API tools faq
paste
Guest User

Addition.txt

a guest
Mar 4th, 2016
53
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 34.03 KB | None | 0 0
raw download clone embed print report
  1. Additional scan result of Farbar Recovery Scan Tool (x64) Version:02-03-2016
  2. Ran by Home (2016-03-04 10:36:37)
  3. Running from C:\Users\Home\Desktop
  4. Windows 7 Ultimate (X64) (2015-08-23 11:54:57)
  5. Boot Mode: Normal
  6. ==========================================================
  7.  
  8.  
  9. ==================== Accounts: =============================
  10.  
  11. Administrator (S-1-5-21-2735367276-1242580625-3468424711-500 - Administrator - Disabled)
  12. Guest (S-1-5-21-2735367276-1242580625-3468424711-501 - Limited - Disabled)
  13. Home (S-1-5-21-2735367276-1242580625-3468424711-1000 - Administrator - Enabled) => C:\Users\Home
  14. HomeGroupUser$ (S-1-5-21-2735367276-1242580625-3468424711-1002 - Limited - Enabled)
  15.  
  16. ==================== Security Center ========================
  17.  
  18. (If an entry is included in the fixlist, it will be removed.)
  19.  
  20. AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
  21. AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  22. AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
  23. FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
  24.  
  25. ==================== Installed Programs ======================
  26.  
  27. (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
  28.  
  29. µTorrent (HKU\S-1-5-21-2735367276-1242580625-3468424711-1000\...\uTorrent) (Version: 3.4.5.41712 - BitTorrent Inc.)
  30. 7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
  31. Adblock Plus pentru IE (32-bit şi 64-bit) (HKLM\...\{F355A6C4-0104-432D-91A3-DE10B878AA68}) (Version: 1.4 - Eyeo GmbH)
  32. Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.010.20059 - Adobe Systems Incorporated)
  33. Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
  34. Avast Premier (HKLM-x32\...\Avast) (Version: 11.1.2253 - AVAST Software)
  35. Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
  36. Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
  37. BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.69.1079 - AB Team, d.o.o.)
  38. Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
  39. Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
  40. Crossfire Europe (HKLM-x32\...\Steam App 328240) (Version: - Smilegate Entertainment)
  41. Crossfire Europe version 1.0 (HKLM-x32\...\{557293B8-1840-44F4-BBEC-0F26A8399075}_is1) (Version: 1.0 - Smilegate Europe Pte Ltd.)
  42. DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0114 - Disc Soft Ltd)
  43. Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
  44. Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.7000.7 - Dolby Laboratories Inc)
  45. Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
  46. Dota 2 Test (HKLM-x32\...\Steam App 205790) (Version: - )
  47. ETDWare PS/2-X64 11.6.2.1_WHQL (HKLM\...\Elantech) (Version: 11.6.2.1 - ELAN Microelectronic Corp.)
  48. Google Chrome (HKLM-x32\...\{94A83681-EBE7-383A-A070-DE2225F853C1}) (Version: 48.0.2564.116 - Google, Inc.)
  49. Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
  50. Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
  51. Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2867 - Intel Corporation)
  52. Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
  53. Java 8 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418060F0}) (Version: 8.0.600.27 - Oracle Corporation)
  54. Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
  55. Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
  56. Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
  57. Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation)
  58. Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
  59. Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
  60. Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
  61. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
  62. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
  63. Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
  64. Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
  65. Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
  66. My WebTV Lite version 2.0 (HKLM-x32\...\{D7878199-C767-4471-8E0D-2193EBBD2A7B}_is1) (Version: 2.0 - My WebTV)
  67. Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.3 - Notepad++ Team)
  68. NVIDIA Graphics Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation)
  69. Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
  70. PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
  71. PokerStars.eu (HKLM-x32\...\PokerStars.eu) (Version: - PokerStars.eu)
  72. Popcorn Time (HKU\S-1-5-21-2735367276-1242580625-3468424711-1000\...\Popcorn Time) (Version: - Popcorn Official)
  73. Python 2.7 py2exe-0.6.9 (HKLM-x32\...\py2exe-py2.7) (Version: - )
  74. Python 2.7.10 (HKLM-x32\...\{E2B51919-207A-43EB-AE78-733F9C6797C2}) (Version: 2.7.10150 - Python Software Foundation)
  75. Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6577 - Realtek Semiconductor Corp.)
  76. Robocraft (HKLM-x32\...\Steam App 301520) (Version: - Freejam)
  77. SafeZone Stable 1.48.2066.44 (x32 Version: 1.48.2066.44 - Avast Software) Hidden
  78. SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
  79. Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.111 - Skype Technologies S.A.)
  80. SopCast 3.9.6 (HKLM-x32\...\SopCast) (Version: 3.9.6 - www.sopcast.com)
  81. SpellForce 2 - Dragon Storm (HKLM-x32\...\SpellForce 2 - Dragon Storm_is1) (Version: - GOG.com)
  82. SpellForce 2 - Shadow Wars (HKLM-x32\...\SpellForce 2 - Shadow Wars_is1) (Version: - GOG.com)
  83. Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
  84. Sunrise Seven 1.1.54 (HKLM-x32\...\{AB0DBC9A-422A-4888-A8E5-A32EC1779E68}_is1) (Version: - Sunrise Software)
  85. TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
  86. TeamSpeak 3 Client (HKU\S-1-5-21-2735367276-1242580625-3468424711-1000\...\TeamSpeak 3 Client) (Version: 3.0.17 - TeamSpeak Systems GmbH)
  87. TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.45862 - TeamViewer)
  88. Unchecky v0.4.2 (HKLM-x32\...\Unchecky) (Version: 0.4.2 - RaMMicHaeL)
  89. Vegas Pro 13.0 (64-bit) (HKLM\...\{D0360940-CCC6-11E3-B9C6-F04DA23A5C58}) (Version: 13.0.310 - Sony)
  90. VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
  91. Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
  92. WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
  93. Wireshark 2.0.1 (64-bit) (HKLM-x32\...\Wireshark) (Version: 2.0.1 - The Wireshark developer community, hxxps://www.wireshark.org)
  94. World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
  95. World of Warcraft Public Test (HKLM-x32\...\World of Warcraft Public Test) (Version: - Blizzard Entertainment)
  96. Yahoo! Messenger (HKLM-x32\...\Yahoo! Messenger) (Version: - Yahoo! Inc.)
  97.  
  98. ==================== Custom CLSID (Whitelisted): ==========================
  99.  
  100. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  101.  
  102.  
  103. ==================== Scheduled Tasks (Whitelisted) =============
  104.  
  105. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  106.  
  107. Task: {15555FA4-0FBE-4673-9041-1C81FC49DF1F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-23] (Google Inc.)
  108. Task: {161DF96B-CDA2-4665-B66D-144F63193344} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
  109. Task: {35457CAA-E6CC-4CC1-833D-1AE27A6B7F7E} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-02-17] (AVAST Software)
  110. Task: {462E0373-2B1D-401F-8AAF-2A3E1D65CD1D} - System32\Tasks\SafeZone scheduled Autoupdate 1446877175 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-02-01] (Avast Software)
  111. Task: {4A6C7C90-25E2-49F0-8592-DBC6B11C733C} - System32\Tasks\{A9431626-DD76-4958-A312-5E753603C9F3} => Chrome.exe hxxp://ui.skype.com/ui/0/7.12.64.101/ro/abandoninstall?page=tsProgressBar
  112. Task: {6223E6FB-6862-4830-BB0E-2AC5A27A836B} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-02-16] (AVAST Software)
  113. Task: {869A5BC3-4C57-4E33-848D-8CA51542BE43} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
  114. Task: {A3ABECAF-C339-4BDF-91FB-DB802D8D4592} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-02-08] (Realtek Semiconductor)
  115. Task: {BAAC8CDC-A676-49E7-AC64-63A615A5AC5B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-23] (Google Inc.)
  116. Task: {EB02381F-D652-4B1C-894A-712498C62C51} - \Microsoft\Windows\MUI\LPRemove -> No File <==== ATTENTION
  117.  
  118. (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
  119.  
  120. Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  121. Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  122.  
  123. ==================== Shortcuts =============================
  124.  
  125. (The entries could be listed to be restored or removed.)
  126.  
  127. ==================== Loaded Modules (Whitelisted) ==============
  128.  
  129. 2015-08-23 14:04 - 2013-10-23 10:20 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
  130. 2010-01-30 01:40 - 2010-01-30 01:40 - 04254560 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
  131. 2010-03-24 20:38 - 2010-03-24 20:38 - 08794976 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
  132. 2016-02-16 16:54 - 2016-02-16 16:54 - 00113496 _____ () C:\Program Files\AVAST Software\Avast\log.dll
  133. 2016-02-16 16:54 - 2016-02-16 16:54 - 00133768 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
  134. 2016-03-03 17:21 - 2016-03-03 17:21 - 02836992 _____ () C:\Program Files\AVAST Software\Avast\defs\16030300\algo.dll
  135. 2016-02-16 16:54 - 2016-02-16 16:54 - 00480760 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
  136. 2016-03-04 10:31 - 2016-03-04 10:31 - 02838016 _____ () C:\Program Files\AVAST Software\Avast\defs\16030301\algo.dll
  137. 2015-12-25 17:39 - 2015-12-15 07:54 - 00782336 _____ () F:\Steam\SDL2.dll
  138. 2015-12-25 17:39 - 2015-07-03 18:12 - 04962816 _____ () F:\Steam\v8.dll
  139. 2015-12-25 17:39 - 2015-07-03 18:12 - 01556992 _____ () F:\Steam\icui18n.dll
  140. 2015-12-25 17:39 - 2015-07-03 18:12 - 01187840 _____ () F:\Steam\icuuc.dll
  141. 2015-12-25 17:39 - 2016-02-04 23:02 - 02546768 _____ () F:\Steam\video.dll
  142. 2015-12-25 17:39 - 2015-09-24 02:33 - 02549248 _____ () F:\Steam\libavcodec-56.dll
  143. 2015-12-25 17:39 - 2015-09-24 02:33 - 00442880 _____ () F:\Steam\libavutil-54.dll
  144. 2015-12-25 17:39 - 2015-09-24 02:33 - 00491008 _____ () F:\Steam\libavformat-56.dll
  145. 2015-12-25 17:39 - 2015-09-24 02:33 - 00332800 _____ () F:\Steam\libavresample-2.dll
  146. 2015-12-25 17:39 - 2015-09-24 02:33 - 00485888 _____ () F:\Steam\libswscale-3.dll
  147. 2015-12-25 17:39 - 2016-02-04 23:01 - 00802896 _____ () F:\Steam\bin\chromehtml.DLL
  148. 2015-12-25 17:39 - 2015-12-30 03:51 - 00208896 _____ () F:\Steam\bin\openvr_api.dll
  149. 2010-01-30 01:41 - 2010-01-30 01:41 - 04254560 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
  150. 2010-03-24 20:17 - 2010-03-24 20:17 - 08794464 _____ () C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll
  151. 2016-01-11 10:36 - 2016-01-11 10:36 - 00932032 ____R () C:\Program Files (x86)\Skype\Phone\ssScreenVVS2.dll
  152. 2015-12-19 10:59 - 2015-12-19 10:59 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
  153. 2015-12-25 17:39 - 2016-01-06 03:52 - 48387872 _____ () F:\Steam\bin\libcef.dll
  154. 2016-02-20 09:46 - 2016-02-18 06:14 - 01630360 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.116\libglesv2.dll
  155. 2016-02-20 09:46 - 2016-02-18 06:14 - 00085656 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.116\libegl.dll
  156. 2015-12-25 17:39 - 2015-09-25 01:56 - 00119208 _____ () F:\Steam\winh264.dll
  157. 2016-02-20 09:46 - 2016-02-18 06:15 - 16808600 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.116\PepperFlash\pepflashplayer.dll
  158.  
  159. ==================== Alternate Data Streams (Whitelisted) =========
  160.  
  161. (If an entry is included in the fixlist, only the ADS will be removed.)
  162.  
  163.  
  164. ==================== Safe Mode (Whitelisted) ===================
  165.  
  166. (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
  167.  
  168.  
  169. ==================== EXE Association (Whitelisted) ===============
  170.  
  171. (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
  172.  
  173.  
  174. ==================== Internet Explorer trusted/restricted ===============
  175.  
  176. (If an entry is included in the fixlist, it will be removed from the registry.)
  177.  
  178.  
  179. ==================== Hosts content: ==========================
  180.  
  181. (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
  182.  
  183. 2009-07-14 04:34 - 2016-03-04 10:29 - 00002024 ____A C:\Windows\system32\Drivers\etc\hosts
  184.  
  185. 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
  186. 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
  187. 0.0.0.0 media.opencandy.com
  188. 0.0.0.0 cdn.opencandy.com
  189. 0.0.0.0 tracking.opencandy.com
  190. 0.0.0.0 api.opencandy.com
  191. 0.0.0.0 api.recommendedsw.com
  192. 0.0.0.0 installer.betterinstaller.com
  193. 0.0.0.0 installer.filebulldog.com
  194. 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
  195. 0.0.0.0 inno.bisrv.com
  196. 0.0.0.0 nsis.bisrv.com
  197. 0.0.0.0 cdn.file2desktop.com
  198. 0.0.0.0 cdn.goateastcach.us
  199. 0.0.0.0 cdn.guttastatdk.us
  200. 0.0.0.0 cdn.inskinmedia.com
  201. 0.0.0.0 cdn.insta.oibundles2.com
  202. 0.0.0.0 cdn.insta.playbryte.com
  203. 0.0.0.0 cdn.llogetfastcach.us
  204. 0.0.0.0 cdn.montiera.com
  205. 0.0.0.0 cdn.msdwnld.com
  206. 0.0.0.0 cdn.mypcbackup.com
  207. 0.0.0.0 cdn.ppdownload.com
  208. 0.0.0.0 cdn.riceateastcach.us
  209. 0.0.0.0 cdn.shyapotato.us
  210. 0.0.0.0 cdn.solimba.com
  211. 0.0.0.0 cdn.tuto4pc.com
  212. 0.0.0.0 cdn.appround.biz
  213. 0.0.0.0 cdn.bigspeedpro.com
  214. 0.0.0.0 cdn.bispd.com
  215.  
  216. There are 4 more lines.
  217.  
  218.  
  219. ==================== Other Areas ============================
  220.  
  221. (Currently there is no automatic fix for this section.)
  222.  
  223. HKU\S-1-5-21-2735367276-1242580625-3468424711-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Home\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
  224. DNS Servers: 95.77.94.88 - 78.96.7.88
  225. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
  226. Windows Firewall is enabled.
  227.  
  228. ==================== MSCONFIG/TASK MANAGER disabled items ==
  229.  
  230. (Currently there is no automatic fix for this section.)
  231.  
  232. MSCONFIG\Services: TeamViewer => 2
  233. MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
  234. MSCONFIG\startupreg: Messenger (Yahoo!) => "C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe" -quiet
  235. MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
  236.  
  237. ==================== FirewallRules (Whitelisted) ===============
  238.  
  239. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  240.  
  241. FirewallRules: [{005D2136-BCCE-4F74-854B-713B78D9CEAE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
  242. FirewallRules: [{81B308E2-D710-4097-B942-697A059E93BA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
  243. FirewallRules: [{ED0F6B4F-C946-4276-B304-D7E1915C6D97}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
  244. FirewallRules: [{F2764277-C4EB-4A05-8CA0-3A891551CBDC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
  245. FirewallRules: [{CECBE92B-B814-486B-9C4A-9477436C4DA4}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
  246. FirewallRules: [{33028D58-4B77-407D-96C3-A198295880B1}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
  247. FirewallRules: [{F47A4FAD-506A-4AB4-A857-10D96BA74863}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
  248. FirewallRules: [{1698FED7-43C0-4C65-AF42-9B925FBBED96}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
  249. FirewallRules: [{AB357C86-93CD-47AE-85AE-236A82867A77}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
  250. FirewallRules: [TCP Query User{ED7D97CF-1730-4A95-ABA4-A456420FE906}C:\program files (x86)\my webtv lite\my webtv lite.exe] => (Allow) C:\program files (x86)\my webtv lite\my webtv lite.exe
  251. FirewallRules: [UDP Query User{FA11C5C6-73FE-456E-9EEA-DAC86688613E}C:\program files (x86)\my webtv lite\my webtv lite.exe] => (Allow) C:\program files (x86)\my webtv lite\my webtv lite.exe
  252. FirewallRules: [TCP Query User{0F71B63A-4B8E-4C40-B9AA-BCE2DF2EBA6A}C:\users\home\appdata\local\popcorn time\nw.exe] => (Allow) C:\users\home\appdata\local\popcorn time\nw.exe
  253. FirewallRules: [UDP Query User{959B1F92-EFB2-4A86-81D8-E7CED8566785}C:\users\home\appdata\local\popcorn time\nw.exe] => (Allow) C:\users\home\appdata\local\popcorn time\nw.exe
  254. FirewallRules: [TCP Query User{2740B0A5-4266-4855-A47B-1D3F02759172}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe
  255. FirewallRules: [UDP Query User{72E2C22F-BA7F-4356-81EC-02EE70C3B7F2}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe
  256. FirewallRules: [{83847249-3F73-44B5-9D80-9D054EDAA8D1}] => (Allow) F:\Steam\Steam.exe
  257. FirewallRules: [{D583C584-3E4B-4D61-AEB3-AB842D2B13A7}] => (Allow) F:\Steam\Steam.exe
  258. FirewallRules: [{ABD2FB0B-7D6E-4C68-955D-4B9A36762DF0}] => (Allow) F:\Steam\bin\steamwebhelper.exe
  259. FirewallRules: [{8265E2E8-9BAA-40DE-8EAB-022EDC03228C}] => (Allow) F:\Steam\bin\steamwebhelper.exe
  260. FirewallRules: [{7E057D61-94D1-4015-9D5D-5FB63C84A1B8}] => (Allow) F:\Hearthstone\Hearthstone.exe
  261. FirewallRules: [{BF614041-0F07-4F2B-AB18-A70A615650D7}] => (Allow) F:\Hearthstone\Hearthstone.exe
  262. FirewallRules: [{85B25F20-19D6-4E5D-9B13-D366367C2FB1}] => (Allow) F:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
  263. FirewallRules: [{FA1D30BC-3B88-42FE-A769-55F27EFB1F32}] => (Allow) F:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
  264. FirewallRules: [TCP Query User{DE03F6D5-4595-4E56-85F6-43962967A62C}F:\steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe] => (Allow) F:\steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe
  265. FirewallRules: [UDP Query User{AA433907-75F5-4926-BBBC-E02781982327}F:\steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe] => (Allow) F:\steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe
  266. FirewallRules: [{42FA4A2A-97B3-4B23-9A98-2444E2BE961B}] => (Allow) F:\Steam\steamapps\common\Robocraft\Robocraft.exe
  267. FirewallRules: [{12ECA905-ECCA-4365-9BDC-5A9644B42941}] => (Allow) F:\Steam\steamapps\common\Robocraft\Robocraft.exe
  268. FirewallRules: [{8BECC6ED-B4D2-4D47-8B06-DF429AE60BCA}] => (Allow) C:\Users\Home\AppData\Roaming\uTorrent\uTorrent.exe
  269. FirewallRules: [{ABD1424C-A109-4E30-99AE-41E5F40F8A34}] => (Allow) C:\Users\Home\AppData\Roaming\uTorrent\uTorrent.exe
  270. FirewallRules: [{AD3F9803-ECEB-4EE5-A8C4-305DE90078FD}] => (Allow) C:\Users\Home\AppData\Roaming\uTorrent\uTorrent.exe
  271. FirewallRules: [{B701528F-19AB-443B-9746-0BBF232A097D}] => (Allow) C:\Users\Home\AppData\Roaming\uTorrent\uTorrent.exe
  272. FirewallRules: [{6BD0F06F-941F-4DB5-8731-28F1A04ECC8E}] => (Allow) C:\Users\Home\AppData\Roaming\uTorrent\uTorrent.exe
  273. FirewallRules: [{CE41F66E-880B-4906-B647-86D7DFF3101E}] => (Allow) C:\Users\Home\AppData\Roaming\uTorrent\uTorrent.exe
  274. FirewallRules: [TCP Query User{C5AC770A-31EB-46D8-86E7-306650BE701E}C:\program files\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_60\bin\javaw.exe
  275. FirewallRules: [UDP Query User{84411C05-5045-4C3E-84F0-72A455622B80}C:\program files\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_60\bin\javaw.exe
  276. FirewallRules: [{6001B456-3935-42B6-A2D8-A9F7B72A78C2}] => (Allow) F:\World of Warcraft\World of Warcraft Launcher.exe
  277. FirewallRules: [{81F31772-BBB4-41A5-A3F1-2FE9C87644F9}] => (Allow) F:\World of Warcraft\World of Warcraft Launcher.exe
  278. FirewallRules: [{D39770E4-8D0E-4E20-800E-B83256F20865}] => (Allow) F:\World of Warcraft\World of Warcraft Launcher.exe
  279. FirewallRules: [{605081DC-433A-4E5D-B320-CFD77CEF8D64}] => (Allow) F:\World of Warcraft\World of Warcraft Launcher.exe
  280. FirewallRules: [{E558C06A-387E-422E-8957-F1A90A01BF4A}] => (Allow) F:\World of Warcraft Public Test\World of Warcraft Public Test Launcher.exe
  281. FirewallRules: [{B639F009-A032-4AEB-9BC0-E471B5B46459}] => (Allow) F:\World of Warcraft Public Test\World of Warcraft Public Test Launcher.exe
  282. FirewallRules: [{ECFF217F-CD9D-4143-A329-BE92AB225EEF}] => (Allow) F:\World of Warcraft Public Test\World of Warcraft Public Test Launcher.exe
  283. FirewallRules: [{1AC68119-F97B-4AA9-B0EF-17131BF3DE78}] => (Allow) F:\World of Warcraft Public Test\World of Warcraft Public Test Launcher.exe
  284. FirewallRules: [{6AD1005C-208E-4B0C-8866-56A9B0448031}] => (Allow) F:\WoW_5.4.8\wow.exe
  285. FirewallRules: [{5172971D-9AA7-46F5-8359-75BEF532691A}] => (Allow) F:\WoW_5.4.8\wow.exe
  286. FirewallRules: [{66DFFCFB-F037-449C-8F7E-755096BA3A71}] => (Allow) F:\WoW_5.4.8\wow.exe
  287. FirewallRules: [{D23FAADD-1AB0-43D2-A1DF-025D5B6A1FFE}] => (Allow) F:\WoW_5.4.8\wow.exe
  288. FirewallRules: [{24135F51-FB2B-414B-947F-56720CBDFA80}] => (Allow) F:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
  289. FirewallRules: [{D5118523-762F-4D28-99E2-87F88D9AC78C}] => (Allow) F:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
  290. FirewallRules: [{590169E3-5C73-486A-9C75-EC2B4CF46CEB}] => (Allow) F:\Steam\steamapps\common\dota 2 test\game\bin\win64\dota2.exe
  291. FirewallRules: [{ECE99971-E4AC-4A4A-A4D2-BC94C34FB75B}] => (Allow) F:\Steam\steamapps\common\dota 2 test\game\bin\win64\dota2.exe
  292. FirewallRules: [TCP Query User{4E32434F-B053-4DD7-9C26-363CC9A8556F}F:\diablo iii\diablo iii.exe] => (Allow) F:\diablo iii\diablo iii.exe
  293. FirewallRules: [UDP Query User{0DFC6B45-E2E7-4924-B391-15AC759ED662}F:\diablo iii\diablo iii.exe] => (Allow) F:\diablo iii\diablo iii.exe
  294. FirewallRules: [TCP Query User{EFA9EB7C-3782-4640-B98D-D88D288357BD}C:\program files (x86)\deluge\deluge.exe] => (Allow) C:\program files (x86)\deluge\deluge.exe
  295. FirewallRules: [UDP Query User{03EA8B57-B2ED-4B3A-9913-B8672D68DF86}C:\program files (x86)\deluge\deluge.exe] => (Allow) C:\program files (x86)\deluge\deluge.exe
  296. FirewallRules: [{05436756-AE1F-4C98-B493-4A5B56A0317F}] => (Allow) C:\Users\Home\AppData\Roaming\uTorrent\uTorrent.exe
  297. FirewallRules: [{98A816BD-3D32-451D-B933-588C57BCCD08}] => (Allow) C:\Users\Home\AppData\Roaming\uTorrent\uTorrent.exe
  298. FirewallRules: [{35EBA419-598E-4A36-BBB5-1253A202D12B}] => (Allow) F:\Steam\steamapps\common\Crossfire Europe\cf_steam.exe
  299. FirewallRules: [{AC215D35-99FA-477B-898C-08253DC3A545}] => (Allow) F:\Steam\steamapps\common\Crossfire Europe\cf_steam.exe
  300. FirewallRules: [{F43988E2-EA06-4961-8FDB-6B5CAB601C0D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  301.  
  302. ==================== Restore Points =========================
  303.  
  304. 28-02-2016 19:24:14 Installed Kies mini
  305. 28-02-2016 19:40:24 Removed Kies mini
  306. 28-02-2016 19:41:43 Installed Samsung Kies3
  307. 28-02-2016 20:02:03 Removed Samsung Kies3
  308. 03-03-2016 12:43:36 zoek.exe restore point
  309.  
  310. ==================== Faulty Device Manager Devices =============
  311.  
  312. Name: avast! SecureLine TAP Adapter v3
  313. Description: avast! SecureLine TAP Adapter v3
  314. Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
  315. Manufacturer: TAP-Windows Provider V9
  316. Service: aswTap
  317. Problem: : This device is disabled. (Code 22)
  318. Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
  319.  
  320.  
  321. ==================== Event log errors: =========================
  322.  
  323. Application errors:
  324. ==================
  325. Error: (03/03/2016 05:24:44 PM) (Source: SideBySide) (EventID: 59) (User: )
  326. Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
  327. Invalid Xml syntax.
  328.  
  329. Error: (03/03/2016 05:24:43 PM) (Source: SideBySide) (EventID: 59) (User: )
  330. Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
  331. Invalid Xml syntax.
  332.  
  333. Error: (03/03/2016 01:00:18 PM) (Source: SideBySide) (EventID: 80) (User: )
  334. Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest3.
  335. A component version required by the application conflicts with another component version already active.
  336. Conflicting components are:.
  337. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.
  338. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
  339.  
  340. Error: (03/03/2016 12:40:26 PM) (Source: SideBySide) (EventID: 59) (User: )
  341. Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
  342. Invalid Xml syntax.
  343.  
  344. Error: (03/03/2016 12:40:19 PM) (Source: SideBySide) (EventID: 59) (User: )
  345. Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
  346. Invalid Xml syntax.
  347.  
  348. Error: (03/02/2016 01:13:00 PM) (Source: SideBySide) (EventID: 80) (User: )
  349. Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest3.
  350. A component version required by the application conflicts with another component version already active.
  351. Conflicting components are:.
  352. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.
  353. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
  354.  
  355. Error: (02/28/2016 10:00:36 PM) (Source: Adobe Reader) (EventID: 16) (User: )
  356. Description:
  357.  
  358. Error: (02/26/2016 02:33:52 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
  359. Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
  360.  
  361. Details:
  362. AddLegacyDriverFiles: Unable to back up image of binary VMware kbd.
  363.  
  364. System Error:
  365. The system cannot find the file specified.
  366. .
  367.  
  368. Error: (02/08/2016 11:33:40 PM) (Source: Application Error) (EventID: 1000) (User: )
  369. Description: Faulting application name: bsplayer.exe, version: 2.6.9.1079, time stamp: 0x2a425e19
  370. Faulting module name: ntdll.dll, version: 6.1.7600.16385, time stamp: 0x4a5bdb3b
  371. Exception code: 0xc0000005
  372. Fault offset: 0x00038c39
  373. Faulting process id: 0x39c
  374. Faulting application start time: 0xbsplayer.exe0
  375. Faulting application path: bsplayer.exe1
  376. Faulting module path: bsplayer.exe2
  377. Report Id: bsplayer.exe3
  378.  
  379. Error: (02/07/2016 07:45:44 PM) (Source: Application Error) (EventID: 1000) (User: )
  380. Description: Faulting application name: spellforce2.exe, version: 0.0.0.0, time stamp: 0x4496b320
  381. Faulting module name: ntdll.dll, version: 6.1.7600.16385, time stamp: 0x4a5bdb3b
  382. Exception code: 0xc0000005
  383. Fault offset: 0x00034230
  384. Faulting process id: 0xf5c
  385. Faulting application start time: 0xspellforce2.exe0
  386. Faulting application path: spellforce2.exe1
  387. Faulting module path: spellforce2.exe2
  388. Report Id: spellforce2.exe3
  389.  
  390.  
  391. System errors:
  392. =============
  393. Error: (03/04/2016 10:29:13 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
  394. Description: The following boot-start or system-start driver(s) failed to load:
  395. aswNetSec
  396. VBoxNetAdp
  397.  
  398. Error: (03/03/2016 05:46:08 PM) (Source: atapi) (EventID: 11) (User: )
  399. Description: The driver detected a controller error on \Device\Ide\IdePort4.
  400.  
  401. Error: (03/03/2016 05:37:00 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
  402. Description: The following boot-start or system-start driver(s) failed to load:
  403. aswNetSec
  404. VBoxNetAdp
  405.  
  406. Error: (03/03/2016 05:31:58 PM) (Source: DCOM) (EventID: 10010) (User: )
  407. Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
  408.  
  409. Error: (03/03/2016 05:28:54 PM) (Source: atapi) (EventID: 11) (User: )
  410. Description: The driver detected a controller error on \Device\Ide\IdePort4.
  411.  
  412. Error: (03/03/2016 05:19:41 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
  413. Description: The following boot-start or system-start driver(s) failed to load:
  414. aswNetSec
  415. VBoxNetAdp
  416.  
  417. Error: (03/03/2016 01:08:14 PM) (Source: atapi) (EventID: 11) (User: )
  418. Description: The driver detected a controller error on \Device\Ide\IdePort4.
  419.  
  420. Error: (03/03/2016 12:59:24 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
  421. Description: The following boot-start or system-start driver(s) failed to load:
  422. aswNetSec
  423. VBoxNetAdp
  424.  
  425. Error: (03/03/2016 12:55:14 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
  426. Description: The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
  427.  
  428. Error: (03/03/2016 12:55:13 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
  429. Description: The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
  430.  
  431.  
  432. CodeIntegrity:
  433. ===================================
  434. Date: 2015-08-23 15:19:53.896
  435. Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\igdkmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  436.  
  437. Date: 2015-08-23 15:19:53.677
  438. Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\igdkmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  439.  
  440. Date: 2015-08-23 15:17:56.139
  441. Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\igdkmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  442.  
  443. Date: 2015-08-23 15:17:55.920
  444. Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\igdkmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  445.  
  446.  
  447. ==================== Memory info ===========================
  448.  
  449. Processor: AMD Athlon(tm) II X4 631 Quad-Core Processor
  450. Percentage of memory in use: 33%
  451. Total physical RAM: 7654.17 MB
  452. Available physical RAM: 5098.27 MB
  453. Total Virtual: 15306.49 MB
  454. Available Virtual: 12542.9 MB
  455.  
  456. ==================== Drives ================================
  457.  
  458. Drive c: () (Fixed) (Total:100 GB) (Free:48.95 GB) NTFS
  459. Drive e: (Aliens Vs Predator) (CDROM) (Total:7.93 GB) (Free:0 GB) UDF
  460. Drive f: (Volum nou) (Fixed) (Total:782.58 GB) (Free:463.99 GB) NTFS
  461.  
  462. ==================== MBR & Partition Table ==================
  463.  
  464. ========================================================
  465. Disk: 0 (Size: 931.5 GB) (Disk ID: 2693D86C)
  466. Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
  467. Partition 2: (Not Active) - (Size=100 GB) - (Type=07 NTFS)
  468. Partition 3: (Not Active) - (Size=782.6 GB) - (Type=07 NTFS)
  469. Partition 4: (Not Active) - (Size=48.8 GB) - (Type=05)
  470.  
  471. ==================== End of Addition.txt ============================
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!