Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-06-2016 01
- Ran by CaBomm (2016-06-22 19:48:31)
- Running from C:\Users\CaBomm\Desktop
- Windows 10 Pro Version 1511 (X64) (2016-04-28 13:26:00)
- Boot Mode: Normal
- ==========================================================
- ==================== Accounts: =============================
- Administrator (S-1-5-21-3774103365-3769368451-3019202988-500 - Administrator - Disabled)
- CaBomm (S-1-5-21-3774103365-3769368451-3019202988-1001 - Administrator - Enabled) => C:\Users\CaBomm
- DefaultAccount (S-1-5-21-3774103365-3769368451-3019202988-503 - Limited - Disabled)
- Guest (S-1-5-21-3774103365-3769368451-3019202988-501 - Limited - Disabled)
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- ==================== Installed Programs ======================
- (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.6.0.248 - Adobe Systems Incorporated)
- Adobe Media Encoder CC 2015 (HKLM-x32\...\{0FAC7130-BEC5-47A5-8813-1D339B8326ED}) (Version: 9.2.0 - Adobe Systems Incorporated)
- Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.0 - Adobe Systems Incorporated)
- Adobe Premiere Pro CC 2015 (HKLM-x32\...\{38C72D42-0672-43B1-9E05-E7631684F9A1}) (Version: 9.2.0 - Adobe Systems Incorporated)
- AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
- Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
- Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
- Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
- Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
- Camtasia Studio 8 (HKLM-x32\...\{AF33D0D2-2627-4AC8-8473-FDBB7892129C}) (Version: 8.6.0.2079 - TechSmith Corporation)
- Canon Utilities EOS Lens Registration Tool (HKLM-x32\...\EOS Lens Registration Tool) (Version: 1.3.0.1 - Canon Inc.)
- Canon Utilities EOS Utility 2 (HKLM-x32\...\EOS Utility 2) (Version: 2.14.20.0 - Canon Inc.)
- Canon Utilities EOS Web Service Registration Tool (HKLM-x32\...\EOS Web Service Registration Tool) (Version: 1.2.10.0 - Canon Inc.)
- Catalyst Control Center Next Localization BR (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Catalyst Control Center Next Localization CS (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Catalyst Control Center Next Localization DA (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Catalyst Control Center Next Localization DE (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Catalyst Control Center Next Localization EL (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Catalyst Control Center Next Localization ES (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Catalyst Control Center Next Localization FI (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Catalyst Control Center Next Localization FR (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Catalyst Control Center Next Localization HU (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Catalyst Control Center Next Localization CHS (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Catalyst Control Center Next Localization CHT (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Catalyst Control Center Next Localization IT (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Catalyst Control Center Next Localization JA (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Catalyst Control Center Next Localization KO (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Catalyst Control Center Next Localization NL (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Catalyst Control Center Next Localization NO (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Catalyst Control Center Next Localization PL (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Catalyst Control Center Next Localization RU (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Catalyst Control Center Next Localization SV (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Catalyst Control Center Next Localization TH (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Catalyst Control Center Next Localization TR (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
- Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
- Don't Starve Together (HKLM\...\Steam App 322330) (Version: - Klei Entertainment)
- Gaming Keyboard Driver (HKLM-x32\...\{B3CDED64-7DC2-429D-A325-BBC3CF793AA6}) (Version: 1.0 - Senbiz)
- Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
- Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
- H1Z1: King of the Kill (HKLM\...\Steam App 433850) (Version: - Daybreak Game Company)
- Hotspot Shield 5.4.3 (HKLM-x32\...\HotspotShield) (Version: 5.4.3 - AnchorFree Inc.)
- Hotspot Shield 5.4.3 Embedded (x32 Version: 5.4.3.9703 - Buildbot) Hidden
- Chrome Remote Desktop Host (HKLM-x32\...\{95EB2FCC-AE0B-40E9-B804-347C6358923B}) (Version: 51.0.2704.7 - Google Inc.)
- Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
- LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
- LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.428 - LogMeIn, Inc.)
- LogMeIn Hamachi (x32 Version: 2.2.0.428 - LogMeIn, Inc.) Hidden
- ManyCam 5.3.0 (HKLM-x32\...\ManyCam) (Version: 5.3.0 - Visicom Media Inc.)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
- Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
- Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
- OpenVPN 2.3.11-I001 (HKLM-x32\...\OpenVPN) (Version: 2.3.11-I001 - )
- PhotoFiltre 7 (HKU\S-1-5-21-3774103365-3769368451-3019202988-1001\...\PhotoFiltre 7) (Version: - )
- PlaysTV (HKLM-x32\...\PlaysTV) (Version: 1.10.0-r112342-release - Plays.tv, LLC)
- QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
- Raptr (HKLM-x32\...\Raptr) (Version: 5.2.0-r112326-release - Raptr, Inc)
- Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.)
- Spotify (HKU\S-1-5-21-3774103365-3769368451-3019202988-1001\...\Spotify) (Version: 1.0.31.56.g526cfefe - Spotify AB)
- Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
- TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
- TeamSpeak 3 Client (HKU\S-1-5-21-3774103365-3769368451-3019202988-1001\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
- TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.59518 - TeamViewer)
- TP-LINK TL-WN721N_TL-WN722N Driver (HKLM-x32\...\{86A7EED0-02D0-4D91-8183-8D2F23F5E6AE}) (Version: 1.3.1 - TP-LINK)
- Voicemeeter, The Virtual Mixing Console (HKLM-x32\...\VB:Voicemeeter {17359A74-1236-5467}) (Version: - VB-Audio Software)
- WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
- WinSCP 5.7.7 (HKLM-x32\...\winscp3_is1) (Version: 5.7.7 - Martin Prikryl)
- ==================== Custom CLSID (Whitelisted): ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- CustomCLSID: HKU\S-1-5-21-3774103365-3769368451-3019202988-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-463FE659A413}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
- CustomCLSID: HKU\S-1-5-21-3774103365-3769368451-3019202988-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\CaBomm\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\FileCoAuth.exe (Microsoft Corporation)
- CustomCLSID: HKU\S-1-5-21-3774103365-3769368451-3019202988-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
- ==================== Scheduled Tasks (Whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- Task: {0FC29C48-1EE8-4E22-A386-741A8C256563} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-29] (Google Inc.)
- Task: {4BA6176B-C8F7-4C4A-8B14-30DF0959A339} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2016-04-15] (Advanced Micro Devices, Inc.)
- Task: {B8B926D2-6361-407E-A869-7DB6EB5E4DCC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-29] (Google Inc.)
- Task: {F0A89252-AF9E-4915-8239-F8A56CA0F75C} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-SQCQBHH-CaBomm => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-03-22] (Adobe Systems Incorporated)
- (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
- Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- ==================== Shortcuts =============================
- (The entries could be listed to be restored or removed.)
- ==================== Loaded Modules (Whitelisted) ==============
- 2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
- 2016-04-28 16:02 - 2016-04-28 16:02 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
- 2016-04-28 16:02 - 2016-04-28 16:02 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
- 2016-04-01 23:18 - 2016-04-01 23:18 - 00426160 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
- 2016-04-28 15:34 - 2016-04-28 15:34 - 00959176 _____ () C:\Users\CaBomm\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64\ClientTelemetry.dll
- 2016-02-13 14:53 - 2016-02-13 14:53 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
- 2016-05-11 12:53 - 2016-04-23 06:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
- 2016-04-28 22:09 - 2013-11-11 16:38 - 00270336 _____ () C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE
- 2016-04-28 22:09 - 2013-11-11 16:42 - 00151552 _____ () C:\Program Files (x86)\Gaming Keyboard\OSD.exe
- 2016-04-29 09:05 - 2016-04-29 09:05 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
- 2016-04-25 15:12 - 2016-04-25 15:12 - 00174872 _____ () C:\Users\CaBomm\AppData\Local\TeamSpeak 3 Client\quazip.dll
- 2016-04-25 15:12 - 2016-04-25 15:12 - 00103192 _____ () C:\Users\CaBomm\AppData\Local\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
- 2016-04-25 15:12 - 2016-04-25 15:12 - 00107800 _____ () C:\Users\CaBomm\AppData\Local\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
- 2016-04-25 15:13 - 2016-04-25 15:13 - 00312088 _____ () C:\Users\CaBomm\AppData\Local\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
- 2016-06-22 18:03 - 2016-06-22 18:03 - 00486912 _____ () C:\Users\CaBomm\AppData\Local\TeamSpeak 3 Client\plugins\soundboard.dll
- 2016-04-25 15:13 - 2016-04-25 15:13 - 00485656 _____ () C:\Users\CaBomm\AppData\Local\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
- 2016-06-03 08:36 - 2016-06-03 08:36 - 00017920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
- 2016-06-03 08:36 - 2016-06-03 08:36 - 13105152 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
- 2016-06-03 08:36 - 2016-06-03 08:36 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
- 2016-04-29 08:59 - 2016-04-29 08:59 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
- 2016-02-13 15:03 - 2016-02-13 15:03 - 00117920 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.22051.0_x64__8wekyb3d8bbwe\GNSDK_FP.DLL
- 2016-06-15 14:58 - 2016-05-28 05:59 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
- 2016-06-15 14:58 - 2016-05-28 05:53 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
- 2016-06-15 14:58 - 2016-05-28 05:54 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
- 2016-06-15 14:58 - 2016-05-28 05:56 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
- 2016-05-27 20:17 - 2016-05-27 20:17 - 00166528 _____ () C:\Program Files (x86)\Hotspot Shield\bin\CrashRpt1403.dll
- 2016-04-28 22:09 - 2012-11-05 08:09 - 00057344 _____ () C:\Program Files (x86)\Gaming Keyboard\lan.dll
- 2016-04-28 22:09 - 2012-11-05 08:37 - 00061440 _____ () C:\Program Files (x86)\Gaming Keyboard\hiddriver.dll
- 2016-06-18 02:04 - 2016-06-15 11:15 - 01745560 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libglesv2.dll
- 2016-06-18 02:04 - 2016-06-15 11:15 - 00091288 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libegl.dll
- 2016-04-30 13:56 - 2016-06-19 12:11 - 47503472 _____ () C:\Users\CaBomm\AppData\Roaming\Spotify\libcef.dll
- 2016-04-30 13:56 - 2016-06-19 12:11 - 01584240 _____ () C:\Users\CaBomm\AppData\Roaming\Spotify\libglesv2.dll
- 2016-04-30 13:56 - 2016-06-19 12:11 - 00082032 _____ () C:\Users\CaBomm\AppData\Roaming\Spotify\libegl.dll
- 2016-04-29 09:05 - 2016-04-29 09:05 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
- 2016-04-29 09:05 - 2016-04-29 09:05 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
- ==================== Alternate Data Streams (Whitelisted) =========
- (If an entry is included in the fixlist, only the ADS will be removed.)
- ==================== Safe Mode (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
- ==================== Association (Whitelisted) ===============
- (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
- ==================== Internet Explorer trusted/restricted ===============
- (If an entry is included in the fixlist, it will be removed from the registry.)
- ==================== Hosts content: ==========================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2015-10-30 09:24 - 2016-04-29 10:12 - 00000992 ____A C:\WINDOWS\system32\Drivers\etc\hosts
- 127.0.0.1 www.mirillis.com
- 127.0.0.1 s0ft4pc.com
- 127.0.0.1 serwer2.paka-service.com
- ==================== Other Areas ============================
- (Currently there is no automatic fix for this section.)
- HKU\S-1-5-21-3774103365-3769368451-3019202988-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\CaBomm\Desktop\pozadi.png
- DNS Servers: 192.168.1.1
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
- Windows Firewall is disabled.
- ==================== MSCONFIG/TASK MANAGER disabled items ==
- (Currently there is no automatic fix for this section.)
- HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
- HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
- HKLM\...\StartupApproved\Run32: => "PlaysTV"
- HKLM\...\StartupApproved\Run32: => "Raptr"
- HKU\S-1-5-21-3774103365-3769368451-3019202988-1001\...\StartupApproved\Run: => "OneDrive"
- HKU\S-1-5-21-3774103365-3769368451-3019202988-1001\...\StartupApproved\Run: => "Skype"
- ==================== FirewallRules (Whitelisted) ===============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
- FirewallRules: [TCP Query User{6F668FD1-8575-419D-B8FA-3CD5DF8F9C17}C:\users\cabomm\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\cabomm\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
- FirewallRules: [UDP Query User{087AC0D7-B3B3-4EC4-B860-20E99F5C6C7E}C:\users\cabomm\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\cabomm\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
- FirewallRules: [{E965B486-5121-4132-9702-85E3E40A0669}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{F18D774A-9497-4171-8B72-6AB592092DBD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{93A7B993-6A76-4F8B-A27C-DE9D38188782}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- FirewallRules: [{48C6F364-6F5C-498A-B1DC-AC9263C0E31E}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- FirewallRules: [{B0F154DA-DB34-4159-9E92-65BB0EA1FC01}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
- FirewallRules: [{817EEFA2-7050-4241-8FD2-1A02791DC128}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
- FirewallRules: [{1F16AFBC-3378-442C-9A9B-48A4B3E8824D}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
- FirewallRules: [{C84D46CE-5081-42B1-A203-D9E1575B1822}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
- FirewallRules: [{ACC90076-C68F-42BD-91A7-070C310D3A47}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
- FirewallRules: [{B343F371-CD69-4A6C-8AB5-C0AF22D25490}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
- FirewallRules: [{749A3216-0AD6-427D-9343-E706D2167142}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
- FirewallRules: [{EE491C9F-5E55-49FC-992A-02954317BD32}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
- FirewallRules: [TCP Query User{404612FB-BD6E-44C6-9D17-FE81CA0A570E}C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
- FirewallRules: [UDP Query User{DA64AEF9-1317-4348-AADF-57269104206C}C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
- FirewallRules: [{50E49EE1-00B3-441A-9B7A-B9FDC66123AA}] => (Allow) LPort=8317
- FirewallRules: [TCP Query User{3127D532-F686-4716-9FC6-219CA4F7234F}C:\users\cabomm\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\cabomm\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
- FirewallRules: [UDP Query User{5AC3DD96-F8C7-4F56-8F9B-AD0E10776DC5}C:\users\cabomm\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\cabomm\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
- FirewallRules: [TCP Query User{1D39B8D1-1D77-4167-8CA0-7E27483C4123}C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe
- FirewallRules: [UDP Query User{036A4FB3-C8C3-418E-9288-AF244A80E514}C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe
- FirewallRules: [TCP Query User{E0923697-9540-40CA-8A19-C66EE86B0E77}C:\users\cabomm\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\cabomm\appdata\roaming\spotify\spotify.exe
- FirewallRules: [UDP Query User{C374273A-BA8C-4BC8-AB3F-7B56D760BAF2}C:\users\cabomm\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\cabomm\appdata\roaming\spotify\spotify.exe
- FirewallRules: [{CC658FAE-26F7-4B99-9B35-A84633D835C5}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
- FirewallRules: [TCP Query User{1101D54D-9B6F-4359-A3CC-D948B71EC70A}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
- FirewallRules: [UDP Query User{5EDA886B-D530-4ED9-BBD0-8737384D5F6E}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
- FirewallRules: [{2E7FA4C0-E1FF-4E36-A046-83013D8C0567}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
- FirewallRules: [{9E587C6E-975C-4696-931A-285FF71E47D7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
- FirewallRules: [{7922F07B-34A1-4F72-90EB-71E33685D4F1}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\51.0.2704.7\remoting_host.exe
- FirewallRules: [{2E6D7119-A49C-4479-94F9-A8CD02E4CE75}] => (Allow) C:\Program Files (x86)\Canon\EOS Utility\EOSUPNPSV.exe
- FirewallRules: [{0297B690-2F5F-457C-BCBE-57CA3AED3BB6}] => (Allow) C:\Program Files (x86)\Canon\EOS Utility\EOSUPNPSV.exe
- FirewallRules: [{227108B7-D3EB-4F89-B315-7E4061825FA3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
- FirewallRules: [{C16BCE91-4FFA-4306-8D78-CA3FF6924520}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
- FirewallRules: [{4975295C-FAAD-4532-9F12-BAFD41C9BA48}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
- FirewallRules: [{B72A859A-9B13-493D-9DB9-74374748AB72}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
- FirewallRules: [{F709DC9E-DF64-4936-85C8-4584AAE7DFD7}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
- FirewallRules: [{CB3F98CF-8D5F-494C-A783-19F2B7BD3F2F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- FirewallRules: [{63CE0901-DC25-4DB9-81F9-208479122DE4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
- FirewallRules: [{92C91DA8-D7BE-4865-9981-BC4EDE0B7CD5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
- ==================== Restore Points =========================
- 15-06-2016 17:15:16 Windows Update
- 17-06-2016 14:23:14 Installed QuickTime 7
- ==================== Faulty Device Manager Devices =============
- Name: LogMeIn Hamachi Virtual Ethernet Adapter
- Description: LogMeIn Hamachi Virtual Ethernet Adapter
- Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
- Manufacturer: LogMeIn Inc.
- Service: Hamachi
- Problem: : This device is disabled. (Code 22)
- Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (06/22/2016 12:58:47 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
- hr=0xC004F074
- Argument příkazového řádku:
- RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=2
- Error: (06/22/2016 11:57:25 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
- hr=0x8007139F
- Argument příkazového řádku:
- RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
- Error: (06/22/2016 11:56:46 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
- hr=0x8007139F
- Argument příkazového řádku:
- RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
- Error: (06/21/2016 11:35:02 PM) (Source: COM) (EventID: 10031) (User: )
- Description: {CDC82860-468D-4D4E-B7E7-C298FF23AB2C}
- Error: (06/21/2016 11:35:02 PM) (Source: COM) (EventID: 10031) (User: )
- Description: {CDC82860-468D-4D4E-B7E7-C298FF23AB2C}
- Error: (06/21/2016 11:19:04 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
- hr=0xC004F074
- Argument příkazového řádku:
- RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
- Error: (06/21/2016 11:19:00 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
- hr=0xC004F074
- Argument příkazového řádku:
- RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
- Error: (06/21/2016 10:49:38 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
- hr=0xC004F074
- Argument příkazového řádku:
- RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
- Error: (06/21/2016 10:49:38 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
- hr=0xC004F074
- Argument příkazového řádku:
- RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
- Error: (06/21/2016 10:41:11 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
- hr=0xC004F074
- Argument příkazového řádku:
- RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
- System errors:
- =============
- Error: (06/22/2016 03:20:45 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-SQCQBHH)
- Description: výchozí pro počítačMístníAktivace{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}DESKTOP-SQCQBHHCaBommS-1-5-21-3774103365-3769368451-3019202988-1001LocalHost (pomocí LRPC)Microsoft.Windows.FeatureOnDemand.InsiderHub_10.0.10586.0_neutral_neutral_cw5n1h2txyewyS-1-15-2-4016783169-893401051-2237370320-274899566-412088533-2398988950-2155762795
- Error: (06/22/2016 12:38:25 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
- Description: 5
- Error: (06/22/2016 12:38:08 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
- Description: Služba Přístup k uživatelským datům_3d862 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
- Error: (06/22/2016 12:38:08 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
- Description: Služba Úložiště uživatelských dat_3d862 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
- Error: (06/22/2016 12:38:08 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
- Description: Služba Data kontaktů_3d862 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
- Error: (06/22/2016 12:38:08 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
- Description: Služba Hostitel synchronizace_3d862 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
- Error: (06/22/2016 12:38:08 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici
- Error: (06/21/2016 11:37:03 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: Služba dofilter byla neočekávaně ukončena. Tento stav nastal již 1krát.
- Error: (06/21/2016 11:27:43 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-SQCQBHH)
- Description: výchozí pro počítačMístníAktivace{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}DESKTOP-SQCQBHHCaBommS-1-5-21-3774103365-3769368451-3019202988-1001LocalHost (pomocí LRPC)Microsoft.Windows.FeatureOnDemand.InsiderHub_10.0.10586.0_neutral_neutral_cw5n1h2txyewyS-1-15-2-4016783169-893401051-2237370320-274899566-412088533-2398988950-2155762795
- Error: (06/21/2016 11:17:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: Služba Hamachi2Svc neuspěla při spuštění v důsledku následující chyby:
- %%1053 = Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
- CodeIntegrity:
- ===================================
- Date: 2016-06-19 11:52:54.259
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-06-17 19:07:55.204
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-06-16 17:43:42.512
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-05-17 19:38:25.591
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-05-16 20:50:45.442
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-05-14 21:20:47.208
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-05-12 14:07:04.487
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-05-06 07:53:29.977
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-05-02 13:37:20.361
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-04-29 17:18:40.847
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- ==================== Memory info ===========================
- Processor: AMD Athlon(tm) II X2 270 Processor
- Percentage of memory in use: 43%
- Total physical RAM: 8191.18 MB
- Available physical RAM: 4654.2 MB
- Total Virtual: 9471.18 MB
- Available Virtual: 5013.46 MB
- ==================== Drives ================================
- Drive c: (Céčko pičo) (Fixed) (Total:232.35 GB) (Free:40.3 GB) NTFS
- Drive e: (Vole E) (Fixed) (Total:49.81 GB) (Free:3.73 GB) NTFS
- Drive f: (Kabum vole) (Fixed) (Total:53.28 GB) (Free:6.93 GB) NTFS
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (Size: 232.9 GB) (Disk ID: 3A903A8F)
- Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
- Partition 2: (Not Active) - (Size=232.3 GB) - (Type=07 NTFS)
- Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
- ========================================================
- Disk: 1 (Size: 149.1 GB) (Disk ID: 9B729B72)
- Partition 1: (Active) - (Size=49.8 GB) - (Type=07 NTFS)
- Partition 2: (Not Active) - (Size=53.3 GB) - (Type=07 NTFS)
- Partition 3: (Not Active) - (Size=46 GB) - (Type=05)
- ==================== End of Addition.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement