~ ZHPDiag v2015.12.25.197 By Nicolas Coolman (2015/12/25)
~ Run by Said (Administrator) (2015/12/26 19:46:28)
~ Web: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\Said\Desktop\ZHPDiag.txt
~ Report: C:\Users\Said\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ System startup: Normal (Normal boot)
Windows 7 Ultimate, 32-bit Service Pack 1 (Build 7601)

---\\ Internet Browsers (3) - 1s
MFIE: Mozilla Firefox 43.0.2 (x86 en-US) v43.0.2
OPIE: Opera 34.0.2036.25 v34.0.2036.25
MSIE: Internet Explorer v11.0.9600.17041

---\\ Windows Product Information (4) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System protection software (2) - 8s
ESET Smart Security v9.0.349.0
Windows Defender W7 (Activate)

---\\ Surveillance software (1) - 8s
Adobe Flash Player 20 NPAPI

---\\ Information on the system (6) - 0s
~ Operating System: x86 Family 6 Model 23 Stepping 6, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 2026.744 MB (40% free)
System Restore: Activé (Enable)
System drive C: has 33 GB () free of 51 GB

---\\ Connection to the system mode (3) - 0s
~ Computer Name: SAID-PC
~ User Name: Said
~ Logged in as Administrator

---\\ Enumeration of the disk units (5) - 0s
~ Drive C: has 33 GB free of 51 GB (System)
~ Drive D: has 29 GB free of 51 GB
~ Drive E: has 0 GB free of 136 GB
~ Drive G: has 0 GB free of 3 GB
~ Drive H: has 0 GB free of 3 GB

---\\ State of the Windows Security Center (10) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Search Generic System Files (24) - 1s
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - 15/04/2014 - (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\Explorer.exe [2616320] ©
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - 13/07/2009 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe [44544] ©
[MD5.B5C5DCAD3899512020D135600129D665] - 13/07/2009 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\Windows\System32\Wininit.exe [96256] ©
[MD5.E4E829EE073E046B0EB19B5FECB19B8C] - 15/04/2014 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [1789440] ©
[MD5.6D13E1406F50C66E2A95D97F22C47560] - 20/11/2010 - (.Microsoft Corporation - Windows Logon Application.) -- C:\Windows\System32\Winlogon.exe [286720] ©
[MD5.E3AE23569749DE12D45BA3B489A036AE] - 20/11/2010 - (.Microsoft Corporation - Software Licensing Library.) -- C:\Windows\System32\sppcomapi.dll [193536] ©
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 15/04/2014 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\System32\dnsapi.dll [270336] ©
[MD5.F81BB7E487EDCEAB630A7EE66CF23913] - 15/04/2014 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [338944] ©
[MD5.338C86357871C167A96AB976519BF59E] - 13/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [21584] =>.Microsoft Windows®
[MD5.77EA11B065E0A8AB902D78145CA51E10] - 13/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [70656] ©
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - 20/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [108544] ©
[MD5.F024449C97EC1E464AAFFDA18593DB88] - 20/11/2010 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [78336] ©
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - 20/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [108544] ©
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - 13/07/2009 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\drivers\i8042prt.sys [80896] ©
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - 13/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [101888] ©
[MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - 15/04/2014 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [123904] ©
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - 20/11/2010 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [187904] ©
[MD5.C8DFF8D07755A66C7A4A738930F0FEAC] - 15/04/2014 - (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [1212352] =>.Microsoft Windows®
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - 13/07/2009 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\drivers\Parport.sys [79360] ©
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - 13/07/2009 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [78848] ©
[MD5.B973FCFC50DC1434E1970A146F7E3885] - 20/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [133632] ©
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - 13/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [71168] ©
[MD5.B459575348C20E8121D6039DA063C704] - 20/11/2010 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [74752] ©
[MD5.F497F67932C6FA693D7DE2780631CFE7] - 20/11/2010 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\drivers\volsnap.sys [245632] =>.Microsoft Windows®

---\\ Non Microsoft non disabled Windows Services (4) - 1s
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) . (.LSI Corporation - LSI Soft Modem Call Progress Service.) - C:\Program Files\LSI SoftModem\agrsmsvc.exe ©
O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET Smart Security\ekrn.exe =>.ESET, spol. s r.o.®
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 331.6.) - C:\Windows\System32\nvvsvc.exe =>.NVIDIA Corporation®

---\\ Task Planned Automatically (16) - 4s
[MD5.4949CF54DE5B1A696FD6E7E558F5EA87] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [269504] =>.Adobe Systems Incorporated®
[MD5.7E27939489E28F2FB24653836860E088] [APT] [dsmonitor] (.Uniblue Systems Ltd.) -- C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe [27936] =>PUP.Optional.SpeedUpMyPC
[MD5.053EEEE1ABAE53F044F1E386E22AE525] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc®
[MD5.053EEEE1ABAE53F044F1E386E22AE525] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc®
[MD5.8A3A1B1D58C43A45517321BC8C650752] [APT] [klcp_update] (...) -- C:\Program Files\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1175040]
[MD5.70CB79B525FF3D953AB60030EC32265D] [APT] [Opera scheduled Autoupdate 1451107283] (.Opera Software.) -- C:\Program Files\Opera\launcher.exe [696952] =>.Opera Software ASA®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [830] ©
O39 - APT: dsmonitor - (.Uniblue Systems Ltd.) -- C:\Windows\Tasks\dsmonitor.job [326] =>.Superfluous.Uniblue
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [882] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [886] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3768] ©
O39 - APT: dsmonitor - (.Uniblue Systems Ltd.) -- C:\Windows\System32\Tasks\dsmonitor [2486] =>.Superfluous.Uniblue
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3630] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [3882] ©
O39 - APT: klcp_update - (...) -- C:\Windows\System32\Tasks\klcp_update [3776]
O39 - APT: Opera scheduled Autoupdate 1451107283 - (.Opera Software.) -- C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1451107283 [3820] ©

---\\ Process running (5) - 4s
[MD5.6416F9B6B220F0A890525C38235AFAD7] - (.LSI Corporation - LSI Soft Modem Call Progress Service.) -- C:\Program Files\LSI SoftModem\agrsmsvc.exe [14336] [PID.2004] ©
[MD5.F2BCC39EC53F763D87D791BCA6758945] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe [3911248] [PID.2188] ©
[MD5.E02C73344F8945FDE3D2228F24418244] - (.Secure By Design Inc. - Ninite.) -- C:\Users\Said\Downloads\Programs\Ninite CutePDF Foxit Reader LibreOffice OpenOffice Installer.exe [307200] [PID.5640] {1121F113A31CC6E813B796ADB6F44C6FB7F8}
[MD5.173A9D03A5C61DDD5B450FDBA48E3EFC] - (.Secure By Design Inc. - Ninite.) -- C:\Users\Said\AppData\Local\Temp\0894aba2-ac3a-11e5-afb7-001c7ede3eb2\Ninite.exe [1563608] [PID.4852] {1121F113A31CC6E813B796ADB6F44C6FB7F8}
[MD5.9B8EAF7F70273FC07558897AB22BDB7F] - (.Copyright (C) 2015 Nicolas Coolman - ZHPDiag.) -- C:\Users\Said\Downloads\Programs\ZHPDiag3.exe [2042368] [PID.1928] ©

---\\ Google Chrome, Start,Search,Extensions (20) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://r20---sn-q4f7sn7y.gvt1.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://redirector.gvt1.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://tools.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://chrome.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients2.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients2.googleusercontent.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fonts.googleapis.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.google-analytics.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Docs
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (2) - 0s
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\NPSWF32_20_0_0_255.dll ©

---\\ Internet Explorer Extensions, Start, Search (9) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer, Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ©

---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Browser Helper Object (BHO) (3) - 0s
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.®
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll =>.Oracle America, Inc.®
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll =>.Oracle America, Inc.®

---\\ Auto loading programs from Registry and folders (8) - 0s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.®
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe ©
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-21-3057885808-3817990929-3756678985-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe ©

---\\ Global shortcuts Startup (4) - 10s
O4 - GS\Quicklaunch [Administrator]: DriverScanner.lnk . (.Uniblue Systems Ltd - Uniblue DriverScanner.) C:\Program Files\Uniblue\DriverScanner\driverscanner.exe =>PUP.Optional.SpeedUpMyPC
O4 - GS\Quicklaunch [Guest]: DriverScanner.lnk . (.Uniblue Systems Ltd - Uniblue DriverScanner.) C:\Program Files\Uniblue\DriverScanner\driverscanner.exe =>PUP.Optional.SpeedUpMyPC
O4 - GS\Quicklaunch [Said]: DriverScanner.lnk . (.Uniblue Systems Ltd - Uniblue DriverScanner.) C:\Program Files\Uniblue\DriverScanner\driverscanner.exe =>PUP.Optional.SpeedUpMyPC
O4 - GS\CommonDesktop [Public]: DriverScanner.lnk . (.Uniblue Systems Ltd - Uniblue DriverScanner.) C:\Program Files\Uniblue\DriverScanner\driverscanner.exe =>PUP.Optional.SpeedUpMyPC

---\\ Lop.com/Domain Hijackers (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.105.28.11 68.105.29.11 68.105.28.12
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3096F14A-1072-43D7-B7C6-CB0836B48A09}: DhcpNameServer = 68.105.28.11 68.105.29.11 68.105.28.12

---\\ Extra protocols (20) - 1s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll ©
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®

---\\ Software installed (32) - 7s
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {78DFDC88-FA40-408F-8397-1D7908A6DA21} ©
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 20 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 20 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Shockwave Player 12.2 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player ©
O42 - Logiciel: CutePDF Writer 3.0 - (.Acro Software Inc..) [HKLM] -- CutePDF Writer Installation =>.Acro Software Inc.®
O42 - Logiciel: DriverMax 3 - (.Innovative Solutions.) [HKLM] -- DMX3_is1
O42 - Logiciel: DriverScanner - (.Uniblue Systems Ltd.) [HKLM] -- {C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1 =>PUP.Optional.SpeedUpMyPC
O42 - Logiciel: ESET Smart Security - (.ESET, spol. s r.o..) [HKLM] -- {EE928C63-34BF-4157-8B20-C20404A22A34}
O42 - Logiciel: Foxit Reader - (.Foxit Software Inc..) [HKLM] -- Foxit Reader_is1 {280F0A44452B0F} ©
O42 - Logiciel: Google Chrome - (.Google, Inc..) [HKLM] -- {D325A4AE-0EAB-3726-912C-6D0A56A95505} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM] -- Internet Download Manager =>.Tonec Inc.®
O42 - Logiciel: Java 8 Update 66 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218066F0} ©
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM] -- {4A03706F-666A-4037-7777-5F2748764D10} ©
O42 - Logiciel: K-Lite Codec Pack 11.8.0 Full - (...) [HKLM] -- KLiteCodecPack_is1
O42 - Logiciel: KMPlayer (remove only) - (.PandoraTV.) [HKLM] -- The KMPlayer
O42 - Logiciel: LibreOffice 5.0.4.2 - (.The Document Foundation.) [HKLM] -- {14B5DDCF-61C4-4F1E-A621-844685D60B5A} ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: Mozilla Firefox 43.0.2 (x86 en-US) - (.Mozilla.) [HKLM] -- Mozilla Firefox 43.0.2 (x86 en-US) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService ©
O42 - Logiciel: NVIDIA Control Panel 331.65 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel ©
O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer ©
O42 - Logiciel: OpenOffice 4.1.2 - (.Apache Software Foundation.) [HKLM] -- {E6AD67BB-1C33-4AB3-A387-E0D48137AB70} ©
O42 - Logiciel: Opera Stable 34.0.2036.25 - (.Opera Software.) [HKLM] -- Opera 34.0.2036.25 =>.Opera Software ASA®
O42 - Logiciel: PDFCreator - (.pdfforge.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp®
O42 - Logiciel: SumatraPDF - (.Krzysztof Kowalczyk.) [HKLM] -- SumatraPDF {00DA99CFF4EFE6B3EDA63DDFF3B69993E4} ©
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726} ©
O42 - Logiciel: TOSHIBA Software Modem - (.LSI Corporation.) [HKLM] -- TOSHIBA Software Modem ©
O42 - Logiciel: WinRAR 5.30 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: Your Uninstaller! 7 - (.URSoft, Inc..) [HKLM] -- YU2010_is1 {2D52C7CF5E69A633AC3AED0E78F988DC}

---\\ HKCU & HKLM Software Keys (79) - 7s
HKLM\SOFTWARE\Acro Software Inc
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\Agere
HKLM\SOFTWARE\AppDataLow
HKLM\SOFTWARE\ATI Technologies
HKLM\SOFTWARE\CBSTEST
HKLM\SOFTWARE\Dolby
HKLM\SOFTWARE\DTS
HKLM\SOFTWARE\ESET
HKLM\SOFTWARE\Foxit Software
HKLM\SOFTWARE\GNU
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\GPL Ghostscript
HKLM\SOFTWARE\HaaliMkx
HKLM\SOFTWARE\Icaros
HKLM\SOFTWARE\Innovative Solutions
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\Internet Download Manager
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\Khronos
HKLM\SOFTWARE\KLCodecPack
HKLM\SOFTWARE\KMPlayer
HKLM\SOFTWARE\Knowles
HKLM\SOFTWARE\LAV
HKLM\SOFTWARE\LibreOffice
HKLM\SOFTWARE\Licenses
HKLM\SOFTWARE\LSI
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\Nuance
HKLM\SOFTWARE\NVIDIA Corporation
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\OpenOffice
HKLM\SOFTWARE\pdfforge
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\Sonic
HKLM\SOFTWARE\SonicFocus
HKLM\SOFTWARE\SRS Labs
HKLM\SOFTWARE\The Document Foundation
HKLM\SOFTWARE\Uniblue =>.Superfluous.Uniblue
HKLM\SOFTWARE\Waves Audio
HKLM\SOFTWARE\WinRAR
HKLM\SOFTWARE\WOW6432Node
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\ESET
HKCU\SOFTWARE\Foxit Software
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\Icaros
HKCU\SOFTWARE\Innovative Solutions
HKCU\SOFTWARE\KMPlayer
HKCU\SOFTWARE\ksdev
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\madshi
HKCU\SOFTWARE\MediaInfo
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\OpenOffice
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\pdfforge
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\TAdvCheckList
HKCU\SOFTWARE\The Document Foundation
HKCU\SOFTWARE\URSoft
HKCU\SOFTWARE\Winamp
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft

---\\ Contents of the Common Files folders (123) - 15s
O43 - CFD: 26/12/2015 - [] D -- C:\Program Files\Acro Software =>.Acro Software Inc.®
O43 - CFD: 26/12/2015 - [] D -- C:\Program Files\Adobe =>.Adobe Systems Incorporated®
O43 - CFD: 26/12/2015 - [] D -- C:\Program Files\Common Files
O43 - CFD: 11/04/2011 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 25/12/2015 - [] D -- C:\Program Files\ESET =>.ESET, spol. s r.o.®
O43 - CFD: 26/12/2015 - [] D -- C:\Program Files\Foxit Software {280F0A44452B0F}
O43 - CFD: 25/12/2015 - [] D -- C:\Program Files\Google =>.Google Inc®
O43 - CFD: 26/12/2015 - [] D -- C:\Program Files\GPLGS
O43 - CFD: 25/12/2015 - [] D -- C:\Program Files\Innovative Solutions {58909CBB97FEC2C34CF4055B8FE7DB28}
O43 - CFD: 25/12/2015 - [] D -- C:\Program Files\Internet Download Manager
O43 - CFD: 15/04/2014 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 26/12/2015 - [] D -- C:\Program Files\Java =>.Oracle America, Inc.®
O43 - CFD: 25/12/2015 - [] D -- C:\Program Files\K-Lite Codec Pack
O43 - CFD: 26/12/2015 - [] D -- C:\Program Files\LibreOffice 5 =>.The Document Foundation®
O43 - CFD: 25/12/2015 - [] D -- C:\Program Files\LSI SoftModem
O43 - CFD: 11/04/2011 - [] D -- C:\Program Files\Microsoft Games
O43 - CFD: 26/12/2015 - [] D -- C:\Program Files\Microsoft Silverlight =>.Microsoft Corporation®
O43 - CFD: 26/12/2015 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 25/12/2015 - [] D -- C:\Program Files\Mozilla Firefox =>.Mozilla Corporation®
O43 - CFD: 26/12/2015 - [] D -- C:\Program Files\Mozilla Maintenance Service =>.Mozilla Corporation®
O43 - CFD: 13/07/2009 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 25/12/2015 - [] D -- C:\Program Files\NVIDIA Corporation =>.NVIDIA Corporation®
O43 - CFD: 26/12/2015 - [] D -- C:\Program Files\OpenOffice 4
O43 - CFD: 25/12/2015 - [] D -- C:\Program Files\Opera =>.Opera Software ASA®
O43 - CFD: 26/12/2015 - [] D -- C:\Program Files\PDFCreator =>.pdfforge GmbH®
O43 - CFD: 25/12/2015 - [] D -- C:\Program Files\Realtek =>.Andrea Electronics®
O43 - CFD: 13/07/2009 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 26/12/2015 - [] D -- C:\Program Files\SumatraPDF {00DA99CFF4EFE6B3EDA63DDFF3B69993E4}
O43 - CFD: 25/12/2015 - [] D -- C:\Program Files\Uniblue =>PUP.Optional.SpeedUpMyPC =>.Superfluous.Uniblue
O43 - CFD: 13/07/2009 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 15/04/2014 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 15/04/2014 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 11/04/2011 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 15/04/2014 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 13/07/2009 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 11/04/2011 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 20/11/2010 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 11/04/2011 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 25/12/2015 - [] D -- C:\Program Files\WinRAR =>.win.rar GmbH®
O43 - CFD: 25/12/2015 - [] D -- C:\Program Files\Your Uninstaller! 7
O43 - CFD: 26/12/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 26/12/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 26/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CutePDF
O43 - CFD: 25/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverMax
O43 - CFD: 25/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
O43 - CFD: 26/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
O43 - CFD: 26/12/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 25/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 25/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 26/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 25/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
O43 - CFD: 26/12/2015 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.0
O43 - CFD: 13/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 26/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 26/12/2015 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2
O43 - CFD: 26/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
O43 - CFD: 13/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 11/04/2011 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 25/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue =>.Superfluous.Uniblue
O43 - CFD: 25/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 25/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! 7
O43 - CFD: 26/12/2015 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 13/07/2009 - [] SHD -- C:\ProgramData\Application Data
O43 - CFD: 13/07/2009 - [] SHD -- C:\ProgramData\Desktop
O43 - CFD: 13/07/2009 - [] SHD -- C:\ProgramData\Documents
O43 - CFD: 25/12/2015 - [] D -- C:\ProgramData\ESET
O43 - CFD: 13/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 25/12/2015 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 15/04/2014 - [] D -- C:\ProgramData\LSI
O43 - CFD: 26/12/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 25/12/2015 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 25/12/2015 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 25/12/2015 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 26/12/2015 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 13/07/2009 - [] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 25/12/2015 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 13/07/2009 - [] SHD -- C:\ProgramData\Templates
O43 - CFD: 25/12/2015 - [] D -- C:\ProgramData\Uniblue =>.Superfluous.Uniblue
O43 - CFD: 26/12/2015 - [] D -- C:\Program Files\Common Files\Adobe AIR
O43 - CFD: 26/12/2015 - [] D -- C:\Program Files\Common Files\Java
O43 - CFD: 26/12/2015 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 13/07/2009 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 13/07/2009 - [] D -- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 15/04/2014 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 26/12/2015 - [] D -- C:\Users\Said\AppData\Roaming\Adobe
O43 - CFD: 26/12/2015 - [] D -- C:\Users\Said\AppData\Roaming\DMCache
O43 - CFD: 26/12/2015 - [] D -- C:\Users\Said\AppData\Roaming\Foxit Software
O43 - CFD: 25/12/2015 - [] D -- C:\Users\Said\AppData\Roaming\Identities
O43 - CFD: 25/12/2015 - [] D -- C:\Users\Said\AppData\Roaming\IDM
O43 - CFD: 25/12/2015 - [] D -- C:\Users\Said\AppData\Roaming\Macromedia
O43 - CFD: 11/04/2011 - [0] D -- C:\Users\Said\AppData\Roaming\Media Center Programs
O43 - CFD: 25/12/2015 - [] SD -- C:\Users\Said\AppData\Roaming\Microsoft
O43 - CFD: 25/12/2015 - [] D -- C:\Users\Said\AppData\Roaming\Mozilla
O43 - CFD: 25/12/2015 - [] D -- C:\Users\Said\AppData\Roaming\MPC-HC
O43 - CFD: 25/12/2015 - [] D -- C:\Users\Said\AppData\Roaming\Opera Software
O43 - CFD: 26/12/2015 - [] D -- C:\Users\Said\AppData\Roaming\Sun
O43 - CFD: 25/12/2015 - [] D -- C:\Users\Said\AppData\Roaming\Uniblue =>.Superfluous.Uniblue
O43 - CFD: 25/12/2015 - [] D -- C:\Users\Said\AppData\Roaming\URSoft
O43 - CFD: 25/12/2015 - [] D -- C:\Users\Said\AppData\Roaming\WinRAR
O43 - CFD: 26/12/2015 - [] D -- C:\Users\Said\AppData\Roaming\ZHP
O43 - CFD: 26/12/2015 - [] D -- C:\Users\Said\AppData\Local\Adobe
O43 - CFD: 25/12/2015 - [] SHD -- C:\Users\Said\AppData\Local\Application Data
O43 - CFD: 25/12/2015 - [] SHD -- C:\Users\Said\AppData\Local\EmieSiteList
O43 - CFD: 25/12/2015 - [] SHD -- C:\Users\Said\AppData\Local\EmieUserList
O43 - CFD: 25/12/2015 - [] D -- C:\Users\Said\AppData\Local\ESET
O43 - CFD: 25/12/2015 - [] D -- C:\Users\Said\AppData\Local\Google
O43 - CFD: 25/12/2015 - [] SHD -- C:\Users\Said\AppData\Local\History
O43 - CFD: 25/12/2015 - [] D -- C:\Users\Said\AppData\Local\Innovative Solutions
O43 - CFD: 25/12/2015 - [] D -- C:\Users\Said\AppData\Local\Macromedia
O43 - CFD: 25/12/2015 - [] D -- C:\Users\Said\AppData\Local\Microsoft
O43 - CFD: 25/12/2015 - [] D -- C:\Users\Said\AppData\Local\Mozilla
O43 - CFD: 25/12/2015 - [] D -- C:\Users\Said\AppData\Local\Opera Software
O43 - CFD: 25/12/2015 - [] D -- C:\Users\Said\AppData\Local\Programs
O43 - CFD: 26/12/2015 - [] D -- C:\Users\Said\AppData\Local\Temp
O43 - CFD: 25/12/2015 - [] SHD -- C:\Users\Said\AppData\Local\Temporary Internet Files
O43 - CFD: 25/12/2015 - [0] D -- C:\Users\Said\AppData\Local\VirtualStore
O43 - CFD: 13/07/2009 - [] RD -- C:\Users\Said\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 25/12/2015 - [] RD -- C:\Users\Said\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 25/12/2015 - [] D -- C:\Users\Said\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 13/07/2009 - [] RD -- C:\Users\Said\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 25/12/2015 - [] RD -- C:\Users\Said\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 25/12/2015 - [] D -- C:\Users\Said\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
O43 - CFD: 25/12/2015 - [] D -- C:\Users\Said\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ Latest files created in Prefetcher (6) - 11s
O45 - LFCP:[MD5.0CFBC95AE30465EE10E6C7E7A2332803] 25/12/2015 A -- C:\Windows\Prefetch\DRIVERSCANNER.EXE-1F2FC508.pf =>PUP.Optional.DriverScanner
O45 - LFCP:[MD5.D4FA507EA4FA840FB658F4B3109B4E82] 25/12/2015 A -- C:\Windows\Prefetch\DRIVERSCANNER.EXE-A05A080A.pf =>PUP.Optional.DriverScanner
O45 - LFCP:[MD5.F21BE42FF368C6CC297299E33D287322] 25/12/2015 A -- C:\Windows\Prefetch\DRIVERSCANNER.EXE-C0CAED3B.pf =>PUP.Optional.DriverScanner
O45 - LFCP:[MD5.9F502EF9C6F5C68633088748AFB026BA] 25/12/2015 A -- C:\Windows\Prefetch\DRIVERSCANNER.TMP-670B48A2.pf =>PUP.Optional.DriverScanner
O45 - LFCP:[MD5.044ECCEDA7FAF5AF759CBBF352518A2E] 25/12/2015 A -- C:\Windows\Prefetch\DRIVERSCANNER.TMP-79525404.pf =>PUP.Optional.DriverScanner
O45 - LFCP:[MD5.AF99AF62E02DC48781451BD883FCE02E] 25/12/2015 A -- C:\Windows\Prefetch\DRIVERSCANNER.TMP-F9332578.pf =>PUP.Optional.DriverScanner

---\\ ShellIconOverlayIdentifiers (SIOI) (4) - 0s
O106 - SIOI: IDM Shell Extension [ IDM Shell Extension] - {CDC95B92-E27C-4745-A8C5-64A52A78855D}. (.Tonec Inc. - Internet Download Manager module.) -- C:\Program Files\Internet Download Manager\IDMShellExt.dll =>.Tonec Inc.®
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll ©
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - Client Side Caching UI.) -- C:\Windows\System32\cscui.dll ©
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll ©

---\\ System Drivers List (154) - 27s
O58 - SDL:2009/06/12 04:28:12 A . (.HighPoint Technologies, Inc. - rr231x/230x Miniport Driver.) -- C:\Windows\System32\drivers\2310_00.sys [135200] =>.HighPoint Technologies, Inc.®
O58 - SDL:2012/04/24 10:01:34 A . (.HighPoint Technologies, Inc. - rr272x/271x Miniport Driver.) -- C:\Windows\System32\drivers\272x_1x.sys [557888] =>.HighPoint Technologies, Inc.®
O58 - SDL:2012/04/24 10:37:40 A . (.HighPoint Technologies, Inc. - rr273x/274x Miniport Driver.) -- C:\Windows\System32\drivers\274x_3x.sys [196928] =>.HighPoint Technologies, Inc.®
O58 - SDL:2009/07/13 19:26:15 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [422976] =>.Microsoft Windows®
O58 - SDL:2009/07/13 19:26:17 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [297552] =>.Microsoft Windows®
O58 - SDL:2009/07/13 19:26:15 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys [146512] =>.Microsoft Windows®
O58 - SDL:2013/11/29 22:35:26 A . (.LSI Corporation - SoftModem Device Driver.) -- C:\Windows\System32\drivers\AGRSM.sys [1161760] ©
O58 - SDL:2012/10/07 04:13:15 A . (.Advanced Micro Devices, Inc - AMD AHCI Compatible Controller Driver for W.) -- C:\Windows\System32\drivers\ahcix86s.sys [237912] {3F233D0227DBE418919267FC15B90E16}
O58 - SDL:2009/07/13 19:26:15 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [14400] =>.Microsoft Windows®
O58 - SDL:2014/04/15 22:42:01 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [80256] =>.Microsoft Windows®
O58 - SDL:2009/07/13 19:26:15 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [159312] =>.Microsoft Windows®
O58 - SDL:2014/04/15 22:42:01 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [22400] =>.Microsoft Windows®
O58 - SDL:2012/04/10 19:40:54 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amd_sata.sys [70784] =>.Advanced Micro Devices, Inc.®
O58 - SDL:2012/04/10 19:40:56 A . (.Advanced Micro Devices - Stor Filter Driver.) -- C:\Windows\System32\drivers\amd_xata.sys [34944] =>.Advanced Micro Devices, Inc.®
O58 - SDL:2009/07/13 19:26:15 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [76368] =>.Microsoft Windows®
O58 - SDL:2009/11/08 20:11:22 A . (.ARECA Technology Corporation - Areca X86-32 SCSIPORT SATA/SAS RAID host co.) -- C:\Windows\System32\drivers\arcm_x86.sys [43552] =>.Areca Technology Corporation®
O58 - SDL:2009/07/13 19:26:15 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [86608] =>.Microsoft Windows®
O58 - SDL:2012/07/18 05:29:44 A . (.Asmedia Technology - Asmedia 106x SATA Host Controller Driver.) -- C:\Windows\System32\drivers\asahci32.sys [42392] ©
O58 - SDL:2014/01/08 17:26:50 A . (.ASMedia Technology Inc - ASMedia USB3 Hub Driver.) -- C:\Windows\System32\drivers\asmthub3.sys [110296] =>.ASMedia Technology Inc.®
O58 - SDL:2014/01/08 17:26:52 A . (.ASMedia Technology Inc - ASMEDIA XHCI Host Controller Driver.) -- C:\Windows\System32\drivers\asmtxhci.sys [336600] =>.ASMedia Technology Inc.®
O58 - SDL:2013/11/30 14:30:22 A . (.AuthenTec, Inc. - AuthenTec Fingerprint Sensor WBF Driver.) -- C:\Windows\System32\drivers\ATSwpWDF.sys [969192] =>.AuthenTec, Inc.®
O58 - SDL:2009/07/13 16:02:49 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60x.sys [229888] ©
O58 - SDL:2009/07/13 16:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [13568] ©
O58 - SDL:2009/07/13 16:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [5248] ©
O58 - SDL:2009/07/13 18:57:25 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [272128] ©
O58 - SDL:2009/07/13 16:53:32 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [62336] ©
O58 - SDL:2009/07/13 16:53:33 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [12160] ©
O58 - SDL:2009/07/13 16:53:33 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [11904] ©
O58 - SDL:2012/03/08 03:09:40 A . (.Broadcom Corporation - Broadcom NetXtreme II Diagnostic Driver.) -- C:\Windows\System32\drivers\bxdiagx.sys [75816] =>.Broadcom Corporation®
O58 - SDL:2012/02/22 10:05:54 A . (.Broadcom Corporation - FCoE offload x86 FREE.) -- C:\Windows\System32\drivers\bxfcoe.sys [150568] =>.Broadcom Corporation®
O58 - SDL:2012/02/22 10:33:32 A . (.Broadcom Corporation - iSCSI offload x86 FREE.) -- C:\Windows\System32\drivers\bxois.sys [435240] =>.Broadcom Corporation®
O58 - SDL:2012/01/24 09:44:14 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbdx.sys [483880] =>.Broadcom Corporation®
O58 - SDL:2009/07/13 19:26:21 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [15952] =>.Microsoft Windows®
O58 - SDL:2011/05/02 04:38:18 A . (.Dawicontrol GmbH - Miniport Driver.) -- C:\Windows\System32\drivers\DC133.sys [36328] =>.Dawicontrol Computersysteme GmbH®
O58 - SDL:2011/05/02 04:38:34 A . (.Dawicontrol GmbH - Miniport Driver.) -- C:\Windows\System32\drivers\DC150.sys [36824] =>.Dawicontrol Computersysteme GmbH®
O58 - SDL:2011/05/02 04:38:48 A . (.Dawicontrol GmbH - Miniport Driver.) -- C:\Windows\System32\drivers\DC154.sys [44376] =>.Dawicontrol Computersysteme GmbH®
O58 - SDL:2011/05/02 04:39:18 A . (.Dawicontrol GmbH - Miniport Driver.) -- C:\Windows\System32\drivers\DC300e.sys [37272] =>.Dawicontrol Computersysteme GmbH®
O58 - SDL:2011/05/02 04:39:30 A . (.Dawicontrol GmbH - Miniport Driver.) -- C:\Windows\System32\drivers\DC324e.sys [45816] =>.Dawicontrol Computersysteme GmbH®
O58 - SDL:2011/05/02 04:39:08 A . (.Dawicontrol GmbH - Miniport Driver.) -- C:\Windows\System32\drivers\DC3410.sys [44360] =>.Dawicontrol Computersysteme GmbH®
O58 - SDL:2011/05/02 04:38:58 A . (.Dawicontrol GmbH - Miniport Driver.) -- C:\Windows\System32\drivers\DC4300.sys [44392] =>.Dawicontrol Computersysteme GmbH®
O58 - SDL:2011/05/02 04:39:40 A . (.Dawicontrol GmbH - Miniport Driver.) -- C:\Windows\System32\drivers\DC600e.sys [37752] =>.Dawicontrol Computersysteme GmbH®
O58 - SDL:2009/07/13 19:20:28 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys [70720] =>.Microsoft Windows®
O58 - SDL:2011/10/20 12:24:20 A . (.Intel Corporation - Intel(R) Gigabit Network Connection NDIS 6.) -- C:\Windows\System32\drivers\e1y6232.sys [232664] =>.Intel Corporation®
O58 - SDL:2015/11/16 12:21:22 A . (.ESET - Amon monitor.) -- C:\Windows\System32\drivers\eamonm.sys [205800] =>.ESET, spol. s r.o.®
O58 - SDL:2015/11/16 12:21:22 A . (.ESET - ESET Helper driver.) -- C:\Windows\System32\drivers\ehdrv.sys [146024] =>.ESET, spol. s r.o.®
O58 - SDL:2015/11/16 12:21:22 A . (.ESET - ESET OPP Keyboard Filter.) -- C:\Windows\System32\drivers\ekbdflt.sys [111040] =>.ESET, spol. s r.o.®
O58 - SDL:2009/07/13 19:20:28 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [453712] =>.Microsoft Windows®
O58 - SDL:2015/11/16 12:21:22 A . (.ESET - ESET Personal Firewall driver.) -- C:\Windows\System32\drivers\epfw.sys [161992] =>.ESET, spol. s r.o.®
O58 - SDL:2015/11/16 12:21:22 A . (.ESET - Epfw NDIS LightWeight Filter.) -- C:\Windows\System32\drivers\EpfwLWF.sys [44608] =>.ESET, spol. s r.o.®
O58 - SDL:2015/11/16 12:21:22 A . (.ESET - ESET Personal Firewall driver.) -- C:\Windows\System32\drivers\epfwwfp.sys [56944] =>.ESET, spol. s r.o.®
O58 - SDL:2014/02/12 10:22:00 A . (.Etron Technology Inc - Etron eXtensible Hub Driver..) -- C:\Windows\System32\drivers\EtronHub3.sys [51456] ©
O58 - SDL:2014/02/12 10:22:00 A . (.Etron Technology Inc - Etron Enhance USB Mass Storage Driver..) -- C:\Windows\System32\drivers\EtronSTOR.sys [31360] ©
O58 - SDL:2014/02/12 10:22:00 A . (.Etron Technology Inc - Etron eXtensible Host Controller Driver..) -- C:\Windows\System32\drivers\EtronXHCI.sys [75392] ©
O58 - SDL:2012/03/25 22:23:46 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbdx.sys [3194960] =>.Broadcom Corporation®
O58 - SDL:2009/07/13 16:54:14 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [26624] ©
O58 - SDL:2009/07/13 19:20:28 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [67152] =>.Microsoft Windows®
O58 - SDL:2009/04/28 09:14:12 A . (.HighPoint Technologies, Inc. - HighPoint RAID Controller Driver.) -- C:\Windows\System32\drivers\hptiop.sys [15008] =>.HighPoint Technologies, Inc.®
O58 - SDL:2006/09/27 06:36:50 A . (.HighPoint Technologies, Inc. - hptmv Miniport Driver.) -- C:\Windows\System32\drivers\hptmv.sys [71968] =>.HighPoint Technologies, Inc.®
O58 - SDL:2007/11/01 07:20:56 A . (.HighPoint Technologies, Inc. - hptmv6 Miniport Driver.) -- C:\Windows\System32\drivers\hptmv6.sys [120352] =>.HighPoint Technologies, Inc.®
O58 - SDL:2011/10/17 09:45:06 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x86.) -- C:\Windows\System32\drivers\iaStor.sys [462104] =>.Intel Corporation®
O58 - SDL:2012/06/20 16:18:30 A . (.Intel Corporation - Intel Rapid Storage Technology Enterprise d.) -- C:\Windows\System32\drivers\iaStorA.sys [486360] =>.Intel Corporation®
O58 - SDL:2012/06/29 12:27:52 A . (.Intel Corporation - Intel Rapid Storage Technology Filter drive.) -- C:\Windows\System32\drivers\iaStorF.sys [23000] =>.Intel Corporation®
O58 - SDL:2012/06/29 12:27:52 A . (.Intel Corporation - Intel Rapid Storage Technology Enterprise d.) -- C:\Windows\System32\drivers\iaStorS.sys [573400] =>.Intel Corporation®
O58 - SDL:2014/04/15 22:42:01 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [332160] =>.Microsoft Windows®
O58 - SDL:2015/06/11 20:00:58 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [123968] =>.Tonec Inc.®
O58 - SDL:2009/07/13 19:20:36 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [41040] =>.Microsoft Windows®
O58 - SDL:2008/05/14 03:37:48 A . (.ITE Tech. Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\System32\drivers\iteatapi.sys [35608] =>.ITE Tech. Inc.®
O58 - SDL:2007/05/01 21:09:30 A . (.ITE Tech. Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\System32\drivers\iteraid.sys [29184] ©
O58 - SDL:2014/03/06 11:08:18 A . (.Intel Corporation - Intel(R) USB 3.0 Hub Driver.) -- C:\Windows\System32\drivers\iusb3hub.sys [364528] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2014/03/06 11:08:20 A . (.Intel Corporation - Intel(R) USB 3.0 eXtensible Host Controller.) -- C:\Windows\System32\drivers\iusb3xhc.sys [800240] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2012/09/17 09:05:08 A . (.JMicron Technology Corp. - JMicron JMB36X RAID Driver.) -- C:\Windows\System32\drivers\jraid.sys [106296] =>.JMicron Technology Corp.®
O58 - SDL:2007/08/29 02:27:42 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [108384] ©
O58 - SDL:2010/12/20 03:27:00 RA . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [110160] =>.LSI Corporation®
O58 - SDL:2012/03/01 11:46:52 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [90920] =>.LSI Corporation®
O58 - SDL:2009/07/13 19:20:36 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [96848] =>.Microsoft Windows®
O58 - SDL:2008/05/19 04:13:52 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [25920] ©
O58 - SDL:2012/03/08 12:58:14 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas2.sys [45352] =>.LSI Corporation®
O58 - SDL:2009/07/13 19:20:36 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [235584] =>.Microsoft Windows®
O58 - SDL:2012/05/28 16:51:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr1.sys [699216] =>.LSI Corporation®
O58 - SDL:2012/05/23 03:56:52 AT . (.Marvell Semiconductor, Inc. - Marvell Thor Windows Driver.) -- C:\Windows\System32\drivers\mv61xx.sys [161640] =>.Marvell Semiconductor®
O58 - SDL:2012/05/23 03:56:52 AT . (.Marvell Semiconductor Inc. - Marvell Aux NV Bridge DLL.) -- C:\Windows\System32\drivers\mv61xxmm.sys [14184] =>.Marvell Semiconductor®
O58 - SDL:2012/10/08 18:45:10 A . (.Marvell Semiconductor Inc. - Marvell 91xx Confige Device Driver.) -- C:\Windows\System32\drivers\mv91cons.sys [23912] =>.Marvell Semiconductor®
O58 - SDL:2012/10/08 18:45:10 A . (.Marvell Semiconductor, Inc. - Marvell magni Windows Driver.) -- C:\Windows\System32\drivers\mvs91xx.sys [283496] =>.Marvell Semiconductor®
O58 - SDL:2010/11/30 18:22:44 A . (.Marvell Semiconductor, Inc. - Marvell Vanir Windows Driver.) -- C:\Windows\System32\drivers\mvs94xx.sys [322352] =>.Marvell Semiconductor®
O58 - SDL:2012/10/08 18:45:12 A . (.Marvell Semiconductor Inc. - Marvell Aux NV Bridge DLL.) -- C:\Windows\System32\drivers\mvxxmm.sys [14184] =>.Marvell Semiconductor®
O58 - SDL:2013/11/30 17:59:00 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\NETwNs32.sys [7523840] ©
O58 - SDL:2009/07/13 19:20:44 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [44624] =>.Microsoft Windows®
O58 - SDL:2012/08/27 20:40:42 A . (.Renesas Electronics Corporation - USB 3.0 Hub Driver.) -- C:\Windows\System32\drivers\nusb3hub.sys [86408] =>.Renesas Electronics Corporation®
O58 - SDL:2012/08/27 20:40:44 A . (.Renesas Electronics Corporation - USB 3.0 Host Controller Driver.) -- C:\Windows\System32\drivers\nusb3xhc.sys [178568] =>.Renesas Electronics Corporation®
O58 - SDL:2013/11/30 18:35:10 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [10410272] =>.NVIDIA Corporation®
O58 - SDL:2014/04/15 22:42:01 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [117120] =>.Microsoft Windows®
O58 - SDL:2010/04/08 18:32:54 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvrd32.sys [139368] =>.NVIDIA Corporation®
O58 - SDL:2014/04/15 22:42:01 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [143744] =>.Microsoft Windows®
O58 - SDL:2010/04/08 18:32:56 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor32.sys [215656] =>.NVIDIA Corporation®
O58 - SDL:2012/04/05 11:25:04 A . (.OCZ Technology Group, Inc. - OCZ 10xx SCSI Controller Driver.) -- C:\Windows\System32\drivers\ocz10xx.sys [126768] =>.OCZ Technology Group®
O58 - SDL:2011/09/14 17:12:06 A . (.OCZ Technology Group, Inc. - OCZ 12xx SCSI Controller Driver.) -- C:\Windows\System32\drivers\ocz12xx.sys [125744] =>.OCZ Technology Group®
O58 - SDL:2009/07/13 19:19:04 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1383488] =>.Microsoft Windows®
O58 - SDL:2009/07/13 19:19:04 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [106064] =>.Microsoft Windows®
O58 - SDL:2013/11/30 18:39:40 A . (.REDC - RICOH SD/MMC Driver.) -- C:\Windows\System32\drivers\rimmptsk.sys [48128] ©
O58 - SDL:2013/11/29 22:33:46 A . (.REDC - RICOH MS Driver.) -- C:\Windows\System32\drivers\rimsptsk.sys [44544] ©
O58 - SDL:2013/11/30 14:32:30 A . (.REDC - RICOH SD/MMC Driver.) -- C:\Windows\System32\drivers\risdptsk.sys [46592] ©
O58 - SDL:2013/11/30 18:41:22 A . (.REDC - RICOH XD SM Driver.) -- C:\Windows\System32\drivers\rixdptsk.sys [38400] ©
O58 - SDL:2007/11/01 07:18:48 A . (.HighPoint Technologies, Inc. - rr172x Miniport Driver.) -- C:\Windows\System32\drivers\rr172x.sys [101920] =>.HighPoint Technologies, Inc.®
O58 - SDL:2007/11/01 07:19:32 A . (.HighPoint Technologies, Inc. - rr174x Miniport Driver.) -- C:\Windows\System32\drivers\rr174x.sys [126496] =>.HighPoint Technologies, Inc.®
O58 - SDL:2007/11/01 07:19:54 A . (.HighPoint Technologies, Inc. - rr2210 Miniport Driver.) -- C:\Windows\System32\drivers\rr2210.sys [122400] =>.HighPoint Technologies, Inc.®
O58 - SDL:2008/05/05 10:48:56 A . (.HighPoint Technologies, Inc. - RR232x Miniport Driver.) -- C:\Windows\System32\drivers\rr232x.sys [120352] =>.HighPoint Technologies, Inc.®
O58 - SDL:2009/12/31 11:23:40 A . (.HighPoint Technologies, Inc. - RR2340 Miniport Driver.) -- C:\Windows\System32\drivers\rr2340.sys [128608] =>.HighPoint Technologies, Inc.®
O58 - SDL:2009/12/31 11:37:38 A . (.HighPoint Technologies, Inc. - rr2522 Miniport Driver.) -- C:\Windows\System32\drivers\rr2522.sys [132704] =>.HighPoint Technologies, Inc.®
O58 - SDL:2012/04/24 10:38:58 A . (.HighPoint Technologies, Inc. - rr276x Miniport Driver.) -- C:\Windows\System32\drivers\rr276x.sys [196928] =>.HighPoint Technologies, Inc.®
O58 - SDL:2012/04/24 10:40:16 A . (.HighPoint Technologies, Inc. - rr278x Miniport Driver.) -- C:\Windows\System32\drivers\rr278x.sys [196928] =>.HighPoint Technologies, Inc.®
O58 - SDL:2010/06/16 11:06:38 A . (.HighPoint Technologies, Inc. - RR62x Miniport Driver.) -- C:\Windows\System32\drivers\rr62x.sys [123488] =>.HighPoint Technologies, Inc.®
O58 - SDL:2013/11/30 17:56:48 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHDA.sys [2876760] =>.Realtek Semiconductor Corp®
O58 - SDL:2012/08/27 20:51:46 A . (.Renesas Electronics Corporation - USB 3.0 Hub Driver.) -- C:\Windows\System32\drivers\rusb3hub.sys [91016] =>.Renesas Electronics Corporation®
O58 - SDL:2012/08/27 20:51:50 A . (.Renesas Electronics Corporation - USB 3.0 Host Controller Driver.) -- C:\Windows\System32\drivers\rusb3xhc.sys [181128] =>.Renesas Electronics Corporation®
O58 - SDL:2009/07/13 14:50:20 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480] ©
O58 - SDL:2007/01/26 05:55:08 A . (.Silicon Image, Inc. - Serial ATA miniport driver.) -- C:\Windows\System32\drivers\SI3112.sys [69168] =>.Silicon Image, Inc.®
O58 - SDL:2007/02/01 08:50:10 A . (.Silicon Image, Inc - Serial ATA RAID miniport driver.) -- C:\Windows\System32\drivers\SI3112r.sys [110128] =>.Silicon Image, Inc.®
O58 - SDL:2006/11/10 04:45:54 A . (.Silicon Image, Inc. - Serial ATA miniport driver.) -- C:\Windows\System32\drivers\SI3114.sys [68912] =>.Silicon Image, Inc.®
O58 - SDL:2007/04/11 06:32:48 A . (.Silicon Image, Inc - SATARAID miniport driver.) -- C:\Windows\System32\drivers\SI3114r.sys [110384] =>.Silicon Image, Inc.®
O58 - SDL:2007/02/07 03:30:06 A . (.Silicon Image, Inc - SATA SoftRAID 5 miniport driver.) -- C:\Windows\System32\drivers\Si3114r5.sys [209200] =>.Silicon Image, Inc.®
O58 - SDL:2006/11/02 08:20:30 A . (.Silicon Image, Inc. - Serial ATA miniport driver.) -- C:\Windows\System32\drivers\SI3124.sys [76208] =>.Silicon Image, Inc.®
O58 - SDL:2010/04/13 09:06:16 A . (.Silicon Image, Inc - SATA SoftRAID 5 miniport driver.) -- C:\Windows\System32\drivers\Si3124r5.sys [216616] =>.Silicon Image, Inc.®
O58 - SDL:2007/10/03 08:55:08 A . (.Silicon Image, Inc - Serial ATA miniport driver.) -- C:\Windows\System32\drivers\SI3132.sys [80424] =>.Silicon Image, Inc.®
O58 - SDL:2008/10/30 03:56:04 A . (.Silicon Image, Inc - SATA SoftRAID 5 miniport driver.) -- C:\Windows\System32\drivers\Si3132r5.sys [217128] =>.Silicon Image, Inc.®
O58 - SDL:2009/02/05 04:38:24 A . (.Silicon Image, Inc - SATA Controller miniport driver.) -- C:\Windows\System32\drivers\Si3531.sys [212520] =>.Silicon Image, Inc.®
O58 - SDL:2007/10/03 08:55:28 A . (.Silicon Image, Inc - Filter driver for Silicon Image SATALink co.) -- C:\Windows\System32\drivers\SiRemFil.sys [15400] =>.Silicon Image, Inc.®
O58 - SDL:2009/07/13 19:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [40016] =>.Microsoft Windows®
O58 - SDL:2009/07/13 19:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [77888] =>.Microsoft Windows®
O58 - SDL:2007/10/03 08:55:36 A . (.Silicon Image, Inc - Windows Accelerator Driver.) -- C:\Windows\System32\drivers\SiWinAcc.sys [19240] =>.Silicon Image, Inc.®
O58 - SDL:2009/07/13 19:19:04 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [21072] =>.Microsoft Windows®
O58 - SDL:2013/11/29 22:33:16 A . (.Chicony Electronics Co., Ltd. - UVCFTR_S.sys.) -- C:\Windows\System32\drivers\UVCFTR_S.SYS [17960] =>.Chicony Electronics Co., Ltd.®
O58 - SDL:2009/07/13 19:19:10 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [16976] =>.Microsoft Windows®
O58 - SDL:2010/12/02 11:23:24 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) -- C:\Windows\System32\drivers\viamraid.sys [141424] =>.VIA Technologies Inc.®
O58 - SDL:2010/02/11 05:59:18 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\videX32.sys [13976] ©
O58 - SDL:2012/07/06 05:29:26 A . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\Windows\System32\drivers\vmci.sys [71152] =>.VMware, Inc.®
O58 - SDL:2012/08/01 21:33:34 A . (.VMware, Inc. - VMware VMSCSI miniport driver (32-bit).) -- C:\Windows\System32\drivers\vmscsi.sys [14232] =>.VMware, Inc.®
O58 - SDL:2009/07/13 19:19:11 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [141904] =>.Microsoft Windows®
O58 - SDL:2012/02/22 08:27:02 A . (.Bigfoot Networks, Inc. - Bigfoot Networks Killer(TM) PCI-E Gaming Ad.) -- C:\Windows\System32\drivers\Xeno7x86.sys [130152] =>.Bigfoot Networks, Inc.®
O58 - SDL:2010/02/11 05:59:48 A . (.VIA Technologies, Inc. - ATA/ATAPI devices Hot-Plug/DIPM monitor.) -- C:\Windows\System32\drivers\xfilt.sys [23192] ©
O58 - SDL:2009/07/13 15:40:41 A . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:2009/07/13 15:40:44 A . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:2009/07/13 15:40:40 A . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:2009/07/13 15:40:43 A . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:2009/07/13 15:40:43 A . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:2009/07/13 15:40:23 A . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:2009/07/13 15:40:31 A . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:2009/07/13 15:40:35 A . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:2009/07/13 15:40:39 A . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:2009/07/13 15:40:27 A . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:2009/07/13 15:40:11 A . (...) -- C:\Windows\System32\NTIO.SYS [33952]
O58 - SDL:2009/07/13 15:40:15 A . (...) -- C:\Windows\System32\NTIO404.SYS [34672]
O58 - SDL:2009/07/13 15:40:17 A . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:2009/07/13 15:40:19 A . (...) -- C:\Windows\System32\NTIO412.SYS [35536]
O58 - SDL:2009/07/13 15:40:13 A . (...) -- C:\Windows\System32\NTIO804.SYS [34672]

---\\ Last modified or created user files (7) - 94s
O61 - LFC: 2015/12/25 22:47:16 A . (.Generic Internet.) -- C:\Users\Said\Downloads\Programs\FlashPlayerPro.exe [983096] {00E6221B4DC0FCBCCD4BD5DDB3ECD9527C}
O61 - LFC: 2015/12/26 19:00:11 A . (.Secure By Design Inc..) -- C:\Users\Said\Downloads\Programs\Ninite Air Java 8 NET 461 Shockwave Installer.exe [307200] {1121F113A31CC6E813B796ADB6F44C6FB7F8}
O61 - LFC: 2015/12/25 23:18:38 A . (.Secure By Design Inc..) -- C:\Users\Said\Downloads\Programs\Ninite Chrome Firefox Opera Chromium Installer.exe [307200] {1121F113A31CC6E813B796ADB6F44C6FB7F8}
O61 - LFC: 2015/12/26 19:34:55 A . (.Secure By Design Inc..) -- C:\Users\Said\Downloads\Programs\Ninite CutePDF Foxit Reader LibreOffice OpenOffice Installer.exe [307200] {1121F113A31CC6E813B796ADB6F44C6FB7F8}
O61 - LFC: 2015/12/25 23:39:16 A . (.Secure By Design Inc..) -- C:\Users\Said\Downloads\Programs\Ninite KLite Codecs KMPlayer WinRAR Installer.exe [307200] {1121F113A31CC6E813B796ADB6F44C6FB7F8}
O61 - LFC: 2015/12/25 23:38:27 A . (.Secure By Design Inc..) -- C:\Users\Said\Downloads\Programs\Ninite WinRAR Installer.exe [307200] {1121F113A31CC6E813B796ADB6F44C6FB7F8}
O61 - LFC: 2015/12/25 23:34:04 A . (..) -- C:\Users\Said\AppData\Local\Microsoft\Windows\1033\StructuredQuerySchema.bin [297531]

---\\ File Associations Shell Spawning (11) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®

---\\ Start Menu Internet (16) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\Launcher.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\launcher.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\launcher.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\launcher.exe ©

---\\ Search Browser Infection (2) - 5s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/

---\\ Search Svchost Services (33) - 17s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [62464] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [67584] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [67584] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\System32\srvsvc.dll [168960] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [593408] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\IKEEXT.DLL [679424] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\audiosrv.dll [473600] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [90624] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [286208] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [75264] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [49664] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [300544] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [242176] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [521216] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [1933848] =>.Microsoft Windows Component Publisher®
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [585728] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [328192] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [499712] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\System32\seclogon.dll [21504] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [47104] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\System32\iscsiexe.dll [114688] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\System32\mmcss.dll [49664] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [61440] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [98304] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [164352] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\System32\schedsvc.dll [750592] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\System32\KMSVC.DLL [71168] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [113664] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [102912] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\System32\themeservice.dll [37376] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [76800] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [149504] ©

---\\ Services not Microsoft (SR=Run, SS=Stop) (8) - 40s

SS - Demand [26/12/2015] [ 269504] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [29/11/2013] [ 14336] Agere Modem Call Progress Audio (AgereModemAudio) . (.LSI Corporation.) - C:\Program Files\LSI SoftModem\agrsmsvc.exe ©
SR - Auto [19/11/2015] [ 1983424] ESET Service (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET Smart Security\ekrn.exe =>.ESET, spol. s r.o.®
SS - Auto [25/12/2015] [ 144200] Google Update Service (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [25/12/2015] [ 144200] Google Update Service (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [21/12/2015] [ 146888] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [23/10/2013] [ 664352] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\System32\nvvsvc.exe =>.NVIDIA Corporation®

---\\ Additional Scan (O88) (13) - 0s
C:\Windows\Tasks\dsmonitor.job =>.Superfluous.Uniblue
C:\Windows\System32\Tasks\dsmonitor =>.Superfluous.Uniblue
HKLM\SOFTWARE\Uniblue =>.Superfluous.Uniblue
C:\Program Files\Uniblue =>.Superfluous.Uniblue
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue =>.Superfluous.Uniblue
C:\ProgramData\Uniblue =>.Superfluous.Uniblue
C:\Users\Said\AppData\Roaming\Uniblue =>.Superfluous.Uniblue
C:\Windows\Prefetch\DRIVERSCANNER.EXE-1F2FC508.pf =>PUP.Optional.DriverScanner
C:\Windows\Prefetch\DRIVERSCANNER.EXE-A05A080A.pf =>PUP.Optional.DriverScanner
C:\Windows\Prefetch\DRIVERSCANNER.EXE-C0CAED3B.pf =>PUP.Optional.DriverScanner
C:\Windows\Prefetch\DRIVERSCANNER.TMP-670B48A2.pf =>PUP.Optional.DriverScanner
C:\Windows\Prefetch\DRIVERSCANNER.TMP-79525404.pf =>PUP.Optional.DriverScanner
C:\Windows\Prefetch\DRIVERSCANNER.TMP-F9332578.pf =>PUP.Optional.DriverScanner

---\\ Summary of the elements found (2) - 0s
http://www.nicolascoolman.fr/?p=4664 =>.Superfluous.Uniblue
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.DriverScanner

~ End of the scan, 20111 items in 00h08mn09s (686)(0)