Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-07-2017
- Ran by TJ (16-07-2017 09:10:55)
- Running from C:\Users\TJ\Desktop
- Windows 7 Home Premium Service Pack 1 (X64) (2016-12-13 10:11:36)
- Boot Mode: Normal
- ==========================================================
- ==================== Accounts: =============================
- Administrator (S-1-5-21-906640593-365381451-3071277142-500 - Administrator - Disabled)
- Guest (S-1-5-21-906640593-365381451-3071277142-501 - Limited - Disabled)
- TJ (S-1-5-21-906640593-365381451-3071277142-1000 - Administrator - Enabled) => C:\Users\TJ
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- ==================== Installed Programs ======================
- (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- Adobe Flash Player 26 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 26.0.0.137 - Adobe Systems Incorporated)
- Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.137 - Adobe Systems Incorporated)
- Adobe Shockwave Player 12.1 (HKLM-x32\...\{755DDD59-9690-4F1A-BE9C-D39BDCFA77C9}) (Version: 12.1.3.153 - Adobe Systems, Inc)
- CCleaner (HKLM\...\CCleaner) (Version: 5.31 - Piriform)
- Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
- Discord (HKU\S-1-5-21-906640593-365381451-3071277142-1000\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
- Dota 2 (HKLM\...\Steam App 570) (Version: - Valve)
- Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.)
- Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
- Gpg4win (2.3.3) (HKLM-x32\...\GPG4Win) (Version: 2.3.3 - The Gpg4win Project)
- Gyazo 3.3.2 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
- Haste Esports Accelerator (HKLM\...\{0CE25888-B1A7-425C-8782-EE25F5D03430}) (Version: 0.99.2300 - Haste)
- HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd)
- Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle)
- Java 8 Update 121 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
- Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
- League of Legends (HKLM-x32\...\{861927A3-8B12-4BF8-9F2A-7A4ED4C40096}) (Version: 4.1.2 - Riot Games) Hidden
- League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
- Malwarebytes version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
- Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
- Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM-x32\...\M2698023) (Version: - )
- Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM-x32\...\M2833941) (Version: - )
- Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM-x32\...\M979906) (Version: - )
- Microsoft .NET Framework 1.1 SP1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: - )
- Microsoft .NET Framework 1.1 SP1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
- Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
- Microsoft Build Tools 2015 (HKLM-x32\...\{d21da0dd-4ba4-4838-ba58-64cf7a77131a}) (Version: 14.0.23107.10 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation)
- Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation)
- Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation)
- Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation)
- Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
- Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
- Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.24516 (HKLM\...\{6B66663C-055F-3A2E-A09D-168840A82362}) (Version: 14.0.24516 - Microsoft Corporation)
- Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.24516 (HKLM\...\{EE6E34BF-D825-384C-AFF5-305DF5CFAF5A}) (Version: 14.0.24516 - Microsoft Corporation)
- Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24516 (HKLM-x32\...\{B4EB15A2-6582-346E-8501-B6E907F23B80}) (Version: 14.0.24516 - Microsoft Corporation)
- Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24516 (HKLM-x32\...\{7B82F823-A226-3463-B438-AF4DDDE2B810}) (Version: 14.0.24516 - Microsoft Corporation)
- Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{7C0242A3-8B66-35D1-9FE0-13B426ACB609}) (Version: 10.0.60729 - Microsoft Corporation)
- NVIDIA 3D Vision Driver 372.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 372.90 - NVIDIA Corporation)
- NVIDIA Graphics Driver 372.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 372.90 - NVIDIA Corporation)
- NVIDIA HD Audio Driver 1.3.34.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.15 - NVIDIA Corporation)
- Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.104.1223.2016 - Realtek)
- Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8004 - Realtek Semiconductor Corp.)
- Skype™ 7.36 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.36.101 - Skype Technologies S.A.)
- Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
- Stronghold AntiMalware (HKLM-x32\...\Stronghold AntiMalware_is1) (Version: 1.2 - Security Stronghold)
- VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
- Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
- Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.7.5.0 - Azureus Software, Inc.)
- WIDCOMM Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.5800 - Broadcom Corporation)
- WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
- Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.74.0.76 - Zemana Ltd.)
- ==================== Custom CLSID (Whitelisted): ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
- ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
- ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
- ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
- ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
- ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
- ContextMenuHandlers01: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll [2017-07-01] ()
- ContextMenuHandlers01: [GpgEX] -> {CCD955E4-5C16-4A33-AFDA-A8947A94946B} => C:\Program Files (x86)\GNU\GnuPG\bin\gpgex.dll [2016-08-18] (g10 Code GmbH)
- ContextMenuHandlers01: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
- ContextMenuHandlers01: [SAContextMenu] -> {ED16353A-533D-460E-9F02-6301D72B88D6} => -> No File
- ContextMenuHandlers01: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
- ContextMenuHandlers01: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> No File
- ContextMenuHandlers03: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
- ContextMenuHandlers03: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
- ContextMenuHandlers04: [GpgEX] -> {CCD955E4-5C16-4A33-AFDA-A8947A94946B} => C:\Program Files (x86)\GNU\GnuPG\bin\gpgex.dll [2016-08-18] (g10 Code GmbH)
- ContextMenuHandlers04: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
- ContextMenuHandlers05: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-09-17] (NVIDIA Corporation)
- ContextMenuHandlers06: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll [2017-07-01] ()
- ContextMenuHandlers06: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
- ContextMenuHandlers06: [SAContextMenu] -> {ED16353A-533D-460E-9F02-6301D72B88D6} => -> No File
- ContextMenuHandlers06: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
- ContextMenuHandlers06: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> No File
- ==================== Scheduled Tasks (Whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- Task: {03742F6A-9FE4-482A-9731-D668E2109C7B} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2017-05-16] ()
- Task: {1DC850DD-979E-4E37-AEBC-81C8378D0937} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-05-07] (Google Inc.)
- Task: {865B2DDA-2AD4-494F-AD3C-D83416F0B08D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-06-14] (Piriform Ltd)
- Task: {A13752CE-C75E-4556-99DB-A4FB8C7D56AB} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2017-05-16] ()
- Task: {F3275654-EAA6-4390-ACD8-2F610964F073} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-07-13] (Adobe Systems Incorporated)
- Task: {FE4B1F87-707F-4C1D-B9EC-93D8A5E9C960} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-05-07] (Google Inc.)
- (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
- ==================== Shortcuts & WMI ========================
- (The entries could be listed to be restored or removed.)
- ==================== Loaded Modules (Whitelisted) ==============
- 2017-07-01 17:34 - 2017-05-17 16:26 - 03657312 _____ () C:\Program Files (x86)\Stronghold AntiMalware\StrongholdAntiMalwareService.exe
- 2016-12-14 00:17 - 2016-09-17 08:57 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
- 2016-08-18 18:27 - 2016-08-18 18:27 - 00216576 _____ () C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
- 2016-11-25 16:16 - 2016-11-25 16:16 - 00192200 _____ () C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
- 2017-05-04 15:27 - 2017-05-04 15:27 - 00061440 _____ () C:\Program Files\Haste\Haste Esports Accelerator\WinDivert.dll
- 2017-07-01 19:30 - 2017-07-01 19:30 - 00155504 _____ () C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll
- 2017-07-01 17:34 - 2017-05-17 16:26 - 09164896 _____ () C:\Program Files (x86)\Stronghold AntiMalware\StrongholdAntiMalware.exe
- 2017-06-28 08:03 - 2017-06-23 13:21 - 03807064 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libglesv2.dll
- 2017-06-28 08:03 - 2017-06-23 13:21 - 00100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libegl.dll
- 2016-08-18 18:14 - 2016-08-18 18:14 - 00222720 _____ () C:\Program Files (x86)\GNU\GnuPG\libksba-8.dll
- 2016-08-18 18:09 - 2016-08-18 18:09 - 00103424 _____ () C:\Program Files (x86)\GNU\GnuPG\libgpg-error-0.dll
- 2016-08-18 18:03 - 2016-08-18 18:03 - 00050176 _____ () C:\Program Files (x86)\GNU\GnuPG\libw32pth-0.dll
- 2016-08-18 18:14 - 2016-08-18 18:14 - 00073728 _____ () C:\Program Files (x86)\GNU\GnuPG\libassuan-0.dll
- 2016-08-18 18:17 - 2016-08-18 18:17 - 00751104 _____ () C:\Program Files (x86)\GNU\GnuPG\libgcrypt-20.dll
- ==================== Alternate Data Streams (Whitelisted) =========
- (If an entry is included in the fixlist, only the ADS will be removed.)
- ==================== Safe Mode (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
- ==================== Association (Whitelisted) ===============
- (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
- ==================== Internet Explorer trusted/restricted ===============
- (If an entry is included in the fixlist, it will be removed from the registry.)
- ==================== Hosts content: ===============================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2009-07-14 12:34 - 2017-04-22 23:26 - 00000855 _____ C:\Windows\system32\Drivers\etc\hosts
- 127.0.0.1 localhost
- ==================== Other Areas ============================
- (Currently there is no automatic fix for this section.)
- HKU\S-1-5-21-906640593-365381451-3071277142-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\TJ\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
- DNS Servers: 192.168.0.1
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
- Windows Firewall is enabled.
- ==================== MSCONFIG/TASK MANAGER disabled items ==
- MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
- MSCONFIG\startupreg: Gyazo => C:\Program Files (x86)\Gyazo\GyStation.exe
- MSCONFIG\startupreg: Haste => C:\Program Files\Haste\Haste Esports Accelerator\Haste.exe
- MSCONFIG\startupreg: Malwarebytes TrayApp => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe
- MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
- MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
- MSCONFIG\startupreg: Stronghold AntiMalware => C:\Program Files (x86)\Stronghold AntiMalware\StrongholdAntiMalware.exe
- MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
- MSCONFIG\startupreg: ZAM => "C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe" /minimized
- ==================== FirewallRules (Whitelisted) ===============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- FirewallRules: [{22EAB336-E0D9-4CAC-BBE5-32E315ED7373}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{68A1FA1C-A700-49CD-BA3F-7C1A5ECAC68B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{1B5E35B8-A50F-4E9D-A0A5-F6CB0F711014}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
- FirewallRules: [{7D9E5381-1D2C-400B-A955-F3CE6A5207E4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
- FirewallRules: [{ACB88F9B-F361-4DBF-A17C-E0D041200947}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
- FirewallRules: [{8426A236-6B1A-425D-9980-279810573079}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
- FirewallRules: [{66E7B7DC-B708-4D49-96CE-4BE75BD93EBD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
- FirewallRules: [{35D325BF-AFE3-4ACA-A3F3-BF50C0B83B1E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
- FirewallRules: [{FC033581-5DA0-4C91-94D1-B84724E9C66D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
- FirewallRules: [TCP Query User{B034C559-C804-43DE-A719-C7ABBD57F476}C:\users\tj\appdata\roaming\bol\client\bolstudio.exe] => (Allow) C:\users\tj\appdata\roaming\bol\client\bolstudio.exe
- FirewallRules: [UDP Query User{48332FAC-7145-42C3-8423-DF747691EE91}C:\users\tj\appdata\roaming\bol\client\bolstudio.exe] => (Allow) C:\users\tj\appdata\roaming\bol\client\bolstudio.exe
- FirewallRules: [{BA5FE159-FADA-4C1A-8160-A599A42E6CAF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
- FirewallRules: [{9F2D6B24-18C1-4200-9601-C8C1D9D6EF71}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
- FirewallRules: [{23B14AEF-869E-48DE-BC0B-A34876A4509B}] => (Allow) C:\Program Files\Vuze\Azureus.exe
- FirewallRules: [{C26DDF2D-951C-47BF-9808-08B8EE33FCD1}] => (Allow) C:\Program Files\Vuze\Azureus.exe
- FirewallRules: [TCP Query User{A58AD32D-6049-4A63-80B5-F1ECCAE904AE}C:\users\tj\appdata\roaming\bol\client\bolstudio.exe] => (Allow) C:\users\tj\appdata\roaming\bol\client\bolstudio.exe
- FirewallRules: [UDP Query User{EDC225D8-0B53-4979-A3DC-6D5D95D5AA95}C:\users\tj\appdata\roaming\bol\client\bolstudio.exe] => (Allow) C:\users\tj\appdata\roaming\bol\client\bolstudio.exe
- FirewallRules: [{905658E7-95AF-4FA5-8B25-451A8E8DCFED}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- FirewallRules: [{4AAB7FF8-FE7C-4682-B2F7-EA3F1BF7B36C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
- FirewallRules: [{F3AE1C90-B670-4B5B-B84E-2F1A2AEBB711}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
- ==================== Restore Points =========================
- 15-07-2017 08:50:55 Scheduled Checkpoint
- ==================== Faulty Device Manager Devices =============
- Name: Realtek PCIe GBE Family Controller
- Description: Realtek PCIe GBE Family Controller
- Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
- Manufacturer: Realtek
- Service: RTL8167
- Problem: : This device is disabled. (Code 22)
- Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
- Name: Universal Serial Bus (USB) Controller
- Description: Universal Serial Bus (USB) Controller
- Class Guid:
- Manufacturer:
- Service:
- Problem: : The drivers for this device are not installed. (Code 28)
- Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
- Name: COM3
- Description:
- Class Guid:
- Manufacturer:
- Service:
- Problem: : The drivers for this device are not installed. (Code 28)
- Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (07/15/2017 12:56:22 AM) (Source: Application Hang) (EventID: 1002) (User: )
- Description: The program IEXPLORE.EXE version 11.0.9600.18698 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
- Process ID: 1eec
- Start Time: 01d2fcaef769940d
- Termination Time: 186
- Application Path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
- Report Id:
- Error: (07/03/2017 12:51:11 PM) (Source: Application Hang) (EventID: 1002) (User: )
- Description: The program chrome.exe version 59.0.3071.115 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
- Process ID: 1614
- Start Time: 01d2f359cca15236
- Termination Time: 14
- Application Path: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- Report Id:
- Error: (07/03/2017 12:35:37 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: chrome.exe, version: 59.0.3071.115, time stamp: 0x594c442d
- Faulting module name: KERNELBASE.dll, version: 6.1.7601.23807, time stamp: 0x5915fe14
- Exception code: 0xe0000008
- Fault offset: 0x000000000001a06d
- Faulting process id: 0x14fc
- Faulting application start time: 0x01d2f359cca2b1cc
- Faulting application path: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- Faulting module path: C:\Windows\system32\KERNELBASE.dll
- Report Id: 4b794231-5f98-11e7-a1ca-fcaa14cb1749
- Error: (07/03/2017 01:42:29 AM) (Source: Windows Search Service) (EventID: 7010) (User: )
- Description: The index cannot be initialized.
- Details:
- The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
- Error: (07/03/2017 01:42:29 AM) (Source: Windows Search Service) (EventID: 3058) (User: )
- Description: The application cannot be initialized.
- Context: Windows Application
- Details:
- The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
- Error: (07/03/2017 01:42:29 AM) (Source: Windows Search Service) (EventID: 3028) (User: )
- Description: The gatherer object cannot be initialized.
- Context: Windows Application, SystemIndex Catalog
- Details:
- The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
- Error: (07/03/2017 01:42:29 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
- Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.
- Context: Windows Application, SystemIndex Catalog
- Details:
- Element not found. (HRESULT : 0x80070490) (0x80070490)
- Error: (07/03/2017 01:42:29 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
- Description: The plug-in in <Search.JetPropStore> cannot be initialized.
- Context: Windows Application, SystemIndex Catalog
- Details:
- The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
- Error: (07/03/2017 01:42:29 AM) (Source: Windows Search Service) (EventID: 9002) (User: )
- Description: The Windows Search Service cannot load the property store information.
- Context: Windows Application, SystemIndex Catalog
- Details:
- The content index database is corrupt. (HRESULT : 0xc0041800) (0xc0041800)
- Error: (07/03/2017 01:42:29 AM) (Source: Windows Search Service) (EventID: 7042) (User: )
- Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.
- Details:
- The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
- System errors:
- =============
- Error: (07/16/2017 09:07:27 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
- Description: The following boot-start or system-start driver(s) failed to load:
- cdrom
- Error: (07/16/2017 09:07:24 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The HitmanPro 3.7 Crusader (Boot) service failed to start due to the following error:
- The system cannot find the file specified.
- Error: (07/16/2017 09:18:57 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
- Description: The following boot-start or system-start driver(s) failed to load:
- cdrom
- Error: (07/16/2017 09:18:55 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The HitmanPro 3.7 Crusader (Boot) service failed to start due to the following error:
- The system cannot find the file specified.
- Error: (07/16/2017 09:18:55 AM) (Source: EventLog) (EventID: 6008) (User: )
- Description: The previous system shutdown at 5:45:06 AM on 7/16/2017 was unexpected.
- Error: (07/16/2017 05:34:57 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
- Description: The following boot-start or system-start driver(s) failed to load:
- cdrom
- Error: (07/16/2017 05:34:56 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The HitmanPro 3.7 Crusader (Boot) service failed to start due to the following error:
- The system cannot find the file specified.
- Error: (07/16/2017 05:34:55 AM) (Source: EventLog) (EventID: 6008) (User: )
- Description: The previous system shutdown at 5:33:13 AM on 7/16/2017 was unexpected.
- Error: (07/16/2017 05:31:18 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
- Description: The following boot-start or system-start driver(s) failed to load:
- cdrom
- Error: (07/16/2017 05:31:17 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The HitmanPro 3.7 Crusader (Boot) service failed to start due to the following error:
- The system cannot find the file specified.
- ==================== Memory info ===========================
- Processor: AMD FX(tm)-6300 Six-Core Processor
- Percentage of memory in use: 24%
- Total physical RAM: 8158.66 MB
- Available physical RAM: 6136.22 MB
- Total Virtual: 16315.51 MB
- Available Virtual: 14064.73 MB
- ==================== Drives ================================
- Drive c: () (Fixed) (Total:119.24 GB) (Free:10.44 GB) NTFS ==>[drive with boot components (obtained from BCD)]
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: FA22CE3C)
- Partition 1: (Active) - (Size=119.2 GB) - (Type=07 NTFS)
- ==================== End of Addition.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement