Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03.03.2019 01
Ran by Firas (04-03-2019 19:02:49)
Running from C:\Users\Firas\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2015-11-26 15:43:52)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1649961678-2545274511-965344067-500 - Administrator - Disabled)
ASPNET (S-1-5-21-1649961678-2545274511-965344067-1004 - Limited - Enabled)
Firas (S-1-5-21-1649961678-2545274511-965344067-1000 - Administrator - Enabled) => C:\Users\Firas
Guest (S-1-5-21-1649961678-2545274511-965344067-501 - Limited - Enabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-1649961678-2545274511-965344067-1006 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

. . (HKLM\...\{12B07FF1-29CB-45AC-B493-1DB88BE717BD}) (Version: 7.1 - Intel) Hidden
. . . (HKLM-x32\...\{C01175B6-6575-4526-A55B-2BC2F10BA083}) (Version: 2.7.2.4 - Intel) Hidden
µTorrent (HKU\S-1-5-21-1649961678-2545274511-965344067-1000\...\uTorrent) (Version: 3.4.8.42576 - BitTorrent Inc.)
3D Driving-School (HKLM-x32\...\3D Driving-School) (Version: - )
3D Driving-School Demo (HKLM-x32\...\3D Driving-School Demo) (Version: - )
3EMETST (HKLM-x32\...\3EMETST) (Version: - )
4EMETST (HKLM-x32\...\4EMETST) (Version: - )
ABViewer 11 x64 (HKLM\...\ABViewer 11_is1) (Version: 11.1.0.14 - CADSoftTools ®.)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated)
Adobe Flash Player 25 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated)
Adobe Reader X (10.1.16) - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AA1000000001}) (Version: 10.1.16 - Adobe Systems Incorporated)
Age of Empires II HD (c) Microsoft Studios version 1 (HKLM-x32\...\QWdlIG9mIEVtcGlyZXMgSUkgSEQgKGMpIE1pY3Jvc29mdCBTdHVkaW9z_is1) (Version: 1 - )
Aide PDF to DWG Converter 11.0 (HKLM-x32\...\Aide PDF to DWG Converter_is1) (Version: - Aide CAD Systems Incorporated.)
Arduino (HKLM-x32\...\Arduino) (Version: 1.8.8 - Arduino LLC)
AutoCAD 2005 - English (HKLM-x32\...\{5783F2D7-0301-0409-0002-0060B0CE6BBA}) (Version: 16.1.63.10 - Autodesk)
Autodesk DWF Viewer (HKLM-x32\...\Autodesk DWF Viewer) (Version: 4.1 - Autodesk, Inc.)
Automation Studio 5.2 (HKLM-x32\...\{DDBC01E8-B874-4C62-930C-4B3B6DDBAE31}) (Version: 5.2.0.206 - Famic Technologies Inc.) Hidden
Automation Studio 5.2 (HKLM-x32\...\InstallShield_{DDBC01E8-B874-4C62-930C-4B3B6DDBAE31}) (Version: 5.2.0.206 - Famic Technologies Inc.)
Automation Studio Professional Edition - 32-bit (HKLM-x32\...\{3A64F3AB-F952-47AE-957C-ED02DDCE1F63}) (Version: 6.0.0.10932 - Famic Technologies Inc.) Hidden
Automation Studio Professional Edition - 32-bit (HKLM-x32\...\InstallShield_{3A64F3AB-F952-47AE-957C-ED02DDCE1F63}) (Version: 6.0.0.10932 - Famic Technologies Inc.)
AUTOMGEN V8.118 (c)IRAI (HKLM-x32\...\AUTOMGEN8.118) (Version: - )
Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 19.1.2360 - AVAST Software)
Bus Simulator 16 (HKLM\...\YnVzc2ltdWxhdG9yMTY_is1) (Version: 1 - )
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision)
Car.Mechanic.Simulator.2015.Gold.v1.1.0.2.ALL.DLC version 1.1.0.2 (HKLM-x32\...\{051F2C21-C8AF-4920-96AF-7D380C85E185}}_is1) (Version: 1.1.0.2 - Ali213.net)
Cheat Engine 6.7 (HKLM-x32\...\Cheat Engine 6.7_is1) (Version: - Cheat Engine)
ChronoSoft 1.0 (HKLM-x32\...\ChronoSoft_is1) (Version: - MecaTools)
Cities Skylines Mass Transit (HKLM-x32\...\Cities Skylines Mass Transit_is1) (Version: - )
CorrecteurSoft 1.0 (bêta) (HKLM-x32\...\CorrecteurSoft_is1) (Version: - MecaTools)
Cotation version 1.24 (HKLM-x32\...\Cotation_is1) (Version: - )
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0230 - Disc Soft Ltd)
DAEMON Tools Ultra (HKLM-x32\...\DAEMON Tools Ultra) (Version: 2.4.0.0280 - Disc Soft Ltd)
DetectMvtSoft 1.1 (HKLM-x32\...\DetectMvtSoft_is1) (Version: - MecaTools)
DetectSWSoft 1.3 (HKLM-x32\...\DetectSWSoft_is1) (Version: - MecaTools)
DriversCloud.com (64 bits) (HKLM\...\{C514B5EE-C8E6-43C9-AFB9-6C1A7B3429E1}) (Version: 10.0.4.0 - Cybelsoft)
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS)
Electronics Workbench V5.12 (HKLM-x32\...\Electronics_Workbench_V5) (Version: - )
Epic Games Launcher (HKLM-x32\...\{A17FC61C-F723-4856-9116-3087712BCB11}) (Version: 1.1.167.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epson Easy Photo Print 2 (HKLM-x32\...\{07AA1C7F-E8CA-4FDC-B975-BC9EBC22B6DE}) (Version: 2.7.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{E244A764-EDD0-46B0-8689-661F6B28D9E5}) (Version: 3.10.0069 - Seiko Epson Corporation)
EPSON L382 Series Printer Uninstall (HKLM\...\EPSON L382 Series) (Version: - Seiko Epson Corporation)
Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.)
Epson Software Updater (HKLM-x32\...\{82B94253-3FBC-4779-B3BF-C690AD54AFDB}) (Version: 4.4.0 - SEIKO EPSON CORPORATION)
Euro Truck Simulator 2 (HKLM-x32\...\{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1) (Version: 1.1.1 - SCS Software)
Farming Simulator 15 GPR Repack version 1.0.0.0 (HKLM-x32\...\Farming Simulator 15 GPR Repack_is1) (Version: 1.0.0.0 - Focus Home Interactive)
Flowcode v8 (HKLM-x32\...\{DF230E88-A97C-427B-A622-DDD6D958F0AD}) (Version: 8.1.0 - Matrix TSL)
FluidSIM 4.2n Pneumatique Version démo (HKLM-x32\...\FluidSIM 4.2n Pneumatique Version démo) (Version: - )
GDVSoft 3.6 (HKLM-x32\...\GDVSoft_is1) (Version: - MecaTools)
GetDataBack for NTFS (HKLM-x32\...\{56582EEA-3AEF-4D84-8B9D-C87A3CD9250F}) (Version: 4.33.000 - Runtime Software)
Google Chrome (HKU\S-1-5-21-1649961678-2545274511-965344067-1000\...\Google Chrome) (Version: 72.0.3626.119 - Google Inc.)
HI-TECH C Compiler for the PIC10/12/16 MCUs V9.82PL0 (HKLM-x32\...\PICC 9.82) (Version: 9.82 - HI-TECH Software)
HI-TECH C51-lite V9.60PL0 (HKLM-x32\...\HC51 9.60PL0) (Version: 9.60 - HI-TECH Software)
Intel(R) Chipset Device Software (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1153 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4156 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{954190cd-c66c-4650-bd15-f3dd85f2ae15}) (Version: 2.7.2.4 - Intel)
Intel® PROSet/Wireless Software (HKLM-x32\...\{d9e230c1-06bb-4b78-a9f1-c1ddce14e6fc}) (Version: 18.11.0 - Intel Corporation)
Internet Everywhere (HKLM-x32\...\InternetEverywhere) (Version: 4.0.7.1 - Internet Everywhere)
Java 7 Update 17 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217017FF}) (Version: 7.0.170 - Oracle)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LE PROGRES 1 (HKLM-x32\...\LE PROGRES 1) (Version: - )
LiaisonSoft 2.3 (HKLM-x32\...\LiaisonSoft_is1) (Version: - MecaTools)
LoadLeader (HKLM-x32\...\LoadLeader) (Version: - )
Logiciels National Instruments (HKLM-x32\...\NI Uninstaller) (Version: - National Instruments)
Manuels EPSON (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.54.0.0 - Seiko Epson Corporation)
Math Kernel Libraries (64-bit) (HKLM\...\{70107084-C0AE-49B7-B588-C64901E546C3}) (Version: 15.0.6 - National Instruments) Hidden
Math Kernel Libraries (64-bit) (HKLM\...\{95E4D734-E2AC-46BD-A0D7-B8E1AD1C0D2E}) (Version: 14.0.6 - National Instruments) Hidden
Math Kernel Libraries (HKLM-x32\...\{ECB572E6-5CE3-4E9E-B1B3-16A00E02153A}) (Version: 15.0.6 - National Instruments) Hidden
Math Kernel Libraries (HKLM-x32\...\{FDF32877-3B6C-4D67-81A3-7857CBAF4110}) (Version: 14.0.6 - National Instruments) Hidden
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.7.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft Access database engine 2010 (English) (HKLM-x32\...\{90140000-00D1-0409-0000-0000000FF1CE}) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.6213.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Report Viewer 2015 Runtime (HKLM-x32\...\{57248933-3848-4548-B90D-991837C9E3C1}) (Version: 12.0.2402.15 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{718FFB65-F6E4-4D62-861F-ED10ED32C936}) (Version: 12.0.2402.11 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{b3c7f59f-dc40-4be9-829c-77dd292978ea}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version: - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Applications - ENU (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Applications - ENU) (Version: - Microsoft Corporation)
mikroPascal PRO for PIC (remove only) (HKLM-x32\...\mikroPascal PRO for PIC) (Version: 6.6.1.0 - mikroElektronika)
Minecraft1.9 (HKLM-x32\...\Minecraft1.9) (Version: - )
Minimal ADB and Fastboot version 1.0 (HKLM-x32\...\{D527C0FA-5723-43BB-9152-8CE441E5AEC9}_is1) (Version: 1.0 - Sam Rodberg)
Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft)
Mise à jour Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{51EFB347-1F3D-4BAC-8B79-F056B904FE21}) (Version: - Microsoft)
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft)
Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft)
Mobile Broadband HL Service (HKLM-x32\...\Mobile Broadband HL Service) (Version: 22.001.25.00.03 - Huawei Technologies Co.,Ltd)
MontageRadial 1.0 (HKLM-x32\...\MontageRadial_is1) (Version: - MecaTools)
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 57.0 (x64 fr) (HKLM\...\Mozilla Firefox 57.0 (x64 fr)) (Version: 57.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 57.0.0.6525 - Mozilla)
MyEpson Portal (HKLM-x32\...\{3361D415-BA35-4143-B301-661991BA6219}) (Version: 1.1.2.2 - SEIKO EPSON CORPORATION) Hidden
MyEpson Portal (HKLM-x32\...\MyEpson Portal) (Version: - SEIKO EPSON Corporation)
MyPublicWiFi 5.1 (HKLM-x32\...\{C08D782B-9281-406B-ABCE-326DA70B8A1F}_is1) (Version: - TRUE Software)
Need for Speed™ Rivals (HKLM-x32\...\{E0A32336-AA27-4053-99B2-C3380B7B95AC}) (Version: 1.3.0.0 - Electronic Arts)
NI .NET Framework 4.0 (HKLM-x32\...\{0C43BB65-C604-4D94-A83A-54DCB42780B8}) (Version: 4.01.49154 - National Instruments) Hidden
NI ActiveX Container (64-bit) (HKLM\...\{14BAF455-4623-4703-906D-7FBE49E7ED23}) (Version: 14.0.5 - National Instruments) Hidden
NI ActiveX Container (HKLM-x32\...\{B3B56C15-80A8-4972-90CB-D80E64B3F39C}) (Version: 14.0.5 - National Instruments) Hidden
NI Authentication 2015 (64-bit) (HKLM\...\{87812371-5C6C-4DA7-AE94-0924B91F917F}) (Version: 15.0.333 - National Instruments) Hidden
NI Authentication 2015 (HKLM-x32\...\{B192D9BC-8D11-4E67-B9CF-8276A7F86162}) (Version: 15.0.333 - National Instruments) Hidden
NI Circuit Design Suite 14.0.1 Core (HKLM-x32\...\{AC8D25B7-6A44-4626-B1EB-938C164C9061}) (Version: 14.0.1081 - National Instruments) Hidden
NI Circuit Design Suite 14.0.1 Edu Licenses (HKLM-x32\...\{F03A51A4-4BCA-43CE-8FCE-124E67F79F25}) (Version: 14.0.1062 - National Instruments) Hidden
NI Circuit Design Suite 14.0.1 Education (HKLM-x32\...\{28DFF347-CF68-42C3-8FD0-DE348C898EDC}) (Version: 14.0.1064 - National Instruments) Hidden
NI Circuit Design Suite Databases (HKLM-x32\...\{3AA16013-B908-49DC-9362-DCB997E4CFA5}) (Version: 14.0.1069 - National Instruments) Hidden
NI Curl 15.0.0 (64-bit) (HKLM\...\{7F805F1F-7E86-4D39-9BB5-1F7C6B06F316}) (Version: 15.0.358 - National Instruments) Hidden
NI Curl 2015 (HKLM-x32\...\{3830A103-2D39-4801-927B-BD0C5BC78DC2}) (Version: 15.0.358 - National Instruments) Hidden
NI Error Reporting 2015 (HKLM-x32\...\{E2CE95AB-C5E2-4FFD-8C73-F1FBF9B37B06}) (Version: 15.0.323 - National Instruments) Hidden
NI Error Reporting Interface 15.0 (HKLM-x32\...\{D320E3F9-EEEB-42E1-B0A8-65BF551AC00C}) (Version: 15.0.346 - National Instruments) Hidden
NI Error Reporting Interface 15.0 for Windows (64-bit) (HKLM\...\{3BC298BF-AD07-46EE-BF1B-1272BD555799}) (Version: 15.0.346 - National Instruments) Hidden
NI EulaDepot (HKLM-x32\...\{5C64A7DF-0237-4679-848D-C94BB0AD429A}) (Version: 15.0.238 - National Instruments) Hidden
NI Example Finder 15.0 (HKLM-x32\...\{8092A8E6-7591-43E5-A07D-4495632E04FF}) (Version: 15.0.148 - National Instruments) Hidden
NI Help Assistant 2.0 (64bit) (HKLM\...\{DDAAADDD-C57E-4731-A29C-133191587488}) (Version: 2.0.3 - National Instruments) Hidden
NI Help Assistant 2.0 (HKLM-x32\...\{C9A0D47F-9A68-4917-868C-79E384E4DEE6}) (Version: 2.0.3 - National Instruments) Hidden
NI LabVIEW 2012 Real-Time NBFifo (HKLM-x32\...\{A072C4EB-6173-474C-B3AA-9C97896FC153}) (Version: 14.0.386 - National Instruments) Hidden
NI LabVIEW 2014 SP1 Run-Time Engine Web Server (HKLM-x32\...\{94F51393-59D2-48F4-830F-DFF41B1D64B6}) (Version: 14.5.5 - National Instruments) Hidden
NI LabVIEW 2015 Deployment Framework (HKLM-x32\...\{0B1DB673-4954-48D6-90B7-584AB57E1C93}) (Version: 15.0.340 - National Instruments) Hidden
NI LabVIEW 2015 Real-Time NBFifo (HKLM-x32\...\{B682E9AB-D9F8-4DE3-B103-0CE769835CE8}) (Version: 15.0.339 - National Instruments) Hidden
NI LabVIEW 2015 Run-Time Engine Web Server (HKLM-x32\...\{0815C7BF-1A46-4AD0-80D5-E509F9783E5B}) (Version: 15.0.521 - National Instruments) Hidden
NI LabVIEW Runtime 2014 SP1 f3 (HKLM-x32\...\{331B6132-FA2A-458D-828D-B0DA0237739A}) (Version: 14.1.105 - National Instruments) Hidden
NI LabVIEW Runtime 2014 SP1 Non-English Support. (HKLM-x32\...\{1B3ABFBF-D1D5-4B73-A1FE-7FDA9FB6582B}) (Version: 14.1.96 - National Instruments) Hidden
NI LabVIEW Runtime 2015 f3 (HKLM-x32\...\{4EF3405F-8AB1-4501-837B-E18A51A2C128}) (Version: 15.0.357 - National Instruments) Hidden
NI LabVIEW Runtime 2015 Non-English Support. (HKLM-x32\...\{D05E02DC-2305-4AAC-BC50-10032B317309}) (Version: 15.0.338 - National Instruments) Hidden
NI LabVIEW Runtime Interop 2014 (HKLM-x32\...\{DB1CA89F-0F99-4E1E-9C9D-CF582181B123}) (Version: 14.1.105 - National Instruments) Hidden
NI LabVIEW Runtime Interop 2015 (HKLM-x32\...\{FA5446F9-4B6A-4F2E-989B-326F075D6A70}) (Version: 15.0.357 - National Instruments) Hidden
NI LabWindows/CVI 2013 SP2 .NET Library (64-bit) (HKLM\...\{1015A47B-04AC-40BC-9002-78EB2B86B0EB}) (Version: 13.0.2278 - National Instruments) Hidden
NI LabWindows/CVI 2013 SP2 .NET Library (HKLM-x32\...\{EDDAF514-4A52-449B-B382-0B7D92A39F42}) (Version: 13.0.2278 - National Instruments) Hidden
NI LabWindows/CVI 2013 SP2 Analysis Library (64-bit) (HKLM\...\{E61BE539-EAA0-446D-9B32-8370F99A31A3}) (Version: 13.0.2278 - National Instruments) Hidden
NI LabWindows/CVI 2013 SP2 Analysis Library (HKLM-x32\...\{D5A43D6C-BA44-46AE-95BF-05ED13CD43D8}) (Version: 13.0.2278 - National Instruments) Hidden
NI LabWindows/CVI 2013 SP2 Low-Level Driver (Original) (HKLM-x32\...\{581A2852-67B2-4B83-B781-473A561DCC63}) (Version: 13.0.2278 - National Instruments) Hidden
NI LabWindows/CVI 2013 SP2 Low-Level Driver (Updated) (HKLM-x32\...\{5C33A68B-0E6B-4839-97B9-7A7896DB2404}) (Version: 13.0.2278 - National Instruments) Hidden
NI LabWindows/CVI 2013 SP2 Network Streams Library (64-bit) (HKLM\...\{C9533EB7-AE6E-4374-9BA9-DC9877624DF5}) (Version: 13.0.2278 - National Instruments) Hidden
NI LabWindows/CVI 2013 SP2 Network Streams Library (HKLM-x32\...\{E3CB6529-FC39-46E5-AC6D-A97DD2E1286F}) (Version: 13.0.2278 - National Instruments) Hidden
NI LabWindows/CVI 2013 SP2 Network Variable Library (64-bit) (HKLM\...\{CFB0239F-E3D1-4F56-A8F0-6532C84EA171}) (Version: 13.0.2278 - National Instruments) Hidden
NI LabWindows/CVI 2013 SP2 Network Variable Library (HKLM-x32\...\{72CB1B11-685B-405A-A8A0-5987CCD593A0}) (Version: 13.0.2278 - National Instruments) Hidden
NI LabWindows/CVI 2013 SP2 TDMS Library (64-bit) (HKLM\...\{729F2480-96E3-4260-B4F1-A3054A98645D}) (Version: 13.0.2278 - National Instruments) Hidden
NI LabWindows/CVI 2013 SP2 TDMS Library (HKLM-x32\...\{00BD6260-2A45-423C-9150-2D1516BD96B3}) (Version: 13.0.2278 - National Instruments) Hidden
NI LabWindows/CVI Run-Time Engine 2013 SP2 (Updated) (HKLM-x32\...\{23F01A4F-6BDA-4FFA-89A1-50D4EED0B3AE}) (Version: 13.0.2278 - National Instruments) Hidden
NI LabWindows/CVI Shared Run-Time Engine 2013 SP2 (64-bit) (HKLM\...\{0DA67E53-EE91-450C-8159-FA1F9B87D300}) (Version: 13.0.2278 - National Instruments) Hidden
NI LabWindows/CVI Shared Run-Time Engine 2013 SP2 (HKLM-x32\...\{D3C549FD-7DA5-440B-A1BC-DD92C898949A}) (Version: 13.0.2278 - National Instruments) Hidden
NI Launcher (HKLM-x32\...\{71788B17-562C-4B1F-A318-E1C5A8B534F8}) (Version: 15.0.191 - National Instruments) Hidden
NI License Manager (HKLM-x32\...\{2B2BC0C2-C36B-4DC9-9DAE-E003180470BD}) (Version: 3.7.73 - National Instruments) Hidden
NI Logos 5.7 (64-bit) (HKLM\...\{1DD41E51-8547-442F-9C66-40ACE8C017AA}) (Version: 5.7.281 - National Instruments) Hidden
NI Logos 5.7 (HKLM-x32\...\{024FAF36-B990-41BE-8B48-D850F5C8494C}) (Version: 5.7.281 - National Instruments) Hidden
NI Logos XT Support (HKLM-x32\...\{E42DC871-9F3D-4FCC-9722-4ABE047C63B1}) (Version: 5.7.280 - National Instruments) Hidden
NI Logos64 XT Support (HKLM\...\{76254C77-43F5-4D4B-AFE3-C1E942D67466}) (Version: 5.7.280 - National Instruments) Hidden
NI Math Kernel Libraries (HKLM-x32\...\{DB2C5648-700D-4AEF-83E1-70C72F0C34FA}) (Version: 1.0.861.0 - National Instruments) Hidden
NI MAX Remote Configuration 64-bit Installer 14.0 (HKLM\...\{ACA10C5D-9BDC-4CB0-A967-539C5B26D09F}) (Version: 14.00.49152 - National Instruments) Hidden
NI MAX Remote Configuration Installer 14.0 (HKLM-x32\...\{1A78FB9D-006A-4C5A-9481-0F95B664D70C}) (Version: 14.00.49152 - National Instruments) Hidden
NI MDF Support (HKLM-x32\...\{4ABCECAD-A59C-4FCA-8D4D-7C59242683A1}) (Version: 15.0.191 - National Instruments) Hidden
NI mDNS Responder 14.0 for Windows 64-bit (HKLM\...\{6E8CCE41-38E3-4815-8D9F-A8B502DACD41}) (Version: 14.00.49152 - National Instruments) Hidden
NI mDNS Responder 14.0.0 (HKLM-x32\...\{6CED5B26-5F59-4586-9EC0-3E92B5ECF76E}) (Version: 14.00.49152 - National Instruments) Hidden
NI Measurement Studio ComponentWorks 3D Graph (HKLM-x32\...\{F278392D-547E-4E67-AD1C-2576C2852B50}) (Version: 8.6.10603 - National Instruments) Hidden
NI MetaSuite Installer (HKLM-x32\...\{90CCC944-4161-47AA-BE19-AA58D3469B25}) (Version: 15.0.191 - National Instruments) Hidden
NI Multisim LabVIEW Interoperability Support 14.0.1 (HKLM-x32\...\{2E6152A5-BF71-477B-A705-650721102217}) (Version: 14.0.1044 - National Instruments) Hidden
NI Security Update (KB 67L8LCQW) (64-bit) (HKLM\...\{4A78D9E6-D349-4CCA-9295-45B12BE5BC6C}) (Version: 1.0.29.0 - National Instruments) Hidden
NI Security Update (KB 67L8LCQW) (HKLM-x32\...\{20124E21-206B-485F-838F-14BB88161045}) (Version: 1.0.29.0 - National Instruments) Hidden
NI Service Locator 2015 (HKLM-x32\...\{BF43E745-015C-422C-8CB9-9C4AF9E0147E}) (Version: 15.0.314 - National Instruments) Hidden
NI SSL LabVIEW RTE 2014 Support (HKLM-x32\...\{18CEFB7A-37B7-4030-88F6-98247801832F}) (Version: 14.0.376 - National Instruments) Hidden
NI SSL LabVIEW RTE 2015 Support (HKLM-x32\...\{CBB0B504-8175-43D0-ACFC-04A7875D5EB1}) (Version: 15.0.353 - National Instruments) Hidden
NI SSL Support (64-bit) (HKLM\...\{CDC250AB-486B-4DB2-A033-494BCEBF6DB0}) (Version: 15.0.352 - National Instruments) Hidden
NI SSL Support (HKLM-x32\...\{8FA5DFB9-33F5-4ADD-B0E2-350BAA0BABB5}) (Version: 15.0.352 - National Instruments) Hidden
NI System API Windows 32-bit 14.0.0 (HKLM-x32\...\{CA0115EE-37E0-46F1-B52E-8E113343A76D}) (Version: 14.0.302 - National Instruments) Hidden
NI System API Windows 64-bit 14.0.0 (HKLM\...\{D5781E6F-12AC-46ED-B8A0-E4B4066AB27F}) (Version: 14.0.302 - National Instruments) Hidden
NI System Logging Utilities (HKLM-x32\...\{607BAC56-66B2-4750-BC0F-271C2BE4DA01}) (Version: 1.0.92 - National Instruments) Hidden
NI System State Publisher (64-bit) (HKLM\...\{3B705D57-AD5E-46E3-B326-F156E248008C}) (Version: 15.0.335 - National Instruments) Hidden
NI System State Publisher (HKLM-x32\...\{E6891F9D-6730-4D5D-B513-1B70EDB84566}) (Version: 15.0.335 - National Instruments) Hidden
NI System Web Server 2015 (HKLM-x32\...\{7ED13A29-DFCB-492A-A9CF-933C8319CF3B}) (Version: 15.0.540 - National Instruments) Hidden
NI System Web Server Base 2015 (64-bit) (HKLM\...\{84FD8C69-0060-43A7-ADC9-597E7D94718B}) (Version: 15.0.469 - National Instruments) Hidden
NI System Web Server Base 2015 (HKLM-x32\...\{6BADAA41-E1A5-4F8C-B163-256C68DC7266}) (Version: 15.0.469 - National Instruments) Hidden
NI TDM Streaming 15.0 (64-bit) (HKLM\...\{FBF994EF-E331-4F4A-9F47-1F4065AF47E3}) (Version: 15.0.42 - National Instruments) Hidden
NI TDM Streaming 15.0 (HKLM-x32\...\{162B6CCB-140A-4B12-81EA-9875791A66B3}) (Version: 15.0.42 - National Instruments) Hidden
NI Trace Engine (64-bit) (HKLM\...\{D60C94AB-AF85-4499-9994-71E1A150B829}) (Version: 15.0.185 - National Instruments) Hidden
NI Trace Engine (HKLM-x32\...\{B236A8DA-789D-4DCF-8102-53D47FC2DEF7}) (Version: 15.0.185 - National Instruments) Hidden
NI Uninstaller (HKLM-x32\...\{7768E152-DF58-48FA-9AEC-074879E0A02E}) (Version: 15.0.191 - National Instruments) Hidden
NI Update Service 15.0 (64-bit) (HKLM\...\{DD0FD089-95C9-40CA-8E5F-C4110673BEC8}) (Version: 15.0.47 - National Instruments) Hidden
NI Update Service 15.0 (HKLM-x32\...\{CD65B71B-FD71-43E8-A700-6D5A54116B1D}) (Version: 15.0.47 - National Instruments) Hidden
NI USI 15.0.1 (HKLM-x32\...\{8897C6A1-B3D5-4333-BAE8-62FFC97D4F22}) (Version: 15.0.16118 - National Instruments) Hidden
NI USI 15.0.1 64-bit (HKLM\...\{A81D3973-AA2B-46AF-A881-3A4D9F0E1F50}) (Version: 15.0.16118 - National Instruments) Hidden
NI VC2008MSMs x64 (HKLM\...\{07E00E94-7A78-40FA-9BEF-71C190E98041}) (Version: 9.0.401 - National Instruments) Hidden
NI VC2008MSMs x86 (HKLM-x32\...\{E84997A1-4D6F-4C0B-B60D-F85B360D2666}) (Version: 9.0.401 - National Instruments) Hidden
NI VC2010SP1MSMs x64 (HKLM\...\{AFC5A844-CA3A-4566-89E7-3E24E6AFF9A3}) (Version: 10.0.100 - National Instruments) Hidden
NI VC2010SP1MSMs x86 (HKLM-x32\...\{F2273FA7-117C-43D7-BD59-00B025535442}) (Version: 10.0.100 - National Instruments) Hidden
NI Visual C++ 2008 Redistributable Package (HKLM-x32\...\{08505CC2-EA7F-4818-9C45-B74EDA7227F8}) (Version: 9.00.49152 - National Instruments) Hidden
NI Visual C++ 2010 Redistributable Package (HKLM-x32\...\{87E698D6-02AC-485E-A6BA-9194C94CC547}) (Version: 10.10.16385 - National Instruments) Hidden
NI Web Application Server 2015 (64-bit) (HKLM\...\{A476E7B2-FE60-4A7C-B687-18469764687F}) (Version: 15.0.517 - National Instruments) Hidden
NI Web Application Server 2015 (HKLM-x32\...\{23CE53CE-C0E0-4FC8-84C2-DB5556CC6A20}) (Version: 15.0.518 - National Instruments) Hidden
NI-Mesa (HKLM\...\{D43C46AB-57CC-48E4-83B1-514CDBF148A5}) (Version: 13.0.3 - National Instruments) Hidden
NI-Mesa (HKLM-x32\...\{7F93F26A-E5F7-4AE1-840F-F88DFE2DE3A5}) (Version: 13.0.3 - National Instruments) Hidden
NI-RPC 14.0.0f0 (HKLM-x32\...\{F2FD6CC8-82E5-4DD3-933A-DC7E0F636E55}) (Version: 14.00.49152 - National Instruments) Hidden
NI-RPC 14.0.0f0 for 64 Bit Windows (HKLM\...\{642EF411-1FD1-4AD3-8F9A-BA31E75C37AB}) (Version: 14.00.49152 - National Instruments) Hidden
Photoview 360 Network Render Client 2014 SP03 x64 Edition (HKLM\...\{83561930-B86E-416B-ADF2-E4EA2199BA6D}) (Version: 22.30.56 - SolidWorks Corporation) Hidden
PivotSoft 2.1 (HKLM-x32\...\PivotSoft_is1) (Version: - MecaTools)
Prison Architect (HKLM-x32\...\1441974651_is1) (Version: 2.6.0.9 - GOG.com)
Pro Evolution Soccer 2016 (HKLM-x32\...\UHJvRXZvbHV0aW9uU29jY2VyMjAxNg==_is1) (Version: 1 - )
Proteus 8 Professional (HKLM-x32\...\{3A2EB6EA-74F7-4D02-B883-77E0334F20D0}) (Version: 8.3.19906.0 - Labcenter Electronics)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.0 - Qualcomm Atheros)
Qualcomm Atheros QCA9377 Wireless LAN & Bluetooth Installer (HKLM-x32\...\{3241744A-BA36-41F0-B4AA-EF3946D00632}) (Version: 11.0.0022W - Qualcomm Atheros)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.65 - Qualcomm Atheros)
RapeLay (HKLM-x32\...\{CA31F991-DBD2-4DE1-B6D2-30105F23CBBC}) (Version: 1.03 - ILLUSION)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31214 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0033 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver and Utility (HKLM-x32\...\{0DF70CB6-553A-4C57-8E6D-87635EECFB78}) (Version: 1.00.0145 - REALTEK Semiconductor Corp.)
Revo Uninstaller 2.0.4 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.4 - VS Revo Group, Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
SchemaSoft-Exercice-le1 (HKLM-x32\...\SchemaSoft-Exercice-le1_is1) (Version: - MecaTools)
SchemaSoft-Exercice-le2 (HKLM-x32\...\SchemaSoft-Exercice-le2_is1) (Version: - MecaTools)
SchemaSoft-Exercice-pdt (HKLM-x32\...\SchemaSoft-Exercice-pdt_is1) (Version: - MecaTools)
SD Card Recovery (HKLM-x32\...\{09907A60-5843-4E83-A471-3102A42231B8}_is1) (Version: - LC Technology International, Inc.)
Sentinel Protection Installer 7.6.6 (HKLM-x32\...\{8C2218AC-D1B1-4530-9E67-15164E0E52AB}) (Version: 7.6.6 - SafeNet, Inc.)
Sentinel System Driver (HKLM-x32\...\Rainbow Sentinel Driver) (Version: - )
Shortcut Virus Remover (HKLM-x32\...\Shortcut Virus Remover) (Version: - )
Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.18091.6 - Samsung Electronics Co., Ltd.) Hidden
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.18091.6 - Samsung Electronics Co., Ltd.)
SolidWorks 2013 x64 Edition SP03 (HKLM\...\{B6B5EA7E-B91F-443D-A958-B0062FB53804}) (Version: 21.130.60 - SolidWorks) Hidden
SolidWorks 2013 x64 Edition SP03 (HKLM-x32\...\SolidWorks Installation Manager 20130-40300-1100-100) (Version: 21.3.0.60 - SolidWorks Corporation)
SolidWorks 2013 x64 French Resources (HKLM\...\{0D01B115-8364-4AFD-8CA3-423488C25D26}) (Version: 21.130.60 - Nom de votre société) Hidden
SolidWorks 2014 x64 Edition SP03 (HKLM-x32\...\SolidWorks Installation Manager 20140-40300-1100-100) (Version: 22.3.0.56 - SolidWorks Corporation)
SolidWorks Composer Player 2014 SP03 x64 Edition (HKLM\...\{BE804C73-0FE8-4FB4-87D9-E2B685EE0A7C}) (Version: 22.30.56 - Dassault Systemes SolidWorks) Hidden
SolidWorks eDrawings 2013 x64 Edition SP03 (HKLM\...\{AC2165BD-762D-420B-AD33-20FACAA7112B}) (Version: 13.3.111 - Dassault Systèmes SolidWorks Corp) Hidden
SolidWorks eDrawings 2014 x64 Edition SP03 (HKLM\...\{63BFDA11-6475-45E3-93E9-7D2AA28AECD5}) (Version: 14.3.107 - Dassault Systèmes SolidWorks Corp) Hidden
SolidWorks Explorer 2013 SP03 x64 Edition (HKLM\...\{168EB20E-FC09-4D2E-83A9-49483710304C}) (Version: 21.30.60 - SolidWorks Corporation) Hidden
SolidWorks Explorer 2014 SP03 x64 Edition (HKLM\...\{0C10FAF1-35D5-416A-B7C1-4168ED9485FA}) (Version: 22.30.56 - SolidWorks Corporation) Hidden
SolidWorks Plastics 2013 SP03 x64 Edition (HKLM\...\{BA812540-2D88-4A6A-A527-E7728D577D7D}) (Version: 21.30.60 - SolidWorks Corporation) Hidden
Sony Mobile Software Update Drivers (HKLM\...\{4872001F-F67C-4C54-BC92-281C6A165251}) (Version: 3.2.0.3 - Sony Mobile Communications)
Sony Mobile Update Engine (HKU\S-1-5-21-1649961678-2545274511-965344067-1000\...\Update Engine) (Version: 2.18.13.201809201302 - Sony Mobile Communications Inc.)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Sweet Home 3D version 5.7 (HKLM\...\Sweet Home 3D_is1) (Version: 5.7 - eTeks)
TEAMCROSS Package (HKLM-x32\...\{76D2C964-34CB-4832-92C8-1C25AEF6D446}) (Version: 1.0.1445.27 - )
UmmyVideoDownloader (HKLM-x32\...\{E028DBDA-EEE7-48A0-ADF7-D250589A02C5}_is1) (Version: 1.5.0.6 - ) <==== ATTENTION
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
UsbFix Anti-Malware Premium (HKLM-x32\...\Usbfix) (Version: 11.0.1.1 - SOSVirus (SOSVirus.Net))
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.3.1 (HKLM\...\VulkanRT1.0.3.1) (Version: 1.0.3.1 - LunarG, Inc.)
Wargame Red Dragon (HKLM-x32\...\Wargame Red Dragon_is1) (Version: - )
WeMod (HKU\S-1-5-21-1649961678-2545274511-965344067-1000\...\WeMod) (Version: 5.4.0 - WeMod)
WinDjView 2.0.2 (HKLM\...\WinDjView) (Version: 2.0.2 - Andrew Zhezherun)
Windows Driver Package - Broadcom Corporation (bcbtums) Bluetooth (06/30/2015 12.0.1.653) (HKLM\...\96DD37B5CEC116731F3341757CD752145849002A) (Version: 06/30/2015 12.0.1.653 - Broadcom Corporation)
Windows Driver Package - Intel net (01/06/2015 15.16.0.2) (HKLM\...\174E121742E2215183956AE0546AAEBA795E547F) (Version: 01/06/2015 15.16.0.2 - Intel)
Windows Driver Package - Intel net (02/22/2015 17.15.0.5) (HKLM\...\009C901CE1169FE8A4BCED5B4361B461CB8C754A) (Version: 02/22/2015 17.15.0.5 - Intel)
Windows Driver Package - Intel net (11/17/2014 15.12.0.8) (HKLM\...\3680A8E92DE05CC3449DDFA7C6E7F3C061B2C971) (Version: 11/17/2014 15.12.0.8 - Intel)
Windows Driver Package - New Wave Concepts Limited GENIE USB Driver (07/12/2010 2.08.02) (HKLM\...\92AE7BA50E1D35EEF64E3B496075E59EA9C2F504) (Version: 07/12/2010 2.08.02 - New Wave Concepts Limited)
Windows Driver Package - Sony Mobile Communications (ggsomc) SOMCFlashDevice (12/06/2017 3.2.0.0) (HKLM\...\7AA77B236196DB9A6C04257060560ACDBB626F30) (Version: 12/06/2017 3.2.0.0 - Sony Mobile Communications)
Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
WinRelais Expert 2.1 Evaluation (HKLM-x32\...\WinRelais Expert 2.1 Evaluation) (Version: - )
Xperia Companion (HKLM-x32\...\{0785ee9f-59ca-46b1-861d-edbe859a85c9}) (Version: 2.1.12.0 - Sony)
Xperia Companion (HKLM-x32\...\{AF8E220D-5B8C-4F8C-B1D9-487D27E2202F}) (Version: 2.1.12.0 - Sony) Hidden
Xperia Companion Service (HKLM\...\{15BAF400-C4AC-45CD-86D4-986DD7EBF14A}) (Version: 2.1.12.0 - Sony) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1649961678-2545274511-965344067-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\Firas\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1649961678-2545274511-965344067-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\Firas\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1649961678-2545274511-965344067-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Firas\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1649961678-2545274511-965344067-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Firas\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1649961678-2545274511-965344067-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1649961678-2545274511-965344067-1000_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04}\InprocServer32 -> C:\Users\Firas\AppData\Local\Google\Update\1.3.33.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1649961678-2545274511-965344067-1000_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\Firas\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1649961678-2545274511-965344067-1000_Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\localserver32 -> C:\Users\Firas\AppData\Local\Google\Chrome\Application\72.0.3626.119\notification_helper.exe (Google LLC -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-1649961678-2545274511-965344067-1000_Classes\CLSID\{A804CF1A-91E5-4F0C-9E8C-DB39E74056DD}\InprocServer32 -> C:\Users\Firas\AppData\Local\Google\Update\1.3.33.23\psuser_64.dll (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-1649961678-2545274511-965344067-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\Firas\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1649961678-2545274511-965344067-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Firas\AppData\Local\Google\Update\1.3.33.23\psuser_64.dll (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-1649961678-2545274511-965344067-1000_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4}\InprocServer32 -> C:\Users\Firas\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll => No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-06] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [BaiduAntivirusIconLock] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CC} => C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.118812.0\BavShx64.dll -> No File
ShellIconOverlayIdentifiers-x32-x32: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\SysWOW64\AcSignIcon.dll [2004-02-25] (Autodesk, Inc -> Autodesk)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-06] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Baidu_Scan] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CB} => C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.118812.0\BavShx64.dll -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Baidu_Scan] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CB} => C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.118812.0\BavShx64.dll -> No File
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-06] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-03-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-06] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [Baidu_Scan] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CB} => C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.118812.0\BavShx64.dll -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {06F49879-4013-4503-A5F0-70D6DFA4BE79} - System32\Tasks\NIUpdateServiceCheckTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe (National Instruments Corporation -> National Instruments)
Task: {2CC2F4E0-DA6D-44E9-B295-DD13C84D0773} - System32\Tasks\{06C6DAA5-6B78-4856-903E-437AA6A3A477} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}\setup.exe" -c -runfromtemp -removeonly
Task: {2F8506AA-7B40-4BF2-8155-F931681F93FB} - System32\Tasks\psv_X-Joyis => cmd.exe /c regedit.exe /s "C:\ProgramData\Ronzap\KinTantech.reg" & del "C:\ProgramData\Ronzap\KinTantech.reg" & SCHTASKS /Delete /TN "psv_X-Joyis" /F <==== ATTENTION
Task: {399CC83C-A50C-4762-9398-622D63389BEC} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1649961678-2545274511-965344067-1000Core => C:\Users\Firas\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {3D340D60-3CF5-48F2-93DC-27B429239810} - System32\Tasks\psv_Fix-Air => cmd.exe /c regedit.exe /s "C:\ProgramData\Ronzap\Bio-Dex.reg" & del "C:\ProgramData\Ronzap\Bio-Dex.reg" & SCHTASKS /Delete /TN "psv_Fix-Air" /F <==== ATTENTION
Task: {3E1BB028-191B-4FF0-9986-AF4351544275} - System32\Tasks\psv_Driphome => cmd.exe /c regedit.exe /s "C:\ProgramData\Ronzap\Damcof.reg" & del "C:\ProgramData\Ronzap\Damcof.reg" & SCHTASKS /Delete /TN "psv_Driphome" /F <==== ATTENTION
Task: {46FE8BC3-216B-41DD-9277-4A415B185785} - System32\Tasks\Win Update => c:\Intell\POOL\russian.vbs
Task: {487A8DE6-B0A0-44D8-A6EF-4AFD565ADC8D} - System32\Tasks\psv_FaxSaozap => cmd.exe /c regedit.exe /s "C:\ProgramData\Ronzap\Villacore.reg" & del "C:\ProgramData\Ronzap\Villacore.reg" & SCHTASKS /Delete /TN "psv_FaxSaozap" /F <==== ATTENTION
Task: {4CAA6762-D433-42B8-95AC-08C274AD4C72} - System32\Tasks\EPSON L382 Series Update {7FC97380-C16C-48B3-B331-B45E473FB4F0} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSRRE.EXE (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {4F343558-A48F-4F6F-ACB7-7F018DA1601A} - System32\Tasks\EPSON L382 Series Update {76866295-66F9-4C14-864E-750B425FDF6C} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSRRE.EXE (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {5594A6B3-9C4D-4D18-940A-3936FF38426A} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\Windows\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\task.vbs"
Task: {5B41B1CD-99E6-4724-B5B5-CEBA8B7B71D8} - System32\Tasks\snf => C:\ProgramData\Ronzap\Ronzap.exe <==== ATTENTION
Task: {782093A6-EA19-4D0D-AFC7-DBEC33E4822A} - System32\Tasks\NIUpdateServiceStartupTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe (National Instruments Corporation -> National Instruments)
Task: {7864AA1D-A60E-44E2-AA85-36A18F675DDC} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {91AED3E3-05A2-42EE-BF01-A12E706CBC07} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {998A73C0-45EE-4F5F-9EB1-5608A7973F9C} - System32\Tasks\{651D5797-9C5D-4C32-8E6A-7FD2C6AF87F0} => C:\Windows\system32\pcalua.exe -a F:\aoesetup.exe -d F:\ -c /autorun
Task: {9F76E500-1686-4A68-8B88-7B9C9B911774} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1649961678-2545274511-965344067-1000UA => C:\Users\Firas\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {ACACC9CB-6A50-4626-9949-899284FBF6BA} - System32\Tasks\DriverToolkit Autorun => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
Task: {B1BC009E-3222-4987-8944-8329E3F8E83B} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe (Kaspersky Lab -> AO Kaspersky Lab)
Task: {C1E781E4-FA08-49C5-91DD-85C4A19A4867} - \hostTask -> No File <==== ATTENTION
Task: {C6CAA773-7781-4FAB-B6F1-437CE6A82D06} - System32\Tasks\snp => C:\ProgramData\Ronzap\Ronzap.exe <==== ATTENTION
Task: {CE8591B2-C43B-49A5-9427-C45410002A5A} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe (Intel(R) Software -> Intel Corporation)
Task: {DE766545-FA85-45EF-99C1-8960678D0D8C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {E45C4F8E-B130-45DF-ABB7-3F43C9DB40BC} - System32\Tasks\{79D9B74E-BCBE-4955-9C24-8A19F3571C52} => C:\Windows\system32\pcalua.exe -a "D:\flash disc 2016\imed\crefrog\SaisieNote_UniteExterne_Maj1.exe" -d "D:\flash disc 2016\imed\crefrog"

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
Task: C:\Windows\Tasks\EPSON L382 Series Update {76866295-66F9-4C14-864E-750B425FDF6C}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSRRE.EXE:/EXE:{76866295-66F9-4C14-864E-750B425FDF6C} /F:UpdateSYSTEMĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\EPSON L382 Series Update {7FC97380-C16C-48B3-B331-B45E473FB4F0}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSRRE.EXE:/EXE:{7FC97380-C16C-48B3-B331-B45E473FB4F0} /F:UpdateSYSTEMĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

Shortcut: C:\Users\Firas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft\Minecraft Debugger.lnk -> C:\Users\Firas\AppData\Roaming\.minecraft\minecraft launcher\Debug.bat ()

ShortcutWithArgument: C:\Users\Firas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\ADB for Chrome.lnk -> C:\Users\Firas\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1" --app-id=njhehnieenekbompacofnhlljnobgcga
ShortcutWithArgument: C:\Users\Firas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\da48efeee0c964c3\Google Chrome.lnk -> C:\Users\Firas\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1"

==================== Loaded Modules (Whitelisted) ==============

2013-08-14 15:09 - 2013-08-14 15:09 - 001111552 _____ (Famic Technologies Inc.) [File not signed] C:\Program Files (x86)\Famic Technologies Inc\Automation Studio 6.0\asiconhandler.dll
2015-05-22 05:08 - 2015-05-22 05:08 - 000315472 _____ (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
2018-02-18 12:41 - 2013-04-03 14:09 - 000756224 _____ () [File not signed] C:\Program Files (x86)\MyPublicWiFi\PublicWiFiService.exe
2016-02-28 18:09 - 2009-12-07 22:49 - 000040960 _____ (Realtek) [File not signed] C:\Program Files (x86)\REALTEK\RTL8187 Wireless LAN Utility\RtlService.exe
2016-02-28 18:09 - 2010-01-08 23:15 - 001118208 _____ (Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\REALTEK\RTL8187 Wireless LAN Utility\RtWlan.exe
2011-06-21 17:56 - 2011-06-21 17:56 - 000026624 _____ (OPC Foundation) [File not signed] C:\Program Files (x86)\Common Files\OPC Foundation\UA\v1.0\Bin\Opc.Ua.DiscoveryServer.exe
2011-06-21 17:56 - 2011-06-21 17:56 - 000105984 _____ (OPC Foundation) [File not signed] C:\Program Files (x86)\Common Files\OPC Foundation\UA\v1.0\Bin\Opc.Ua.Configuration.dll
2011-06-21 17:56 - 2011-06-21 17:56 - 003045376 _____ (OPC Foundation) [File not signed] C:\Program Files (x86)\Common Files\OPC Foundation\UA\v1.0\Bin\Opc.Ua.Core.dll
2018-05-29 09:54 - 2018-05-29 09:54 - 002195968 _____ (Sony) [File not signed] C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe
2017-12-20 18:29 - 2016-05-16 09:03 - 000076288 _____ (Seiko Epson Corporation) [File not signed] C:\ProgramData\EPSON\EPSON L382 Series\Language\040c.E_JTRE0O.DLL
2014-05-15 04:19 - 2014-05-15 04:19 - 001409024 _____ (National Instruments Corp.) [File not signed] C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\nilmClient.dll
2012-01-26 03:36 - 2012-01-26 03:36 - 002359296 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\xerces-c_2_6.dll
2012-01-26 03:36 - 2012-01-26 03:36 - 000278528 _____ () [File not signed] C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\xerces-depdom_2_6.dll
2016-07-30 10:06 - 2015-08-25 14:10 - 000275456 _____ () [File not signed] C:\Program Files (x86)\InternetEverywhere\WtgMobileBroadband7.dll
2015-06-01 14:53 - 2015-06-01 14:53 - 000493568 _____ (National Instruments Corporation) [File not signed] C:\Windows\SysWOW64\LKSOCK.dll
2015-06-01 14:48 - 2015-06-01 14:48 - 000221184 _____ (National Instruments Corporation) [File not signed] C:\Windows\SysWOW64\LKDYNAM.dll
2015-06-01 14:48 - 2015-06-01 14:48 - 000150016 _____ (National Instruments Corporation) [File not signed] C:\Windows\SysWOW64\LKSEC.dll
2015-06-01 15:16 - 2015-06-01 15:16 - 000560640 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\LogosXT\nilxtcor.dll
2015-06-03 02:50 - 2015-06-03 02:50 - 000095232 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\TraceEngine\ni_traceengine.dll
2015-06-01 15:01 - 2015-06-01 15:01 - 000257024 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\Security\nidm_client_thinauth.dll
2015-06-01 15:00 - 2015-06-01 15:00 - 000054272 _____ (National Instruments Corporation) [File not signed] C:\Windows\SysWOW64\logos_scs_wrapper.dll
2018-02-18 12:41 - 2012-12-05 18:30 - 000061440 _____ (NT Kernel Resources) [File not signed] C:\Program Files (x86)\MyPublicWiFi\NdisApi.dll
2015-06-02 10:50 - 2015-06-02 10:50 - 000264704 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\NIAuth\niPortableRegistry.dll
2016-02-28 18:09 - 2009-12-10 06:20 - 000126976 _____ () [File not signed] C:\Program Files (x86)\REALTEK\RTL8187 Wireless LAN Utility\EnumDevLib.dll
2016-02-28 18:09 - 2010-01-08 22:46 - 000430080 _____ (Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\REALTEK\RTL8187 Wireless LAN Utility\RtlLib.dll
2016-02-28 18:09 - 2009-12-25 18:18 - 000233472 _____ (Realtek) [File not signed] C:\Program Files (x86)\REALTEK\RTL8187 Wireless LAN Utility\RtlIhvOid.dll
2016-02-28 18:09 - 2009-01-21 20:33 - 000200704 _____ (Realtek) [File not signed] C:\Program Files (x86)\REALTEK\RTL8187 Wireless LAN Utility\IpLib.dll
2016-02-28 18:09 - 2006-07-05 15:45 - 001069056 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\REALTEK\RTL8187 Wireless LAN Utility\LIBEAY32.dll
2016-02-28 18:09 - 2009-11-09 19:11 - 000032768 _____ (Realtek) [File not signed] C:\Program Files (x86)\REALTEK\RTL8187 Wireless LAN Utility\RtlICS.dll
2015-06-01 14:56 - 2015-06-01 14:56 - 000265216 _____ (National Instruments Corporation) [File not signed] C:\Windows\SysWOW64\LKOBENV.dll
2015-04-30 03:20 - 2015-04-30 03:20 - 000008192 _____ (National Instruments Corporation) [File not signed] C:\Windows\SysWOW64\nidscmem.dll
2015-06-01 14:59 - 2015-06-01 14:59 - 000222208 _____ (National Instruments Corporation) [File not signed] C:\Windows\SysWOW64\LKSTIME.dll
2015-05-14 08:46 - 2015-05-14 08:46 - 000033792 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\NI WebServer\libappweb.dll
2015-04-28 04:37 - 2015-04-28 04:37 - 000175616 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\NI WebServer\libmpr.dll
2015-04-28 04:37 - 2015-04-28 04:37 - 000153088 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\NI WebServer\libhttp.dll
2015-04-28 04:37 - 2015-04-28 04:37 - 000091136 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\NI WebServer\libpcre.dll
2015-04-28 04:37 - 2015-04-28 04:37 - 000057856 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\NI WebServer\libappwebcore.dll
2015-02-06 10:10 - 2015-02-06 10:10 - 000033792 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\NI WebServer\mod_niconf.dll
2015-06-03 02:53 - 2015-06-03 02:53 - 000247296 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\NI WebServer\mod_nisessmgr.dll
2015-06-02 10:52 - 2015-06-02 10:52 - 000270336 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\NI WebServer\mod_niauth.dll
2015-06-02 10:52 - 2015-06-02 10:52 - 000456704 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\NIAuth\niauth.dll
2015-02-06 10:10 - 2015-02-06 10:10 - 000056832 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\NI WebServer\mod_niesp.dll
2015-06-03 02:54 - 2015-06-03 02:54 - 000570880 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\NI WebServer\mod_niws.dll
2015-06-03 02:54 - 2015-06-03 02:54 - 000413184 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ws_runtime.dll
2015-06-03 02:53 - 2015-06-03 02:53 - 000221184 _____ (National Instruments Corporation) [File not signed] C:\ProgramData\National Instruments\WebServices\NI\LVWSSysAdmin\sysadminsvc.dll
2015-06-08 04:59 - 2015-06-08 04:59 - 000030208 _____ (National Instruments Corporation) [File not signed] C:\ProgramData\National Instruments\WebServices\NI\LVWSDeploySvc\deploysvc.dll
2014-06-19 16:21 - 2014-06-19 16:21 - 000218624 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\NI System Configuration\nisyscfgExpert.dll
2015-05-14 08:12 - 2015-05-14 08:12 - 000134656 _____ (National Instruments Corporation) [File not signed] C:\ProgramData\National Instruments\WebServices\NI\LVWSAuthSvc\niauthsvc.dll
2015-06-02 11:07 - 2015-06-02 11:07 - 000194048 _____ (National Instruments Corporation) [File not signed] C:\ProgramData\National Instruments\WebServices\NI\LVWSSSLAdmin\ssladminsvc.dll
2015-06-02 11:07 - 2015-06-02 11:07 - 000097280 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\nissl\nisslinit.dll
2015-04-07 05:32 - 2015-04-07 05:32 - 001056768 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\nissl\NIlibeay32.dll
2015-04-07 07:21 - 2015-04-07 07:21 - 000237568 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\nissl\NIssleay32.dll
2015-06-01 15:17 - 2015-06-01 15:17 - 000227840 _____ (National Instruments Corporation) [File not signed] C:\Program Files (x86)\National Instruments\Shared\LogosXT\nipspxts.dll
2015-06-02 11:07 - 2015-06-02 11:07 - 000093696 _____ (National Instruments Corporation) [File not signed] C:\ProgramData\National Instruments\WebServices\NI\LVWSSslAdmin\ssladminsvc_logos.dll
2009-10-21 17:39 - 2009-10-21 17:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\Event Manager\LcMgr.dll
2016-05-09 09:20 - 2016-05-09 09:20 - 000132096 _____ (Seiko Epson Corporation) [File not signed] C:\Program Files (x86)\Epson Software\Event Manager\epnsm.dll
2015-07-13 18:20 - 2015-07-13 18:20 - 000149504 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\Event Manager\ScanEngine30.dll
2016-10-12 10:38 - 2016-10-12 10:38 - 000056320 _____ (SEIKO EPSON CORP.) [File not signed] C:\Program Files (x86)\Epson Software\Event Manager\ScnMgr10.dll
2017-12-20 18:28 - 2017-02-02 00:00 - 000102912 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\epson\escnocr\ocrlib\Lngdic.dll
2015-06-24 01:00 - 2015-06-24 01:00 - 000285696 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2015-06-24 01:00 - 2015-06-24 01:00 - 000562688 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2019-02-22 17:01 - 2019-02-22 17:01 - 000704512 _____ (Seiko Epson Corporation) [File not signed] C:\Program Files (x86)\EPSON\MyEpson Portal\Configration_00000171\MepCfg.dll
2019-02-22 15:09 - 2019-02-22 15:09 - 000475136 _____ (Seiko Epson Corporation) [File not signed] C:\Program Files (x86)\EPSON\MyEpson Portal\Online Manual_00000013\MepFAQ.dll
2006-10-14 03:51 - 2006-10-14 03:51 - 000503296 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Microsoft Office\Office12\USP10.DLL
2003-06-04 02:05 - 2003-06-04 02:05 - 000049204 _____ (Coltec M.E.) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\PROOF\MSSP3AR.DLL
2006-08-19 10:40 - 2006-08-19 10:40 - 002933248 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\PROOF\MSSp3FR.lex
2003-01-16 05:30 - 2003-01-16 05:30 - 000634880 _____ (Coltec M.E.) [File not signed] C:\Program Files (x86)\Common Files\microsoft shared\PROOF\1025\MSGRAR32.DLL
2000-10-10 06:16 - 2000-10-10 06:16 - 000065536 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\TRANSLAT\FREN\MSB1FREN.DLL
2000-10-10 13:23 - 2000-10-10 13:23 - 000065536 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\TRANSLAT\ESEN\MSB1ESEN.DLL
2003-05-02 21:18 - 2003-05-02 21:18 - 000081920 _____ (Coltec M.E. Cairo, Egypt) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\TRANSLAT\MSB1STAR.DLL
2000-10-09 23:20 - 2000-10-09 23:20 - 000065536 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\TRANSLAT\GEEN\MSB1GEEN.DLL
2015-09-24 16:40 - 2015-09-24 16:40 - 000057856 _____ () [File not signed] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\fr_fr\brdlang32.FRA
2016-04-29 03:59 - 2016-11-18 19:53 - 009509376 _____ () [File not signed] C:\Users\Firas\AppData\Local\Adobe\Acrobat\10.0\Cache\RdLang_rdlang32.fra
2015-09-24 16:40 - 2015-09-24 16:40 - 007652963 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\plug_ins\PPKLite.api
2016-04-29 03:59 - 2016-11-20 18:05 - 001179648 _____ () [File not signed] C:\Users\Firas\AppData\Local\Adobe\Acrobat\10.0\Cache\RdLang_PPKLite.FRA
2015-09-24 16:40 - 2015-09-24 16:40 - 012532835 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\plug_ins\AcroForm.api
2016-04-29 03:59 - 2016-11-20 18:05 - 001328128 _____ () [File not signed] C:\Users\Firas\AppData\Local\Adobe\Acrobat\10.0\Cache\RdLang_AcroForm.FRA
2015-09-24 16:40 - 2015-09-24 16:40 - 001462371 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\plug_ins\DigSig.api
2016-04-29 03:59 - 2016-11-20 18:05 - 000315904 _____ () [File not signed] C:\Users\Firas\AppData\Local\Adobe\Acrobat\10.0\Cache\RdLang_DigSig.FRA
2015-09-24 16:40 - 2015-09-24 16:40 - 001779811 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\plug_ins\EScript.api
2016-04-29 03:59 - 2016-11-20 18:05 - 000100864 _____ () [File not signed] C:\Users\Firas\AppData\Local\Adobe\Acrobat\10.0\Cache\RdLang_EScript.FRA
2015-09-24 16:40 - 2015-09-24 16:40 - 007832675 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\plug_ins\Annots.api
2016-04-29 03:59 - 2016-11-18 19:53 - 003061760 _____ () [File not signed] C:\Users\Firas\AppData\Local\Adobe\Acrobat\10.0\Cache\RdLang_Annots.FRA
2011-06-06 12:55 - 2011-06-06 12:55 - 001839104 _____ (RSA - The Security Division of EMC) [File not signed] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\cryptocme2.dll
2011-06-06 12:55 - 2011-06-06 12:55 - 001785856 _____ (RSA - The Security Division of EMC) [File not signed] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\ccme_base.dll
2015-09-24 16:40 - 2015-09-24 16:40 - 000106595 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\plug_ins\IA32.api
2015-09-24 16:40 - 2015-09-24 16:40 - 000169059 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\plug_ins\Updater.api
2016-04-29 04:00 - 2016-11-20 18:05 - 000014336 _____ () [File not signed] C:\Users\Firas\AppData\Local\Adobe\Acrobat\10.0\Cache\RdLang_Updater.FRA

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\QQPCRTP => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\QQPCRTP => ""="service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-1649961678-2545274511-965344067-1000\Software\Classes\.scr: AutoCADScriptFile => "C:\Windows\notepad.exe" "%1"

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2019-01-04 11:37 - 000000960 _____ C:\Windows\system32\drivers\etc\hosts


2016-11-24 20:39 - 2018-05-13 14:11 - 000000435 _____ C:\Windows\system32\drivers\etc\hosts.ics

192.168.137.1 Firas-PC.mshome.net # 2022 5 1 2 17 22 32 914

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Common Files\Autodesk Shared\;C:\Program Files (x86)\Windows Live\Shared
HKU\S-1-5-21-1649961678-2545274511-965344067-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Firas\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-1649961678-2545274511-965344067-501\Control Panel\Desktop\\Wallpaper -> C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^VerbAce-Pro Startup Agent.lnk => C:\Windows\pss\VerbAce-Pro Startup Agent.lnk.CommonStartup
MSCONFIG\startupreg: Google Update => "C:\Users\Firas\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: IAStorIcon => "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
MSCONFIG\startupreg: IntelPROSet => "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PROSet/Wireless
MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{C27F6D5F-05A3-4B7A-BEE6-7D11256E4FCE}C:\program files (x86)\pro evolution soccer 2016\pes2016.exe] => (Block) C:\program files (x86)\pro evolution soccer 2016\pes2016.exe No File
FirewallRules: [UDP Query User{1AA401F8-F38F-45AB-B221-CA6FA8D41860}C:\program files (x86)\pro evolution soccer 2016\pes2016.exe] => (Block) C:\program files (x86)\pro evolution soccer 2016\pes2016.exe No File
FirewallRules: [{35B0C3ED-AEE0-43BF-A960-5744814E060B}] => (Allow) C:\Program Files (x86)\Baidu WiFiHotspot\WifiHotspot.exe No File
FirewallRules: [{9E714AC6-F4A1-4912-8695-2390F12DDA8A}] => (Allow) C:\Program Files (x86)\Baidu WiFiHotspot\WifiHotspot.exe No File
FirewallRules: [TCP Query User{95DEEA05-F891-43C9-8BB3-8F46F232BC05}C:\users\firas\desktop\ooredoointernt\ihq.exe] => (Allow) C:\users\firas\desktop\ooredoointernt\ihq.exe No File
FirewallRules: [UDP Query User{7A174214-EA90-4E24-9FDC-1D03FE68D2A2}C:\users\firas\desktop\ooredoointernt\ihq.exe] => (Allow) C:\users\firas\desktop\ooredoointernt\ihq.exe No File
FirewallRules: [{1CD82118-622E-4CA1-A081-69DB451AB32D}] => (Allow) C:\Program Files (x86)\REALTEK\RTL8187 Wireless LAN Utility\RtWLan.exe (Realtek Semiconductor Corp.) [File not signed]
FirewallRules: [{808284B3-B774-4E98-A526-36E52252C8D2}] => (Allow) C:\Program Files (x86)\REALTEK\RTL8187 Wireless LAN Utility\RtWLan.exe (Realtek Semiconductor Corp.) [File not signed]
FirewallRules: [{5690EB43-2D2D-4914-B05E-669528FBA732}] => (Allow) LPort=1542
FirewallRules: [{A0BA21A8-C68B-4882-847E-58D3162DDDEB}] => (Allow) LPort=1542
FirewallRules: [{9C7C0269-E5D6-4A92-BE53-4E07AAFB4B64}] => (Allow) LPort=53
FirewallRules: [TCP Query User{22EEA53E-BA2C-4515-8908-F5B79DDA7143}C:\users\firas\desktop\utmp\u1504.exe] => (Block) C:\users\firas\desktop\utmp\u1504.exe No File
FirewallRules: [UDP Query User{049A5671-7572-4BD7-BA36-1F7DAFA3A29E}C:\users\firas\desktop\utmp\u1504.exe] => (Block) C:\users\firas\desktop\utmp\u1504.exe No File
FirewallRules: [TCP Query User{7917FB4F-926E-4277-A91D-688309DEAB18}C:\users\firas\desktop\ooredoo 2\ihs.exe] => (Allow) C:\users\firas\desktop\ooredoo 2\ihs.exe No File
FirewallRules: [UDP Query User{77C1833A-12D6-4046-A051-69222608736B}C:\users\firas\desktop\ooredoo 2\ihs.exe] => (Allow) C:\users\firas\desktop\ooredoo 2\ihs.exe No File
FirewallRules: [TCP Query User{7F11E5EC-E4E0-4EAC-9067-44BB3679006C}C:\users\firas\desktop\ooredoo 2\u1504.exe] => (Allow) C:\users\firas\desktop\ooredoo 2\u1504.exe No File
FirewallRules: [UDP Query User{2DD9168C-30F4-48A3-9A99-FAA323DCA8D2}C:\users\firas\desktop\ooredoo 2\u1504.exe] => (Allow) C:\users\firas\desktop\ooredoo 2\u1504.exe No File
FirewallRules: [{1B7402FE-0A08-4169-94CA-C30D4A5B743A}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe No File
FirewallRules: [{1B44A3F8-03AA-4D6B-842A-31636F890509}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe No File
FirewallRules: [{7A93C3C8-A793-4CA9-AF2C-E267C44B0E04}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe No File
FirewallRules: [{6A732719-40E8-4CE3-8DD7-13C03A277713}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe No File
FirewallRules: [{302080B9-52E4-4D9D-9C68-1143E2A1CDF0}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe No File
FirewallRules: [{BD8CB7AD-FAF2-442A-894E-36FD204FDD81}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe No File
FirewallRules: [{DD0616D4-7705-4853-9EC0-1E883F408D4C}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation-Wireless Connectivity Solutions -> )
FirewallRules: [{3B018AF2-6685-4326-B27C-0EA2146D07DF}] => (Allow) C:\Users\Firas\AppData\Roaming\LoadLeader\LoadLeader.exe No File
FirewallRules: [TCP Query User{9E3C42E4-52F4-4B50-A2B3-23BBC8825234}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe No File
FirewallRules: [UDP Query User{61465F53-7785-4330-A7E3-F7D5ED64330F}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe No File
FirewallRules: [TCP Query User{69851976-B4B6-4372-8C8C-F67094DB449A}C:\program files (x86)\r.g. mechanics\far cry 4\bin\ige_wpf64.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\ige_wpf64.exe No File
FirewallRules: [UDP Query User{21F51830-3167-4A01-BEFA-480EB84192A4}C:\program files (x86)\r.g. mechanics\far cry 4\bin\ige_wpf64.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\ige_wpf64.exe No File
FirewallRules: [TCP Query User{AACBB954-1F31-40FC-8A84-6F212DD761EF}C:\users\firas\desktop\call of duty 4\call_of_duty_4\setup\data\iw3mp.exe] => (Allow) C:\users\firas\desktop\call of duty 4\call_of_duty_4\setup\data\iw3mp.exe No File
FirewallRules: [UDP Query User{E827BE58-DDEB-4A2F-8F19-93BB4ABE7EE6}C:\users\firas\desktop\call of duty 4\call_of_duty_4\setup\data\iw3mp.exe] => (Allow) C:\users\firas\desktop\call of duty 4\call_of_duty_4\setup\data\iw3mp.exe No File
FirewallRules: [TCP Query User{FCABBC91-2431-4836-9B62-AEA46750A5E8}C:\program files (x86)\activision\call of duty modern warfare 2\iw4mp.exe] => (Allow) C:\program files (x86)\activision\call of duty modern warfare 2\iw4mp.exe No File
FirewallRules: [UDP Query User{74B3DD34-B8ED-4F08-AAEE-2798098F4665}C:\program files (x86)\activision\call of duty modern warfare 2\iw4mp.exe] => (Allow) C:\program files (x86)\activision\call of duty modern warfare 2\iw4mp.exe No File
FirewallRules: [{6C5296E6-E916-47D3-8B75-03643DF9A8CB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{17EE438E-B932-4E41-BD73-110C897F238B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{A9C2A7E2-75FE-4C61-8B15-6FCD44513AE3}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{3B848BF1-A2CB-49D8-BEDD-6E15C4BDB929}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{22EC3136-CADE-4416-9D77-F40268D55AD2}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{C229CA86-D1D2-4089-A45B-2E31E803BAF1}] => (Allow) C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{4F08CF52-B016-4A68-944C-1304C9C0BE35}] => (Allow) C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{CD4A55A3-AC69-4910-B11D-11764353D2A1}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{E9F3CA92-CAD3-46F6-BDA4-C9D733553497}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{8A3BB187-468E-4D84-9792-02A814D0A23C}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\nisvcloc\nisvcloc.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{DF58609B-7294-4D7B-8E9A-A4EABA727F0B}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\nisvcloc\nisvcloc.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [TCP Query User{B18C156C-767F-4A8F-BDF9-7E4BF5156D26}C:\users\firas\appdata\local\{1935f0fb-02df-0c8a-573e-780836720c42}\syshost.exe] => (Block) C:\users\firas\appdata\local\{1935f0fb-02df-0c8a-573e-780836720c42}\syshost.exe No File
FirewallRules: [UDP Query User{CC789AFC-4F95-4EA7-8D7F-A446A8F3537E}C:\users\firas\appdata\local\{1935f0fb-02df-0c8a-573e-780836720c42}\syshost.exe] => (Block) C:\users\firas\appdata\local\{1935f0fb-02df-0c8a-573e-780836720c42}\syshost.exe No File
FirewallRules: [TCP Query User{111F1987-6889-4F5B-A4F9-E446CC6B1BB7}C:\users\firas\appdata\local\{1935f0fb-02df-0c8a-573e-780836720c42}\syshost.exe] => (Block) C:\users\firas\appdata\local\{1935f0fb-02df-0c8a-573e-780836720c42}\syshost.exe No File
FirewallRules: [UDP Query User{EA9D396B-47F9-4D49-90A6-4AE94E48FD95}C:\users\firas\appdata\local\{1935f0fb-02df-0c8a-573e-780836720c42}\syshost.exe] => (Block) C:\users\firas\appdata\local\{1935f0fb-02df-0c8a-573e-780836720c42}\syshost.exe No File
FirewallRules: [{8C7B329D-FD62-48E3-9145-FBBCBB1E59D0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe No File
FirewallRules: [{97100E6F-CC54-4BBA-A2B6-4D8494851DFF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe No File
FirewallRules: [{8FB2E954-B585-40CD-82E4-43DA11958AE9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe No File
FirewallRules: [{6EFCC618-D515-4B10-B82F-67DCDE2415DC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe No File
FirewallRules: [{391EE526-2648-47C6-9CAA-61258E5A963B}] => (Allow) C:\Program Files\SolidWorks\photoview\photoview360.exe No File
FirewallRules: [{5DC81047-1079-4CEE-886D-9A78BD4763CB}] => (Allow) C:\Program Files\SolidWorks\photoview\photoview360.exe No File
FirewallRules: [{E0ED4A62-8F69-4EC6-8BD1-23BA815DBB6B}] => (Allow) C:\Program Files\SolidWorks\photoview\photoview360_cl.exe No File
FirewallRules: [{B099E9CD-6A97-4185-93F7-0EE89FCF92F3}] => (Allow) C:\Program Files\SolidWorks\photoview\photoview360_cl.exe No File
FirewallRules: [{2F838714-CB4C-4F50-9D3B-A311A7191CFA}] => (Allow) C:\Program Files\SolidWorks\swScheduler\DTSCoordinatorService.exe No File
FirewallRules: [{E9C37FC8-309A-4362-BD15-174C23CB6629}] => (Allow) C:\Program Files\SolidWorks\swScheduler\DTSCoordinatorService.exe No File
FirewallRules: [{2B3CB89B-03AF-415D-8F2A-CB2D1A2E3A07}] => (Allow) C:\Program Files\SolidWorks\photoview\photoview360.exe No File
FirewallRules: [{D424EBFF-A684-4F4E-B2F2-719A43726CC8}] => (Allow) C:\Program Files\SolidWorks\photoview\photoview360.exe No File
FirewallRules: [{43278E04-9C30-4208-8956-0164C30ADB5E}] => (Allow) C:\Program Files\SolidWorks\photoview\photoview360_cl.exe No File
FirewallRules: [{698EA09A-84DF-4112-8AFB-3CCB0122EE37}] => (Allow) C:\Program Files\SolidWorks\photoview\photoview360_cl.exe No File
FirewallRules: [{FB650B31-4EBF-43C5-86F6-BE7E9A5B7A23}] => (Allow) C:\Program Files\SolidWorks\swScheduler\DTSCoordinatorService.exe No File
FirewallRules: [{DC09C6FE-7CCD-4FA4-9CFE-B4EB5118441C}] => (Allow) C:\Program Files\SolidWorks\swScheduler\DTSCoordinatorService.exe No File
FirewallRules: [{B382DD6E-4C69-4016-AD41-CBEFDB5CFCFF}] => (Allow) D:\solid\SolidWorks\swScheduler\DTSCoordinatorService.exe (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corp.)
FirewallRules: [{B45CB202-656A-41A7-9657-F3DF13C65EA5}] => (Allow) D:\solid\SolidWorks\swScheduler\DTSCoordinatorService.exe (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corp.)
FirewallRules: [{F614BF2D-875B-4FD4-97C1-5844D7FB5715}] => (Allow) D:\solid\SolidWorks\photoview\photoview360.exe (Luxology -> )
FirewallRules: [{48D270F3-FF13-4169-8AE0-D96B16949EB2}] => (Allow) D:\solid\SolidWorks\photoview\photoview360.exe (Luxology -> )
FirewallRules: [{68AAD9AB-40FE-40F5-B4E3-4D5E91F0A0B8}] => (Allow) D:\solid\SolidWorks\photoview\photoview360_cl.exe (Luxology -> )
FirewallRules: [{994636B6-1479-45DD-B130-3232E7588ADC}] => (Allow) D:\solid\SolidWorks\photoview\photoview360_cl.exe (Luxology -> )
FirewallRules: [{12729791-8F4B-4CA3-867A-7D644D0D85A7}] => (Allow) C:\Users\Firas\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{A7C6078F-F604-4911-85C5-C241812467C1}] => (Allow) C:\Users\Firas\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{92205408-45CD-4878-A056-D162E531AC93}] => (Allow) C:\Users\Firas\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{59EDFA85-AC75-4A61-AF1C-9D0FCD8CB1AE}] => (Allow) C:\Users\Firas\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{D6CCFBE6-76D7-47E4-AEF5-B5CA30A2E602}] => (Allow) C:\Users\Firas\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{14E89B15-6DB1-4475-B52B-BFBF3E18CCAC}] => (Allow) C:\Users\Firas\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{D569697F-05AA-4D17-B4AB-7F5D36577602}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\tencentdl.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{05B560B5-DB1F-4FFB-9027-89C1D17DC7F4}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\bugreport_xf.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [TCP Query User{BBCE80AC-C85E-40DD-B214-6E367659A805}C:\Program Files (x86)\Famic Technologies Inc\Automation Studio 6.0\as.server.host.exe] => (Allow) C:\Program Files (x86)\Famic Technologies Inc\Automation Studio 6.0\as.server.host.exe (Famic Technologies Inc.) [File not signed]
FirewallRules: [UDP Query User{805FB925-82E0-44AB-B51D-58ABA8E4EA7E}C:\Program Files (x86)\Famic Technologies Inc\Automation Studio 6.0\as.server.host.exe] => (Allow) C:\Program Files (x86)\Famic Technologies Inc\Automation Studio 6.0\as.server.host.exe (Famic Technologies Inc.) [File not signed]
FirewallRules: [{12562C20-10C1-4C58-831B-67887B336371}] => (Allow) C:\Program Files (x86)\Common Files\OPC Foundation\UA\v1.0\Bin\Opc.Ua.DiscoveryServer.exe (OPC Foundation) [File not signed]
FirewallRules: [{1173A2BC-200B-4FCC-8597-9E8D6651D5D0}] => (Allow) C:\Program Files (x86)\Common Files\OPC Foundation\UA\v1.0\Bin\Opc.Ua.DiscoveryServer.exe (OPC Foundation) [File not signed]
FirewallRules: [{BA8161AA-88E6-4DBF-B77C-55F6AE28DE12}] => (Allow) LPort=4840
FirewallRules: [{61AD38B0-2B26-4B37-9957-F3728DA4B5CA}] => (Allow) LPort=4843
FirewallRules: [{6C0DD1F7-5E44-4880-B9BC-26D1CFAD9342}] => (Allow) LPort=52601
FirewallRules: [TCP Query User{AA758557-BB96-4735-AFB6-8A9B15E82969}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{24F56A50-619C-4E82-B2E3-FB0C28A531F7}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [TCP Query User{1EA58525-00A9-43D6-9F5A-1E7715A6E769}C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe] => (Allow) C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe No File
FirewallRules: [UDP Query User{00C6BE9B-140F-45E7-8557-4F316A04ED63}C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe] => (Allow) C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe No File
FirewallRules: [TCP Query User{F98E828E-E91B-41D6-8AC0-54C94B138955}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe No File
FirewallRules: [UDP Query User{21C8A6B4-709E-45C4-BDDF-53A09D2FDBF9}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe No File
FirewallRules: [TCP Query User{A2C15C17-FF38-409B-A8C7-2AB7FC794AE8}C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe] => (Allow) C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe No File
FirewallRules: [UDP Query User{8EB2D814-DA2E-42CD-9914-B1FD608E1C80}C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe] => (Allow) C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe No File
FirewallRules: [TCP Query User{FE341CEF-52A9-4F5F-A871-47A37DAD3784}D:\nfs most wanted\speed.exe] => (Allow) D:\nfs most wanted\speed.exe () [File not signed]
FirewallRules: [UDP Query User{53C0E4F9-FD52-47BF-B201-64B0C40F5062}D:\nfs most wanted\speed.exe] => (Allow) D:\nfs most wanted\speed.exe () [File not signed]
FirewallRules: [{6DCBB4F4-754C-4E5F-AA3D-FACF6C57F988}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{783E2236-16E6-4603-8BE3-51C6C8F8E80B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{B95CBE8F-0903-4C9D-ADE3-D19401E44ACD}C:\program files (x86)\microsoft games\age of empires ii\empires2.exe] => (Block) C:\program files (x86)\microsoft games\age of empires ii\empires2.exe No File
FirewallRules: [UDP Query User{59B93834-1464-4C61-BB65-F155322DA125}C:\program files (x86)\microsoft games\age of empires ii\empires2.exe] => (Block) C:\program files (x86)\microsoft games\age of empires ii\empires2.exe No File
FirewallRules: [{93B668D5-7085-442B-9D2C-9C2510A926BD}] => (Allow) C:\Program Files (x86)\MyPublicWiFi\MyPublicWiFi.exe (Khalil Azzouzi -> )
FirewallRules: [{4DA062D3-7E1F-4462-9C7B-D97C7DE09CBF}] => (Allow) C:\Program Files (x86)\MyPublicWiFi\MyPublicWiFi.exe (Khalil Azzouzi -> )
FirewallRules: [TCP Query User{68D9EC1D-4E90-4B78-BAF8-B3811F7DDE44}C:\users\firas\appdata\local\{f5249dcc-4b7b-fc82-f20b-64d6d16c0a7f}\syshost.exe] => (Block) C:\users\firas\appdata\local\{f5249dcc-4b7b-fc82-f20b-64d6d16c0a7f}\syshost.exe No File
FirewallRules: [UDP Query User{E6F9D467-AD0D-4862-AC5E-A850275336A8}C:\users\firas\appdata\local\{f5249dcc-4b7b-fc82-f20b-64d6d16c0a7f}\syshost.exe] => (Block) C:\users\firas\appdata\local\{f5249dcc-4b7b-fc82-f20b-64d6d16c0a7f}\syshost.exe No File
FirewallRules: [TCP Query User{6723EE08-F7CF-466A-883B-A719255B46FF}C:\users\firas\appdata\local\{70229483-8af0-6711-3569-4562154d565c}\syshost.exe] => (Block) C:\users\firas\appdata\local\{70229483-8af0-6711-3569-4562154d565c}\syshost.exe No File
FirewallRules: [UDP Query User{0447E593-9C04-47E8-8471-3B24961A4EBB}C:\users\firas\appdata\local\{70229483-8af0-6711-3569-4562154d565c}\syshost.exe] => (Block) C:\users\firas\appdata\local\{70229483-8af0-6711-3569-4562154d565c}\syshost.exe No File
FirewallRules: [TCP Query User{9D25C44E-E2E0-4604-BC35-7E63B57B1116}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{AD3050D8-4E36-47A6-98E4-EB7F80AD059E}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [TCP Query User{254EF8CF-2051-4836-ADD9-B588AC935871}C:\users\firas\clubdejeux\jre\jre\bin\java.exe] => (Allow) C:\users\firas\clubdejeux\jre\jre\bin\java.exe No File
FirewallRules: [UDP Query User{7DE18293-7854-4ABB-835F-C682DCED989F}C:\users\firas\clubdejeux\jre\jre\bin\java.exe] => (Allow) C:\users\firas\clubdejeux\jre\jre\bin\java.exe No File
FirewallRules: [{419ABB27-525B-4C39-B735-7A57AFD1AEDC}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe No File
FirewallRules: [{6B7E7DE6-02FD-47C6-A705-5207853ABC8E}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe No File
FirewallRules: [{8048F06B-95D1-4991-A8D2-CB1949301AB7}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft)
FirewallRules: [{DEF3E204-7FC4-4AB9-8452-1C20A4A8F013}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft)
FirewallRules: [TCP Query User{D5DBD68C-1538-428D-97BA-76B389D743B2}C:\program files (x86)\focus home interactive\farming simulator 15 gpr repack\x64\farmingsimulator2015game.exe] => (Allow) C:\program files (x86)\focus home interactive\farming simulator 15 gpr repack\x64\farmingsimulator2015game.exe (GIANTS Software GmbH) [File not signed]
FirewallRules: [UDP Query User{06720070-2D6B-4D5E-80F2-EC8E128285E7}C:\program files (x86)\focus home interactive\farming simulator 15 gpr repack\x64\farmingsimulator2015game.exe] => (Allow) C:\program files (x86)\focus home interactive\farming simulator 15 gpr repack\x64\farmingsimulator2015game.exe (GIANTS Software GmbH) [File not signed]
FirewallRules: [TCP Query User{2EFABF03-C4D6-4A64-BE79-D7F64359F10E}C:\users\firas\desktop\farming.simulator.17.v1.2.0.0\x64\farmingsimulator2017game.exe] => (Allow) C:\users\firas\desktop\farming.simulator.17.v1.2.0.0\x64\farmingsimulator2017game.exe No File
FirewallRules: [UDP Query User{EA4AA49F-2694-4140-A56B-06760BED4252}C:\users\firas\desktop\farming.simulator.17.v1.2.0.0\x64\farmingsimulator2017game.exe] => (Allow) C:\users\firas\desktop\farming.simulator.17.v1.2.0.0\x64\farmingsimulator2017game.exe No File
FirewallRules: [TCP Query User{585E20CD-DDBA-4CB1-9E35-E4C632BD210E}C:\users\firas\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\firas\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [UDP Query User{2EE6F5FB-71A4-498E-9AA0-FB06FDED3509}C:\users\firas\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\firas\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{374B1A10-82EC-4B69-A217-7FA2DEC59B92}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{64B28508-C2C4-43E6-BC0E-BBB0D8268D4A}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{5759E7F0-014D-4389-AF6E-B1DF99A7ED0F}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{79D171F4-21A9-460B-A773-40769B104A1A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{97FDCE32-36ED-4B98-BC24-EA9699161511}] => (Allow) C:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe () [File not signed]
FirewallRules: [{1C725ACA-C7EB-49DD-B3AD-E93CB7705B47}] => (Allow) C:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe () [File not signed]
FirewallRules: [{1A89F0EE-004F-4224-AF93-0BE978D18E25}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{3CFEB0BF-9FC0-4268-AAE1-8EE265FD8A5B}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{D07F9C7A-9BEC-4E5F-9972-EE9B496570FA}] => (Allow) C:\Program Files (x86)\MyPublicWiFi\MyPublicWiFi.exe (Khalil Azzouzi -> )
FirewallRules: [{3DFBAACA-8ECD-4D21-87E9-47A8E9A92978}] => (Allow) C:\Program Files (x86)\MyPublicWiFi\MyPublicWiFi.exe (Khalil Azzouzi -> )
FirewallRules: [TCP Query User{0C2260F8-DF6B-4565-8F06-6C9CB2A4AB27}C:\users\firas\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\firas\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [UDP Query User{A5A1959F-0559-4BDA-8A4B-17DA0A1165C1}C:\users\firas\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\firas\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [TCP Query User{A3CDA7D2-4C8B-4B69-94DB-62A976144142}D:\goat simulator\binaries\win32\goatgame-win32-shipping.exe] => (Allow) D:\goat simulator\binaries\win32\goatgame-win32-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [UDP Query User{0D0337A9-9F12-4BA6-B921-001D181B8622}D:\goat simulator\binaries\win32\goatgame-win32-shipping.exe] => (Allow) D:\goat simulator\binaries\win32\goatgame-win32-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{E2D886AE-AB0D-429D-A18E-7C5A56938550}] => (Allow) D:\Games\Need for Speed Rivals\NFS14_x86.exe (Electronic Arts) [File not signed]
FirewallRules: [{FDFB9BE8-09B1-4FE0-B194-E5864483CCA3}] => (Allow) D:\Games\Need for Speed Rivals\NFS14_x86.exe (Electronic Arts) [File not signed]
FirewallRules: [{FF4931CE-B61B-44E9-803D-66BB168478C9}] => (Allow) D:\Games\Need for Speed Rivals\NFS14.exe (Electronic Arts) [File not signed]
FirewallRules: [{6FB7246E-BAFC-42F6-AD8A-20BC83FC37C4}] => (Allow) D:\Games\Need for Speed Rivals\NFS14.exe (Electronic Arts) [File not signed]
FirewallRules: [TCP Query User{8E88AF7B-0FC5-4056-9559-B000C5EE6034}D:\pes2016\pro evolution soccer 2016\pes2016.exe] => (Block) D:\pes2016\pro evolution soccer 2016\pes2016.exe (Konami Digital Entertainment Co., Ltd.) [File not signed]
FirewallRules: [UDP Query User{DBBE558D-20AE-4609-A79C-20B27F254BB1}D:\pes2016\pro evolution soccer 2016\pes2016.exe] => (Block) D:\pes2016\pro evolution soccer 2016\pes2016.exe (Konami Digital Entertainment Co., Ltd.) [File not signed]
FirewallRules: [{F00CB426-F522-4B63-A5E6-A595D6A893D3}] => (Allow) C:\Users\Firas\AppData\Roaming\TEAMGROUP\AndroidShadow1445\FunctModules\{3AE3E562-DDCD-4188-B625-892B932ACCF2}\AndroidShadowSvc.exe (Ours Technology Inc. -> )
FirewallRules: [{22E48DB8-F51E-4604-8B37-DDE9B8AA0D1A}] => (Allow) C:\Users\Firas\AppData\Roaming\TEAMGROUP\AndroidShadow1445\FunctModules\{3AE3E562-DDCD-4188-B625-892B932ACCF2}\AndroidShadowSvc.exe (Ours Technology Inc. -> )
FirewallRules: [{9E02FEEC-A584-4EF9-8058-94460B3BBE38}] => (Allow) LPort=30122
FirewallRules: [{84981FD1-8FD4-4893-9908-9C986EEE3C96}] => (Allow) LPort=30122
FirewallRules: [{D065D41E-2AFC-42FD-8697-0556451C8C90}] => (Allow) LPort=58878
FirewallRules: [{B4CA9873-A1F1-4F12-B245-D4995D594F29}] => (Allow) LPort=13345
FirewallRules: [{2F76678F-40C7-4751-BBD7-B4ABF6E6A8C5}] => (Allow) LPort=13355
FirewallRules: [{9FE024CA-5CCA-49F7-B220-E965EB76C2D6}] => (Allow) LPort=13350
FirewallRules: [TCP Query User{DC1B1D06-BFEA-4058-AB3E-F1A023A81EDB}C:\users\firas\appdata\roaming\teamgroup\androidshadow1445\functmodules\{365c4421-38a3-4de4-9656-dc22f9dcdc34}\asmainapp.exe] => (Allow) C:\users\firas\appdata\roaming\teamgroup\androidshadow1445\functmodules\{365c4421-38a3-4de4-9656-dc22f9dcdc34}\asmainapp.exe (Ours Technology Inc. -> TEAM GROUP)
FirewallRules: [UDP Query User{02FA3585-92C6-4B5A-BC10-219DD27D5D34}C:\users\firas\appdata\roaming\teamgroup\androidshadow1445\functmodules\{365c4421-38a3-4de4-9656-dc22f9dcdc34}\asmainapp.exe] => (Allow) C:\users\firas\appdata\roaming\teamgroup\androidshadow1445\functmodules\{365c4421-38a3-4de4-9656-dc22f9dcdc34}\asmainapp.exe (Ours Technology Inc. -> TEAM GROUP)
FirewallRules: [{5AEEE78F-C56F-41C8-89A0-D6A0906C3982}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C143E65F-B1B7-49DD-90C6-E46E1460B1C2}] => (Allow) LPort=2869
FirewallRules: [{43F433E8-BD09-42B7-9319-6D7B01EBEE1D}] => (Allow) LPort=1900
FirewallRules: [{06C3008B-F447-4DFD-A823-DABA957762A6}] => (Allow) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony)
FirewallRules: [TCP Query User{13AD4371-B2F9-4ACE-ADC3-4B274D16D8F7}C:\programdata\sony mobile\update engine\{c803d184-9b26-47eb-8dbf-c603a323bd73}\sony mobile update engine.exe] => (Allow) C:\programdata\sony mobile\update engine\{c803d184-9b26-47eb-8dbf-c603a323bd73}\sony mobile update engine.exe No File
FirewallRules: [UDP Query User{13DA1416-D447-4F34-A86D-4FF414631FA7}C:\programdata\sony mobile\update engine\{c803d184-9b26-47eb-8dbf-c603a323bd73}\sony mobile update engine.exe] => (Allow) C:\programdata\sony mobile\update engine\{c803d184-9b26-47eb-8dbf-c603a323bd73}\sony mobile update engine.exe No File
FirewallRules: [TCP Query User{E8480C3B-F16E-4DD5-82B3-9E4A1635A888}C:\programdata\sony mobile\update engine\{92859360-a8ea-4507-8dd6-b0172e1e25f9}\sony mobile update engine.exe] => (Allow) C:\programdata\sony mobile\update engine\{92859360-a8ea-4507-8dd6-b0172e1e25f9}\sony mobile update engine.exe (Sony Mobile Communications AB -> )
FirewallRules: [UDP Query User{4A3249C8-E2A1-4EBE-B778-1B9B1202D2F2}C:\programdata\sony mobile\update engine\{92859360-a8ea-4507-8dd6-b0172e1e25f9}\sony mobile update engine.exe] => (Allow) C:\programdata\sony mobile\update engine\{92859360-a8ea-4507-8dd6-b0172e1e25f9}\sony mobile update engine.exe (Sony Mobile Communications AB -> )
FirewallRules: [TCP Query User{4CF98223-CA8F-499F-8157-20D408C17934}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{F693A779-F09A-4D54-88A8-2AE8C810173B}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{CDEB54CD-EB24-4206-98BC-CB284AF92A40}D:\frtnt\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\frtnt\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{57187B3D-7086-447B-B6BC-951D5F93065F}D:\frtnt\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\frtnt\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{51686C25-7278-48E7-9A60-78A5037E4C03}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [UDP Query User{99425AAC-4C79-4481-9E8F-6EECA49F15FB}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [{E0339576-0E7F-4C65-9564-8D390990126A}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{61B0AA90-1294-4DB4-8A5F-98A650961CBC}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)

==================== Restore Points =========================

24-12-2018 09:16:47 Device Driver Package Install: Adafruit Industries LLC Ports (COM & LPT)
24-12-2018 09:24:54 Device Driver Package Install: Arduino Srl (www.arduino.org) Ports (COM & LPT)
24-12-2018 09:28:17 Device Driver Package Install: Arduino LLC (www.arduino.cc) Ports (COM & LPT)
24-12-2018 09:28:30 Device Driver Package Install: libusb-win32
24-12-2018 09:28:58 Device Driver Package Install: Arduino LLC (www.arduino.cc) Ports (COM & LPT)
24-12-2018 09:29:54 Device Driver Package Install: Linino Ports (COM & LPT)
03-01-2019 15:25:34 Installed Flowcode v8
21-02-2019 21:53:16 Scheduled Checkpoint

==================== Faulty Device Manager Devices =============

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: tencent QMUdisk
Description: tencent QMUdisk
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: QMUdisk
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: TsNetHlpX64.sys
Description: TsNetHlpX64.sys
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: tsnethlpx64
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Microsoft Virtual WiFi Miniport Adapter
Description: Microsoft Virtual WiFi Miniport Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: softaal
Description: softaal
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: softaal
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Lexmark X422
Description: Lexmark X422
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Lexmark
Service: usbscan
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Lexmark X422
Description: Lexmark X422
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Lexmark
Service: usbscan
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/03/2019 03:40:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: 64DriverLoad.exe, version: 1.1.2.4, time stamp: 0x5b7a208f
Faulting module name: ntdll.dll, version: 6.1.7601.24150, time stamp: 0x5b0cbc1e
Exception code: 0xc0000374
Fault offset: 0x00000000000bf6b2
Faulting process id: 0x2608
Faulting application start time: 0x01d4d1cf047a5a38
Faulting application path: C:\Program Files (x86)\EPSON\MyEpson Portal\64DriverLoad.exe
Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report Id: 42f1e5ee-3dc2-11e9-b253-ace010740ffe

Error: (03/02/2019 10:19:17 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: 64DriverLoad.exe, version: 1.1.2.4, time stamp: 0x5b7a208f
Faulting module name: ntdll.dll, version: 6.1.7601.24150, time stamp: 0x5b0cbc1e
Exception code: 0xc0000374
Fault offset: 0x00000000000bf6b2
Faulting process id: 0x234c
Faulting application start time: 0x01d4d0d902743ba1
Faulting application path: C:\Program Files (x86)\EPSON\MyEpson Portal\64DriverLoad.exe
Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report Id: 40a9402a-3ccc-11e9-b253-ace010740ffe

Error: (03/02/2019 08:54:03 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Steam.exe, version: 1.68.63.36, time stamp: 0x512fe996
Faulting module name: ntdll.dll, version: 6.1.7601.24150, time stamp: 0x5b0cb980
Exception code: 0xc0000374
Fault offset: 0x000ce9fb
Faulting process id: 0x19b8
Faulting application start time: 0x01d4d0cd11664a17
Faulting application path: C:\Program Files (x86)\Steam\Steam.exe
Faulting module path: C:\Windows\SysWOW64\ntdll.dll
Report Id: 588d360f-3cc0-11e9-b253-ace010740ffe

Error: (03/01/2019 06:17:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: 64DriverLoad.exe, version: 1.1.2.4, time stamp: 0x5b7a208f
Faulting module name: ntdll.dll, version: 6.1.7601.24150, time stamp: 0x5b0cbc1e
Exception code: 0xc0000374
Fault offset: 0x00000000000bf6b2
Faulting process id: 0x1e18
Faulting application start time: 0x01d4d05298e5cd7d
Faulting application path: C:\Program Files (x86)\EPSON\MyEpson Portal\64DriverLoad.exe
Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report Id: d71b3399-3c45-11e9-b253-ace010740ffe

Error: (03/01/2019 12:21:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: 64DriverLoad.exe, version: 1.1.2.4, time stamp: 0x5b7a208f
Faulting module name: ntdll.dll, version: 6.1.7601.24150, time stamp: 0x5b0cbc1e
Exception code: 0xc0000374
Fault offset: 0x00000000000bf6b2
Faulting process id: 0x9c0
Faulting application start time: 0x01d4d020f9070c74
Faulting application path: C:\Program Files (x86)\EPSON\MyEpson Portal\64DriverLoad.exe
Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report Id: 36c38575-3c14-11e9-b253-ace010740ffe

Error: (02/27/2019 08:49:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: 64DriverLoad.exe, version: 1.1.2.4, time stamp: 0x5b7a208f
Faulting module name: ntdll.dll, version: 6.1.7601.24150, time stamp: 0x5b0cbc1e
Exception code: 0xc0000374
Fault offset: 0x00000000000bf6b2
Faulting process id: 0x1cb0
Faulting application start time: 0x01d4ced58f3a7dab
Faulting application path: C:\Program Files (x86)\EPSON\MyEpson Portal\64DriverLoad.exe
Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report Id: ce5eb0a7-3ac8-11e9-b253-ace010740ffe

Error: (02/27/2019 07:24:09 PM) (Source: niZeroconfService) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 18932047

Error: (02/27/2019 07:24:09 PM) (Source: niZeroconfService) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 18932047


System errors:
=============
Error: (03/04/2019 12:09:27 PM) (Source: Tcpip) (EventID: 4199) (User: )
Description: The system detected an address conflict for IP address 192.168.1.101 with the system
having network hardware address 2C-0E-3D-A6-67-67. Network operations on this system may
be disrupted as a result.

Error: (03/03/2019 01:49:19 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The aswbIDSAgent service terminated with service-specific error %%-536753637.

Error: (03/03/2019 01:00:50 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR8.

Error: (03/03/2019 01:00:50 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR8.

Error: (03/03/2019 01:00:49 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR8.

Error: (03/03/2019 01:00:48 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR8.

Error: (03/03/2019 12:59:14 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR7.

Error: (03/03/2019 12:59:14 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR7.


Windows Defender:
===================================
Date: 2017-10-10 17:01:22.408
Description:
Windows Defender has detected spyware or other potentially unwanted software.
For more information please see the following:
http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/Linkhortry!blnk&threatid=235116
Name:BrowserModifier:Win32/Linkhortry!blnk
ID:235116
Severity:High
Category:Browser Modifier
Path Found:containerfile:C:\Users\Firas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk;file:C:\Users\Firas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk->[CMDEmbedded];startup:C:\Users\Firas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Detection Type:Concrete
Detection Source:System
Status:Unknown
Process Name:c:\program files\windows defender\MpCmdRun.exe

Date: 2017-06-16 16:31:02.639
Description:
Windows Defender has detected spyware or other potentially unwanted software.
For more information please see the following:
http://go.microsoft.com/fwlink/?linkid=37020&name=PWS:Win32/Fareit&threatid=165393
Name:PWS:Win32/Fareit
ID:165393
Severity:Severe
Category:Password Stealer
Path Found:file:C:\Users\Firas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\m.lnk;file:C:\Users\Firas\Desktop\eekGvEwu89.exe;startup:C:\Users\Firas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\m.lnk
Detection Type:Concrete
Detection Source:System
Status:Unknown
Process Name:c:\program files\windows defender\MpCmdRun.exe

Date: 2017-04-21 12:18:08.088
Description:
Windows Defender has detected spyware or other potentially unwanted software.
For more information please see the following:
http://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Necurs&threatid=182438
Name:Trojan:Win32/Necurs
ID:182438
Severity:Severe
Category:Trojan
Path Found:file:C:\Users\Firas\AppData\Local\{70229483-8AF0-6711-3569-4562154D565C}\syshost.exe;regkey:HKCU@S-1-5-21-1649961678-2545274511-965344067-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\syshost32;runkey:HKCU@S-1-5-21-1649961678-2545274511-965344067-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\syshost32
Detection Type:Concrete
Detection Source:System
Status:Unknown
Process Name:c:\program files\windows defender\MpCmdRun.exe

Date: 2017-04-05 07:59:30.679
Description:
Windows Defender has detected spyware or other potentially unwanted software.
For more information please see the following:
http://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Necurs.H&threatid=235940
Name:Trojan:Win32/Necurs.H
ID:235940
Severity:Severe
Category:Trojan
Path Found:process:pid:4968
Detection Type:Concrete
Detection Source:Real-Time Protection
Status:Unknown
Process Name:

Date: 2017-03-28 11:50:37.627
Description:
Windows Defender has detected spyware or other potentially unwanted software.
For more information please see the following:
http://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Necurs&threatid=182438
Name:Trojan:Win32/Necurs
ID:182438
Severity:Severe
Category:Trojan
Path Found:file:C:\Users\Firas\AppData\Local\{F5249DCC-4B7B-FC82-F20B-64D6D16C0A7F}\syshost.exe;process:pid:6744,ProcessStart:131348292153136922;regkey:HKCU@S-1-5-21-1649961678-2545274511-965344067-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\syshost32;runkey:HKCU@S-1-5-21-1649961678-2545274511-965344067-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\syshost32
Detection Type:Concrete
Detection Source:System
Status:Unknown
Process Name:C:\Windows\System32\svchost.exe

Date: 2016-11-30 12:25:39.442
Description:
Windows Defender has encountered an error when taking action on spyware or other potentially unwanted software.
For more information please see the following:
http://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Necurs.A&threatid=162154
Name:Trojan:Win32/Necurs.A
ID:162154
Severity:Severe
Category:Trojan
Path:
Action:Remove
Error Code:0x80508023
Error description:The program could not find the spyware and other potentially unwanted software on this computer.
Status:

CodeIntegrity:
===================================

Date: 2019-02-08 15:28:52.184
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\IRAI\AUTOMGEN8\WinIo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-02-08 15:28:52.106
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\IRAI\AUTOMGEN8\WinIo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-01-28 23:05:38.352
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\IRAI\AUTOMGEN8\WinIo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-01-28 23:05:38.258
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\IRAI\AUTOMGEN8\WinIo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-01-03 13:44:24.569
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\IRAI\AUTOMGEN8\WinIo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-01-03 13:44:24.491
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\IRAI\AUTOMGEN8\WinIo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-11-22 17:36:48.124
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\IRAI\AUTOMGEN8\WinIo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-11-22 17:36:48.031
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\IRAI\AUTOMGEN8\WinIo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz
Percentage of memory in use: 86%
Total physical RAM: 8112.43 MB
Available physical RAM: 1101.96 MB
Total Virtual: 16223.02 MB
Available Virtual: 8215.89 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:195.31 GB) (Free:61.51 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:270.45 GB) (Free:25.01 GB) NTFS
Drive i: () (Removable) (Total:7.2 GB) (Free:5.48 GB) FAT32

\\?\Volume{bdcc36d9-3c01-11e7-a9a0-001e101f0000}\ () (CDROM) (Total:0 GB) (Free:0 GB)

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: B949E5BF)
Partition 1: (Active) - (Size=195.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=270.4 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 7.2 GB) (Disk ID: FDE918DB)
Partition 1: (Not Active) - (Size=7.2 GB) - (Type=0B)

==================== End of Addition.txt ============================