v2.7.1.26756 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- Avira Phantom VPN =>.Avira Operations GmbH & Co. KG®
O42 - Logiciel: BitTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- BitTorrent
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {56DDDFB8-7F79-4480-89D5-25E1F52AB28F} =>.Apple Inc.
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: Color Network ScanGear Ver.2.71 - (.CANON INC..) [HKLM][64Bits] -- {4E5CA273-5771-450A-AFDD-C58DAD9205DC} =>.Canon Inc.
O42 - Logiciel: dr.fone toolkit para Android (Version 8.3.3) - (.Wondershare Technology Co.,Ltd..) [HKLM][64Bits] -- {7B08A1E1-3644-4237-B39D-762B5F5564D0}_is1 =>.Wondershare Technology Co.,Ltd®
O42 - Logiciel: ESET Security - (.ESET, spol. s r.o..) [HKLM][64Bits] -- {37E67F0A-50BB-430A-A2A5-F5E2F6EE96DB} =>.ESET, spol. s r.o.
O42 - Logiciel: ETABS 2016 Eval - (.Computers and Structures, Inc..) [HKLM][64Bits] -- {0CB74374-F2FE-4B7D-972C-1BF77F71BD98} =>.Computers and Structures, Inc.
O42 - Logiciel: Flashtool - (.Androxyde.) [HKLM][64Bits] -- Flashtool =>.Androxyde
O42 - Logiciel: FormIt 360 Converter For Revit 2017 - (.Autodesk.) [HKLM][64Bits] -- {637211B6-D2E9-474A-BF06-4F61F1254104} =>.Autodesk
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: HP LaserJet Professional P1100-P1560-P1600 Series - (.Hewlett-Packard.) [HKLM][64Bits] -- HP LaserJet Professional P1100-P1560-P1600 Series =>.Hewlett-Packard Company®
O42 - Logiciel: HP System Event Utility - (.HP Inc..) [HKLM][64Bits] -- {29E20347-C62F-4657-938E-876A182B67F1} =>.HP Inc.
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel(R) pGFX®
O42 - Logiciel: IronPython 2.7.3 - (.IronPython Team.) [HKLM][64Bits] -- {1EBADAEA-1A0F-40E3-848C-0DD8C5E5A10D} =>.IronPython Team
O42 - Logiciel: iSkysoft Toolbox for Android (Version 5.1.0) - (.iSkysoft Software Co.,Ltd..) [HKLM][64Bits] -- {9CB91A95-C548-4BA5-9D4C-18C7DEAAC30F}_is1 {06CA235604256C403D3AD30F362C84F7}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {64D202EE-E223-422F-AFE9-B41AE606297E} =>.Apple Inc.
O42 - Logiciel: Java 8 Update 151 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F32180151F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: KB4023057 - (.Microsoft Corporation.) [HKLM][64Bits] -- {27C6D60B-CAD4-4C70-A1F2-299C731EA8F7} =>.Microsoft Corporation
O42 - Logiciel: Kodi - (.XBMC-Foundation.) [HKCU][64Bits] -- Kodi =>.XBMC-Foundation
O42 - Logiciel: Malwarebytes version 3.3.1.2183 - (.Malwarebytes.) [HKLM][64Bits] -- {35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1 =>.Malwarebytes Corporation®
O42 - Logiciel: MEmu - (.Microvirt Software Technology Co. Ltd..) [HKLM][64Bits] -- MEmu {299C159C7A2E6CA3BB44606517CA9B24}
O42 - Logiciel: Microsoft Access MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Access MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Access Setup Metadata MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0117-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft DCF MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft DCF MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Excel MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Excel MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Groove MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Groove MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft HEVC Media Extension Installation for Microsoft.HEVCVideoExtensio - (.Microsoft Corporation.) [HKLM][64Bits] -- {B0169E83-757B-EF66-E2F0-391944D785BC} =>.Microsoft Corporation
O42 - Logiciel: Microsoft InfoPath MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft InfoPath MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Lync MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Lync MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe =>.Microsoft Corporation®
O42 - Logiciel: Microsoft OneNote MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft OneNote MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Outlook MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Outlook MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft PowerPoint MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft PowerPoint MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Publisher MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Publisher MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Research Mesh Virtual WIFI - (.Microsoft Research.) [HKLM][64Bits] -- {034A32D5-699E-4AED-A2EB-2CCB6E7F37F1} =>.Microsoft Research
O42 - Logiciel: Microsoft SharePoint Designer MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0017-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Word MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Word MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft X MUI (Arabic) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0101-0401-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Minimal ADB and Fastboot version 1.4.2 - (.Sam Rodberg.) [HKLM][64Bits] -- {1901BAF7-7E78-4041-BC88-D0EE5DD1DFD9}_is1 =>.Sam Rodberg
O42 - Logiciel: Mozilla Firefox 57.0.3 (x64 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 57.0.3 (x64 en-US) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94} =>.Microsoft Corporation
O42 - Logiciel: Need For Speed(TM) Most Wanted v1.5.0.0 / RePack by Baracuda - (.Games Software.) [HKLM][64Bits] -- {767BA4BF-8419-4771-8CE7-9707EB287C32}_is1 =>.Games Software
O42 - Logiciel: PCMSCAN - (.Palmer Performance Engineering.) [HKLM][64Bits] -- {979B748C-6095-4A5A-BC7B-C15E720529D6}
O42 - Logiciel: Personal Accelerator for Revit - (.Autodesk.) [HKLM][64Bits] -- {7C317DB0-F31F-4024-A289-92CF4B6FB256} =>.Autodesk
O42 - Logiciel: Personal Accelerator for Revit - (.Autodesk.) [HKLM][64Bits] -- Personal Accelerator for Revit =>.Autodesk, Inc®
O42 - Logiciel: PlayReady PC Runtime amd64 - (.Microsoft Corporation.) [HKLM][64Bits] -- {BCA9334F-B6C9-4F65-9A73-AC5A329A4D04} =>.Microsoft Corporation
O42 - Logiciel: PMB - (.Sony Corporation.) [HKLM][64Bits] -- {B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C} =>.Sony Corporation
O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM][64Bits] -- PowerISO =>.Power Software Ltd
O42 - Logiciel: Pro Evolution Soccer 2018 - (..) [HKLM][64Bits] -- Pro Evolution Soccer 2018_is1
O42 - Logiciel: progeCAD 2018 Professional English (x64) version 18.0.6.11 - (.ProgeSOFT SA.) [HKLM][64Bits] -- {8FB75ECB-A902-4C49-9E6D-5917644793D3}_is1 {279690B4AFF5C0000D9C3E630503C11F}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.®
O42 - Logiciel: Revit 2017 - (.Autodesk.) [HKLM][64Bits] -- {7346B4A0-1700-0510-0000-705C0D862004} =>.Autodesk
O42 - Logiciel: Revit Content Libraries 2016 - (.Autodesk.) [HKLM][64Bits] -- {941030D0-1600-0410-0000-818BB38A95FC} =>.Autodesk
O42 - Logiciel: Revit Content Libraries 2017 - (.Autodesk.) [HKLM][64Bits] -- {941030D0-1700-0410-0000-818BB38A95FC} =>.Autodesk
O42 - Logiciel: RogueKiller version 12.12.1.0 - (.Adlice Software.) [HKLM][64Bits] -- 8B3D7924-ED89-486B-8322-E8594065D5CB_is1 =>.Adlice®
O42 - Logiciel: ScpToolkit - (.Nefarius Software Solutions.) [HKLM][64Bits] -- {1EA84ED4-28D4-4836-BF8B-0E31BF1704C5} =>.Nefarius Software Solutions
O42 - Logiciel: Security Update for Skype for Business 2015 (KB3191937) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-0401-1000-0000000FF1CE}_Office15.OMUI.ar-sa_{42E7889A-F282-4CD3-8BD5-A78D7E4FB6B3} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Skype for Business 2015 (KB3191937) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6FE94EC3-6C8C-4D87-A846-0DC8A5AE7D9F} =>.Microsoft Corporation®
O42 - Logiciel: SHAREit - (.SHAREit Technologies Co.Ltd.) [HKLM][64Bits] -- www.ushareit.com_is1 =>.SHAREit Technologies Co.Ltd
O42 - Logiciel: SpyHunter 4 - (.Enigma Software Group, LLC.) [HKLM][64Bits] -- SpyHunter
O42 - Logiciel: StarWind V2V Image Converter V8.0 (build 20161115) - (.StarWind Software.) [HKLM][64Bits] -- StarWind Converter_is1 =>.StarWind Software
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey =>.Synaptics Incorporated®
O42 - Logiciel: TeamViewer 12 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer =>.TeamViewer GmbH®
O42 - Logiciel: TV 3L PC version 2.1.4.0 - (.Smart PC Soft, LTD..) [HKLM][64Bits] -- {D8CE29B4-FEA1-46F1-B773-1B5FE502C740}_is1 =>.Smart PC Soft®
O42 - Logiciel: UFR II Printer Driver Uninstaller - (.Canon Inc..) [HKLM][64Bits] -- Canon UFR II Printer Driver =>.CANON INC.®
O42 - Logiciel: Update for Skype for Business 2015 (KB4011638) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{8B0F5A1C-5EFC-423D-91C5-EAB7F8CEC9E7} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2015 (KB4011638) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{8B0F5A1C-5EFC-423D-91C5-EAB7F8CEC9E7} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2015 (KB4011638) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-0401-1000-0000000FF1CE}_Office15.OMUI.ar-sa_{8B0F5A1C-5EFC-423D-91C5-EAB7F8CEC9E7} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2015 (KB4011638) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{8B0F5A1C-5EFC-423D-91C5-EAB7F8CEC9E7} =>.Microsoft Corporation®
O42 - Logiciel: UpdateAssistant - (.Microsoft Corporation.) [HKLM][64Bits] -- {4E67FF7F-C24E-4279-9AB2-C26D57B53742} =>.Microsoft Corporation
O42 - Logiciel: Uplay - (.Ubisoft.) [HKLM][64Bits] -- Uplay =>.Ubisoft Entertainment Sweden AB®
O42 - Logiciel: Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 - (.Microsoft Corporation.) [HKLM][64Bits] -- {6DA2B636-698A-3294-BF4A-B5E11B238CDD}.KB958357 =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 - (.Microsoft Corporation.) [HKLM][64Bits] -- {8CCEA24C-51AE-3B71-9092-7D0C44DDA2DF}.KB958357 =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 - (.Microsoft Corporation.) [HKLM][64Bits] -- {C3A57BB3-9AA6-3F6F-9395-6C062BDD5FC4}.KB958357 =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 - (.Microsoft Corporation.) [HKLM][64Bits] -- {F6F09DD8-F39B-3A16-ADB9-C9E6B56903F9}.KB958357 =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 - (.Microsoft Corporation.) [HKLM][64Bits] -- {04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357 =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 - (.Microsoft Corporation.) [HKLM][64Bits] -- {14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357 =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 - (.Microsoft Corporation.) [HKLM][64Bits] -- {4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357 =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 - (.Microsoft Corporation.) [HKLM][64Bits] -- {B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357 =>.Microsoft Corporation
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: Vulkan Run Time Libraries 1.0.39.1 - (.LunarG, Inc..) [HKLM][64Bits] -- VulkanRT1.0.39.1 =>.LunarG, Inc.®
O42 - Logiciel: Vulkan Run Time Libraries 1.0.54.0 - (.LunarG, Inc..) [HKLM][64Bits] -- VulkanRT1.0.54.0 =>.LunarG, Inc.®
O42 - Logiciel: Vulkan Run Time Libraries 1.0.61.0 - (.LunarG, Inc..) [HKLM][64Bits] -- VulkanRT1.0.61.0 =>.LunarG, Inc.®
O42 - Logiciel: Vulkan Run Time Libraries 1.0.65.0 - (.LunarG, Inc..) [HKLM][64Bits] -- VulkanRT1.0.65.0 =>.LunarG, Inc.®
O42 - Logiciel: Windows 10 Upgrade Assistant - (.Microsoft Corporation.) [HKLM][64Bits] -- {D5C69738-B486-402E-85AC-2456D98A64E4} =>.Microsoft Corporation®
O42 - Logiciel: WinRAR 5.30 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: World in Conflict - (.Ubisoft.) [HKLM][64Bits] -- Uplay Install 90 =>.Ubisoft Entertainment Sweden AB®
O42 - Logiciel: دعم تطبيقات Apple (32 بت) - (.Apple Inc..) [HKLM][64Bits] -- {BC7C46A4-D7A7-48EC-A98C-32A7762B5EFA} =>.Apple Inc.
O42 - Logiciel: دعم تطبيقات Apple (64 بت) - (.Apple Inc..) [HKLM][64Bits] -- {F0C4B709-8BF4-4A72-B527-12E7BF5482F8} =>.Apple Inc.
---\\ HKCU & HKLM Software Keys (172) - 66s
HKLM\SOFTWARE\Adobe =>.Adobe
HKLM\SOFTWARE\Ammyy =>.SUP.Ammyy
HKLM\SOFTWARE\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\ATI =>.ATI
HKLM\SOFTWARE\ATI Technologies =>.ATI Technologies
HKLM\SOFTWARE\Autodesk =>.Autodesk
HKLM\SOFTWARE\Baidu_Drp_pos =>.Baidu Technology
HKLM\SOFTWARE\C:
HKLM\SOFTWARE\Canon =>.Canon
HKLM\SOFTWARE\Caphyon =>.Caphyon
HKLM\SOFTWARE\Computers and Structures, Inc. =>.Computers and Structures, Inc.
HKLM\SOFTWARE\DC-Unlocker
HKLM\SOFTWARE\DTP =>.DTP
HKLM\SOFTWARE\EA Games =>.EA Games
HKLM\SOFTWARE\ESET =>.ESET
HKLM\SOFTWARE\Flashtool =>.Androxyde
HKLM\SOFTWARE\Google =>.Google
HKLM\SOFTWARE\HewlettPackard =>.Hewlett-Packard
HKLM\SOFTWARE\Intel =>.Intel
HKLM\SOFTWARE\IronPython =>.Python
HKLM\SOFTWARE\iSkysoft =>.iSkysoft Software
HKLM\SOFTWARE\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\Khronos =>.Khronos
HKLM\SOFTWARE\Macromedia =>.Macromedia
HKLM\SOFTWARE\Mozilla =>.Mozilla
HKLM\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Nefarius Software Solutions =>.Nefarius Software Solutions
HKLM\SOFTWARE\Nuance =>.Nuance
HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\PowerISO =>.PowerISO Computing
HKLM\SOFTWARE\PowerPivot =>.PowerPivot
HKLM\SOFTWARE\PTE Patch 2016 =>.Games Software
HKLM\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\SecureAge Technology =>.SecureAge Technology
HKLM\SOFTWARE\SHAREit Technologies =>..SUP.SHAREit
HKLM\SOFTWARE\Sony Corporation =>.Sony Corporation
HKLM\SOFTWARE\Synetic =>.Synetic
HKLM\SOFTWARE\TeamViewer =>.TeamViewer
HKLM\SOFTWARE\TrueSoftware =>.TrueSoftware
HKLM\SOFTWARE\TVInstallTemp =>.TeamViewer GmbH
HKLM\SOFTWARE\Ubisoft =>.Ubisoft
HKLM\SOFTWARE\Valve =>.Valve
HKLM\SOFTWARE\VideoLAN =>.VideoLAN
HKLM\SOFTWARE\Volatile =>.Microsoft Corporation
HKLM\SOFTWARE\WafCX =>.WafCX
HKLM\SOFTWARE\WinRAR =>.WinRAR
HKLM\SOFTWARE\Wondershare =>.Wondershare
HKLM\SOFTWARE\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\WOW6432Node\Ammyy =>.SUP.Ammyy
HKLM\SOFTWARE\WOW6432Node\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\WOW6432Node\ATI =>.ATI
HKLM\SOFTWARE\WOW6432Node\ATI Technologies =>.ATI Technologies
HKLM\SOFTWARE\WOW6432Node\Autodesk =>.Autodesk
HKLM\SOFTWARE\WOW6432Node\Baidu_Drp_pos =>.Baidu Technology
HKLM\SOFTWARE\WOW6432Node\C: =>Trojan.Downloader
HKLM\SOFTWARE\WOW6432Node\Canon =>.Canon
HKLM\SOFTWARE\WOW6432Node\Caphyon =>.Caphyon
HKLM\SOFTWARE\WOW6432Node\Computers and Structures, Inc. =>.Computers and Structures, Inc.
HKLM\SOFTWARE\WOW6432Node\DC-Unlocker
HKLM\SOFTWARE\WOW6432Node\DTP =>.DTP
HKLM\SOFTWARE\WOW6432Node\EA Games =>.EA Games
HKLM\SOFTWARE\WOW6432Node\ESET =>.ESET
HKLM\SOFTWARE\WOW6432Node\Flashtool =>.Androxyde
HKLM\SOFTWARE\WOW6432Node\Google =>.Google
HKLM\SOFTWARE\WOW6432Node\HewlettPackard =>.Hewlett-Packard
HKLM\SOFTWARE\WOW6432Node\Intel =>.Intel
HKLM\SOFTWARE\WOW6432Node\IronPython =>.Python
HKLM\SOFTWARE\WOW6432Node\iSkysoft =>.iSkysoft Software
HKLM\SOFTWARE\WOW6432Node\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\WOW6432Node\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\WOW6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\WOW6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\WOW6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\WOW6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\WOW6432Node\Nefarius Software Solutions =>.Nefarius Software Solutions
HKLM\SOFTWARE\WOW6432Node\Nuance =>.Nuance
HKLM\SOFTWARE\WOW6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\WOW6432Node\PowerISO =>.PowerISO Computing
HKLM\SOFTWARE\WOW6432Node\PowerPivot =>.PowerPivot
HKLM\SOFTWARE\WOW6432Node\PTE Patch 2016 =>.Games Software
HKLM\SOFTWARE\WOW6432Node\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\WOW6432Node\SecureAge Technology =>.SecureAge Technology
HKLM\SOFTWARE\WOW6432Node\SHAREit Technologies =>..SUP.SHAREit
HKLM\SOFTWARE\WOW6432Node\Sony Corporation =>.Sony Corporation
HKLM\SOFTWARE\WOW6432Node\Synetic =>.Synetic
HKLM\SOFTWARE\WOW6432Node\TeamViewer =>.TeamViewer
HKLM\SOFTWARE\WOW6432Node\TrueSoftware =>.TrueSoftware
HKLM\SOFTWARE\WOW6432Node\TVInstallTemp =>.TeamViewer GmbH
HKLM\SOFTWARE\WOW6432Node\Ubisoft =>.Ubisoft
HKLM\SOFTWARE\WOW6432Node\Valve =>.Valve
HKLM\SOFTWARE\WOW6432Node\VideoLAN =>.VideoLAN
HKLM\SOFTWARE\WOW6432Node\Volatile =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\WafCX =>.WafCX
HKLM\SOFTWARE\WOW6432Node\WinRAR =>.WinRAR
HKLM\SOFTWARE\WOW6432Node\Wondershare =>.Wondershare
HKLM\SOFTWARE\WOW6432Node\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\5cd8f17f4086744065eb0992a09e05a2 =>Adware.CrossRider
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\Affinix =>.Affinix Software
HKCU\SOFTWARE\Akamai =>.SUP.AkamaiHD
HKCU\SOFTWARE\Akeo Consulting =>.Akeo Consulting
HKCU\SOFTWARE\AMD =>.AMD
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc. =>.Apple Inc.
HKCU\SOFTWARE\ATI =>.ATI
HKCU\SOFTWARE\Autodesk =>.Autodesk
HKCU\SOFTWARE\Baidu Security =>.Baidu Technology
HKCU\SOFTWARE\Baidu WiFiHotspot
HKCU\SOFTWARE\BlueStacks =>.BlueStack Systems, Inc.
HKCU\SOFTWARE\Canon =>.Canon
HKCU\SOFTWARE\Caphyon =>.Caphyon
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\DuoDianApp =>.DuoDianApp
HKCU\SOFTWARE\DynamoStability
HKCU\SOFTWARE\DynamoUXG
HKCU\SOFTWARE\ej-technologies =>.ej-technologies
HKCU\SOFTWARE\ERDAS =>.Erdas Inc
HKCU\SOFTWARE\ESET =>.ESET
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\GrandUtils
HKCU\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard
HKCU\SOFTWARE\HP =>.HP
HKCU\SOFTWARE\IM Providers =>.IM Providers
HKCU\SOFTWARE\iMazing
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\IO Interactive =>.IO Interactive
HKCU\SOFTWARE\IronPython =>.Python
HKCU\SOFTWARE\iSkysoft =>.iSkysoft Software
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\JavaVersion
HKCU\SOFTWARE\Kodi =>.XBMC Foundation
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\Malwarebytes =>.Malwarebytes
HKCU\SOFTWARE\Marvell =>.Marvell
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKCU\SOFTWARE\PANTONE =>.PANTONE
HKCU\SOFTWARE\Piriform =>.Piriform
HKCU\SOFTWARE\PowerISO =>.PowerISO Computing
HKCU\SOFTWARE\ProgeCAD =>.progeCAD
HKCU\SOFTWARE\PSOFT =>.PSOFT
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\SaurikIT =>.SaurikIT, LLC
HKCU\SOFTWARE\Scarlet.Crush Productions =>.Scarlet.Crush Productions
HKCU\SOFTWARE\SecureAge Technology =>.SecureAge Technology
HKCU\SOFTWARE\SHAREit Technologies =>..SUP.SHAREit
HKCU\SOFTWARE\Sony Corporation =>.Sony Corporation
HKCU\SOFTWARE\StripMtext
HKCU\SOFTWARE\Synaptics =>.Synaptics
HKCU\SOFTWARE\Sysinternals =>.Sysinternals
HKCU\SOFTWARE\TeamViewer =>.TeamViewer
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\Tukero[X]Team =>.Tukero[X]Team
HKCU\SOFTWARE\undefined =>.SUP.Downloader
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\VB and VBA Program Settings =>.Microsoft Corporation
HKCU\SOFTWARE\VideoLAN =>.VideoLAN
HKCU\SOFTWARE\WGSoft =>.WGSoft
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\Wondershare =>.Wondershare
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
---\\ Contents of the Common Files folders (384) - 177s
O43 - CFD: 04/05/2017 - [] D -- C:\Program Files\Adobe =>.Adobe
O43 - CFD: 26/12/2017 - [] AD -- C:\Program Files\AMD =>.Advanced Micro Devices, Inc.®
O43 - CFD: 26/08/2017 - [] AD -- C:\Program Files\Autodesk =>.Autodesk
O43 - CFD: 22/08/2017 - [] AD -- C:\Program Files\Bonjour =>.Apple Inc.
O43 - CFD: 03/05/2017 - [] D -- C:\Program Files\Canon =>.CANON INC.®
O43 - CFD: 18/01/2018 - [] AD -- C:\Program Files\CCleaner =>.Piriform Ltd
O43 - CFD: 26/12/2017 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 18/01/2018 - [] D -- C:\Program Files\Enigma Software Group =>.Enigma Software Group, LLC
O43 - CFD: 18/01/2018 - [] D -- C:\Program Files\ESET =>.ESET, spol. s r.o.®
O43 - CFD: 07/01/2018 - [] D -- C:\Program Files\HP =>.Hewlett-Packard
O43 - CFD: 29/12/2017 - [] D -- C:\Program Files\Hyper-V =>.Microsoft Corporation
O43 - CFD: 25/12/2017 - [] D -- C:\Program Files\Intel =>.Intel Corporation
O43 - CFD: 09/01/2018 - [] D -- C:\Program Files\internet explorer =>.Microsoft Corporation
O43 - CFD: 14/12/2017 - [] D -- C:\Program Files\iPod =>.Apple Inc.®
O43 - CFD: 14/12/2017 - [] AD -- C:\Program Files\iTunes =>.Apple Inc.
O43 - CFD: 27/12/2017 - [] D -- C:\Program Files\Malwarebytes =>.Malwarebytes
O43 - CFD: 30/04/2017 - [] D -- C:\Program Files\Microsoft Analysis Services =>.Microsoft Corporation
O43 - CFD: 30/04/2017 - [] AD -- C:\Program Files\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 09/08/2017 - [] AD -- C:\Program Files\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 02/05/2017 - [] D -- C:\Program Files\Microsoft SQL Server =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\Program Files\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 12/01/2018 - [] AD -- C:\Program Files\Mozilla Firefox =>.Mozilla
O43 - CFD: 02/05/2017 - [] D -- C:\Program Files\MPC-HC =>.MPC-HC Team
O43 - CFD: 25/12/2017 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 28/12/2017 - [] D -- C:\Program Files\Nefarius Software Solutions =>.Open Source Developer, Benjamin Höglinger-Stelzer®
O43 - CFD: 03/05/2017 - [] AD -- C:\Program Files\PlayReady =>.Microsoft Corporation
O43 - CFD: 30/04/2017 - [] AD -- C:\Program Files\PowerISO =>.PowerISO Computing
O43 - CFD: 11/11/2017 - [] D -- C:\Program Files\PSOFT =>.PSOFT
O43 - CFD: 25/12/2017 - [] D -- C:\Program Files\Realtek =>.Realtek
O43 - CFD: 25/12/2017 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 21/07/2017 - [] AD -- C:\Program Files\rempl =>.Microsoft Corporation®
O43 - CFD: 27/01/2018 - [] D -- C:\Program Files\RogueKiller =>.Adlice Software
O43 - CFD: 29/12/2017 - [] D -- C:\Program Files\Scarlet. Crush Productions
O43 - CFD: 22/06/2017 - [] D -- C:\Program Files\supdt
O43 - CFD: 25/12/2017 - [] D -- C:\Program Files\Synaptics =>.Synaptics Incorporated®
O43 - CFD: 26/07/2017 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 12/08/2017 - [] D -- C:\Program Files\VideoLAN =>.VideoLan Team
O43 - CFD: 29/12/2017 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 29/12/2017 - [] D -- C:\Program Files\Windows Defender Advanced Threat Protection =>.Microsoft Corporation
O43 - CFD: 25/12/2017 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 29/12/2017 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\windows nt =>.Microsoft Corporation
O43 - CFD: 29/12/2017 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\Windows Security =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] SHD -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 26/01/2018 - [] HD -- C:\Program Files\WindowsApps =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 28/08/2017 - [] AD -- C:\Program Files (x86)\Adobe =>.Adobe Systems Incorporated®
O43 - CFD: 30/04/2017 - [] AD -- C:\Program Files (x86)\AMD =>.Advanced Micro Devices, Inc.®
O43 - CFD: 16/09/2017 - [] AD -- C:\Program Files (x86)\Apple Software Update =>.Apple Inc.
O43 - CFD: 30/04/2017 - [] D -- C:\Program Files (x86)\Autodesk =>.Autodesk
O43 - CFD: 23/12/2017 - [] D -- C:\Program Files (x86)\Avira =>.Avira Software
O43 - CFD: 17/08/2017 - [] D -- C:\Program Files (x86)\Bignox =>.BigNox
O43 - CFD: 22/08/2017 - [] AD -- C:\Program Files (x86)\Bonjour =>.Apple Inc.
O43 - CFD: 09/05/2017 - [] D -- C:\Program Files (x86)\Canon =>.Canon
O43 - CFD: 26/12/2017 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 19/08/2017 - [] D -- C:\Program Files (x86)\Computers and Structures =>.Computers and Structures, Inc.
O43 - CFD: 04/12/2017 - [] D -- C:\Program Files (x86)\Elite Software
O43 - CFD: 25/11/2017 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 24/12/2017 - [] D -- C:\Program Files (x86)\HP =>.Hewlett-Packard
O43 - CFD: 30/04/2017 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation
O43 - CFD: 09/01/2018 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 24/08/2017 - [] AD -- C:\Program Files (x86)\IronPython 2.7 =>.Python
O43 - CFD: 07/05/2017 - [] D -- C:\Program Files (x86)\iSkysoft =>.BugSplat LLC®
O43 - CFD: 14/11/2017 - [] D -- C:\Program Files (x86)\Java =>.Oracle
O43 - CFD: 17/11/2017 - [] D -- C:\Program Files (x86)\Kodi =>.XBMC Foundation
O43 - CFD: 30/04/2017 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services =>.Microsoft Corporation
O43 - CFD: 30/04/2017 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 09/01/2018 - [] D -- C:\Program Files (x86)\Microsoft Research =>.Microsoft Corporation
O43 - CFD: 27/12/2017 - [] D -- C:\Program Files (x86)\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 02/05/2017 - [] D -- C:\Program Files (x86)\Microsoft SQL Server =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 11/01/2018 - [] D -- C:\Program Files (x86)\Minimal ADB and Fastboot
O43 - CFD: 14/07/2017 - [] D -- C:\Program Files (x86)\Mobile Partner =>.HUAWEI Technologies Co., Ltd.®
O43 - CFD: 13/07/2017 - [] D -- C:\Program Files (x86)\MobileBrServ =>.Huawei Technologies Co.,Ltd
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla
O43 - CFD: 12/01/2018 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla
O43 - CFD: 25/12/2017 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 15/05/2017 - [] D -- C:\Program Files (x86)\MSECache =>.Microsoft Corporation
O43 - CFD: 15/08/2017 - [] AD -- C:\Program Files (x86)\MSXML 4.0 =>.Microsoft Corporation
O43 - CFD: 17/08/2017 - [0] D -- C:\Program Files (x86)\Nox =>.FFmpeg Project
O43 - CFD: 14/12/2017 - [] D -- C:\Program Files (x86)\PCMSCAN
O43 - CFD: 19/05/2017 - [] D -- C:\Program Files (x86)\R.G. Games
O43 - CFD: 25/12/2017 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 30/04/2017 - [] D -- C:\Program Files (x86)\SHAREit Technologies =>.SHAREit Technologies Co.Ltd®
O43 - CFD: 02/05/2017 - [] D -- C:\Program Files (x86)\Smart PC Soft =>.Smart PC Soft
O43 - CFD: 15/08/2017 - [] D -- C:\Program Files (x86)\Sony =>.Sony
O43 - CFD: 24/12/2017 - [] D -- C:\Program Files (x86)\StarWind Software =>.StarWind Software
O43 - CFD: 14/01/2018 - [] AD -- C:\Program Files (x86)\TeamViewer =>.TeamViewer GmbH
O43 - CFD: 23/12/2017 - [] D -- C:\Program Files (x86)\Ubisoft =>.Ubisoft
O43 - CFD: 04/11/2017 - [] D -- C:\Program Files (x86)\VideoLAN =>.VideoLan Team
O43 - CFD: 14/12/2017 - [] D -- C:\Program Files (x86)\VulkanRT =>.LunarG, Inc
O43 - CFD: 29/12/2017 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 25/12/2017 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 29/12/2017 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\windows nt =>.Microsoft Corporation
O43 - CFD: 29/12/2017 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] SHD -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 02/05/2017 - [] AD -- C:\Program Files (x86)\WinRAR =>.win.rar GmbH®
O43 - CFD: 08/01/2018 - [] D -- C:\Program Files (x86)\Wondershare =>.Wondershare
O43 - CFD: 29/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 25/12/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Problem Report Wizard
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings =>.Advanced Micro Devices Inc
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoCAD 2018 - English
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk =>.Autodesk
O43 - CFD: 21/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira =>.Avira Software
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner =>.Piriform Ltd
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Color Network ScanGear
O43 - CFD: 26/07/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike Global Offensive
O43 - CFD: 26/07/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crash Time 5 - Undercover
O43 - CFD: 18/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET =>.ESET
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ETABS 2016 Eval
O43 - CFD: 17/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 17 =>.Electronic Arts, Inc.
O43 - CFD: 07/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP =>.Hewlett-Packard
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IronPython 2.7 =>.Python
O43 - CFD: 25/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iSkysoft =>.iSkySoft
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes =>.Apple Inc.
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java =>.Oracle
O43 - CFD: 25/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KaOs
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodi =>.XBMC Foundation
O43 - CFD: 29/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 18/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes =>.Malwarebytes
O43 - CFD: 10/01/2018 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 =>.Microsoft Corporation
O43 - CFD: 27/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 11/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minimal ADB and Fastboot
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64 =>.MPC-HC Team
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMB =>.Sony Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO =>.PowerISO Computing
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\progeCAD 2018 - English (x64)
O43 - CFD: 25/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Games
O43 - CFD: 27/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller =>.Adlice Software
O43 - CFD: 10/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScpToolkit
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHAREit =>.Lenovo Group Limited
O43 - CFD: 25/01/2018 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp =>.Microsoft Corporation
O43 - CFD: 25/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarWind Software =>.StarWind Software
O43 - CFD: 29/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TV 3L PC
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLan Team
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 08/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare =>.Wondershare
O43 - CFD: 28/08/2017 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 14/07/2017 - [] D -- C:\ProgramData\AMMYY =>.SUP.Ammyy
O43 - CFD: 22/08/2017 - [] D -- C:\ProgramData\Apple =>.Apple Inc.
O43 - CFD: 22/08/2017 - [] D -- C:\ProgramData\Apple Computer =>.Apple Inc.
O43 - CFD: 26/12/2017 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 30/04/2017 - [] D -- C:\ProgramData\ATI =>.ATI
O43 - CFD: 26/08/2017 - [] AD -- C:\ProgramData\Autodesk =>.Autodesk
O43 - CFD: 23/12/2017 - [] D -- C:\ProgramData\Avira =>.Avira Software
O43 - CFD: 24/08/2017 - [] D -- C:\ProgramData\boost_interprocess =>.boost.org
O43 - CFD: 30/04/2017 - [] D -- C:\ProgramData\Canon =>.Canon
O43 - CFD: 30/04/2017 - [] D -- C:\ProgramData\ClamAV =>.Legitimate
O43 - CFD: 30/10/2015 - [0] D -- C:\ProgramData\Comms =>.Microsoft Corporation
O43 - CFD: 14/07/2017 - [] D -- C:\ProgramData\DatacardService =>.Entriq, Inc.
O43 - CFD: 26/12/2017 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation
O43 - CFD: 31/10/2017 - [] D -- C:\ProgramData\DigiDNA =>.DigiDNA
O43 - CFD: 26/12/2017 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 17/11/2017 - [] D -- C:\ProgramData\Electronic Arts =>.Electronic Arts
O43 - CFD: 18/01/2018 - [] D -- C:\ProgramData\ESET =>.ESET
O43 - CFD: 30/04/2017 - [] D -- C:\ProgramData\FARO =>.FARO
O43 - CFD: 24/08/2017 - [] D -- C:\ProgramData\FLEXnet =>.Flexera Software
O43 - CFD: 24/12/2017 - [] D -- C:\ProgramData\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 07/05/2017 - [] D -- C:\ProgramData\iSkysoft =>.iSkySoft
O43 - CFD: 27/01/2018 - [] D -- C:\ProgramData\KMSAutoS =>HackTool.WinActivator
O43 - CFD: 25/01/2018 - [] D -- C:\ProgramData\KONAMI =>.Konami
O43 - CFD: 18/01/2018 - [] D -- C:\ProgramData\Malwarebytes =>.Malwarebytes
O43 - CFD: 17/01/2018 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation
O43 - CFD: 10/01/2018 - [] D -- C:\ProgramData\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\Microsoft OneDrive =>.Microsoft Corporation
O43 - CFD: 30/04/2017 - [] D -- C:\ProgramData\Microsoft Toolkit =>.Microsoft Corporation
O43 - CFD: 14/01/2018 - [] D -- C:\ProgramData\Nefarius Software Solutions =>.Nefarius Software Solutions
O43 - CFD: 14/11/2017 - [] D -- C:\ProgramData\Oracle =>.Oracle
O43 - CFD: 16/11/2017 - [] D -- C:\ProgramData\Origin =>.Electronic Arts, Inc.
O43 - CFD: 28/12/2017 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 17/01/2018 - [] D -- C:\ProgramData\PSOFT =>.PSOFT
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\regid.1986-12.com.adobe =>.Adobe Inc.
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft =>.Microsoft Corporation
O43 - CFD: 15/11/2017 - [0] D -- C:\ProgramData\RevitInterProcess
O43 - CFD: 27/01/2018 - [] D -- C:\ProgramData\RogueKiller =>.Adlice Software
O43 - CFD: 19/08/2017 - [] D -- C:\ProgramData\SafeNet Sentinel =>.SafeNet
O43 - CFD: 30/04/2017 - [] D -- C:\ProgramData\SecureAge Technology =>.SecureAge Technology
O43 - CFD: 08/08/2017 - [] SHD -- C:\ProgramData\SecuROM =>.SecuROM
O43 - CFD: 22/11/2017 - [] D -- C:\ProgramData\Socialclub =>.Legitimate
O43 - CFD: 29/09/2017 - [0] D -- C:\ProgramData\SoftwareDistribution =>.Microsoft Corporation
O43 - CFD: 09/05/2017 - [0] D -- C:\ProgramData\SolidDocuments =>.SolidDocuments
O43 - CFD: 15/08/2017 - [] D -- C:\ProgramData\Sony Corporation =>.Sony Corporation
O43 - CFD: 26/07/2017 - [] D -- C:\ProgramData\SRS Labs =>.SRS Labs
O43 - CFD: 26/12/2017 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation
O43 - CFD: 14/06/2017 - [] D -- C:\ProgramData\Steam =>.Steam Games
O43 - CFD: 30/04/2017 - [] D -- C:\ProgramData\Synaptics =>.Synaptics
O43 - CFD: 01/06/2017 - [] D -- C:\ProgramData\Synetic =>.Synetic
O43 - CFD: 26/12/2017 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\USOPrivate =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\ProgramData\USOShared =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\ProgramData\WindowsHolographicDevices =>.Microsoft Corporation
O43 - CFD: 08/01/2018 - [] D -- C:\ProgramData\Wondershare =>.Wondershare
O43 - CFD: 07/05/2017 - [] D -- C:\ProgramData\wsr
O43 - CFD: 30/11/2017 - [] D -- C:\ProgramData\X360CE =>.Microsoft Corporation
O43 - CFD: 19/08/2017 - [] D -- C:\ProgramData\{80E395FA-7630-4011-BB34-91DBDC5AE93B}
O43 - CFD: 28/08/2017 - [] AD -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 22/08/2017 - [] D -- C:\Program Files (x86)\Common Files\Apple =>.Apple Inc.
O43 - CFD: 03/05/2017 - [] AD -- C:\Program Files (x86)\Common Files\Autodesk Shared =>.Autodesk
O43 - CFD: 25/12/2017 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation
O43 - CFD: 14/11/2017 - [] D -- C:\Program Files (x86)\Common Files\Java =>.Oracle
O43 - CFD: 26/12/2017 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 29/12/2017 - [] D -- C:\Program Files (x86)\Common Files\system =>.Microsoft Corporation
O43 - CFD: 14/12/2017 - [] D -- C:\Program Files (x86)\Common Files\Wise Installation Wizard =>.Seagate
O43 - CFD: 11/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\ADBDriverInstaller =>.Samsung Electronics
O43 - CFD: 28/08/2017 - [] D -- C:\Users\HP\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 30/08/2017 - [] D -- C:\Users\HP\AppData\Roaming\Analytics
O43 - CFD: 23/08/2017 - [] D -- C:\Users\HP\AppData\Roaming\Apple Computer =>.Apple Inc.
O43 - CFD: 13/08/2017 - [] D -- C:\Users\HP\AppData\Roaming\Appԁata
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Roaming\ATI =>.ATI
O43 - CFD: 05/06/2017 - [] D -- C:\Users\HP\AppData\Roaming\Autodesk =>.Autodesk
O43 - CFD: 09/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\Baidu =>.Baidu
O43 - CFD: 27/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\BitTorrent
O43 - CFD: 17/08/2017 - [0] D -- C:\Users\HP\AppData\Roaming\BluestacksCN
O43 - CFD: 02/05/2017 - [] D -- C:\Users\HP\AppData\Roaming\DRPNPS
O43 - CFD: 28/08/2017 - [] D -- C:\Users\HP\AppData\Roaming\Dynamo
O43 - CFD: 04/12/2017 - [] D -- C:\Users\HP\AppData\Roaming\Elite Software
O43 - CFD: 18/01/2018 - [0] D -- C:\Users\HP\AppData\Roaming\Enigma Software Group =>.Enigma Software Group, LLC
O43 - CFD: 15/07/2017 - [] D -- C:\Users\HP\AppData\Roaming\ESET =>.ESET
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Roaming\Google =>.Google
O43 - CFD: 24/12/2017 - [] D -- C:\Users\HP\AppData\Roaming\hpqLog =>.Hewlett-Packard
O43 - CFD: 07/05/2017 - [] D -- C:\Users\HP\AppData\Roaming\iSkysoft =>.iSkySoft
O43 - CFD: 26/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\Kodi =>.XBMC Foundation
O43 - CFD: 11/11/2017 - [] SHD -- C:\Users\HP\AppData\Roaming\Latas
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 26/12/2017 - [] SD -- C:\Users\HP\AppData\Roaming\Microsoft =>.Microsoft Corporation
O43 - CFD: 30/11/2017 - [] D -- C:\Users\HP\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Roaming\MPC-HC =>.MPC-HC Team
O43 - CFD: 13/12/2017 - [0] D -- C:\Users\HP\AppData\Roaming\mpv
O43 - CFD: 28/12/2017 - [] D -- C:\Users\HP\AppData\Roaming\Nefarius Software Solutions =>.Nefarius Software Solutions
O43 - CFD: 29/05/2017 - [] D -- C:\Users\HP\AppData\Roaming\PDAppFlex =>Trojan.Elpman
O43 - CFD: 13/08/2017 - [] SHD -- C:\Users\HP\AppData\Roaming\Pr
O43 - CFD: 11/11/2017 - [] D -- C:\Users\HP\AppData\Roaming\PSOFT =>.PSOFT
O43 - CFD: 09/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\ScanMaster-ELM
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Roaming\SecureAge Technology =>.SecureAge Technology
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Roaming\Skype =>.Skype
O43 - CFD: 09/05/2017 - [] D -- C:\Users\HP\AppData\Roaming\SolidDocuments =>.SolidDocuments
O43 - CFD: 15/08/2017 - [] D -- C:\Users\HP\AppData\Roaming\Sony Corporation =>.Sony Corporation
O43 - CFD: 14/11/2017 - [] D -- C:\Users\HP\AppData\Roaming\Sun =>.Oracle
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Roaming\Synaptics =>.Synaptics
O43 - CFD: 13/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\TeamViewer =>.TeamViewer GmbH
O43 - CFD: 16/07/2017 - [] D -- C:\Users\HP\AppData\Roaming\Umeng
O43 - CFD: 17/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\vlc =>.VideoLan Team
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 08/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\Wondershare =>.Wondershare
O43 - CFD: 27/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 04/11/2017 - [] D -- C:\Users\HP\AppData\Local\ACTI2.0
O43 - CFD: 30/04/2017 - [0] D -- C:\Users\HP\AppData\Local\ActiveSync =>.Microsoft Corporation
O43 - CFD: 24/12/2017 - [] D -- C:\Users\HP\AppData\Local\Adobe =>.Adobe
O43 - CFD: 06/11/2017 - [] D -- C:\Users\HP\AppData\Local\Akamai =>.SUP.AkamaiHD
O43 - CFD: 18/12/2017 - [] D -- C:\Users\HP\AppData\Local\AMD =>.AMD
O43 - CFD: 22/08/2017 - [] D -- C:\Users\HP\AppData\Local\Apple =>.Apple Inc.
O43 - CFD: 22/08/2017 - [] D -- C:\Users\HP\AppData\Local\Apple Computer =>.Apple Inc.
O43 - CFD: 26/12/2017 - [0] SHD -- C:\Users\HP\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 18/12/2017 - [] D -- C:\Users\HP\AppData\Local\Apps =>.Microsoft Corporation
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Local\ATI =>.ATI
O43 - CFD: 09/11/2017 - [] D -- C:\Users\HP\AppData\Local\Autodesk =>.Autodesk
O43 - CFD: 28/12/2017 - [] D -- C:\Users\HP\AppData\Local\BetterDS3
O43 - CFD: 29/11/2017 - [] D -- C:\Users\HP\AppData\Local\Bluestacks =>.BlueStack Systems, Inc.
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Local\CEF =>.CEF
O43 - CFD: 17/11/2017 - [] D -- C:\Users\HP\AppData\Local\Comms =>.Microsoft Corporation
O43 - CFD: 19/08/2017 - [] D -- C:\Users\HP\AppData\Local\Computers and Structures =>.Computers and Structures, Inc.
O43 - CFD: 26/12/2017 - [] D -- C:\Users\HP\AppData\Local\ConnectedDevicesPlatform =>.Microsoft Corporation
O43 - CFD: 09/08/2017 - [0] D -- C:\Users\HP\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 26/07/2017 - [0] D -- C:\Users\HP\AppData\Local\DBG =>.DBG
O43 - CFD: 14/01/2018 - [] D -- C:\Users\HP\AppData\Local\Diagnostics =>.Microsoft Corporation
O43 - CFD: 31/10/2017 - [] D -- C:\Users\HP\AppData\Local\DigiDNA =>.DigiDNA
O43 - CFD: 09/01/2018 - [] D -- C:\Users\HP\AppData\Local\Downloaded Installations =>.Microsoft Corporation
O43 - CFD: 24/01/2018 - [] D -- C:\Users\HP\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation
O43 - CFD: 04/12/2017 - [] D -- C:\Users\HP\AppData\Local\Elite Software
O43 - CFD: 20/12/2017 - [] D -- C:\Users\HP\AppData\Local\Embratoria =>.Embratoria
O43 - CFD: 15/07/2017 - [] D -- C:\Users\HP\AppData\Local\ESET =>.ESET
O43 - CFD: 02/05/2017 - [] D -- C:\Users\HP\AppData\Local\Geckofx =>.Geckofx
O43 - CFD: 25/11/2017 - [] D -- C:\Users\HP\AppData\Local\Google =>.Google
O43 - CFD: 26/12/2017 - [0] SHD -- C:\Users\HP\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 27/01/2018 - [] D -- C:\Users\HP\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 16/11/2017 - [] D -- C:\Users\HP\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Local\MicrosoftEdge =>.Microsoft Corporation
O43 - CFD: 14/01/2018 - [] D -- C:\Users\HP\AppData\Local\Microvirt =>.Microvirt
O43 - CFD: 30/11/2017 - [] D -- C:\Users\HP\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\Users\HP\AppData\Local\MSfree Inc =>HackTool.WinActivator
O43 - CFD: 30/04/2017 - [0] D -- C:\Users\HP\AppData\Local\NetworkTiles =>.NetworkTiles
O43 - CFD: 17/08/2017 - [] D -- C:\Users\HP\AppData\Local\Nox =>.FFmpeg Project
O43 - CFD: 10/01/2018 - [] D -- C:\Users\HP\AppData\Local\Packages =>.Microsoft Corporation
O43 - CFD: 30/04/2017 - [0] D -- C:\Users\HP\AppData\Local\PeerDistRepub =>.Microsoft Corporation
O43 - CFD: 08/01/2018 - [0] D -- C:\Users\HP\AppData\Local\PlaceholderTileLogoFolder
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Local\Publishers =>.Microsoft Corporation
O43 - CFD: 06/09/2017 - [0] D -- C:\Users\HP\AppData\Local\RaaSForRevitAddin
O43 - CFD: 04/11/2017 - [] D -- C:\Users\HP\AppData\Local\RadeonInstaller
O43 - CFD: 03/08/2017 - [] D -- C:\Users\HP\AppData\Local\Recovery =>.Recovery Labs
O43 - CFD: 17/07/2017 - [] D -- C:\Users\HP\AppData\Local\Rockstar Games =>.Rockstar Games
O43 - CFD: 30/04/2017 - [] D -- C:\Users\HP\AppData\Local\SHAREit Technologies
O43 - CFD: 11/01/2018 - [] D -- C:\Users\HP\AppData\Local\SHAREit_Technologies_Co.L
O43 - CFD: 20/11/2017 - [] D -- C:\Users\HP\AppData\Local\Smart PC Soft =>.Smart PC Soft
O43 - CFD: 14/11/2017 - [] D -- C:\Users\HP\AppData\Local\Smart_PC_Soft =>.Smart PC Soft
O43 - CFD: 12/08/2017 - [] D -- C:\Users\HP\AppData\Local\speech =>.Microsoft Corporation
O43 - CFD: 27/01/2018 - [] D -- C:\Users\HP\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [0] SHD -- C:\Users\HP\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 21/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign029fc3a71e11be3f =>.SUP.Temporary
O43 - CFD: 25/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign117eb30c0d08c40b =>.SUP.Temporary
O43 - CFD: 19/09/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign247f7cf38fc04e5d =>.SUP.Temporary
O43 - CFD: 14/05/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign2d0b2cffe39fde4e =>.SUP.Temporary
O43 - CFD: 14/05/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign3cbb35943e7048b1 =>.SUP.Temporary
O43 - CFD: 25/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign3da1615d062e65bd =>.SUP.Temporary
O43 - CFD: 14/05/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign4d163639a858b2c7 =>.SUP.Temporary
O43 - CFD: 19/09/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign4ea31d676fe2ddc6 =>.SUP.Temporary
O43 - CFD: 17/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign4f203f1d04afb6a0 =>.SUP.Temporary
O43 - CFD: 17/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign555e0f44ce5939ff =>.SUP.Temporary
O43 - CFD: 19/09/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign5daa5d261229090a =>.SUP.Temporary
O43 - CFD: 16/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign6c2865db5cf1675e =>.SUP.Temporary
O43 - CFD: 06/05/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign73ffcc09c1afe6f5 =>.SUP.Temporary
O43 - CFD: 17/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign74378edb96195a0c =>.SUP.Temporary
O43 - CFD: 16/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign7c6979147ea4af2a =>.SUP.Temporary
O43 - CFD: 14/05/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsign973f23cc07412fcc =>.SUP.Temporary
O43 - CFD: 25/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsigna26107e25cf3c96e =>.SUP.Temporary
O43 - CFD: 16/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsigna63f429788279ab3 =>.SUP.Temporary
O43 - CFD: 17/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsignc2d8506218b72a83 =>.SUP.Temporary
O43 - CFD: 21/07/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsigncdf4925f0580d85b =>.SUP.Temporary
O43 - CFD: 06/05/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsignd1e8e1a0fe0b9d99 =>.SUP.Temporary
O43 - CFD: 06/05/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsignd684eace63e7bb9c =>.SUP.Temporary
O43 - CFD: 14/05/2017 - [0] D -- C:\Users\HP\AppData\Local\Tempzxpsigne497590a4cd7ccb8 =>.SUP.Temporary
O43 - CFD: 26/12/2017 - [] D -- C:\Users\HP\AppData\Local\TileDataLayer =>.Microsoft Corporation
O43 - CFD: 27/12/2017 - [] D -- C:\Users\HP\AppData\Local\Ubisoft Game Launcher =>.Ubisoft
O43 - CFD: 09/01/2018 - [] D -- C:\Users\HP\AppData\Local\VirtualRouterPlus
O43 - CFD: 20/12/2017 - [] D -- C:\Users\HP\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 30/12/2017 - [] D -- C:\Users\HP\AppData\Local\Zemana =>.Zemana
O43 - CFD: 25/01/2018 - [] D -- C:\Users\HP\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 14/11/2017 - [] D -- C:\Users\HP\AppData\Local\__SHARED
O43 - CFD: 30/04/2017 - [0] D -- C:\Users\HP\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 09/05/2017 - [] D -- C:\Users\HP\AppData\LocalLow\Adobe =>.Adobe
O43 - CFD: 27/01/2018 - [] D -- C:\Users\HP\AppData\LocalLow\BitTorrent
O43 - CFD: 04/05/2017 - [] D -- C:\Users\HP\AppData\LocalLow\Microsoft =>.Microsoft Corporation
O43 - CFD: 23/01/2018 - [0] D -- C:\Users\HP\AppData\LocalLow\Mozilla =>.Mozilla Corporation
O43 - CFD: 14/11/2017 - [] D -- C:\Users\HP\AppData\LocalLow\Sun =>.Oracle
O43 - CFD: 17/09/2017 - [] D -- C:\Users\HP\AppData\LocalLow\Temp =>.Microsoft Corporation
O43 - CFD: 04/01/2018 - [] D -- C:\Users\HP\Desktop\hanger
O43 - CFD: 25/12/2017 - [] D -- C:\Users\HP\Desktop\TNod User & Password Finder 1.6.2 Beta 3
O43 - CFD: 25/01/2018 - [] D -- C:\Users\HP\Desktop\watch
O43 - CFD: 11/01/2018 - [] D -- C:\Users\HP\Desktop\wifi
O43 - CFD: 21/12/2017 - [] D -- C:\Users\HP\Desktop\روضة زلوم
O43 - CFD: 30/10/2017 - [] D -- C:\Users\HP\Desktop\شهادات سعودة
O43 - CFD: 06/11/2017 - [] D -- C:\Users\HP\Desktop\ملفات pdf
O43 - CFD: 13/09/2017 - [] D -- C:\Users\HP\Desktop\مناقصة الإستثمار
O43 - CFD: 29/09/2017 - [] RD -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [] RD -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 09/01/2018 - [] RD -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 26/12/2017 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autodesk =>.Autodesk
O43 - CFD: 27/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flashtool =>.Androxyde
O43 - CFD: 29/09/2017 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEmu =>.Microvirt Software Technology Ltd.
O43 - CFD: 26/12/2017 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PCMSCAN
O43 - CFD: 18/01/2018 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
O43 - CFD: 09/01/2018 - [] RD -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] RD -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft =>.Ubisoft
O43 - CFD: 29/09/2017 - [] RD -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 26/12/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [0] SHD -- C:\Users\Default\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [0] D -- C:\Users\Default\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [0] D -- C:\Users\Default User\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 26/12/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 25/01/2018 - [0] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\DBG =>.DBG
O43 - CFD: 18/01/2018 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 29/12/2017 - [0] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\PeerDistRepub =>.Microsoft Corporation
O43 - CFD: 11/01/2018 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft Corporation
---\\ ShellIconOverlayIdentifiers (SIOI) (8) - 0s
O106 - SIOI: [ AccExtIco1] - {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}. (.Copyright © 2013-2016, Adobe Systems Incorporated. Al - Core Sync.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll =>.Adobe Systems Incorporated®
O106 - SIOI: [ AccExtIco2] - {853B7E05-C47D-4985-909A-D0DC5C6D7303}. (.Copyright © 2013-2016, Adobe Systems Incorporated. Al - Core Sync.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll =>.Adobe Systems Incorporated®
O106 - SIOI: [ AccExtIco3] - {42D38F2E-98E9-4382-B546-E24E4D6D04BB}. (.Copyright © 2013-2016, Adobe Systems Incorporated. Al - Core Sync.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll =>.Adobe Systems Incorporated®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - Client Side Caching UI.) -- C:\WINDOWS\System32\cscui.dll =>.Microsoft Corporation
---\\ Search Context Menu Handlers (SCMH) (39) - 4s
O108 - CMH1: AccExt [64Bits] - {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} . (.Copyright © 2013-2016, Adobe Systems Incorporated. Al - Core Sync.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll =>.Adobe Systems Incorporated®
O108 - CMH1: AcShellExtension.AcContextMenuHandler [64Bits] - {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} . (.Autodesk - AutoCAD Dwg common shell extension handler.) -- C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll =>.Autodesk, Inc®
O108 - CMH1: ESET Security Shell [64Bits] - {B089FE88-FB52-11D3-BDF1-0050DA34150D} . (.ESET - ESET Shell Extension.) -- C:\Program Files\ESET\ESET Security\shellExt.dll =>.ESET, spol. s r.o.®
O108 - CMH1: ModernSharing [64Bits] - {e2bf9676-5f8f-435c-97eb-11607a5bedf7} . (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH1: Open With [64Bits] - {09799AFB-AD67-11d1-ABCD-00C04FC30936} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH1: PowerISO [64Bits] - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} . (.Power Software Ltd - PowerISOShell DLL.) -- C:\Program Files\PowerISO\PWRISOSH.DLL =>.Power Software Limited®
O108 - CMH1: SAScanShlExt [64Bits] - {94243EC1-AEE5-4d44-A6CF-6407ED967FED} . (.Orphan.)
O108 - CMH1: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH1: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files (x86)\WinRAR\RarExt64.dll =>.win.rar GmbH®
O108 - CMH1: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH1: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Microsoft (C) Work Folders Shell Extension.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH2: ESET Security Shell [64Bits] - {B089FE88-FB52-11D3-BDF1-0050DA34150D} . (.ESET - ESET Shell Extension.) -- C:\Program Files\ESET\ESET Security\shellExt.dll =>.ESET, spol. s r.o.®
O108 - CMH2: OpenContainingFolderMenu [64Bits] - {37ea3a21-7493-4208-a011-7f9ea79ce9f5} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH3: CopyAsPathMenu [64Bits] - {f3d06e7c-1e45-4a26-847e-f9fcdee59be0} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH3: MBAMShlExt [64Bits] - {57CE581A-0CB6-4266-9CA0-19364C90A0B3} . (.Malwarebytes - Malwarebytes.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll =>.Malwarebytes Corporation®
O108 - CMH3: SendTo [64Bits] - {7BA4C740-9E81-11CF-99D3-00AA004AE837} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH4: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - Client Side Caching UI.) -- C:\WINDOWS\System32\cscui.dll =>.Microsoft Corporation
O108 - CMH4: PowerISO [64Bits] - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} . (.Power Software Ltd - PowerISOShell DLL.) -- C:\Program Files\PowerISO\PWRISOSH.DLL =>.Power Software Limited®
O108 - CMH4: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH4: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Microsoft (C) Work Folders Shell Extension.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH5: ACE [64Bits] - {5E2121EE-0300-11D4-8D3B-444553540000} . (.Orphan.)
O108 - CMH5: igfxcui [64Bits] - {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} . (.Orphan.)
O108 - CMH5: igfxDTCM [64Bits] - {9B5F5829-A529-4B12-814A-E81BCB8D93FC} . (.Intel Corporation - igfxDTCM Module.) -- C:\WINDOWS\system32\igfxDTCM.dll =>.Intel Corporation
O108 - CMH5: New [64Bits] - {D969A300-E7FF-11d0-A93B-00A0C90F2719} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH5: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH5: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Microsoft (C) Work Folders Shell Extension.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH6: AccExt [64Bits] - {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} . (.Copyright © 2013-2016, Adobe Systems Incorporated. Al - Core Sync.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll =>.Adobe Systems Incorporated®
O108 - CMH6: ESET Security Shell [64Bits] - {B089FE88-FB52-11D3-BDF1-0050DA34150D} . (.ESET - ESET Shell Extension.) -- C:\Program Files\ESET\ESET Security\shellExt.dll =>.ESET, spol. s r.o.®
O108 - CMH6: Library Location [64Bits] - {3dad6c5d-2167-4cae-9914-f99e41c12cfa} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH6: MBAMShlExt [64Bits] - {57CE581A-0CB6-4266-9CA0-19364C90A0B3} . (.Malwarebytes - Malwarebytes.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll =>.Malwarebytes Corporation®
O108 - CMH6: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - Client Side Caching UI.) -- C:\WINDOWS\System32\cscui.dll =>.Microsoft Corporation
O108 - CMH6: PintoStartScreen [64Bits] - {470C0EBD-5D73-4d58-9CED-E91E22E23282} . (.Microsoft Corporation - App Resolver.) -- C:\Windows\System32\appresolver.dll =>.Microsoft Windows®
O108 - CMH6: PowerISO [64Bits] - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} . (.Power Software Ltd - PowerISOShell DLL.) -- C:\Program Files\PowerISO\PWRISOSH.DLL =>.Power Software Limited®
O108 - CMH6: SAScanShlExt [64Bits] - {94243EC1-AEE5-4d44-A6CF-6407ED967FED} . (.Orphan.)
O108 - CMH6: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files (x86)\WinRAR\RarExt64.dll =>.win.rar GmbH®
O108 - CMH6: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH7: EnhancedStorageShell [64Bits] - {2854F705-3548-414C-A113-93E27C808C85} . (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O108 - CMH7: ESET Security Shell [64Bits] - {B089FE88-FB52-11D3-BDF1-0050DA34150D} . (.ESET - ESET Shell Extension.) -- C:\Program Files\ESET\ESET Security\shellExt.dll =>.ESET, spol. s r.o.®
O108 - CMH7: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
---\\ Image File Execution Options (18) - 8s
O50 - IFEO:C:\Windows\System32\cscript.exe - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\dllhost.exe - (.Microsoft Corporation - COM Surrogate.) [DisableExceptionChainValidation\\3] =>.Microsoft Windows®
O50 - IFEO:C:\WINDOWS\System32\drvinst.exe - (.Microsoft Corporation - Driver Installation Module.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\ie4uinit.exe - (.Microsoft Corporation - IE Per-User Initialization Utility.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - IE 7.0 Unattended Install Utility.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mmc.exe - (.Microsoft Corporation - Microsoft Management Console.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\MRT.exe - (.Microsoft Corporation - Microsoft Windows Malicious Software Remova.) [CFGOptions\\1] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Microsoft (R) HTML Application host.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\rundll32.exe - (.Microsoft Corporation - Windows host process (Rundll32).) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\searchprotocolhost.exe - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Spooler SubSystem App.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Host Process for Windows Services.) [MinimumStackCommitInBytes\\32768] =>.Microsoft Windows Publisher®
O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Host Process for Windows Services.) [MitigationAuditOptions\\17660905521152] =>.Microsoft Windows Publisher®
O50 - IFEO:C:\Windows\System32\wscript.exe - (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
---\\ System Drivers List (110) - 109s
O58 - SDL:2017/09/29 16:41:02 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107416] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135512] =>.Microsoft Windows®
O58 - SDL:2017/04/30 08:39:47 A . (.Advanced Micro Devices - AMD ACP Binaries.) -- C:\WINDOWS\System32\drivers\amdacpksd.sys [296648] =>.Advanced Micro Devices, Inc.®
O58 - SDL:2017/09/29 16:41:02 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83352] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [258592] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [27032] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131992] =>.Microsoft Windows®
O58 - SDL:2015/09/25 20:19:48 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\atikmdag.sys [21653520] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2015/09/25 20:19:46 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\WINDOWS\System32\drivers\atikmpag.sys [684560] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2016/09/14 02:00:40 A . (.Broadcom Corporation. - Broadcom Bluetooth Firmware Download Filter.) -- C:\WINDOWS\System32\drivers\bcbtums.sys [186152] =>.Broadcom Corporation®
O58 - SDL:2017/09/29 16:41:02 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] =>.Windows (R) Win 7 DDK provider
O58 - SDL:2017/07/13 03:16:38 A . (.Broadcom Corp - Broadcom WiFi Driver wireless driver.) -- C:\WINDOWS\System32\drivers\bcmwl63a.sys [11794376] =>.Broadcom Corporation®
O58 - SDL:2016/09/14 01:59:02 A . (.Broadcom Corporation. - Broadcom Bluetooth USB AMP Filter.) -- C:\WINDOWS\System32\drivers\btwampfl.sys [204592] =>.Broadcom Corporation®
O58 - SDL:2017/09/29 16:41:01 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [533912] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\WINDOWS\System32\drivers\cht4dx64.sys [141208] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\WINDOWS\System32\drivers\cht4sx64.sys [357272] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T5/T6 Chip.) -- C:\WINDOWS\System32\drivers\cht4vx64.sys [1723288] =>.Microsoft Windows®
O58 - SDL:2018/01/09 10:56:00 A . (.Connectify - NDIS filter driver.) -- C:\WINDOWS\System32\drivers\cnnctfy2.sys [31344] =>.Connectify®
O58 - SDL:2017/04/30 08:41:24 A . (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Frame.) -- C:\WINDOWS\System32\drivers\DptfManager.sys [493240] =>.Intel(R) Software®
O58 - SDL:2017/04/30 08:41:25 A . (.Intel Corporation - DPTF ACPI Device (32-Bit).) -- C:\WINDOWS\System32\drivers\dptf_cpu.sys [38720] =>.Intel(R) Software®
O58 - SDL:2017/04/30 08:41:25 A . (.Intel Corporation - DPTF ACPI Device (64-Bit).) -- C:\WINDOWS\System32\drivers\dptf_pch.sys [38208] =>.Intel(R) Software®
O58 - SDL:2017/11/07 09:19:18 A . (.ESET - Amon monitor.) -- C:\WINDOWS\System32\drivers\eamonm.sys [134368] =>.ESET, spol. s r.o.®
O58 - SDL:2017/11/07 09:19:20 A . (.ESET - Devmon monitor.) -- C:\WINDOWS\System32\drivers\edevmon.sys [107328] =>.ESET, spol. s r.o.®
O58 - SDL:2017/12/25 11:41:01 A . (.ESET - ESET ELAM driver.) -- C:\WINDOWS\System32\drivers\eelam.sys [15392] =>.Microsoft Windows Early Launch Anti-malware Publisher®
O58 - SDL:2017/11/07 09:19:24 A . (.ESET - ESET Helper driver.) -- C:\WINDOWS\System32\drivers\ehdrv.sys [180088] =>.ESET, spol. s r.o.®
O58 - SDL:2017/11/07 09:19:14 A . (.ESET - ESET OPP Keyboard Filter.) -- C:\WINDOWS\System32\drivers\ekbdflt.sys [50744] =>.ESET, spol. s r.o.®
O58 - SDL:2017/11/07 09:19:38 A . (.ESET - ESET Firewall Driver.) -- C:\WINDOWS\System32\drivers\epfw.sys [81880] =>.ESET, spol. s r.o.®
O58 - SDL:2017/11/07 09:19:36 A . (.ESET - ESET Firewall Driver.) -- C:\WINDOWS\System32\drivers\epfwwfp.sys [106304] =>.ESET, spol. s r.o.®
O58 - SDL:2017/07/24 12:34:10 A . (.ESET - ESET Cleaners Driver.) -- C:\WINDOWS\System32\drivers\ESETCleanersDriver.sys [181160] =>.ESET, spol. s r.o.®
O58 - SDL:2018/01/18 14:19:14 A . (...) -- C:\WINDOWS\System32\drivers\EsgScanner.sys [22704] =>.Enigma Software Group USA, LLC®
O58 - SDL:2016/08/22 11:17:34 A . (.Intel Corporation - DPTF Zone (64-Bit).) -- C:\WINDOWS\System32\drivers\esif_lf.sys [350272] =>.Intel Corporation®
O58 - SDL:2017/04/30 08:41:26 A . (.ELAN Microelectronic Corp. - ELAN SMBus Driver.) -- C:\WINDOWS\System32\drivers\ETDSMBus.sys [22712] =>.ELAN Microelectronics Corporation®
O58 - SDL:2017/09/29 16:41:01 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3419032] =>.Microsoft Windows®
O58 - SDL:2010/10/08 14:29:40 A . (.Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) -- C:\WINDOWS\System32\drivers\ewdcsc.sys [32768] =>.Huawei Tech. Co., Ltd.
O58 - SDL:2014/09/11 13:06:18 A . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\WINDOWS\System32\drivers\ewusbwwan.sys [457728] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2014/07/25 14:38:22 A . (.Huawei Technologies Co., Ltd. - ew_cdcacm Driver.) -- C:\WINDOWS\System32\drivers\ew_cdcacm.sys [125952] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2010/09/26 15:39:28 A . (.Huawei Technologies Co., Ltd. - ew_hwupgrade Driver.) -- C:\WINDOWS\System32\drivers\ew_hwupgrade.sys [22016] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2013/01/25 06:46:40 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\ew_hwusbdev.sys [109568] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2013/11/30 14:40:22 A . (.Huawei Technologies Co., Ltd. - ew_jubusenum Driver.) -- C:\WINDOWS\System32\drivers\ew_jubusenum.sys [91648] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2013/11/30 14:40:22 A . (.Huawei Technologies Co., Ltd. - ew_jucdcacm Driver.) -- C:\WINDOWS\System32\drivers\ew_jucdcacm.sys [110592] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2013/11/30 14:40:22 A . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\WINDOWS\System32\drivers\ew_jucdcecm.sys [77312] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2013/11/30 14:40:20 A . (.Huawei Technologies Co., Ltd. - ew_juextctrl Driver.) -- C:\WINDOWS\System32\drivers\ew_juextctrl.sys [30720] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2014/08/21 11:10:54 A . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\WINDOWS\System32\drivers\ew_juwwanecm.sys [248320] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2015/01/07 14:51:22 A . (.Huawei Technologies Co., Ltd. - Filter Driver.) -- C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys [18560] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2015/01/07 14:46:44 A . (.Huawei Technologies Co., Ltd. - ew_cdcndis Driver.) -- C:\WINDOWS\System32\drivers\ew_wwanecm.sys [380800] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2017/09/29 16:41:02 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [63520] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:40:59 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iagpio.sys [36864] =>.Intel(R) Corporation
O58 - SDL:2017/09/29 16:40:59 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [91648] =>.Intel(R) Corporation
O58 - SDL:2017/09/29 16:40:59 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [79360] =>.Intel Corporation
O58 - SDL:2017/09/29 16:40:59 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [88576] =>.Intel Corporation
O58 - SDL:2017/09/29 16:40:59 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [171520] =>.Intel Corporation
O58 - SDL:2017/09/29 16:40:59 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [174592] =>.Intel Corporation
O58 - SDL:2017/09/29 16:41:01 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2017/09/29 16:40:59 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation
O58 - SDL:2017/09/29 16:41:03 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [674200] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:03 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412056] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [526232] =>.Microsoft Windows®
O58 - SDL:2017/01/13 19:37:06 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdkmd64.sys [7969752] =>.Intel(R) pGFX®
O58 - SDL:2016/05/12 05:32:26 N . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\System32\drivers\IntcDAud.sys [481768] =>.Intel(R) OWR®
O58 - SDL:2017/09/29 16:41:02 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108064] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [123800] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [103320] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82840] =>.Microsoft Windows®
O58 - SDL:2017/11/29 09:11:26 A . (...) -- C:\WINDOWS\System32\drivers\mbae64.sys [77432] =>.Malwarebytes Corporation®
O58 - SDL:2017/09/29 16:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59800] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\MegaSas2i.sys [63520] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575896] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [842648] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63896] =>.Microsoft Windows®
O58 - SDL:2012/09/26 08:45:35 A . (.Marvell Semiconductor, Inc. - USB EWS Device Driver.) -- C:\WINDOWS\System32\drivers\mvusbews.sys [20480] =>.Marvell Semiconductor, Inc.
O58 - SDL:2017/09/29 16:41:02 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [108952] =>.Microsoft Windows®
O58 - SDL:2012/12/07 10:28:06 A . (.Khalil Azzouzi - Azzouzi HotSpot helper driver.) -- C:\WINDOWS\System32\drivers\ndiskhaz.sys [30536] =>.Khalil Azzouzi®
O58 - SDL:2016/12/21 13:20:00 A . (.Apple Inc. - Apple Mobile Device Ethernet.) -- C:\WINDOWS\System32\drivers\netaapl64.sys [23040] =>.Apple Inc.
O58 - SDL:2017/09/29 16:41:02 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150424] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166296] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58776] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [61848] =>.Microsoft Windows®
O58 - SDL:2017/10/25 17:34:00 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver (NDIS 6..) -- C:\WINDOWS\System32\drivers\phantomtap.sys [45056] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2018/01/18 19:07:16 A . (.Sysinternals - www.sysinternals.com - Process Explorer.) -- C:\WINDOWS\System32\drivers\PROCEXP152.SYS [34328] =>.Sysinternals®
O58 - SDL:2017/09/29 16:41:03 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.40 64-bit Dri.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [604160] =>.Realtek
O58 - SDL:2017/09/29 16:41:14 RA . (.Realtek - Realtek PCIe GBE Family Controller Flight.) -- C:\WINDOWS\System32\drivers\rteth.sys [59904] =>.Realtek
O58 - SDL:2016/10/15 00:31:36 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [5346312] =>.Realtek Semiconductor Corp.®
O58 - SDL:2015/02/28 06:26:36 A . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\WINDOWS\System32\drivers\scdemu.sys [127760] =>.Power Software Limited®
O58 - SDL:2013/05/19 10:02:52 A . (.Scarlet.Crush Productions - Scp Virtual Bus Driver.) -- C:\WINDOWS\System32\drivers\ScpVBus.sys [39168] =>.Bruce James®
O58 - SDL:2017/09/29 16:41:02 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44952] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81816] =>.Microsoft Windows®
O58 - SDL:2015/03/05 14:17:30 A . (.SecureAge Technology - SLogDrv.) -- C:\WINDOWS\System32\drivers\SLogDrv.sys [68120] =>.SecureAge Technology Pte Ltd®
O58 - SDL:2017/08/18 02:23:50 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_AMDASF_Aux.sys [53848] =>.Synaptics Incorporated®
O58 - SDL:2016/12/27 03:38:02 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel(1344).sys [72792] =>.Synaptics Incorporated®
O58 - SDL:2017/08/18 02:23:50 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [55384] =>.Synaptics Incorporated®
O58 - SDL:2017/08/18 02:23:50 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel_Aux.sys [55384] =>.Synaptics Incorporated®
O58 - SDL:2017/01/12 11:46:34 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudbus.sys [110336] =>.DEVGURU CO LTD®
O58 - SDL:2017/01/12 11:46:34 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudmdm.sys [206080] =>.DEVGURU CO LTD®
O58 - SDL:2017/05/18 22:17:44 A . (.Samsung Electronics Co., Ltd. - SAMSUNG USB Mobile Logging Device Driver.) -- C:\WINDOWS\System32\drivers\ssudserd.sys [166288] =>.Samsung Electronics Co., Ltd.®
O58 - SDL:2017/09/29 16:41:02 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31128] =>.Microsoft Windows®
O58 - SDL:2017/08/18 02:23:52 A . (.Synaptics Incorporated - Synaptics I2C Driver.) -- C:\WINDOWS\System32\drivers\SynRMIHID_Aux.sys [66136] =>.Synaptics Incorporated®
O58 - SDL:2017/08/18 02:23:52 A . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\WINDOWS\System32\drivers\SynTP.sys [716384] =>.Synaptics Incorporated®
O58 - SDL:2017/03/20 16:51:36 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver (NDIS 6..) -- C:\WINDOWS\System32\drivers\tap0901.sys [35784] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2017/04/30 08:41:43 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [185600] =>.Intel Corporation - Embedded Subsystems and IP Blocks Group®
O58 - SDL:2018/01/27 11:43:16 A . (...) -- C:\WINDOWS\System32\drivers\TrueSight.sys [28272] =>.Adlice®
O58 - SDL:2016/12/21 13:20:26 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\System32\drivers\usbaapl64.sys [54784] =>.Apple, Inc.
O58 - SDL:2013/12/18 17:19:54 A . (.Oracle Corporation - VirtualBox Support Driver.) -- C:\WINDOWS\System32\drivers\VBoxDrv.sys [252688] =>.Oracle Corporation®
O58 - SDL:2013/12/18 17:16:44 A . (.Oracle Corporation - VirtualBox Host-Only Network Adapter Driver.) -- C:\WINDOWS\System32\drivers\VBoxNetAdp.sys [140560] =>.Oracle Corporation®
O58 - SDL:2013/12/18 17:16:44 A . (.Oracle Corporation - VirtualBox USB Monitor Driver.) -- C:\WINDOWS\System32\drivers\VBoxUSBMon.sys [126736] =>.Oracle Corporation®
O58 - SDL:2017/09/29 16:41:02 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166808] =>.Microsoft Windows®
O58 - SDL:2016/10/21 11:48:42 A . (.VMware, Inc. - VMware Virtual Storage Volume Driver.) -- C:\WINDOWS\System32\drivers\vstor2-mntapi10-shared.sys [33432] =>.VMware, Inc.®
O58 - SDL:2017/09/29 16:41:02 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305560] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [32152] =>.Microsoft Windows®
O58 - SDL:2017/09/29 16:41:02 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [64920] =>.Microsoft Windows®
O58 - SDL:2017/06/21 17:04:22 A . (.HP - HP Wireless Button Driver.) -- C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [30368] =>.HP Inc.®
---\\ File Associations Shell Spawning (10) - 2s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
---\\ Start Menu Internet (12) - 2s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Search Browser Infection (2) - 4s
O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com
---\\ Search Svchost Services (50) - 8s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\WINDOWS\System32\certprop.dll [188928] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [188928] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\System32\srvsvc.dll [270848] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [1275904] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\IKEEXT.DLL [984064] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [820224] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\System32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [144896] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\System32\iscsiexe.dll [150528] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [109056] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\System32\schedsvc.dll [880640] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [220160] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [407040] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [387584] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [108544] =>.Microsoft Corporation
O83 - Search Svchost Services: PushToInstall (PushToInstall) . (.Microsoft Corporation - PushToInstall.) -- C:\Windows\System32\PushToInstall.dll [254976] =>.Microsoft Corporation
O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\Windows\System32\Windows.SharedPC.AccountManager.dll [194560] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1272320] =>.Microsoft Corporation
O83 - Search Svchost Services: NaturalAuthentication (NaturalAuthentication) . (.Microsoft Corporation - Natural Authentication Service.) -- C:\Windows\System32\NaturalAuth.dll [795136] =>.Microsoft Corporation
O83 - Search Svchost Services: TokenBroker (TokenBroker) . (.Microsoft Corporation - Token Broker.) -- C:\Windows\System32\TokenBroker.dll [1231872] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Geolocation Service.) -- C:\Windows\System32\lfsvc.dll [46080] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [1107968] =>.Microsoft Corporation
O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Infrared Monitor.) -- C:\Windows\System32\irmon.dll [24576] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [104960] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [930304] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [491520] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [73216] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [601088] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [307200] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [2783744] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [1345536] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [613376] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - Windows Managent Service DLL.) -- C:\Windows\System32\Windows.Internal.Management.dll [702464] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [57856] =>.Microsoft Corporation
O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Flight Settings.) -- C:\Windows\System32\flightsettings.dll [779264] =>.Microsoft Corporation
O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Windows Push Notification System Service.) -- C:\Windows\System32\WpnService.dll [284672] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1143808] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Update Session Orchestrator Core.) -- C:\Windows\System32\usocore.dll [1289216] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [951808] =>.Microsoft Corporation
O83 - Search Svchost Services: InstallService (InstallService) . (.Microsoft Corporation - InstallService.) -- C:\Windows\System32\InstallService.dll [1313792] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\System32\themeservice.dll [69632] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [387072] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Device Setup Manager.) -- C:\Windows\System32\DeviceSetupManager.dll [238080] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Network Setup Service.) -- C:\Windows\System32\NetSetupSvc.dll [307712] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Microsoft Network Connectivity Assistant Se.) -- C:\Windows\System32\NcaSvc.dll [170496] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Microsoft® Account Service.) -- C:\Windows\System32\wlidsvc.dll [2223104] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxGipSvc (XboxGipSvc) . (.Microsoft Corporation - Xbox Gip Management Service.) -- C:\Windows\System32\XboxGipSvc.dll [57856] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [196096] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [132608] =>.Microsoft Corporation
O83 - Search Svchost Services: hns (hns) . (.Microsoft Corporation - Host Network Service.) -- C:\Windows\System32\HostNetSvc.dll [1412096] =>.Microsoft Corporation
---\\ Windows Installer Scan (63) - 132s
[MD5.95D9EC1D174B1303B1ACB68381B3CB5E] [WIS][2010/12/21 21:01:00] (.Sony Corporation - PMB Installer.) -- C:\WINDOWS\Installer\104e3feb.msi [4926464] =>.Sony Corporation
[MD5.948034049CB927B60EAAB902082FD9C2] [WIS][2017/12/14 08:48:57] (..) -- C:\WINDOWS\Installer\1916cbb9.msi [15107072]
[MD5.86E2B390629665FBC20E06DFBF01A48F] [WIS][2017/05/08 16:11:06] (.Apple Inc. - [ProductName] Installer.) -- C:\WINDOWS\Installer\1adb75bb.msi [2732032] =>.Apple Inc.
[MD5.74A4D2DFBD890D33BA98051D02741970] [WIS][2017/11/03 02:26:38] (.Advanced Micro Devices, Inc. - AMD Settings.) -- C:\WINDOWS\Installer\1c478f.msi [32986624] =>.Advanced Micro Devices, Inc.
[MD5.9464C6455EFEBDF0421F89C565FD1C44] [WIS][2017/11/03 02:36:08] (.Advanced Micro Devices, Inc. - AMD Settings.) -- C:\WINDOWS\Installer\1c4795.msi [54922240] =>.Advanced Micro Devices, Inc.
[MD5.78D613766452D263BB538DB7C1BE111D] [WIS][2017/09/13 13:43:16] (.Advanced Micro Devices, Inc. - Branding.) -- C:\WINDOWS\Installer\1c47a7.msi [2674176] =>.Advanced Micro Devices, Inc.
[MD5.71F3271C26EB7EA371B51D3C54413F67] [WIS][2018/01/18 11:11:07] (.ESET, spol. s r.o. - ESET Security.) -- C:\WINDOWS\Installer\1cc5d968.msi [178311168] =>.ESET, spol. s r.o.
[MD5.71F3271C26EB7EA371B51D3C54413F67] [WIS][2018/01/18 11:11:07] (.ESET, spol. s r.o. - ESET Security.) -- C:\WINDOWS\Installer\1cc5dc3d.msi [178311168] =>.ESET, spol. s r.o.
[MD5.0ACA29C93754E319EB1398494B00C82A] [WIS][2016/01/29 06:54:07] (.Autodesk - Autodesk License Service (x64) - 3.1.) -- C:\WINDOWS\Installer\23b960cb.msi [73768960] =>.Autodesk
[MD5.6CC0E1D66251E3A583BC56863CB7A542] [WIS][2016/02/26 07:54:21] (.Autodesk, Inc. - Install package for Revit 2017.) -- C:\WINDOWS\Installer\23ce2c18.msi [12107776] =>.Autodesk, Inc.
[MD5.674F8C718B58F34A9C6A0B10AF1FB767] [WIS][2016/02/03 23:50:27] (.Autodesk, Inc. - Autodesk Workflows 2017.) -- C:\WINDOWS\Installer\23ce2c1d.msi [13762560] =>.Autodesk, Inc.
[MD5.D953BCF3D027D696105DB17AD0E22509] [WIS][2016/02/26 04:49:53] (.Autodesk, Inc. - Install package for Autodesk A360 Collabora.) -- C:\WINDOWS\Installer\23ce2c22.msi [36552704] =>.Autodesk, Inc.
[MD5.C7B9CF52B63DBBBAD4B5B3DEE371CF9A] [WIS][2016/02/14 00:43:04] (.Autodesk, Inc. - Install package for Personal Accelerator fo.) -- C:\WINDOWS\Installer\23ce2c27.msi [30683136] =>.Autodesk, Inc.
[MD5.86DA233717762FA249E30B7E878C5BA8] [WIS][2015/12/23 10:54:04] (.Autodesk - Autodesk Material Library 2017.) -- C:\WINDOWS\Installer\23ce2c2c.msi [1687552] =>.Autodesk
[MD5.50DADD5E35F674FFF727E878AC9C1C56] [WIS][2015/12/23 10:54:06] (.Autodesk - Autodesk Material Library Base Resolution I.) -- C:\WINDOWS\Installer\23e5b88e.msi [1531904] =>.Autodesk
[MD5.7C81CA3FD53BE2836B2EC2A4AD20047F] [WIS][2015/12/22 18:54:06] (.Autodesk - Autodesk Material Library Low Resolution Im.) -- C:\WINDOWS\Installer\23e5b893.msi [1527808] =>.Autodesk
[MD5.CA4C73A05719437057A1BC1D7A3EDE61] [WIS][2015/01/07 01:20:16] (.IronPython Team - IronPython 2.7.3 (2.7.31000.0).) -- C:\WINDOWS\Installer\23e5b898.msi [16320774] =>.IronPython Team
[MD5.3A93288526DB1C80E8BA2CDF64160AC8] [WIS][2016/02/18 22:59:28] (.Autodesk - Autodesk Revit MEP Metric Content v2.0.) -- C:\WINDOWS\Installer\23e5b8a2.msi [5009408] =>.Autodesk
[MD5.68697813A50534702F2356A84F592759] [WIS][2015/02/25 17:02:52] (.Autodesk, Inc. - Install package for Revit Content Libraries.) -- C:\WINDOWS\Installer\279052a.msi [9867264] =>.Autodesk, Inc.
[MD5.338F246CA96A79F15C94B8145D8CEE13] [WIS][2015/01/13 23:58:17] (.Autodesk, Inc. - Autodesk Workflows 2016.) -- C:\WINDOWS\Installer\2790537.msi [13848576] =>.Autodesk, Inc.
[MD5.BAB755467A836A2D196578F868F933B2] [WIS][2015/01/14 00:01:33] (.Autodesk - Autodesk Material Library 2016.) -- C:\WINDOWS\Installer\279053d.msi [1355776] =>.Autodesk
[MD5.EFC624DB96495B98235FA8D7B70C3176] [WIS][2015/01/14 00:01:35] (.Autodesk - Autodesk Material Library Base Resolution I.) -- C:\WINDOWS\Installer\2790543.msi [1228800] =>.Autodesk
[MD5.338D34F6B89757612714D934BEB8C6CB] [WIS][2015/01/14 00:01:38] (.Autodesk - Autodesk Material Library Low Resolution Im.) -- C:\WINDOWS\Installer\2790549.msi [1220608] =>.Autodesk
[MD5.92D501343F90C4F9DE4B1AFAFEBAD3CF] [WIS][2015/01/14 00:01:49] (.Autodesk - Autodesk Material Library Medium Resolution.) -- C:\WINDOWS\Installer\279054f.msi [1224704] =>.Autodesk
[MD5.9A863E7D1620AF0930B7AAF7CE76D753] [WIS][2017/11/14 21:26:02] (.Oracle Corporation - Java SE Runtime Environment 8 Update 151.) -- C:\WINDOWS\Installer\29cd032e.msi [61034496] =>.Oracle Corporation
[MD5.D181C3EC418B36FD41F61937E31C66A1] [WIS][2017/11/14 21:25:52] (.Oracle Corporation - Java Auto Updater.) -- C:\WINDOWS\Installer\29cd0333.msi [761856] =>.Oracle Corporation
[MD5.69261193FED67D752D4F573EAC48B2EA] [WIS][2016/02/26 06:51:43] (.Autodesk, Inc. - Install package for Revit Content Libraries.) -- C:\WINDOWS\Installer\2ec3b3d1.msi [9588736] =>.Autodesk, Inc.
[MD5.E376E35B8C9626A26357C0A35F6AAA18] [WIS][2016/01/23 01:46:30] (.Autodesk - Autodesk BIM 360 Revit 2017 Add-in 64 bit.) -- C:\WINDOWS\Installer\2ec3b3d6.msi [3612672] =>.Autodesk
[MD5.CB2A78A892FAFE06284428DA98202112] [WIS][2016/02/10 01:35:01] (.Autodesk, Inc. - Install package for FormIt 360 Converter Fo.) -- C:\WINDOWS\Installer\2ec3b3db.msi [34861056] =>.Autodesk, Inc.
[MD5.54432F46A7CB5F19E868D76D957D3065] [WIS][2016/02/18 22:59:28] (.Autodesk - Autodesk Revit MEP Imperial Content v2.0.) -- C:\WINDOWS\Installer\2ec3b3e0.msi [8732672] =>.Autodesk
[MD5.D3F9367AF08DC5EF57863FD6567BB000] [WIS][2016/01/23 01:46:30] (.Autodesk - Autodesk Material Library Medium Resolution.) -- C:\WINDOWS\Installer\2ec3b3e5.msi [1527808] =>.Autodesk
[MD5.2DDD78BF0E4F57D7800F75251DA2AA07] [WIS][2016/01/29 06:54:08] (.Autodesk, Inc..) -- C:\WINDOWS\Installer\2ee205e6.msi [5621760] =>.Autodesk, Inc.
[MD5.9A4729CB1CEFDE1B4F6CFB8AF09822B3] [WIS][2016/02/07 10:38:14] (.Bruce Walker - Autodesk CAD Manager Tools 4.0.) -- C:\WINDOWS\Installer\2ee205eb.msi [3809280]
[MD5.A666B14C461CC7207C0C9B3D0D2D28F3] [WIS][2017/11/16 11:19:36] (.Adobe Systems Incorporated - Adobe ARM Installer.) -- C:\WINDOWS\Installer\31ee8da5.msi [880128] =>.Adobe Systems Incorporated
[MD5.23B97F4BEDD554D3F629B60637AFC936] [WIS][2015/03/17 11:42:22] (.Adobe Systems Incorporated.) -- C:\WINDOWS\Installer\385a8843.msi [2792960] =>.Adobe Systems Incorporated
[MD5.5F1FBBF794EEEF801A22E2E306115B86] [WIS][2017/09/16 11:06:22] (.Apple Inc. - Apple Software Update Installer.) -- C:\WINDOWS\Installer\3c05b338.msi [3608576] =>.Apple Inc.
[MD5.147A507DE55FB357E2701A87A629AEA9] [WIS][2010/07/22 12:23:06] (.CANON INC. - Color Network ScanGear.) -- C:\WINDOWS\Installer\4c2bb30.msi [1752064] =>.CANON INC.
[MD5.581AD54C6CAFE3699578E4AE4AC46D62] [WIS][2016/11/28 03:45:54] (.Autodesk - Autodesk Material Library 2018.) -- C:\WINDOWS\Installer\57414b.msi [1695744] =>.Autodesk
[MD5.0894C6FB88E1E2156DD7BD6CF6E390D2] [WIS][2016/11/28 03:45:56] (.Autodesk - Autodesk Material Library Base Resolution I.) -- C:\WINDOWS\Installer\574151.msi [1536000] =>.Autodesk
[MD5.FC5B78B45A323B94EB373FCE55F5882A] [WIS][2016/12/13 23:41:03] (.Autodesk - Autodesk Advanced Material Library Image Li.) -- C:\WINDOWS\Installer\574157.msi [1314816] =>.Autodesk
[MD5.6FF7E0E02FA8A732E3CFE35A58BE7BAA] [WIS][2018/01/10 17:31:52] (.Nefarius Software Solutions - ScpToolkit.) -- C:\WINDOWS\Installer\656fd5c.msi [2195456] =>.Nefarius Software Solutions
[MD5.E1D92E294A6C566D3E3B16F8AD70A89D] [WIS][2017/02/17 22:55:29] (.Autodesk, Inc. - AutoCAD 2018.) -- C:\WINDOWS\Installer\7b1144.msi [10452992] =>.Autodesk, Inc.
[MD5.70FC2A47477F31574DD9C5865B9D7D14] [WIS][2017/08/19 11:52:48] (.Computers and Structures, Inc. - [ProductName] - InstallShield Wizard.) -- C:\WINDOWS\Installer\94b4861.msi [538805248] =>.Computers and Structures, Inc.
[MD5.BE1EDECD114D816589C42FF4B022AED6] [WIS][2016/05/18 17:22:56] (.© Copyright 2015 HP Development Company, L.P..) -- C:\WINDOWS\Installer\a569f7.msi [4710912]
[MD5.265B92D5D3B44A9449ECE896764B6AB0] [WIS][2017/07/26 22:07:30] (.Advanced Micro Devices, Inc. - AMD Problem Report Wizard (64 bit).) -- C:\WINDOWS\Installer\cbb38.msi [11851776] =>.Advanced Micro Devices, Inc.
[MD5.F0EE2E7F283866A2A0FEA9BE2D12A979] [WIS][2017/11/25 12:35:44] (.Google Inc. - Google Update Helper.) -- C:\WINDOWS\Installer\d8435fd.msi [40960] =>.Google Inc.
[MD5.1706626AF250EA477B8F57F2266A8CE1] [WIS][2017/02/17 22:55:28] (.Autodesk, Inc. - AutoCAD 2018 LanguagePack - English.) -- C:\WINDOWS\Installer\e0ccf8.msi [8228864] =>.Autodesk, Inc.
[MD5.3A7AFE4683A12112EB1E82853D68DDEF] [WIS][2017/02/01 11:53:06] (.Autodesk - ACA & MEP 2018 Object Enabler.) -- C:\WINDOWS\Installer\e0ccff.msi [3317760] =>.Autodesk
[MD5.4CEEBACFFA601D8B711D9B7D1CDB4A37] [WIS][2017/02/17 22:55:30] (.Autodesk, Inc. - AutoCAD 2018.) -- C:\WINDOWS\Installer\e0cd05.msi [7434240] =>.Autodesk, Inc.
[MD5.9681EEADF88BB7603A3533B13ED948AC] [WIS][2017/01/04 14:36:26] (.Autodesk - Autodesk License Service (x64) - 5.1.4.) -- C:\WINDOWS\Installer\e0cd0a.msi [113418240] =>.Autodesk
[MD5.D9EF7E799462E99BCD498B2A7916FBD0] [WIS][2017/02/17 22:55:29] (.Autodesk, Inc. - AutoCAD 2018.) -- C:\WINDOWS\Installer\e0cd8f.msi [9232384] =>.Autodesk, Inc.
[MD5.9D828ABA5B003424B990C80EF5FC0D26] [WIS][2017/02/02 08:54:03] (.AutoCAD Apps - This plug-in can be used with AutoCAD to si.) -- C:\WINDOWS\Installer\e0cd95.msi [2326528] =>.AutoCAD Apps
[MD5.F4009B12B94EBF078BA59E7BF1811C5F] [WIS][2017/02/02 08:40:28] (.AutoCAD Apps - A plug-in to see the apps featured on the A.) -- C:\WINDOWS\Installer\e0cd9a.msi [2349056] =>.AutoCAD Apps
[MD5.0718148FC0E5A43849AF34120A85B24A] [WIS][2016/11/07 12:00:18] (.Autodesk - Autodesk AutoCAD Performance Feedback Tool .) -- C:\WINDOWS\Installer\e0cd9f.msi [1806336] =>.Autodesk
[MD5.6FC9092DCAD7C94F844F37144FC02B00] [WIS][2017/12/14 16:14:08] (.Apple Inc. - Apple Application Support Installer.) -- C:\WINDOWS\Installer\f79051.msi [46120960] =>.Apple Inc.
[MD5.0C53AE07F64461486F492498139742E7] [WIS][2017/12/14 16:17:00] (.Apple Inc. - Apple Application Support Installer.) -- C:\WINDOWS\Installer\f790c0.msi [51093504] =>.Apple Inc.
[MD5.244CE14865CE4E47B3F18A990C68096D] [WIS][2017/12/14 16:18:43] (.Apple Inc. - Apple Mobile Device Support Installer.) -- C:\WINDOWS\Installer\f79108.msi [14045184] =>.Apple Inc.
[MD5.BB15F11479AE037DBC25AACA6F7A33EC] [WIS][2017/12/14 16:25:25] (.Apple Inc. - iTunes Installer.) -- C:\WINDOWS\Installer\f7a767.msi [161886208] =>.Apple Inc.
[MD5.3617A09ABC822D955214EBE86A991CF3] [WIS][2017/11/29 13:42:28] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\1eed93b.msp [1355776] =>.Adobe Systems, Incorporated
[MD5.82F476D2A7125BB7EBF5A2A657BAB293] [WIS][2017/11/13 07:26:16] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\31ee8e48.msp [23506944] =>.Adobe Systems, Incorporated
[MD5.1804509512CA08400FBF29C502540400] [WIS][2017/08/01 03:15:35] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\385a8844.msp [100061184] =>.Adobe Systems, Incorporated
[MD5.BCC43969BE02109C8AC7141C7C3CB9CA] [WIS][2017/08/11 13:04:59] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\386cf8ea.msp [2031616] =>.Adobe Systems, Incorporated
[MD5.77AB51250501ADDD4D491DECDB6121FD] [WIS][2017/08/28 19:40:46] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\d4958.msp [2424832] =>.Adobe Systems, Incorporated
---\\ Additional Scan (O88) (39) - 75s
HKLM\SYSTEM\CurrentControlSet\Services\KMSEmulator =>HackTool.WinActivator
C:\ProgramData\KMSAutoS\bin\KMSSS.exe =>HackTool.WinActivator
C:\ProgramData\KMSAutoS\KMSAuto Net.exe =>HackTool.WinActivator
C:\WINDOWS\System32\Tasks\KMSAutoNet =>HackTool.WinActivator
C:\ProgramData\AMMYY =>.SUP.Ammyy
C:\ProgramData\KMSAutoS =>HackTool.WinActivator
C:\Users\HP\AppData\Roaming\PDAppFlex =>Trojan.Elpman
C:\Users\HP\AppData\Local\Akamai =>.SUP.AkamaiHD
C:\Users\HP\AppData\Local\MSfree Inc =>HackTool.WinActivator
C:\Users\HP\AppData\Local\Tempzxpsign029fc3a71e11be3f =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign117eb30c0d08c40b =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign247f7cf38fc04e5d =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign2d0b2cffe39fde4e =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign3cbb35943e7048b1 =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign3da1615d062e65bd =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign4d163639a858b2c7 =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign4ea31d676fe2ddc6 =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign4f203f1d04afb6a0 =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign555e0f44ce5939ff =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign5daa5d261229090a =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign6c2865db5cf1675e =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign73ffcc09c1afe6f5 =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign74378edb96195a0c =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign7c6979147ea4af2a =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsign973f23cc07412fcc =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsigna26107e25cf3c96e =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsigna63f429788279ab3 =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsignc2d8506218b72a83 =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsigncdf4925f0580d85b =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsignd1e8e1a0fe0b9d99 =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsignd684eace63e7bb9c =>.SUP.Temporary
C:\Users\HP\AppData\Local\Tempzxpsigne497590a4cd7ccb8 =>.SUP.Temporary
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\SAScanShlExt =>.SUP.Orphan
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} =>.SUP.Orphan
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\ACE =>.SUP.Orphan
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\SAScanShlExt =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
---\\ Summary of the elements found (9) - 0s
https://nicolascoolman.eu/2017/01/13/hacktool-winactivator/ =>HackTool.WinActivator
https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan
https://nicolascoolman.eu/2017/12/26/sup-akamaihd/ =>.SUP.AkamaiHD
https://nicolascoolman.eu/2017/04/13/superfluous-ammyy/ =>.SUP.Ammyy
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Trojan.Downloader
https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/ =>Adware.CrossRider
https://nicolascoolman.eu/2017/12/22/sup-downloader/ =>.SUP.Downloader
https://nicolascoolman.eu/2017/09/23/trojan-elpman/ =>Trojan.Elpman
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Temporary
~ Unselected Options: O82,
~ End of the scan, 80777 items in 16mn44s (1538)(0)