cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 20-09-2017
Ran by lolo (21-09-2017 21:56:11)
Running from C:\Users\lolo\Desktop
Microsoft Windows 7 Ultimate Service Pack 1 (X86) (2017-09-20 19:04:49)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-597990856-370044495-3237993144-500 - Administrator - Disabled)
Guest (S-1-5-21-597990856-370044495-3237993144-501 - Limited - Disabled)
lolo (S-1-5-21-597990856-370044495-3237993144-1000 - Administrator - Enabled) => C:\Users\lolo

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Security (Disabled - Up to date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Security (Disabled - Up to date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
FW: Norton Security (Disabled) {6BFC5632-188D-B806-D13E-C607121B42A0}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 12 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 12.0.0.39 - Adobe Systems Incorporated)
Adobe Flash Player 20 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 20.0.0.228 - Adobe Systems Incorporated)
Adobe Reader X (10.1.3) - Arabic (HKLM\...\{AC76BA86-7AD7-1025-7B44-AA1000000001}) (Version: 10.1.3 - Adobe Systems Incorporated)
Atheros Bluetooth Filter Driver Package (HKLM\...\{5494B59E-6E82-499E-91AC-C53199955EC5}) (Version: 1.00.0004 - Atheros Communications)
Atheros Driver Installation Program (HKLM\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 9.2 - Atheros)
Bluetooth Stack for Windows by Toshiba (HKLM\...\{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}) (Version: v8.00.12(T) - TOSHIBA CORPORATION)
CCleaner (HKLM\...\CCleaner) (Version: 5.35 - Piriform)
Google Chrome (HKLM\...\Google Chrome) (Version: 61.0.3163.91 - Google Inc‎.‎)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2353 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.2.1004 - Intel Corporation)
Internet Download Manager (HKLM\...\Internet Download Manager) (Version: - Tonec Inc.)
IObit Uninstaller (HKLM\...\IObitUninstall) (Version: 7.0.2.49 - IObit)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Norton Security (HKLM\...\NS) (Version: 22.8.0.50 - Symantec Corporation)
Realtek Ethernet Controller Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6307 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30111 - Realtek Semiconductor Corp.)
RogueKiller version 12.11.16.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.11.16.0 - Adlice Software)
TOSHIBA Media Controller (HKLM\...\{C7A4F26F-F9B0-41B2-8659-99181108CDE3}) (Version: 1.0.86.4 - TOSHIBA CORPORATION)
TOSHIBA Web Camera Application (HKLM\...\InstallShield_{6F3C8901-EBD3-470D-87F8-AC210F6E5E02}) (Version: 2.0.1.5 - TOSHIBA Corporation)
TOSHIBA Wireless LAN Indicator (HKLM\...\{5BA99779-6E12-49EF-BE49-F35B1EDB4DF9}) (Version: 1.0.4 - TOSHIBA CORPORATION)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
WinRAR 4.20 (32-بت) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-08-14] (Tonec Inc.)
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.8.0.50\buShell.dll [2016-09-23] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.8.0.50\buShell.dll [2016-09-23] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.8.0.50\buShell.dll [2016-09-23] (Symantec Corporation)
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.8.0.50\buShell.dll [2016-09-23] (Symantec Corporation)
ContextMenuHandlers1: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit)
ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.8.0.50\NavShExt.dll [2016-09-23] (Symantec Corporation)
ContextMenuHandlers1: [tosBtShllExt] -> {6BEF3D0B-53F0-4b0d-B91C-C19ED3D4C9D1} => C:\Program Files\Toshiba\Bluetooth Toshiba Stack\sys\TosBtShell.dll [2010-07-30] (TOSHIBA)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal)
ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.8.0.50\NavShExt.dll [2016-09-23] (Symantec Corporation)
ContextMenuHandlers4: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit)
ContextMenuHandlers4: [tosBtShllExt] -> {6BEF3D0B-53F0-4b0d-B91C-C19ED3D4C9D1} => C:\Program Files\Toshiba\Bluetooth Toshiba Stack\sys\TosBtShell.dll [2010-07-30] (TOSHIBA)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2017-09-20] (Intel Corporation)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.8.0.50\buShell.dll [2016-09-23] (Symantec Corporation)
ContextMenuHandlers6: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit)
ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.8.0.50\NavShExt.dll [2016-09-23] (Symantec Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {7C633432-F8B8-4820-9729-C0F1BB2C929D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-09-20] (Piriform Ltd)
Task: {7DDCBAE1-1F63-41A1-BAA5-4C3E090EA609} - System32\Tasks\Norton Security\Norton Error Processor => C:\Program Files\Norton Security\Engine\22.8.0.50\SymErr.exe [2016-09-23] (Symantec Corporation)
Task: {7E31D011-8227-4336-AF7A-5FB34BE48BF1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-09-20] (Google Inc.)
Task: {86564166-C167-4D4F-B311-6CDCADD02575} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-09-20] (Google Inc.)
Task: {89F66DE2-8E29-40B9-B23D-E7E9988C9CEE} - System32\Tasks\Norton Security\Norton Error Analyzer => C:\Program Files\Norton Security\Engine\22.8.0.50\SymErr.exe [2016-09-23] (Symantec Corporation)
Task: {99033417-02DD-4104-B1DF-ECABA961C5EA} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-09-21] (Adobe Systems Incorporated)
Task: {EF65FBCB-5134-4E86-8AF6-B50C326D6AE0} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.8.0.50\WSCStub.exe [2016-09-23] (Symantec Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2011-04-04 19:18 - 2011-04-04 19:18 - 000094208 _____ () C:\Windows\System32\IccLibDll.dll
2017-09-19 23:34 - 2017-09-19 23:34 - 000054488 _____ () C:\Program Files\CCleaner\branding.dll
2017-09-07 19:12 - 2017-09-07 19:12 - 000061440 _____ () C:\Program Files\CCleaner\lang\lang-1025.dll
2017-09-20 23:07 - 2017-09-14 10:30 - 003011928 _____ () C:\Program Files\Google\Chrome\Application\61.0.3163.91\libglesv2.dll
2017-09-20 23:07 - 2017-09-14 10:30 - 000086872 _____ () C:\Program Files\Google\Chrome\Application\61.0.3163.91\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 05:04 - 2009-06-11 00:39 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-597990856-370044495-3237993144-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\lolo\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{509DF508-BF8A-4B02-961E-8DC29E440CFA}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

20-09-2017 22:07:32 Installed Realtek Ethernet Controller Driver
20-09-2017 22:09:53 Installed Bluetooth Stack for Windows by Toshiba.
20-09-2017 22:11:14 Installed Bluetooth Monitor 4
20-09-2017 22:18:59 Installed Realtek USB 2.0 Card Reader
20-09-2017 22:20:42 Installed Realtek Ethernet Controller Driver For Windows Vista au‰‘\
20-09-2017 22:22:16 Windows Update
20-09-2017 22:22:24 Installed Atheros Bluetooth Filter Driver Package.
20-09-2017 22:24:42 Installed Bluetooth Stack for Windows by Toshiba.
20-09-2017 22:28:39 Removed Bluetooth Monitor 4
20-09-2017 22:29:43 Installed TOSHIBA Wireless LAN Indicator.
20-09-2017 22:31:32 Installed TOSHIBA Web Camera Application
20-09-2017 22:32:46 Installed TOSHIBA Media Controller
20-09-2017 22:33:56 Installed Realtek USB 2.0 Card Reader
20-09-2017 22:38:41 Installed Realtek Ethernet Controller Driver For Windows Vista aبwS
20-09-2017 22:44:40 Installed Realtek Ethernet Controller Driver
20-09-2017 22:48:32 Language Pack Installation
20-09-2017 22:48:40 Installed Bluetooth Stack for Windows by Toshiba.
20-09-2017 23:15:11 Driver Booster : 2nd generation Intel® Core™ processor family DRAM Controller - 0104
21-09-2017 00:56:46 Installed Adobe Reader X (10.1.3) - Arabic.

==================== Faulty Device Manager Devices =============

Name: ‏‏وحدة تحكم الاتصالات البسيطة لـ PCI‏
Description: ‏‏وحدة تحكم الاتصالات البسيطة لـ PCI‏
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/21/2017 09:49:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/21/2017 12:10:43 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/20/2017 11:41:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/20/2017 11:30:44 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/20/2017 11:15:10 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {42310886-76aa-4059-9ef8-4ab216449a1e}

Error: (09/20/2017 11:02:53 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/20/2017 10:05:20 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.


System errors:
=============
Error: (09/20/2017 11:45:27 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: ‏‏تم استلام التنبيه الهام التالي: 40.

Error: (09/20/2017 11:45:27 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: ‏‏تم استلام التنبيه الهام التالي: 70.

Error: (09/20/2017 11:45:26 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: ‏‏تم استلام التنبيه الهام التالي: 70.

Error: (09/20/2017 11:44:58 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: ‏‏تم استلام التنبيه الهام التالي: 40.

Error: (09/20/2017 11:44:58 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: ‏‏تم استلام التنبيه الهام التالي: 70.

Error: (09/20/2017 11:44:58 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: ‏‏تم استلام التنبيه الهام التالي: 70.

Error: (09/20/2017 11:44:28 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: ‏‏تم استلام التنبيه الهام التالي: 40.

Error: (09/20/2017 11:44:28 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: ‏‏تم استلام التنبيه الهام التالي: 70.

Error: (09/20/2017 11:29:29 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: ‏‏تم إنهاء خدمة Intel(R) Content Protection HECI Service بسبب الخطأ التالي:
%%-2147024637 = ‏‏لا توجد بيانات أخرى متوفرة.

Error: (09/20/2017 10:12:03 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: ‏‏فشل محول Bluetooth بطريقة غير محددة ولن يتم استخدامه. تم إلغاء تحميل برنامج التشغيل.


==================== Memory info ===========================

Processor: Intel(R) Pentium(R) CPU B960 @ 2.20GHz
Percentage of memory in use: 63%
Total physical RAM: 1949.76 MB
Available physical RAM: 717.1 MB
Total Virtual: 3899.52 MB
Available Virtual: 2446.73 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:180.8 GB) (Free:141.27 GB) NTFS
Drive d: () (Fixed) (Total:117.19 GB) (Free:98.95 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: DCA3A90B)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=180.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=117.2 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité