تم حل المشكلة مشكلة بطئ الإقلاع في الجهاز

الحالة
مغلق و غير مفتوح للمزيد من الردود.
أ

أبـو نبيـل

زيزوومى مبدع
إنضم
15 يونيو 2014
المشاركات
511
مستوى التفاعل
608
النقاط
620
غير متصل
السلام عليكم

عندي مشكلة ظهرت من أسبوع تقريبا

المشكلة هي .... إذا كنت أبغى أشغل الجهاز الجهاز يطول مايفتح بسرعة

يعني تطلع شاشة سوداء لمدة 2 دقيقة بعدين تظهر صفحة أدخال كلمة السر

أنا سويت صيانة وحذف ملفات وسويت فحص للجهاز وتحديثات للبرامج

بس مافي منها فائدة أتمنى تساعدوني


أشكركم
 

توقيع : أبـو نبيـل
وعليكم السلام ورحمة الله
طبق التالى اخى

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
 
توقيع : White Man
عبدالعزيز المعلوي قال:
السلام عليكم

عندي مشكلة ظهرت من أسبوع تقريبا

المشكلة هي .... إذا كنت أبغى أشغل الجهاز الجهاز يطول مايفتح بسرعة

يعني تطلع شاشة سوداء لمدة 2 دقيقة بعدين تظهر صفحة أدخال كلمة السر

أنا سويت صيانة وحذف ملفات وسويت فحص للجهاز وتحديثات للبرامج

بس مافي منها فائدة أتمنى تساعدوني


أشكركم
أنقر للتوسيع...
اخي كانت نفس المشكله لدي حتي بعد عمل اكثر من نسخة ويندوز فقمت بحذف drive c اثناء تنصيب الويندوز وعمل create له من جديد وتم حل المشكله!
 
Amr Saad قال:
وعليكم السلام ورحمة الله
طبق التالى اخى

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
أنقر للتوسيع...

سويت مافي تحسن
 
توقيع : أبـو نبيـل
The Leader 99 قال:
اخي كانت نفس المشكله لدي حتي بعد عمل اكثر من نسخة ويندوز فقمت بحذف drive c اثناء تنصيب الويندوز وعمل create له من جديد وتم حل المشكله!
أنقر للتوسيع...
المشكلة جائت فجأة
 
توقيع : أبـو نبيـل
عبدالعزيز المعلوي قال:
سويت مافي تحسن
أنقر للتوسيع...
عبدالعزيز المعلوي قال:
المشكلة جائت فجأة
أنقر للتوسيع...
طبق التالى


يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

+
من خلال برنامج wise care قم بعمل الغاء تجزئة لجميع الاقراص وتنظيف من جميع ازرار البرنامج كما بالشرح التالى

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


ثم

من خلال البرنامج التالى انتقل الى تبويب { الصيانة بنقرة واحدة } وقم بعمل تنظيف
وبعد ذلك انتقل الى تبويب { أدوات متقدمة } وقم بعمل تنظيف للريجسترى وتنظيف لمساحة الاقراص

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي



وكذلك تنظيف للريجسترى بالبرنامج التالى

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


وايضاً
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
.... شغل الملف كمسئول واضغط اى زر وانتظر الى ان يتم الانتهاء
وظيفته : يقوم بمسح مخلفات التصفح والملفات المؤقتة بشكل عام
 
توقيع : White Man
Amr Saad قال:
طبق التالى


يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

+
من خلال برنامج wise care قم بعمل الغاء تجزئة لجميع الاقراص وتنظيف من جميع ازرار البرنامج كما بالشرح التالى

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


ثم

من خلال البرنامج التالى انتقل الى تبويب { الصيانة بنقرة واحدة } وقم بعمل تنظيف
وبعد ذلك انتقل الى تبويب { أدوات متقدمة } وقم بعمل تنظيف للريجسترى وتنظيف لمساحة الاقراص

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي



وكذلك تنظيف للريجسترى بالبرنامج التالى

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


وايضاً
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
.... شغل الملف كمسئول واضغط اى زر وانتظر الى ان يتم الانتهاء
وظيفته : يقوم بمسح مخلفات التصفح والملفات المؤقتة بشكل عام
أنقر للتوسيع...

طيب يأخوي جاري التفيذ ...

بس عندي سؤال في برامج حماية كانت عندي مثل avg حذفتها حذف عادي

هل أبتأثر علي ؟
 
توقيع : أبـو نبيـل
عبدالعزيز المعلوي قال:
طيب يأخوي جاري التفيذ ...

بس عندي سؤال في برامج حماية كانت عندي مثل avg حذفتها حذف عادي

هل أبتأثر علي ؟
أنقر للتوسيع...
نعم اخى يؤثر .. يكون له بقايا ودرايفرات تقلع مع بدء تشغيل الجهاز فتسبب بطء
...
من الرابط التالى حدد اصدار البرنامج و نواة الويندوز
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
 
توقيع : White Man
جاني هذا التقرير
# AdwCleaner v4.000 - Report created 18/10/2014 at 13:23:09
# DB v2014-10-17.9
# Updated 12/10/2014 by Xplode
# Operating System : Windows 7 Home Basic (32 bits)
# Username : Hp - HP-PC
# Running from : C:\Users\Hp\Downloads\adwcleaner_4.000.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : vToolbarUpdater18.1.0

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\Program Files\Common Files\AVG Secure Search
Folder Deleted : C:\Users\Hp\AppData\Roaming\baidu
Folder Deleted : C:\ProgramData\DriverCure
File Deleted : C:\Users\Hp\AppData\Roaming\Mozilla\Firefox\Profiles\vgigwq9a.default\invalidprefs.js
File Deleted : C:\Users\Hp\AppData\Roaming\Mozilla\Firefox\Profiles\vgigwq9a.default\user.js

***** [ Scheduled Tasks ] *****

Task Deleted : Driver Booster Update

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASMANCS
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\anchorfree
Key Deleted : HKLM\SOFTWARE\AVG SafeGuard toolbar

***** [ Browsers ] *****

-\\ Internet Explorer v0.0.0.0


-\\ Mozilla Firefox v29.0.1 (ar)


-\\ Google Chrome v38.0.2125.104


*************************

AdwCleaner[R0].txt - [3143 octets] - [18/10/2014 13:16:52]
AdwCleaner[S0].txt - [3127 octets] - [18/10/2014 13:23:09]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3187 octets] ##########
 
توقيع : أبـو نبيـل
عبدالعزيز المعلوي قال:
جاني هذا التقرير
# AdwCleaner v4.000 - Report created 18/10/2014 at 13:23:09
# DB v2014-10-17.9
# Updated 12/10/2014 by Xplode
# Operating System : Windows 7 Home Basic (32 bits)
# Username : Hp - HP-PC
# Running from : C:\Users\Hp\Downloads\adwcleaner_4.000.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : vToolbarUpdater18.1.0

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\Program Files\Common Files\AVG Secure Search
Folder Deleted : C:\Users\Hp\AppData\Roaming\baidu
Folder Deleted : C:\ProgramData\DriverCure
File Deleted : C:\Users\Hp\AppData\Roaming\Mozilla\Firefox\Profiles\vgigwq9a.default\invalidprefs.js
File Deleted : C:\Users\Hp\AppData\Roaming\Mozilla\Firefox\Profiles\vgigwq9a.default\user.js

***** [ Scheduled Tasks ] *****

Task Deleted : Driver Booster Update

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASMANCS
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\anchorfree
Key Deleted : HKLM\SOFTWARE\AVG SafeGuard toolbar

***** [ Browsers ] *****

-\\ Internet Explorer v0.0.0.0


-\\ Mozilla Firefox v29.0.1 (ar)


-\\ Google Chrome v38.0.2125.104


*************************

AdwCleaner[R0].txt - [3143 octets] - [18/10/2014 13:16:52]
AdwCleaner[S0].txt - [3127 octets] - [18/10/2014 13:23:09]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3187 octets] ##########
أنقر للتوسيع...
تمام ... ابحث عن اى برنامج يحمل اسم Baidu وقم بحذفه
 
توقيع : White Man
توقيع : أبـو نبيـل
عبدالعزيز المعلوي قال:
تعقبت الملفات ووصلت لهذا شوف الصورة ^_^
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

+ أنا سويت حذف لـ avg بس طلعت على طول شاشة زرقاء
أنقر للتوسيع...
بالنسبة للبيدو .. احذفه من لوحة التحكم >> اضافة / ازالة البرامج
...
وبالنسبة للـ AVG قم بحذفه من الوضع الامن
+
تأكد من تحميل الاداة المناسبة ;)
 
توقيع : White Man
Amr Saad قال:
بالنسبة للبيدو .. احذفه من لوحة التحكم >> اضافة / ازالة البرامج
...
وبالنسبة للـ AVG قم بحذفه من الوضع الامن
+
تأكد من تحميل الاداة المناسبة ;)
أنقر للتوسيع...
ماحصلت اللبيدو وينه ؟

هو برنامج ؟
 
توقيع : أبـو نبيـل
توقيع : White Man
هذه معلومات عن الشاشة الزرقاء طفشتني

وقيع المشكلة:
اسم الحدث الخاص بالمشكلة: BlueScreen
إصدار نظام التشغيل: 6.1.7600.2.0.0.768.2
معرف الإعدادات المحلية: 1025

معلومات إضافية حول المشكلة:
BCCode: 1000008e
BCP1: C0000005
BCP2: 82E7AE1D
BCP3: 8B737B28
BCP4: 00000000
OS Version: 6_1_7600
Service Pack: 0_0
Product: 768_1

الملفات التي تساعد في وصف المشكلة:
C:\Windows\Minidump\101814-17643-01.dmp
C:\Users\Hp\AppData\Local\Temp\WER-71698-0.sysdata.xml

اقرأ بيان الخصوصية على إنترنت:
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


إذا لم يكن بيان الخصوصية عبر إنترنت متوفراً, ‏‏الرجاء قراءة بيان الخصوصية دون اتصال:
C:\Windows\system32\ar-SA\erofflps.txt
 
توقيع : أبـو نبيـل
عبدالعزيز المعلوي قال:
هذه معلومات عن الشاشة الزرقاء طفشتني

وقيع المشكلة:
اسم الحدث الخاص بالمشكلة: BlueScreen
إصدار نظام التشغيل: 6.1.7600.2.0.0.768.2
معرف الإعدادات المحلية: 1025

معلومات إضافية حول المشكلة:
BCCode: 1000008e
BCP1: C0000005
BCP2: 82E7AE1D
BCP3: 8B737B28
BCP4: 00000000
OS Version: 6_1_7600
Service Pack: 0_0
Product: 768_1

الملفات التي تساعد في وصف المشكلة:
C:\Windows\Minidump\101814-17643-01.dmp
C:\Users\Hp\AppData\Local\Temp\WER-71698-0.sysdata.xml

اقرأ بيان الخصوصية على إنترنت:
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


إذا لم يكن بيان الخصوصية عبر إنترنت متوفراً, ‏‏الرجاء قراءة بيان الخصوصية دون اتصال:
C:\Windows\system32\ar-SA\erofflps.txt
أنقر للتوسيع...
اخى قم بعمل تقرير
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
 
توقيع : White Man
+ أنا عندي برنامج Malwarebytes Anti-Malware النسخة الجديدة العربية

+ برنامج Bitdefender Total Security 2015 النسخة الجديدة العربية
هل فيه مشاكل منها ؟

+ التقرير
لحظات
 
توقيع : أبـو نبيـل
أخوي التقرير حق الأخطاء مو راضي يطلع

جبت هذا ينفع ؟
"Silent Runners.vbs", revision 61,
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Operating System: Windows 7
Output limited to non-default values, except where indicated by "{++}"


Startup items buried in registry:
---------------------------------

HKCU\Software\Microsoft\Windows\CurrentVersion\Run\ {++}
"Advanced SystemCare 7" = ""C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto" ["IObit"]
"برنامج محفظة Bitdefender" = ""C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe"" ["Bitdefender"]

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++}
"Malwarebytes Anti-Exploit" = "C:\Program Files\Malwarebytes Anti-Exploit\mbae.exe" ["Malwarebytes Corporation"]

HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\
>{26923b43-4d38-484f-9b9e-de460746276c}\(Default) = "Internet Explorer"
\StubPath = "C:\Windows\System32\ie4uinit.exe -UserIconConfig" [MS]

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\

{10921475-03CE-4E04-90CE-E2E7EF20C814}\(Default) = "ExplorerWnd Helper"
-> {HKLM...CLSID} = "ExplorerWnd Helper"
\InProcServer32\(Default) = "C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll" ["IObit"]

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\

"{2F603045-309F-11CF-9774-0020AFD0CFF6}" = "Synaptics Control Panel"
-> {HKLM...CLSID} = (no title provided)
\InProcServer32\(Default) = "C:\Program Files\Synaptics\SynTP\SynTPCpl.dll" ["Synaptics Incorporated"]

"{B41DB860-8EE4-11D2-9906-E49FADC173CA}" = "WinRAR shell extension"
-> {HKLM...CLSID} = "WinRAR"
\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" ["Alexander Roshal"]

"{42042206-2D85-11D3-8CFF-005004838597}" = "Microsoft Office HTML Icon Handler"
-> {HKLM...CLSID} = (no title provided)
\InProcServer32\(Default) = "C:\PROGRA~1\MICROS~1\OFFICE11\msohev.dll" [MS]

"{9E96C1F5-0EFA-4348-9460-15D6802C70AA}" = "BDFVCtxMenuExt"
-> {HKLM...CLSID} = "BDFVCtxMenuExt"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\bdfvsctx.dll" ["Bitdefender"]

"{A6FF0E3A-8437-482C-8E04-4F9E15C57538}" = "UnLockerMenu"
-> {HKLM...CLSID} = "UnLockerMenu Class"
\InProcServer32\(Default) = "C:\Program Files\IObit\IObit Uninstaller\UninstallMenuRight32.dll" ["IObit"]

HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\

BDFVCtxMenuExt\(Default) = "{9E96C1F5-0EFA-4348-9460-15D6802C70AA}"
-> {HKLM...CLSID} = "BDFVCtxMenuExt"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\bdfvsctx.dll" ["Bitdefender"]

{4CE485DD-C395-46C4-A929-7B771D8A5655}\(Default) = (no title provided)
-> {HKLM...CLSID} = "FileShredderCtxMenu Class"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\fshredctx.dll" ["Bitdefender"]

{D653647D-D607-4df6-A5B8-48D2BA195F7B}\(Default) = (no title provided)
-> {HKLM...CLSID} = "BDMenu Class"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\bdshellext.dll" ["Bitdefender"]

HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\

BDFVCtxMenuExt\(Default) = "{9E96C1F5-0EFA-4348-9460-15D6802C70AA}"
-> {HKLM...CLSID} = "BDFVCtxMenuExt"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\bdfvsctx.dll" ["Bitdefender"]

{4CE485DD-C395-46C4-A929-7B771D8A5655}\(Default) = (no title provided)
-> {HKLM...CLSID} = "FileShredderCtxMenu Class"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\fshredctx.dll" ["Bitdefender"]

{D653647D-D607-4df6-A5B8-48D2BA195F7B}\(Default) = (no title provided)
-> {HKLM...CLSID} = "BDMenu Class"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\bdshellext.dll" ["Bitdefender"]

HKLM\SOFTWARE\Classes\Directory\Background\shellex\ContextMenuHandlers\

BDFVCtxMenuExt\(Default) = "{9E96C1F5-0EFA-4348-9460-15D6802C70AA}"
-> {HKLM...CLSID} = "BDFVCtxMenuExt"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\bdfvsctx.dll" ["Bitdefender"]

HKLM\SOFTWARE\Classes\Folder\shellex\ColumnHandlers\

BDFVCtxMenuExt\(Default) = "{9E96C1F5-0EFA-4348-9460-15D6802C70AA}"
-> {HKLM...CLSID} = "BDFVCtxMenuExt"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\bdfvsctx.dll" ["Bitdefender"]

{F9DB5320-233E-11D1-9F84-707F02C10627}\(Default) = "PDF Column Info"
-> {HKLM...CLSID} = "PDF Shell Extension"
\InProcServer32\(Default) = "C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll" ["Adobe Systems, Inc."]

HKLM\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\

BDFVCtxMenuExt\(Default) = "{9E96C1F5-0EFA-4348-9460-15D6802C70AA}"
-> {HKLM...CLSID} = "BDFVCtxMenuExt"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\bdfvsctx.dll" ["Bitdefender"]

{4CE485DD-C395-46C4-A929-7B771D8A5655}\(Default) = (no title provided)
-> {HKLM...CLSID} = "FileShredderCtxMenu Class"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\fshredctx.dll" ["Bitdefender"]

{D653647D-D607-4df6-A5B8-48D2BA195F7B}\(Default) = (no title provided)
-> {HKLM...CLSID} = "BDMenu Class"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\bdshellext.dll" ["Bitdefender"]

HKLM\SOFTWARE\Classes\Folder\shellex\DragDropHandlers\

WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}"
-> {HKLM...CLSID} = "WinRAR"
\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" ["Alexander Roshal"]


Group Policies {GPedit.msc branch and setting}:
-----------------------------------------------

Note: detected settings may not have any effect.

HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\

"NoLowDiskSpaceChecks" = (REG_DWORD) dword:0x00000001
{unrecognized setting}

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\

"EnableLUA" = (REG_DWORD) dword:0x00000000
{Computer Configuration|Windows Settings|Security Settings|Local Policies|Security Options|
User Account Control: Run All Administrators In Admin Approval Mode}

"ConsentPromptBehaviorAdmin" = (REG_DWORD) dword:0x00000000
{Computer Configuration|Windows Settings|Security Settings|Local Policies|Security Options|
User Account Control: Behavior Of The Elevation Prompt For Administrators In Admin Approval Mode}

"PromptOnSecureDesktop" = (REG_DWORD) dword:0x00000000
{Computer Configuration|Windows Settings|Security Settings|Local Policies|Security Options|
User Account Control: Switch to the secure desktop when prompting for elevation}


Active Desktop and Wallpaper:
-----------------------------

Active Desktop may be disabled at this entry:
HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellState

Displayed if Active Desktop disabled and wallpaper not set by Group Policy:
HKCU\Control Panel\Desktop\
"Wallpaper" = "C:\Users\Hp\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg"


Enabled Screen Saver:
---------------------

HKCU\Control Panel\Desktop\
"SCRNSAVE.EXE" = "C:\Windows\system32\Bubbles.scr" [MS]


Windows Portable Device AutoPlay Handlers
-----------------------------------------

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\

WIA_{C49044C9-0FBA-4F3D-9045-BA152BEAC50C}\
"Provider" = "Microsoft Office Word Viewer"
"CLSID" = "{A55803CC-4D53-404c-8557-FD63DBA95D24}"
"InitCmdLine" = "/WiaCmd;C:\Program Files\Microsoft Office\OFFICE11\WORDVIEW.EXE /IMG_WIA;"
-> {HKLM...CLSID} = "WPDShextAutoplay"
\LocalServer32\(Default) = "C:\Windows\system32\WPDShextAutoplay.exe" [MS]


Non-disabled Scheduled Tasks:
-----------------------------

C:\Users\Hp\AppData\Local\Microsoft\Windows Sidebar\Settings.ini

C:\Windows\System32\Tasks
"Adobe Flash Player Updater" -> launches: "C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe" ["Adobe Systems Incorporated"]
"ASC7_PerformanceMonitor" -> launches: "C:\Program Files\IObit\Advanced SystemCare 7\Monitor.exe" ["IObit"]
"ASC7_SkipUac_Hp" -> launches: ""C:\Program Files\IObit\Advanced SystemCare 7\ASC.exe" /SkipUac" ["IObit"]
"CCleanerSkipUAC" -> launches: ""C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)" ["Piriform Ltd"]
"Driver Booster SkipUAC (Hp)" -> launches: "C:\Program Files\IObit\Driver Booster\DriverBooster.exe /skipuac" ["IObit"]
"GoogleUpdateTaskMachineUA" -> launches: "C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler" ["Google Inc."]
"Uninstaller_SkipUac_Administrator" -> launches: "C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer" ["IObit"]
"Wise Turbo Checker" -> launches: "C:\Program Files\Wise\Wise Care 365\WiseTurbo.exe" ["WiseCleaner.COM"]

C:\Windows\System32\Tasks\Games
"UpdateCheck_S-1-5-21-3912191018-1440493636-4035541681-1000" -> (HIDDEN!) launches: "{CA22F5B1-E06F-4A2B-94FC-21E87FE53781}"
-> {HKLM...CLSID} = "GameUpdateTask Class"
\InProcServer32\(Default) = "C:\Windows\System32\gameux.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client
"AD RMS Rights Policy Template Management (Manual)" -> launches: "{BF5CB148-7C77-4d8a-A53E-D81C70CF743C}"
-> {HKLM...CLSID} = "AD RMS Rights Policy Template Management (Manual) Task Handler"
\InProcServer32\(Default) = "C:\Windows\system32\msdrm.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Application Experience
"AitAgent" -> launches: "aitagent" [MS]
"ProgramDataUpdater" -> launches: "%windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Autochk
"Proxy" -> launches: "%windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\CertificateServicesClient
"SystemTask" -> launches: "{58fb76b9-ac85-4e55-ac04-427593b1d060}"
-> {HKLM...CLSID} = "Certificate Services Client Task Handler"
\InProcServer32\(Default) = "C:\Windows\system32\dimsjob.dll" [MS]
"UserTask" -> launches: "{58fb76b9-ac85-4e55-ac04-427593b1d060}"
-> {HKLM...CLSID} = "Certificate Services Client Task Handler"
\InProcServer32\(Default) = "C:\Windows\system32\dimsjob.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program
"Consolidator" -> launches: "%SystemRoot%\System32\wsqmcons.exe" [MS]
"KernelCeipTask" -> (HIDDEN!) launches: "{e7ed314f-2816-4c26-aeb5-54a34d02404c}"
-> {HKLM...CLSID} = "KernelCeipCustomHandler"
\InProcServer32\(Default) = "C:\Windows\System32\kernelceip.dll" [MS]
"UsbCeip" -> (HIDDEN!) launches: "{c27f6b1d-fe0b-45e4-9257-38799fa69bc8}"
-> {HKLM...CLSID} = "UsbCeip"
\InProcServer32\(Default) = "C:\Windows\System32\usbceip.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Defrag
"ScheduledDefrag" -> launches: "%windir%\system32\defrag.exe -c" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Diagnosis
"Scheduled" -> (HIDDEN!) launches: "{c1f85ef8-bcc2-4606-bb39-70c523715eb3}"
-> {HKLM...CLSID} = "ScheduledDiagnosticCustomHandler"
\InProcServer32\(Default) = "C:\Windows\System32\sdiagschd.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Location
"Notifications" -> launches: "%windir%\System32\LocationNotifications.exe" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Maintenance
"WinSAT" -> launches: "{A9A33436-678B-4C9C-A211-7CC38785E79D}"
-> {HKLM...CLSID} = "WinSAT Task Manger Task"
\InProcServer32\(Default) = "C:\Windows\system32\WinSATAPI.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\MemoryDiagnostic
"CorruptionDetector" -> (HIDDEN!) launches: "{190BA3F6-0205-4f46-B589-95C6822899D2}"
-> {HKLM...CLSID} = "MemoryDiagnosticCustomHandler"
\InProcServer32\(Default) = "C:\Windows\System32\memdiag.dll" [MS]
"DecompressionFailureDetector" -> (HIDDEN!) launches: "{190BA3F6-0205-4f46-B589-95C6822899D2}"
-> {HKLM...CLSID} = "MemoryDiagnosticCustomHandler"
\InProcServer32\(Default) = "C:\Windows\System32\memdiag.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\MobilePC
"HotStart" -> launches: "{06DA0625-9701-43da-BFD7-FBEEA2180A1E}"
-> {HKLM...CLSID} = "HotStart User Agent"
\InProcServer32\(Default) = "C:\Windows\System32\HotStartUserAgent.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\MUI
"LPRemove" -> launches: "%windir%\system32\lpremove.exe" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Multimedia
"SystemSoundsService" -> launches: "{2DEA658F-54C1-4227-AF9B-260AB5FC3543}"
-> {HKLM...CLSID} = "Microsoft PlaySoundService Class"
\InProcServer32\(Default) = "C:\Windows\System32\PlaySndSrv.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics
"AnalyzeSystem" -> launches: "%SystemRoot%\System32\powercfg.exe -energy -auto" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\RAC
"RacTask" -> (HIDDEN!) launches: "{42060D27-CA53-41f5-96E4-B1E8169308A6}"
-> {HKLM...CLSID} = "ReliabilityAnalysisCustomHandler"
\InProcServer32\(Default) = "C:\Windows\system32\RacEngn.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Ras
"MobilityManager" -> launches: "{c463a0fc-794f-4fdf-9201-01938ceacafa}"
-> {HKLM...CLSID} = "RasMobilityManager"
\InProcServer32\(Default) = "C:\Windows\system32\rasmbmgr.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Registry
"RegIdleBackup" -> (HIDDEN!) launches: "{ca767aa8-9157-4604-b64b-40747123d5f2}"
-> {HKLM...CLSID} = "RegistryIdleBackupHandler"
\InProcServer32\(Default) = "C:\Windows\System32\regidle.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\RemoteAssistance
"RemoteAssistanceTask" -> (HIDDEN!) launches: "%windir%\system32\RAServer.exe /offerraupdate" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\SystemRestore
"SR" -> launches: "%windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Task Manager
"Interactive" -> (HIDDEN!) launches: "{855fec53-d2e4-4999-9e87-3414e9cf0ff4}"
-> {HKLM...CLSID} = "RunTask"
\InProcServer32\(Default) = "C:\Windows\system32\wdc.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Tcpip
"IpAddressConflict1" -> launches: "%windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem" [MS]
"IpAddressConflict2" -> launches: "%windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\TextServicesFramework
"MsCtfMonitor" -> (HIDDEN!) launches: "{01575cfe-9a55-4003-a5e1-f38d1ebdcbe1}"
-> {HKLM...CLSID} = "MsCtfMonitor task handler"
\InProcServer32\(Default) = "C:\Windows\system32\MsCtfMonitor.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Time Synchronization
"SynchronizeTime" -> launches: "%windir%\system32\sc.exe start w32time task_started" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\UPnP
"UPnPHostConfig" -> launches: "sc.exe config upnphost start= auto" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\WDI
"ResolutionHost" -> (HIDDEN!) launches: "{900be39d-6be8-461a-bc4d-b0fa71f5ecb1}"
-> {HKLM...CLSID} = "DiagnosticInfrastructureCustomHandler"
\InProcServer32\(Default) = "C:\Windows\System32\wdi.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Windows Error Reporting
"QueueReporting" -> launches: "%windir%\system32\wermgr.exe -queuereporting" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Windows Filtering Platform
"BfeOnServiceStartTypeChange" -> (HIDDEN!) launches: "%windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\WindowsBackup
"ConfigNotification" -> launches: "%systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem
"Calibration Loader" -> launches: "{B210D694-C8DF-490d-9576-9E20CDBC20BD}"
-> {HKLM...CLSID} = "Color Calibration Loader"
\InProcServer32\(Default) = "C:\Windows\System32\mscms.dll" [MS]

C:\Windows\System32\Tasks\WPD
"SqmUpload_S-1-5-21-3912191018-1440493636-4035541681-1000" -> (HIDDEN!) launches: "%windir%\system32\rundll32.exe portabledeviceapi.dll,#1" [MS]


Winsock2 Service Provider DLLs:
-------------------------------

Namespace Service Providers

HKLM\SYSTEM\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++}
000000000001\LibraryPath = "%SystemRoot%\system32\NLAapi.dll" [MS]
000000000002\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]
000000000003\LibraryPath = "%SystemRoot%\System32\winrnr.dll" [MS]
000000000004\LibraryPath = "%SystemRoot%\system32\napinsp.dll" [MS]
000000000005\LibraryPath = "%SystemRoot%\system32\pnrpnsp.dll" [MS]
000000000006\LibraryPath = "%SystemRoot%\system32\pnrpnsp.dll" [MS]
000000000007\LibraryPath = "%SystemRoot%\system32\wshbth.dll" [MS]

Transport Service Providers

HKLM\SYSTEM\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++}
0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range:
%SystemRoot%\system32\mswsock.dll [MS], 01 - 39


Toolbars, Explorer Bars, Extensions:
------------------------------------

Toolbars

HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\
"{1DAC0C53-7D23-4AB3-856A-B04D98CD982A}" = (no title provided)
-> {HKLM...CLSID} = "محفظة Bitdefender"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll" ["Bitdefender"]

Extensions (Tools menu items, main toolbar menu buttons)

HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\
{22CC3EBD-C286-43AA-B8E6-06B115F74162}\
"ButtonText" = "HP Smart Print"
"MenuText" = "HP Smart Print"
"Exec" = "C:\Program Files\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe" ["Hewlett-Packard"]

{898EA8C8-E7FF-479B-8935-AEC46303B9E5}\
"ButtonText" = "Skype Click to Call"
"CLSIDExtension" = "{898EA8C8-E7FF-479B-8935-AEC46303B9E5}"


Running Services (Display Name, Service Name, Path {Service DLL}):
------------------------------------------------------------------

Advanced SystemCare Service 7, AdvancedSystemCareService7, "C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe" ["IObit"]
Bitdefender Desktop Update Service, UPDATESRV, ""C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe" /service" ["Bitdefender"]
Bitdefender Virus Shield, vsserv, ""C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe" /service" ["Bitdefender"]
Malwarebytes Anti-Exploit Service, MbaeSvc, "C:\Program Files\Malwarebytes Anti-Exploit\mbae-svc.exe" ["Malwarebytes Corporation"]
MBAMScheduler, MBAMScheduler, ""C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe"" ["Malwarebytes Corporation"]
MBAMService, MBAMService, ""C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe"" ["Malwarebytes Corporation"]
SafeBox, SafeBox, "C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe" ["Bitdefender"]


Safe Mode Drivers & Services (subkey name, subkey default value):
-----------------------------------------------------------------

HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\

<<!>> hitmanpro37, (null value)
<<!>> hitmanpro37.sys, (null value)
<<!>> HitmanPro37Crusader, (null value)
<<!>> HitmanPro37CrusaderBoot, (null value)

HKLM\System\CurrentControlSet\Control\SafeBoot\Network\

<<!>> hitmanpro37, (null value)
<<!>> hitmanpro37.sys, (null value)
<<!>> HitmanPro37Crusader, (null value)
<<!>> HitmanPro37CrusaderBoot, (null value)


Print Monitors:
---------------

HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors\
HP 8711 Status Monitor\Driver = "hpinksts8711LM.dll" ["Hewlett-Packard Co."]


---------- (launch time: 2014-10-18 20:40:43)
<<!>>: Suspicious data at a malware launch point.

+ This report excludes default entries except where indicated.
+ To see *everywhere* the script checks and *everything* it finds,
launch it from a command prompt or a shortcut with the -all parameter.
+ To search all directories of local fixed drives for DESKTOP.INI
DLL launch points, use the -supp parameter or answer "No" at the
first message box and "Yes" at the second message box.
---------- (total run time: 87 seconds, including 5 seconds for message boxes)
 
توقيع : أبـو نبيـل
عبدالعزيز المعلوي قال:
+ أنا عندي برنامج Malwarebytes Anti-Malware النسخة الجديدة العربية

+ برنامج Bitdefender Total Security 2015 النسخة الجديدة العربية
هل فيه مشاكل منها ؟

+ التقرير
لحظات
أنقر للتوسيع...
نعم اخى .. البتدفندر احياناً يسبب بطء
+
لو مفعل الفترة التجريبية للمالوير او مٌفعل البرنامج ستلاحظ البطء اكثر

ما هى مواصفات جهازك اخى ؟


عبدالعزيز المعلوي قال:
أخوي التقرير حق الأخطاء مو راضي يطلع

جبت هذا ينفع ؟
"Silent Runners.vbs", revision 61,
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Operating System: Windows 7
Output limited to non-default values, except where indicated by "{++}"


Startup items buried in registry:
---------------------------------

HKCU\Software\Microsoft\Windows\CurrentVersion\Run\ {++}
"Advanced SystemCare 7" = ""C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto" ["IObit"]
"برنامج محفظة Bitdefender" = ""C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe"" ["Bitdefender"]

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++}
"Malwarebytes Anti-Exploit" = "C:\Program Files\Malwarebytes Anti-Exploit\mbae.exe" ["Malwarebytes Corporation"]

HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\
>{26923b43-4d38-484f-9b9e-de460746276c}\(Default) = "Internet Explorer"
\StubPath = "C:\Windows\System32\ie4uinit.exe -UserIconConfig" [MS]

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\

{10921475-03CE-4E04-90CE-E2E7EF20C814}\(Default) = "ExplorerWnd Helper"
-> {HKLM...CLSID} = "ExplorerWnd Helper"
\InProcServer32\(Default) = "C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll" ["IObit"]

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\

"{2F603045-309F-11CF-9774-0020AFD0CFF6}" = "Synaptics Control Panel"
-> {HKLM...CLSID} = (no title provided)
\InProcServer32\(Default) = "C:\Program Files\Synaptics\SynTP\SynTPCpl.dll" ["Synaptics Incorporated"]

"{B41DB860-8EE4-11D2-9906-E49FADC173CA}" = "WinRAR shell extension"
-> {HKLM...CLSID} = "WinRAR"
\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" ["Alexander Roshal"]

"{42042206-2D85-11D3-8CFF-005004838597}" = "Microsoft Office HTML Icon Handler"
-> {HKLM...CLSID} = (no title provided)
\InProcServer32\(Default) = "C:\PROGRA~1\MICROS~1\OFFICE11\msohev.dll" [MS]

"{9E96C1F5-0EFA-4348-9460-15D6802C70AA}" = "BDFVCtxMenuExt"
-> {HKLM...CLSID} = "BDFVCtxMenuExt"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\bdfvsctx.dll" ["Bitdefender"]

"{A6FF0E3A-8437-482C-8E04-4F9E15C57538}" = "UnLockerMenu"
-> {HKLM...CLSID} = "UnLockerMenu Class"
\InProcServer32\(Default) = "C:\Program Files\IObit\IObit Uninstaller\UninstallMenuRight32.dll" ["IObit"]

HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\

BDFVCtxMenuExt\(Default) = "{9E96C1F5-0EFA-4348-9460-15D6802C70AA}"
-> {HKLM...CLSID} = "BDFVCtxMenuExt"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\bdfvsctx.dll" ["Bitdefender"]

{4CE485DD-C395-46C4-A929-7B771D8A5655}\(Default) = (no title provided)
-> {HKLM...CLSID} = "FileShredderCtxMenu Class"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\fshredctx.dll" ["Bitdefender"]

{D653647D-D607-4df6-A5B8-48D2BA195F7B}\(Default) = (no title provided)
-> {HKLM...CLSID} = "BDMenu Class"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\bdshellext.dll" ["Bitdefender"]

HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\

BDFVCtxMenuExt\(Default) = "{9E96C1F5-0EFA-4348-9460-15D6802C70AA}"
-> {HKLM...CLSID} = "BDFVCtxMenuExt"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\bdfvsctx.dll" ["Bitdefender"]

{4CE485DD-C395-46C4-A929-7B771D8A5655}\(Default) = (no title provided)
-> {HKLM...CLSID} = "FileShredderCtxMenu Class"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\fshredctx.dll" ["Bitdefender"]

{D653647D-D607-4df6-A5B8-48D2BA195F7B}\(Default) = (no title provided)
-> {HKLM...CLSID} = "BDMenu Class"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\bdshellext.dll" ["Bitdefender"]

HKLM\SOFTWARE\Classes\Directory\Background\shellex\ContextMenuHandlers\

BDFVCtxMenuExt\(Default) = "{9E96C1F5-0EFA-4348-9460-15D6802C70AA}"
-> {HKLM...CLSID} = "BDFVCtxMenuExt"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\bdfvsctx.dll" ["Bitdefender"]

HKLM\SOFTWARE\Classes\Folder\shellex\ColumnHandlers\

BDFVCtxMenuExt\(Default) = "{9E96C1F5-0EFA-4348-9460-15D6802C70AA}"
-> {HKLM...CLSID} = "BDFVCtxMenuExt"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\bdfvsctx.dll" ["Bitdefender"]

{F9DB5320-233E-11D1-9F84-707F02C10627}\(Default) = "PDF Column Info"
-> {HKLM...CLSID} = "PDF Shell Extension"
\InProcServer32\(Default) = "C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll" ["Adobe Systems, Inc."]

HKLM\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\

BDFVCtxMenuExt\(Default) = "{9E96C1F5-0EFA-4348-9460-15D6802C70AA}"
-> {HKLM...CLSID} = "BDFVCtxMenuExt"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\bdfvsctx.dll" ["Bitdefender"]

{4CE485DD-C395-46C4-A929-7B771D8A5655}\(Default) = (no title provided)
-> {HKLM...CLSID} = "FileShredderCtxMenu Class"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\fshredctx.dll" ["Bitdefender"]

{D653647D-D607-4df6-A5B8-48D2BA195F7B}\(Default) = (no title provided)
-> {HKLM...CLSID} = "BDMenu Class"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\bdshellext.dll" ["Bitdefender"]

HKLM\SOFTWARE\Classes\Folder\shellex\DragDropHandlers\

WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}"
-> {HKLM...CLSID} = "WinRAR"
\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" ["Alexander Roshal"]


Group Policies {GPedit.msc branch and setting}:
-----------------------------------------------

Note: detected settings may not have any effect.

HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\

"NoLowDiskSpaceChecks" = (REG_DWORD) dword:0x00000001
{unrecognized setting}

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\

"EnableLUA" = (REG_DWORD) dword:0x00000000
{Computer Configuration|Windows Settings|Security Settings|Local Policies|Security Options|
User Account Control: Run All Administrators In Admin Approval Mode}

"ConsentPromptBehaviorAdmin" = (REG_DWORD) dword:0x00000000
{Computer Configuration|Windows Settings|Security Settings|Local Policies|Security Options|
User Account Control: Behavior Of The Elevation Prompt For Administrators In Admin Approval Mode}

"PromptOnSecureDesktop" = (REG_DWORD) dword:0x00000000
{Computer Configuration|Windows Settings|Security Settings|Local Policies|Security Options|
User Account Control: Switch to the secure desktop when prompting for elevation}


Active Desktop and Wallpaper:
-----------------------------

Active Desktop may be disabled at this entry:
HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellState

Displayed if Active Desktop disabled and wallpaper not set by Group Policy:
HKCU\Control Panel\Desktop\
"Wallpaper" = "C:\Users\Hp\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg"


Enabled Screen Saver:
---------------------

HKCU\Control Panel\Desktop\
"SCRNSAVE.EXE" = "C:\Windows\system32\Bubbles.scr" [MS]


Windows Portable Device AutoPlay Handlers
-----------------------------------------

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\

WIA_{C49044C9-0FBA-4F3D-9045-BA152BEAC50C}\
"Provider" = "Microsoft Office Word Viewer"
"CLSID" = "{A55803CC-4D53-404c-8557-FD63DBA95D24}"
"InitCmdLine" = "/WiaCmd;C:\Program Files\Microsoft Office\OFFICE11\WORDVIEW.EXE /IMG_WIA;"
-> {HKLM...CLSID} = "WPDShextAutoplay"
\LocalServer32\(Default) = "C:\Windows\system32\WPDShextAutoplay.exe" [MS]


Non-disabled Scheduled Tasks:
-----------------------------

C:\Users\Hp\AppData\Local\Microsoft\Windows Sidebar\Settings.ini

C:\Windows\System32\Tasks
"Adobe Flash Player Updater" -> launches: "C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe" ["Adobe Systems Incorporated"]
"ASC7_PerformanceMonitor" -> launches: "C:\Program Files\IObit\Advanced SystemCare 7\Monitor.exe" ["IObit"]
"ASC7_SkipUac_Hp" -> launches: ""C:\Program Files\IObit\Advanced SystemCare 7\ASC.exe" /SkipUac" ["IObit"]
"CCleanerSkipUAC" -> launches: ""C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)" ["Piriform Ltd"]
"Driver Booster SkipUAC (Hp)" -> launches: "C:\Program Files\IObit\Driver Booster\DriverBooster.exe /skipuac" ["IObit"]
"GoogleUpdateTaskMachineUA" -> launches: "C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler" ["Google Inc."]
"Uninstaller_SkipUac_Administrator" -> launches: "C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer" ["IObit"]
"Wise Turbo Checker" -> launches: "C:\Program Files\Wise\Wise Care 365\WiseTurbo.exe" ["WiseCleaner.COM"]

C:\Windows\System32\Tasks\Games
"UpdateCheck_S-1-5-21-3912191018-1440493636-4035541681-1000" -> (HIDDEN!) launches: "{CA22F5B1-E06F-4A2B-94FC-21E87FE53781}"
-> {HKLM...CLSID} = "GameUpdateTask Class"
\InProcServer32\(Default) = "C:\Windows\System32\gameux.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client
"AD RMS Rights Policy Template Management (Manual)" -> launches: "{BF5CB148-7C77-4d8a-A53E-D81C70CF743C}"
-> {HKLM...CLSID} = "AD RMS Rights Policy Template Management (Manual) Task Handler"
\InProcServer32\(Default) = "C:\Windows\system32\msdrm.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Application Experience
"AitAgent" -> launches: "aitagent" [MS]
"ProgramDataUpdater" -> launches: "%windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Autochk
"Proxy" -> launches: "%windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\CertificateServicesClient
"SystemTask" -> launches: "{58fb76b9-ac85-4e55-ac04-427593b1d060}"
-> {HKLM...CLSID} = "Certificate Services Client Task Handler"
\InProcServer32\(Default) = "C:\Windows\system32\dimsjob.dll" [MS]
"UserTask" -> launches: "{58fb76b9-ac85-4e55-ac04-427593b1d060}"
-> {HKLM...CLSID} = "Certificate Services Client Task Handler"
\InProcServer32\(Default) = "C:\Windows\system32\dimsjob.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program
"Consolidator" -> launches: "%SystemRoot%\System32\wsqmcons.exe" [MS]
"KernelCeipTask" -> (HIDDEN!) launches: "{e7ed314f-2816-4c26-aeb5-54a34d02404c}"
-> {HKLM...CLSID} = "KernelCeipCustomHandler"
\InProcServer32\(Default) = "C:\Windows\System32\kernelceip.dll" [MS]
"UsbCeip" -> (HIDDEN!) launches: "{c27f6b1d-fe0b-45e4-9257-38799fa69bc8}"
-> {HKLM...CLSID} = "UsbCeip"
\InProcServer32\(Default) = "C:\Windows\System32\usbceip.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Defrag
"ScheduledDefrag" -> launches: "%windir%\system32\defrag.exe -c" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Diagnosis
"Scheduled" -> (HIDDEN!) launches: "{c1f85ef8-bcc2-4606-bb39-70c523715eb3}"
-> {HKLM...CLSID} = "ScheduledDiagnosticCustomHandler"
\InProcServer32\(Default) = "C:\Windows\System32\sdiagschd.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Location
"Notifications" -> launches: "%windir%\System32\LocationNotifications.exe" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Maintenance
"WinSAT" -> launches: "{A9A33436-678B-4C9C-A211-7CC38785E79D}"
-> {HKLM...CLSID} = "WinSAT Task Manger Task"
\InProcServer32\(Default) = "C:\Windows\system32\WinSATAPI.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\MemoryDiagnostic
"CorruptionDetector" -> (HIDDEN!) launches: "{190BA3F6-0205-4f46-B589-95C6822899D2}"
-> {HKLM...CLSID} = "MemoryDiagnosticCustomHandler"
\InProcServer32\(Default) = "C:\Windows\System32\memdiag.dll" [MS]
"DecompressionFailureDetector" -> (HIDDEN!) launches: "{190BA3F6-0205-4f46-B589-95C6822899D2}"
-> {HKLM...CLSID} = "MemoryDiagnosticCustomHandler"
\InProcServer32\(Default) = "C:\Windows\System32\memdiag.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\MobilePC
"HotStart" -> launches: "{06DA0625-9701-43da-BFD7-FBEEA2180A1E}"
-> {HKLM...CLSID} = "HotStart User Agent"
\InProcServer32\(Default) = "C:\Windows\System32\HotStartUserAgent.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\MUI
"LPRemove" -> launches: "%windir%\system32\lpremove.exe" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Multimedia
"SystemSoundsService" -> launches: "{2DEA658F-54C1-4227-AF9B-260AB5FC3543}"
-> {HKLM...CLSID} = "Microsoft PlaySoundService Class"
\InProcServer32\(Default) = "C:\Windows\System32\PlaySndSrv.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics
"AnalyzeSystem" -> launches: "%SystemRoot%\System32\powercfg.exe -energy -auto" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\RAC
"RacTask" -> (HIDDEN!) launches: "{42060D27-CA53-41f5-96E4-B1E8169308A6}"
-> {HKLM...CLSID} = "ReliabilityAnalysisCustomHandler"
\InProcServer32\(Default) = "C:\Windows\system32\RacEngn.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Ras
"MobilityManager" -> launches: "{c463a0fc-794f-4fdf-9201-01938ceacafa}"
-> {HKLM...CLSID} = "RasMobilityManager"
\InProcServer32\(Default) = "C:\Windows\system32\rasmbmgr.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Registry
"RegIdleBackup" -> (HIDDEN!) launches: "{ca767aa8-9157-4604-b64b-40747123d5f2}"
-> {HKLM...CLSID} = "RegistryIdleBackupHandler"
\InProcServer32\(Default) = "C:\Windows\System32\regidle.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\RemoteAssistance
"RemoteAssistanceTask" -> (HIDDEN!) launches: "%windir%\system32\RAServer.exe /offerraupdate" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\SystemRestore
"SR" -> launches: "%windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Task Manager
"Interactive" -> (HIDDEN!) launches: "{855fec53-d2e4-4999-9e87-3414e9cf0ff4}"
-> {HKLM...CLSID} = "RunTask"
\InProcServer32\(Default) = "C:\Windows\system32\wdc.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Tcpip
"IpAddressConflict1" -> launches: "%windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem" [MS]
"IpAddressConflict2" -> launches: "%windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\TextServicesFramework
"MsCtfMonitor" -> (HIDDEN!) launches: "{01575cfe-9a55-4003-a5e1-f38d1ebdcbe1}"
-> {HKLM...CLSID} = "MsCtfMonitor task handler"
\InProcServer32\(Default) = "C:\Windows\system32\MsCtfMonitor.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Time Synchronization
"SynchronizeTime" -> launches: "%windir%\system32\sc.exe start w32time task_started" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\UPnP
"UPnPHostConfig" -> launches: "sc.exe config upnphost start= auto" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\WDI
"ResolutionHost" -> (HIDDEN!) launches: "{900be39d-6be8-461a-bc4d-b0fa71f5ecb1}"
-> {HKLM...CLSID} = "DiagnosticInfrastructureCustomHandler"
\InProcServer32\(Default) = "C:\Windows\System32\wdi.dll" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Windows Error Reporting
"QueueReporting" -> launches: "%windir%\system32\wermgr.exe -queuereporting" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\Windows Filtering Platform
"BfeOnServiceStartTypeChange" -> (HIDDEN!) launches: "%windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\WindowsBackup
"ConfigNotification" -> launches: "%systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION" [MS]

C:\Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem
"Calibration Loader" -> launches: "{B210D694-C8DF-490d-9576-9E20CDBC20BD}"
-> {HKLM...CLSID} = "Color Calibration Loader"
\InProcServer32\(Default) = "C:\Windows\System32\mscms.dll" [MS]

C:\Windows\System32\Tasks\WPD
"SqmUpload_S-1-5-21-3912191018-1440493636-4035541681-1000" -> (HIDDEN!) launches: "%windir%\system32\rundll32.exe portabledeviceapi.dll,#1" [MS]


Winsock2 Service Provider DLLs:
-------------------------------

Namespace Service Providers

HKLM\SYSTEM\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++}
000000000001\LibraryPath = "%SystemRoot%\system32\NLAapi.dll" [MS]
000000000002\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]
000000000003\LibraryPath = "%SystemRoot%\System32\winrnr.dll" [MS]
000000000004\LibraryPath = "%SystemRoot%\system32\napinsp.dll" [MS]
000000000005\LibraryPath = "%SystemRoot%\system32\pnrpnsp.dll" [MS]
000000000006\LibraryPath = "%SystemRoot%\system32\pnrpnsp.dll" [MS]
000000000007\LibraryPath = "%SystemRoot%\system32\wshbth.dll" [MS]

Transport Service Providers

HKLM\SYSTEM\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++}
0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range:
%SystemRoot%\system32\mswsock.dll [MS], 01 - 39


Toolbars, Explorer Bars, Extensions:
------------------------------------

Toolbars

HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\
"{1DAC0C53-7D23-4AB3-856A-B04D98CD982A}" = (no title provided)
-> {HKLM...CLSID} = "محفظة Bitdefender"
\InProcServer32\(Default) = "C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll" ["Bitdefender"]

Extensions (Tools menu items, main toolbar menu buttons)

HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\
{22CC3EBD-C286-43AA-B8E6-06B115F74162}\
"ButtonText" = "HP Smart Print"
"MenuText" = "HP Smart Print"
"Exec" = "C:\Program Files\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe" ["Hewlett-Packard"]

{898EA8C8-E7FF-479B-8935-AEC46303B9E5}\
"ButtonText" = "Skype Click to Call"
"CLSIDExtension" = "{898EA8C8-E7FF-479B-8935-AEC46303B9E5}"


Running Services (Display Name, Service Name, Path {Service DLL}):
------------------------------------------------------------------

Advanced SystemCare Service 7, AdvancedSystemCareService7, "C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe" ["IObit"]
Bitdefender Desktop Update Service, UPDATESRV, ""C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe" /service" ["Bitdefender"]
Bitdefender Virus Shield, vsserv, ""C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe" /service" ["Bitdefender"]
Malwarebytes Anti-Exploit Service, MbaeSvc, "C:\Program Files\Malwarebytes Anti-Exploit\mbae-svc.exe" ["Malwarebytes Corporation"]
MBAMScheduler, MBAMScheduler, ""C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe"" ["Malwarebytes Corporation"]
MBAMService, MBAMService, ""C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe"" ["Malwarebytes Corporation"]
SafeBox, SafeBox, "C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe" ["Bitdefender"]


Safe Mode Drivers & Services (subkey name, subkey default value):
-----------------------------------------------------------------

HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\

<<!>> hitmanpro37, (null value)
<<!>> hitmanpro37.sys, (null value)
<<!>> HitmanPro37Crusader, (null value)
<<!>> HitmanPro37CrusaderBoot, (null value)

HKLM\System\CurrentControlSet\Control\SafeBoot\Network\

<<!>> hitmanpro37, (null value)
<<!>> hitmanpro37.sys, (null value)
<<!>> HitmanPro37Crusader, (null value)
<<!>> HitmanPro37CrusaderBoot, (null value)


Print Monitors:
---------------

HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors\
HP 8711 Status Monitor\Driver = "hpinksts8711LM.dll" ["Hewlett-Packard Co."]


---------- (launch time: 2014-10-18 20:40:43)
<<!>>: Suspicious data at a malware launch point.

+ This report excludes default entries except where indicated.
+ To see *everywhere* the script checks and *everything* it finds,
launch it from a command prompt or a shortcut with the -all parameter.
+ To search all directories of local fixed drives for DESKTOP.INI
DLL launch points, use the -supp parameter or answer "No" at the
first message box and "Yes" at the second message box.
---------- (total run time: 87 seconds, including 5 seconds for message boxes)
أنقر للتوسيع...

ليس هو المطلوب اخى ..
من واجهة الاداة .. اضغط على سجلات النظام والاخطاء .. ستظهر لك رسالة اضغط موافق
بعد ذلك ستظهر المفكرة وبداخلها التقرير :)
 
توقيع : White Man
توقيع : أبـو نبيـل
الحالة
مغلق و غير مفتوح للمزيد من الردود.
عودة
أعلى