Additional scan result of Farbar Recovery Scan Tool (x64) Version:20-07-2015 Ran by Hibatoullah at 2015-07-24 09:03:28 Running from C:\Users\Hibatoullah\Desktop Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrateur (S-1-5-21-2417350805-2748143230-3866523379-500 - Administrator - Disabled) ASPNET (S-1-5-21-2417350805-2748143230-3866523379-1004 - Limited - Enabled) Hibatoullah (S-1-5-21-2417350805-2748143230-3866523379-1001 - Administrator - Enabled) => C:\Users\Hibatoullah HomeGroupUser$ (S-1-5-21-2417350805-2748143230-3866523379-1003 - Limited - Enabled) Invité (S-1-5-21-2417350805-2748143230-3866523379-501 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: AVG AntiVirus 2015 (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG AntiVirus 2015 (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.1.2.114 - Adobe Systems Incorporated) Adobe Dreamweaver CC 2015 (HKLM-x32\...\{EE2A0AA8-0386-11E5-8603-BC82F5DB1A71}) (Version: 16.0.0 - Adobe Systems Incorporated) Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated) Adobe Flash Player 18 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 18.0.0.210 - Adobe Systems Incorporated) Adobe Flash Player 9 ActiveX (HKLM-x32\...\{BB65C393-C76E-4F06-9B0C-2124AA8AF97B}) (Version: 9.0.16.0 - Adobe Systems, Inc.) Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated) Adobe Reader XI (11.0.12) - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated) Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.) All2Chat 5.0.2 (HKLM-x32\...\All2Chat 5.0.2) (Version: - ) Apache Tomcat 8.0.15 (HKLM-x32\...\nbi-tomcat-8.0.15.0.0) (Version: - ) ArcGIS 10.1 Engine (HKLM-x32\...\ArcGIS 10.1 Engine) (Version: 10.1.3035 - Environmental Systems Research Institute, Inc.) ArcGIS 10.1 Engine (x32 Version: 10.1.3035 - Environmental Systems Research Institute, Inc.) Hidden ArcGIS 10.1 for Desktop (HKLM-x32\...\ArcGIS 10.1 for Desktop) (Version: 10.1.3035 - Environmental Systems Research Institute, Inc.) ArcGIS 10.1 for Desktop (x32 Version: 10.1.3035 - Environmental Systems Research Institute, Inc.) Hidden ArcGIS 10.1 License Manager (HKLM-x32\...\ArcGIS 10.1 License Manager) (Version: 10.1.2891 - Environmental Systems Research Institute, Inc.) ArcGIS 10.1 License Manager (x32 Version: 10.1.2891 - Environmental Systems Research Institute, Inc.) Hidden ArcObjects SDK for the Java Platform (HKLM-x32\...\ArcObjects SDK for the Java Platform) (Version: 10.1.3035 - Environmental Systems Research Institute, Inc.) ArcObjects SDK for the Java Platform (x32 Version: 10.1.3035 - Environmental Systems Research Institute, Inc.) Hidden AVG 2015 (HKLM\...\AVG) (Version: 2015.0.6086 - AVG Technologies) AVG 2015 (Version: 15.0.4392 - AVG Technologies) Hidden AVG 2015 (Version: 15.0.6086 - AVG Technologies) Hidden Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Call of Atlantis (HKLM-x32\...\Call of Atlantis_is1) (Version: 1.0 - MyPlayCity, Inc.) CamStudio version 2.7 (HKLM-x32\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7 - CamStudio Open Source) CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform) Cisco Packet Tracer 6.1 Student (HKLM-x32\...\Cisco Packet Tracer 6.1 Student_is1) (Version: - Cisco Systems, Inc.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden EditiX-XML Editor2010 SP1 2010 (HKLM-x32\...\5246-0923-7551-7727) (Version: 2010 - JAPISoft) Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company) FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production) Fishdom 2 (HKLM-x32\...\Fishdom 2_is1) (Version: 1.0 - MyPlayCity, Inc.) Fishdom Spooky Splash (HKLM-x32\...\Fishdom Spooky Splash_is1) (Version: 1.0 - MyPlayCity, Inc.) Forgotten Treasure (HKLM-x32\...\Forgotten Treasure_is1) (Version: 1.0 - MyPlayCity, Inc.) Free Window Registry Repair (HKLM-x32\...\Free Window Registry Repair) (Version: - ) Galerie de photos (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden GanttProject (HKLM-x32\...\GanttProject) (Version: - ) GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.134 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden HDM Connection Manager (HKLM-x32\...\HDM Connection Manager) (Version: 16.001.05.06.649 - Huawei Technologies Co.,Ltd) Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: 1.0 - Meridian Audio Ltd) HP Connected Music (Meridian - player) (HKU\S-1-5-21-2417350805-2748143230-3866523379-1001\...\HPConnectedMusic) (Version: 1.1 (build 128) hp - Meridian Audio Ltd) HP Documentation (HKLM-x32\...\{CCE5C597-03EA-423E-BA80-6FCD280A8465}) (Version: 1.1.0.0 - Hewlett-Packard) HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7127.4628 - Hewlett-Packard) HP System Event Utility (HKLM-x32\...\{C78E8F51-3EAD-4F0C-83F0-EF371075E0B4}) (Version: 1.0.10 - Hewlett-Packard Company) HP Utility Center (HKLM\...\{7A75E042-0D30-43C2-BD2A-684F4BE38FF7}) (Version: 2.3.1 - Hewlett-Packard Company) HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company) Inst5675 (Version: 8.00.57 - Softex Inc.) Hidden Inst5676 (Version: 8.00.57 - Softex Inc.) Hidden InstEd 1.5.15.26 (HKLM-x32\...\{AC7EA575-6F1D-4365-A66E-B84FC18A784D}) (Version: 1.5.15.26 - instedit.com) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3316 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.1.1000 - Intel Corporation) Intel(R) Update Manager (HKLM-x32\...\{12914061-EB9B-4AE7-AC7E-0B8A607C7DF4}) (Version: 2.3.1338 - Intel Corporation) iVocalize Web Conference 4 (HKLM-x32\...\iVocalize Web Conference 4) (Version: - ) Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle) Java SE Development Kit 7 Update 40 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0170400}) (Version: 1.7.0.400 - Oracle) Java(TM) 6 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416045FF}) (Version: 6.0.450 - Oracle) Java(TM) SE Development Kit 6 Update 22 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0160220}) (Version: 1.6.0.220 - Oracle) Java(TM) SE Development Kit 6 Update 45 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0160450}) (Version: 1.6.0.450 - Oracle) JCreator Pro 5.00 (HKLM-x32\...\JCreator Pro_is1) (Version: - Xinox Software) JetBrains PhpStorm 8.0.3 (HKU\S-1-5-21-2417350805-2748143230-3866523379-1001\...\PhpStorm 8.0.3) (Version: 139.1348 - JetBrains s.r.o.) Jewel Quest III (HKLM-x32\...\Jewel Quest III_is1) (Version: 1.0 - MyPlayCity, Inc.) Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation) MAPublisher (HKLM\...\MAPublisher) (Version: 9.5.3 - Avenza Systems Inc.) MATLAB R2008a (HKLM-x32\...\MatlabR2008a) (Version: 7.6 - The MathWorks, Inc.) Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - ) Microsoft .NET Framework 1.1 French Language Pack (HKLM-x32\...\{9A394342-4A68-4EBA-85A6-55B559F4E700}) (Version: 1.1.4322 - Microsoft) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{f9b04b37-35d5-4a19-a51b-fcf4a8734851}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft) Mise à jour Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{51EFB347-1F3D-4BAC-8B79-F056B904FE21}) (Version: - Microsoft) Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft) Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft) Mobile Broadband HL Service (HKLM-x32\...\Mobile Broadband HL Service) (Version: 22.001.25.00.03 - Huawei Technologies Co.,Ltd) Modem HDM EC156 (HKLM-x32\...\Modem HDM EC156) (Version: 23.009.09.00.649 - Huawei Technologies Co.,Ltd) Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden My Connection (HKLM-x32\...\IAM Aegean My Connection_is1) (Version: - IAM) NetBeans IDE 8.0.2 (HKLM-x32\...\nbi-nb-base-8.0.2.0.201411181905) (Version: 8.0.2 - NetBeans.org) Nokia Connectivity Cable Driver (HKLM-x32\...\{D22AFEDF-6A5B-459D-A9EA-D16E422E4C18}) (Version: 7.1.34.0 - Nokia) OpenOffice 4.1.1 (HKLM-x32\...\{121727D5-FDF3-4723-BA57-EB383440ED72}) (Version: 4.11.9775 - Apache Software Foundation) Opera Stable 30.0.1835.125 (HKLM-x32\...\Opera 30.0.1835.125) (Version: 30.0.1835.125 - Opera Software) Oracle VM VirtualBox 4.1.14 (HKLM\...\{C6400179-A2BD-4491-AD13-CEC9DD066246}) (Version: 4.1.14 - Oracle Corporation) PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden PhotoFiltre 7 (HKU\S-1-5-21-2417350805-2748143230-3866523379-1001\...\PhotoFiltre 7) (Version: - ) Pixia 6 English Edition (x32 Version: 6.01.0080 - Isao Maruoka / Soldier) Hidden PostgreSQL 9.2 (HKLM\...\PostgreSQL 9.2) (Version: 9.2 - PostgreSQL Global Development Group) PostgreSQL 9.3 (HKLM\...\PostgreSQL 9.3) (Version: 9.3 - PostgreSQL Global Development Group) Prezi (HKLM-x32\...\{63B8F931-2BF3-4D5D-9C28-E2EF88D83DFD}) (Version: 5.2.5 - Nom de votre société) QGIS Valmiera 2.2.0 Valmiera (HKLM\...\QGIS Valmiera) (Version: - QGIS Development Team) Ralink Bluetooth Stack64 (HKLM\...\{8A69F02D-A72B-AEE6-1CD3-6B05B9F9DD83}) (Version: 11.0.742.0 - Mediatek) Remote PC Server (HKLM-x32\...\{D2747A8A-6CD3-4BCA-9E0F-92A3F8F8683C}) (Version: 1.0.4 - Rozky) Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group) Sentinel Protection Installer 7.4.0 (HKLM-x32\...\{5A180ED5-0AC1-410A-B790-5E0319CD0A93}) (Version: 7.4.0 - SafeNet, Inc.) Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.) StarUML 5.0.2.1570 (HKLM-x32\...\StarUML_is1) (Version: - Plastic Software, Inc.) Sublime Text 2.0.2 (HKLM\...\Sublime Text 2_is1) (Version: - ) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.15.0 - Synaptics Incorporated) The Rise Of Atlantis (HKLM-x32\...\The Rise Of Atlantis_is1) (Version: 1.0 - MyPlayCity, Inc.) Unity Web Player (HKU\.DEFAULT\...\UnityWebPlayer) (Version: 4.6.1f1 - Unity Technologies ApS) Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) UsbFix (HKLM-x32\...\Usbfix) (Version: 7.955 - El Desaparecido - www.usbfix.net - www.sosvirus.net) VBA (2627.01) (x32 Version: 6.03.00.9402 - Microsoft Corporation) Hidden VBA (2627.5) (x32 Version: 6.03.00.9402 - Microsoft Corporation) Hidden Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) WampServer 2.4 (HKLM-x32\...\WampServer 2_is1) (Version: - Hervé Leclerc (HeL)) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation) WinRAR 5.00 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH) ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman) معرض الصور (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-2417350805-2748143230-3866523379-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) ==================== Restore Points ========================= 16-07-2015 21:11:05 Windows Update 21-07-2015 02:16:40 COVADIS supprimé. 21-07-2015 09:02:06 Removed Flash Drive Tester v1.14 21-07-2015 09:02:22 Removed Flash Drive Tester v1.14 22-07-2015 22:48:08 JRT Pre-Junkware Removal ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2013-08-22 14:25 - 2015-04-30 09:38 - 00000851 ____N C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {09F064C5-36DF-4123-81BD-0BA670C78832} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-07-03] (Microsoft Corporation) Task: {0B1DC719-8C02-4044-A443-FB23DC093EA9} - System32\Tasks\GoogleUpdateTaskMachineCore1d043a79f0149b6 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-12] (Google Inc.) Task: {13510B9A-D62D-446B-81DD-7B9D44C1652F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company) Task: {206604B1-83F4-477F-A75B-41CA04FA1955} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-16] (Adobe Systems Incorporated) Task: {26CE8C24-7EC4-4C22-B4D5-8732CF21F2B2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-08-29] (Hewlett-Packard Company) Task: {50D9304D-6CD6-4FA6-9B3A-4CC858C4AA6E} - System32\Tasks\Keyboard Update Service => C:\Program Files (x86)\Keyboard Update\KeyboardUpdate.exe [2015-06-16] (Secure Updater) Task: {6633E3E8-3ADC-4B03-A384-9CAD7E455F96} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSFUpdaterRedux => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company) Task: {C4729474-A8A0-4401-AAF1-8FBAA05027E5} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-12] (CyberLink Corp.) Task: {D247497E-799B-4A5D-A1E8-47F6B816EFAA} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05] (CyberLink) Task: {DB467160-D146-4DB5-9130-41201972271F} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28] () Task: {DBE44B66-FB7A-473C-8391-814BCF758F08} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-08-29] (Hewlett-Packard Company) Task: {E05C93B4-61F8-4C59-8C64-B26C5B625B21} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-07-07] (Hewlett-Packard) Task: {EC1DB77F-EF19-410E-B984-67145AEA804D} - System32\Tasks\Opera scheduled Autoupdate 1405520337 => C:\Program Files (x86)\Opera\launcher.exe [2015-07-10] (Opera Software) Task: {F1AFC607-1951-495E-B7E0-F83EA07CC0D7} - System32\Tasks\GoogleUpdateTaskMachineUA1d043a7a07fefb5 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-12] (Google Inc.) Task: {F323FD13-B322-4EE1-AE14-7C242D2436D1} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28] () Task: {F55CD9E5-A409-450E-8A90-67AA59855ADD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\0715avtUpdateInfo.job => C:\ProgramData\Avg_Update_0715avt\0715avt_AVG-Secure-Search-Update.exe Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\AdobeFlashRelax21183643 Updater.job => C:\Windows\system32\config\systemprofile\AppData\Local\NewEyeNurse\1.3.0.1315\mstRelax.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d043a79f0149b6.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d043a7a07fefb5.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\HPCeeScheduleForHibatoullah.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe Task: C:\Windows\Tasks\SystemHealthy1805949_Administrator.job => C:\Windows\system32\config\systemprofile\AppData\Local\babyeye\2.5.0.2528\HealthyRpt5949.exe ==================== Loaded Modules (Whitelisted) ============== 2013-10-14 11:23 - 2013-10-14 11:23 - 00109568 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe 2013-10-14 11:24 - 2013-10-14 11:24 - 00627200 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cachedrv.dll 2013-10-14 11:25 - 2013-10-14 11:25 - 02541056 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll 2013-10-14 11:22 - 2013-10-14 11:22 - 00035328 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll 2013-10-14 11:22 - 2013-10-14 11:22 - 00055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll 2013-10-14 11:22 - 2013-10-14 11:22 - 00021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll 2013-10-14 11:35 - 2013-10-14 11:35 - 00306064 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll 2013-10-14 11:35 - 2013-10-14 11:35 - 01297296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll 2011-03-14 16:27 - 2011-03-14 16:27 - 00346976 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe 2014-10-19 22:08 - 2012-03-14 12:05 - 00053312 _____ () C:\Program Files (x86)\My Connection\BackgroundService\ServiceManager.exe 2014-10-13 12:21 - 2014-02-15 07:59 - 00239184 _____ () C:\ProgramData\MobileBrServ\mbbservice.exe 2014-09-14 17:59 - 2012-11-12 06:59 - 00657504 _____ () C:\ProgramData\Modem HDM EC156\OnlineUpdate\ouc.exe 2015-01-18 23:30 - 2014-10-20 08:40 - 00176640 _____ () C:\Program Files\PostgreSQL\9.2\bin\LIBPQ.dll 2015-01-18 22:50 - 2014-10-20 09:50 - 00178176 _____ () C:\Program Files\PostgreSQL\9.3\bin\LIBPQ.dll 2015-01-18 23:31 - 2014-02-05 10:16 - 01336832 _____ () C:\Program Files\PostgreSQL\9.2\bin\libxml2.dll 2015-01-18 22:51 - 2014-02-05 10:16 - 01336832 _____ () C:\Program Files\PostgreSQL\9.3\bin\libxml2.dll 2015-06-13 14:17 - 2015-06-13 14:17 - 00803488 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll 2013-10-14 11:30 - 2013-10-14 11:30 - 00065024 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe 2013-09-30 16:12 - 2013-09-30 16:12 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2014-09-14 17:59 - 2009-01-10 19:32 - 00011362 _____ () C:\ProgramData\Modem HDM EC156\OnlineUpdate\mingwm10.dll 2014-09-14 17:59 - 2009-06-23 03:42 - 00043008 _____ () C:\ProgramData\Modem HDM EC156\OnlineUpdate\libgcc_s_dw2-1.dll 2014-09-14 17:59 - 2012-10-31 10:11 - 02417152 _____ () C:\ProgramData\Modem HDM EC156\OnlineUpdate\QtCore4.dll 2014-09-14 17:59 - 2012-10-31 10:14 - 01148416 _____ () C:\ProgramData\Modem HDM EC156\OnlineUpdate\QtNetwork4.dll 2014-09-14 17:59 - 2012-11-12 04:48 - 00843264 _____ () C:\ProgramData\Modem HDM EC156\OnlineUpdate\QueryStrategy.dll 2014-09-14 17:59 - 2012-10-31 10:11 - 00398336 _____ () C:\ProgramData\Modem HDM EC156\OnlineUpdate\QtXml4.dll 2014-02-26 22:30 - 2013-09-16 22:20 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2014-02-26 22:47 - 2013-08-05 08:49 - 00627672 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll 2013-08-05 15:48 - 2013-08-05 15:48 - 00016856 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll 2015-07-14 16:57 - 2015-07-13 22:55 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\libglesv2.dll 2015-07-14 16:57 - 2015-07-13 22:55 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\libegl.dll 2015-06-29 01:13 - 2014-11-18 20:37 - 00054129 _____ () C:\Program Files (x86)\NetBeans 8.0.2\ide\modules\lib\extbrowser.dll 2015-07-14 16:57 - 2015-07-13 22:55 - 16308040 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Users\Hibatoullah\SkyDrive:ms-properties AlternateDataStreams: C:\Users\Hibatoullah\Downloads\Antivirus_Free_Edition.exe:BDU AlternateDataStreams: C:\Users\Hibatoullah\Downloads\avg_avct_stb_all_2015_5577_ppc-avc-welcomecmp4.exe:BDU AlternateDataStreams: C:\Users\Hibatoullah\Downloads\avira_antivirus_fr-fr.exe:BDU AlternateDataStreams: C:\Users\Hibatoullah\Downloads\ccsetup503.exe:BDU AlternateDataStreams: C:\Users\Hibatoullah\Downloads\ccsetup503.exe.opdownload:BDU AlternateDataStreams: C:\Users\Hibatoullah\Downloads\ccsetup504.exe:BDU AlternateDataStreams: C:\Users\Hibatoullah\Downloads\Cisco_Packet_Tracer_6.1_for_Windows.exe:BDU AlternateDataStreams: C:\Users\Hibatoullah\Downloads\geoserver-2.7.1.exe:BDU AlternateDataStreams: C:\Users\Hibatoullah\Downloads\glassfish-3.1-windows.exe.opdownload:BDU AlternateDataStreams: C:\Users\Hibatoullah\Downloads\glassfish-3.1.2-windows.exe:BDU AlternateDataStreams: C:\Users\Hibatoullah\Downloads\jcpro510trial_setup.exe:BDU AlternateDataStreams: C:\Users\Hibatoullah\Downloads\jdk-6u43-windows-x64.exe:BDU AlternateDataStreams: C:\Users\Hibatoullah\Downloads\jdk-6u45-windows-x64.exe:BDU AlternateDataStreams: C:\Users\Hibatoullah\Downloads\jre-6u43-windows-x64.exe:BDU AlternateDataStreams: C:\Users\Hibatoullah\Downloads\jre-6u45-windows-x64.exe:BDU AlternateDataStreams: C:\Users\Hibatoullah\Downloads\netbeans-7.4-javaee-windows (1).exe:BDU AlternateDataStreams: C:\Users\Hibatoullah\Downloads\QGIS-OSGeo4W-2.6.1-1-Setup-x86.exe:BDU AlternateDataStreams: C:\Users\Hibatoullah\Downloads\RegpairSetup.exe:BDU AlternateDataStreams: C:\Users\Hibatoullah\Downloads\SpyHunter-Installer (1).exe:BDU AlternateDataStreams: C:\Users\Hibatoullah\Downloads\SpyHunter-Installer.exe:BDU AlternateDataStreams: C:\Users\Hibatoullah\Downloads\sublime-text-2-2-0-2-64-en-win.exe:BDU ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2417350805-2748143230-3866523379-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Theme2\img8.jpg DNS Servers: 192.168.1.4 - 192.168.1.2 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) HKLM\...\StartupApproved\StartupFolder: => "Remote PC Server.lnk" HKLM\...\StartupApproved\Run: => "FromDocToPDF_65 Browser Plugin Loader 64" HKLM\...\StartupApproved\Run32: => "YouCam Service" HKLM\...\StartupApproved\Run32: => "HPMessageService" HKLM\...\StartupApproved\Run32: => "IAM_Web Flame ModemListener" HKLM\...\StartupApproved\Run32: => "IAM Aegean ModemListener" HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKLM\...\StartupApproved\Run32: => "SBRegRebootCleaner" HKU\S-1-5-21-2417350805-2748143230-3866523379-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-2417350805-2748143230-3866523379-1001\...\StartupApproved\Run: => "CCleaner Monitoring" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{9B11C9E1-A3C1-4C94-A1A0-1A649DD19E97}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{22900809-5D4B-4C4F-84AE-19387EE5EEBC}] => (Allow) LPort=2869 FirewallRules: [{CA209BDA-4B60-4426-AC2C-293AD07D116C}] => (Allow) LPort=1900 FirewallRules: [{B8D5EC4F-4746-40E0-AF7B-F8F3BB95640D}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe FirewallRules: [{B1210C66-2F14-4B22-9E45-CD904D10E1C0}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe FirewallRules: [{ED14075F-AD14-49EF-9DA0-B7F22A8BF164}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{DCA613EA-9AE5-45C2-B204-843CC56F0F18}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{524C1848-1DAB-40A9-BB0E-75216F814103}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{70855E14-91A7-46FF-87B9-A922E070A616}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{D8D1B200-468D-48F7-B1FA-9D04C7B0C516}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe FirewallRules: [{F64A9BD6-E3F7-475C-8440-EAB6E7A9F62B}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe FirewallRules: [{9684F42F-D53A-4341-BD10-F1DABC86F5E8}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe FirewallRules: [{498FDD11-45B0-4EA9-B639-FED42423506C}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe FirewallRules: [TCP Query User{EF0E4D6A-6AB9-4DB9-9190-1FEDD7D40C67}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{6E1D8EA3-CD54-4004-9561-AABE442213FC}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{7F91D556-4A29-498E-8DD1-DB0AAB85AA30}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{D2EB950C-53DC-464D-BC7A-4365CE3F1D89}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{ECDBDDE6-B2A2-4B95-9ED1-1D8B43FC4793}C:\program files (x86)\remote pc server 1.0.4\remote pc server.exe] => (Allow) C:\program files (x86)\remote pc server 1.0.4\remote pc server.exe FirewallRules: [UDP Query User{8B3CA300-44D3-4F86-8B03-F2AB75BDFBF5}C:\program files (x86)\remote pc server 1.0.4\remote pc server.exe] => (Allow) C:\program files (x86)\remote pc server 1.0.4\remote pc server.exe FirewallRules: [{0904F5C5-AF2B-4950-9D5C-804CD6AC6DE7}] => (Block) C:\program files (x86)\remote pc server 1.0.4\remote pc server.exe FirewallRules: [{5B0DD24D-C5E4-42F1-97A8-7184E4354F5B}] => (Block) C:\program files (x86)\remote pc server 1.0.4\remote pc server.exe FirewallRules: [TCP Query User{D75472BC-32D5-4F81-A958-5C749E38E060}C:\program files (x86)\cisco packet tracer 6.1sv\bin\packettracer6.exe] => (Allow) C:\program files (x86)\cisco packet tracer 6.1sv\bin\packettracer6.exe FirewallRules: [UDP Query User{4CB054BE-0768-487F-BAE7-DF29DE4A329A}C:\program files (x86)\cisco packet tracer 6.1sv\bin\packettracer6.exe] => (Allow) C:\program files (x86)\cisco packet tracer 6.1sv\bin\packettracer6.exe FirewallRules: [{A1F29090-D6F7-46BD-AFB6-647776889544}] => (Block) C:\program files (x86)\cisco packet tracer 6.1sv\bin\packettracer6.exe FirewallRules: [{72139E05-7034-4DF5-81B9-89B7C780511C}] => (Block) C:\program files (x86)\cisco packet tracer 6.1sv\bin\packettracer6.exe FirewallRules: [TCP Query User{CDABA99C-73C2-47B6-BB49-AA5451912AD7}C:\program files (x86)\esri\license\arcgis9x\lmgrd.exe] => (Allow) C:\program files (x86)\esri\license\arcgis9x\lmgrd.exe FirewallRules: [UDP Query User{5399B02F-09D7-4F70-AEEC-CB1AFE982DB7}C:\program files (x86)\esri\license\arcgis9x\lmgrd.exe] => (Allow) C:\program files (x86)\esri\license\arcgis9x\lmgrd.exe FirewallRules: [TCP Query User{970C0727-1196-40A4-9488-29EB948F73ED}C:\program files (x86)\esri\license\arcgis9x\arcgis.exe] => (Allow) C:\program files (x86)\esri\license\arcgis9x\arcgis.exe FirewallRules: [UDP Query User{5D4B1225-7E25-4395-B1B1-5460C6D9AEA2}C:\program files (x86)\esri\license\arcgis9x\arcgis.exe] => (Allow) C:\program files (x86)\esri\license\arcgis9x\arcgis.exe FirewallRules: [TCP Query User{783AFE31-F3F9-4A5C-AF9C-661EC8B85908}C:\users\hibatoullah\appdata\roaming\jetbrains\phpstorm 8.0.3\bin\phpstorm.exe] => (Allow) C:\users\hibatoullah\appdata\roaming\jetbrains\phpstorm 8.0.3\bin\phpstorm.exe FirewallRules: [UDP Query User{62579811-3475-4834-BAC7-137E9DEE67E9}C:\users\hibatoullah\appdata\roaming\jetbrains\phpstorm 8.0.3\bin\phpstorm.exe] => (Allow) C:\users\hibatoullah\appdata\roaming\jetbrains\phpstorm 8.0.3\bin\phpstorm.exe FirewallRules: [{20B3F7D1-49A3-45AD-9A2F-06F61F80D2C0}] => (Block) C:\users\hibatoullah\appdata\roaming\jetbrains\phpstorm 8.0.3\bin\phpstorm.exe FirewallRules: [{9B773B0C-8532-45E2-AED8-EC0B43246498}] => (Block) C:\users\hibatoullah\appdata\roaming\jetbrains\phpstorm 8.0.3\bin\phpstorm.exe FirewallRules: [TCP Query User{03E7EE0A-2147-4060-B4F3-4635A12A6386}C:\program files (x86)\java\jdk1.6.0_22\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jdk1.6.0_22\bin\javaw.exe FirewallRules: [UDP Query User{541140DA-85E3-40AD-8A67-62B2C1344C3B}C:\program files (x86)\java\jdk1.6.0_22\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jdk1.6.0_22\bin\javaw.exe FirewallRules: [TCP Query User{31500F91-D6CE-4F3D-89DF-386BBC5C85ED}C:\wamp\bin\apache\apache2.4.4\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.4.4\bin\httpd.exe FirewallRules: [UDP Query User{7A92100B-706C-4B59-8A73-15F7A3D66392}C:\wamp\bin\apache\apache2.4.4\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.4.4\bin\httpd.exe FirewallRules: [{D9D4886F-13DA-4B0E-9F63-FA1BDAD99DCC}] => (Block) C:\wamp\bin\apache\apache2.4.4\bin\httpd.exe FirewallRules: [{EF7C67BD-6A7F-4B5D-9C44-4A5AE92AF8A1}] => (Block) C:\wamp\bin\apache\apache2.4.4\bin\httpd.exe FirewallRules: [{A2C72DAD-F329-48D5-B95A-F1EC1DA11D20}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe FirewallRules: [TCP Query User{90C038CA-E338-457E-9C9D-EC085E635B85}C:\program files (x86)\java\jdk1.7.0_40\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jdk1.7.0_40\jre\bin\javaw.exe FirewallRules: [UDP Query User{10B94D20-76DB-40FC-843E-E1235FA80403}C:\program files (x86)\java\jdk1.7.0_40\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jdk1.7.0_40\jre\bin\javaw.exe FirewallRules: [TCP Query User{CB81A2C4-7CF1-4AAE-B66B-CEB4585A9C88}C:\program files (x86)\java\jdk1.7.0_40\bin\java.exe] => (Allow) C:\program files (x86)\java\jdk1.7.0_40\bin\java.exe FirewallRules: [UDP Query User{5F2EE82D-F0EB-442A-B497-B0B5AB8C29FB}C:\program files (x86)\java\jdk1.7.0_40\bin\java.exe] => (Allow) C:\program files (x86)\java\jdk1.7.0_40\bin\java.exe FirewallRules: [TCP Query User{ED6E76E1-BECF-4332-B6BA-32EAE1FFB01F}C:\program files\java\jre6\bin\javaw.exe] => (Allow) C:\program files\java\jre6\bin\javaw.exe FirewallRules: [UDP Query User{ECE672DE-0A18-4BA1-AA72-7FED2F8E40AE}C:\program files\java\jre6\bin\javaw.exe] => (Allow) C:\program files\java\jre6\bin\javaw.exe FirewallRules: [TCP Query User{1446E968-D33B-4F49-8749-435BD71FD37A}C:\program files (x86)\netbeans 8.0.2\bin\netbeans.exe] => (Allow) C:\program files (x86)\netbeans 8.0.2\bin\netbeans.exe FirewallRules: [UDP Query User{5A54F3B6-BAEA-456E-9534-414CD3E0827F}C:\program files (x86)\netbeans 8.0.2\bin\netbeans.exe] => (Allow) C:\program files (x86)\netbeans 8.0.2\bin\netbeans.exe FirewallRules: [TCP Query User{5C42090D-31F5-4B17-A963-DD52E8BC8A85}C:\program files (x86)\java\jdk1.7.0_40\bin\java.exe] => (Allow) C:\program files (x86)\java\jdk1.7.0_40\bin\java.exe FirewallRules: [UDP Query User{2338FAF7-819C-4A1A-84F7-CD9EA8C8A9E9}C:\program files (x86)\java\jdk1.7.0_40\bin\java.exe] => (Allow) C:\program files (x86)\java\jdk1.7.0_40\bin\java.exe FirewallRules: [{1580DEBB-5AF9-4B9D-B3CF-106DE638CDBB}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe FirewallRules: [{54ED5D55-373C-4580-ACFE-7587E0F536E3}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe FirewallRules: [{0365AA76-D1AE-4826-8F46-8CEAC7E855B8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{DCDEC7AE-A3FC-4B58-96C9-A1B5D6D1CC6E}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe FirewallRules: [{36CBB242-4589-4BB1-93F7-F07CE6EA685E}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe FirewallRules: [{A193790B-DAC5-4796-9F33-4323003D095A}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe FirewallRules: [{9A25BD41-2604-4E0F-A0AE-DAB5DE1A9D7B}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe FirewallRules: [{D96E3641-79A0-47FA-A6DB-C16278AD44C1}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe FirewallRules: [{CE7FF187-6C9B-41D8-8715-38C05F79D7A2}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe ==================== Faulty Device Manager Devices ============= Name: VirtualBox Host-Only Ethernet Adapter Description: VirtualBox Host-Only Ethernet Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Oracle Corporation Service: VBoxNetAdp Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (07/24/2015 02:02:25 AM) (Source: FLEXnet Licensing Service) (EventID: 0) (User: ) Description: Creation of service pipe failed Error: (07/24/2015 02:02:25 AM) (Source: FLEXnet Licensing Service) (EventID: 0) (User: ) Description: Creation of service pipe failed Error: (07/24/2015 02:02:20 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HIBATOULLAH) Description: Échec de l’activation de l’application microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2147024865 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel. Error: (07/24/2015 02:02:20 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HIBATOULLAH) Description: Échec de l’activation de l’application microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel. Error: (07/23/2015 11:11:09 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HIBATOULLAH) Description: Échec de l’activation de l’application winstore_cw5n1h2txyewy!Windows.Store avec l’erreur : -2144927142 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel. Error: (07/23/2015 03:43:09 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 5063 Error: (07/23/2015 03:43:09 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 5063 Error: (07/23/2015 03:43:09 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (07/23/2015 03:43:08 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 3797 Error: (07/23/2015 03:43:08 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 3797 System errors: ============= Error: (07/24/2015 07:44:41 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service CyberLink PowerDVD 12 Media Server Service s’est terminé de façon inattendue pour la 1ème fois. Error: (07/24/2015 07:44:33 AM) (Source: DCOM) (EventID: 10010) (User: HIBATOULLAH) Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9} Error: (07/24/2015 07:44:33 AM) (Source: DCOM) (EventID: 10010) (User: HIBATOULLAH) Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9} Error: (07/24/2015 07:44:29 AM) (Source: DCOM) (EventID: 10010) (User: HIBATOULLAH) Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9} Error: (07/24/2015 07:44:29 AM) (Source: DCOM) (EventID: 10010) (User: HIBATOULLAH) Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9} Error: (07/24/2015 07:44:29 AM) (Source: DCOM) (EventID: 10010) (User: HIBATOULLAH) Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9} Error: (07/24/2015 07:44:29 AM) (Source: DCOM) (EventID: 10010) (User: HIBATOULLAH) Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9} Error: (07/24/2015 07:44:24 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORITE NTSystèmeS-1-5-18LocalHost (avec LRPC)Non disponibleNon disponible Error: (07/24/2015 05:09:20 AM) (Source: DCOM) (EventID: 10010) (User: HIBATOULLAH) Description: {1B1F472E-3221-4826-97DB-2C2324D389AE} Error: (07/24/2015 05:08:50 AM) (Source: DCOM) (EventID: 10010) (User: HIBATOULLAH) Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Microsoft Office: ========================= CodeIntegrity Errors: =================================== Date: 2015-07-08 11:14:02.850 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-06-12 08:20:25.892 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\Sentinel64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-06-11 09:15:58.030 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\Sentinel64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-06-11 09:06:03.006 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\Sentinel64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-06-09 06:40:08.862 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\Sentinel64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-06-08 14:36:02.903 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\Sentinel64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-06-07 22:25:23.394 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\Sentinel64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-06-07 17:11:27.238 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\Sentinel64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-05-30 22:09:35.920 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\Sentinel64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-05-30 19:01:09.765 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\Sentinel64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz Percentage of memory in use: 94% Total physical RAM: 3988.27 MB Available physical RAM: 206.1 MB Total Virtual: 7316.27 MB Available Virtual: 3259.72 MB ==================== Drives ================================ Drive c: (Windows) (Fixed) (Total:451.34 GB) (Free:293.08 GB) NTFS Drive d: (RECOVERY) (Fixed) (Total:13.65 GB) (Free:1.31 GB) NTFS ==>[system with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: B49C2253) Partition: GPT Partition Type. ==================== End of log ============================