Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-05-2017
- Ran by Decay (16-05-2017 19:25:43)
- Running from C:\Users\Decay\Desktop
- Windows 7 Professional Service Pack 1 (X64) (2017-05-14 12:51:37)
- Boot Mode: Normal
- ==========================================================
- ==================== Accounts: =============================
- Administrator (S-1-5-21-2757016799-914875450-2991146613-500 - Administrator - Disabled)
- Decay (S-1-5-21-2757016799-914875450-2991146613-1000 - Administrator - Enabled) => C:\Users\Decay
- Guest (S-1-5-21-2757016799-914875450-2991146613-501 - Limited - Disabled)
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
- AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
- AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- ==================== Installed Programs ======================
- (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- 7-Zip 17.00 beta (x64) (HKLM\...\7-Zip) (Version: 17.00 beta - Igor Pavlov)
- adobe (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
- Adobe Audition CC 2017 (HKLM-x32\...\AUDT_10_1_0) (Version: 10.1.0 - Adobe Systems Incorporated)
- Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.0.1.188 - Adobe Systems Incorporated)
- Adobe Illustrator CC 2017 (HKLM-x32\...\ILST_21_1_0) (Version: 21.1.0 - Adobe Systems Incorporated)
- Adobe Media Encoder CC 2017 (HKLM-x32\...\AME_11_1_0) (Version: 11.1.0 - Adobe Systems Incorporated)
- Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_1_1) (Version: 18.1.1 - Adobe Systems Incorporated)
- Adobe Premiere Pro CC 2017 (HKLM-x32\...\PPRO_11_1_0) (Version: 11.1.0 - Adobe Systems Incorporated)
- AMD Catalyst Install Manager (HKLM\...\{3FAEEEBE-48F4-84C1-2B49-96AE73E67E3E}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
- BenVista PhotoZoom Pro 7.0.4 (HKU\S-1-5-21-2757016799-914875450-2991146613-1000\...\PhotoZoom Pro 7) (Version: 7.0.4 - BenVista Ltd.)
- Bethesda.net Launcher (HKLM-x32\...\{3448917E-E4FE-4E30-9502-9FD52EABB6F5}_is1) (Version: 1.17.1 - Bethesda Softworks)
- dBpoweramp (HKLM-x32\...\dBpoweramp) (Version: Release 16.2 - Illustrate)
- Discord (HKU\S-1-5-21-2757016799-914875450-2991146613-1000\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
- Epic Games Launcher (HKLM-x32\...\{CA3D68C2-DC5C-4652-B7ED-E1088F8EB2F3}) (Version: 1.1.103.0 - Epic Games, Inc.)
- Epic Games Launcher Prerequisites (x64) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
- HashTab 6.0.0.28 (HKLM\...\HashTab) (Version: 6.0.0.28 - Implbits Software)
- Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3518 - Intel Corporation)
- Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
- Launcher Prerequisites (x64) (x32 Version: 1.0.0.0 - Epic Games, Inc.) Hidden
- Malwarebytes version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
- Microsoft .NET Framework 4.7 (HKLM\...\{BCF0C1F7-671C-3922-A7EA-8AC11F4FC0EB}) (Version: 4.7.02053 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
- Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
- Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.3.3 - Notepad++ Team)
- Oracle VM VirtualBox 5.1.22 (HKLM\...\{8D5E4D4D-5E0C-4448-B018-5DDEF1E208D9}) (Version: 5.1.22 - Oracle Corporation)
- Pidgin (HKLM-x32\...\Pidgin) (Version: 2.12.0 - )
- pidgin-otr 4.0.2 (HKLM-x32\...\pidgin-otr) (Version: 4.0.2 - Cypherpunks CA)
- qBittorrent 3.3.12 (HKLM-x32\...\qBittorrent) (Version: 3.3.12 - The qBittorrent project)
- Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.19.0 - Renesas Electronics Corporation)
- Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.19.0 - Renesas Electronics Corporation) Hidden
- Synaptics TouchPad Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.27.1 - Synaptics Incorporated)
- The Elder Scrolls Legends (HKLM-x32\...\The Elder Scrolls Legends) (Version: - Bethesda Softworks)
- Volume2 1.1.5 (HKLM-x32\...\Volume2) (Version: 1.1.5 - Alexandr Irza)
- ==================== Custom CLSID (Whitelisted): ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- CustomCLSID: HKU\S-1-5-21-2757016799-914875450-2991146613-1000_Classes\CLSID\{0BCF0559-565A-9A13-8565-BFD93181B729}\InprocServer32 -> no filepath
- CustomCLSID: HKU\S-1-5-21-2757016799-914875450-2991146613-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
- ==================== Scheduled Tasks (Whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- Task: {38B0711A-D914-4919-8234-984618A6A04F} - System32\Tasks\AdobeAAMUpdater-1.0-Decadance-Decay => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
- Task: {A1D60D55-A6B8-401B-BC05-2938E02DF2F2} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => d:\program files\windows defender\MpCmdRun.exe
- Task: {C4E8B14A-4159-4C58-BDAD-281DBBFC97E8} - System32\Tasks\Microsoft\Windows Defender\MpIdleTask => d:\program files\windows defender\MpCmdRun.exe
- (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
- ==================== Shortcuts =============================
- (The entries could be listed to be restored or removed.)
- ==================== Loaded Modules (Whitelisted) ==============
- 2016-10-25 09:57 - 2016-10-25 09:57 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
- 2017-03-08 07:42 - 2017-03-08 07:42 - 00230064 _____ () D:\Soft\Notepad++\NppShell_06.dll
- 2017-05-16 04:32 - 2017-05-09 16:38 - 02270672 _____ () D:\SOFT\ANTI-MALWARE\MwacLib.dll
- 2017-05-14 18:14 - 2014-03-20 08:34 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
- 2017-05-14 19:07 - 2017-05-09 04:04 - 03949176 _____ () D:\Soft\Vivaldi\Application\1.9.818.49\libglesv2.dll
- 2017-05-14 19:07 - 2017-05-09 04:04 - 00101496 _____ () D:\Soft\Vivaldi\Application\1.9.818.49\libegl.dll
- 2017-04-07 03:49 - 2017-04-07 03:49 - 22635520 _____ () D:\Soft\qBittorrent\qbittorrent.exe
- 2015-07-09 00:56 - 2015-07-09 00:56 - 00093184 _____ () D:\Soft\Total Commander\Plugins\wdx\ShellDetails\ShellDetails.wdx64
- 2015-08-17 01:19 - 2015-08-17 01:19 - 00117248 _____ () D:\Soft\Total Commander\Plugins\wdx\DirSizeCalc\DirSizeCalc.wdx64
- 2012-12-11 11:12 - 2012-12-11 11:12 - 00379392 _____ () D:\Soft\Total Commander\Plugins\wdx\ReadPE\ReadPE.wdx64
- 2013-03-24 15:24 - 2013-03-24 15:24 - 00350720 _____ () D:\Soft\Total Commander\Plugins\wdx\bitchaos\bitchaos.wdx64
- 2017-05-16 17:19 - 2016-12-14 09:00 - 00158288 _____ () D:\Soft\Total Commander\wcmzip64.dll
- 2011-12-18 23:25 - 2011-12-18 23:25 - 00225792 _____ () D:\Soft\Total Commander\Plugins\wlx\HTMLView\HTMLView.wlx64
- 2017-05-16 17:19 - 2016-12-14 09:00 - 00143952 _____ () D:\Soft\Total Commander\tcunzl64.dll
- 2013-07-26 16:06 - 2013-07-26 16:06 - 00837632 _____ () D:\Soft\Total Commander\Plugins\wdx\wdx_mediainfo\TCMediaInfo.wdx64
- 2011-09-07 11:51 - 2011-09-07 11:51 - 00133632 _____ () D:\Soft\Total Commander\Plugins\wdx\wdx_exif\Exif.wdx64
- 2017-03-08 07:42 - 2017-03-08 07:42 - 00021680 _____ () D:\Soft\Notepad++\plugins\NppExport.dll
- 2015-09-09 01:39 - 2012-08-20 12:25 - 00011264 _____ () D:\Soft\foobar2000\DSOUND.dll
- 2017-01-26 15:02 - 2017-01-26 15:02 - 00071680 _____ () D:\Soft\foobar2000\zlib1.dll
- 2017-04-07 13:58 - 2017-04-07 13:58 - 00156160 _____ () D:\Soft\foobar2000\shared.dll
- 2015-09-09 01:39 - 2012-08-20 11:58 - 00236032 _____ () D:\Soft\foobar2000\user-components\foo_ui_hacks\foo_ui_hacks.dll
- 2017-05-14 14:34 - 2017-05-14 14:34 - 00246496 _____ () D:\Soft\foobar2000\user-components\foo_hdcd\foo_hdcd.dll
- 2015-09-09 01:39 - 2012-08-16 00:55 - 01767936 _____ () D:\Soft\foobar2000\user-components\foo_facets\foo_facets.dll
- 2015-09-09 01:39 - 2012-08-16 00:55 - 00124928 _____ () D:\Soft\foobar2000\user-components\foo_chacon\foo_chacon.dll
- 2015-09-09 01:39 - 2012-08-20 02:09 - 00049152 _____ () D:\Soft\foobar2000\user-components\foo_keep_queue\foo_keep_queue.dll
- 2016-07-11 16:45 - 2016-07-11 16:45 - 00290816 _____ () D:\Soft\foobar2000\user-components\foo_abx\foo_abx.dll
- 2015-09-09 01:39 - 2012-08-16 00:55 - 00188416 _____ () D:\Soft\foobar2000\user-components\foo_uie_typefind\foo_uie_typefind.dll
- 2015-09-09 01:39 - 2014-01-12 03:08 - 00164864 _____ () D:\Soft\foobar2000\user-components\foo_input_shorten\foo_input_shorten.dll
- 2015-09-09 01:39 - 2012-08-20 11:51 - 00090624 _____ () D:\Soft\foobar2000\user-components\foo_jesus\foo_jesus.dll
- 2017-04-07 14:00 - 2017-04-07 14:00 - 00250880 _____ () D:\Soft\foobar2000\components\foo_dsp_std.dll
- 2015-09-09 01:39 - 2013-04-29 17:55 - 00271872 _____ () D:\Soft\foobar2000\user-components\foo_input_monkey\foo_input_monkey.dll
- 2015-09-09 01:39 - 2012-01-10 19:37 - 00150016 _____ () D:\Soft\foobar2000\user-components\foo_popup_panels\foo_popup_panels.dll
- 2015-09-09 01:39 - 2012-08-16 11:27 - 00183296 _____ () D:\Soft\foobar2000\user-components\foo_out_asio\foo_out_asio.dll
- 2015-09-09 01:39 - 2012-08-16 00:55 - 01608192 _____ () D:\Soft\foobar2000\user-components\foo_ui_columns\foo_ui_columns.dll
- 2015-09-09 01:39 - 2012-08-16 00:55 - 00088064 _____ () D:\Soft\foobar2000\user-components\foo_uie_console\foo_uie_console.dll
- 2015-09-09 01:39 - 2012-08-16 00:55 - 00205824 _____ () D:\Soft\foobar2000\user-components\foo_tradersfriend\foo_tradersfriend.dll
- 2015-09-09 01:39 - 2012-12-09 17:20 - 00327168 _____ () D:\Soft\foobar2000\user-components\foo_ui_classic\foo_ui_classic.dll
- 2017-04-07 13:59 - 2017-04-07 13:59 - 00539648 _____ () D:\Soft\foobar2000\components\foo_converter.dll
- 2017-05-14 14:34 - 2017-05-14 14:34 - 00432352 _____ () D:\Soft\foobar2000\user-components\foo_input_dts\foo_input_dts.dll
- 2015-09-09 01:39 - 2015-03-02 04:28 - 00946176 _____ () D:\Soft\foobar2000\user-components\foo_uie_wsh_panel_mod\foo_uie_wsh_panel_mod.dll
- 2017-05-14 14:34 - 2017-05-14 14:34 - 00673792 _____ () D:\Soft\foobar2000\user-components\foo_discogs\foo_discogs.dll
- 2015-10-22 00:16 - 2015-10-22 00:16 - 00335872 _____ () D:\Soft\foobar2000\user-components\foo_quicksearch\foo_quicksearch.dll
- 2016-03-30 16:44 - 2016-03-30 16:44 - 00375296 _____ () D:\Soft\foobar2000\components\foo_rgscan.dll
- 2015-11-25 17:06 - 2015-11-25 17:06 - 00242688 _____ () D:\Soft\foobar2000\user-components\foo_bpm\foo_bpm.dll
- 2015-09-09 01:39 - 2012-08-20 02:02 - 00423424 _____ () D:\Soft\foobar2000\user-components\foo_queuecontents\foo_queuecontents.dll
- 2015-09-23 01:56 - 2015-09-23 01:56 - 00923136 _____ () D:\Soft\foobar2000\user-components\foo_scheduler\foo_scheduler.dll
- 2015-09-09 01:39 - 2012-08-16 00:55 - 00257536 _____ () D:\Soft\foobar2000\user-components\foo_uie_albumlist\foo_uie_albumlist.dll
- 2015-09-09 01:39 - 2012-08-16 00:55 - 00327680 _____ () D:\Soft\foobar2000\user-components\foo_masstag\foo_masstag.dll
- 2016-03-30 16:45 - 2016-03-30 16:45 - 00307200 _____ () D:\Soft\foobar2000\components\foo_freedb2.dll
- 2015-12-08 03:37 - 2015-12-08 03:37 - 00354304 _____ () D:\Soft\foobar2000\user-components\foo_musicbrainz\foo_musicbrainz.dll
- 2016-07-11 16:45 - 2016-07-11 16:45 - 00730112 _____ () D:\Soft\foobar2000\user-components\foo_uie_lyrics3\foo_uie_lyrics3.dll
- 2017-04-07 14:00 - 2017-04-07 14:00 - 01442304 _____ () D:\Soft\foobar2000\components\foo_input_std.dll
- 2015-10-22 00:16 - 2015-10-22 00:16 - 00171008 _____ () D:\Soft\foobar2000\user-components\foo_plorg\foo_plorg.dll
- 2015-09-09 01:39 - 2009-12-10 00:16 - 00356352 _____ () D:\Soft\foobar2000\user-components\foo_uie_panel_splitter\foo_uie_panel_splitter.dll
- 2017-04-07 14:00 - 2017-04-07 14:00 - 00205312 _____ () D:\Soft\foobar2000\components\foo_dsp_eq.dll
- 2015-09-09 01:39 - 2012-08-16 00:55 - 00331776 _____ () D:\Soft\foobar2000\user-components\foo_input_dvda\foo_input_dvda.dll
- 2017-05-14 14:34 - 2017-05-14 14:34 - 00185056 _____ () D:\Soft\foobar2000\user-components\foo_ac3\foo_ac3.dll
- 2015-09-09 01:39 - 2012-08-16 00:55 - 00148992 _____ () D:\Soft\foobar2000\user-components\foo_out_ks\foo_out_ks.dll
- 2015-09-09 01:39 - 2014-11-10 14:24 - 00249856 _____ () D:\Soft\foobar2000\user-components\foo_verifier\foo_verifier.dll
- 2015-09-09 01:39 - 2010-10-30 20:51 - 00452608 _____ () D:\Soft\foobar2000\user-components\foo_uie_elplaylist\foo_uie_elplaylist.dll
- 2017-04-07 14:00 - 2017-04-07 14:00 - 00276480 _____ () D:\Soft\foobar2000\components\foo_unpack.dll
- 2015-09-09 01:39 - 2011-07-24 17:08 - 00271872 _____ () D:\Soft\foobar2000\user-components\foo_uie_library_tree\foo_uie_library_tree.dll
- 2017-05-14 14:34 - 2017-05-14 14:34 - 00195584 _____ () D:\Soft\foobar2000\user-components\foo_bitcompare\foo_bitcompare.dll
- 2015-09-09 01:39 - 2013-03-15 02:24 - 00147456 _____ () D:\Soft\foobar2000\user-components\foo_out_wasapi\foo_out_wasapi.dll
- 2017-04-07 13:59 - 2017-04-07 13:59 - 00310272 _____ () D:\Soft\foobar2000\components\foo_cdda.dll
- 2017-04-07 13:59 - 2017-04-07 13:59 - 01089536 _____ () D:\Soft\foobar2000\components\foo_ui_std.dll
- 2015-09-09 01:39 - 2008-05-18 02:02 - 00241664 _____ () D:\Soft\foobar2000\user-components\foo_uie_vis_channel_spectrum\foo_uie_vis_channel_spectrum.dll
- 2015-09-09 01:39 - 2012-08-16 00:55 - 00190464 _____ () D:\Soft\foobar2000\user-components\foo_quicktag\foo_quicktag.dll
- 2017-04-07 14:00 - 2017-04-07 14:00 - 00359424 _____ () D:\Soft\foobar2000\components\foo_albumlist.dll
- 2017-04-07 13:59 - 2017-04-07 13:59 - 00306688 _____ () D:\Soft\foobar2000\components\foo_fileops.dll
- 2015-09-09 01:39 - 2012-08-16 00:55 - 00188416 _____ () D:\Soft\foobar2000\user-components\foo_audioscrobbler\foo_audioscrobbler.dll
- 2015-09-09 01:39 - 2012-06-25 23:44 - 00230912 _____ () D:\Soft\foobar2000\user-components\foo_playcount\foo_playcount.dll
- 2015-09-09 01:39 - 2012-08-16 00:55 - 00231936 _____ () D:\Soft\foobar2000\user-components\foo_burninate\foo_burninate.dll
- 2015-09-09 01:39 - 2014-02-23 12:44 - 00248320 _____ () \\?\D:\Soft\foobar2000\user-components\foo_wave_seekbar\frontend_direct2d.dll
- 2015-09-09 01:39 - 2014-02-23 12:44 - 00310784 _____ () \\?\D:\Soft\foobar2000\user-components\foo_wave_seekbar\frontend_direct3d9.dll
- ==================== Alternate Data Streams (Whitelisted) =========
- (If an entry is included in the fixlist, only the ADS will be removed.)
- ==================== Safe Mode (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
- ==================== Association (Whitelisted) ===============
- (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
- ==================== Internet Explorer trusted/restricted ===============
- (If an entry is included in the fixlist, it will be removed from the registry.)
- ==================== Hosts content: ==========================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2009-07-14 07:34 - 2017-05-16 03:58 - 00001252 _____ C:\Windows\system32\Drivers\etc\hosts
- 0.0.0.0 0.0.0.0
- 0.0.0.0 rad.msn.com
- 0.0.0.0 a.rad.msn.com
- 0.0.0.0 h2.msn.com
- 0.0.0.0 ads2.msads.net
- 0.0.0.0 cdn.eyewonder.com
- 0.0.0.0 apps.skype.com
- ==================== Other Areas ============================
- (Currently there is no automatic fix for this section.)
- HKU\S-1-5-21-2757016799-914875450-2991146613-1000\Control Panel\Desktop\\Wallpaper -> D:\Soft\XnViewMP\\Wallpaper-2017-05-14_22-10.bmp
- DNS Servers: 192.168.1.1
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
- Windows Firewall is enabled.
- ==================== MSCONFIG/TASK MANAGER disabled items ==
- ==================== FirewallRules (Whitelisted) ===============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
- FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
- FirewallRules: [{16114FC7-00FE-4D75-B39C-B468D8E9C6B2}] => (Allow) D:\Soft\Vivaldi\Application\vivaldi.exe
- FirewallRules: [{A79FACE5-CE8C-42F7-A62B-421385E4FAA4}] => (Allow) D:\Soft\qBittorrent\qbittorrent.exe
- FirewallRules: [{27A9B05B-DA1B-44D3-B661-AB8FAD247AED}] => (Allow) D:\Soft\qBittorrent\qbittorrent.exe
- FirewallRules: [TCP Query User{0E62972E-B9DD-43F5-B556-09EAAA747CE0}D:\soft\streamlink-twitch-gui\streamlink-twitch-gui.exe] => (Allow) D:\soft\streamlink-twitch-gui\streamlink-twitch-gui.exe
- FirewallRules: [UDP Query User{A06C15AC-593A-4392-91C7-FE496F3A9943}D:\soft\streamlink-twitch-gui\streamlink-twitch-gui.exe] => (Allow) D:\soft\streamlink-twitch-gui\streamlink-twitch-gui.exe
- FirewallRules: [TCP Query User{BC0623DD-414D-447B-8540-FE44FFA1A772}D:\soft\streamlink-twitch-gui\streamlink for windows (compiled)\releases\python 3.5.2\pythonw.exe] => (Allow) D:\soft\streamlink-twitch-gui\streamlink for windows (compiled)\releases\python 3.5.2\pythonw.exe
- FirewallRules: [UDP Query User{F344CEEA-8A5A-4C71-BFEF-57111A21FA34}D:\soft\streamlink-twitch-gui\streamlink for windows (compiled)\releases\python 3.5.2\pythonw.exe] => (Allow) D:\soft\streamlink-twitch-gui\streamlink for windows (compiled)\releases\python 3.5.2\pythonw.exe
- FirewallRules: [TCP Query User{AB7015A7-FBDA-4F9B-AC80-040AB2C189BB}D:\soft\qtracker492-noinstaller\qtracker.exe] => (Allow) D:\soft\qtracker492-noinstaller\qtracker.exe
- FirewallRules: [UDP Query User{73941DFC-131B-48D3-9E7F-0D1647AD1EDF}D:\soft\qtracker492-noinstaller\qtracker.exe] => (Allow) D:\soft\qtracker492-noinstaller\qtracker.exe
- FirewallRules: [TCP Query User{98E5790C-8EBB-40F1-977C-6B60C75A1316}D:\games\quake 3 arena\h4x0rq3.x64.exe] => (Allow) D:\games\quake 3 arena\h4x0rq3.x64.exe
- FirewallRules: [UDP Query User{DD34C6CB-7911-40A1-909A-D68009547285}D:\games\quake 3 arena\h4x0rq3.x64.exe] => (Allow) D:\games\quake 3 arena\h4x0rq3.x64.exe
- FirewallRules: [TCP Query User{64672A86-2F1B-45FF-B4EF-CB1E3876D5DA}D:\soft\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\soft\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
- FirewallRules: [UDP Query User{53BF55A7-C785-4092-B3EC-B7AFB614A8B6}D:\soft\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\soft\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
- FirewallRules: [TCP Query User{E4C7F353-0E7C-4CA3-94EC-73398EAE1095}D:\soft\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\soft\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
- FirewallRules: [UDP Query User{2960D562-0E19-44BA-8B36-9F877B7DC4A1}D:\soft\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\soft\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
- ==================== Restore Points =========================
- ATTENTION: System Restore is disabled
- ==================== Faulty Device Manager Devices =============
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (05/16/2017 05:06:05 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
- Error: (05/16/2017 02:52:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
- Error: (05/16/2017 04:57:10 AM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
- Error: (05/16/2017 04:47:58 AM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
- Error: (05/16/2017 04:11:57 AM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: GuitarPro7.exe, version: 7.0.1.485, time stamp: 0x58fdcf7f
- Faulting module name: GPCore.dll, version: 0.0.0.0, time stamp: 0x58fdccea
- Exception code: 0xc0000005
- Fault offset: 0x0017e6e4
- Faulting process id: 0x12b0
- Faulting application start time: 0x01d2cdcf585b3e82
- Faulting application path: D:\Soft\Guitar Pro 7\GuitarPro7.exe
- Faulting module path: D:\Soft\Guitar Pro 7\GPCore.dll
- Report Id: e3e70b8b-39c3-11e7-b0b0-402cf402d374
- Error: (05/16/2017 12:48:16 AM) (Source: BugSplat) (EventID: 1) (User: )
- Description: This event has been logged by the BugSplat crash reporting library (http://www.bugsplatsoftware.com)
- in partnership with your vendor cdp_client.
- A crash report from the application 'BethesdaNetLauncher' has been successfully logged into the BugSplat database with id=1800311.
- Please contact your vendor for more information.
- Error: (05/15/2017 11:15:55 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
- Error: (05/15/2017 10:48:06 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
- Error: (05/15/2017 02:57:08 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10007) (User: Decadance)
- Description: Application or service 'Windows Explorer' could not be restarted.
- Error: (05/15/2017 02:57:08 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: Decadance)
- Description: Application or service 'Windows Explorer' could not be shut down.
- System errors:
- =============
- Error: (05/16/2017 05:05:22 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
- Description: The Superfetch service terminated with the following error:
- The system cannot find the file specified.
- Error: (05/16/2017 02:51:45 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
- Description: The Superfetch service terminated with the following error:
- The system cannot find the file specified.
- Error: (05/16/2017 04:56:24 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
- Description: The Superfetch service terminated with the following error:
- The system cannot find the file specified.
- Error: (05/16/2017 04:47:19 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
- Description: The Superfetch service terminated with the following error:
- The system cannot find the file specified.
- Error: (05/15/2017 11:15:08 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
- Description: The Superfetch service terminated with the following error:
- The system cannot find the file specified.
- Error: (05/15/2017 10:48:21 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
- Description: The Superfetch service terminated with the following error:
- The system cannot find the file specified.
- Error: (05/15/2017 10:47:33 PM) (Source: BugCheck) (EventID: 1001) (User: )
- Description: The computer has rebooted from a bugcheck. The bugcheck was: 0x00000117 (0xfffffa800b9aa0d0, 0xfffff880042a0dac, 0x0000000000000000, 0x0000000000000000). A dump was saved in: C:\Windows\Minidump\051517-253595-01.dmp. Report Id: 051517-253595-01.
- Error: (05/15/2017 10:47:31 PM) (Source: EventLog) (EventID: 6008) (User: )
- Description: The previous system shutdown at 10:42:13 PM on 5/15/2017 was unexpected.
- Error: (05/15/2017 06:25:20 AM) (Source: Ntfs) (EventID: 55) (User: )
- Description: The file system structure on the disk is corrupt and unusable.
- Please run the chkdsk utility on the volume Storage.
- Error: (05/15/2017 01:56:16 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
- Description: The Superfetch service terminated with the following error:
- The system cannot find the file specified.
- ==================== Memory info ===========================
- Processor: Intel(R) Core(TM) i5-2410M CPU @ 2.30GHz
- Percentage of memory in use: 75%
- Total physical RAM: 8139.86 MB
- Available physical RAM: 1978.89 MB
- Total Virtual: 16277.9 MB
- Available Virtual: 8826.52 MB
- ==================== Drives ================================
- Drive c: () (Fixed) (Total:61.02 GB) (Free:34.57 GB) NTFS
- Drive d: (Storage) (Fixed) (Total:870 GB) (Free:18.26 GB) NTFS
- Drive e: (Storage) (Fixed) (Total:860 GB) (Free:27.73 GB) NTFS
- Drive f: () (Fixed) (Total:71.41 GB) (Free:26.48 GB) NTFS
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 7EA1023C)
- Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
- Partition 2: (Not Active) - (Size=61 GB) - (Type=07 NTFS)
- Partition 3: (Not Active) - (Size=870 GB) - (Type=07 NTFS)
- ========================================================
- Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 4BC03FA0)
- Partition 1: (Not Active) - (Size=71.4 GB) - (Type=07 NTFS)
- Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
- Partition 3: (Not Active) - (Size=860 GB) - (Type=OF Extended)
- ==================== End of Addition.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement