Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

My Laptop is too slow, maybe a trojan :(


  • This topic is locked This topic is locked
33 replies to this topic

#1 0_shark_0

0_shark_0

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Local time:10:42 PM

Posted 07 January 2013 - 07:23 PM

Hello

I just format and reinstalled a clean installation of windows 7 x64, but after few days, my computer becomes too slow.

Please find below my Hardware Config by Speccy

My Config Speccy

Also attached Attach.txt

Thanks a lot

Also below DDS Log:

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16457 BrowserJavaVersion: 10.9.2
Run by Hicham at 0:14:09 on 2013-01-08
Microsoft Windows 7 Édition Intégrale 6.1.7601.1.1252.33.1036.18.8073.4109 [GMT 0:00]
.
AV: Kaspersky Internet Security *Enabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
SP: Kaspersky Internet Security *Enabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security *Enabled* {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\IDT\WDM\STacSV64.exe
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\WLANExt.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmService.exe
C:\Program Files\Common Files\SPBA\upeksvr.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\IDT\WDM\AESTSr64.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\EMBASSY Client Core\EmbassyServer.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
C:\Program Files (x86)\Hotspot Shield\bin\openvpnas.exe
C:\Program Files (x86)\Hotspot Shield\HssWPR\hsssrv.exe
C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
C:\Program Files (x86)\Sierra Wireless Inc\IERA\IERA64.exe
C:\Program Files (x86)\MeditelInternet\MeditelInternet_Service.exe
C:\ProgramData\MobileBrServ\mbbservice.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\system32\DRIVERS\o2flash.exe
C:\Windows\SysWOW64\srvany.exe
C:\Windows\sysWOW64\SDIOAssist.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Sierra Wireless Inc\Common\SwiCardDetect64.exe
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Authentication Manager\WaveAMService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
C:\Program Files (x86)\BlueStacks\HD-Service.exe
C:\Program Files\Dell\Feature Enhancement Pack\DFEPService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\HPQ\Shared\Sierra Wireless\Win32\Unicode\SWIHPWMI.exe
C:\Program Files (x86)\BlueStacks\HD-Network.exe
C:\Program Files (x86)\BlueStacks\HD-BlockDevice.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\BlueStacks\HD-SharedFolder.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\alg.exe
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Windows\system32\svchost.exe -k HPService
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\SearchIndexer.exe
C:\Windows\System32\WUDFHost.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe
C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Dell\Feature Enhancement Pack\DFEPApplication.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmNotify.exe
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files (x86)\Samsung\Kies\Kies.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe
C:\Windows\System32\StikyNot.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files (x86)\MeditelInternet\MeditelInternet_Launcher.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Users\Hicham\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Dell\Feature Enhancement Pack\SmartSettings.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Internet Download Manager\IDMIntegrator64.exe
C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1449.0\mswinext.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\BlueStacks\HD-Agent.exe
C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
C:\Program Files (x86)\Sierra Wireless Inc\WebUpdater\TRUUpdater.exe
C:\Program Files (x86)\Google\Google Talk\googletalk.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
C:\Windows\Integrator.exe
C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Nero\Update\NASvc.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Users\Hicham\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
C:\Program Files\Speccy\Speccy64.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\WmiApSrv.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = www.wana.ma
uProxyOverride = <local>
mWinlogon: Userinit = userinit.exe
BHO: IDM integration (IDMIEHlprObj Class): {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
BHO: HP Print Enhancer: {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
BHO: Search Helper: {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Programme d’aide de l’Assistant de connexion au compte Microsoft: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Safe Money Plugin: {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll
BHO: Adobe Acrobat Create PDF Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Bing Bar BHO: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1449.0\npwinext.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
BHO: Adobe Acrobat Create PDF from Selection: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
BHO: Hotspot Shield Class: {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE.dll
BHO: HP Smart BHO Class: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
TB: Adobe Acrobat Create PDF Toolbar: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
TB: @C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1449.0\npwinext.dll,-100: {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1449.0\npwinext.dll
TB: Adobe Acrobat Create PDF Toolbar: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
uRun: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
uRun: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
uRun: [KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
uRun: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
uRun: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
uRun: [Advanced SystemCare 6] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart
mRun: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
mRun: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
mRun: [Bing Bar] "C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1449.0\mswinext.exe"
mRun: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume
mRun: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe"
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" 60
mRun: [IMSS] "C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe"
mRun: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
mRun: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
mRun: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe"
mRun: [NBAgent] "C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart
mRun: [ROC_roc_ssl_v12] "C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe" / /PROMPT /CMPID=roc_ssl_v12
mRun: [PWRISOVM.EXE] C:\Program Files (x86)\PowerISO\PWRISOVM.EXE -startup
mRun: [TRUUpdater] "C:\Program Files (x86)\Sierra Wireless Inc\WebUpdater\TRUUpdater.exe" /bkground
mRun: [WatcherHelper] "C:\Program Files (x86)\Sierra Wireless Inc\3G Watcher\WaHelper.exe"
mRun: [googletalk] C:\Program Files (x86)\Google\Google Talk\googletalk.exe /autostart
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
mRun: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
StartupFolder: C:\Users\Hicham\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\BATTER~1.LNK - C:\Program Files (x86)\Dachshund Software\Battery Doubler\Battery Doubler.exe
StartupFolder: C:\Users\Hicham\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Hicham\AppData\Roaming\Dropbox\bin\Dropbox.exe
StartupFolder: C:\Users\Hicham\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SMARTS~1.LNK - C:\Program Files\Dell\Feature Enhancement Pack\SmartSettings.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\HPDIGI~1.LNK - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\Launcher.lnk - C:\Program Files (x86)\MeditelInternet\MeditelInternet_Launcher.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
mPolicies-System: DisableCAD = dword:1
IE: &Envoyer à OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Ajouter dans l'Anti-bannière - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ie_banner_deny.htm
IE: Ajouter la cible du lien à un fichier PDF existant - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Ajouter à un fichier PDF existant - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convertir au format Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Convertir la cible du lien au format Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: E&xporter vers Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Télécharger avec IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
IE: Télécharger tous les liens avec IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
IE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
TCP: Interfaces\{1647E38A-0B3C-4B1E-99EB-8ACD1C760624} : NameServer = 192.168.2.1
TCP: Interfaces\{1DF07704-962D-4369-8286-C4A09489A7B7} : NameServer = 192.168.1.1
TCP: Interfaces\{1DF07704-962D-4369-8286-C4A09489A7B7}\44C496E6B6 : DHCPNameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{1DF07704-962D-4369-8286-C4A09489A7B7}\44C496E6B602D4169637F6E6 : DHCPNameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{3785274F-25C5-499E-B1C5-326107887E4A} : DHCPNameServer = 8.8.8.8
TCP: Interfaces\{53FB33D6-6B57-4673-8C9C-6C41F53D4025} : DHCPNameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{F538F809-67CC-4E7A-86FB-B9CCF71BEE20} : NameServer = 8.8.8.8 154.15.199.142
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
AppInit_DLLs= C:\Windows\SysWOW64\nvinit.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
LSA: Authentication Packages = msv1_0 wvauth
x64-BHO: IDM integration (IDMIEHlprObj Class): {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll
x64-BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Safe Money Plugin: {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\OnlineBanking\online_banking_bho.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll
x64-BHO: Hotspot Shield Class: {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll
x64-Run: [IntelPROSet] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PROSet/Wireless
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [DFEPApplication] C:\Program Files\Dell\Feature Enhancement Pack\DFEPApplication.exe
x64-Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
x64-Run: [FreeFallProtection] C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
x64-Run: [TdmNotify] C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmNotify.exe
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
x64-Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
x64-IE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-Notify: spba - C:\Program Files\Common Files\SPBA\homefus2.dll
x64-SSODL: WebCheck - <orphaned>
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Hicham\AppData\Roaming\Mozilla\Firefox\Profiles\o8lgx9kj.default\
FF - plugin: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\npBrowserPlugin.dll
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll
FF - plugin: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1449.0\npwinext.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Program Files\ma-config.com\nphardwaredetection.dll
FF - plugin: C:\Users\Hicham\AppData\Local\Google\Update\1.3.21.124\npGoogleUpdate3.dll
FF - plugin: C:\Users\Hicham\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
FF - plugin: C:\Users\Hicham\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll
FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
FF - plugin: C:\Windows\SysWOW64\Npplg90n.dll
FF - ExtSQL: 2012-12-10 18:15; mozilla_cc@internetdownloadmanager.com; C:\Users\Hicham\AppData\Roaming\IDM\idmmzcc5
FF - ExtSQL: 2012-12-10 18:30; smartwebprinting@hp.com; C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF - ExtSQL: 2012-12-10 18:31; msntoolbar@msn.com; C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1449.0\Firefox
FF - ExtSQL: 2012-12-10 18:31; {27182e60-b5f3-411c-b545-b44205977502}; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension
FF - ExtSQL: 2012-12-10 18:42; anti_banner@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com
FF - ExtSQL: 2012-12-10 18:42; content_blocker@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com
FF - ExtSQL: 2012-12-10 18:43; online_banking@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com
FF - ExtSQL: 2012-12-10 18:43; url_advisor@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com
FF - ExtSQL: 2012-12-10 18:43; virtual_keyboard@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com
FF - ExtSQL: 2012-12-10 20:04; web2pdfextension@web2pdf.adobedotcom; C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF - ExtSQL: 2012-12-23 17:28; afurladvisor@anchorfree.com; C:\Program Files (x86)\Mozilla Firefox\extensions\afurladvisor@anchorfree.com
FF - ExtSQL: 2013-01-01 23:31; fbsidebardisabler@vittgam.net; C:\Users\Hicham\AppData\Roaming\Mozilla\Firefox\Profiles\o8lgx9kj.default\extensions\fbsidebardisabler@vittgam.net.xpi
FF - ExtSQL: !HIDDEN! 2012-12-10 18:30; smartwebprinting@hp.com; C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
.
---- FIREFOX POLICIES ----
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: network.http.max-connections - 48
FF - user.js: network.http.max-connections-per-server - 16
FF - user.js: network.http.max-persistent-connections-per-proxy - 16
FF - user.js: network.http.max-persistent-connections-per-server - 8
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: content.notify.ontimer - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 2250000
FF - user.js: content.switch.threshold - 750000
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
.
============= SERVICES / DRIVERS ===============
.
R0 fltsrv;Acronis Storage Filter Management;C:\Windows\System32\drivers\fltsrv.sys [2012-12-14 148576]
R0 iaStorA;iaStorA;C:\Windows\System32\drivers\iaStorA.sys [2012-12-12 652344]
R0 iaStorF;iaStorF;C:\Windows\System32\drivers\iaStorF.sys [2012-12-12 28216]
R0 NBVol;Nero Backup Volume Filter Driver;C:\Windows\System32\drivers\NBVol.sys [2012-12-11 72240]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver;C:\Windows\System32\drivers\NBVolUp.sys [2012-12-11 15920]
R0 nvpciflt;nvpciflt;C:\Windows\System32\drivers\nvpciflt.sys [2012-12-12 30056]
R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2012-12-10 56208]
R0 stdcfltn;Disk Class Filter Driver for Accelerometer;C:\Windows\System32\drivers\stdcfltn.sys [2012-12-10 22128]
R1 HssDRV6;Hotspot Shield Routing Driver 6;C:\Windows\System32\drivers\hssdrv6.sys [2012-11-15 42248]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\System32\drivers\klim6.sys [2012-8-2 28504]
R1 kltdi;kltdi;C:\Windows\System32\drivers\kltdi.sys [2012-6-8 54104]
R1 kneps;kneps;C:\Windows\System32\drivers\kneps.sys [2012-8-13 178008]
R1 nvkflt;nvkflt;C:\Windows\System32\drivers\nvkflt.sys [2012-12-12 284008]
R1 Uim_VIM;UIM Virtual Image Plugin;C:\Windows\System32\drivers\uim_vimx64.sys [2012-11-22 390352]
R2 AdvancedSystemCareService6;Advanced SystemCare Service 6;C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [2012-12-11 1026432]
R2 AESTFilters;Andrea ST Filters Service;C:\Program Files\IDT\WDM\AESTSr64.exe [2012-12-10 89600]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-7-18 659472]
R2 AVP;Kaspersky Anti-Virus Service;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [2012-8-17 356376]
R2 BstHdAndroidSvc;BlueStacks Android Service;C:\Program Files (x86)\BlueStacks\HD-Service.exe [2012-10-25 393080]
R2 BstHdDrv;BlueStacks Hypervisor;C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [2012-10-25 71032]
R2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [2012-10-25 384888]
R2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® + High Speed Security Service;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-8-23 135984]
R2 Credential Vault Host Control Service;Credential Vault Host Control Service;C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe [2012-4-25 1043872]
R2 Credential Vault Host Storage;Credential Vault Host Storage;C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe [2012-4-25 36768]
R2 DellDigitalDelivery;Dell Digital Delivery Service;C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [2012-10-9 173568]
R2 DFEPService;Dell Feature Enhancement Pack Service;C:\Program Files\Dell\Feature Enhancement Pack\DFEPService.exe [2012-8-15 2280504]
R2 EmbassyService;EmbassyService;C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\EMBASSY Client Core\EmbassyServer.exe [2012-1-17 218504]
R2 hshld;Hotspot Shield Service;C:\Program Files (x86)\Hotspot Shield\bin\openvpnas.exe [2012-11-15 527728]
R2 HssWd;Hotspot Shield Monitoring Service;C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [2012-11-15 389488]
R2 IAStorDataMgrSvc;Technologie de stockage Intel® Rapid;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-12-10 14904]
R2 IDMWFP;IDMWFP;C:\Windows\System32\drivers\idmwfp.sys [2012-11-21 165112]
R2 IERA;Sierra Wireless Error Reporting Agent;C:\Program Files (x86)\Sierra Wireless Inc\IERA\IERA64.exe [2012-12-12 202096]
R2 MeditelInternet_Service;MeditelInternet_Service;C:\Program Files (x86)\MeditelInternet\MeditelInternet_Service.exe [2012-12-30 347120]
R2 Mobile Broadband HL Service;Mobile Broadband HL Service;C:\ProgramData\MobileBrServ\mbbService.exe [2012-12-30 230240]
R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-9-23 641832]
R2 O2SDIOAssist;O2SDIOAssist;C:\Windows\SysWOW64\srvany.exe [2012-12-10 8192]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-11-30 382824]
R2 SwiCardDetectSvc;Sierra Wireless Card Detection Service;C:\Program Files (x86)\Sierra Wireless Inc\Common\SwiCardDetect64.exe [2011-8-17 316272]
R2 SWIHPWMI;SWIHPWMI;C:\Program Files (x86)\HPQ\Shared\Sierra Wireless\Win32\Unicode\SWIHPWMI.exe [2006-12-4 292384]
R2 TeamViewer8;TeamViewer 8;C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2012-12-11 3463080]
R2 Wave Authentication Manager Service;Wave Authentication Manager Service;C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Authentication Manager\WaveAMService.exe [2012-1-5 1679872]
R2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2012-8-23 3342640]
R3 Acceler;Accelerometer Service;C:\Windows\System32\drivers\accelern.sys [2012-12-10 27760]
R3 AMPPAL;Carte réseau virtuelle Intel® Centrino® Wireless Bluetooth® + High Speed;C:\Windows\System32\drivers\AmpPal.sys [2012-7-18 198144]
R3 cvusbdrv;Dell ControlVault;C:\Windows\System32\drivers\cvusbdrv.sys [2012-4-25 45672]
R3 dcdbas;System Management Driver;C:\Windows\System32\drivers\dcdbas64.sys [2012-9-23 39016]
R3 klkbdflt;Kaspersky Lab KLKBDFLT;C:\Windows\System32\drivers\klkbdflt.sys [2012-5-25 29016]
R3 klmouflt;Kaspersky Lab KLMOUFLT;C:\Windows\System32\drivers\klmouflt.sys [2012-7-25 29528]
R3 O2MDRRDR;O2MDRRDR;C:\Windows\System32\drivers\O2MDRw7x64.sys [2011-1-3 74984]
R3 O2SDJRDR;O2SDJRDR;C:\Windows\System32\drivers\o2sdjw7x64.sys [2011-3-23 83560]
R3 swivsp;AC8xx Virtual Serial Port;C:\Windows\System32\drivers\swivspnt.sys [2007-3-26 23552]
R3 SWNC8U01;Sierra Wireless MUX NDIS Driver (UMTS01);C:\Windows\System32\drivers\SWNC8U01.sys [2007-1-12 115712]
R3 SWUMX01;Sierra Wireless USB MUX Driver (UMTS01);C:\Windows\System32\drivers\swumx01.sys [2007-1-12 85760]
R3 taphss6;Anchorfree HSS VPN Adapter;C:\Windows\System32\drivers\taphss6.sys [2012-11-15 40712]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-11-9 160944]
S3 AMPPALP;Protocole Intel® Centrino® Wireless Bluetooth® + High Speed;C:\Windows\System32\drivers\AmpPal.sys [2012-7-18 198144]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2012-12-24 102368]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2011-4-12 71168]
S3 driverhardwarev2x64;driverhardwarev2x64;C:\Program Files\ma-config.com\Drivers\driverhardwarev2x64.sys [2011-7-21 16640]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;C:\Windows\System32\drivers\ew_hwusbdev.sys [2012-12-30 117248]
S3 ewusbmbb;HUAWEI USB-WWAN miniport;C:\Windows\System32\drivers\ewusbwwan.sys [2012-12-30 422400]
S3 ewusbnet;HUAWEI USB-NDIS miniport;C:\Windows\System32\drivers\ewusbnet.sys [2012-12-31 243200]
S3 hwusbdev;Huawei DataCard USB PNP Device;C:\Windows\System32\drivers\ewusbdev.sys [2012-12-31 114304]
S3 ImDisk;ImDisk;C:\UBCD4Win\imdisk.sys [2012-12-12 34264]
S3 maconfservice;Ma-Config Service;C:\Program Files\ma-config.com\x64\maconfservice.exe [2012-10-28 427976]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-8-23 272688]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-12-10 19456]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2012-12-24 203104]
S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S3 SWNC8U00;Sierra Wireless MUX NDIS Driver (UMTS00);C:\Windows\System32\drivers\swnc8u00.sys [2012-12-9 195584]
S3 SWNC8U12;Sierra Wireless MUX NDIS Driver (UMTS12);C:\Windows\System32\drivers\swnc8u12.sys [2012-12-9 195584]
S3 swumx12;Sierra Wireless USB MUX Driver (UMTS12);C:\Windows\System32\drivers\swumx12.sys [2012-12-9 189056]
S3 Synth3dVsc;Synth3dVsc;C:\Windows\System32\drivers\Synth3dVsc.sys [2011-4-12 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\System32\drivers\terminpt.sys [2012-12-10 29696]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2012-12-10 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2012-12-10 30208]
S3 tsusbhub;tsusbhub;C:\Windows\System32\drivers\tsusbhub.sys [2011-4-12 117248]
S3 WatAdminSvc;Service Windows Activation Technologies;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-12-11 1255736]
S3 WvPCR;WvPCR;C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Common\WvPCR.exe [2012-1-16 198144]
.
=============== File Associations ===============
.
FileExt: .js: jsfile="C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\Dreamweaver.exe","%1"
ShellExec: dreamweaver.exe: Open="C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\dreamweaver.exe", "%1"
.
=============== Created Last 30 ================
.
2013-01-08 00:05:14 -------- d-----w- C:\Program Files\Speccy
2013-01-06 22:02:03 9125352 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2FAFAB76-8FE2-449D-BF46-D46633BC1CCC}\mpengine.dll
2012-12-31 01:49:37 -------- d-----w- C:\Users\Hicham\AppData\Local\CrashDumps
2012-12-31 01:05:57 29696 ----a-w- C:\Windows\System32\drivers\ewdcsc.sys
2012-12-31 01:05:57 243200 ----a-w- C:\Windows\System32\drivers\ewusbnet.sys
2012-12-31 01:05:57 117248 ----a-w- C:\Windows\System32\drivers\ewusbmdm.sys
2012-12-31 01:05:57 114304 ----a-w- C:\Windows\System32\drivers\ewusbdev.sys
2012-12-31 00:51:21 -------- d-----w- C:\Program Files (x86)\Mobile Partner
2012-12-31 00:19:17 -------- d-----w- C:\Program Files (x86)\DC-Unlocker
2012-12-30 15:27:59 32768 ----a-w- C:\Windows\SysWow64\drivers\ewdcsc.sys
2012-12-30 15:27:59 274944 ----a-w- C:\Windows\SysWow64\drivers\ewusbnet.sys
2012-12-30 15:27:59 223232 ----a-w- C:\Windows\SysWow64\drivers\ewusbmdm.sys
2012-12-30 14:15:07 -------- d-----w- C:\Users\Hicham\AppData\Roaming\MeditelInternet
2012-12-30 14:14:58 422400 ----a-w- C:\Windows\System32\drivers\ewusbwwan.sys
2012-12-30 14:14:58 117248 ----a-w- C:\Windows\System32\drivers\ew_hwusbdev.sys
2012-12-30 14:14:53 -------- d-----w- C:\Program Files (x86)\MeditelInternet
2012-12-30 13:13:45 -------- d-----w- C:\ProgramData\MobileBrServ
2012-12-30 02:14:08 -------- d-----w- C:\Users\Hicham\AppData\Local\ElevatedDiagnostics
2012-12-30 00:27:45 -------- d-----w- C:\Users\Hicham\AppData\Roaming\OpalCSVconverter_prefs
2012-12-30 00:27:23 -------- d-----w- C:\ProgramData\InstallMate
2012-12-30 00:27:23 -------- d-----w- C:\Program Files (x86)\Opal-Convert CSV VCF - LITE
2012-12-30 00:15:52 -------- d-----w- C:\Conttt
2012-12-29 23:42:42 -------- d-----w- C:\Contacts
2012-12-29 22:59:34 -------- d-----w- C:\Users\Hicham\AppData\Roaming\MAPILab Ltd
2012-12-29 22:59:28 -------- d-----w- C:\Program Files (x86)\MAPILab Ltd
2012-12-29 22:59:28 -------- d-----w- C:\Program Files (x86)\Common Files\Outlook Security Manager
2012-12-29 22:59:28 -------- d-----w- C:\Program Files (x86)\Common Files\MAPILab Ltd
2012-12-28 22:43:48 -------- d-----w- C:\Program Files (x86)\Internet Mobile
2012-12-25 11:47:57 -------- d-----w- C:\Program Files (x86)\HDM Connection Manager
2012-12-24 18:03:12 203104 ----a-w- C:\Windows\System32\drivers\ssudmdm.sys
2012-12-24 18:03:12 102368 ----a-w- C:\Windows\System32\drivers\ssudbus.sys
2012-12-24 18:01:38 -------- d-----w- C:\Program Files (x86)\MyFree Codec
2012-12-24 17:39:31 821824 ----a-w- C:\Windows\SysWow64\dgderapi.dll
2012-12-24 00:28:41 -------- d-----w- C:\Users\Hicham\Tracing
2012-12-23 17:26:18 -------- d-----w- C:\ProgramData\Hotspot Shield
2012-12-23 17:25:51 -------- d-----w- C:\Program Files (x86)\Hotspot Shield
2012-12-23 13:37:04 -------- d-----w- C:\ProgramData\GESTAN
2012-12-23 13:37:04 -------- d-----w- C:\Gestan
2012-12-23 13:36:46 -------- d-----w- C:\Users\Hicham\AppData\Roaming\GESTAN
2012-12-23 13:36:40 -------- d-----w- C:\ProgramData\ICS-informatique
2012-12-23 13:36:35 -------- d-----w- C:\Users\Hicham\AppData\Local\WDSetup
2012-12-23 13:36:35 -------- d-----w- C:\Program Files (x86)\Common Files\PC SOFT
2012-12-23 13:08:16 -------- d-----w- C:\Program Files (x86)\Common Files\EURATEC
2012-12-23 13:06:59 98304 ----a-w- C:\Windows\SysWow64\Ltfil90n.dll
2012-12-23 12:57:51 327168 ----a-w- C:\Windows\IsUn040c.exe
2012-12-23 12:56:19 -------- d-----w- C:\Program Files (x86)\GanttProject-2.6
2012-12-23 12:43:00 -------- d-----w- C:\Outils
2012-12-22 20:20:32 46080 ----a-w- C:\Windows\System32\atmlib.dll
2012-12-22 20:20:32 367616 ----a-w- C:\Windows\System32\atmfd.dll
2012-12-22 20:20:32 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2012-12-22 20:20:31 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
2012-12-19 16:15:16 -------- d-----w- C:\Program Files (x86)\TSR Soft
2012-12-19 03:40:20 15872 ----a-w- C:\Windows\System32\drivers\ss_bwh.sys
2012-12-19 03:36:26 -------- d-----w- C:\Program Files (x86)\MarkAny
2012-12-18 22:39:55 15944 ----a-w- C:\Windows\System32\drivers\ssaewh.sys
2012-12-18 22:39:36 15872 ----a-w- C:\Windows\System32\drivers\ssecwh.sys
2012-12-18 22:39:24 15872 ----a-w- C:\Windows\System32\drivers\ssm_wh.sys
2012-12-18 21:39:27 15872 ----a-w- C:\Windows\System32\drivers\ssbcwh.sys
2012-12-18 17:09:52 -------- d-----w- C:\wamp
2012-12-17 21:33:37 -------- d-----w- C:\Users\Hicham\AppData\Local\Incomedia
2012-12-17 21:26:52 -------- d-----w- C:\Program Files (x86)\WebSite X5 v9 - Evolution
2012-12-17 18:32:47 -------- d-----w- C:\Program Files (x86)\Maïdo Production
2012-12-17 18:31:37 -------- d-----w- C:\ProgramData\Lauyan
2012-12-17 18:31:37 -------- d-----w- C:\Program Files (x86)\Lauyan
2012-12-15 21:43:27 746984 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2012-12-15 21:43:26 821736 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2012-12-15 21:42:54 95208 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2012-12-15 21:24:05 -------- d-----w- C:\Temp
2012-12-15 21:03:35 -------- d-----w- C:\Program Files\SAMSUNG
2012-12-15 20:52:33 -------- d-----w- C:\Users\Hicham\AppData\Local\Samsung
2012-12-15 20:52:31 -------- d-----w- C:\Users\Hicham\AppData\Roaming\Samsung
2012-12-15 20:47:21 708168 ----a-w- C:\Windows\System32\WinUSBCoInstaller.dll
2012-12-15 20:47:21 1490656 ----a-w- C:\Windows\System32\WdfCoInstaller01007.dll
2012-12-15 20:44:20 4659712 ----a-w- C:\Windows\SysWow64\Redemption.dll
2012-12-15 20:42:58 -------- d-----w- C:\ProgramData\Samsung
2012-12-15 20:42:58 -------- d-----w- C:\Program Files (x86)\Samsung
2012-12-15 16:52:27 -------- d-----w- C:\Program Files (x86)\Dachshund Software
2012-12-15 02:26:51 -------- d-----w- C:\Windows\AutoKMS
2012-12-14 23:24:21 -------- d-----r- C:\Users\Hicham\Dropbox
2012-12-14 23:18:04 -------- d-----w- C:\Windows\Migration
2012-12-14 22:52:06 -------- d-----w- C:\Users\Hicham\AppData\Roaming\Dropbox
2012-12-14 05:51:14 -------- d-----w- C:\Users\Hicham\AppData\Local\Google
2012-12-14 05:27:08 -------- d-----r- C:\Program Files (x86)\Skype
2012-12-14 04:06:29 -------- d-----w- C:\MyS2GApp
2012-12-14 04:06:18 -------- d-----w- C:\Program Files (x86)\Tapess-team
2012-12-14 00:29:58 337544 ----a-w- C:\Windows\System32\drivers\snapman.sys
2012-12-14 00:29:55 148576 ----a-w- C:\Windows\System32\drivers\fltsrv.sys
2012-12-13 16:37:07 -------- d-----w- C:\Users\Hicham\AppData\Roaming\SolidDocuments
2012-12-13 01:04:00 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2012-12-13 01:04:00 2048 ----a-w- C:\Windows\System32\tzres.dll
2012-12-12 22:00:38 -------- d-----w- C:\UBCD4Win
2012-12-12 21:09:29 -------- d-----w- C:\Users\Hicham\AppData\Local\Nero_AG
2012-12-12 18:30:58 -------- d-----w- C:\Program Files (x86)\HDD Regenerator
2012-12-12 18:25:40 -------- d-----w- C:\Program Files (x86)\Seagate
2012-12-12 18:25:14 -------- d-----w- C:\Users\Hicham\AppData\Local\Downloaded Installations
2012-12-12 18:18:05 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard
2012-12-12 16:19:19 -------- d-----w- C:\Users\Hicham\AppData\Roaming\PowerISO
2012-12-12 05:30:23 -------- d-----w- C:\Logs
2012-12-12 05:03:04 -------- d-----w- C:\Program Files (x86)\Common Files\Intel Corporation
2012-12-12 04:53:47 -------- d-----w- C:\Program Files (x86)\Sierra Wireless
2012-12-12 04:37:45 652344 ----a-w- C:\Windows\System32\drivers\iaStorA.sys
2012-12-12 04:37:45 28216 ----a-w- C:\Windows\System32\drivers\iaStorF.sys
2012-12-12 04:30:26 -------- d-----w- C:\ProgramData\ma-config.com
2012-12-12 04:30:26 -------- d-----w- C:\Program Files\ma-config.com
2012-12-12 04:29:57 -------- d-----w- C:\ProgramData\PC Drivers HeadQuarters
2012-12-12 03:11:23 -------- d-----w- C:\Windows\System32\appmgmt
2012-12-12 02:48:32 -------- d-----w- C:\Program Files (x86)\MSXML 4.0
2012-12-12 02:27:46 -------- d-----w- C:\Program Files (x86)\HPQ
2012-12-12 02:27:41 -------- d-----w- C:\SWSetup
2012-12-12 01:59:45 -------- d-----w- C:\Users\Hicham\AppData\Roaming\Sierra Wireless
2012-12-12 01:59:40 -------- d-----w- C:\ProgramData\Sierra Wireless
2012-12-12 01:58:48 -------- d-----w- C:\Program Files (x86)\Sierra Wireless Inc
2012-12-12 01:35:33 -------- d-----w- C:\Users\Hicham\AppData\Local\Akamai
2012-12-12 01:28:08 -------- d-----w- C:\Users\Hicham\AppData\Local\Deployment
2012-12-12 01:21:40 -------- d-----w- C:\Users\Hicham\AppData\Local\Nero
2012-12-12 00:51:29 -------- d-----w- C:\Users\Hicham\AppData\Local\Wave Systems Corp
2012-12-11 23:48:59 -------- d-----w- C:\ProgramData\AltrixSoft
2012-12-11 19:32:46 -------- d-----w- C:\Program Files (x86)\JDownloader
2012-12-11 13:11:32 -------- d-----w- C:\Users\Hicham\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2012-12-11 11:09:05 -------- d-----w- C:\Users\Hicham\AppData\Roaming\TeamViewer
2012-12-11 11:04:01 -------- d-----w- C:\Program Files (x86)\TeamViewer
2012-12-11 02:38:36 96768 ----a-w- C:\Windows\System32\fsutil.exe
2012-12-11 02:38:35 74240 ----a-w- C:\Windows\SysWow64\fsutil.exe
2012-12-11 02:38:35 410496 ----a-w- C:\Windows\System32\drivers\iaStorV.sys
2012-12-11 02:38:35 27008 ----a-w- C:\Windows\System32\drivers\amdxata.sys
2012-12-11 02:38:35 2565632 ----a-w- C:\Windows\System32\esent.dll
2012-12-11 02:38:35 189824 ----a-w- C:\Windows\System32\drivers\storport.sys
2012-12-11 02:38:35 1699328 ----a-w- C:\Windows\SysWow64\esent.dll
2012-12-11 02:38:35 166272 ----a-w- C:\Windows\System32\drivers\nvstor.sys
2012-12-11 02:38:35 148352 ----a-w- C:\Windows\System32\drivers\nvraid.sys
2012-12-11 02:38:35 107904 ----a-w- C:\Windows\System32\drivers\amdsata.sys
2012-12-11 02:37:50 98816 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2012-12-11 02:37:50 7936 ----a-w- C:\Windows\System32\drivers\usbd.sys
2012-12-11 02:37:50 52736 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2012-12-11 02:37:50 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2012-12-11 02:37:50 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
2012-12-11 02:37:50 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys
2012-12-11 02:37:50 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys
2012-12-11 02:37:23 902656 ----a-w- C:\Windows\System32\d2d1.dll
2012-12-11 02:37:23 739840 ----a-w- C:\Windows\SysWow64\d2d1.dll
2012-12-11 02:37:23 1139200 ----a-w- C:\Windows\System32\FntCache.dll
2012-12-11 02:35:42 25472 ----a-w- C:\Windows\System32\RegistryDefragBootTime.exe
2012-12-11 02:34:34 552960 ----a-w- C:\Windows\System32\drivers\bthport.sys
2012-12-11 02:34:33 80384 ----a-w- C:\Windows\System32\drivers\BTHUSB.SYS
2012-12-11 02:01:07 -------- d--h--w- C:\ProgramData\Common Files
2012-12-11 02:00:42 126944 ----a-w- C:\Windows\System32\drivers\scdemu.sys
2012-12-11 02:00:41 -------- d-----w- C:\Program Files (x86)\PowerISO
2012-12-11 01:52:15 -------- d-----w- C:\ProgramData\IObit
2012-12-11 01:51:57 -------- d-----w- C:\Users\Hicham\AppData\Roaming\IObit
2012-12-11 01:51:53 -------- d-----w- C:\Program Files (x86)\IObit
2012-12-11 01:49:46 -------- d-----w- C:\ProgramData\Nero
2012-12-11 01:49:25 -------- d-----w- C:\Windows\SysWow64\Wat
2012-12-11 01:49:24 -------- d-----w- C:\Windows\System32\Wat
2012-12-11 01:37:02 -------- d-----w- C:\Windows\SysWow64\wbem\en-US
2012-12-11 01:37:01 -------- d-----w- C:\Windows\System32\wbem\en-US
2012-12-11 01:34:03 -------- d-----w- C:\Users\Hicham\AppData\Local\DigitalVolcano
2012-12-11 01:31:21 -------- d-----w- C:\Program Files (x86)\Duplicate Cleaner
2012-12-11 01:15:42 15920 ----a-w- C:\Windows\System32\drivers\NBVolUp.sys
2012-12-11 01:15:40 72240 ----a-w- C:\Windows\System32\drivers\NBVol.sys
2012-12-11 01:15:37 -------- d-----w- C:\Program Files (x86)\Nero
2012-12-11 01:13:31 470880 ----a-w- C:\Windows\SysWow64\d3dx10_43.dll
2012-12-11 01:13:31 1998168 ----a-w- C:\Windows\SysWow64\D3DX9_43.dll
2012-12-11 01:13:31 1868128 ----a-w- C:\Windows\SysWow64\d3dcsx_43.dll
2012-12-11 01:13:27 1974616 ----a-w- C:\Windows\SysWow64\D3DCompiler_42.dll
2012-12-11 01:13:26 1892184 ----a-w- C:\Windows\SysWow64\D3DX9_42.dll
2012-12-11 01:13:25 4379984 ----a-w- C:\Windows\SysWow64\D3DX9_40.dll
2012-12-11 01:13:22 3727720 ----a-w- C:\Windows\SysWow64\d3dx9_35.dll
2012-12-11 01:13:21 3497832 ----a-w- C:\Windows\SysWow64\d3dx9_34.dll
2012-12-11 00:59:22 -------- d-----w- C:\Program Files (x86)\Hard Drive Inspector
2012-12-11 00:59:16 -------- d-----w- C:\Program Files (x86)\Common Files\AltrixSoft
2012-12-10 23:25:29 -------- d-----w- C:\Program Files (x86)\Essential Data Tools
2012-12-10 22:36:16 -------- d-----w- C:\Users\Hicham\AppData\Local\Apps
2012-12-10 22:06:50 -------- d-----w- C:\Windows\fr
2012-12-10 21:49:02 77656 ----a-w- C:\Windows\System32\XAPOFX1_5.dll
2012-12-10 21:49:02 74072 ----a-w- C:\Windows\SysWow64\XAPOFX1_5.dll
2012-12-10 21:49:02 527192 ----a-w- C:\Windows\SysWow64\XAudio2_7.dll
2012-12-10 21:49:02 518488 ----a-w- C:\Windows\System32\XAudio2_7.dll
2012-12-10 21:49:02 276832 ----a-w- C:\Windows\System32\d3dx11_43.dll
2012-12-10 21:49:02 2526056 ----a-w- C:\Windows\System32\D3DCompiler_43.dll
2012-12-10 21:49:02 248672 ----a-w- C:\Windows\SysWow64\d3dx11_43.dll
2012-12-10 21:49:02 2106216 ----a-w- C:\Windows\SysWow64\D3DCompiler_43.dll
2012-12-10 21:48:56 523088 ----a-w- C:\Windows\System32\d3dx10_42.dll
2012-12-10 21:48:56 453456 ----a-w- C:\Windows\SysWow64\d3dx10_42.dll
2012-12-10 21:48:47 4398360 ----a-w- C:\Windows\System32\d3dx9_32.dll
2012-12-10 21:48:47 3426072 ----a-w- C:\Windows\SysWow64\d3dx9_32.dll
2012-12-10 21:48:09 5659096 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\f2ad971cdd72007\skydrivesetup.exe
2012-12-10 21:48:09 -------- d-----w- C:\Program Files (x86)\Microsoft SkyDrive
2012-12-10 21:48:07 -------- d-----r- C:\Users\Hicham\SkyDrive
2012-12-10 21:47:57 -------- d-----w- C:\ProgramData\Microsoft SkyDrive
2012-12-10 21:47:48 94040 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\fc0e78611cdd71f05\DSETUP.dll
2012-12-10 21:47:48 525656 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\fc0e78611cdd71f05\DXSETUP.exe
2012-12-10 21:47:48 1691480 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\fc0e78611cdd71f05\dsetup32.dll
2012-12-10 21:47:42 89944 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\faf7d42c1cdd71f04\DSETUP.dll
2012-12-10 21:47:42 537432 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\faf7d42c1cdd71f04\DXSETUP.exe
2012-12-10 21:47:42 1801048 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\faf7d42c1cdd71f04\dsetup32.dll
2012-12-10 21:47:32 89944 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\f501b5c41cdd71f01\DSETUP.dll
2012-12-10 21:47:32 537432 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\f501b5c41cdd71f01\DXSETUP.exe
2012-12-10 21:47:32 1801048 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\f501b5c41cdd71f01\dsetup32.dll
2012-12-10 21:44:52 -------- d-----w- C:\Windows\SysWow64\Adobe
2012-12-10 21:44:32 -------- d-----w- C:\Users\Hicham\AppData\Local\Macromedia
2012-12-10 21:42:52 73656 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-12-10 21:42:52 697272 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2012-12-10 21:41:01 9728 ----a-w- C:\Windows\System32\Wdfres.dll
2012-12-10 21:41:01 785512 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
2012-12-10 21:41:01 54376 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys
2012-12-10 21:41:01 2560 ----a-w- C:\Windows\System32\drivers\fr-FR\wdf01000.sys.mui
2012-12-10 21:25:30 9125352 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2012-12-10 21:23:05 -------- d-----w- C:\Users\Hicham\AppData\Local\Windows Live
2012-12-10 21:23:01 -------- d-----w- C:\Program Files (x86)\Common Files\Windows Live
2012-12-10 21:17:50 -------- d-----w- C:\Program Files (x86)\SuperCopier2
2012-12-10 21:12:59 89088 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe
2012-12-10 21:10:19 -------- d-----w- C:\Program Files (x86)\BlueStacks
2012-12-10 21:10:08 -------- d-----w- C:\Users\Hicham\AppData\Roaming\TeraCopy
2012-12-10 21:09:29 -------- d-----w- C:\ProgramData\BlueStacksSetup
2012-12-10 21:09:29 -------- d-----w- C:\ProgramData\BlueStacks
2012-12-10 21:09:03 -------- d-----w- C:\Program Files (x86)\HDD Health
2012-12-10 20:56:50 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys
2012-12-10 20:56:50 84992 ----a-w- C:\Windows\System32\WUDFSvc.dll
2012-12-10 20:56:50 744448 ----a-w- C:\Windows\System32\WUDFx.dll
2012-12-10 20:56:50 45056 ----a-w- C:\Windows\System32\WUDFCoinstaller.dll
2012-12-10 20:56:50 229888 ----a-w- C:\Windows\System32\WUDFHost.exe
2012-12-10 20:56:50 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys
2012-12-10 20:56:50 194048 ----a-w- C:\Windows\System32\WUDFPlatform.dll
2012-12-10 20:50:25 81408 ----a-w- C:\Windows\System32\imagehlp.dll
2012-12-10 20:50:25 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
2012-12-10 20:50:25 5120 ----a-w- C:\Windows\System32\wmi.dll
2012-12-10 20:50:25 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
2012-12-10 20:50:25 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2012-12-10 20:39:25 -------- d-----w- C:\Program Files (x86)\uTorrent
2012-12-10 20:37:16 -------- d-----w- C:\Users\Hicham\AppData\Roaming\uTorrent
2012-12-10 20:33:55 509952 ----a-w- C:\Windows\System32\ntshrui.dll
2012-12-10 20:32:41 197120 ----a-w- C:\Windows\System32\d3d10_1.dll
2012-12-10 20:31:34 956928 ----a-w- C:\Windows\System32\localspl.dll
2012-12-10 20:31:16 90624 ----a-w- C:\Windows\System32\drivers\bowser.sys
2012-12-10 20:28:45 1731920 ----a-w- C:\Windows\System32\ntdll.dll
2012-12-10 20:27:43 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll
2012-12-10 20:27:43 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
2012-12-10 20:27:43 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
2012-12-10 20:27:35 -------- d-----w- C:\Users\Hicham\AppData\Roaming\NVIDIA
2012-12-10 20:26:50 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe
2012-12-10 20:22:20 0 ----a-w- C:\Windows\invcol.tmp
2012-12-10 20:20:12 2622464 ----a-w- C:\Windows\System32\wucltux.dll
2012-12-10 20:20:08 99840 ----a-w- C:\Windows\System32\wudriver.dll
2012-12-10 20:20:00 36864 ----a-w- C:\Windows\System32\wuapp.exe
2012-12-10 20:20:00 186752 ----a-w- C:\Windows\System32\wuwebv.dll
2012-12-10 20:19:09 -------- d-----w- C:\Program Files (x86)\Dell Digital Delivery
2012-12-10 20:18:47 -------- d-----w- C:\ProgramData\pat
2012-12-10 19:55:01 -------- d-----w- C:\ProgramData\ALM
2012-12-10 19:51:15 -------- d-----w- C:\Users\Hicham\Adobe Flash Builder 4.6
2012-12-10 19:48:18 56208 ------w- C:\Windows\System32\drivers\PxHlpa64.sys
2012-12-10 19:48:18 10224 ------w- C:\Windows\System32\drivers\cdralw2k.sys
2012-12-10 19:48:18 10224 ------w- C:\Windows\System32\drivers\cdr4_xp.sys
2012-12-10 19:48:17 -------- d-----w- C:\Program Files (x86)\Common Files\Sonic Shared
2012-12-10 19:48:17 -------- d-----w- C:\Program Files (x86)\Common Files\PX Storage Engine
2012-12-10 19:48:13 -------- d-----w- C:\Program Files (x86)\My Company Name
2012-12-10 19:41:32 -------- d-----w- C:\Users\Hicham\AppData\Local\Adobe
2012-12-10 19:36:11 -------- d-----w- C:\Users\Hicham\AppData\Roaming\Intel Corporation
2012-12-10 19:13:45 -------- d-----w- C:\Program Files (x86)\Renesas Electronics
2012-12-10 19:07:55 440208 ----a-w- C:\Windows\System32\brcmbsp.dll
2012-12-10 19:07:55 241544 ----a-w- C:\Windows\System32\bipbsp.dll
2012-12-10 19:07:38 -------- d-----w- C:\ProgramData\Broadcom
2012-12-10 19:07:38 -------- d-----w- C:\Program Files\Broadcom Corporation
2012-12-10 19:03:27 22128 ----a-w- C:\Windows\System32\drivers\stdcfltn.sys
2012-12-10 19:03:24 -------- d-----w- C:\Dell
2012-12-10 19:02:33 -------- d-----w- C:\Program Files\STMicroelectronics
2012-12-10 19:02:27 81520 ----a-w- C:\Windows\System32\accelernco01.dll
2012-12-10 19:02:27 27760 ----a-w- C:\Windows\System32\drivers\accelern.sys
2012-12-10 19:02:26 -------- d-----w- C:\Program Files (x86)\STMicroelectronics
2012-12-10 19:02:14 442368 ----a-w- C:\Windows\System32\AESTEC64.dll
2012-12-10 19:02:13 68608 ----a-w- C:\Windows\System32\AESTAR64.dll
2012-12-10 19:02:13 4637184 ----a-w- C:\Windows\System32\stlang64.dll
2012-12-10 19:02:13 162816 ----a-w- C:\Windows\System32\AESTAC64.dll
2012-12-10 19:02:13 11941376 ----a-w- C:\Windows\System32\idtsg64.cpl
2012-12-10 19:01:54 651776 ------w- C:\Windows\System32\stapi64.dll
2012-12-10 19:01:54 520192 ----a-w- C:\Windows\System32\drivers\stwrt64.sys
2012-12-10 19:01:54 431616 ----a-w- C:\Windows\System32\stcplx64.dll
2012-12-10 19:01:54 220160 ----a-w- C:\Windows\System32\st646324.dll
2012-12-10 19:01:54 1499136 ----a-w- C:\Windows\System32\stapo64.dll
2012-12-10 19:01:53 -------- d-----w- C:\Program Files\IDT
2012-12-10 19:01:08 -------- d-----w- C:\Program Files\DellTPad
2012-12-10 19:01:02 368464 ----a-w- C:\Windows\System32\drivers\Apfiltr.sys
2012-12-10 19:01:02 113224 ----a-w- C:\Windows\System32\Vxdif.dll
2012-12-10 19:00:44 93288 ----a-w- C:\Windows\dcmdev64.exe
2012-12-10 19:00:44 382056 ----a-w- C:\Windows\hapint.exe
2012-12-10 19:00:44 335464 ----a-w- C:\Windows\dchcfg64.exe
2012-12-10 19:00:42 459880 ----a-w- C:\Windows\System32\dchbas64.dll
2012-12-10 19:00:42 322664 ----a-w- C:\Windows\System32\dchapi64.dll
2012-12-10 18:53:06 -------- d-----w- C:\Windows\{69093D49-3DD1-4FB5-A378-0D4DB4CF86EA}
2012-12-10 18:52:56 -------- d-----w- C:\apps
2012-12-10 18:52:51 -------- d-----w- C:\ProgramData\NTRU Cryptosystems
2012-12-10 18:52:51 -------- d-----w- C:\Program Files\NTRU Cryptosystems
2012-12-10 18:52:51 -------- d-----w- C:\Program Files (x86)\NTRU Cryptosystems
2012-12-10 18:50:31 -------- d-----w- C:\Program Files\Common Files\SPBA
2012-12-10 18:50:31 -------- d-----w- C:\Program Files (x86)\Dell
2012-12-10 18:50:24 -------- d-----w- C:\Windows\SysWow64\SDA
2012-12-10 18:50:24 -------- d-----w- C:\Program Files (x86)\O2Micro
2012-12-10 18:50:16 81904 ----a-w- C:\Windows\System32\pbadrvdll.dll
2012-12-10 18:50:16 80368 ----a-w- C:\Windows\SysWow64\pbadrvdll.dll
2012-12-10 18:50:16 32240 ----a-w- C:\Windows\System32\drivers\PBADRV.SYS
2012-12-10 18:50:09 -------- d-----w- C:\Program Files (x86)\Gemalto
2012-12-10 18:50:03 -------- d-----w- C:\Windows\System32\BioAPIFFDB
2012-12-10 18:50:02 405504 ----a-r- C:\Users\Hicham\AppData\Roaming\Microsoft\Installer\{9DAED4FC-2B0E-4F3F-8141-F2ABF02CCFCB}\ARPPRODUCTICON.exe
2012-12-10 18:49:33 -------- d-----w- C:\Windows\Downloaded Installations
2012-12-10 18:49:30 -------- d-----w- C:\Users\Hicham\AppData\Roaming\Wave Systems Corp
2012-12-10 18:49:30 -------- d-----w- C:\ProgramData\Wave Systems Corp
2012-12-10 18:49:22 8192 ----a-w- C:\Windows\System32\drivers\IntelMEFWVer.dll
2012-12-10 18:49:07 -------- d-----w- C:\Program Files (x86)\Common Files\postureAgent
2012-12-10 18:47:20 538496 ----a-w- C:\Windows\System32\PROUnstl.exe
2012-12-10 18:47:07 -------- d-----w- C:\Windows\Hewlett-Packard
2012-12-10 18:46:47 73032 ----a-w- C:\Windows\System32\e1cmsg.dll
2012-12-10 18:46:47 482128 ----a-w- C:\Windows\System32\drivers\e1c62x64.sys
2012-12-10 18:46:47 36472 ----a-w- C:\Windows\System32\NicCo36.dll
2012-12-10 18:46:47 101224 ----a-w- C:\Windows\System32\NicInstC.dll
2012-12-10 18:46:04 -------- d-----w- C:\Program Files\Dell
2012-12-10 18:44:32 -------- d-----w- C:\Windows\{7197954C-D1BE-4A17-8E69-52FDC4010A30}
2012-12-10 18:43:38 64856 ----a-w- C:\Windows\System32\klfphc.dll
2012-12-10 18:43:15 438808 ----a-w- C:\Windows\System32\drivers\iaStor.sys
2012-12-10 18:43:03 -------- d-----w- C:\Users\Hicham\AppData\Local\Dell
2012-12-10 18:42:58 -------- d-----w- C:\Windows\ELAMBKUP
2012-12-10 18:42:55 -------- d-----w- C:\ProgramData\Kaspersky Lab
2012-12-10 18:42:55 -------- d-----w- C:\Program Files (x86)\Kaspersky Lab
2012-12-10 18:42:39 89432 ----a-w- C:\Windows\System32\drivers\klflt.sys
2012-12-10 18:38:28 -------- d-----w- C:\Windows\SysWow64\NV
2012-12-10 18:38:28 -------- d-----w- C:\Windows\System32\NV
2012-12-10 18:34:59 -------- d-----w- C:\ProgramData\WEBREG
2012-12-10 18:34:43 -------- d-----w- C:\Users\Hicham\AppData\Local\HP
2012-12-10 18:33:53 253440 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\hpfpp02t.dll
2012-12-10 18:31:17 -------- d-----w- C:\Program Files (x86)\MSN Toolbar
2012-12-10 18:31:17 -------- d-----w- C:\Program Files (x86)\Microsoft
2012-12-10 18:31:03 -------- d-----w- C:\Program Files (x86)\Bing Bar Installer
2012-12-10 18:30:29 -------- d-----w- C:\Windows\SysWow64\spool
2012-12-10 18:29:45 -------- d-----w- C:\Users\Hicham\AppData\Roaming\HpUpdate
2012-12-10 18:28:54 -------- d-----w- C:\archive_db
2012-12-10 18:26:16 -------- d-----w- C:\Program Files (x86)\Microsoft Synchronization Services
2012-12-10 18:26:05 -------- d-----w- C:\Windows\PCHEALTH
2012-12-10 18:26:05 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2012-12-10 18:24:50 -------- d-----w- C:\Program Files (x86)\Microsoft Visual Studio 8
2012-12-10 18:24:05 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services
2012-12-10 18:23:58 -------- d-----w- C:\Users\Hicham\AppData\Local\Microsoft Help
2012-12-10 18:20:59 -------- d-----w- C:\Program Files (x86)\Common Files\HP
2012-12-10 18:20:55 -------- d-----w- C:\Program Files (x86)\Common Files\Hewlett-Packard
2012-12-10 18:20:03 138752 ----a-w- C:\Windows\System32\hpf3l02t.dll
2012-12-10 18:19:55 -------- d-----w- C:\Program Files (x86)\HP
2012-12-10 18:18:51 906240 ----a-w- C:\Windows\System32\hpwwiax5.dll
2012-12-10 18:18:51 644456 ----a-w- C:\Windows\System32\hpzids40.dll
2012-12-10 18:18:51 553472 ----a-w- C:\Windows\System32\hppldcoi.dll
2012-12-10 18:18:51 488960 ----a-w- C:\Windows\System32\hpovst11.dll
2012-12-10 18:18:51 1422848 ----a-w- C:\Windows\System32\hpwtiop4.dll
2012-12-10 18:16:54 -------- d-----w- C:\Program Files (x86)\NVIDIA 3D Vision driver
2012-12-10 18:16:41 890216 ----a-w- C:\Windows\System32\nvvsvc.exe
2012-12-10 18:16:41 877928 ----a-w- C:\Windows\System32\nv3dappshext.dll
2012-12-10 18:16:41 63336 ----a-w- C:\Windows\System32\nvshext.dll
2012-12-10 18:16:41 6223208 ----a-w- C:\Windows\System32\nvcpl.dll
2012-12-10 18:16:41 55144 ----a-w- C:\Windows\System32\nv3dappshextr.dll
2012-12-10 18:16:41 3663213 ----a-w- C:\Windows\System32\nvcoproc.bin
2012-12-10 18:16:41 3311464 ----a-w- C:\Windows\System32\nvsvc64.dll
2012-12-10 18:16:41 2557800 ----a-w- C:\Windows\System32\nvsvcr.dll
2012-12-10 18:16:41 118120 ----a-w- C:\Windows\System32\nvmctray.dll
2012-12-10 18:15:20 -------- d-----w- C:\ProgramData\NVIDIA Corporation
2012-12-10 18:15:18 -------- d-----w- C:\Users\Hicham\AppData\Roaming\IDM
2012-12-10 18:15:18 -------- d-----w- C:\Users\Hicham\AppData\Roaming\DMCache
2012-12-10 18:15:17 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation
2012-12-10 18:14:34 983936 ----a-w- C:\Windows\System32\nvumdshimx.dll
2012-12-10 18:14:34 31080 ----a-w- C:\Windows\System32\nvhdap64.dll
2012-12-10 18:14:34 189288 ----a-w- C:\Windows\System32\drivers\nvhda64v.sys
2012-12-10 18:14:34 1805672 ----a-w- C:\Windows\System32\nvdispco64.dll
2012-12-10 18:14:34 1504104 ----a-w- C:\Windows\System32\nvdispgenco64.dll
2012-12-10 18:14:34 1472360 ----a-w- C:\Windows\System32\nvhdagenco6420103.dll
2012-12-10 18:14:33 841272 ----a-w- C:\Windows\SysWow64\nvumdshim.dll
2012-12-10 18:14:33 2816824 ----a-w- C:\Windows\System32\nvapi64.dll
2012-12-10 18:14:33 2496976 ----a-w- C:\Windows\SysWow64\nvapi.dll
2012-12-10 18:14:33 245432 ----a-w- C:\Windows\System32\nvinitx.dll
2012-12-10 18:14:33 201136 ----a-w- C:\Windows\SysWow64\nvinit.dll
2012-12-10 18:14:33 18045968 ----a-w- C:\Windows\System32\nvd3dumx.dll
2012-12-10 18:13:58 -------- d-----w- C:\Program Files (x86)\Internet Download Manager
2012-12-10 18:13:24 -------- d-----w- C:\Program Files\NVIDIA Corporation
2012-12-10 18:13:02 -------- d-----w- C:\NVIDIA
2012-12-10 18:11:13 -------- d--h--w- C:\Windows\System32\WLANProfiles
2012-12-10 18:11:01 -------- d-----w- C:\Users\Hicham\AppData\Roaming\Intel
2012-12-10 18:10:46 -------- d-----w- C:\Users\Hicham\Roaming
2012-12-10 18:10:46 -------- d-----w- C:\ProgramData\Roaming
2012-12-10 18:10:18 20992 ----a-w- C:\Windows\System32\OpenCL.dll
2012-12-10 18:10:18 144896 ----a-w- C:\Windows\System32\IntelOpenCL64.dll
2012-12-10 18:10:14 17920 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2012-12-10 18:10:14 104448 ----a-w- C:\Windows\SysWow64\IntelOpenCL32.dll
2012-12-10 18:09:22 -------- d-----w- C:\Program Files\Common Files\Intel
2012-12-10 18:09:22 -------- d-----w- C:\Program Files (x86)\Cisco
2012-12-10 18:07:31 -------- d-----w- C:\ProgramData\explauncher
2012-12-10 18:07:30 -------- d-----w- C:\ProgramData\launcher
2012-12-10 18:07:22 53248 ----a-w- C:\Windows\SysWow64\CSVer.dll
2012-12-10 18:07:15 -------- d-----w- C:\Intel
2012-12-10 18:06:11 -------- d-----w- C:\Program Files (x86)\Paragon Software
2012-12-10 18:05:22 -------- d-sh--w- C:\Windows\Installer
2012-12-10 16:54:33 -------- d-----w- C:\Windows\Panther
2012-12-09 11:55:49 195584 ----a-w- C:\Windows\System32\drivers\swnc8u00.sys
2012-12-09 07:19:30 189056 ----a-w- C:\Windows\System32\drivers\swumx12.sys
2012-12-09 07:19:29 195584 ----a-w- C:\Windows\System32\drivers\swnc8u12.sys
.
==================== Find3M ====================
.
2012-12-11 02:13:31 54104 ----a-w- C:\Windows\System32\drivers\kltdi.sys
2012-12-11 02:13:30 29528 ----a-w- C:\Windows\System32\drivers\klmouflt.sys
2012-12-11 02:13:29 29016 ----a-w- C:\Windows\System32\drivers\klkbdflt.sys
2012-12-10 21:12:59 222208 ----a-w- C:\Windows\System32\msls31.dll
2012-12-10 18:49:30 239104 ----a-w- C:\Windows\System32\bioapi_mds300.dll
2012-12-10 18:49:30 155136 ----a-w- C:\Windows\System32\bioapi100.dll
2012-11-30 22:43:52 438632 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
2012-11-22 23:15:04 90960 ----a-w- C:\Windows\System32\drivers\uimx64.sys
2012-11-22 23:15:04 633680 ----a-w- C:\Windows\System32\drivers\Uim_IMx64.sys
2012-11-22 23:15:04 472016 ----a-w- C:\Windows\System32\drivers\UimFIO.sys
2012-11-22 23:15:04 390352 ----a-w- C:\Windows\System32\drivers\uim_vimx64.sys
2012-11-22 23:15:04 251728 ----a-w- C:\Windows\SysWow64\prgiso.dll
2012-11-22 03:26:40 3149824 ----a-w- C:\Windows\System32\win32k.sys
2012-11-22 00:43:14 165112 ----a-w- C:\Windows\System32\drivers\idmwfp.sys
2012-11-15 01:38:20 40712 ----a-w- C:\Windows\System32\drivers\taphss6.sys
2012-11-15 01:33:20 42248 ----a-w- C:\Windows\System32\drivers\hssdrv6.sys
2012-11-14 06:11:44 2312704 ----a-w- C:\Windows\System32\jscript9.dll
2012-11-14 06:04:11 1392128 ----a-w- C:\Windows\System32\wininet.dll
2012-11-14 06:02:49 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
2012-11-14 05:57:46 599040 ----a-w- C:\Windows\System32\vbscript.dll
2012-11-14 05:57:35 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2012-11-14 05:52:40 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2012-11-14 02:09:22 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll
2012-11-14 01:58:15 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2012-11-14 01:57:37 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2012-11-14 01:49:25 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2012-11-14 01:48:27 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll
2012-11-14 01:44:42 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2012-11-02 05:59:11 478208 ----a-w- C:\Windows\System32\dpnet.dll
2012-11-02 05:11:31 376832 ----a-w- C:\Windows\SysWow64\dpnet.dll
2012-10-22 17:39:58 12887552 ----a-w- C:\Windows\System32\ig4icd64.dll
2012-10-22 17:39:56 10674176 ----a-w- C:\Windows\SysWow64\ig4icd32.dll
2012-10-22 17:39:54 94208 ----a-w- C:\Windows\System32\IccLibDll_x64.dll
2012-10-22 17:39:54 5903392 ----a-w- C:\Windows\System32\GfxUI.exe
2012-10-22 17:39:54 399392 ----a-w- C:\Windows\System32\hkcmd.exe
2012-10-22 17:39:54 173568 ----a-w- C:\Windows\System32\gfxSrvc.dll
2012-10-22 17:39:54 110592 ----a-w- C:\Windows\System32\hccutils.dll
2012-10-22 17:39:50 185376 ----a-w- C:\Windows\System32\difx64.exe
2012-10-16 08:38:37 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll
2012-10-16 08:38:34 350208 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll
2012-10-16 07:39:52 561664 ----a-w- C:\Windows\apppatch\AcLayers.dll
2009-12-06 09:18:14 26624 --sh--w- C:\Windows\bfcs2.dll
.
============= FINISH: 0:16:23,64 ===============



BC AdBot (Login to Remove)

 


#2 0_shark_0

0_shark_0
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Local time:10:42 PM

Posted 08 January 2013 - 05:21 PM

Need help :(

#3 0_shark_0

0_shark_0
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Local time:10:42 PM

Posted 11 January 2013 - 09:16 PM

Need help :(


Hello,

Please anyone can help me ? I bump it because i didn't receive any answer

Thanks a lot

Edited by 0_shark_0, 11 January 2013 - 09:19 PM.


#4 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:10:42 PM

Posted 11 January 2013 - 09:58 PM

Hi,

Welcome to Bleeping Computer. My name is m0le and I will be helping you with your log.
  • Please subscribe to this topic, if you haven't already. Click the Watch This Topic button at the top on the right.

  • Please avoid installing/uninstalling or updating any programs and attempting any unsupervised fixes or scans. This can make helping you impossible.

  • Please reply to this post so I know you are there.
The forum is busy and we need to have replies as soon as possible. If I haven't had a reply after 3 days I will bump the topic and if you do not reply by the following day after that then I will close the topic.

Once I receive a reply then I will return with your first instructions.

Thanks :thumbup2:
Posted Image
m0le is a proud member of UNITE

#5 0_shark_0

0_shark_0
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Local time:10:42 PM

Posted 11 January 2013 - 10:03 PM

Hi,

Thanks for your help, I'm ready.

Thanks

#6 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:10:42 PM

Posted 12 January 2013 - 05:55 PM

I just format and reinstalled a clean installation of windows 7 x64, but after few days, my computer becomes too slow.


Well, if you've just reformatted and reinstalled then that's cleaned anything that may have been there.

There are a number of reasons for slow computers even after a reformat, it could be hardware or a software conflict. Do you remember the PC being attacked in the last few days?
Posted Image
m0le is a proud member of UNITE

#7 0_shark_0

0_shark_0
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Local time:10:42 PM

Posted 12 January 2013 - 06:02 PM

Hello,

Nothing found by Kaspersky or MBAM

How can I check Software conflict, because hardware is ok, i did memtest and it's ok

Thanks for your help

#8 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:10:42 PM

Posted 12 January 2013 - 06:41 PM

A clean boot is a good way to find problems like this. This will boot the system without any services or startup programs and that will eliminate or pinpoint the main problem.

1. Click Start, type msconfig in the Start Search box, and then press Enter. If you are prompted for an administrator password or for a confirmation, type the password, or click Continue.

2. On the General tab, click Selective Startup.

3. Under Selective Startup, click to clear the Load Startup Items check box.

4. Click the Services tab, click to select the Hide All Microsoft Services check box, and then click Disable All.

5. Click Apply and OK.

6. When you are prompted, click Restart.

7. After the computer starts let me know if the slowness still occurs.
Posted Image
m0le is a proud member of UNITE

#9 0_shark_0

0_shark_0
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Local time:10:42 PM

Posted 12 January 2013 - 06:58 PM

Hello

Rebooted with Selective Startup, and disabled all services only microsoft's enabled.

Result: It stills slowness :(

#10 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:10:42 PM

Posted 13 January 2013 - 03:41 AM

Is it the whole system or does the slowness happen only when you are on the internet?
Posted Image
m0le is a proud member of UNITE

#11 0_shark_0

0_shark_0
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Local time:10:42 PM

Posted 13 January 2013 - 08:46 AM

The whole, like i'm running on a laptop with a dual core and only 1 ghz ram :(

#12 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:10:42 PM

Posted 14 January 2013 - 06:55 PM

Please run aswMBR

Please download aswMBR ( 511KB ) to your desktop.
  • Double click the aswMBR.exe icon to run it
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

Posted Image
m0le is a proud member of UNITE

#13 0_shark_0

0_shark_0
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Local time:10:42 PM

Posted 14 January 2013 - 09:17 PM

Hi

Thanks for your help.

The first scan prompt with bluescreen, I did another scan, aswMBR crash with a window.

:(

#14 0_shark_0

0_shark_0
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Local time:10:42 PM

Posted 15 January 2013 - 03:52 PM

Hi

Finally i run it with windows xp compatibility

Please find below the log

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-01-15 20:15:16
-----------------------------
20:15:16.907 OS Version: Windows x64 5.1.2600 Service Pack 2
20:15:16.908 Number of processors: 8 586 0x2A07
20:15:16.911 ComputerName: HICHAM-E6520 UserName: Hicham
20:15:18.780 Initialize success
20:15:37.813 AVAST engine defs: 13011402
20:15:53.448 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000008a
20:15:53.453 Disk 0 Vendor: ATA_____ 0D__ Size: 476940MB BusType: 8
20:15:53.664 Disk 0 MBR read successfully
20:15:53.672 Disk 0 MBR scan
20:15:53.682 Disk 0 Windows 7 default MBR code
20:15:53.691 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
20:15:53.715 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 219899 MB offset 206848
20:15:53.753 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 125326 MB offset 450560000
20:15:53.782 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 131614 MB offset 707227648
20:15:53.839 Disk 0 scanning C:\Windows\system32\drivers
20:16:20.896 Service scanning
20:17:21.775 Modules scanning
20:17:21.797 Disk 0 trace - called modules:
20:17:21.837 ntoskrnl.exe CLASSPNP.SYS disk.sys
20:17:21.847 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8009a28790]
20:17:23.227 AVAST engine scan C:\Windows
20:17:29.411 AVAST engine scan C:\Windows\system32
20:26:14.991 AVAST engine scan C:\Windows\system32\drivers
20:26:34.693 AVAST engine scan C:\Users\Hicham
20:35:48.946 AVAST engine scan C:\ProgramData
20:40:41.664 Scan finished successfully
20:49:44.917 Disk 0 MBR has been saved successfully to "C:\Users\Hicham\Desktop\MBR.dat"
20:49:44.930 The log file has been saved successfully to "C:\Users\Hicham\Desktop\aswMBR.txt"



#15 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:10:42 PM

Posted 15 January 2013 - 07:24 PM

The log is clean so the crash might be something else.

Please run OTL so we can take a look at a more detailed picture

  • Please download OTL
  • Save it to your desktop.
  • Double click on the Posted Image icon on your desktop.
  • Click the "Scan All Users" checkbox.
  • Push the Posted Image button.

Posted Image
m0le is a proud member of UNITE




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users