Additional scan result of Farbar Recovery Scan Tool (x86) Version: 03-05-2017 01 Ran by chakiche mohamed (04-05-2017 23:12:00) Running from C:\Users\chakiche mohamed\Downloads\Programs Microsoft Windows 7 Ultimate Service Pack 1 (X86) (2015-10-19 16:21:31) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-2196797711-3197828652-2754627983-500 - Administrator - Disabled) chakiche mohamed (S-1-5-21-2196797711-3197828652-2754627983-1000 - Administrator - Enabled) => C:\Users\chakiche mohamed dplbjwsx (S-1-5-21-2196797711-3197828652-2754627983-1004 - Limited - Disabled) Guest (S-1-5-21-2196797711-3197828652-2754627983-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2196797711-3197828652-2754627983-1002 - Limited - Enabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Kaspersky Internet Security (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Kaspersky Internet Security (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Kaspersky Internet Security (Enabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe AIR (HKLM\...\Adobe AIR) (Version: 23.0.0.257 - Adobe Systems Incorporated) Adobe Community Help (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.5.23 - Adobe Systems Incorporated.) Adobe Creative Cloud (HKLM\...\Adobe Creative Cloud) (Version: 4.0.1.188 - Adobe Systems Incorporated) Adobe Flash Player 25 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 25.0.0.148 - Adobe Systems Incorporated) Adobe Flash Player 25 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated) Adobe Flash Player 26 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 26.0.0.94 - Adobe Systems Incorporated) Adobe Illustrator CS3 (HKLM\...\Adobe_2a10c9ba9b74a6a4a29b2f04d8a5e8f) (Version: 13.0 - Adobe Systems Incorporated) Adobe Photoshop CC 2017 (32 Bit) (HKLM\...\PHSP_18_0_32) (Version: 18.0.0 - Adobe Systems Incorporated) Adobe Photoshop CS5 (HKLM\...\{3EB745BA-194F-4475-9164-B20BB2172395}) (Version: 12.0 - Adobe Systems Incorporated) Adobe Shockwave Player + Authorware Web Player (HKLM\...\Adobe Shockwave Player + Authorware Web Player) (Version: v12.0.5.146 - Adobe Systems, Inc.) Adobe Shockwave Player 12.2 (HKLM\...\Adobe Shockwave Player) (Version: 12.2.8.198 - Adobe Systems, Inc.) Adobe Update Management Tool (HKLM\...\{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1) (Version: 6.2 - PainteR) AIMP (HKLM\...\AIMP) (Version: v4.11.1841, 09.10.2016 - AIMP DevTeam) Alien Skin Eye Candy 7 (HKLM\...\Alien Skin Eye Candy 7) (Version: - Alien Skin) Aurora 3D Text & Logo Maker version 12.09.26 (HKLM\...\{4F6B6582-B9F6-42B2-AAFC-48E097D07837}_is1) (Version: 12.09.26 - Aurora3D Software) Auto Mouse Click v13.1 (HKLM\...\{F5E3859D-0720-41F0-BAF5-4CBCDFD8F406}_is1) (Version: 13.1 - MurGee.com) AV Bros. Page Curl 2.0 (Remove Only) (HKLM\...\AV Bros. Page Curl 2.0) (Version: - ) Camtasia Studio 8 (HKLM\...\{A2A41B60-D51F-4C04-BC94-B4C94F7B6DC0}) (Version: 8.6.0.2054 - TechSmith Corporation) CCleaner (HKLM\...\CCleaner) (Version: 3.10 - Piriform) Color Efex Pro 4 (HKLM\...\Color Efex Pro 4) (Version: 4.0.0.1 - Nik Software, Inc.) ColorSchemer Studio 2 (HKLM\...\ColorSchemerStudio2_is1) (Version: Studio v2.1 - ColorSchemer) Counter-Strike 1.6 (HKLM\...\Counter-Strike 1.6) (Version: - ) FastStone Capture 7.6 (HKLM\...\FastStone Capture) (Version: 7.6 - FastStone Soft) FormatFactory 3.3.4.0 (HKLM\...\FormatFactory) (Version: 3.3.4.0 - Format Factory) Foxit Reader 6.0.6.722 (HKLM\...\Foxit Reader) (Version: v 6.0.6.722 - oszone.net) GIF Optimizer 2.0 (HKLM\...\GIF Optimizer_is1) (Version: - Leapic Software) Google Chrome (HKLM\...\Google Chrome) (Version: 57.0.2987.133 - Google Inc.) Google Update Helper (Version: 1.3.33.5 - Google Inc.) Hidden Internet Download Manager (HKLM\...\Internet Download Manager) (Version: - Tonec Inc.) Internet Download Manager (IDM) 6, 25, 2, 2 (HKLM\...\Internet Download Manager (IDM) 6, 25, 2, 2) (Version: 6, 25, 2, 2 - Tonec Inc.) IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.41 - Irfan Skiljan) Java 8 Update 112 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180112F0}) (Version: 8.0.1120.15 - Oracle Corporation) Java 8 Update 91 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation) Kaspersky Internet Security (HKLM\...\InstallWIX_{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab) Kaspersky Total Security (Version: 17.0.0.611 - Kaspersky Lab) Hidden Kelk2010 (SSL) (HKLM\...\Kelk2010 (SSL)) (Version: - ) K-Lite Mega Codec Pack 5.0.0 (HKLM\...\KLiteCodecPack_is1) (Version: 5.0.0 - ) KMPlayer (remove only) (HKLM\...\The KMPlayer) (Version: 4.1.4.7 - PandoraTV) LameACM (HKLM\...\LameACM) (Version: - ) Malwarebytes version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes) Microsoft .NET Framework 4.6.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (dansk) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1030) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (Italiano) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1040) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (Nederlands) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1043) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (norsk språkpakke) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1044) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (Português) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 2070) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (suomi) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1035) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (svenska) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1053) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (Türkçe) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1055) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (Ελληνικά) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1032) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (Русский) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1049) (Version: 4.6.01055 - Корпорация Майкрософт) Microsoft .NET Framework 4.6.1 ‏(עברית) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1037) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (العربية) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1025) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (한국어) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1042) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (日本語) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1041) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (简体中文) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 2052) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET-keretrendszer 4.6.1 (magyar) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1038) (Version: 4.6.01055 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office FrontPage 2003 (HKLM\...\{90170401-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation) MiniTool Partition Wizard Home Edition 7.8 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.) MiniTool Partition Wizard Professional Edition 9.1 (HKLM\...\{2991A446-D356-44EC-930A-42E8B02A67C0}_is1) (Version: - MiniTool Solution Ltd.) Mozilla Firefox 53.0 (x86 fr) (HKLM\...\Mozilla Firefox 53.0 (x86 fr)) (Version: 53.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 53.0.0.6312 - Mozilla) MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) Nik Collection (HKLM\...\Nik Collection) (Version: 1.2.11 - Google) NVIDIA 3D Vision Controller Driver 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation) NVIDIA 3D Vision Driver 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 342.01 - NVIDIA Corporation) NVIDIA GeForce Experience 3.2.0.96 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.2.0.96 - NVIDIA Corporation) NVIDIA Graphics Driver 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 342.01 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation) NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) NvNodejs (Version: 3.2.0.96 - NVIDIA Corporation) Hidden NvTelemetry (Version: 2.0.0.0 - NVIDIA Corporation) Hidden Octoshape Streaming Services (HKU\S-1-5-21-2196797711-3197828652-2754627983-1000\...\Octoshape Streaming Services) (Version: - Octoshape ApS) PDF Settings (Version: 1.0 - Adobe Systems Incorporated) Hidden PDF Settings CS5 (Version: 10.0 - Adobe Systems Incorporated) Hidden pdfFactory Pro (HKLM\...\pdfFactory Pro) (Version: 4.80 - FinePrint Software, LLC) PlayReady PC Runtime x86 (HKLM\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation) Quick 3D Cover 2.0.1 (HKLM\...\Quick 3D Cover_is1) (Version: - Nervepreserve.com) Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7071 - Realtek Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform) RogueKiller version 12.9.0.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.9.0.0 - Adlice Software) SHIELD Streaming (Version: 7.1.0350 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 3.2.0.96 - NVIDIA Corporation) Hidden Skype Click to Call (HKLM\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) SnagIt 9 (HKLM\...\{59991D18-A988-45AB-B1BF-5ADE6E64CD3F}) (Version: 9.0.0 - TechSmith Corporation) SWiSH Max4 4.0 (HKLM\...\SWiSH Max4 4.0) (Version: - ) swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden TeamViewer 12 (HKLM\...\TeamViewer) (Version: 12.0.77242 - TeamViewer) Topaz InFocus (HKLM\...\Topaz InFocus) (Version: 1.0.0 - Topaz Labs) Topaz InFocus (Version: 1.0.0 - Topaz Labs) Hidden Topaz Adjust 4 (HKLM\...\Topaz Adjust 4) (Version: 4.1.0 - Topaz Labs) Topaz Adjust 4 (Version: 4.1.0 - Topaz Labs) Hidden Topaz Clean 3 (HKLM\...\Topaz Clean 3) (Version: 3.0.2 - Topaz Labs) Topaz Clean 3 (Version: 3.0.2 - Topaz Labs) Hidden Topaz DeJpeg 4 (HKLM\...\Topaz DeJpeg 4) (Version: 4.0.2 - Topaz Labs) Topaz DeJpeg 4 (Version: 4.0.2 - Topaz Labs) Hidden Topaz DeNoise 5 (HKLM\...\Topaz DeNoise 5) (Version: 5.0.1 - Topaz Labs) Topaz DeNoise 5 (Version: 5.0.1 - Topaz Labs) Hidden Topaz Detail 2 (HKLM\...\Topaz Detail 2) (Version: 2.0.5 - Topaz Labs) Topaz Detail 2 (Version: 2.0.5 - Topaz Labs) Hidden Topaz Fusion Express 2 (HKLM\...\Topaz Fusion Express 2) (Version: 2.0.1 - Topaz Labs) Topaz Fusion Express 2 (Version: 2.0.1 - Topaz Labs) Hidden Topaz ReMask 2 (HKLM\...\Topaz ReMask 2) (Version: 2.0.5 - Topaz Labs) Topaz ReMask 2 (Version: 2.0.5 - Topaz Labs) Hidden Topaz Simplify 3 (HKLM\...\Topaz Simplify 3) (Version: 3.0.2 - Topaz Labs) Topaz Simplify 3 (Version: 3.0.2 - Topaz Labs) Hidden Topaz Vivacity (HKLM\...\{C13A8E73-7E98-4295-BA94-6931701CD1F9}) (Version: 1.3.1 - Topaz Labs LLC) True BoxShot V1.8 (HKLM\...\True BoxShot_is1) (Version: 1.8.0.185 - www.trueboxshot.com) VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN) WinRAR 5.30 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH) WinSoftMEsti (Version: 0.1 - Adobe Systems Incorporated) Hidden Xara 3D Maker 7 (HKLM\...\MAGIX_MSI_Xara3D7) (Version: 7.0.0.415 - Xara Group Ltd) Xara 3D Maker 7 (Version: 7.0.0.415 - Xara Group Ltd) Hidden ZHPFix 2015 (HKLM\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-2196797711-3197828652-2754627983-1000_Classes\CLSID\{0BBFE402-CCA1-4f64-9322-13B66D841049}\InprocServer32 -> C:\Users\chakiche mohamed\AppData\Local\TechSmith\SnagIt\Accessories\{23102CBF-AC8D-4424-9364-A79738894850}\MSWord.dll (TechSmith Corporation) CustomCLSID: HKU\S-1-5-21-2196797711-3197828652-2754627983-1000_Classes\CLSID\{25D005BF-FE63-4cce-AA25-CE952B1D9381}\InprocServer32 -> C:\Users\chakiche mohamed\AppData\Local\TechSmith\SnagIt\Accessories\{638B203F-8FB6-49ec-A139-AB8C530F0CAB}\MSPowerPoint.dll (TechSmith Corporation) CustomCLSID: HKU\S-1-5-21-2196797711-3197828652-2754627983-1000_Classes\CLSID\{6B1948B3-9547-42F8-9B37-7AA9768134C4}\InprocServer32 -> C:\Users\chakiche mohamed\AppData\Local\TechSmith\SnagIt\Accessories\{23102CBF-AC8D-4424-9364-A79738894850}\MSWord.dll (TechSmith Corporation) CustomCLSID: HKU\S-1-5-21-2196797711-3197828652-2754627983-1000_Classes\CLSID\{7D4733C0-C43B-4A81-AF43-F9B20D1F8348}\InprocServer32 -> C:\Users\chakiche mohamed\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1702150-0-apoctoshape.dll (Octoshape ApS) CustomCLSID: HKU\S-1-5-21-2196797711-3197828652-2754627983-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0579A68F-7C6A-41BF-9BE6-96BAA4CE09A2} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [2016-07-11] (AO Kaspersky Lab) Task: {0A1DDCB1-7D56-4AAE-AEA0-457361A9AFB5} - \{D199F0EA-C7BE-47D3-B5D8-0BF0F48EF724} -> No File <==== ATTENTION Task: {1022CF2F-23A2-4397-A32B-B79F19CEA78E} - \NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION Task: {30087C8C-2225-483C-B69B-FF720B31BEFD} - System32\Tasks\{C4B6C3A1-0720-4F62-80AC-823DC591082F} => pcalua.exe -a "C:\Users\chakiche mohamed\Desktop\EmbratoriaG6.5\EmbratoriaG6.exe" -d "C:\Users\chakiche mohamed\Desktop\EmbratoriaG6.5" Task: {4AC2D0B3-DDFC-4CF0-972A-E5E1B5689224} - \{B4FF7BA1-DD19-416F-9810-3871F3B9A6A8} -> No File <==== ATTENTION Task: {67CE48FA-A20B-4E95-8451-A993DBF3F5E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-09-22] (Google Inc.) Task: {85CA2040-0416-4629-84F6-D8782E02A57B} - \NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION Task: {AC4B05C6-CF48-4E53-9DA7-E30DC0A660F0} - \NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION Task: {BA6F761D-B235-4143-84A4-49312BD87EF8} - \NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION Task: {D443E965-E3C5-4E4F-8A94-982F4A1B0749} - \{426E2FBB-D54D-449A-9082-025DEDEECA82} -> No File <==== ATTENTION Task: {EC0324EA-331D-412F-BA71-ED822B2F3EE8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-04] (Adobe Systems Incorporated) Task: {F36CCC13-DD34-4917-81B4-891DDA059D70} - \{F399B2C0-79D5-4A2F-848C-8DD73EC953BF} -> No File <==== ATTENTION Task: {F42EC359-AB31-4D72-997E-F4E35B67E3A8} - \NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION Task: {F601B802-FD74-4070-8FA9-79413ACC6A27} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-09-22] (Google Inc.) Task: {FA1BA7A6-7541-4AE9-A271-9DEAFE1D1C30} - \NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION Task: {FEDDEAC9-58BA-4BB3-833E-02B5FAA55F1E} - \AdobeAAMUpdater-1.0-chakichemohamed-chakiche mohamed -> No File <==== ATTENTION (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Shortcuts ============================= (The entries could be listed to be restored or removed.) ==================== Loaded Modules (Whitelisted) ============== 2015-12-07 17:32 - 2004-10-06 02:31 - 00050364 _____ () C:\Windows\System32\zarpdfmon.dll 2015-12-07 17:32 - 2005-05-24 15:28 - 00045056 _____ () C:\Windows\System32\ZARPDF.dll 2015-10-19 18:35 - 2016-11-14 13:00 - 00123448 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll 2016-06-28 01:19 - 2016-06-28 01:19 - 00865232 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\kpcengine.2.3.dll 2016-10-25 09:57 - 2016-10-25 09:57 - 00407216 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll 2016-08-18 11:47 - 2016-12-13 01:35 - 00900032 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-08-18 11:47 - 2016-12-13 01:35 - 03774400 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll 2016-08-18 11:47 - 2016-12-13 01:35 - 00018880 _____ () C:\Program Files\NVIDIA Corporation\Update Core\detoured.dll 2017-05-03 21:39 - 2017-03-22 10:24 - 01736992 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll 2017-03-14 08:31 - 2017-03-14 08:31 - 52051544 _____ () C:\Program Files\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll 2016-10-25 09:57 - 2016-10-25 09:57 - 31723696 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe 2017-01-25 20:07 - 2017-01-25 20:07 - 00118272 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node 2017-01-25 20:07 - 2017-01-25 20:07 - 00214528 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node 2017-01-25 20:06 - 2017-01-25 20:06 - 00117248 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node 2017-01-25 20:07 - 2017-01-25 20:07 - 00125952 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node 2017-03-14 08:35 - 2017-03-14 08:35 - 00110680 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll 2017-01-25 20:07 - 2017-01-25 20:07 - 00086528 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node 2017-02-23 18:13 - 2017-02-23 18:13 - 00118272 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\fs-ext\build\Release\fs-ext.node 2017-02-23 18:13 - 2017-02-23 18:13 - 00117760 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ref\build\Release\binding.node 2017-02-23 18:13 - 2017-02-23 18:13 - 00125440 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ffi\build\Release\ffi_bindings.node 2017-02-23 18:13 - 2017-02-23 18:13 - 00214528 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node 2017-03-14 08:29 - 2017-03-14 08:29 - 00110680 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll 2017-02-23 18:13 - 2017-02-23 18:13 - 00098816 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\bufferutil\build\Release\bufferutil.node 2017-02-23 18:13 - 2017-02-23 18:13 - 00086528 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\idle-gc\build\Release\idle-gc.node ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Windows:nlsPreferences [0] AlternateDataStreams: C:\ProgramData\TEMP:C22674B6 [116] ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:04 - 2016-10-12 23:22 - 00000160 ____R C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1# activation.cloud.techsmith.com 127.0.0.1 activation.cloud.techsmith.com 127.0.0.1 l.heouts.com 127.0.0.1 l.heouts.com ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2196797711-3197828652-2754627983-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\chakiche mohamed\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: ) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{B329C2C2-D24F-4D82-8964-49CE2B1F4A75}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe FirewallRules: [{B9C87C4A-38A2-4965-9727-2984AEC46EEA}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe FirewallRules: [{05BB475C-1C05-42F7-BCF9-35C690DADD03}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe FirewallRules: [{3F3F00D8-06E1-4727-A178-D38A09E12539}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe FirewallRules: [TCP Query User{7EE26A01-C2ED-4768-9029-84FF32A302C9}C:\program files\internet download manager\iemonitor.exe] => (Allow) C:\program files\internet download manager\iemonitor.exe FirewallRules: [UDP Query User{6816FD35-98D1-4572-9474-856CBE29DFCD}C:\program files\internet download manager\iemonitor.exe] => (Allow) C:\program files\internet download manager\iemonitor.exe FirewallRules: [TCP Query User{84B12568-902D-4461-92CA-6BB3BE97D92C}C:\windows\system32\dwm.exe] => (Block) C:\windows\system32\dwm.exe FirewallRules: [UDP Query User{CC19D126-7C7C-433A-B8E8-D33D8AF410A9}C:\windows\system32\dwm.exe] => (Block) C:\windows\system32\dwm.exe FirewallRules: [{4D6EB727-49C1-4982-BDEE-F6769DEED677}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{51C221CB-E87E-4563-973A-2F7BF8A275F3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{9288D28D-5184-4699-B669-9C1C262D9A39}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{EB8566AC-1AF3-4C15-AD88-C574E340F250}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{31931FA2-D19E-4405-B89E-425C6182CC9B}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [{D7C91A87-E0C3-415D-8428-904523829FB5}] => (Allow) LPort=8317 FirewallRules: [TCP Query User{EF6F18B9-F7BB-401D-867D-15C0DE0FA348}C:\users\chakiche mohamed\desktop\newdestv2.1\mainplug.ocx] => (Allow) C:\users\chakiche mohamed\desktop\newdestv2.1\mainplug.ocx FirewallRules: [UDP Query User{CC286A94-C821-488E-ABA0-0D6BB4EC5265}C:\users\chakiche mohamed\desktop\newdestv2.1\mainplug.ocx] => (Allow) C:\users\chakiche mohamed\desktop\newdestv2.1\mainplug.ocx FirewallRules: [{20EF907F-F2CC-45C6-AAA5-F01B85A949D3}] => (Block) C:\users\chakiche mohamed\desktop\newdestv2.1\mainplug.ocx FirewallRules: [{BD7E7121-1AD0-4490-9A04-BAE25134C7F9}] => (Block) C:\users\chakiche mohamed\desktop\newdestv2.1\mainplug.ocx FirewallRules: [{9EA96067-5D10-414B-A1D0-65DA0C0166C4}] => (Allow) LPort=5000 FirewallRules: [{4D4D9CA2-EA82-4402-ADD9-50000170BF34}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{CAC4C7FA-B512-4C2B-B035-708F6C4E9806}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{9901828C-6580-4AAF-8742-5572034CE557}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{8CB4BAB2-6328-4D0A-8A3F-B41A4AB991FB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{1C7635FE-CA15-4933-9722-B5C2A6FE1BAC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{A7DDED52-8082-4141-8B3E-73A66780C5F5}] => (Allow) LPort=5000 FirewallRules: [{A95CE699-5906-49DB-A835-E8F4FB99079F}] => (Allow) C:\Users\chakiche mohamed\Desktop\EmbratoriaG6.5.2\libs.exe FirewallRules: [{37300C68-89F2-46C6-B1BC-A8E8BFB9341D}] => (Allow) C:\Users\chakiche mohamed\Desktop\EmbratoriaG6.5.2\libs.exe FirewallRules: [{5620425B-53D9-4EFA-99BA-F7D8B0AEE2EF}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe FirewallRules: [{A5D70B89-964F-403E-BD20-E9DC7B71EC77}] => (Allow) C:\Users\chakiche mohamed\Desktop\EmbratoriaG6.5.2\libs.exe FirewallRules: [{23F94675-7582-45EA-BB4C-36B52D9A182C}] => (Allow) C:\Users\chakiche mohamed\Desktop\EmbratoriaG6.5.2\libs.exe FirewallRules: [{BA633241-C58B-401F-8EA2-FC960CCFFFE5}] => (Allow) C:\Users\chakiche mohamed\Desktop\EmbratoriaG7\libs.exe FirewallRules: [{296CA1C0-D451-4357-92FC-DF9F94E370D3}] => (Allow) C:\Users\chakiche mohamed\Desktop\EmbratoriaG7\libs.exe FirewallRules: [{44D6DE68-2711-43C5-82EB-13FC6108171C}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe FirewallRules: [{C2AC4170-CF60-4E40-856C-DCA46027F9E4}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe FirewallRules: [{D1713B70-F6D9-44FC-AB20-D4C7B525D8B8}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe FirewallRules: [{F7281ACB-1061-49A6-BDF5-7ACC52AF5DD1}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe ==================== Restore Points ========================= 28-04-2017 23:21:14 Windows Update 29-04-2017 21:26:47 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 29-04-2017 21:29:59 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 02-05-2017 16:44:34 Windows Update ==================== Faulty Device Manager Devices ============= Name: Teredo Tunneling Pseudo-Interface Description: Microsoft Teredo Tunneling Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (05/04/2017 06:17:02 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Activation context generation failed for "c:\program files\minitool partition wizard professional edition 9.1\x64\PartitionWizard.exe".Error in manifest or policy file "c:\program files\minitool partition wizard professional edition 9.1\x64\Microsoft.VC90.CRT.MANIFEST" on line 4. Component identity found in manifest does not match the identity of the component requested. Reference is Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.30729.4148". Definition is Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8". Please use sxstrace.exe for detailed diagnosis. Error: (05/04/2017 06:09:37 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (05/03/2017 10:43:23 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (05/03/2017 06:40:29 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (05/03/2017 04:06:16 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Activation context generation failed for "c:\program files\minitool partition wizard professional edition 9.1\x64\PartitionWizard.exe".Error in manifest or policy file "c:\program files\minitool partition wizard professional edition 9.1\x64\Microsoft.VC90.CRT.MANIFEST" on line 4. Component identity found in manifest does not match the identity of the component requested. Reference is Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.30729.4148". Definition is Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8". Please use sxstrace.exe for detailed diagnosis. Error: (05/03/2017 04:02:16 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (05/03/2017 07:56:10 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (05/02/2017 04:51:20 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Activation context generation failed for "c:\program files\minitool partition wizard professional edition 9.1\x64\PartitionWizard.exe".Error in manifest or policy file "c:\program files\minitool partition wizard professional edition 9.1\x64\Microsoft.VC90.CRT.MANIFEST" on line 4. Component identity found in manifest does not match the identity of the component requested. Reference is Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.30729.4148". Definition is Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8". Please use sxstrace.exe for detailed diagnosis. Error: (05/02/2017 04:40:13 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (05/01/2017 08:18:02 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. System errors: ============= Error: (05/04/2017 06:09:47 PM) (Source: Microsoft-Windows-Eventlog) (EventID: 23) (User: NT AUTHORITY) Description: The event logging service encountered an error (res=32) while initializing logging resources for channel Microsoft-Windows-HomeGroup Provider Service/Operational. Error: (05/04/2017 06:08:25 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: VBoxNetAdp Error: (05/04/2017 06:07:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Intel AGP Bus Filter service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it. Error: (05/03/2017 10:42:31 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: VBoxNetAdp Error: (05/03/2017 10:41:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Intel AGP Bus Filter service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it. Error: (05/03/2017 06:40:31 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: VBoxNetAdp Error: (05/03/2017 06:38:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Intel AGP Bus Filter service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it. Error: (05/03/2017 06:38:33 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: The previous system shutdown at 6:33:38 PM on ‎5/‎3/‎2017 was unexpected. Error: (05/03/2017 04:00:48 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: VBoxNetAdp Error: (05/03/2017 04:00:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Intel AGP Bus Filter service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it. ==================== Memory info =========================== Processor: Intel(R) Pentium(R) CPU G2030 @ 3.00GHz Percentage of memory in use: 63% Total physical RAM: 3563.88 MB Available physical RAM: 1289.25 MB Total Virtual: 7126.09 MB Available Virtual: 3971.48 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:150.05 GB) (Free:47.85 GB) NTFS Drive d: (Local Disk) (Fixed) (Total:195.31 GB) (Free:92.53 GB) NTFS Drive e: (Local Disk) (Fixed) (Total:195.31 GB) (Free:48.76 GB) NTFS Drive f: (Local Disk) (Fixed) (Total:195.18 GB) (Free:73.1 GB) NTFS Drive g: (Local Disk) (Fixed) (Total:195.31 GB) (Free:159.53 GB) NTFS Drive h: (My Disc) (CDROM) (Total:4.25 GB) (Free:0 GB) CDFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 934D578B) Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=150 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=195.3 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=585.8 GB) - (Type=OF Extended) ==================== End of Addition.txt ============================