"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" "" "29/11/2016 19:07" "" + "HotKeysCmds" "" "" "File not found: C:\Windows\system32\hkcmd.exe" "" "" + "IgfxTray" "" "" "c:\windows\system32\igfxtray.exe" "28/08/2015 16:23" "" + "Persistence" "" "" "File not found: C:\Windows\system32\igfxpers.exe" "" "" + "RtHDVBg" "HD Audio Background Process" "Realtek Semiconductor" "c:\program files\realtek\audio\hda\ravbg64.exe" "29/07/2013 06:30" "" + "RtHDVCpl" "Realtek HD Audio Manager" "Realtek Semiconductor" "c:\program files\realtek\audio\hda\rtkngui64.exe" "19/08/2013 08:29" "" "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" "" "28/11/2016 14:39" "" + "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe" "16/09/2016 18:18" "" + "USB3MON" "iusb3mon" "Intel Corporation" "c:\program files (x86)\intel\intel(r) usb 3.0 extensible host controller driver\application\iusb3mon.exe" "26/03/2014 11:08" "" "HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" "" "30/11/2016 09:28" "" + "DellSystemDetect" "Dell System Detect" "Dell" "c:\users\dell-sage\appdata\local\apps\2.0\ho7yjvqq.to9\k1cy3r7d.9zl\dell..tion_6d0a76327dca4869_0007.0009_d84bde3ab35e468d\dellsystemdetect.exe" "18/08/2016 07:40" "" "C:\Users\Dell-Sage\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" "" "12/10/2016 07:16" "" + "Monitor Ink Alerts - HP Deskjet 3050A J611 series.lnk" "" "" "File not found: File" "" "" "HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" "" "29/11/2016 15:05" "" + "Google Chrome" "Google Chrome Installer" "Google Inc." "c:\program files (x86)\google\chrome\application\54.0.2840.99\installer\chrmstp.exe" "08/11/2016 19:25" "" "HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" "" "29/11/2016 12:55" "" + "Mp3tagShell" "Shell Extension Mp3tag - the universal Tag editor" "Florian Heidenreich" "c:\program files (x86)\mp3tag\mp3tagshell64.dll" "19/06/2016 10:21" "" "HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers" "" "" "" "29/11/2016 12:55" "" + "Mp3tagShell" "Shell Extension Mp3tag - the universal Tag editor" "Florian Heidenreich" "c:\program files (x86)\mp3tag\mp3tagshell64.dll" "19/06/2016 10:21" "" "HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" "" "29/11/2016 12:55" "" + "Mp3tagShell" "Shell Extension Mp3tag - the universal Tag editor" "Florian Heidenreich" "c:\program files (x86)\mp3tag\mp3tagshell64.dll" "19/06/2016 10:21" "" "HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" "" "28/11/2016 14:39" "" + "igfxcui" "" "" "File not found: C:\Windows\system32\igfxpph.dll" "" "" + "igfxDTCM" "igfxDTCM Module" "Intel Corporation" "c:\windows\system32\igfxdtcm.dll" "28/08/2015 16:23" "" "HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" "" "28/11/2016 14:39" "" + "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll" "11/05/2013 09:34" "" "Task Scheduler" "" "" "" "" "" + "\Adobe Acrobat Update Task" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe" "16/09/2016 18:18" "" + "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 14.0 r0" "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe" "29/07/2014 21:12" "" + "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "22/01/2015 01:07" "" + "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "22/01/2015 01:07" "" + "\Intel\Intel Telemetry 2" "Intel(R) Product Improvement Program" "Intel Corporation" "c:\program files\intel\telemetry 2.0\lrio.exe" "17/03/2016 21:38" "" + "\Microsoft\Windows\Media Center\StartRecording" "" "" "File not found: C:\Windows\ehome\ehrec" "" "" + "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs" "10/06/2009 20:36" "" + "\PCDEventLauncherTask" "PC-Doctor Module" "PC-Doctor, Inc." "c:\program files\dell\supportassist\sessionchecker.exe" "11/09/2016 07:11" "" + "\Tweaking.com - Windows Repair Tray Icon" "Tweaking.com - Windows Repair Tray Icon" "Tweaking.com" "c:\program files (x86)\tweaking.com\windows repair (all in one)\wr_tray_icon.exe" "12/03/2015 00:43" "" X "\USER_ESRV_SVC_WILLAMETTE" "" "" "c:\program files\intel\sur\willamette\esrv\task.vbs" "22/08/2016 08:46" "" "HKLM\System\CurrentControlSet\Services" "" "" "" "29/11/2016 19:07" "" + "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe" "16/09/2016 18:18" "" + "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe" "29/07/2014 21:12" "" + "cphs" "Intel(R) Content Protection HECI Service - enables communication with the Content Protection FW" "Intel Corporation" "c:\windows\syswow64\intelcphecisvc.exe" "22/12/2011 06:45" "" + "ESRV_SVC_WILLAMETTE" "Intel(r) Energy Checker SDK. ESRV Service WILLAMETTE" "" "c:\program files\intel\sur\willamette\esrv\esrv_svc.exe" "08/06/2016 15:12" "" + "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "22/01/2015 01:07" "" + "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "22/01/2015 01:07" "" + "IDriverT" "Provides support for the Running Object Table for InstallShield Drivers" "Macrovision Corporation" "c:\program files (x86)\common files\installshield\driver\1050\intel 32\idrivert.exe" "22/10/2004 08:24" "" + "igfxCUIService1.0.0.0" "Service for Intel(R) HD Graphics Control Panel" "Intel Corporation" "c:\windows\system32\igfxcuiservice.exe" "28/08/2015 16:21" "" + "Intel(R) Capability Licensing Service Interface" "Version: 1.28.487.1" "Intel(R) Corporation" "c:\program files\intel\icls client\heciserver.exe" "11/05/2013 15:45" "" + "Intel(R) Capability Licensing Service TCP IP Interface" "Version: 1.28.487.1" "Intel(R) Corporation" "c:\program files\intel\icls client\socketheciserver.exe" "11/05/2013 15:45" "" + "jhi_service" "Intel(R) Dynamic Application Loader Host Interface Service - Allows applications to access the local Intel (R) DAL" "Intel Corporation" "c:\program files (x86)\intel\intel(r) management engine components\dal\jhi_service.exe" "17/07/2013 02:50" "" + "LMS" "Intel(R) Management and Security Application Local Management Service - Provides OS-related Intel(R) ME functionality." "Intel Corporation" "c:\program files (x86)\intel\intel(r) management engine components\lms\lms.exe" "26/06/2013 22:39" "" + "Sage 50 Accounts Control v22" "Sage 50 Accounts Control Service v22" "Sage (UK) Ltd." "c:\program files (x86)\sage\accountsservicev22\sg50ctrlsvc_v22.exe" "20/04/2016 08:11" "" + "Sage 50 Accounts Service v22" "Sage 50 Accounts Data Service v22" "Sage (UK) Ltd." "c:\program files (x86)\sage\accountsservicev22\sg50svc_v22.exe" "20/04/2016 08:20" "" + "Sage SData Service" "The Sage SData Service" "Sage (UK) Limited" "c:\program files (x86)\common files\sage sdata\sage.sdata.service.exe" "06/02/2015 09:26" "" + "SystemUsageReportSvc_WILLAMETTE" "Inte(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE monitors the computer system usage and helps to improve system's performance." "" "c:\program files (x86)\intel driver update utility\sur\sursvc.exe" "08/06/2016 15:04" "" + "USER_ESRV_SVC_WILLAMETTE" "Intel(r) Energy Checker SDK. ESRV Service WILLAMETTE" "" "c:\program files\intel\sur\willamette\esrv\esrv_svc.exe" "08/06/2016 15:12" "" "HKLM\System\CurrentControlSet\Services" "" "" "" "29/11/2016 19:07" "" + "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys" "05/12/2008 23:54" "" + "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys" "01/05/2007 17:30" "" + "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys" "28/02/2007 00:04" "" + "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys" "13/07/2009 23:19" "" + "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys" "19/03/2010 00:45" "" + "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys" "20/03/2009 18:36" "" + "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys" "19/03/2010 16:18" "" + "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys" "24/05/2007 21:27" "" + "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys" "14/01/2009 19:27" "" + "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys" "13/02/2009 22:18" "" + "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys" "26/04/2009 11:14" "" + "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys" "07/08/2006 01:51" "" + "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys" "07/08/2006 01:51" "" + "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys" "07/08/2006 01:51" "" + "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys" "07/08/2006 01:51" "" + "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys" "07/08/2006 01:51" "" + "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys" "09/08/2006 12:11" "" + "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys" "13/07/2009 23:19" "" + "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys" "31/12/2008 16:29" "" + "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys" "03/02/2009 22:52" "" + "GEARAspiWDM" "CD/DVD Class Filter Driver" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys" "07/08/2006 17:11" "" + "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys" "11/05/2009 08:26" "" + "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys" "20/04/2010 18:32" "" + "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys" "11/06/2010 00:46" "" + "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd64.sys" "28/08/2015 16:24" "" + "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys" "13/12/2005 21:47" "" + "IntcAzAudAddService" "Realtek(r) High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtdvhd64.sys" "23/08/2013 06:10" "" + "IntcDAud" "Intel(R) Display Audio Driver" "Intel(R) Corporation" "c:\windows\system32\drivers\intcdaud.sys" "31/03/2015 10:56" "" + "iusb3hcs" "Intel(R) USB 3.0 Host Controller Switch Driver" "Intel Corporation" "c:\windows\system32\drivers\iusb3hcs.sys" "26/03/2014 11:07" "" + "iusb3hub" "Intel(R) USB 3.0 Hub Driver" "Intel Corporation" "c:\windows\system32\drivers\iusb3hub.sys" "26/03/2014 11:05" "" + "iusb3xhc" "Intel(R) USB 3.0 eXtensible Host Controller Driver" "Intel Corporation" "c:\windows\system32\drivers\iusb3xhc.sys" "26/03/2014 11:05" "" + "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys" "09/12/2008 22:46" "" + "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys" "19/05/2009 00:20" "" + "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys" "19/05/2009 00:31" "" + "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys" "16/04/2009 22:13" "" + "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys" "19/05/2009 01:09" "" + "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys" "19/05/2009 01:25" "" + "MEIx64" "Intel(R) Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\teedriverx64.sys" "02/07/2013 18:38" "" + "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys" "06/06/2006 21:11" "" + "nvraid" "NVIDIA® nForce(TM) RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys" "19/03/2010 20:59" "" + "nvstor" "NVIDIA® nForce(TM) Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys" "19/03/2010 20:45" "" + "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys" "22/01/2009 23:05" "" + "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys" "19/05/2009 01:18" "" + "RapportHades64" "RapportHades64" "IBM Corp." "c:\windows\system32\drivers\rapporthades64.sys" "06/10/2016 14:06" "" + "RTL8167" "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver " "Realtek " "c:\windows\system32\drivers\rt64win7.sys" "15/01/2015 06:06" "" + "semav6msr64" "" "" "c:\windows\system32\drivers\semav6msr64.sys" "24/01/2014 19:22" "" + "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys" "24/09/2008 18:28" "" + "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys" "01/10/2008 21:56" "" + "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys" "17/02/2009 23:03" "" + "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys" "13/07/2009 23:19" "" + "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys" "31/01/2009 01:18" "" "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Font Drivers" "" "" "" "28/11/2016 14:39" "" + "Adobe Type Manager" "Windows NT OpenType/Type 1 Font Driver" "Adobe Systems Incorporated" "c:\windows\system32\atmfd.dll" "02/11/2016 14:59" "" "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" "" "28/11/2016 14:39" "" + "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm" "14/07/2009 01:28" "" "HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" "" "28/11/2016 14:39" "" + "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm" "14/07/2009 01:06" "" + "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll" "20/11/2010 11:59" "" "HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" "" "28/11/2016 14:39" "" + "CutePDF Writer Monitor" "" "" "c:\windows\system32\cpwmon64.dll" "22/01/2016 21:30" "" + "HP a011 Status Monitor" "Print Status Language Monitor" "Hewlett-Packard Co." "c:\windows\system32\hpinkstsa011lm.dll" "13/06/2012 18:10" "" + "HP Discovery Port Monitor (HP Deskjet 3050A J611 series)" "HP Discovery Port Monitor" "Hewlett-Packard Co." "c:\windows\system32\hpdiscopma011.dll" "17/10/2012 11:31" "" + "OKI HiperC Language Monitor7 x64" "Oki print monitor for x64" "Oki Data Corporation" "c:\windows\system32\opdmn075.dll" "06/11/2012 09:52" "" "HKLM\Software\Microsoft\Office\Outlook\Addins" "" "" "" "28/11/2016 14:39" "" + "FormRegionAddin Class" "" "" "c:\program files\microsoft office\office14\addins\umoutlookaddin.dll" "11/11/2015 02:48" "" "HKCU\Software\Microsoft\Office\Excel\Addins" "" "" "" "28/11/2016 14:38" "" + "{C2F51E72-8DDC-43A5-A05F-1909C70B55D4}" "" "" "" "28/11/2016 14:38" "" "HKLM\Software\Wow6432Node\Microsoft\Office\Excel\Addins" "" "" "" "28/11/2016 14:39" "" + "Addin Class" "Sage Excel Integrated Reporting Addin" "Sage (UK) Limited" "c:\windows\syswow64\sgxladdin.dll" "05/07/2012 10:49" ""