cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.7.5.84 By Nicolas Coolman (2015\07\05)
~ Run by Leila (Administrator) (2015/07/06 21:08:28)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\Leila\Desktop\ZHPDiag.txt
~ Report: C:\Users\Leila\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
~ Windows 7, 64-bit Service Pack 1 (Build 7601)

---\\ Internet Browsers (2) - 0s
MFIE: Mozilla v39.0
MSIE: Internet Explorer v11.0.9600.17843

---\\ Windows Product Information (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Activation Technologies : OK

---\\ System protection software (3) - 1s
Malwarebytes Anti-Malware version 2.1.8.1057
Microsoft Security Client v4.8.0204.0
Microsoft Security Essentials v4.8.204.0

---\\ Surveillance software (2) - 2s
Adobe Flash Player 18 ActiveX
Adobe Acrobat Reader DC - Português

---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
~ Total physical RAM (KB): 4095168
~ System Restore: Activé (Enable)
~ System drive C: has 144 GB free of 199 GB

---\\ Connection to the system mode (3) - 0s
~ Computer Name: TIRED-PC
~ User Name: Leila
~ Logged in as Administrator

---\\ Enumeration of the disk units (2) - 0s
~ Drive C: has 144 GB free of 199 GB (System)
~ Drive D: has 242 GB free of 276 GB

---\\ Search Generic System Files (22) - 1s
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Windows Explorer.) () -- C:\Windows\Explorer.exe [2871808]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Windows host process (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Windows Start-Up Application.) () -- C:\Windows\System32\Wininit.exe [129024]
[MD5.417F80E4AFBA1AA9EBBD618F1C6D9165] - (.Microsoft Corporation - Internet Extensions for Win32.) () -- C:\Windows\System32\wininet.dll [2426880]
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Windows Logon Application.) () -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Software Licensing Library.) () -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - i8042 Port Driver.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - NT File System Driver.) () -- C:\Windows\System32\drivers\ntfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Parallel Port Driver.) () -- C:\Windows\System32\drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184]
[MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Volume Shadow Copy Driver.) () -- C:\Windows\System32\drivers\volsnap.sys [295808]

---\\ Process running (7) - 1s
[MD5.810199DCC3BDC38304D7D649992EA7BC] - (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\stacsv64.exe [240128] [PID.416]
[MD5.6305ED64B6B4E96AEC8BECA423498EC0] - (.Validity Sensors, Inc. - Validity Sensors Fingerprint Service.) -- C:\Windows\System32\vfsFPService.exe [721712] [PID.1208]
[MD5.A6FB9DB8F1A86861D955FD6975977AE0] - (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) -- C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe [89600] [PID.1720]
[MD5.B65F8DBA54F251906BBE8611B5A0E7AB] - (.LSI Corporation - LSI Soft Modem Call Progress Service.) -- C:\Program Files\LSI SoftModem\agr64svc.exe [16896] [PID.1756]
[MD5.435AFCEBC01BE92CF988F86A64DE5B4E] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1815848] [PID.3028]
[MD5.7A2C26459B599A2D6D5401F73ACA1981] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe [450048] [PID.2688]
[MD5.31FF084BFAA35307DBAB4FA60CF7DBB7] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [120616] [PID.3784]

---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (P2,M0,M1,M2,M3) (9) - 1s
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\buscape.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\mercadolivre.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\twitter.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia-br.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo-br.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

---\\ Internet Explorer Extensions, Start, Search (R4,R3,R0,R1) (18) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer, Proxy Management (R5) (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Line Analysis F0, F1, F2, F3 - IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Hosts file redirection (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Internet Explorer Toolbars (O3) (1) - 0s
O3 - Toolbar: 0xB1C218236549D4119B18009027A5CD4F - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} . (...) -- (.not file.)

---\\ Auto loading programs from Registry and folders (O4) (13) - 1s
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- C:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Google Installer.) -- C:\Users\Leila\AppData\Local\Google\Update\GoogleUpdate.exe
O4 - HKLM\..\Wow6432Node\Run: [QlbCtrl.exe] . (.Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-2893006866-958947794-3985079038-1000\..\Run: [Google Update] . (.Google Inc. - Google Installer.) -- C:\Users\Leila\AppData\Local\Google\Update\GoogleUpdate.exe

---\\ Lop.com/Domain Hijackers (O17) (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.1.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 10.1.1.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 10.1.1.1

---\\ Non Microsoft non disabled Windows XP/NT/2000 Services (O23) (10) - 0s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) . (.LSI Corporation - LSI Soft Modem Call Progress Service.) - C:\Program Files\LSI SoftModem\agr64svc.exe
O23 - Service: HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company - HP Support Assistant Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Service (hpsrv) . (.Hewlett-Packard Company - HpService.) - C:\Windows\system32\Hpservice.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company - SolutionsFrameworkService.) - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Audio Service (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\stacsv64.exe
O23 - Service: Validity Fingerprint Service (vfsFPService) . (.Validity Sensors, Inc. - Validity Sensors Fingerprint Service.) - C:\Windows\System32\vfsFPService.exe

---\\ Task Planned Automatically (O39) (8) - 2s
[MD5.70685AC6E02E9C2DFB88D4851954F5B4] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998088]
[MD5.1234A12B71DAE034E45C714AE5A54412] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [268976]
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskUserS-1-5-21-2893006866-958947794-3985079038-1000Core] (.Google Inc..) -- C:\Users\Leila\AppData\Local\Google\Update\GoogleUpdate.exe [107848]
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskUserS-1-5-21-2893006866-958947794-3985079038-1000UA] (.Google Inc..) -- C:\Users\Leila\AppData\Local\Google\Update\GoogleUpdate.exe [107848]
[MD5.8AA3B22B716A04AC8DD13318A40D708D] [APT] [HPCeeScheduleForLeila] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [95800]
[MD5.00000000000000000000000000000000] [APT] [SpeedUpMyPC Maintenance] (.Hewlett-Packard.) -- C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe (.not file.) [0] =>PUP.SpeedUpMyPC
[MD5.00000000000000000000000000000000] [APT] [SpeedUpMyPC Startup] (.Hewlett-Packard.) -- C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe (.not file.) [0] =>PUP.SpeedUpMyPC
[MD5.00000000000000000000000000000000] [APT] [SpeedUpMyPC Subscription] (.Hewlett-Packard.) -- C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe (.not file.) [0] =>PUP.SpeedUpMyPC

---\\ Software installed (O42) (50) - 7s
O42 - Logiciel: ENE CIR Receiver Driver - (.ENE.) [HKLM][64Bits] -- FFE7D41DF3C645075BB149E21988B63996C34187
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM][64Bits] -- HDMI
O42 - Logiciel: KMSnano 24 - (...) [HKLM][64Bits] -- KMSnano 24_is1
O42 - Logiciel: LSI HDA Modem - (.LSI Corporation.) [HKLM][64Bits] -- LSI Soft Modem
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {D9FCBAAE-DB72-488B-96D0-0AA3C892C0D6}
O42 - Logiciel: Validity Sensors software - (.Validity Sensors, Inc..) [HKLM][64Bits] -- {F65B8208-5221-43D9-AA12-DDEA64EC4AF6}
O42 - Logiciel: Adobe Flash Player 18 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: AVerMedia TV Tuner Card 1.0.0.4 - (.AVerMedia TECHNOLOGIES, Inc..) [HKLM][64Bits] -- AVerMedia TV Tuner Card
O42 - Logiciel: HP MediaSmart Webcam - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: HP MediaSmart Internet TV - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}
O42 - Logiciel: K-Lite Mega Codec Pack 7.5.0 - (...) [HKLM][64Bits] -- KLiteCodecPack_is1
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Mozilla Firefox 39.0 (x86 pt-BR) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 39.0 (x86 pt-BR)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: WinRAR 4.01 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: HP MediaSmart Webcam - (.Hewlett-Packard.) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: JMicron Flash Media Controller Driver - (.JMicron Technology Corp..) [HKLM][64Bits] -- {26604C7E-A313-4D12-867F-7C6E7820BE4C}
O42 - Logiciel: HP Quick Launch Buttons - (.Hewlett-Packard.) [HKLM][64Bits] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O42 - Logiciel: Hewlett-Packard ACLM.NET v1.2.2.3 - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {6F340107-F9AA-47C6-B54C-C3A19F11553F}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: Microsoft Access MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Excel MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft PowerPoint MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Publisher MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Outlook MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Word MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-0409-0000-0000000FF1CE}
O42 - Logiciel: Update for Skype for Business 2015 (KB3054791) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-002A-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{04ADDEC1-208F-4295-AA61-16789EA56814}
O42 - Logiciel: Microsoft InfoPath MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft DCF MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft OneNote MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Groove MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Access Setup Metadata MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0117-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Lync MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-0409-0000-0000000FF1CE}
O42 - Logiciel: Update for Skype for Business 2015 (KB3054791) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-0409-0000-0000000FF1CE}_Office15.PROPLUSR_{04ADDEC1-208F-4295-AA61-16789EA56814}
O42 - Logiciel: Update for Skype for Business 2015 (KB2889853) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-0409-0000-0000000FF1CE}_Office15.PROPLUSR_{BF1B3F01-93F3-4B83-93DB-132EB1AED259}
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {904822F1-6C7D-4B91-B936-6A1C0810544C}
O42 - Logiciel: Update for Skype for Business 2015 (KB3054791) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{04ADDEC1-208F-4295-AA61-16789EA56814}
O42 - Logiciel: Nero 7 Premium - (.Nero AG.) [HKLM][64Bits] -- {A20A58C4-6784-4B4B-86CC-94E2E3671033}
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824144531}
O42 - Logiciel: Adobe Acrobat Reader DC - Português - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1046-7B44-AC0F074E4100}
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}
O42 - Logiciel: HP MediaSmart Internet TV - (.CyberLink Corp..) [HKLM][64Bits] -- {E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}
O42 - Logiciel: QLBCASL - (.Hewlett-Packard.) [HKLM][64Bits] -- {F1D7AC58-554A-4A58-B784-B61558B1449A}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: HP Support Solutions Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {FC3C2B77-6800-48C6-A15D-9D1031130C16}
O42 - Logiciel: Google Chrome Canary - (.Google Inc..) [HKCU][64Bits] -- Google Chrome SxS

---\\ HKCU & HKLM Software Keys (56) - 7s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\Ahead
HKLM\SOFTWARE\Wow6432Node\Alcohol Soft
HKLM\SOFTWARE\Wow6432Node\Audible
HKLM\SOFTWARE\Wow6432Node\CheckPoint
HKLM\SOFTWARE\Wow6432Node\Codec Tweak Tool
HKLM\SOFTWARE\Wow6432Node\CyberLink
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\HP
HKLM\SOFTWARE\Wow6432Node\IDT
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\KLCodecPack
HKLM\SOFTWARE\Wow6432Node\Lavasoft
HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nero
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Uniblue =>PUP.UniblueSystem
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Ahead
HKCU\SOFTWARE\Alcohol Soft
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\LAV
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\madFlac
HKCU\SOFTWARE\MediaInfo
HKCU\SOFTWARE\MONOGRAM
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Synaptics
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\adawarebp =>PUP.ToolbarCleaner

---\\ Contents of the Common Files folders (O43) (118) - 5s
O43 - CFD: 2015/06/25 15:11:21 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2015/06/25 15:37:17 - [] D -- C:\Program Files (x86)\Alcohol Soft
O43 - CFD: 2015/06/25 20:07:13 - [] D -- C:\Program Files (x86)\AVerMedia
O43 - CFD: 2015/06/25 15:56:32 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2015/06/25 14:11:10 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/06/25 19:35:20 - [] D -- C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 2015/06/25 16:38:01 - [] D -- C:\Program Files (x86)\Hp
O43 - CFD: 2015/06/25 16:30:41 - [] D -- C:\Program Files (x86)\HP USB TV Tuner
O43 - CFD: 2015/07/01 15:32:51 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/06/25 16:47:14 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2015/07/02 18:44:46 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/06/25 19:05:12 - [] D -- C:\Program Files (x86)\JMicron
O43 - CFD: 2015/06/25 16:39:19 - [] D -- C:\Program Files (x86)\K-Lite Codec Pack
O43 - CFD: 2015/07/04 00:23:16 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 2015/06/25 15:53:35 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 2015/06/25 15:55:30 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2015/06/25 14:16:25 - [] D -- C:\Program Files (x86)\Microsoft Security Client
O43 - CFD: 2015/06/25 15:56:15 - [] D -- C:\Program Files (x86)\Microsoft SQL Server
O43 - CFD: 2015/07/04 03:23:46 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/07/04 12:57:56 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/07/03 17:42:22 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2009/07/14 02:32:38 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/07/03 12:34:56 - [0] D -- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 2015/06/25 15:46:39 - [] D -- C:\Program Files (x86)\Nero
O43 - CFD: 2015/07/03 17:26:24 - [] D -- C:\Program Files (x86)\Notepad++
O43 - CFD: 2009/07/14 02:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2009/07/14 01:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2015/07/03 19:14:43 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2015/07/03 19:14:44 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/07/03 19:14:43 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009/07/14 02:32:38 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2015/07/03 19:14:43 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2015/06/26 10:02:11 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2015/07/03 19:14:44 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2015/06/25 15:40:40 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 2015/06/25 15:11:59 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2009/07/14 01:57:13 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/06/25 15:37:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alcohol 120%
O43 - CFD: 2015/06/25 15:12:01 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/06/25 19:35:47 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 2015/06/25 19:17:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
O43 - CFD: 2015/06/25 16:39:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
O43 - CFD: 2015/06/25 15:59:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSnano
O43 - CFD: 2015/07/04 22:43:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
O43 - CFD: 2009/07/14 01:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/04 00:23:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 2015/07/04 13:13:00 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
O43 - CFD: 2015/06/25 15:48:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 7 Premium
O43 - CFD: 2009/07/14 01:54:24 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2009/07/14 04:44:38 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/06/25 15:40:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/06/25 15:48:36 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2015/07/03 18:06:32 - [] D -- C:\ProgramData\CheckPoint
O43 - CFD: 2015/06/25 20:02:08 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2015/06/25 11:42:20 - [] D -- C:\ProgramData\Google
O43 - CFD: 2015/06/25 19:16:23 - [] D -- C:\ProgramData\Hewlett-Packard
O43 - CFD: 2015/07/04 00:23:12 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2015/06/25 16:27:45 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/07/04 13:12:43 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2015/07/03 17:42:17 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2015/06/25 15:46:40 - [] D -- C:\ProgramData\Nero
O43 - CFD: 2015/06/25 15:56:00 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2015/06/25 19:59:46 - [] D -- C:\ProgramData\Temp
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/06/25 19:14:00 - [] D -- C:\ProgramData\{65AB91D4-DDD0-48D4-804D-C24E1FC90D44}
O43 - CFD: 2015/06/25 15:11:22 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2015/06/25 15:47:16 - [] D -- C:\Program Files (x86)\Common Files\Ahead
O43 - CFD: 2015/06/25 15:56:32 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2015/07/04 03:23:41 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2009/07/14 00:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2009/07/14 00:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2015/07/04 03:11:10 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2015/07/06 17:24:55 - [] D -- C:\Users\Leila\AppData\Roaming\Adobe
O43 - CFD: 2015/06/25 15:47:40 - [] D -- C:\Users\Leila\AppData\Roaming\Ahead
O43 - CFD: 2015/06/25 20:02:00 - [] D -- C:\Users\Leila\AppData\Roaming\CyberLink
O43 - CFD: 2015/06/25 19:17:43 - [] D -- C:\Users\Leila\AppData\Roaming\Hewlett-Packard
O43 - CFD: 2015/06/25 19:14:21 - [] D -- C:\Users\Leila\AppData\Roaming\hpqLog
O43 - CFD: 2015/06/25 15:17:17 - [] D -- C:\Users\Leila\AppData\Roaming\Identities
O43 - CFD: 2015/06/25 14:03:51 - [] D -- C:\Users\Leila\AppData\Roaming\Macromedia
O43 - CFD: 2009/07/14 04:44:38 - [0] D -- C:\Users\Leila\AppData\Roaming\Media Center Programs
O43 - CFD: 2015/07/06 18:12:00 - [] SD -- C:\Users\Leila\AppData\Roaming\Microsoft
O43 - CFD: 2015/07/03 17:42:47 - [] D -- C:\Users\Leila\AppData\Roaming\Mozilla
O43 - CFD: 2015/07/03 17:26:24 - [] D -- C:\Users\Leila\AppData\Roaming\Notepad++
O43 - CFD: 2015/06/25 15:49:20 - [] D -- C:\Users\Leila\AppData\Roaming\WinRAR
O43 - CFD: 2015/07/06 21:08:36 - [] D -- C:\Users\Leila\AppData\Roaming\ZHP
O43 - CFD: 2015/07/06 17:24:20 - [] D -- C:\Users\Leila\AppData\Local\Adobe
O43 - CFD: 2015/06/25 16:15:32 - [] D -- C:\Users\Leila\AppData\Local\Ahead
O43 - CFD: 2015/06/25 15:17:06 - [0] SHD -- C:\Users\Leila\AppData\Local\Application Data
O43 - CFD: 2015/06/25 15:14:10 - [] D -- C:\Users\Leila\AppData\Local\Apps
O43 - CFD: 2015/06/25 15:14:30 - [0] D -- C:\Users\Leila\AppData\Local\Deployment
O43 - CFD: 2015/07/04 23:26:13 - [] D -- C:\Users\Leila\AppData\Local\Diagnostics
O43 - CFD: 2015/07/03 18:52:24 - [] D -- C:\Users\Leila\AppData\Local\DoNotTrackPlus
O43 - CFD: 2015/07/04 23:28:41 - [] D -- C:\Users\Leila\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2015/07/03 16:16:35 - [0] SHD -- C:\Users\Leila\AppData\Local\EmieBrowserModeList
O43 - CFD: 2015/07/03 16:16:35 - [0] SHD -- C:\Users\Leila\AppData\Local\EmieSiteList
O43 - CFD: 2015/07/03 16:16:35 - [0] SHD -- C:\Users\Leila\AppData\Local\EmieUserList
O43 - CFD: 2015/07/03 18:51:28 - [] D -- C:\Users\Leila\AppData\Local\Google
O43 - CFD: 2015/07/03 20:43:59 - [] D -- C:\Users\Leila\AppData\Local\GWX
O43 - CFD: 2015/07/01 15:30:51 - [] D -- C:\Users\Leila\AppData\Local\Hewlett-Packard
O43 - CFD: 2015/06/25 15:17:06 - [0] SHD -- C:\Users\Leila\AppData\Local\History
O43 - CFD: 2015/07/06 18:12:00 - [] D -- C:\Users\Leila\AppData\Local\Microsoft
O43 - CFD: 2015/06/25 15:53:30 - [0] D -- C:\Users\Leila\AppData\Local\Microsoft Help
O43 - CFD: 2015/07/03 21:46:40 - [] D -- C:\Users\Leila\AppData\Local\Mozilla
O43 - CFD: 2015/07/04 00:22:50 - [] D -- C:\Users\Leila\AppData\Local\Programs
O43 - CFD: 2015/07/06 21:08:24 - [] D -- C:\Users\Leila\AppData\Local\Temp
O43 - CFD: 2015/06/25 15:17:06 - [0] SHD -- C:\Users\Leila\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/06/25 15:17:12 - [0] D -- C:\Users\Leila\AppData\Local\VirtualStore
O43 - CFD: 2009/07/14 01:54:32 - [] RD -- C:\Users\Leila\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/07/02 18:59:06 - [] RD -- C:\Users\Leila\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/06/25 15:19:50 - [] D -- C:\Users\Leila\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome Canary
O43 - CFD: 2009/07/14 01:49:38 - [] RD -- C:\Users\Leila\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/02 18:59:06 - [] RD -- C:\Users\Leila\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/06/25 15:40:40 - [] D -- C:\Users\Leila\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ System Drivers List (SDL) (O58) (58) - 6s
O58 - SDL:2011/05/13 18:57:58 A . (.Hewlett-Packard Company - HP Accelerometer.) -- C:\Windows\System32\drivers\Accelerometer.sys [43320]
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088]
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536]
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864]
O58 - SDL:2009/04/06 17:31:08 A . (.LSI Corporation - SoftModem Device Driver.) -- C:\Windows\System32\drivers\agrsm64.sys [1208320]
O58 - SDL:2009/07/13 22:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440]
O58 - SDL:2011/03/11 03:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904]
O58 - SDL:2009/07/13 22:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128]
O58 - SDL:2011/03/11 03:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008]
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632]
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856]
O58 - SDL:2009/06/10 17:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848]
O58 - SDL:2009/06/10 17:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432]
O58 - SDL:2009/06/10 17:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704]
O58 - SDL:2009/07/13 22:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720]
O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104]
O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976]
O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720]
O58 - SDL:2009/06/10 17:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480]
O58 - SDL:2009/07/13 22:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488]
O58 - SDL:2009/07/13 22:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496]
O58 - SDL:2009/06/28 19:17:00 A . (.ENE TECHNOLOGY INC. - ENE CIR Driver for eHome(64).) -- C:\Windows\System32\drivers\enecir.sys [70656]
O58 - SDL:2009/06/10 17:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016]
O58 - SDL:2009/06/10 17:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232]
O58 - SDL:2011/05/13 18:58:16 A . (.Hewlett-Packard Company - HP Disk Filter - SATA/RAID.) -- C:\Windows\System32\drivers\hpdskflt.sys [30008]
O58 - SDL:2009/04/29 07:48:32 A . (.Hewlett-Packard Development Company, L.P. - HpqKbFiltr Keyboard Filter Driver.) -- C:\Windows\System32\drivers\HpqKbFiltr.sys [18432]
O58 - SDL:2010/11/20 05:33:36 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720]
O58 - SDL:2011/03/11 03:41:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496]
O58 - SDL:2009/08/27 08:07:06 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [7369600]
O58 - SDL:2009/07/13 22:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112]
O58 - SDL:2009/07/10 06:45:12 A . (.Intel(R) Corporation - Intel(R) High Definition Audio HDMI.) -- C:\Windows\System32\drivers\IntcHdmi.sys [139264]
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752]
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560]
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600]
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776]
O58 - SDL:2015/06/18 08:41:40 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816]
O58 - SDL:2015/06/18 08:41:44 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272]
O58 - SDL:2015/07/06 21:07:52 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [113880]
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392]
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736]
O58 - SDL:2015/06/18 08:41:56 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [63704]
O58 - SDL:2010/01/13 16:37:18 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\NETw5s64.sys [7675392]
O58 - SDL:2009/07/13 22:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264]
O58 - SDL:2011/03/11 03:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352]
O58 - SDL:2011/03/11 03:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272]
O58 - SDL:2009/07/13 22:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816]
O58 - SDL:2009/07/13 22:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592]
O58 - SDL:2009/06/10 17:35:42 A . (.Realtek Corporation - Realtek 8101E/8168/8169 NDIS 6.20 64-bit Dr.) -- C:\Windows\System32\drivers\Rt64win7.sys [187392]
O58 - SDL:2009/06/10 17:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040]
O58 - SDL:2009/07/13 21:00:40 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\serial.sys [94208]
O58 - SDL:2009/07/13 22:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584]
O58 - SDL:2009/07/13 22:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464]
O58 - SDL:2015/06/25 15:35:27 A . (...) -- C:\Windows\System32\drivers\sptd.sys [871408]
O58 - SDL:2009/07/13 22:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656]
O58 - SDL:2009/07/21 02:33:32 A . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\drivers\stwrt64.sys [487936]
O58 - SDL:2009/07/14 00:16:34 A . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\System32\drivers\SynTP.sys [273456]
O58 - SDL:2009/07/13 22:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488]
O58 - SDL:2009/07/13 22:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872]

---\\ Last modified or created user files (O61) (22) - 18s
O61 - LFC: 2015/07/03 16:38:39 A . (..) -- C:\Users\Leila\Downloads\Adaware_Installer.exe [2009904]
O61 - LFC: 2015/07/03 17:39:03 A . (..) -- C:\Users\Leila\Downloads\Firefox Setup Stub 39.0.exe [242832]
O61 - LFC: 2015/07/03 17:24:42 A . (..) -- C:\Users\Leila\Downloads\npp.6.7.9.2.Installer.exe [7000049]
O61 - LFC: 2015/07/04 21:24:03 A . (.Uniblue Systems Limited.) -- C:\Users\Leila\Downloads\speedupmypc.exe [1338968] =>PUP.SpeedUpMyPC
O61 - LFC: 2015/07/03 18:06:04 A . (.Check Point Software Technologies Ltd..) -- C:\Users\Leila\Downloads\zafwSetupWeb_133_209_000.exe [3401864]
O61 - LFC: 2015/07/02 19:06:53 A . (..) -- C:\Users\Leila\AppData\Local\Microsoft\Windows\1033\StructuredQuerySchema.bin [299160]
O61 - LFC: 2015/07/03 21:59:03 A . (..) -- C:\Users\Leila\AppData\Local\Microsoft\Internet Explorer\UrlBlockManager\urlblocklist.bin [0]
O61 - LFC: 2015/07/04 08:19:50 A . (..) -- C:\Users\Leila\AppData\Local\Google\Update\Install\{9E968EC1-96DD-47DD-B335-A7763E24E7D4}\45.0.2448.0_45.0.2447.0_chrome64_updater.exe [2578000]
O61 - LFC: 2015/07/06 17:34:43 A . (..) -- C:\Users\Leila\AppData\Local\Google\Update\Install\{992F228C-3C1A-41A4-9843-3DBB82D2F532}\45.0.2449.0_45.0.2448.0_chrome64_updater.exe [2412624]
O61 - LFC: 2015/07/03 11:49:39 A . (..) -- C:\Users\Leila\AppData\Local\Google\Update\Install\{1A6C3412-FAC2-455E-A7DB-5433CAB28452}\45.0.2447.0_45.0.2446.0_chrome64_updater.exe [3044944]
O61 - LFC: 2015/07/06 17:34:43 A . (..) -- C:\Users\Leila\AppData\Local\Google\Update\Download\{4EA16AC7-FD5A-47C3-875B-DBF4A2008C20}\45.0.2449.0\45.0.2449.0_45.0.2448.0_chrome64_updater.exe [2412624]
O61 - LFC: 2015/07/04 02:35:23 A . (..) -- C:\Users\Leila\AppData\Local\Google\Chrome SxS\User Data\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 2015/07/06 05:39:09 A . (..) -- C:\Users\Leila\AppData\Local\Google\Chrome SxS\Application\45.0.2449.0\libexif.dll [339272]
O61 - LFC: 2015/07/06 02:30:37 A . (..) -- C:\Users\Leila\AppData\Local\Google\Chrome SxS\Application\45.0.2449.0\natives_blob.bin [410754]
O61 - LFC: 2015/07/06 02:30:38 A . (..) -- C:\Users\Leila\AppData\Local\Google\Chrome SxS\Application\45.0.2449.0\snapshot_blob.bin [587156]
O61 - LFC: 2015/07/06 05:39:16 A . (..) -- C:\Users\Leila\AppData\Local\Google\Chrome SxS\Application\45.0.2449.0\PepperFlash\pepflashplayer.dll [28520264]
O61 - LFC: 2015/07/04 05:20:46 A . (..) -- C:\Users\Leila\AppData\Local\Google\Chrome SxS\Application\45.0.2448.0\libexif.dll [339272]
O61 - LFC: 2015/07/04 02:30:14 A . (..) -- C:\Users\Leila\AppData\Local\Google\Chrome SxS\Application\45.0.2448.0\natives_blob.bin [411645]
O61 - LFC: 2015/07/04 02:30:14 A . (..) -- C:\Users\Leila\AppData\Local\Google\Chrome SxS\Application\45.0.2448.0\snapshot_blob.bin [587084]
O61 - LFC: 2015/07/04 05:20:54 A . (..) -- C:\Users\Leila\AppData\Local\Google\Chrome SxS\Application\45.0.2448.0\PepperFlash\pepflashplayer.dll [28520264]
O61 - LFC: 2015/07/03 18:52:24 A . (..) -- C:\Users\Leila\AppData\Local\DoNotTrackPlus\dntp-rules.bin [60771]
O61 - LFC: 2015/07/06 18:13:14 A . (..) -- C:\Users\Leila\AppData\Local\Adobe\Acrobat\DC\UserCache.bin [76329]

---\\ File Associations Shell Spawning (O67) (10) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

---\\ Start Menu Internet (SMI) (O68) (8) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe

---\\ Search Browser Infection (SBI) (O69) (1) - 6s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/

---\\ Search Svchost Services (SSS) (O83) (32) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\system32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\ikeext.dll [859648]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\Audiosrv.dll [680960]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [683520]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2553856]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\system32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\system32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\system32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\system32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [210432]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\system32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [100864]

---\\ General States of Services not Microsoft (EGS) (SR=Running, SS=Stopped) (15) - 16s
SR - Auto [2015/06/12 09:25:00] [ 82112] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - Demand [2015/06/25 11:27:14] [ 268976] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - Auto [2009/03/01 22:42:58] [ 89600] Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
SR - Auto [2009/03/27 18:10:16] [ 16896] Agere Modem Call Progress Audio (AgereModemAudio) . (.LSI Corporation.) - C:\Program Files\LSI SoftModem\agr64svc.exe
SR - Demand [2009/05/05 09:11:50] [ 228408] Com4QLBEx (Com4QLBEx) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
SR - Auto [2015/05/19 17:22:06] [ 99128] HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
SR - Demand [2013/05/13 20:09:20] [ 1129760] HP Software Framework Service (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
SR - Auto [// ::] [ 30520] HP Service (hpsrv) . (.Hewlett-Packard Company.) - C:\Windows\system32\Hpservice.exe
SR - Auto [2015/03/28 12:58:42] [ 89840] HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
SR - Auto [2015/06/18 08:39:46] [ 1871160] (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
SR - Auto [2015/06/18 08:39:50] [ 1133880] (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
SS - Demand [2015/06/30 23:30:36] [ 148136] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - Demand [2007/05/16 09:27:28] [ 271920] NMIndexingService (NMIndexingService) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
SR - Auto [2009/07/21 02:33:32] [ 240128] Audio Service (STacSV) . (.IDT, Inc..) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\stacsv64.exe
SR - Auto [2009/06/03 02:12:50] [ 721712] Validity Fingerprint Service (vfsFPService) . (.Validity Sensors, Inc..) - C:\Windows\System32\vfsFPService.exe

---\\ Additional Scan (O88) (3) - 0s
HKLM\SOFTWARE\Wow6432Node\Uniblue =>PUP.UniblueSystem
HKCU\SOFTWARE\AppDataLow\Software\adawarebp =>PUP.ToolbarCleaner =>PUP.ToolbarCleaner
C:\Users\Leila\Downloads\speedupmypc.exe =>PUP.SpeedUpMyPC

---\\ Summary of the detections found on your workstation (3) - 0s
http://www.nicolascoolman.fr/blog =>PUP.SpeedUpMyPC
http://www.nicolascoolman.fr/blog =>PUP.UniblueSystem
http://www.nicolascoolman.fr/pup-toolbarcleaner/ =>PUP.ToolbarCleaner

~ End of the scan, 36324 items in 79 seconds (527)(0)()

Publicité


Signaler le contenu de ce document

Publicité