Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-12-2014
- Ran by Ivan at 2014-12-20 15:01:56
- Running from C:\Users\Ivan\Downloads
- Boot Mode: Normal
- ==========================================================
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
- AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
- ==================== Installed Programs ======================
- (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- Acronis Disk Director Home (HKLM-x32\...\{9CCC78EF-027E-40E0-9B61-39932C65E3FE}) (Version: 11.0.216 - Acronis)
- Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.6.0.5970 - Adobe Systems Incorporated)
- Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
- Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
- Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.223 - Adobe Systems Incorporated)
- Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
- Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
- Amazon Kindle (HKU\S-1-5-21-798382389-292362996-4240100832-1001\...\Amazon Kindle) (Version: - Amazon)
- AMD Catalyst Install Manager (HKLM\...\{C2956908-53A3-88FC-B795-B16508296FC4}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
- avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software)
- Ažuriranje za Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-041A-0000-0000000FF1CE}_ENTERPRISE_{BAEF930D-2299-4291-A776-76180A3A62E2}) (Version: - Microsoft)
- Ažuriranje za Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-041A-0000-0000000FF1CE}_ENTERPRISE_{AF2BE5BC-7CDA-4D93-BC81-B318E4729D7A}) (Version: - Microsoft)
- Ažuriranje za Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-041A-0000-0000000FF1CE}_ENTERPRISE_{CB1B45DE-6AAE-46FB-9FFE-B5F4F7029605}) (Version: - Microsoft)
- BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.61.1065 - AB Team, d.o.o.)
- CCleaner (HKLM\...\CCleaner) (Version: 5.00 - Piriform)
- Crystal Reports for Visual Studio (x32 Version: 12.51.0.240 - SAP) Hidden
- D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
- DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
- Dotfuscator Software Services - Community Edition (HKLM-x32\...\{41B31ABE-5A6E-498A-8F28-3BA3B8779A41}) (Version: 5.0.2300.0 - PreEmptive Solutions)
- Dropbox (HKU\S-1-5-21-798382389-292362996-4240100832-1001\...\Dropbox) (Version: 2.4.1 - Dropbox, Inc.)
- EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.4.0.0 - Electronic Arts)
- Evernote v. 4.6.6 (HKLM-x32\...\{6146B9DC-C33D-11E2-BDE1-984BE15F174E}) (Version: 4.6.6.8360 - Evernote Corp.)
- Glary Utilities 5.14 (HKLM-x32\...\Glary Utilities 5) (Version: 5.14.0.27 - Glarysoft Ltd)
- Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
- Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
- Grand Ages Rome 1.01 (HKLM-x32\...\Civitas3) (Version: 1.01 - Kalypso Media)
- HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.232 - SurfRight B.V.)
- Java 8 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418025F0}) (Version: 8.0.250 - Oracle Corporation)
- Java SE Development Kit 8 Update 25 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180250}) (Version: 8.0.250.18 - Oracle Corporation)
- Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
- Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
- Messenger Suradnik (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
- Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
- Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
- Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (HKLM-x32\...\{40416836-56CC-4C0E-A6AF-5C34BADCE483}) (Version: 2.0.50217.0 - Microsoft Corporation)
- Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
- Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
- Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
- Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
- Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
- Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
- Microsoft Silverlight 3 SDK (HKLM-x32\...\{2012098D-EEE9-4769-8DD3-B038050854D4}) (Version: 3.0.40818.0 - Microsoft Corporation)
- Microsoft SQL Server 2008 Native Client (HKLM\...\{BBDE8A3D-64A2-43A6-95F3-C27B87DF7AC1}) (Version: 10.1.2531.0 - Microsoft Corporation)
- Microsoft SQL Server 2008 R2 Data-Tier Application Framework (HKLM-x32\...\{0DDCEC37-369C-484B-B16D-B4413FD42FB9}) (Version: 10.50.1447.4 - Microsoft Corporation)
- Microsoft SQL Server 2008 R2 Data-Tier Application Project (HKLM-x32\...\{E5AE9031-79A5-4627-9641-BEFA82819B08}) (Version: 10.50.1447.4 - Microsoft Corporation)
- Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{4E968D9C-21A7-4915-B698-F7AEB913541D}) (Version: 10.50.1447.4 - Microsoft Corporation)
- Microsoft SQL Server 2008 R2 Management Objects (x64) (HKLM\...\{DA67488A-2689-4F10-B90F-D2F6977509D6}) (Version: 10.50.1447.4 - Microsoft Corporation)
- Microsoft SQL Server 2008 R2 Transact-SQL Language Service (HKLM-x32\...\{78C3657E-742C-40B1-9F53-E5A921D40F17}) (Version: 10.50.1447.4 - Microsoft Corporation)
- Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
- Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
- Microsoft SQL Server Database Publishing Wizard 1.4 (HKLM-x32\...\{ACE28263-76A4-4BF5-B6F4-8BD719595969}) (Version: 10.1.2512.8 - Microsoft Corporation)
- Microsoft SQL Server System CLR Types (HKLM-x32\...\{2A2F3AE8-246A-4252-BB26-1BEB45627074}) (Version: 10.50.1447.4 - Microsoft Corporation)
- Microsoft SQL Server System CLR Types (x64) (HKLM\...\{4A8CE6D7-4D52-43B9-970B-03FC75FAD667}) (Version: 10.50.1447.4 - Microsoft Corporation)
- Microsoft Sync Framework Runtime v1.0 SP1 (x64) (HKLM\...\{8438EC02-B8A9-462D-AC72-1B521349C001}) (Version: 1.0.3010.0 - Microsoft Corporation)
- Microsoft Sync Framework SDK v1.0 SP1 (HKLM-x32\...\{0E3DFC64-CC49-4BE2-8C9C-58EF129675DB}) (Version: 1.0.3010.0 - Microsoft Corporation)
- Microsoft Sync Framework Services v1.0 SP1 (x64) (HKLM\...\{034106B5-54B7-467F-B477-5B7DBB492624}) (Version: 1.0.3010.0 - Microsoft Corporation)
- Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) (HKLM\...\{1D1CEEF8-3741-45BD-8E77-963E1DEBDDD3}) (Version: 2.0.3010.0 - Microsoft Corporation)
- Microsoft Team Foundation Server 2010 Object Model - ENU (HKLM\...\Microsoft Team Foundation Server 2010 Object Model - ENU) (Version: 10.0.30319 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Designtime - 10.0.30319 (HKLM\...\{F5079164-1DB9-3BDA-853B-F78AF67CE071}) (Version: 10.0.30319 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Runtime - 10.0.30319 (HKLM-x32\...\{6A86554B-8928-30E4-A53C-D7337689134D}) (Version: 10.0.30319 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
- Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{729A3000-BC8A-3B74-BA5D-5068FE12D70C}) (Version: 10.0.30319 - Microsoft Corporation)
- Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.30319 - Microsoft Corporation)
- Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
- Origin (HKLM-x32\...\Origin) (Version: 9.4.22.2815 - Electronic Arts, Inc.)
- paint.net (HKLM\...\{F509C1F4-0029-49F9-B145-A4C4E8DF481A}) (Version: 4.0.3 - dotPDN LLC)
- Rainmeter (HKLM-x32\...\Rainmeter) (Version: 2.5 r1842 - )
- Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.21.531.2010 - Realtek)
- Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
- Stronghold Crusader 2 (HKLM-x32\...\Stronghold Crusader 2_is1) (Version: - )
- SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.6.1032 - SUPERAntiSpyware.com)
- Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
- Viber (HKU\S-1-5-21-798382389-292362996-4240100832-1001\...\Viber) (Version: 3.0.0.134193 - Viber Media Inc)
- Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
- Visual Studio 2010 Prerequisites - English (HKLM\...\{662014D2-0450-37ED-ABAE-157C88127BEB}) (Version: 10.0.30319 - Microsoft Corporation)
- Vuze (HKLM-x32\...\8461-7759-5462-8226) (Version: 4.7 - Vuze Inc.)
- Web Deployment Tool (HKLM\...\{0F37D969-1260-419E-B308-EF7D29ABDE20}) (Version: 1.1.0618 - Microsoft Corporation)
- Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
- Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
- WinRAR 4.11 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)
- XAMPP (HKLM-x32\...\xampp) (Version: 5.6.3-0 - Bitnami)
- ==================== Custom CLSID (selected items): ==========================
- (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
- CustomCLSID: HKU\S-1-5-21-798382389-292362996-4240100832-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Ivan\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
- CustomCLSID: HKU\S-1-5-21-798382389-292362996-4240100832-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ivan\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
- CustomCLSID: HKU\S-1-5-21-798382389-292362996-4240100832-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ivan\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
- CustomCLSID: HKU\S-1-5-21-798382389-292362996-4240100832-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ivan\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
- CustomCLSID: HKU\S-1-5-21-798382389-292362996-4240100832-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ivan\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
- ==================== Restore Points =========================
- 18-12-2014 20:27:43 Windows Update
- 19-12-2014 15:02:00 Sigurnosna točka programa HitmanPro
- 19-12-2014 15:03:03 Sigurnosna točka programa HitmanPro
- 19-12-2014 19:47:17 Removed Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools
- 19-12-2014 19:50:18 Removed Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU
- 19-12-2014 19:51:33 Removed Microsoft Visual Studio 2010 IntelliTrace Collection (x64)
- 19-12-2014 19:52:11 Removed Microsoft Visual Studio Macro Tools
- 19-12-2014 19:54:56 Removed Microsoft SQL Server 2005 Compact Edition [ENU]
- ==================== Hosts content: ==========================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2009-07-14 03:34 - 2012-10-11 20:45 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
- 127.0.0.1 localhost
- ==================== Scheduled Tasks (whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
- Task: {238C8EC5-27A6-46EB-8669-78C543EE51E6} - System32\Tasks\{438FFF1B-ECFD-42CA-81A2-3C5458C2051B} => pcalua.exe -a "D:\Games\FIFA 13\FIFA13LMW150AIO\ModdingWayInstaller.exe" -d "D:\Games\FIFA 13\FIFA13LMW150AIO"
- Task: {443725D2-4525-47F5-B93C-4677454B80DA} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
- Task: {524EC912-B045-4BD8-9B71-F44A894F14C4} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
- Task: {5436BB24-BC42-4B7C-B220-6F06DB78DED2} - System32\Tasks\{CE277062-889B-45D4-83DF-7E5AECB3C8E6} => pcalua.exe -a "D:\Games\FIFA 13\rev.mod\Revolution Mod 13 V.1.1 by scouser09.exe" -d "D:\Games\FIFA 13\rev.mod"
- Task: {5E16439A-202D-46AE-90C5-BC9EF6AE28CB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-11-21] (Piriform Ltd)
- Task: {789DB5F1-E29F-4085-A67B-081589CFDE52} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12] (Adobe Systems Incorporated)
- Task: {8E5561CC-8B0E-49A1-9B0A-C0970305C34E} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
- Task: {9F1CF670-2463-4C01-92F6-B3A4E74E6CD8} - System32\Tasks\{80147914-8B70-445C-BD9F-0E615E454A99} => pcalua.exe -a "C:\Users\Ivan\Desktop\Revolution Mod 13 V.1.1\Revolution Mod 13 V.1.1 by scouser09.exe" -d "C:\Users\Ivan\Desktop\Revolution Mod 13 V.1.1"
- Task: {A0E65A5B-479A-486C-AE91-2FFE09FD701D} - System32\Tasks\{28909D25-F4E2-44DF-B3D1-A9E5E858A011} => pcalua.exe -a "D:\Games\FIFA 13\Game\ModdingWayInstaller.exe" -d "D:\Games\FIFA 13\Game"
- Task: {A630295C-60BF-4F94-A551-14E9FD70FBE0} - System32\Tasks\{ED9036A5-3644-4551-8EC1-05C00968D2C0} => Firefox.exe http://ui.skype.com/ui/0/5.8.0.154.259/en/go/help.faq.installer?source=lightinstaller&LastError=1618
- Task: {BC11C307-5A55-4DFF-A620-C1C4CF4D8757} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
- Task: {C56E7080-418F-4FB1-A848-33B01C13390A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-30] (Google Inc.)
- Task: {CAE97FB0-F142-4F9B-872B-98012649E151} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-30] (Google Inc.)
- Task: {E643BEE3-46A0-4ECF-8CB8-6AD30E1880A9} - System32\Tasks\avast! Emergency Update => D:\AVAST Software\Avast\AvastEmUpdate.exe [2014-10-03] (AVAST Software)
- Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
- Task: C:\Windows\Tasks\GlaryInitialize 5.job => D:\Glary Utilities\Glary Utilities 5\Initialize.exe
- Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfefdb2be71777.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d000ee74416b95.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\Windows\Tasks\GU5SkipUAC.job => D:\Glary Utilities\Glary Utilities 5\Integrator.exe
- ==================== Loaded Modules (whitelisted) =============
- 2014-09-15 17:13 - 2014-09-15 17:13 - 00214528 _____ () D:\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
- 2014-02-11 06:08 - 2014-02-11 06:08 - 00817152 _____ () D:\ATI Technologies\ATI.ACE\Fuel\Device.dll
- 2014-02-11 06:08 - 2014-02-11 06:08 - 03650560 _____ () D:\ATI Technologies\ATI.ACE\Fuel\Platform.dll
- 2014-09-15 17:13 - 2014-09-15 17:13 - 00127488 _____ () D:\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
- 2010-05-25 19:53 - 2010-05-25 19:53 - 02139400 _____ () D:\AcronisDiscDirector\OSS\reinstall_svc.exe
- 2013-03-24 15:40 - 2013-03-24 15:40 - 00036024 _____ () C:\Program Files\Rainmeter\Rainmeter.exe
- 2013-03-24 15:40 - 2013-03-24 15:40 - 00731832 _____ () C:\Program Files\Rainmeter\Rainmeter.dll
- 2013-03-24 15:38 - 2013-03-24 15:38 - 00062464 _____ () C:\Program Files\Rainmeter\Plugins\WebParser.dll
- 2014-09-15 17:13 - 2014-09-15 17:13 - 00102400 _____ () D:\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
- 2014-10-03 15:03 - 2014-10-03 15:03 - 00301152 _____ () D:\AVAST Software\Avast\aswProperty.dll
- 2014-12-19 13:44 - 2014-12-19 13:44 - 02908160 _____ () D:\AVAST Software\Avast\defs\14121900\algo.dll
- 2014-12-20 14:45 - 2014-12-20 14:45 - 02908160 _____ () D:\AVAST Software\Avast\defs\14122000\algo.dll
- 2014-10-03 15:03 - 2014-10-03 15:03 - 19329904 _____ () D:\AVAST Software\Avast\libcef.dll
- 2014-12-09 19:28 - 2014-12-06 02:50 - 01077064 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libglesv2.dll
- 2014-12-09 19:28 - 2014-12-06 02:50 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libegl.dll
- 2014-12-09 19:28 - 2014-12-06 02:50 - 09009480 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\pdf.dll
- 2014-12-09 19:28 - 2014-12-06 02:50 - 01677128 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ffmpegsumo.dll
- 2014-12-09 19:28 - 2014-12-06 02:50 - 14913352 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\PepperFlash\pepflashplayer.dll
- ==================== Alternate Data Streams (whitelisted) =========
- (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
- ==================== Safe Mode (whitelisted) ===================
- (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- ==================== EXE Association (whitelisted) =============
- (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
- ==================== MSCONFIG/TASK MANAGER disabled items =========
- (Currently there is no automatic fix for this section.)
- MSCONFIG\Services: eventlog => 2
- MSCONFIG\Services: Wecsvc => 3
- MSCONFIG\startupfolder: C:^Users^Ivan^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
- MSCONFIG\startupfolder: C:^Users^Ivan^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EvernoteClipper.lnk => C:\Windows\pss\EvernoteClipper.lnk.Startup
- MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
- MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
- MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
- MSCONFIG\startupreg: DAEMON Tools Pro Agent => "C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe" -autorun
- MSCONFIG\startupreg: Google Update => "C:\Users\Ivan\AppData\Local\Google\Update\GoogleUpdate.exe" /c
- MSCONFIG\startupreg: GUDelayStartup => "D:\Glary Utilities\Glary Utilities 5\StartupManager.exe" -delayrun
- MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
- MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
- MSCONFIG\startupreg: Spybot-S&D Cleaning => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean
- MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
- MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
- MSCONFIG\startupreg: SUPERAntiSpyware => D:\SUPERAntiSpyware\SUPERAntiSpyware.exe
- MSCONFIG\startupreg: Viber => "C:\Users\Ivan\AppData\Local\Viber\Viber.exe" StartMinimized
- ========================= Accounts: ==========================
- Administrator (S-1-5-21-798382389-292362996-4240100832-500 - Administrator - Disabled)
- Guest (S-1-5-21-798382389-292362996-4240100832-501 - Limited - Disabled)
- HomeGroupUser$ (S-1-5-21-798382389-292362996-4240100832-1002 - Limited - Enabled)
- Ivan (S-1-5-21-798382389-292362996-4240100832-1001 - Administrator - Enabled) => C:\Users\Ivan
- ==================== Faulty Device Manager Devices =============
- Name:
- Description:
- Class Guid:
- Manufacturer:
- Service:
- Problem: : The drivers for this device are not installed. (Code 28)
- Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
- Name: Realtek PCIe FE Family Controller
- Description: Realtek PCIe FE Family Controller
- Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
- Manufacturer: Realtek
- Service: RTL8167
- Problem: : This device is disabled. (Code 22)
- Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
- Name:
- Description:
- Class Guid:
- Manufacturer:
- Service:
- Problem: : The drivers for this device are not installed. (Code 28)
- Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
- Name: USB2.0-CRW
- Description: USB2.0-CRW
- Class Guid:
- Manufacturer:
- Service:
- Problem: : The drivers for this device are not installed. (Code 28)
- Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (10/16/2014 07:11:50 PM) (Source: Application Hang) (EventID: 1002) (User: )
- Description: The program Origin.exe version 9.4.23.2817 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
- Process ID: 354
- Start Time: 01cfe96c82ecbcc1
- Termination Time: 7
- Application Path: D:\Origin\Origin.exe
- Report Id: e39458ac-555f-11e4-9048-60d819e98cb7
- Error: (10/16/2014 03:55:03 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: Setup.exe_Origin, version: 9.4.22.2815, time stamp: 0x4f29728a
- Faulting module name: System.dll, version: 0.0.0.0, time stamp: 0x4ebd6eed
- Exception code: 0xc0000005
- Fault offset: 0x000018cb
- Faulting process id: 0xaa8
- Faulting application start time: 0xSetup.exe_Origin0
- Faulting application path: Setup.exe_Origin1
- Faulting module path: Setup.exe_Origin2
- Report Id: Setup.exe_Origin3
- Error: (10/10/2014 01:59:29 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: fifaconfig.exe, version: 1.0.0.0, time stamp: 0x53ebcf7e
- Faulting module name: KERNELBASE.dll, version: 6.1.7601.18409, time stamp: 0x5315a05a
- Exception code: 0xe0434352
- Fault offset: 0x000000000000940d
- Faulting process id: 0x11ac
- Faulting application start time: 0xfifaconfig.exe0
- Faulting application path: fifaconfig.exe1
- Faulting module path: fifaconfig.exe2
- Report Id: fifaconfig.exe3
- Error: (10/10/2014 01:59:29 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
- Description: Application: fifaconfig.exe
- Framework Version: v4.0.30319
- Description: The process was terminated due to an unhandled exception.
- Exception Info: System.IO.FileNotFoundException
- Stack:
- at fifasetup_csharp.StartingForm..ctor()
- at fifasetup_csharp.Program.Main(System.String[])
- Error: (10/10/2014 01:58:30 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
- Description: Application: fifaconfig.exe
- Framework Version: v4.0.30319
- Description: The process was terminated due to an unhandled exception.
- Exception Info: System.IO.FileNotFoundException
- Stack:
- at fifasetup_csharp.StartingForm..ctor()
- at fifasetup_csharp.Program.Main(System.String[])
- Error: (10/10/2014 01:58:19 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
- Description: Application: fifaconfig.exe
- Framework Version: v4.0.30319
- Description: The process was terminated due to an unhandled exception.
- Exception Info: System.IO.FileNotFoundException
- Stack:
- at fifasetup_csharp.StartingForm..ctor()
- at fifasetup_csharp.Program.Main(System.String[])
- Error: (10/04/2014 04:03:12 PM) (Source: SideBySide) (EventID: 33) (User: )
- Description: Activation context generation failed for "Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"1".
- Dependent Assembly Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762" could not be found.
- Please use sxstrace.exe for detailed diagnosis.
- Error: (10/04/2014 04:03:11 PM) (Source: SideBySide) (EventID: 33) (User: )
- Description: Activation context generation failed for "Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"1".
- Dependent Assembly Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762" could not be found.
- Please use sxstrace.exe for detailed diagnosis.
- Error: (10/04/2014 04:03:10 PM) (Source: SideBySide) (EventID: 33) (User: )
- Description: Activation context generation failed for "Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"1".
- Dependent Assembly Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762" could not be found.
- Please use sxstrace.exe for detailed diagnosis.
- Error: (10/04/2014 04:03:08 PM) (Source: SideBySide) (EventID: 33) (User: )
- Description: Activation context generation failed for "Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"1".
- Dependent Assembly Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762" could not be found.
- Please use sxstrace.exe for detailed diagnosis.
- System errors:
- =============
- Error: (12/18/2014 07:53:23 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
- Description: The Task Scheduler service depends on the Windows Event Log service which failed to start because of the following error:
- %%1058
- Error: (12/18/2014 07:30:35 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
- Description: The Task Scheduler service depends on the Windows Event Log service which failed to start because of the following error:
- %%1058
- Error: (12/18/2014 01:53:44 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
- Description: The Task Scheduler service depends on the Windows Event Log service which failed to start because of the following error:
- %%1058
- Error: (12/17/2014 11:30:02 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
- Description: The Task Scheduler service depends on the Windows Event Log service which failed to start because of the following error:
- %%1058
- Error: (10/16/2014 09:25:23 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
- Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Windows Defender - KB915597 (Definition 1.185.3248.0).
- Error: (10/16/2014 09:10:46 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
- Description: The Windows Update service hung on starting.
- Error: (10/16/2014 07:59:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The AODDriver4.3 service failed to start due to the following error:
- %%2
- Error: (10/13/2014 01:23:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The SQL Server (SQLEXPRESS) service failed to start due to the following error:
- %%1053
- Error: (10/13/2014 01:23:22 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
- Description: A timeout was reached (30000 milliseconds) while waiting for the SQL Server (SQLEXPRESS) service to connect.
- Error: (10/11/2014 01:20:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The SQL Server (SQLEXPRESS) service failed to start due to the following error:
- %%1053
- Microsoft Office Sessions:
- =========================
- CodeIntegrity Errors:
- ===================================
- Date: 2012-10-11 21:39:11.526
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2012-10-11 21:39:11.448
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2012-07-16 17:15:14.377
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.1.7600.16385_none_34b0fc0c53728e43\fveapibase.dll because the set of per-page image hashes could not be found on the system.
- Date: 2012-07-16 17:15:14.268
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.1.7600.16385_none_34b0fc0c53728e43\fveapibase.dll because the set of per-page image hashes could not be found on the system.
- Date: 2012-07-16 17:15:14.159
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.1.7600.16385_none_34b0fc0c53728e43\fveapibase.dll because the set of per-page image hashes could not be found on the system.
- Date: 2012-07-16 17:15:10.399
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-s..trics-sensoradapter_31bf3856ad364e35_6.1.7600.16385_none_13881e44d6ccca6b\winbiosensoradapter.dll because the set of per-page image hashes could not be found on the system.
- Date: 2012-07-16 17:15:10.305
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-s..trics-sensoradapter_31bf3856ad364e35_6.1.7600.16385_none_13881e44d6ccca6b\winbiosensoradapter.dll because the set of per-page image hashes could not be found on the system.
- Date: 2012-07-16 17:15:10.196
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-s..trics-sensoradapter_31bf3856ad364e35_6.1.7600.16385_none_13881e44d6ccca6b\winbiosensoradapter.dll because the set of per-page image hashes could not be found on the system.
- Date: 2012-07-16 17:15:09.182
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-s..rics-storageadapter_31bf3856ad364e35_6.1.7600.16385_none_d67ca3c3b6af653e\winbiostorageadapter.dll because the set of per-page image hashes could not be found on the system.
- Date: 2012-07-16 17:15:09.089
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-s..rics-storageadapter_31bf3856ad364e35_6.1.7600.16385_none_d67ca3c3b6af653e\winbiostorageadapter.dll because the set of per-page image hashes could not be found on the system.
- ==================== Memory info ===========================
- Processor: AMD A6-3400M APU with Radeon(tm) HD Graphics
- Percentage of memory in use: 44%
- Total physical RAM: 3558.11 MB
- Available physical RAM: 1963.75 MB
- Total Pagefile: 7114.4 MB
- Available Pagefile: 5140.07 MB
- Total Virtual: 8192 MB
- Available Virtual: 8191.84 MB
- ==================== Drives ================================
- Drive c: () (Fixed) (Total:67.58 GB) (Free:22.79 GB) NTFS
- Drive d: () (Fixed) (Total:600.67 GB) (Free:510.36 GB) NTFS
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (Size: 698.6 GB) (Disk ID: 64295052)
- Partition 1: (Not Active) - (Size=600.7 GB) - (Type=07 NTFS)
- Partition 2: (Active) - (Size=29.3 GB) - (Type=0C)
- Partition 3: (Not Active) - (Size=67.6 GB) - (Type=07 NTFS)
- Partition 4: (Not Active) - (Size=1.1 GB) - (Type=12)
- ==================== End Of Log ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement