Publicité
Publicité
Format du document : text/plain
Prévisualisation
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-11-2016
Ran by hp (08-11-2016 22:02:11)
Running from C:\Users\hp\Desktop
Windows 7 Home Basic Service Pack 1 (X64) (2012-07-25 02:40:39)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1592242826-1200034856-1619733032-500 - Administrator - Disabled)
Guest (S-1-5-21-1592242826-1200034856-1619733032-501 - Limited - Disabled)
hp (S-1-5-21-1592242826-1200034856-1619733032-1000 - Administrator - Enabled) => C:\Users\hp
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Norton Internet Security (Disabled - Out of date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Disabled - Out of date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
FW: Norton Internet Security (Disabled) {6BFC5632-188D-B806-D13E-C607121B42A0}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
Absolute Reminder (HKLM-x32\...\{40F4FF7A-B214-4453-B973-080B09CED019}) (Version: 2.0.0.17 - Absolute Software)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 23.0.0.257 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.6 - Adobe Systems Incorporated)
Adobe Flash Player 23 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 23.0.0.205 - Adobe Systems Incorporated)
Apple Application Support (32 bits) (HKLM-x32\...\{D4B07658-F443-4445-A261-E643996E139D}) (Version: 4.3.2 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{A6B0442B-E159-444B-B49D-6B9AC531EAE3}) (Version: 4.3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
AuthenTec TrueAPI 64-bit (Version: 1.5.0.165 - AuthenTec, Inc.) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: - Broadcom Corporation)
Broadcom Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.2300 - Broadcom Corporation)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.5.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.2.3 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.5.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.10.15 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.2.0 - Canon Inc.)
Canon MG5600 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5600_series) (Version: 1.00 - Canon Inc.)
Canon MG5600 series On-screen Manual (HKLM-x32\...\Canon MG5600 series On-screen Manual) (Version: 7.7.1 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.2.1 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.23 - Piriform)
Configuration DivX (HKLM-x32\...\DivX Setup) (Version: 2.6.1.8 - DivX, LLC)
CopyTrans Suite Remove Only (HKU\S-1-5-21-1592242826-1200034856-1619733032-1000\...\CopyTrans Suite) (Version: 2.37 - WindSolutions)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DC-Bass Source 1.3.0 (HKLM-x32\...\DC-Bass Source) (Version: - )
DirectVobSub 2.40.4209 (HKLM-x32\...\vsfilter_is1) (Version: 2.40.4209 - MPC-HC Team)
Enregistrement utilisateur de Canon MG5600 series (HKLM-x32\...\Enregistrement utilisateur de Canon MG5600 series) (Version: - Canon Inc.)
ESU for Microsoft Windows 7 SP1 (HKLM-x32\...\{7DA9DD7F-F4D9-40FB-BD27-69B7731DEDD9}) (Version: 5.1.3 - Hewlett-Packard)
e管家 (HKLM-x32\...\CooCare3) (Version: 3.134 - )
ffdshow v1.3.4533 [2014-09-29] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4533.0 - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.7619.1252 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Haali Media Splitter (HKLM-x32\...\HaaliMkx) (Version: - )
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{692B6B02-1368-4318-938A-A48EE2971B2F}) (Version: 4.1.12.1 - Hewlett-Packard Company)
HP CoolSense (HKLM-x32\...\{16B7BDA1-B967-4D2D-8B27-E12727C28350}) (Version: 2.10.3 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{DF2D7B73-3E53-4241-B6B5-64D8344AEF6B}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Launch Box (HKLM\...\{5A847522-375C-4D05-BD3D-88C450CC047F}) (Version: 1.1.5 - Hewlett-Packard Company)
HP On Screen Display (HKLM-x32\...\{ED1BD69A-07E3-418C-91F1-D856582581BF}) (Version: 1.3.5 - Hewlett-Packard Company)
HP Power Manager (HKLM-x32\...\{7E799992-5DA0-4A1A-9443-B1836B063FEC}) (Version: 1.4.8 - Hewlett-Packard Company)
HP Quick Launch (HKLM-x32\...\{53B17A98-5BF0-40BC-AAFF-850A357975AC}) (Version: 2.7.2 - Hewlett-Packard Company)
HP Security Assistant (HKLM\...\{42719DC3-4982-47DD-B025-B21C4BDD504D}) (Version: 3.0.3 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{438363A8-F486-4C37-834C-4955773CB3D3}) (Version: 9.1.15430.4033 - Hewlett-Packard Company)
HP SimplePass PE (HKLM-x32\...\{880B5A98-B242-4B53-BD6F-41EA17495EAD}) (Version: 5.4.0.402 - Hewlett-Packard)
HP Software Framework (HKLM-x32\...\{717D3F32-C79D-4198-8EB7-4B10FCC3A3A7}) (Version: 4.5.6.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}) (Version: 7.0.39.15 - Hewlett-Packard Company)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6388.0 - IDT)
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.5.146.1 - Intel Security)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2653 - Intel Corporation)
Intel(R) Rapid Start Technology (HKLM-x32\...\3D073343-CEEB-4ce7-85AC-A69A7631B5D6) (Version: 1.0.0.1021 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.3.214 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
iTunes (HKLM\...\{955524E7-79EB-4CA9-BA4D-FD2DF587651B}) (Version: 12.4.3.1 - Apple Inc.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version: - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger 浏览器插件 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (简体中文) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 2052) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110804-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Surface 2.0 Runtime (HKLM-x32\...\{69C2B39D-F060-49AD-8877-01C4144A8424}) (Version: 2.0.21114.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Works 6-9 Converter (HKLM-x32\...\{172423F9-522A-483A-AD65-03600CE4CA4F}) (Version: 9.7.0621 - Microsoft Corporation)
Module de compatibilité pour Microsoft Office System 2007 (HKLM-x32\...\{90120000-0020-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Norton Internet Security (HKLM-x32\...\NIS) (Version: 19.9.1.14 - Symantec Corporation)
opensource (x32 Version: 1.0.14960.3876 - Your Company Name) Hidden
OpenSource Flash Video Splitter 1.0.0.5 (HKLM-x32\...\OpenSource Flash Video Splitter) (Version: 1.0.0.5 - )
Paragon HFS+ for Windows™ 10.2 (HKLM-x32\...\{456534C0-51E7-11DF-B336-005056C00008}) (Version: 1.00 - Paragon Software)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.27012 - Realtek Semiconductor Corp.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.0.2.0 - Synaptics Incorporated)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Live Messenger 加强版组件 (HKLM-x32\...\MSNProtect) (Version: 5.2.7.28 - Guangzhou Just Orange Info Tech Ltd)
Windows Live 软件包 (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 5.10 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)
WinRAR 5.40 (64-位) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)
优酷加速组件 (HKLM-x32\...\YoukuClient) (Version: 6.5.0.6243 - youkutudou, Inc.)
暴风看电影 (HKLM-x32\...\BFVKanDianYing) (Version: 2.21.1031.1112 - 北京暴风科技股份有限公司)
用于远程连接的 Windows Live Mesh ActiveX 控件(简体中文) (HKLM-x32\...\{F992409C-9D10-4AE2-BAEB-B5409AD3785E}) (Version: 15.4.5722.2 - Microsoft Corporation)
谷歌拼音输入法 2.7 (HKLM\...\GooglePinyin2) (Version: - Google Inc.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1592242826-1200034856-1619733032-1000_Classes\CLSID\{0002DF01-0000-0000-C000-000000000046}\localserver32 -> "C:\Users\hp\AppData\Local\360Chrome\Chrome\Application\360chrome.exe" => No File
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {08CFD6BB-B5DF-40D5-9B9D-33D9E61D48C4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-28] (Adobe Systems Incorporated)
Task: {0FE62E24-8E9F-4651-A57B-03792AFE347B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {23F85FCA-5823-40CF-A83A-0838BE52B496} - System32\Tasks\Google Pinyin Daemon => C:\Program Files (x86)\Google\Google Pinyin 2\GooglePinyinDaemon.exe [2014-02-06] (Google Inc.) <==== ATTENTION
Task: {2E6C5A76-5E63-4EA8-817B-FFFC80C41FEF} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe [2016-03-01] (McAfee, Inc.)
Task: {2EC8EBA9-BF36-4AF5-8A5B-F00CA4B94340} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\SymErr.exe [2012-02-04] (Symantec Corporation)
Task: {4F1F9E91-B1F5-4CCB-AE00-C185E9087015} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-04] (Google Inc.)
Task: {5601CCCE-B68E-48CA-BD45-06E838E619A8} - System32\Tasks\Registration => C:\Program Files (x86)\Hewlett-Packard\HP Setup\Dependencies\RemEngine.exe [2012-02-16] ()
Task: {5EE4BD7D-BB4A-4286-9869-C0AAE01EDB7A} - \NX7tpoMYwnR0vhO -> No File <==== ATTENTION
Task: {60EB8492-9197-42B4-9131-512E88BF640D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-09-28] (Piriform Ltd)
Task: {72309BCD-B1BA-40BA-AD36-7B465968C3E9} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1592242826-1200034856-1619733032-1000Core => C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe [2014-02-18] (Google Inc.)
Task: {8D381357-A2A7-4C4A-871A-F2E1F98FDA06} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [2012-09-27] (Hewlett-Packard Company)
Task: {91236E08-7C97-4B7A-B1CA-918D99CC7F39} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\WSCStub.exe [2015-08-06] (Symantec Corporation)
Task: {9AF2D7E1-B6AE-42B8-8771-90C177AC7795} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {9BADF9AD-1618-4ABF-93D6-1F4C3E4B9770} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2013-12-12] (Hewlett-Packard Company)
Task: {B1FD87B8-B50D-4CAD-90F9-366FCAC53319} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-04] (Google Inc.)
Task: {C0519129-5351-458D-A7D1-E9146506099E} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\SymErr.exe [2012-02-04] (Symantec Corporation)
Task: {C1F745D6-5309-4466-9495-D5B653AC9D32} - System32\Tasks\360safe\360DesktopMainProg => C:\Program Files (x86)\360\360Desktop\Bin\360AppCore.exe
Task: {C93DE326-0B7D-4D57-9730-6FD6ECDBFF26} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Internet Security\Upgrade.exe [2015-08-06] (Symantec Corporation)
Task: {CB092C23-A410-4183-9DBF-76445913265C} - System32\Tasks\{41C4FE2F-F2DD-4358-A6B3-AB204D5F9C00} => c:\users\hp\appdata\roaming\360se6\application\360se.exe
Task: {CEED02E2-D641-47EB-A787-68B1C5CB4CEA} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {E3866413-3781-4940-89F7-332BA9AFC396} - System32\Tasks\Absolute Reminder => C:\Program Files (x86)\Absolute Software\Absolute Reminder\AbsoluteReminder.exe [2011-07-12] (Absolute Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2016-07-05 14:23 - 2016-07-05 14:23 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-07-05 14:23 - 2016-07-05 14:23 - 01354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2012-03-24 08:12 - 2014-09-22 19:56 - 00108888 _____ () C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooCareService.exe
2015-06-23 18:34 - 2013-06-28 14:28 - 00084616 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2016-09-28 17:26 - 2016-09-28 17:26 - 00069632 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll
2014-09-22 20:05 - 2014-09-15 10:18 - 00655728 _____ () C:\ProgramData\AppKits\Module\messenger\msgdeliver.exe
2012-03-24 08:12 - 2014-09-22 19:56 - 00067072 _____ () C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\LZMA.dll
2012-03-24 08:12 - 2014-09-22 19:56 - 00041472 _____ () C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\comm_client.dll
2016-08-24 20:59 - 2016-08-03 01:24 - 01771336 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\libglesv2.dll
2016-08-24 20:59 - 2016-08-03 01:23 - 00094024 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\libegl.dll
2016-05-12 16:48 - 2016-05-12 16:48 - 00172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\9494e643d25019b25b5cf70f2ffc0778\IsdiInterop.ni.dll
2012-07-08 09:17 - 2012-02-02 01:25 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2012-07-08 09:18 - 2012-02-08 18:39 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2016-10-26 09:32 - 2016-10-24 10:03 - 17771200 _____ () C:\Users\hp\AppData\Local\Google\Chrome\User Data\PepperFlash\23.0.0.205\pepflashplayer.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal => "QQPCRTP"="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network => "QQPCRTP"="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CooCareService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ppfsflt.sys => ""="Driver"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2016-11-07 10:50 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1592242826-1200034856-1619733032-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\hp\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 212.27.40.241 - 212.27.40.240
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{8B63F898-836E-475E-8801-47EF1F363EAC}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\plugin\remotedesk\WinVNC.exe
FirewallRules: [{405CB17C-9AF1-461A-A939-42D476ED3BDB}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\plugin\remotedesk\WinVNC.exe
FirewallRules: [{4D514244-FED2-4BEF-BAA3-1FC47321D078}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\voiphost.exe
FirewallRules: [{04982EAF-8CC9-4B18-8AE9-853E656FF78C}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\voiphost.exe
FirewallRules: [{F6D90B1A-A06A-4BAF-AB41-9E9D5DCE7F35}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{EC2C209B-C299-4DD5-B6D4-3A1FD42FE7B2}] => (Allow) LPort=2869
FirewallRules: [{2759D333-C328-4199-8904-0F13DF21FCF8}] => (Allow) LPort=1900
FirewallRules: [{331CFB7E-F450-4F1A-8084-644956F0BD29}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{1613E986-8D39-44E4-B1AA-643D9D471547}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{99646233-A99F-420B-95AE-43BD4FD809FE}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooCare.exe
FirewallRules: [{555FDEFC-F304-4A9D-BACA-717E32F53AB5}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooCare.exe
FirewallRules: [{887B1EEC-7333-4127-A00B-36560EA88651}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooCareService.exe
FirewallRules: [{D53A15A9-EF03-4B2C-8178-518B39AB1D16}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooCareService.exe
FirewallRules: [{832CE505-C467-4609-A541-FFFB87FB7CEE}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooCare.exe
FirewallRules: [{C87544E0-F3FD-4779-8417-9D9131A50FA3}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooCare.exe
FirewallRules: [{28B44131-79F0-4152-BB88-E742DEE9FAFE}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooCareService.exe
FirewallRules: [{77615C0B-8BBB-472A-8365-2F772CD3BC51}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooCareService.exe
FirewallRules: [{D344B793-EC80-410B-8E44-BAC20BC239B5}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{1D8715CE-BB47-4BD4-8D65-8C5D5A39413A}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{CB3F8720-EED0-4AFB-8028-EAD0BDCDFD25}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{3DA84BBD-38BC-4207-98DB-C8E86D61FB75}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{AB93DCD2-418D-4CEB-BCE0-429C40FE52CF}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{DAED25F7-6882-4FA1-9D23-63CDEB4B27C6}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{0C377B6D-C912-4379-A644-0BFC2B5A7D6E}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{3C5D85F0-A3C7-4CA7-B930-AD2109902ADE}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{11349CE3-05F8-4F2E-B1EB-CBE784C6E79D}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{8549C398-3371-46A9-9FB0-71116F8B2EAA}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{E9027DAA-0EA3-41C7-86E9-B824D4403DB7}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{D2F192A4-F2D8-4F27-8A26-C3D7118FF667}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{F1A21E8E-F775-4A66-963A-242316B73518}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{0ED5F6A5-3452-4AD8-964C-BCD64727BACB}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{71F89576-807A-4B6A-A126-BB58B2267957}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{CDC1F627-5CF5-4231-BDA3-78089390F46A}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{B973D2C9-6B77-41F2-8EBE-3DEB07DC0E85}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{E01371E6-957D-4E42-A0AF-0C98ACFF0CDE}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{A57D14DC-2810-4DAA-B73F-DC431BB8C0F6}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{07B62473-EED9-47AC-87B1-97DE962A9F03}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{A3002032-B32F-4384-A1B9-E0421B9B6CF1}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{F753ADEB-4C26-4A39-ACFA-144D8F8BEEDA}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{9D41809B-1EAA-4E62-B590-B8BDAD747CA5}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{AD3EBCA0-68E1-430E-99D8-16C4DC893CF3}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{2A8A0F30-A50E-4248-ABC1-08495CB519CD}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{1ED39DAC-A72D-4EA0-A608-50F092F390FC}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{3F1DBBD2-9706-45FD-9691-D9161E39AF97}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{F6413AED-1319-4EEC-A63A-37B08D050202}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{CE5DD593-3767-4AF9-9E40-E911C4C3E725}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{8411C13B-D6C3-4ECA-AA94-88593E1B9F65}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{3AAD2085-9962-4F17-AAF1-EF67D4B6E27E}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{E2872FB6-3436-46A4-AF3C-B6F148D09D5F}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{CBA965F3-835B-4ADE-9FE9-C76FE091C186}] => (Allow) C:\Users\hp\AppData\Roaming\360se6\Application\360se.exe
FirewallRules: [{A8D59899-53D6-4122-8BF8-D2A295AC68EE}] => (Allow) C:\Users\hp\AppData\Roaming\360se6\Application\360se.exe
FirewallRules: [{9E095E5B-0E4C-4B28-B233-758A5F50F59C}] => (Allow) C:\ProgramData\WinAppMgmt\winappmgmt.exe
FirewallRules: [{EE792063-0AA8-4F69-89C9-F0C852F66876}] => (Allow) C:\ProgramData\WinAppMgmt\winappmgmt.exe
FirewallRules: [{C78007A4-E834-4D3E-85E7-C9D3298DFF09}] => (Allow) C:\ProgramData\WinAppMgmt\winappmgmt.exe
FirewallRules: [{0EFA6052-0095-4BA1-8168-F5F7E336DB4D}] => (Allow) C:\ProgramData\WinAppMgmt\winappmgmt.exe
FirewallRules: [{C182A876-7B79-4F56-A635-3F40B823490D}] => (Allow) C:\ProgramData\AppKits\Module\messenger\msgdeliver.exe
FirewallRules: [{C06AE012-FDBE-4618-BFC5-778CE0A599B4}] => (Allow) C:\ProgramData\AppKits\Module\messenger\msgdeliver.exe
FirewallRules: [{549A4D80-CC33-4564-945B-62CEF8772E09}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{AB5C85CC-96DD-419C-9981-B288D4DEE656}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [TCP Query User{3E467F59-B62E-4410-B91B-C25C3FECCAD2}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{F1F0649F-438B-4224-8656-867132E98F00}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [{778B6443-13B1-4FA0-B70A-BC02E12ACB57}] => (Allow) D:\Program Files\SogouWallPaper\2.4.3.2314\SGUpdater.exe
FirewallRules: [{F8EA59D9-7A52-49CC-B554-BD6F4332679F}] => (Allow) D:\Program Files\SogouWallPaper\2.4.3.2314\SGUpdater.exe
FirewallRules: [{9496E5A4-B955-40B8-893F-4323EB4AB1A1}] => (Allow) C:\ProgramData\Microsoft\WinAppVault\wupdate.exe
FirewallRules: [{66020F95-90A3-4E66-9F7B-1B8A4788F5FF}] => (Allow) C:\ProgramData\Microsoft\WinAppVault\wupdate.exe
FirewallRules: [TCP Query User{D6EE004B-D46F-4104-B987-3162D629C067}C:\users\hp\appdata\roaming\ytmediacenter\ikuacc.exe] => (Allow) C:\users\hp\appdata\roaming\ytmediacenter\ikuacc.exe
FirewallRules: [UDP Query User{710DB582-5733-4B2A-8B23-B7F5CE9D9E0E}C:\users\hp\appdata\roaming\ytmediacenter\ikuacc.exe] => (Allow) C:\users\hp\appdata\roaming\ytmediacenter\ikuacc.exe
FirewallRules: [TCP Query User{ED73B019-3696-4493-ADA9-456FCF117EF5}C:\users\hp\appdata\roaming\360se6\application\7.1.1.574\download\minithunderplatform.exe] => (Allow) C:\users\hp\appdata\roaming\360se6\application\7.1.1.574\download\minithunderplatform.exe
FirewallRules: [UDP Query User{2B93997B-292B-40D1-8576-3C3D20E6C17A}C:\users\hp\appdata\roaming\360se6\application\7.1.1.574\download\minithunderplatform.exe] => (Allow) C:\users\hp\appdata\roaming\360se6\application\7.1.1.574\download\minithunderplatform.exe
FirewallRules: [{756A30BE-5246-4ADC-BD18-78E711F42D22}] => (Allow) C:\ProgramData\WinAppMgmt\winappmgmt.exe
FirewallRules: [{65BAEF2A-EDE4-4EC9-ABC4-8518EA3002E1}] => (Allow) C:\ProgramData\WinAppMgmt\winappmgmt.exe
FirewallRules: [{2E36ABBE-7D2F-46FA-B84F-68D255E78EC6}] => (Allow) LPort=33673
FirewallRules: [{712FE670-8EA6-4BFB-A6AE-2C3A5EBFB579}] => (Allow) LPort=33674
FirewallRules: [{D06D7679-D1C5-4B68-BF7A-7780A18A9237}] => (Allow) LPort=9527
FirewallRules: [{47AA1CF8-DF1D-4370-A9D1-16FA92ACA2BA}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{B847865F-84FB-472D-8476-BA1A907B1CD3}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{720E90FC-FD9E-417C-BB71-E96735EB89C1}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{40CD7051-CB0D-4C96-8B1E-C275C263F068}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{8946DFD2-8368-4D2A-BF27-E6BEF038C45C}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{FD3923FE-310D-4677-BCD7-46B8AAAE4B80}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{B19286F4-42D3-4D3B-B189-5553B463B605}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C5F821B7-DD7D-40E0-B102-DC1C5F044DCC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A19F1427-5D63-423D-8D8E-A35B18CF452E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3301E9B0-354A-4BC6-8C98-2D4BA639C97C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{61EF9716-2ED0-48C1-AC37-F6A6EB6C54E9}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{0F2678EB-477C-411C-9061-BF4BB11683EE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{67C82B4D-E014-48DD-BA24-130C9EE8727B}] => (Allow) C:\Users\Public\SogouInput\USBDT\OctopusDownloader.exe
FirewallRules: [{001FA52F-C965-4520-AE57-1ED56DA8E901}] => (Allow) C:\Users\Public\SogouInput\USBDT\OctopusDownloader.exe
FirewallRules: [{5A26A226-13E4-4C65-8E90-DFE7EA7B8462}] => (Allow) C:\Users\Public\SogouInput\USBDT\OctopusDownloader.exe
FirewallRules: [{1BD17916-962A-4AE0-8880-6AF21CA295A8}] => (Allow) C:\Users\Public\SogouInput\USBDT\OctopusDownloader.exe
FirewallRules: [{233EE727-05B6-4B0A-9C52-AF27F702FF37}] => (Allow) C:\Users\Public\SogouInput\USBDT\OctopusDownloader.exe
FirewallRules: [{2E5A5F47-B153-4DF6-BEB4-CE8911509CB7}] => (Allow) C:\Users\Public\SogouInput\USBDT\OctopusDownloader.exe
FirewallRules: [{F8BD0671-084D-45A0-9848-C3FDA3B78C2E}] => (Allow) C:\Users\hp\AppData\Roaming\360se6\Application\360se.exe
FirewallRules: [{E4556F91-A448-42DF-89A9-A0A653B3A495}] => (Allow) C:\Users\hp\AppData\Roaming\360se6\Application\360se.exe
FirewallRules: [{E8307DE4-B613-4E9F-AC3D-CA84F8B08532}] => (Allow) C:\Users\hp\AppData\Roaming\360se6\Application\8.1.1.230\download\MiniThunderPlatform.exe
FirewallRules: [{B8DC8923-654C-4C47-A095-BDD23801B4FE}] => (Allow) C:\Users\hp\AppData\Roaming\360se6\Application\8.1.1.230\download\MiniThunderPlatform.exe
FirewallRules: [{10F84CA9-B004-4745-8CF5-E3432C2D68D7}] => (Allow) C:\Users\hp\AppData\Roaming\360se6\Application\8.1.1.230\installer\seup.exe
FirewallRules: [{1E68A505-785F-401B-86E0-7CEC0303158B}] => (Allow) C:\Users\hp\AppData\Roaming\360se6\Application\8.1.1.230\installer\seup.exe
FirewallRules: [TCP Query User{7C44A17D-1E33-4B1D-9240-C4CAF80A1FCD}C:\users\hp\appdata\roaming\ytmediacenter\ikuacc.exe] => (Block) C:\users\hp\appdata\roaming\ytmediacenter\ikuacc.exe
FirewallRules: [UDP Query User{4B665317-023A-4BAB-8E0E-335C25BC2402}C:\users\hp\appdata\roaming\ytmediacenter\ikuacc.exe] => (Block) C:\users\hp\appdata\roaming\ytmediacenter\ikuacc.exe
FirewallRules: [{E9A10A60-CBBB-4DD8-B1D1-996597573DFE}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\tencentdl.exe
FirewallRules: [{CE9D106D-3401-4347-AF04-227730AA8034}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\tencentdl.exe
FirewallRules: [{89C17DD3-8439-45BB-B378-7735B2E1E688}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\bugreport_xf.exe
FirewallRules: [{F5F8FB59-A454-4F28-9894-7A9A421687F5}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\bugreport_xf.exe
FirewallRules: [TCP Query User{024BCB3E-4619-4DDB-9152-9DE05E2A83B7}C:\users\hp\appdata\roaming\360bizhi\360wpsrv.exe] => (Block) C:\users\hp\appdata\roaming\360bizhi\360wpsrv.exe
FirewallRules: [UDP Query User{946068E0-CF54-418E-82EA-44D3AF78905B}C:\users\hp\appdata\roaming\360bizhi\360wpsrv.exe] => (Block) C:\users\hp\appdata\roaming\360bizhi\360wpsrv.exe
==================== Restore Points =========================
17-09-2016 06:59:57 Windows Update
05-11-2016 14:05:33 RepairDNS Restore Point 05/11/2016 14:05:27
06-11-2016 09:58:46 RepairDNS Restore Point 06/11/2016 09:58:43
06-11-2016 10:02:10 RepairDNS Restore Point 06/11/2016 10:02:10
06-11-2016 12:39:59 删除 腾讯QQ。
==================== Faulty Device Manager Devices =============
Name: Microsoft 6to4 Adapter
Description: Microsoft 6to4 Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Microsoft ISATAP Adapter
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: tencent QMUdisk
Description: tencent QMUdisk
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: QMUdisk
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: softaal
Description: softaal
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: softaal
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: TsNetHlpX64.sys
Description: TsNetHlpX64.sys
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: tsnethlpx64
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
Error: (11/08/2016 09:53:56 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/07/2016 06:14:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: 错误应用程序名称: DllHost.exe,版本: 6.1.7600.16385,时间戳: 0x4a5bca54
错误模块名称: igdumd64.dll,版本: 8.15.10.2653,时间戳: 0x4f3aac44
异常代码: 0xc0000005
错误偏移量: 0x000000000030eb06
错误进程 ID: 0x1360
错误应用程序启动时间: 0x01d2391a7241d97f
错误应用程序路径: C:\Windows\system32\DllHost.exe
错误模块路径: C:\Windows\system32\igdumd64.dll
报告 ID: b1b99dd2-a50d-11e6-a2d3-08edb9ea5994
Error: (11/07/2016 06:03:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/07/2016 05:54:19 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/07/2016 10:40:28 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/07/2016 08:49:17 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/06/2016 05:39:29 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/06/2016 12:53:12 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: 程序 IEXPLORE.EXE 版本 11.0.9600.18427 停止与 Windows 交互并已关闭。若要查看是否有关于该问题的详细信息,请检查“操作中心”控制面板中的问题历史记录。
进程 ID: 17fc
开始时间: 01d2382452fcba39
终止时间: 15
应用程序路径: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
报告 ID:
Error: (11/06/2016 10:23:01 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/06/2016 09:57:12 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
System errors:
=============
Error: (11/08/2016 09:53:33 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: 下列引导或系统启动驱动程序无法加载:
cdrom
Error: (11/08/2016 09:53:32 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Intel(R) Biometric and Context Agent Service 服务在启动时挂起。
Error: (11/07/2016 06:03:22 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: 下列引导或系统启动驱动程序无法加载:
cdrom
Error: (11/07/2016 06:03:22 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Intel(R) Biometric and Context Agent Service 服务在启动时挂起。
Error: (11/07/2016 06:00:31 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: 由于与此系统不兼容,已阻止加载 \??\C:\Users\hp\AppData\Local\Temp\catchme.sys。请与软件供应商联系,以获得驱动程序的兼容版本。
Error: (11/07/2016 06:00:30 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: 由于与此系统不兼容,已阻止加载 \??\C:\Users\hp\AppData\Local\Temp\catchme.sys。请与软件供应商联系,以获得驱动程序的兼容版本。
Error: (11/07/2016 05:57:33 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: 由于与此系统不兼容,已阻止加载 \??\C:\Users\hp\AppData\Local\Temp\catchme.sys。请与软件供应商联系,以获得驱动程序的兼容版本。
Error: (11/07/2016 05:57:33 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: 由于与此系统不兼容,已阻止加载 \??\C:\Users\hp\AppData\Local\Temp\catchme.sys。请与软件供应商联系,以获得驱动程序的兼容版本。
Error: (11/07/2016 05:57:32 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: 由于与此系统不兼容,已阻止加载 \??\C:\Users\hp\AppData\Local\Temp\catchme.sys。请与软件供应商联系,以获得驱动程序的兼容版本。
Error: (11/07/2016 05:57:32 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: 由于与此系统不兼容,已阻止加载 \??\C:\Users\hp\AppData\Local\Temp\catchme.sys。请与软件供应商联系,以获得驱动程序的兼容版本。
CodeIntegrity:
===================================
Date: 2016-11-07 18:00:31.091
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\hp\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-07 18:00:30.920
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\hp\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-07 18:00:30.748
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\hp\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-07 18:00:30.561
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\hp\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-07 17:57:33.548
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\hp\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-07 17:57:33.376
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\hp\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-07 17:57:33.204
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\hp\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-07 17:57:33.033
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\hp\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-07 17:57:32.768
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\hp\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-07 17:57:32.596
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\hp\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3-2377M CPU @ 1.50GHz
Percentage of memory in use: 91%
Total physical RAM: 1948.31 MB
Available physical RAM: 175.21 MB
Total Virtual: 3896.63 MB
Available Virtual: 1080.31 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:244.93 GB) (Free:138.75 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (新加卷) (Fixed) (Total:200 GB) (Free:159.34 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: AF44FCAE)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=244.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=200 GB) - (Type=OF Extended)
Partition 4: (Not Active) - (Size=20.6 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 2 GB) (Disk ID: 5F39B211)
Partition 1: (Not Active) - (Size=2 GB) - (Type=84)
==================== End of Addition.txt ============================
Ran by hp (08-11-2016 22:02:11)
Running from C:\Users\hp\Desktop
Windows 7 Home Basic Service Pack 1 (X64) (2012-07-25 02:40:39)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1592242826-1200034856-1619733032-500 - Administrator - Disabled)
Guest (S-1-5-21-1592242826-1200034856-1619733032-501 - Limited - Disabled)
hp (S-1-5-21-1592242826-1200034856-1619733032-1000 - Administrator - Enabled) => C:\Users\hp
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Norton Internet Security (Disabled - Out of date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Disabled - Out of date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
FW: Norton Internet Security (Disabled) {6BFC5632-188D-B806-D13E-C607121B42A0}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
Absolute Reminder (HKLM-x32\...\{40F4FF7A-B214-4453-B973-080B09CED019}) (Version: 2.0.0.17 - Absolute Software)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 23.0.0.257 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.6 - Adobe Systems Incorporated)
Adobe Flash Player 23 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 23.0.0.205 - Adobe Systems Incorporated)
Apple Application Support (32 bits) (HKLM-x32\...\{D4B07658-F443-4445-A261-E643996E139D}) (Version: 4.3.2 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{A6B0442B-E159-444B-B49D-6B9AC531EAE3}) (Version: 4.3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
AuthenTec TrueAPI 64-bit (Version: 1.5.0.165 - AuthenTec, Inc.) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: - Broadcom Corporation)
Broadcom Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.2300 - Broadcom Corporation)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.5.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.2.3 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.5.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.10.15 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.2.0 - Canon Inc.)
Canon MG5600 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5600_series) (Version: 1.00 - Canon Inc.)
Canon MG5600 series On-screen Manual (HKLM-x32\...\Canon MG5600 series On-screen Manual) (Version: 7.7.1 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.2.1 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.23 - Piriform)
Configuration DivX (HKLM-x32\...\DivX Setup) (Version: 2.6.1.8 - DivX, LLC)
CopyTrans Suite Remove Only (HKU\S-1-5-21-1592242826-1200034856-1619733032-1000\...\CopyTrans Suite) (Version: 2.37 - WindSolutions)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DC-Bass Source 1.3.0 (HKLM-x32\...\DC-Bass Source) (Version: - )
DirectVobSub 2.40.4209 (HKLM-x32\...\vsfilter_is1) (Version: 2.40.4209 - MPC-HC Team)
Enregistrement utilisateur de Canon MG5600 series (HKLM-x32\...\Enregistrement utilisateur de Canon MG5600 series) (Version: - Canon Inc.)
ESU for Microsoft Windows 7 SP1 (HKLM-x32\...\{7DA9DD7F-F4D9-40FB-BD27-69B7731DEDD9}) (Version: 5.1.3 - Hewlett-Packard)
e管家 (HKLM-x32\...\CooCare3) (Version: 3.134 - )
ffdshow v1.3.4533 [2014-09-29] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4533.0 - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.7619.1252 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Haali Media Splitter (HKLM-x32\...\HaaliMkx) (Version: - )
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{692B6B02-1368-4318-938A-A48EE2971B2F}) (Version: 4.1.12.1 - Hewlett-Packard Company)
HP CoolSense (HKLM-x32\...\{16B7BDA1-B967-4D2D-8B27-E12727C28350}) (Version: 2.10.3 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{DF2D7B73-3E53-4241-B6B5-64D8344AEF6B}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Launch Box (HKLM\...\{5A847522-375C-4D05-BD3D-88C450CC047F}) (Version: 1.1.5 - Hewlett-Packard Company)
HP On Screen Display (HKLM-x32\...\{ED1BD69A-07E3-418C-91F1-D856582581BF}) (Version: 1.3.5 - Hewlett-Packard Company)
HP Power Manager (HKLM-x32\...\{7E799992-5DA0-4A1A-9443-B1836B063FEC}) (Version: 1.4.8 - Hewlett-Packard Company)
HP Quick Launch (HKLM-x32\...\{53B17A98-5BF0-40BC-AAFF-850A357975AC}) (Version: 2.7.2 - Hewlett-Packard Company)
HP Security Assistant (HKLM\...\{42719DC3-4982-47DD-B025-B21C4BDD504D}) (Version: 3.0.3 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{438363A8-F486-4C37-834C-4955773CB3D3}) (Version: 9.1.15430.4033 - Hewlett-Packard Company)
HP SimplePass PE (HKLM-x32\...\{880B5A98-B242-4B53-BD6F-41EA17495EAD}) (Version: 5.4.0.402 - Hewlett-Packard)
HP Software Framework (HKLM-x32\...\{717D3F32-C79D-4198-8EB7-4B10FCC3A3A7}) (Version: 4.5.6.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}) (Version: 7.0.39.15 - Hewlett-Packard Company)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6388.0 - IDT)
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.5.146.1 - Intel Security)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2653 - Intel Corporation)
Intel(R) Rapid Start Technology (HKLM-x32\...\3D073343-CEEB-4ce7-85AC-A69A7631B5D6) (Version: 1.0.0.1021 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.3.214 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
iTunes (HKLM\...\{955524E7-79EB-4CA9-BA4D-FD2DF587651B}) (Version: 12.4.3.1 - Apple Inc.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version: - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger 浏览器插件 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (简体中文) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 2052) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110804-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Surface 2.0 Runtime (HKLM-x32\...\{69C2B39D-F060-49AD-8877-01C4144A8424}) (Version: 2.0.21114.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Works 6-9 Converter (HKLM-x32\...\{172423F9-522A-483A-AD65-03600CE4CA4F}) (Version: 9.7.0621 - Microsoft Corporation)
Module de compatibilité pour Microsoft Office System 2007 (HKLM-x32\...\{90120000-0020-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Norton Internet Security (HKLM-x32\...\NIS) (Version: 19.9.1.14 - Symantec Corporation)
opensource (x32 Version: 1.0.14960.3876 - Your Company Name) Hidden
OpenSource Flash Video Splitter 1.0.0.5 (HKLM-x32\...\OpenSource Flash Video Splitter) (Version: 1.0.0.5 - )
Paragon HFS+ for Windows™ 10.2 (HKLM-x32\...\{456534C0-51E7-11DF-B336-005056C00008}) (Version: 1.00 - Paragon Software)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.27012 - Realtek Semiconductor Corp.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.0.2.0 - Synaptics Incorporated)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Live Messenger 加强版组件 (HKLM-x32\...\MSNProtect) (Version: 5.2.7.28 - Guangzhou Just Orange Info Tech Ltd)
Windows Live 软件包 (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 5.10 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)
WinRAR 5.40 (64-位) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)
优酷加速组件 (HKLM-x32\...\YoukuClient) (Version: 6.5.0.6243 - youkutudou, Inc.)
暴风看电影 (HKLM-x32\...\BFVKanDianYing) (Version: 2.21.1031.1112 - 北京暴风科技股份有限公司)
用于远程连接的 Windows Live Mesh ActiveX 控件(简体中文) (HKLM-x32\...\{F992409C-9D10-4AE2-BAEB-B5409AD3785E}) (Version: 15.4.5722.2 - Microsoft Corporation)
谷歌拼音输入法 2.7 (HKLM\...\GooglePinyin2) (Version: - Google Inc.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1592242826-1200034856-1619733032-1000_Classes\CLSID\{0002DF01-0000-0000-C000-000000000046}\localserver32 -> "C:\Users\hp\AppData\Local\360Chrome\Chrome\Application\360chrome.exe" => No File
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {08CFD6BB-B5DF-40D5-9B9D-33D9E61D48C4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-28] (Adobe Systems Incorporated)
Task: {0FE62E24-8E9F-4651-A57B-03792AFE347B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {23F85FCA-5823-40CF-A83A-0838BE52B496} - System32\Tasks\Google Pinyin Daemon => C:\Program Files (x86)\Google\Google Pinyin 2\GooglePinyinDaemon.exe [2014-02-06] (Google Inc.) <==== ATTENTION
Task: {2E6C5A76-5E63-4EA8-817B-FFFC80C41FEF} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe [2016-03-01] (McAfee, Inc.)
Task: {2EC8EBA9-BF36-4AF5-8A5B-F00CA4B94340} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\SymErr.exe [2012-02-04] (Symantec Corporation)
Task: {4F1F9E91-B1F5-4CCB-AE00-C185E9087015} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-04] (Google Inc.)
Task: {5601CCCE-B68E-48CA-BD45-06E838E619A8} - System32\Tasks\Registration => C:\Program Files (x86)\Hewlett-Packard\HP Setup\Dependencies\RemEngine.exe [2012-02-16] ()
Task: {5EE4BD7D-BB4A-4286-9869-C0AAE01EDB7A} - \NX7tpoMYwnR0vhO -> No File <==== ATTENTION
Task: {60EB8492-9197-42B4-9131-512E88BF640D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-09-28] (Piriform Ltd)
Task: {72309BCD-B1BA-40BA-AD36-7B465968C3E9} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1592242826-1200034856-1619733032-1000Core => C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe [2014-02-18] (Google Inc.)
Task: {8D381357-A2A7-4C4A-871A-F2E1F98FDA06} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [2012-09-27] (Hewlett-Packard Company)
Task: {91236E08-7C97-4B7A-B1CA-918D99CC7F39} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\WSCStub.exe [2015-08-06] (Symantec Corporation)
Task: {9AF2D7E1-B6AE-42B8-8771-90C177AC7795} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {9BADF9AD-1618-4ABF-93D6-1F4C3E4B9770} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2013-12-12] (Hewlett-Packard Company)
Task: {B1FD87B8-B50D-4CAD-90F9-366FCAC53319} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-04] (Google Inc.)
Task: {C0519129-5351-458D-A7D1-E9146506099E} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\SymErr.exe [2012-02-04] (Symantec Corporation)
Task: {C1F745D6-5309-4466-9495-D5B653AC9D32} - System32\Tasks\360safe\360DesktopMainProg => C:\Program Files (x86)\360\360Desktop\Bin\360AppCore.exe
Task: {C93DE326-0B7D-4D57-9730-6FD6ECDBFF26} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Internet Security\Upgrade.exe [2015-08-06] (Symantec Corporation)
Task: {CB092C23-A410-4183-9DBF-76445913265C} - System32\Tasks\{41C4FE2F-F2DD-4358-A6B3-AB204D5F9C00} => c:\users\hp\appdata\roaming\360se6\application\360se.exe
Task: {CEED02E2-D641-47EB-A787-68B1C5CB4CEA} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {E3866413-3781-4940-89F7-332BA9AFC396} - System32\Tasks\Absolute Reminder => C:\Program Files (x86)\Absolute Software\Absolute Reminder\AbsoluteReminder.exe [2011-07-12] (Absolute Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2016-07-05 14:23 - 2016-07-05 14:23 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-07-05 14:23 - 2016-07-05 14:23 - 01354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2012-03-24 08:12 - 2014-09-22 19:56 - 00108888 _____ () C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooCareService.exe
2015-06-23 18:34 - 2013-06-28 14:28 - 00084616 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2016-09-28 17:26 - 2016-09-28 17:26 - 00069632 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll
2014-09-22 20:05 - 2014-09-15 10:18 - 00655728 _____ () C:\ProgramData\AppKits\Module\messenger\msgdeliver.exe
2012-03-24 08:12 - 2014-09-22 19:56 - 00067072 _____ () C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\LZMA.dll
2012-03-24 08:12 - 2014-09-22 19:56 - 00041472 _____ () C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\comm_client.dll
2016-08-24 20:59 - 2016-08-03 01:24 - 01771336 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\libglesv2.dll
2016-08-24 20:59 - 2016-08-03 01:23 - 00094024 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\libegl.dll
2016-05-12 16:48 - 2016-05-12 16:48 - 00172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\9494e643d25019b25b5cf70f2ffc0778\IsdiInterop.ni.dll
2012-07-08 09:17 - 2012-02-02 01:25 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2012-07-08 09:18 - 2012-02-08 18:39 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2016-10-26 09:32 - 2016-10-24 10:03 - 17771200 _____ () C:\Users\hp\AppData\Local\Google\Chrome\User Data\PepperFlash\23.0.0.205\pepflashplayer.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal => "QQPCRTP"="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network => "QQPCRTP"="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CooCareService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ppfsflt.sys => ""="Driver"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2016-11-07 10:50 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1592242826-1200034856-1619733032-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\hp\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 212.27.40.241 - 212.27.40.240
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{8B63F898-836E-475E-8801-47EF1F363EAC}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\plugin\remotedesk\WinVNC.exe
FirewallRules: [{405CB17C-9AF1-461A-A939-42D476ED3BDB}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\plugin\remotedesk\WinVNC.exe
FirewallRules: [{4D514244-FED2-4BEF-BAA3-1FC47321D078}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\voiphost.exe
FirewallRules: [{04982EAF-8CC9-4B18-8AE9-853E656FF78C}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\voiphost.exe
FirewallRules: [{F6D90B1A-A06A-4BAF-AB41-9E9D5DCE7F35}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{EC2C209B-C299-4DD5-B6D4-3A1FD42FE7B2}] => (Allow) LPort=2869
FirewallRules: [{2759D333-C328-4199-8904-0F13DF21FCF8}] => (Allow) LPort=1900
FirewallRules: [{331CFB7E-F450-4F1A-8084-644956F0BD29}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{1613E986-8D39-44E4-B1AA-643D9D471547}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{99646233-A99F-420B-95AE-43BD4FD809FE}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooCare.exe
FirewallRules: [{555FDEFC-F304-4A9D-BACA-717E32F53AB5}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooCare.exe
FirewallRules: [{887B1EEC-7333-4127-A00B-36560EA88651}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooCareService.exe
FirewallRules: [{D53A15A9-EF03-4B2C-8178-518B39AB1D16}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooCareService.exe
FirewallRules: [{832CE505-C467-4609-A541-FFFB87FB7CEE}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooCare.exe
FirewallRules: [{C87544E0-F3FD-4779-8417-9D9131A50FA3}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooCare.exe
FirewallRules: [{28B44131-79F0-4152-BB88-E742DEE9FAFE}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooCareService.exe
FirewallRules: [{77615C0B-8BBB-472A-8365-2F772CD3BC51}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooCareService.exe
FirewallRules: [{D344B793-EC80-410B-8E44-BAC20BC239B5}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{1D8715CE-BB47-4BD4-8D65-8C5D5A39413A}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{CB3F8720-EED0-4AFB-8028-EAD0BDCDFD25}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{3DA84BBD-38BC-4207-98DB-C8E86D61FB75}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{AB93DCD2-418D-4CEB-BCE0-429C40FE52CF}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{DAED25F7-6882-4FA1-9D23-63CDEB4B27C6}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{0C377B6D-C912-4379-A644-0BFC2B5A7D6E}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{3C5D85F0-A3C7-4CA7-B930-AD2109902ADE}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{11349CE3-05F8-4F2E-B1EB-CBE784C6E79D}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{8549C398-3371-46A9-9FB0-71116F8B2EAA}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{E9027DAA-0EA3-41C7-86E9-B824D4403DB7}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{D2F192A4-F2D8-4F27-8A26-C3D7118FF667}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{F1A21E8E-F775-4A66-963A-242316B73518}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{0ED5F6A5-3452-4AD8-964C-BCD64727BACB}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{71F89576-807A-4B6A-A126-BB58B2267957}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{CDC1F627-5CF5-4231-BDA3-78089390F46A}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{B973D2C9-6B77-41F2-8EBE-3DEB07DC0E85}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{E01371E6-957D-4E42-A0AF-0C98ACFF0CDE}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{A57D14DC-2810-4DAA-B73F-DC431BB8C0F6}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{07B62473-EED9-47AC-87B1-97DE962A9F03}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{A3002032-B32F-4384-A1B9-E0421B9B6CF1}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{F753ADEB-4C26-4A39-ACFA-144D8F8BEEDA}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{9D41809B-1EAA-4E62-B590-B8BDAD747CA5}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{AD3EBCA0-68E1-430E-99D8-16C4DC893CF3}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{2A8A0F30-A50E-4248-ABC1-08495CB519CD}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{1ED39DAC-A72D-4EA0-A608-50F092F390FC}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{3F1DBBD2-9706-45FD-9691-D9161E39AF97}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{F6413AED-1319-4EEC-A63A-37B08D050202}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{CE5DD593-3767-4AF9-9E40-E911C4C3E725}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{8411C13B-D6C3-4ECA-AA94-88593E1B9F65}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{3AAD2085-9962-4F17-AAF1-EF67D4B6E27E}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{E2872FB6-3436-46A4-AF3C-B6F148D09D5F}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{CBA965F3-835B-4ADE-9FE9-C76FE091C186}] => (Allow) C:\Users\hp\AppData\Roaming\360se6\Application\360se.exe
FirewallRules: [{A8D59899-53D6-4122-8BF8-D2A295AC68EE}] => (Allow) C:\Users\hp\AppData\Roaming\360se6\Application\360se.exe
FirewallRules: [{9E095E5B-0E4C-4B28-B233-758A5F50F59C}] => (Allow) C:\ProgramData\WinAppMgmt\winappmgmt.exe
FirewallRules: [{EE792063-0AA8-4F69-89C9-F0C852F66876}] => (Allow) C:\ProgramData\WinAppMgmt\winappmgmt.exe
FirewallRules: [{C78007A4-E834-4D3E-85E7-C9D3298DFF09}] => (Allow) C:\ProgramData\WinAppMgmt\winappmgmt.exe
FirewallRules: [{0EFA6052-0095-4BA1-8168-F5F7E336DB4D}] => (Allow) C:\ProgramData\WinAppMgmt\winappmgmt.exe
FirewallRules: [{C182A876-7B79-4F56-A635-3F40B823490D}] => (Allow) C:\ProgramData\AppKits\Module\messenger\msgdeliver.exe
FirewallRules: [{C06AE012-FDBE-4618-BFC5-778CE0A599B4}] => (Allow) C:\ProgramData\AppKits\Module\messenger\msgdeliver.exe
FirewallRules: [{549A4D80-CC33-4564-945B-62CEF8772E09}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{AB5C85CC-96DD-419C-9981-B288D4DEE656}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [TCP Query User{3E467F59-B62E-4410-B91B-C25C3FECCAD2}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{F1F0649F-438B-4224-8656-867132E98F00}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [{778B6443-13B1-4FA0-B70A-BC02E12ACB57}] => (Allow) D:\Program Files\SogouWallPaper\2.4.3.2314\SGUpdater.exe
FirewallRules: [{F8EA59D9-7A52-49CC-B554-BD6F4332679F}] => (Allow) D:\Program Files\SogouWallPaper\2.4.3.2314\SGUpdater.exe
FirewallRules: [{9496E5A4-B955-40B8-893F-4323EB4AB1A1}] => (Allow) C:\ProgramData\Microsoft\WinAppVault\wupdate.exe
FirewallRules: [{66020F95-90A3-4E66-9F7B-1B8A4788F5FF}] => (Allow) C:\ProgramData\Microsoft\WinAppVault\wupdate.exe
FirewallRules: [TCP Query User{D6EE004B-D46F-4104-B987-3162D629C067}C:\users\hp\appdata\roaming\ytmediacenter\ikuacc.exe] => (Allow) C:\users\hp\appdata\roaming\ytmediacenter\ikuacc.exe
FirewallRules: [UDP Query User{710DB582-5733-4B2A-8B23-B7F5CE9D9E0E}C:\users\hp\appdata\roaming\ytmediacenter\ikuacc.exe] => (Allow) C:\users\hp\appdata\roaming\ytmediacenter\ikuacc.exe
FirewallRules: [TCP Query User{ED73B019-3696-4493-ADA9-456FCF117EF5}C:\users\hp\appdata\roaming\360se6\application\7.1.1.574\download\minithunderplatform.exe] => (Allow) C:\users\hp\appdata\roaming\360se6\application\7.1.1.574\download\minithunderplatform.exe
FirewallRules: [UDP Query User{2B93997B-292B-40D1-8576-3C3D20E6C17A}C:\users\hp\appdata\roaming\360se6\application\7.1.1.574\download\minithunderplatform.exe] => (Allow) C:\users\hp\appdata\roaming\360se6\application\7.1.1.574\download\minithunderplatform.exe
FirewallRules: [{756A30BE-5246-4ADC-BD18-78E711F42D22}] => (Allow) C:\ProgramData\WinAppMgmt\winappmgmt.exe
FirewallRules: [{65BAEF2A-EDE4-4EC9-ABC4-8518EA3002E1}] => (Allow) C:\ProgramData\WinAppMgmt\winappmgmt.exe
FirewallRules: [{2E36ABBE-7D2F-46FA-B84F-68D255E78EC6}] => (Allow) LPort=33673
FirewallRules: [{712FE670-8EA6-4BFB-A6AE-2C3A5EBFB579}] => (Allow) LPort=33674
FirewallRules: [{D06D7679-D1C5-4B68-BF7A-7780A18A9237}] => (Allow) LPort=9527
FirewallRules: [{47AA1CF8-DF1D-4370-A9D1-16FA92ACA2BA}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{B847865F-84FB-472D-8476-BA1A907B1CD3}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{720E90FC-FD9E-417C-BB71-E96735EB89C1}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{40CD7051-CB0D-4C96-8B1E-C275C263F068}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{8946DFD2-8368-4D2A-BF27-E6BEF038C45C}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{FD3923FE-310D-4677-BCD7-46B8AAAE4B80}] => (Allow) C:\Program Files (x86)\StarSoftComm\CooCare3\BIN\CooSpeed.exe
FirewallRules: [{B19286F4-42D3-4D3B-B189-5553B463B605}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C5F821B7-DD7D-40E0-B102-DC1C5F044DCC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A19F1427-5D63-423D-8D8E-A35B18CF452E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3301E9B0-354A-4BC6-8C98-2D4BA639C97C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{61EF9716-2ED0-48C1-AC37-F6A6EB6C54E9}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{0F2678EB-477C-411C-9061-BF4BB11683EE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{67C82B4D-E014-48DD-BA24-130C9EE8727B}] => (Allow) C:\Users\Public\SogouInput\USBDT\OctopusDownloader.exe
FirewallRules: [{001FA52F-C965-4520-AE57-1ED56DA8E901}] => (Allow) C:\Users\Public\SogouInput\USBDT\OctopusDownloader.exe
FirewallRules: [{5A26A226-13E4-4C65-8E90-DFE7EA7B8462}] => (Allow) C:\Users\Public\SogouInput\USBDT\OctopusDownloader.exe
FirewallRules: [{1BD17916-962A-4AE0-8880-6AF21CA295A8}] => (Allow) C:\Users\Public\SogouInput\USBDT\OctopusDownloader.exe
FirewallRules: [{233EE727-05B6-4B0A-9C52-AF27F702FF37}] => (Allow) C:\Users\Public\SogouInput\USBDT\OctopusDownloader.exe
FirewallRules: [{2E5A5F47-B153-4DF6-BEB4-CE8911509CB7}] => (Allow) C:\Users\Public\SogouInput\USBDT\OctopusDownloader.exe
FirewallRules: [{F8BD0671-084D-45A0-9848-C3FDA3B78C2E}] => (Allow) C:\Users\hp\AppData\Roaming\360se6\Application\360se.exe
FirewallRules: [{E4556F91-A448-42DF-89A9-A0A653B3A495}] => (Allow) C:\Users\hp\AppData\Roaming\360se6\Application\360se.exe
FirewallRules: [{E8307DE4-B613-4E9F-AC3D-CA84F8B08532}] => (Allow) C:\Users\hp\AppData\Roaming\360se6\Application\8.1.1.230\download\MiniThunderPlatform.exe
FirewallRules: [{B8DC8923-654C-4C47-A095-BDD23801B4FE}] => (Allow) C:\Users\hp\AppData\Roaming\360se6\Application\8.1.1.230\download\MiniThunderPlatform.exe
FirewallRules: [{10F84CA9-B004-4745-8CF5-E3432C2D68D7}] => (Allow) C:\Users\hp\AppData\Roaming\360se6\Application\8.1.1.230\installer\seup.exe
FirewallRules: [{1E68A505-785F-401B-86E0-7CEC0303158B}] => (Allow) C:\Users\hp\AppData\Roaming\360se6\Application\8.1.1.230\installer\seup.exe
FirewallRules: [TCP Query User{7C44A17D-1E33-4B1D-9240-C4CAF80A1FCD}C:\users\hp\appdata\roaming\ytmediacenter\ikuacc.exe] => (Block) C:\users\hp\appdata\roaming\ytmediacenter\ikuacc.exe
FirewallRules: [UDP Query User{4B665317-023A-4BAB-8E0E-335C25BC2402}C:\users\hp\appdata\roaming\ytmediacenter\ikuacc.exe] => (Block) C:\users\hp\appdata\roaming\ytmediacenter\ikuacc.exe
FirewallRules: [{E9A10A60-CBBB-4DD8-B1D1-996597573DFE}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\tencentdl.exe
FirewallRules: [{CE9D106D-3401-4347-AF04-227730AA8034}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\tencentdl.exe
FirewallRules: [{89C17DD3-8439-45BB-B378-7735B2E1E688}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\bugreport_xf.exe
FirewallRules: [{F5F8FB59-A454-4F28-9894-7A9A421687F5}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\bugreport_xf.exe
FirewallRules: [TCP Query User{024BCB3E-4619-4DDB-9152-9DE05E2A83B7}C:\users\hp\appdata\roaming\360bizhi\360wpsrv.exe] => (Block) C:\users\hp\appdata\roaming\360bizhi\360wpsrv.exe
FirewallRules: [UDP Query User{946068E0-CF54-418E-82EA-44D3AF78905B}C:\users\hp\appdata\roaming\360bizhi\360wpsrv.exe] => (Block) C:\users\hp\appdata\roaming\360bizhi\360wpsrv.exe
==================== Restore Points =========================
17-09-2016 06:59:57 Windows Update
05-11-2016 14:05:33 RepairDNS Restore Point 05/11/2016 14:05:27
06-11-2016 09:58:46 RepairDNS Restore Point 06/11/2016 09:58:43
06-11-2016 10:02:10 RepairDNS Restore Point 06/11/2016 10:02:10
06-11-2016 12:39:59 删除 腾讯QQ。
==================== Faulty Device Manager Devices =============
Name: Microsoft 6to4 Adapter
Description: Microsoft 6to4 Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Microsoft ISATAP Adapter
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: tencent QMUdisk
Description: tencent QMUdisk
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: QMUdisk
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: softaal
Description: softaal
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: softaal
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: TsNetHlpX64.sys
Description: TsNetHlpX64.sys
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: tsnethlpx64
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
Error: (11/08/2016 09:53:56 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/07/2016 06:14:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: 错误应用程序名称: DllHost.exe,版本: 6.1.7600.16385,时间戳: 0x4a5bca54
错误模块名称: igdumd64.dll,版本: 8.15.10.2653,时间戳: 0x4f3aac44
异常代码: 0xc0000005
错误偏移量: 0x000000000030eb06
错误进程 ID: 0x1360
错误应用程序启动时间: 0x01d2391a7241d97f
错误应用程序路径: C:\Windows\system32\DllHost.exe
错误模块路径: C:\Windows\system32\igdumd64.dll
报告 ID: b1b99dd2-a50d-11e6-a2d3-08edb9ea5994
Error: (11/07/2016 06:03:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/07/2016 05:54:19 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/07/2016 10:40:28 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/07/2016 08:49:17 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/06/2016 05:39:29 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/06/2016 12:53:12 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: 程序 IEXPLORE.EXE 版本 11.0.9600.18427 停止与 Windows 交互并已关闭。若要查看是否有关于该问题的详细信息,请检查“操作中心”控制面板中的问题历史记录。
进程 ID: 17fc
开始时间: 01d2382452fcba39
终止时间: 15
应用程序路径: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
报告 ID:
Error: (11/06/2016 10:23:01 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/06/2016 09:57:12 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
System errors:
=============
Error: (11/08/2016 09:53:33 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: 下列引导或系统启动驱动程序无法加载:
cdrom
Error: (11/08/2016 09:53:32 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Intel(R) Biometric and Context Agent Service 服务在启动时挂起。
Error: (11/07/2016 06:03:22 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: 下列引导或系统启动驱动程序无法加载:
cdrom
Error: (11/07/2016 06:03:22 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Intel(R) Biometric and Context Agent Service 服务在启动时挂起。
Error: (11/07/2016 06:00:31 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: 由于与此系统不兼容,已阻止加载 \??\C:\Users\hp\AppData\Local\Temp\catchme.sys。请与软件供应商联系,以获得驱动程序的兼容版本。
Error: (11/07/2016 06:00:30 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: 由于与此系统不兼容,已阻止加载 \??\C:\Users\hp\AppData\Local\Temp\catchme.sys。请与软件供应商联系,以获得驱动程序的兼容版本。
Error: (11/07/2016 05:57:33 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: 由于与此系统不兼容,已阻止加载 \??\C:\Users\hp\AppData\Local\Temp\catchme.sys。请与软件供应商联系,以获得驱动程序的兼容版本。
Error: (11/07/2016 05:57:33 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: 由于与此系统不兼容,已阻止加载 \??\C:\Users\hp\AppData\Local\Temp\catchme.sys。请与软件供应商联系,以获得驱动程序的兼容版本。
Error: (11/07/2016 05:57:32 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: 由于与此系统不兼容,已阻止加载 \??\C:\Users\hp\AppData\Local\Temp\catchme.sys。请与软件供应商联系,以获得驱动程序的兼容版本。
Error: (11/07/2016 05:57:32 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: 由于与此系统不兼容,已阻止加载 \??\C:\Users\hp\AppData\Local\Temp\catchme.sys。请与软件供应商联系,以获得驱动程序的兼容版本。
CodeIntegrity:
===================================
Date: 2016-11-07 18:00:31.091
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\hp\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-07 18:00:30.920
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\hp\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-07 18:00:30.748
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\hp\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-07 18:00:30.561
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\hp\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-07 17:57:33.548
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\hp\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-07 17:57:33.376
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\hp\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-07 17:57:33.204
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\hp\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-07 17:57:33.033
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\hp\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-07 17:57:32.768
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\hp\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-07 17:57:32.596
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\hp\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3-2377M CPU @ 1.50GHz
Percentage of memory in use: 91%
Total physical RAM: 1948.31 MB
Available physical RAM: 175.21 MB
Total Virtual: 3896.63 MB
Available Virtual: 1080.31 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:244.93 GB) (Free:138.75 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (新加卷) (Fixed) (Total:200 GB) (Free:159.34 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: AF44FCAE)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=244.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=200 GB) - (Type=OF Extended)
Partition 4: (Not Active) - (Size=20.6 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 2 GB) (Disk ID: 5F39B211)
Partition 1: (Not Active) - (Size=2 GB) - (Type=84)
==================== End of Addition.txt ============================