cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-06-2016 01
Ran by Hamza (2016-06-23 15:03:39)
Running from C:\Users\Hamza\Desktop
Windows 10 Home Version 1511 (X64) (2016-04-13 04:23:38)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-518511124-2112986350-859192497-500 - Administrator - Disabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-518511124-2112986350-859192497-503 - Limited - Disabled)
Elamr (S-1-5-21-518511124-2112986350-859192497-1010 - Limited - Enabled) => C:\Users\Elamr
Guest (S-1-5-21-518511124-2112986350-859192497-501 - Limited - Disabled) => C:\Users\Guest
Hamza (S-1-5-21-518511124-2112986350-859192497-1001 - Administrator - Enabled) => C:\Users\Hamza
HomeGroupUser$ (S-1-5-21-518511124-2112986350-859192497-1003 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-518511124-2112986350-859192497-1001\...\uTorrent) (Version: 3.4.5.41865 - BitTorrent Inc.)
5600 (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
5600_Help (x32 Version: 82.0.242.000 - Hewlett-Packard) Hidden
5600Trb (x32 Version: 82.0.242.000 - Hewlett-Packard) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 21.0.0.198 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.182 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.15) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.15 - Adobe Systems Incorporated)
AIO_CDB_ProductContext (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
AIO_CDB_Software (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
AIO_Scan (x32 Version: 130.0.421.000 - Hewlett-Packard) Hidden
Application Insights Tools for Visual Studio 2015 (x32 Version: 3.3 - Microsoft Corporation) Hidden
AppServ 2.5.9 (remove only) (HKLM-x32\...\AppServ) (Version: - )
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Atheros)
Avast Premium (HKLM-x32\...\Avast) (Version: 11.2.2261 - AVAST Software)
Azure AD Authentication Connected Service (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Bejeweled 3 (x32 Version: 2.2.0.97 - WildTangent) Hidden
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
BlueStacks App Player (HKLM-x32\...\{D7E3588F-25E6-4A93-8B1C-596F7951CA38}) (Version: 0.10.7.5601 - BlueStack Systems, Inc.)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Copy (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Cut the Rope (x32 Version: 3.0.2.38 - WildTangent) Hidden
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.4106.05 - CyberLink Corp.)
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
DocProc (x32 Version: 140.0.185.000 - Hewlett-Packard) Hidden
Dotfuscator and Analytics Community Edition 5.18.1 (x32 Version: 5.18.1.2898 - PreEmptive Solutions) Hidden
Driver Booster 3.4 (HKLM-x32\...\Driver Booster_is1) (Version: 3.4 - IObit)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.8.8 - Dropbox, Inc.)
Entity Framework 6.1.3 Tools for Visual Studio 2015 (HKLM-x32\...\{1A8A9739-BAD7-491F-B5B9-A79A2B965422}) (Version: 14.0.40302.0 - Microsoft Corporation)
Fax (x32 Version: 140.0.307.000 - Hewlett-Packard) Hidden
GlassWire 1.0 (remove only) (HKLM-x32\...\GlassWire 1.0) (Version: 1.0.63 - SecureMix LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Drive (HKLM-x32\...\{709316AD-161C-4D5C-9AE7-0B3A822DA271}) (Version: 1.30.2170.0459 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart Officejet and Deskjet All-In-One Driver Software (HKLM\...\{6F5B70F0-EA6C-4A5B-BB16-8390BD66B251}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
IIS 10.0 Express (HKLM\...\{5984D8DA-C1AF-4284-9C88-D7150425B315}) (Version: 10.0.1734 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version: - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version: - )
Intel Processor Diagnostic Tool 64bit (HKLM\...\{F24BC99D-3FC1-4503-BEFA-5DDD16C6265A}) (Version: 2.20.0.0 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4331 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.)
Internet Mobile (HKLM-x32\...\Internet Mobile) (Version: 11.302.09.05.162 - Huawei Technologies Co.,Ltd)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.2.6.101 - IObit)
Java 8 Update 74 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218074F0}) (Version: 8.0.740.2 - Oracle Corporation)
King Oddball (x32 Version: 3.0.2.48 - WildTangent) Hidden
Kingo ROOT version 1.4.3.2539 (HKLM-x32\...\{AE7675D6-0B31-494F-ABFA-822E1A0FDF17}_is1) (Version: 1.4.3.2539 - Kingosoft Technology Ltd.)
Lexmark 640 Series (HKLM\...\Lexmark 640 Series) (Version: - Lexmark International, Inc.)
Lexmark Drivers Update Utility (HKLM-x32\...\Lexmark Drivers Update Utility_is1) (Version: - DGTSoft Inc.)
LinuxLive USB Creator (HKLM-x32\...\LinuxLive USB Creator) (Version: 2.9 - Thibaut Lauziere)
Luxor Evolved (x32 Version: 2.2.0.98 - WildTangent) Hidden
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
MarketResearch (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{B941AFB4-8851-33A1-9E72-0C33D463C41C}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{3D3CEBE6-40EA-4C48-97FD-73828281AB4A}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Version Manager (x64) 1.0.0-beta5 (HKLM\...\{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}) (Version: 1.0.10609.0 - Microsoft Corporation)
Microsoft Access MUI (French) 2013 (HKLM\...\{90150000-0015-040C-1000-0000000FF1CE}) (Version: - )
Microsoft DCF MUI (French) 2013 (HKLM\...\{90150000-0090-040C-1000-0000000FF1CE}) (Version: - )
Microsoft Excel MUI (French) 2013 (HKLM\...\{90150000-0016-040C-1000-0000000FF1CE}) (Version: - )
Microsoft Groove MUI (French) 2013 (HKLM\...\{90150000-00BA-040C-1000-0000000FF1CE}) (Version: - )
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.23107 - Microsoft Corporation)
Microsoft InfoPath MUI (French) 2013 (HKLM\...\{90150000-0044-040C-1000-0000000FF1CE}) (Version: - )
Microsoft Lync MUI (French) 2013 (HKLM\...\{90150000-012B-040C-1000-0000000FF1CE}) (Version: - )
Microsoft Office 32-bit Components 2013 (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}) (Version: - )
Microsoft Office Korrekturhilfen 2013 - Deutsch (HKLM\...\{90150000-001F-0407-1000-0000000FF1CE}) (Version: - )
Microsoft Office OSM MUI (French) 2013 (HKLM\...\{90150000-00E1-040C-1000-0000000FF1CE}) (Version: - )
Microsoft Office OSM UX MUI (French) 2013 (HKLM\...\{90150000-00E2-040C-1000-0000000FF1CE}) (Version: - )
Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Office Proofing (French) 2013 (HKLM\...\{90150000-002C-040C-1000-0000000FF1CE}) (Version: - )
Microsoft Office Proofing Tools 2013 - English (HKLM\...\{90150000-001F-0409-1000-0000000FF1CE}) (Version: - )
Microsoft Office Proofing Tools 2013 - Español (HKLM\...\{90150000-001F-0C0A-1000-0000000FF1CE}) (Version: - )
Microsoft Office Proofing Tools 2013 - Nederlands (HKLM\...\{90150000-001F-0413-1000-0000000FF1CE}) (Version: - )
Microsoft Office Proofing Tools 2013 - اللغة العربية (HKLM\...\{90150000-001F-0401-1000-0000000FF1CE}) (Version: - )
Microsoft Office Shared 32-bit MUI (French) 2013 (HKLM\...\{90150000-00C1-040C-1000-0000000FF1CE}) (Version: - )
Microsoft Office Shared MUI (French) 2013 (HKLM\...\{90150000-006E-040C-1000-0000000FF1CE}) (Version: - )
Microsoft OneNote MUI (French) 2013 (HKLM\...\{90150000-00A1-040C-1000-0000000FF1CE}) (Version: - )
Microsoft Outlook MUI (French) 2013 (HKLM\...\{90150000-001A-040C-1000-0000000FF1CE}) (Version: - )
Microsoft PowerPoint MUI (French) 2013 (HKLM\...\{90150000-0018-040C-1000-0000000FF1CE}) (Version: - )
Microsoft Publisher MUI (French) 2013 (HKLM\...\{90150000-0019-040C-1000-0000000FF1CE}) (Version: - )
Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (14.0.50616.0) (HKLM-x32\...\{58246C80-3941-4B69-AE31-264644E2ADB8}) (Version: 14.0.50616.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{68BA34E8-9B9D-4A74-83F0-7D366B532D75}) (Version: 12.0.2402.11 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{718FFB65-F6E4-4D62-861F-ED10ED32C936}) (Version: 12.0.2402.11 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: - )
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: - )
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: - )
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: - )
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio Community 2015 (HKLM-x32\...\{50b32652-69d2-4b93-9316-edcd12067b8b}) (Version: 14.0.23107.10 - Microsoft Corporation)
Microsoft Web Deploy 3.6 (HKLM\...\{ED4CC1E5-043E-4157-8452-B5E533FE2BA1}) (Version: 3.1238.1955 - Microsoft Corporation)
Microsoft Word MUI (French) 2013 (HKLM\...\{90150000-001B-040C-1000-0000000FF1CE}) (Version: - )
Mozilla Firefox 45.0.2 (x86 fr) (HKLM-x32\...\Mozilla Firefox 45.0.2 (x86 fr)) (Version: 45.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0.2.5941 - Mozilla)
Multi-Device Hybrid Apps using C# - Templates - ENU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.3 - Notepad++ Team)
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: - )
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation)
Rapid PHP 2015 v13.1 (HKLM-x32\...\Rapid PHP 2015_is1) (Version: 13.1 - Karlis Blumentals)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.29092 - Realtek Semiconduct Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.24.1218.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7714 - Realtek Semiconductor Corp.)
RogueKiller version 12 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12 - Adlice Software)
Roslyn Language Services - x86 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
SafeZone Stable 1.48.2066.98 (x32 Version: 1.48.2066.98 - Avast Software) Hidden
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Snagit 12 (HKLM-x32\...\{50f2d2b0-9e6e-466f-b418-b3526b61aa3f}) (Version: 12.3.2.2920 - TechSmith Corporation)
Snagit 12 (HKLM-x32\...\{588591F5-74D7-4646-87C5-6A07E526F303}) (Version: - )
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Superb Game Boost 3.0 (HKLM-x32\...\SuperbGameBoost_is1) (Version: 3.0 - )
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.3 - IObit)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.24.5 - Synaptics Incorporated)
Team Explorer for Microsoft Visual Studio 2015 (x32 Version: 14.0.23102 - Microsoft Corporation) Hidden
Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TOSHIBA Flash Cards Support Utility (HKLM-x32\...\InstallShield_{620BBA5E-F848-4D56-8BDA-584E44584C5E}) (Version: 1.51.81.2C - TOSHIBA CORPORATION)
TOSHIBA Password Utility (HKLM-x32\...\InstallShield_{59358FD4-252B-4B38-AB81-955C491A494F}) (Version: 2.0.0.15C - Toshiba Corporation)
TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 3.2.00.56006005 - Toshiba Corporation)
TOSHIBA User's Guide (HKLM-x32\...\{3384E1D9-3F18-4A98-8655-180FEF0DFC02}) (Version: 1.00.02 - TOSHIBA)
TOSHIBARegistration (HKLM-x32\...\{5AF550B4-BB67-4E7E-82F1-2C4300279050}) (Version: 1.1.6 - TOSHIBA)
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
TypeScript Power Tool (x32 Version: 1.6.3.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 (x32 Version: 1.6.3.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 1.6.3.0 (HKLM-x32\...\{da31aa25-410a-4c1b-9ec0-114dd8dff786}) (Version: 1.6.23313.0 - Microsoft Corporation)
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for Skype for Business 2015 (KB2889853) 64-Bit Edition (HKLM\...\{90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{DD51BA84-F589-4939-B5FE-5538B3DCC12E}) (Version: - Microsoft)
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
Utility Common Driver (x32 Version: 1.0.53.3 - Compal) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.2.2 - VideoLAN)
VMware Workstation (HKLM-x32\...\VMware_Workstation) (Version: 11.0.0 - VMware, Inc)
WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App (Toshiba Games) (x32 Version: 4.0.10.20 - WildTangent) Hidden
WinRAR 5.21 beta 2 (64-bit) (Version: 5.21.2 - win.rar GmbH) Hidden
Wondershare Dr.Fone for Android(Build 5.4.2.1) (HKLM-x32\...\{1DB91A95-C548-4BA5-9D4C-18C7DEAAC39F}_is1) (Version: 5.4.2.1 - Wondershare Software Co.,Ltd.)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {084A47F8-F644-43A0-B330-043E128C27DA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {1077C354-F693-4C3E-AFFB-D1423F56575B} - System32\Tasks\SafeZone scheduled Autoupdate 1461431016 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-03-30] (Avast Software)
Task: {12B10F39-4DD6-4554-9BDF-DAF81497899C} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {14DD4DEA-3348-4013-98FF-B5FEBB0692FC} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-04-23] (AVAST Software)
Task: {1DA6B801-1D1B-452F-816E-D7FD070E337E} - System32\Tasks\Resolution+ Setting Task => C:\Program Files\Toshiba\TOSHIBA Smart View Utility\Plugins\ResolutionPlus\TosRegPermissionChg.exe [2014-03-12] (TOSHIBA Corporation)
Task: {243B511E-25DD-4E23-A6C6-350356404049} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {32B61916-58F7-4A9B-9F0F-18AC7C1987B1} - System32\Tasks\Microsoft Office 15 Sync Maintenance for HAMZAMOUKKAR-Hamza HamzaMoukkar => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2015-02-10] (Microsoft Corporation)
Task: {628D4C64-C897-4C27-9974-9C6FC56E3201} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {68C51F72-8A6D-470C-A97F-459DA9CB5EB1} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-09-12] (Dropbox, Inc.)
Task: {6E20F80E-34EC-47BC-918D-A9455DAA4FD0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {7500CC22-AC29-438E-A1A1-EEA83667AD3E} - System32\Tasks\SuperbGameBoost => C:\Program Files (x86)\SuperBoost\Superb Game Boost\SuperbGameBoostMain.exe [2016-05-12] (SuperBoost Software)
Task: {94B15603-55DD-4AD9-A86D-291FFDF000E1} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {980273A6-076A-4972-AAB2-1CEB3DEE36DC} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2016-05-18] (IObit)
Task: {A9EBDFBF-A46B-465E-B797-F4AE888602E8} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe [2013-09-24] (TOSHIBA Corporation)
Task: {ABD33CDC-DB94-428A-804A-08862413E952} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {AC0A4796-3E55-415A-AF0C-B4FDF501E589} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {B7622392-445E-4DE7-884C-ED5A81FF6DA8} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-518511124-2112986350-859192497-1001
Task: {BE7E222E-653A-4142-83CB-CACA163D1E13} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {BFAFBE3D-03AA-422F-8B79-089446AB69F9} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {C03C8F7C-257C-43CC-9B0E-70576377BA52} - System32\Tasks\TechSmith Updater => C:\Program Files (x86)\Common Files\TechSmith Shared\Updater\TSCUpdClt.exe [2014-07-31] (TechSmith Corporation)
Task: {CAABED2B-77EA-42D2-9C97-2CAA7EA2089F} - System32\Tasks\{C7C2A28F-636E-4219-AB09-E66C7D03E1FF} => pcalua.exe -a "C:\Program Files (x86)\Lexmark 640 Series\Install\x64\Uninst.exe"
Task: {E5E9945C-6D1E-4FE6-9A98-389D94EF3B53} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-09-12] (Dropbox, Inc.)
Task: {EBB99341-184B-4EE2-BA84-230F0DDA11EC} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {F19D18CE-55F8-47EB-ACD6-C30A33470F23} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {F369E835-5747-44E4-ABFB-00743538480F} - System32\Tasks\Driver Booster SkipUAC (Hamza) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2016-05-23] (IObit)
Task: {F5D08089-F15B-43A9-91E9-782045E0065A} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-19] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Hamza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppServ\Reset MySQL Root Password.lnk -> C:\AppServ\MySQL\scripts\resetpwd.bat ()
Shortcut: C:\Users\Hamza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppServ\Control Server by Service\MySQL Start.lnk -> C:\AppServ\MySQL\mysql_servicestart.bat ()
Shortcut: C:\Users\Hamza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppServ\Control Server by Service\MySQL Stop.lnk -> C:\AppServ\MySQL\mysql_servicestop.bat ()
Shortcut: C:\Users\Hamza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppServ\Control Server by Manual\Apache Start.lnk -> C:\AppServ\Apache2.2\apache_start.bat ()
Shortcut: C:\Users\Hamza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppServ\Control Server by Manual\Apache Stop.lnk -> C:\AppServ\Apache2.2\apache_stop.bat ()
Shortcut: C:\Users\Hamza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppServ\Control Server by Manual\MySQL Start.lnk -> C:\AppServ\MySQL\mysql_start.bat ()
Shortcut: C:\Users\Hamza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppServ\Control Server by Manual\MySQL Stop.lnk -> C:\AppServ\MySQL\mysql_stop.bat ()
Shortcut: C:\Users\Hamza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppServ\Add-Remove Windows Service\Apache Install Service.lnk -> C:\AppServ\Apache2.2\apache_serviceinstall.bat ()
Shortcut: C:\Users\Hamza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppServ\Add-Remove Windows Service\Apache Uninstall Service.lnk -> C:\AppServ\Apache2.2\apache_serviceuninstall.bat ()
Shortcut: C:\Users\Hamza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppServ\Add-Remove Windows Service\MySQL Install Service.lnk -> C:\AppServ\MySQL\mysql_serviceinstall.bat ()
Shortcut: C:\Users\Hamza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppServ\Add-Remove Windows Service\MySQL Uninstall Service.lnk -> C:\AppServ\MySQL\mysql_serviceuninstall.bat ()

ShortcutWithArgument: C:\Users\Hamza\AppData\Local\Google\Chrome\User Data\Lanceur d'applications Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list
ShortcutWithArgument: C:\Users\Hamza\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\225bb61db2f318c1\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 3"

==================== Loaded Modules (Whitelisted) ==============

2015-10-30 07:18 - 2015-10-30 07:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-04-13 12:20 - 2016-04-13 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-13 12:20 - 2016-04-13 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-04-15 20:13 - 2015-04-15 20:13 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2016-04-19 19:27 - 2016-04-19 19:34 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-02-13 12:54 - 2016-02-13 12:54 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-04-13 12:21 - 2016-04-13 12:21 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2012-07-19 01:38 - 2012-07-19 01:38 - 00020904 _____ () C:\Program Files\TOSHIBA\Hotkey\SmoothView.dll
2015-08-27 18:24 - 2015-08-27 18:24 - 00114688 _____ () C:\Program Files (x86)\Internet Mobile\Internet Mobile.exe
2016-04-13 12:20 - 2016-04-13 12:20 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-04-13 12:20 - 2016-04-13 12:20 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-04-13 12:20 - 2016-04-13 12:20 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-04-13 12:20 - 2016-04-13 12:20 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-04-23 17:01 - 2016-04-23 17:01 - 00123344 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2016-04-23 17:01 - 2016-04-23 17:01 - 00135816 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-06-22 11:47 - 2016-06-22 11:47 - 02939392 _____ () C:\Program Files\AVAST Software\Avast\defs\16062201\algo.dll
2016-04-23 17:01 - 2016-04-23 17:01 - 00478144 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-06-23 14:07 - 2016-06-23 14:07 - 02948608 _____ () C:\Program Files\AVAST Software\Avast\defs\16062302\algo.dll
2015-07-31 09:39 - 2015-07-31 09:39 - 00246304 _____ () C:\Program Files (x86)\GlassWire\GeoIP.dll
2014-11-20 17:44 - 2014-11-20 17:44 - 01299136 _____ () C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll
2016-04-19 19:27 - 2016-04-19 19:34 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-04-19 19:27 - 2016-04-19 19:34 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2016-03-19 22:22 - 2016-03-28 15:46 - 00130880 _____ () C:\Program Files (x86)\SuperBoost\Superb Game Boost\Temperature.dll
2016-03-19 22:22 - 2016-02-02 08:53 - 00629056 _____ () C:\Program Files (x86)\SuperBoost\Superb Game Boost\SgbStatistics.dll
2016-03-19 22:22 - 2016-05-10 13:08 - 00829760 _____ () C:\Program Files (x86)\SuperBoost\Superb Game Boost\GA_IG.dll
2016-03-19 22:22 - 2016-01-29 17:03 - 00337216 _____ () C:\Program Files (x86)\SuperBoost\Superb Game Boost\taskMgr.dll
2016-05-30 07:49 - 2016-05-10 13:08 - 00510272 _____ () C:\Program Files (x86)\SuperBoost\Superb Game Boost\GA_ID.dll
2016-03-19 22:22 - 2016-01-29 14:21 - 00276800 _____ () C:\Program Files (x86)\SuperBoost\Superb Game Boost\D3DX8Wrapper.dll
2016-05-30 07:49 - 2016-05-10 13:08 - 01214272 _____ () c:\program files (x86)\superboost\superb game boost\GA_CheackDx.dll
2016-04-23 17:01 - 2016-04-23 17:01 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-08-27 18:24 - 2010-04-22 09:27 - 00014848 _____ () C:\Program Files (x86)\Internet Mobile\isaputrace.dll
2015-08-27 18:24 - 2009-12-10 10:51 - 00114688 _____ () C:\Program Files (x86)\Internet Mobile\DeviceMgrPlugin.dll
2015-08-27 18:24 - 2009-09-19 10:21 - 00139264 _____ () C:\Program Files (x86)\Internet Mobile\NetInfoPlugin.dll
2015-08-27 18:24 - 2010-04-22 09:27 - 00090112 _____ () C:\Program Files (x86)\Internet Mobile\DialUpPlugin.dll
2015-08-27 18:24 - 2010-04-22 09:27 - 00057344 _____ () C:\Program Files (x86)\Internet Mobile\ConfigFilePlugin.dll
2015-08-27 18:24 - 2009-12-10 10:40 - 00991232 _____ () C:\Program Files (x86)\Internet Mobile\NDISAPI.dll
2015-08-27 18:24 - 2010-04-22 09:27 - 00155648 _____ () C:\Program Files (x86)\Internet Mobile\DetectDev.dll
2015-08-27 18:24 - 2010-04-22 09:27 - 00557056 _____ () C:\Program Files (x86)\Internet Mobile\atcomm.dll
2015-08-27 18:24 - 2010-04-22 09:27 - 00061440 _____ () C:\Program Files (x86)\Internet Mobile\XCodec.dll
2015-08-27 18:24 - 2010-04-22 09:27 - 00061440 _____ () C:\Program Files (x86)\Internet Mobile\DeviceOperate.dll
2015-08-27 18:24 - 2010-04-22 09:27 - 00139264 _____ () C:\Program Files (x86)\Internet Mobile\LocaleMgrPlugin.dll
2015-08-27 18:24 - 2010-04-22 09:27 - 00032768 _____ () C:\Program Files (x86)\Internet Mobile\NotifyServicePlugin.dll
2015-08-27 18:24 - 2009-12-10 10:52 - 00192512 _____ () C:\Program Files (x86)\Internet Mobile\DeviceMgrUIPlugin.dll
2015-08-27 18:24 - 2010-04-22 09:27 - 00090112 _____ () C:\Program Files (x86)\Internet Mobile\FileManager.dll
2015-08-27 18:24 - 2010-04-22 09:27 - 00159744 _____ () C:\Program Files (x86)\Internet Mobile\SMSPlugin.dll
2016-06-21 22:52 - 2016-06-15 09:15 - 01745560 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libglesv2.dll
2016-06-21 22:52 - 2016-06-15 09:15 - 00091288 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 13:25 - 2016-06-22 16:01 - 00000089 _RASH C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost
::1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-518511124-2112986350-859192497-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Hamza\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 62.251.231.241 - 212.217.1.12
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\StartupFolder: => "Snagit 12.lnk"
HKLM\...\StartupApproved\Run: => "IgfxTray"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "TSVU"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "vmware-tray.exe"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "BlueStacks Agent"
HKU\S-1-5-21-518511124-2112986350-859192497-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"
HKU\S-1-5-21-518511124-2112986350-859192497-1001\...\StartupApproved\Run: => "IDMan"
HKU\S-1-5-21-518511124-2112986350-859192497-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_3EBD3C99C071D90B38F4CE32377B84BB"
HKU\S-1-5-21-518511124-2112986350-859192497-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-518511124-2112986350-859192497-1001\...\StartupApproved\Run: => "GlassWire"
HKU\S-1-5-21-518511124-2112986350-859192497-1001\...\StartupApproved\Run: => "uTorrent"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [UDP Query User{6BC2DCD3-E015-4263-91A2-A751177B96C0}C:\appserv\apache2.2\bin\httpd.exe] => (Allow) C:\appserv\apache2.2\bin\httpd.exe
FirewallRules: [TCP Query User{E5E218ED-3387-43E3-AC87-A13147A2B1CE}C:\appserv\apache2.2\bin\httpd.exe] => (Allow) C:\appserv\apache2.2\bin\httpd.exe
FirewallRules: [{31EF4124-7738-4FCA-87AA-4A1F165388FF}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{B8F38ACC-30A6-4CEB-9603-9D5BABDCCFA6}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{721CAE44-C9E7-4F2C-9951-F0BA41D9FD52}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{539DC184-D7D2-4126-884E-8283FF11FF47}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{47C06E4C-1F5D-46AF-B082-D42BC3B4FAE2}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{59DC100D-9EE1-4FBF-A8D1-5F5D7488FB35}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{8D2F810B-2737-4BEA-9442-475F3C899DF2}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{A61B808D-1D11-46E0-B909-9BFA71771D7D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{42EE534A-EB82-46BA-9D13-E7942CFB1CB2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{A1822201-139B-4135-ACD9-29B450230C72}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{09B52535-B717-4993-BE4C-4CB701A84B6E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{52DC0595-61BC-4342-B5BB-E7E6323ACCE5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{2B689D31-9AC6-437F-9752-BC636C732178}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{6DA232C2-8161-43E6-84EA-01C67179F426}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{A58085D8-2F50-4088-A920-97010E29C3C6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqnrs08.exe
FirewallRules: [{9380806A-0B9D-4A50-A7F3-F399712E8F9A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{E8A46303-3DC8-41E6-A223-9B62D3195676}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{747DAB43-FBA5-4074-97F4-888D4D73B3A0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{187717E2-F00F-42C6-B58C-03C4A54A6EE5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{7CC8E3CA-A668-4542-A684-7B6BDDAB9B6B}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{9F5DF3A4-0467-47CB-B964-946096D3CB64}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{72631365-54A4-45E0-931F-AF85095C6828}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{D1A01EB9-D2B8-4CFC-8B6F-F7B503905E85}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe
FirewallRules: [{A78F579E-7DBA-4B0A-85DD-157287AA8A88}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{476CED03-FA99-42FC-A3F7-A424974339DE}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{DC64895A-6000-4D86-AFDD-FC4233BA09B7}] => (Allow) C:\Users\Hamza\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{406906D7-93A1-4BB4-97B0-E23F5246D06E}] => (Allow) C:\Users\Hamza\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{7799C3EE-F5FA-4ABD-8193-3AEFD56ADAE8}] => (Allow) C:\Users\Hamza\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D243DC98-659E-415F-88D9-DC7154408035}] => (Allow) C:\Users\Hamza\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{296C7ABB-B8FA-4636-B46C-DA733D3C8E20}] => (Allow) C:\Users\Hamza\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E05CD19C-01F8-4A19-A09E-6C295FE31D68}] => (Allow) C:\Users\Hamza\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{DA47D558-6D70-4FDA-ACEA-7D79FB3E16A8}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{BA512082-0BB7-42C9-A86E-3F844AAF18EC}] => (Allow) C:\Program Files (x86)\GlassWire\GWCtlSrv.exe
FirewallRules: [{4102A151-5BCC-4F3D-8F30-B4EF332364CB}] => (Allow) C:\Program Files (x86)\GlassWire\GWCtlSrv.exe
FirewallRules: [{EE9F2329-854D-4A91-B7B5-1A17DD823661}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{438DA095-6884-4174-B69D-CAAB01B08D81}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{D8BBF5A2-C437-43B0-B6A5-44AF3B760C55}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{AB94CC82-0EC4-425D-AA18-8249906312B2}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{4E51AFD8-FF26-4567-A7DB-F264D99225D6}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{92E29CE8-D89E-4E54-8D49-21CF2887BAF2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C1B64C20-C6F1-43FF-8E69-F9B0E91C36D7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A58EC074-2502-444A-A0AC-56CDC2D20529}] => (Allow) LPort=8298
FirewallRules: [{4604D62A-8A99-49AF-958D-66C548224C9C}] => (Allow) LPort=8317
FirewallRules: [{9588EF9E-0063-4DA2-9B3D-01342441F07B}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{DF44AA07-A4E3-4296-99E0-ED01263F712D}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{51F740EB-DFEA-4FB1-9564-5FA4E5C40314}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{4843155F-9EFF-4FBA-B4B0-B109C4A1F2FC}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{7A6C363A-3A6C-4EA8-B950-115867B3E23E}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{04E8B669-EAD1-4DF1-83B3-A848D07564F1}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{DE5F46C1-2592-4E38-A517-F7AFBDE02218}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{8B796F00-8ADC-4C22-9940-6234F6608CC0}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{30A53BB0-475B-48D8-93D1-91191B18E6B1}] => (Allow) C:\Windows\SysWOW64\lxdacoms.exe
FirewallRules: [{2C94D945-6C13-45E1-A966-0AE882AB0B79}] => (Allow) C:\Windows\SysWOW64\lxdacoms.exe
FirewallRules: [{B73033D2-E06E-4346-AC6B-89108BCCDD13}] => (Allow) C:\Windows\System32\lxdacoms.exe
FirewallRules: [{889FFED0-3047-4CEB-AFAD-009DB7DBCAC4}] => (Allow) C:\Windows\System32\lxdacoms.exe
FirewallRules: [{BD4BE4E3-7E8C-4422-A2BD-10E1D49CA76E}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\lxdapswx.exe
FirewallRules: [{A1701F8C-DCAD-47A6-B2D1-8272E3F9FBCA}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\lxdapswx.exe
FirewallRules: [{AB55A0D7-1243-4CC7-9681-0D2C735A7EC3}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{06440B5B-535C-4458-99B0-5F4962B6AC10}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{31995361-5EFE-4DA0-BD0E-B2ECEBB71ABC}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{B1DC46FD-BCFC-4BD8-A120-5C1EE00CD873}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{BA5C7F22-B2D7-4F9A-B1EF-7758D9A8E626}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe
FirewallRules: [TCP Query User{BE047CF6-2996-443A-B931-E30084F8B71F}C:\appserv\apache2.2\bin\httpd.exe] => (Allow) C:\appserv\apache2.2\bin\httpd.exe
FirewallRules: [UDP Query User{E1140439-91CB-4C83-8562-E15DB1B42173}C:\appserv\apache2.2\bin\httpd.exe] => (Allow) C:\appserv\apache2.2\bin\httpd.exe
FirewallRules: [TCP Query User{67783184-F371-44ED-ABD8-85A893F9E0CF}C:\program files (x86)\rapid php 2015\rapidphp.exe] => (Allow) C:\program files (x86)\rapid php 2015\rapidphp.exe
FirewallRules: [UDP Query User{84BD3B3F-8998-4BA1-81A1-B990634A8690}C:\program files (x86)\rapid php 2015\rapidphp.exe] => (Allow) C:\program files (x86)\rapid php 2015\rapidphp.exe
FirewallRules: [{08E3CA99-C9B7-43CD-9D9E-364F09456FA9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

12-06-2016 23:48:38 test

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/23/2016 02:13:45 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HAMZAMOUKKAR)
Description: Échec de l’activation de l’application Microsoft.LockApp_cw5n1h2txyewy!WindowsDefaultLockScreen avec l’erreur : -2147023170 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (06/23/2016 02:03:02 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HAMZAMOUKKAR)
Description: Échec de l’activation de l’application Microsoft.LockApp_cw5n1h2txyewy!WindowsDefaultLockScreen avec l’erreur : -2147023170 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (06/23/2016 01:43:58 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HAMZAMOUKKAR)
Description: Échec de l’activation de l’application Microsoft.LockApp_cw5n1h2txyewy!WindowsDefaultLockScreen avec l’erreur : -2147023170 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (06/23/2016 12:07:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HAMZAMOUKKAR)
Description: Échec de l’activation de l’application Microsoft.LockApp_cw5n1h2txyewy!WindowsDefaultLockScreen avec l’erreur : -2147023170 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (06/23/2016 12:07:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HAMZAMOUKKAR)
Description: Échec de l’activation de l’application Microsoft.LockApp_cw5n1h2txyewy!WindowsDefaultLockScreen avec l’erreur : -2147023170 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (06/23/2016 10:39:30 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HAMZAMOUKKAR)
Description: Échec de l’activation de l’application Microsoft.LockApp_cw5n1h2txyewy!WindowsDefaultLockScreen avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (06/23/2016 01:40:27 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HAMZAMOUKKAR)
Description: Échec de l’activation de l’application Microsoft.LockApp_cw5n1h2txyewy!WindowsDefaultLockScreen avec l’erreur : -2147023170 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (06/23/2016 01:40:27 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HAMZAMOUKKAR)
Description: Échec de l’activation de l’application Microsoft.LockApp_cw5n1h2txyewy!WindowsDefaultLockScreen avec l’erreur : -2147023170 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (06/23/2016 01:30:59 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (06/22/2016 08:22:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante mscorsvw.exe, version : 4.6.1038.0, horodatage : 0x5615c193
Nom du module défaillant : clr.dll, version : 4.6.1078.0, horodatage : 0x56e1f25a
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00163a74
ID du processus défaillant : 0x1994
Heure de début de l’application défaillante : 0xmscorsvw.exe0
Chemin d’accès de l’application défaillante : mscorsvw.exe1
Chemin d’accès du module défaillant: mscorsvw.exe2
ID de rapport : mscorsvw.exe3
Nom complet du package défaillant : mscorsvw.exe4
ID de l’application relative au package défaillant : mscorsvw.exe5


System errors:
=============
Error: (06/23/2016 02:54:30 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding193{10DA4F3C-CC99-4190-BE4D-58330754E882}

Error: (06/23/2016 02:54:30 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding193{10DA4F3C-CC99-4190-BE4D-58330754E882}

Error: (06/23/2016 02:54:27 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding193{10DA4F3C-CC99-4190-BE4D-58330754E882}

Error: (06/23/2016 02:13:44 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable

Error: (06/23/2016 02:07:09 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding193{10DA4F3C-CC99-4190-BE4D-58330754E882}

Error: (06/23/2016 02:07:09 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding193{10DA4F3C-CC99-4190-BE4D-58330754E882}

Error: (06/23/2016 02:07:06 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding193{10DA4F3C-CC99-4190-BE4D-58330754E882}

Error: (06/23/2016 02:07:04 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding193{10DA4F3C-CC99-4190-BE4D-58330754E882}

Error: (06/23/2016 02:03:01 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable

Error: (06/23/2016 02:02:40 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding193{10DA4F3C-CC99-4190-BE4D-58330754E882}


CodeIntegrity:
===================================
Date: 2016-06-22 20:22:53.604
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\SysWOW64\usermgrcli.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-22 20:22:50.454
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\SysWOW64\usermgrcli.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-22 20:22:27.400
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\SysWOW64\usermgrcli.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-22 20:21:55.179
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\SysWOW64\usermgrcli.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-13 14:41:58.325
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Hamza\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-06-13 14:41:58.269
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Hamza\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-06-13 14:41:55.503
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Hamza\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-06-13 12:20:56.463
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-08 03:05:37.629
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-04 08:12:51.370
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3-4005U CPU @ 1.70GHz
Percentage of memory in use: 45%
Total physical RAM: 6054.96 MB
Available physical RAM: 3270.31 MB
Total Virtual: 12198.96 MB
Available Virtual: 6920.68 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:687.12 GB) (Free:544.01 GB) NTFS
Drive e: (Internet Mobile) (CDROM) (Total:0.02 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité