Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-08-2016
- Ran by Sasha (09-09-2016 21:03:59)
- Running from C:\Users\Sasha\Downloads
- Windows 10 Pro Version 1607 (X64) (2016-09-03 00:07:19)
- Boot Mode: Normal
- ==========================================================
- ==================== Accounts: =============================
- Administrator (S-1-5-21-3462580818-163346192-2193054908-500 - Administrator - Disabled)
- DefaultAccount (S-1-5-21-3462580818-163346192-2193054908-503 - Limited - Disabled)
- Guest (S-1-5-21-3462580818-163346192-2193054908-501 - Limited - Disabled)
- HomeGroupUser$ (S-1-5-21-3462580818-163346192-2193054908-1003 - Limited - Enabled)
- Sasha (S-1-5-21-3462580818-163346192-2193054908-1001 - Administrator - Enabled) => C:\Users\Sasha
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- ==================== Installed Programs ======================
- (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated)
- Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated)
- Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.4.194 - Adobe Systems, Inc.)
- Ansel (Version: 372.54 - NVIDIA Corporation) Hidden
- Bandicam (HKLM-x32\...\Bandicam) (Version: 3.1.1.1073 - Bandisoft.com)
- Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
- CCleaner (HKLM\...\CCleaner) (Version: 5.19 - Piriform)
- Contents64 (Version: 19.2.0.4 - Corel Corporation) Hidden
- Corel VideoStudio Ultimate X9 (HKLM-x32\...\_{EE80DAA0-0071-475C-A222-F1782888FC55}) (Version: 19.5.0.35 - Corel Corporation)
- Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
- CyberGhost 6 (HKLM\...\CyberGhost 6_is1) (Version: - CyberGhost S.R.L.)
- DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0193 - Disc Soft Ltd)
- FileZilla Client 3.21.0 (HKU\S-1-5-21-3462580818-163346192-2193054908-1001\...\FileZilla Client) (Version: 3.21.0 - Tim Kosse)
- Flawless Widescreen version 1.0.15 (HKLM-x32\...\{7348D82E-8C68-48FF-BA2D-8C97B5B4B3D8}_is1) (Version: 1.0.15 - Flawless Widescreen)
- Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
- GameRanger (HKU\S-1-5-21-3462580818-163346192-2193054908-1001\...\GameRanger) (Version: - GameRanger Technologies)
- Garry's Mod (HKLM\...\Steam App 4000) (Version: - Facepunch Studios)
- Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.101 - Google Inc.)
- Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
- Gyazo 3.2.3 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
- HandBrake 0.10.5 (HKLM-x32\...\HandBrake) (Version: 0.10.5 - )
- ICA (x32 Version: 19.2.0.4 - Corel Corporation) Hidden
- Intel(R) Driver Update Utility 2.6 (x32 Version: 2.6.0.32 - Intel) Hidden
- Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{C2A72E57-2CC7-4C02-BE19-0A12D74C5D63}) (Version: 18.1.1525.1445 - Intel Corporation)
- Intel® Driver Update Utility (HKLM-x32\...\{3e714701-b89c-4cf2-bf3b-41b2c105ffdc}) (Version: 2.6.0.32 - Intel)
- IPM_VS_Pro64 (Version: 19.0 - Corel Corporation) Hidden
- Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
- Java 8 Update 102 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180102F0}) (Version: 8.0.1020.14 - Oracle Corporation)
- Lenovo EasyCamera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 6.3.9600.11105 - Realtek Semiconductor Corp.)
- Malwarebytes Anti-Exploit version 1.8.1.2572 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.8.1.2572 - Malwarebytes)
- Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
- Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProplusRetail - en-us) (Version: 16.0.6769.2040 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Mozilla Firefox 48.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 48.0.2 (x86 en-US)) (Version: 48.0.2 - Mozilla)
- Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 48.0.2.6079 - Mozilla)
- MyDVD Content Pack 1 (HKLM-x32\...\{ADCF7AE3-8E36-4B80-9460-66B74B56927F}) (Version: 1.00.0000 - Corel Corporation)
- NVIDIA 3D Vision Driver 372.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 372.54 - NVIDIA Corporation)
- NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation)
- NVIDIA Graphics Driver 372.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 372.54 - NVIDIA Corporation)
- NVIDIA HD Audio Driver 1.3.34.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.15 - NVIDIA Corporation)
- NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
- Office 16 Click-to-Run Extensibility Component (Version: 16.0.6729.1019 - Microsoft Corporation) Hidden
- Office 16 Click-to-Run Licensing Component (Version: 16.0.6729.1019 - Microsoft Corporation) Hidden
- Office 16 Click-to-Run Localization Component (Version: 16.0.6729.1019 - Microsoft Corporation) Hidden
- Origin (HKLM-x32\...\Origin) (Version: 9.12.2.60376 - Electronic Arts, Inc.)
- PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
- Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7514 - Realtek Semiconductor Corp.)
- Sandboxie 5.12 (64-bit) (HKLM\...\Sandboxie) (Version: 5.12 - Sandboxie Holdings, LLC)
- Setup (x32 Version: 19.2.0.4 - Corel Corporation) Hidden
- Share64 (Version: 19.2.0.4 - Corel Corporation) Hidden
- SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
- SHIELD Wireless Controller Driver (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
- Skype™ 7.27 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.27.101 - Skype Technologies S.A.)
- SpaceEngine version 0.9.8.0 (HKLM-x32\...\{6E7A40FA-86CE-4844-A7DC-F8769F21A62F}_is1) (Version: 0.9.8.0 - SpaceEngine)
- Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
- swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
- Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.17.58 - Synaptics Incorporated)
- TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
- Unity Web Player (HKU\S-1-5-21-3462580818-163346192-2193054908-1001\...\UnityWebPlayer) (Version: 5.3.5f1 - Unity Technologies ApS)
- VideoStudio MyDVD (HKLM-x32\...\{91345797-EF07-41D2-85F4-BFF200B6A0A3}) (Version: 1.0 - Corel)
- VideoStudio MyDVD (x32 Version: 1.0.129 - Corel Corporation) Hidden
- VSClassic64 (Version: 19.2.0.4 - Corel Corporation) Hidden
- VSUltimate64 (Version: 19.2.0.4 - Corel Corporation) Hidden
- Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
- Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.7.2.0 - Azureus Software, Inc.)
- WinRAR 5.40 beta 3 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.3 - win.rar GmbH)
- ==================== Custom CLSID (Whitelisted): ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- CustomCLSID: HKU\S-1-5-21-3462580818-163346192-2193054908-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Sasha\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileCoAuth.exe (Microsoft Corporation)
- ==================== Scheduled Tasks (Whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- Task: {06D0C041-A91E-490A-B936-CD802CDDF480} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
- Task: {07D75061-0616-4AB5-B582-4E1D8B0C6D6F} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
- Task: {0B872487-8CFD-4085-8178-19E7D3B9D9E4} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-04-24] (Microsoft Corporation)
- Task: {2EBFEEC2-5FF9-4FE4-A5FC-6BFC48D2AB7F} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2016-06-13] ()
- Task: {2F5AF390-F251-4174-847B-233BF2210A53} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
- Task: {2F719949-BAE4-47B4-83A8-3F9EED73801C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-06-10] (Piriform Ltd)
- Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe
- Task: {3CE7800B-948B-4AFB-9E4D-E2BD64B68528} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
- Task: {406D5500-1632-48CD-8D4C-4E56AA5C23E0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
- Task: {4B768F6F-6FE9-4D55-888E-46E23473080D} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
- Task: {50C03CD0-68FE-4CE4-BF6E-F413F2FA6F9F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)
- Task: {52BD3D27-E524-4895-86AC-985418D4A6CF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-04] (Google Inc.)
- Task: {61D6408D-5B3A-459C-8532-930F1E20EF84} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
- Task: {67BF5354-A145-4577-95C5-D8D147882EEA} - \WPD\SqmUpload_S-1-5-21-3462580818-163346192-2193054908-1001 -> No File <==== ATTENTION
- Task: {6B9BD461-29BA-4EDA-BDAA-4ED11E753D81} - System32\Tasks\USER_ESRV_SVC_WILLAMETTE => Wscript.exe //B //NoLogo "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\task.vbs"
- Task: {7CC244C6-4CE0-4E56-BD6E-14BC30D13BAF} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation)
- Task: {ADD7C4E1-D4D8-4860-B4F6-0FFB24C22770} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2016-06-13] ()
- Task: {B3E4868D-1AE2-4904-902B-9685BF95A380} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-04] (Google Inc.)
- Task: {BCE6C633-6B4C-46AC-8E19-741BBBD61A8F} - System32\Tasks\{8CDA10D9-9B3C-4C75-AAB3-644643FCB5C7} => pcalua.exe -a "C:\Program Files (x86)\OSTotoSoft\DriverTalent\Uninstall.exe"
- Task: {CD228159-A500-48D5-B16E-E96EB080E331} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
- Task: {CF39695E-3BB3-40D0-910F-7997656FDFC6} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
- Task: {D3C7E4DF-9642-4207-B4D9-2608AA5BB115} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-04-24] (Microsoft Corporation)
- Task: {DC410871-7E8B-4668-BC35-74EA3A8F82D5} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
- Task: {DF3FBCB5-3B0F-40D6-A688-554E58AE8F32} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
- Task: {F148DBE3-B1F5-4007-86B4-FE19AFEEC246} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Sasha\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-09-02] (Microsoft Corporation)
- Task: {FABF468A-442D-4AE4-AE38-20DF298CFFBF} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
- (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
- Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
- Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- ==================== Shortcuts =============================
- (The entries could be listed to be restored or removed.)
- ShortcutWithArgument: C:\Users\Sasha\Desktop\Corel VideoStudio X9\VideoStudio X9 Training.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> www.studiobacklot.tv/videostudioX9
- ==================== Loaded Modules (Whitelisted) ==============
- 2016-07-16 07:42 - 2016-07-16 07:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
- 2016-07-16 07:42 - 2016-07-16 07:42 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
- 2016-09-02 19:40 - 2016-08-11 08:27 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
- 2016-07-02 03:24 - 2016-06-14 16:03 - 00367552 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
- 2016-07-02 03:24 - 2016-06-14 16:03 - 00288192 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
- 2016-07-02 03:24 - 2016-06-14 16:03 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
- 2016-07-02 03:24 - 2016-06-14 16:03 - 03611584 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
- 2016-06-08 18:04 - 2016-06-08 18:04 - 00117400 _____ () C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
- 2016-07-02 03:24 - 2016-06-14 16:03 - 02665920 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
- 2016-07-02 03:24 - 2016-06-14 16:03 - 01988544 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
- 2016-07-02 03:24 - 2016-06-14 16:03 - 01840576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
- 2016-07-02 03:24 - 2016-06-14 16:03 - 00207296 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
- 2016-07-16 07:42 - 2016-07-16 07:42 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
- 2016-09-02 20:14 - 2016-09-02 20:14 - 01864384 _____ () C:\Users\Sasha\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\ClientTelemetry.dll
- 2016-07-16 07:42 - 2016-07-16 07:42 - 00130048 _____ () C:\WINDOWS\SYSTEM32\CHARTV.dll
- 2016-07-16 07:42 - 2016-07-16 07:42 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
- 2016-07-16 07:43 - 2016-07-16 07:43 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
- 2016-07-16 07:43 - 2016-07-16 07:43 - 00693248 _____ () C:\Windows\ShellExperiences\MtcUvc.dll
- 2016-07-14 18:44 - 2016-04-24 14:24 - 00172224 _____ () C:\Program Files\Common Files\Microsoft Shared\ClickToRun\ApiClient.dll
- 2016-09-02 20:47 - 2016-09-02 20:48 - 00071168 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.113.0_x64__kzf8qxf38zg5c\SkypeHost.exe
- 2016-09-02 20:47 - 2016-09-02 20:48 - 00178176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.113.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
- 2016-09-02 20:47 - 2016-09-02 20:48 - 35288064 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.113.0_x64__kzf8qxf38zg5c\SkyWrap.dll
- 2016-07-01 11:40 - 2016-01-05 14:45 - 00105648 _____ () C:\Program Files\Vuze\aereg64.dll
- 2016-09-08 21:32 - 2016-09-07 01:03 - 02280264 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.101\libglesv2.dll
- 2016-09-08 21:32 - 2016-09-07 01:03 - 00107848 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.101\libegl.dll
- 2016-07-16 07:43 - 2016-07-16 10:28 - 09761280 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
- 2016-09-02 23:30 - 2016-09-02 23:30 - 01401344 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
- 2016-07-16 07:43 - 2016-07-16 10:28 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
- 2016-09-02 23:30 - 2016-09-02 23:30 - 02438144 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
- 2016-09-02 23:30 - 2016-09-02 23:30 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
- 2016-07-14 18:44 - 2016-07-14 18:44 - 00300224 _____ () C:\Program Files\Microsoft Office\root\Office16\IEAWSDC.DLL
- 2016-07-04 19:03 - 2016-06-17 02:31 - 00147216 _____ () c:\program files (x86)\ostotosoft\drivertalent\ldrvsvc.dll
- 2016-07-04 19:03 - 2016-06-17 02:31 - 00186640 _____ () c:\program files (x86)\ostotosoft\drivertalent\CrashCatch.dll
- 2016-07-04 19:03 - 2016-06-17 02:31 - 00254824 _____ () c:\program files (x86)\ostotosoft\drivertalent\updater\checkupdate.dll
- 2016-07-04 19:03 - 2016-06-17 02:31 - 00173224 _____ () c:\program files (x86)\ostotosoft\drivertalent\substat.dll
- 2016-07-02 03:24 - 2016-06-14 16:03 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
- 2016-07-01 12:12 - 2016-08-08 19:27 - 00785920 _____ () C:\Program Files (x86)\Steam\SDL2.dll
- 2016-07-01 12:12 - 2015-07-01 18:06 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
- 2016-07-01 12:12 - 2016-08-23 15:33 - 02321184 _____ () C:\Program Files (x86)\Steam\video.dll
- 2016-07-01 12:12 - 2016-01-27 03:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
- 2016-07-01 12:12 - 2016-01-27 03:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
- 2016-07-01 12:12 - 2016-01-27 03:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
- 2016-07-01 12:12 - 2016-01-27 03:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
- 2016-07-01 12:12 - 2016-01-27 03:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
- 2016-07-01 12:12 - 2015-07-01 18:06 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
- 2016-07-01 12:12 - 2015-07-01 18:06 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
- 2016-07-01 12:12 - 2016-08-23 15:33 - 00835360 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
- 2016-07-01 12:12 - 2016-07-04 18:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
- 2016-07-01 12:12 - 2016-08-04 16:56 - 49825056 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
- 2016-07-01 12:12 - 2015-09-24 19:52 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
- 2016-08-22 22:06 - 2016-08-11 10:33 - 00694952 _____ () C:\WINDOWS\SYSTEM32\nvfatbinaryLoader.dll
- ==================== Alternate Data Streams (Whitelisted) =========
- (If an entry is included in the fixlist, only the ADS will be removed.)
- ==================== Safe Mode (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- ==================== Association (Whitelisted) ===============
- (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
- ==================== Internet Explorer trusted/restricted ===============
- (If an entry is included in the fixlist, it will be removed from the registry.)
- ==================== Hosts content: ==========================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2016-08-11 14:51 - 2016-09-05 16:38 - 00000912 ____A C:\WINDOWS\system32\Drivers\etc\hosts
- 127.0.0.1 ssl.bandisoft.com
- 127.0.0.1 bandicam.com
- 127.0.0.1 ssl.bandisoft.com
- -lol pirated
- ==================== Other Areas ============================
- (Currently there is no automatic fix for this section.)
- HKU\S-1-5-21-3462580818-163346192-2193054908-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Sasha\AppData\Local\Microsoft\Windows\Themes\Space (2)\DesktopBackground\space-digital-art-1920x1080.jpg
- DNS Servers: 192.168.0.1
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
- Windows Firewall is enabled.
- ==================== MSCONFIG/TASK MANAGER disabled items ==
- (Currently there is no automatic fix for this section.)
- MSCONFIG\Services: RasAuto => 3
- MSCONFIG\Services: RasMan => 3
- MSCONFIG\Services: RpcLocator => 3
- MSCONFIG\Services: SessionEnv => 3
- MSCONFIG\Services: TermService => 3
- MSCONFIG\Services: UmRdpService => 3
- HKLM\...\StartupApproved\Run: => "NvBackend"
- HKLM\...\StartupApproved\Run: => "ShadowPlay"
- HKLM\...\StartupApproved\Run: => "RtHDVCpl"
- HKLM\...\StartupApproved\Run: => "RtsFT"
- HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
- HKLM\...\StartupApproved\Run: => "Corel Update Helper"
- HKLM\...\StartupApproved\Run: => "WindowsDefender"
- HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
- HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
- HKLM\...\StartupApproved\Run32: => "SwitchBoard"
- HKLM\...\StartupApproved\Run32: => "Malwarebytes Anti-Exploit"
- HKU\S-1-5-21-3462580818-163346192-2193054908-1001\...\StartupApproved\Run: => "Steam"
- HKU\S-1-5-21-3462580818-163346192-2193054908-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
- HKU\S-1-5-21-3462580818-163346192-2193054908-1001\...\StartupApproved\Run: => "OneDrive"
- HKU\S-1-5-21-3462580818-163346192-2193054908-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
- HKU\S-1-5-21-3462580818-163346192-2193054908-1001\...\StartupApproved\Run: => "Skype"
- HKU\S-1-5-21-3462580818-163346192-2193054908-1001\...\StartupApproved\Run: => "Gyazo"
- HKU\S-1-5-21-3462580818-163346192-2193054908-1001\...\StartupApproved\Run: => "SandboxieControl"
- HKU\S-1-5-21-3462580818-163346192-2193054908-1001\...\StartupApproved\Run: => "CyberGhost"
- ==================== FirewallRules (Whitelisted) ===============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
- FirewallRules: [UDP Query User{32718BCD-A38A-4BAC-9414-2D30450CCC7B}C:\program files\java\jdk1.8.0_102\bin\jmc.exe] => (Block) C:\program files\java\jdk1.8.0_102\bin\jmc.exe
- FirewallRules: [TCP Query User{52AE7D45-2551-4878-8F15-561E419EFB51}C:\program files\java\jdk1.8.0_102\bin\jmc.exe] => (Block) C:\program files\java\jdk1.8.0_102\bin\jmc.exe
- FirewallRules: [UDP Query User{DC9D85D0-A287-4D2A-8D79-05002E4F641D}C:\windows\temp\files\bin\kmss.exe] => (Allow) C:\windows\temp\files\bin\kmss.exe
- FirewallRules: [TCP Query User{FA9EA1C8-1CC5-4D25-A1A0-FD3EB84AFEFE}C:\windows\temp\files\bin\kmss.exe] => (Allow) C:\windows\temp\files\bin\kmss.exe
- FirewallRules: [{3D75155E-68D3-4E11-8DB3-F2C861141E69}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
- FirewallRules: [{FFF86120-C241-4188-8F58-04965A47DAA8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
- FirewallRules: [UDP Query User{128DD213-4E68-4220-871F-6711765AC404}C:\program files\vuze\azureus.exe] => (Allow) C:\program files\vuze\azureus.exe
- FirewallRules: [TCP Query User{4A9EF862-1151-48B1-BF14-41B24D9DCBB5}C:\program files\vuze\azureus.exe] => (Allow) C:\program files\vuze\azureus.exe
- FirewallRules: [{3EA8C6A9-75E2-493E-BB41-185E14DE3A78}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
- FirewallRules: [{94429409-E78A-48F7-B687-1695BA2C4E2F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
- FirewallRules: [{B769AD48-5496-40D9-9DF6-97DF923D9688}] => (Allow) C:\Program Files\Vuze\Azureus.exe
- FirewallRules: [{15847F20-0FFA-47FE-83C5-C450BD0FFAEE}] => (Allow) C:\Program Files\Vuze\Azureus.exe
- FirewallRules: [{48A027CE-57AA-4D64-AAB5-38147371900C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{ACA766DD-74D5-49F3-8B33-DD45CBC60C18}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{7A9665A1-2BDC-49C7-AACE-70FE83C59783}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- FirewallRules: [{0F38C03D-EEF9-4669-869B-6F3DC731F91C}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- FirewallRules: [{15F5077E-F9A1-404C-A596-BDC10908FC19}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
- FirewallRules: [{1F40328C-D8A0-4F8D-A806-9E17F268A0FE}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
- FirewallRules: [{60F3867A-3460-47EB-880A-819E22499B61}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
- FirewallRules: [{FE97B21F-8E40-48A6-AA92-B2A23314AABA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
- FirewallRules: [{DAC8847E-8084-4753-9D8A-507D19823EC1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
- FirewallRules: [{AFD6E64A-40AC-46B5-9E7A-4A89487CD30A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
- FirewallRules: [{D0307A1E-1CE4-40F7-9D7F-3D2678D429B1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
- FirewallRules: [{3EBFDAA6-F88E-478A-ABF8-4A5FB22CD2A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
- FirewallRules: [{961D1FD6-4D04-4C12-8DF6-01566FFAB8A4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
- FirewallRules: [{2C5A19DD-02CC-4805-A4D3-1A6018AEA132}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- FirewallRules: [{4914EA37-595C-4AC4-8663-48D8A6CDDBC7}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
- ==================== Restore Points =========================
- 02-09-2016 22:12:36 Windows Update
- 07-09-2016 17:18:57 After KOTOR2 Era
- 08-09-2016 21:34:12 Removed Skype™ 7.27
- ==================== Faulty Device Manager Devices =============
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (09/09/2016 08:36:15 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: WINWORD.EXE, version: 16.0.6769.2040, time stamp: 0x571d6b62
- Faulting module name: mbae64.dll, version: 1.8.1.2572, time stamp: 0x579a06db
- Exception code: 0xc0000005
- Fault offset: 0x000000000002eb82
- Faulting process id: 0x16f4
- Faulting application start time: 0x01d20afb54c91b6d
- Faulting application path: C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE
- Faulting module path: C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll
- Report Id: 90623eef-b430-4442-bf97-bd4bb174c328
- Faulting package full name:
- Faulting package-relative application ID:
- Error: (09/09/2016 07:32:58 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: License Activation (slui.exe) failed with the following error code:
- hr=0xC004F074
- Command-line arguments:
- RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
- Error: (09/09/2016 06:45:49 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: License Activation (slui.exe) failed with the following error code:
- hr=0xC004F074
- Command-line arguments:
- RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
- Error: (09/09/2016 06:45:23 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: License Activation (slui.exe) failed with the following error code:
- hr=0xC004F074
- Command-line arguments:
- RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
- Error: (09/09/2016 06:44:21 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: License Activation (slui.exe) failed with the following error code:
- hr=0xC004F074
- Command-line arguments:
- RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
- Error: (09/09/2016 06:44:11 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: License Activation (slui.exe) failed with the following error code:
- hr=0xC004F074
- Command-line arguments:
- RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
- Error: (09/09/2016 06:30:29 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: License Activation (slui.exe) failed with the following error code:
- hr=0xC004F074
- Command-line arguments:
- RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
- Error: (09/09/2016 05:43:47 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: License Activation (slui.exe) failed with the following error code:
- hr=0xC004F074
- Command-line arguments:
- RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
- Error: (09/09/2016 05:43:22 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: License Activation (slui.exe) failed with the following error code:
- hr=0xC004F074
- Command-line arguments:
- RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
- Error: (09/09/2016 05:12:00 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: License Activation (slui.exe) failed with the following error code:
- hr=0xC004F074
- Command-line arguments:
- RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
- System errors:
- =============
- Error: (09/09/2016 07:25:08 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {D63B10C5-BB46-4990-A94F-E40B9D520160}
- and APPID
- {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (09/09/2016 06:26:12 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {D63B10C5-BB46-4990-A94F-E40B9D520160}
- and APPID
- {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (09/09/2016 05:41:22 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {D63B10C5-BB46-4990-A94F-E40B9D520160}
- and APPID
- {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (09/09/2016 05:04:25 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {D63B10C5-BB46-4990-A94F-E40B9D520160}
- and APPID
- {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (09/09/2016 02:41:41 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {D63B10C5-BB46-4990-A94F-E40B9D520160}
- and APPID
- {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (09/09/2016 02:08:58 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
- Description: The server {F3B4E234-7A68-4E43-B813-E4BA55A065F6} did not register with DCOM within the required timeout.
- Error: (09/09/2016 12:50:19 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {D63B10C5-BB46-4990-A94F-E40B9D520160}
- and APPID
- {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (09/08/2016 10:36:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: The CyberGhost 6 Service service terminated unexpectedly. It has done this 2 time(s).
- Error: (09/08/2016 09:08:22 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
- Description: The server {F3B4E234-7A68-4E43-B813-E4BA55A065F6} did not register with DCOM within the required timeout.
- Error: (09/08/2016 08:47:41 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {D63B10C5-BB46-4990-A94F-E40B9D520160}
- and APPID
- {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- CodeIntegrity:
- ===================================
- Date: 2016-09-03 17:29:23.259
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows.old\WINDOWS\WinSxS\x86_microsoft-windows-utilman_31bf3856ad364e35_10.0.10586.0_none_3310acc4233710cd\Utilman.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2016-09-03 17:29:23.257
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows.old\WINDOWS\WinSxS\x86_microsoft-windows-utilman_31bf3856ad364e35_10.0.10586.0_none_3310acc4233710cd\Utilman.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2016-09-03 17:29:23.255
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows.old\WINDOWS\WinSxS\x86_microsoft-windows-utilman_31bf3856ad364e35_10.0.10586.0_none_3310acc4233710cd\Utilman.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2016-09-03 17:29:23.253
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows.old\WINDOWS\WinSxS\x86_microsoft-windows-utilman_31bf3856ad364e35_10.0.10586.0_none_3310acc4233710cd\Utilman.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2016-09-03 17:29:23.250
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows.old\WINDOWS\WinSxS\x86_microsoft-windows-utilman_31bf3856ad364e35_10.0.10586.0_none_3310acc4233710cd\Utilman.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2016-09-03 17:29:23.248
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows.old\WINDOWS\WinSxS\x86_microsoft-windows-utilman_31bf3856ad364e35_10.0.10586.0_none_3310acc4233710cd\Utilman.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2016-09-03 17:27:05.746
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows.old\WINDOWS\WinSxS\wow64_windows-devices-perception_31bf3856ad364e35_10.0.10586.0_none_5c4fdcd072d3b010\Windows.Devices.Perception.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2016-09-03 17:27:05.733
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows.old\WINDOWS\WinSxS\wow64_windows-devices-perception_31bf3856ad364e35_10.0.10586.0_none_5c4fdcd072d3b010\Windows.Devices.Perception.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2016-09-03 17:27:05.724
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows.old\WINDOWS\WinSxS\wow64_windows-devices-perception_31bf3856ad364e35_10.0.10586.0_none_5c4fdcd072d3b010\Windows.Devices.Perception.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2016-09-03 17:27:05.713
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows.old\WINDOWS\WinSxS\wow64_windows-devices-perception_31bf3856ad364e35_10.0.10586.0_none_5c4fdcd072d3b010\Windows.Devices.Perception.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- ==================== Memory info ===========================
- Processor: Intel(R) Core(TM) i7-4700MQ CPU @ 2.40GHz
- Percentage of memory in use: 63%
- Total physical RAM: 8142.36 MB
- Available physical RAM: 2996.95 MB
- Total Virtual: 10062.36 MB
- Available Virtual: 4310.31 MB
- ==================== Drives ================================
- Drive c: () (Fixed) (Total:930.73 GB) (Free:801.87 GB) NTFS
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: BB454857)
- Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
- Partition 2: (Not Active) - (Size=930.7 GB) - (Type=07 NTFS)
- Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
- ==================== End of Addition.txt ============================
Add Comment
Please, Sign In to add comment