[code] HitmanPro 3.7.10.250 www.hitmanpro.com Computer name . . . . : ERMONNEKE-HP Windows . . . . . . . : 10.0.0.10240.X64/4 User name . . . . . . : ERMONNEKE-HP\hermonneke UAC . . . . . . . . . : Enabled License . . . . . . . : Trial (Expired) Scan date . . . . . . : 2015-10-30 11:48:46 Scan mode . . . . . . : Normal Scan duration . . . . : 10m 45s Disk access mode . . : Direct disk access (SRB) Cloud . . . . . . . . : Internet Reboot . . . . . . . : No Threats . . . . . . . : 1 Traces . . . . . . . : 4 Objects scanned . . . : 2.128.980 Files scanned . . . . : 85.858 Remnants scanned . . : 598.667 files / 1.444.455 keys Malware _____________________________________________________________________ C:\Users\hermonneke\Documents\ERMONNEKE-HP\Backup Set 2015-01-09 125544\Backup Files 2015-01-09 125544\Backup files 4\C\Users\ermonneke\Downloads\wps office free 2014 formerly kingsoft office suite setup.exe Size . . . . . . . : 913.152 bytes Age . . . . . . . : 92.8 days (2015-07-29 16:29:55) Entropy . . . . . : 8.0 SHA-256 . . . . . : 1491DB123F36A3E28F5C0E0F7F5D4C070C3D7A8342741CB2187DBDE85F27C88F RSA Key Size . . . : 2048 Authenticode . . . : Valid > Kaspersky . . . . : not-a-virus:Downloader.Win32.Agent.bxwp Fuzzy . . . . . . : 107.0 Potential Unwanted Programs _________________________________________________ C:\WINDOWS\SysWOW64\Drivers\DrvAgent64.SYS (DriverRestore) Size . . . . . . . : 20.872 bytes Age . . . . . . . : 87.8 days (2015-08-03 17:46:17) Entropy . . . . . : 6.3 SHA-256 . . . . . : 8CB62C5D41148DE416014F80BD1FD033FD4D2BD504CB05B90EEB6992A382D58F Product . . . . . : DriverAgent Publisher . . . . : Phoenix Technologies Description . . . : DriverAgent Direct I/O for 64-bit Windows Version . . . . . : 6.0 Copyright . . . . : EnTech Taiwan, 1997-2009 RSA Key Size . . . : 2048 Service . . . . . : DrvAgent64 LanguageID . . . . : 1033 Authenticode . . . : Valid Fuzzy . . . . . . : -4.0 Startup HKLM\SYSTEM\CurrentControlSet\Services\DrvAgent64\ HKLM\SYSTEM\ControlSet001\Services\DrvAgent64\ (DriverRestore) HKLM\SYSTEM\CurrentControlSet\Services\DrvAgent64\ (DriverRestore) [/code]