Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-10-2017
- Ran by DELLoptiplex (01-10-2017 18:37:50)
- Running from C:\Users\DELLoptiplex\Downloads
- Windows 7 Professional Service Pack 1 (X64) (2017-08-11 16:45:46)
- Boot Mode: Normal
- ==========================================================
- ==================== Accounts: =============================
- Administrator (S-1-5-21-2616879510-1291822146-3680109222-500 - Administrator - Disabled)
- DELLoptiplex (S-1-5-21-2616879510-1291822146-3680109222-1000 - Administrator - Enabled) => C:\Users\DELLoptiplex
- Guest (S-1-5-21-2616879510-1291822146-3680109222-501 - Limited - Enabled) => C:\Users\Guest
- HomeGroupUser$ (S-1-5-21-2616879510-1291822146-3680109222-1002 - Limited - Enabled)
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
- AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
- AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- ==================== Installed Programs ======================
- (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- . . (HKLM\...\{E99F3005-A18B-4BF7-B751-7E780C5E87F0}) (Version: 7.1 - Intel) Hidden
- . . . (HKLM-x32\...\{26ABF655-7062-4BBB-B954-F21DF44A1D76}) (Version: 2.9.0.2 - Intel) Hidden
- µTorrent (HKU\S-1-5-21-2616879510-1291822146-3680109222-1000\...\uTorrent) (Version: 3.5.0.44090 - BitTorrent Inc.)
- Adobe Flash Player 27 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 27.0.0.130 - Adobe Systems Incorporated)
- Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated)
- Adobe Photoshop CS6 version 13.0.1 (HKLM-x32\...\{A724DC44-6241-42D3-BA57-778B178ABC17}_is1) (Version: 13.0.1 - Adobe Systems, Inc.)
- Bing Bar (HKLM-x32\...\{16793295-2366-40F7-A045-A3E42A81365E}) (Version: 7.1.362.0 - Microsoft Corporation)
- BlueStacks 3 (HKLM-x32\...\BlueStacks) (Version: 3.7.41.1619 - BlueStack Systems, Inc.)
- Driver Booster 4.4 (HKLM-x32\...\Driver Booster_is1) (Version: 4.4.0 - IObit)
- Fallout (HKLM\...\Steam App 38400) (Version: - Interplay Inc.)
- Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.)
- Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
- Growtopia (remove only) (HKU\S-1-5-21-2616879510-1291822146-3680109222-1000\...\Growtopia) (Version: - )
- Gtk# for .Net 2.12.26 (HKLM-x32\...\{BC25B808-A11C-4C9F-9C0A-6682E47AAB83}) (Version: 2.12.26 - Xamarin, Inc.)
- Hobo Tough Life v0.10.012 (HKLM-x32\...\vsetop.com Hobo Tough Life v0.10.012_is1) (Version: 0.10.012 - VseTop.Com)
- Chunky (HKLM\...\Chunky) (Version: - )
- Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1930 - Intel Corporation)
- Intel® Driver Update Utility (HKLM-x32\...\{e0c04d85-bdcb-4572-ac96-c3e248f87a87}) (Version: 2.9.0.2 - Intel)
- Java 8 Update 144 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
- Kingo ROOT version 1.5.4.3126 (HKLM-x32\...\{AE7675D6-0B31-494F-ABFA-822E1A0FDF17}_is1) (Version: 1.5.4.3126 - Kingosoft Technology Ltd.)
- LogMeIn Hamachi (HKLM-x32\...\{BE82D2D7-6CA2-43B3-8C22-CCF6405806E7}) (Version: 2.2.0.579 - LogMeIn, Inc.) Hidden
- LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.579 - LogMeIn, Inc.)
- Malwarebytes verze 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
- MCreator 1.7.3 (HKLM-x32\...\MCreator 1.7.3 Installer) (Version: - Pylo)
- MCreator 1.7.5 (HKLM-x32\...\MCreator 1.7.5 Installer) (Version: - Pylo)
- Microsoft .NET Framework 4.7 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.02053 - Microsoft Corporation)
- Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
- Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation)
- Microsoft Visual C++ 2017 Redistributable (x86) - 14.11.25325 (HKLM-x32\...\{404c9c27-8377-4fd1-b607-7ca635db4e49}) (Version: 14.11.25325.0 - Microsoft Corporation)
- Microsoft Visual Studio 2017 (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.11.33288.831 - Microsoft Corporation)
- Microsoft XNA Framework Redistributable 3.0 (HKLM-x32\...\{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}) (Version: 3.0.11010.0 - Microsoft Corporation)
- Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
- Mine-imator version 1.0.6 (HKLM-x32\...\{EF61A1AA-5F85-4E94-ACC6-D5650A312AE6}}_is1) (Version: 1.0.6 - David Norgren)
- Mozilla Firefox 55.0.3 (x64 cs) (HKLM\...\Mozilla Firefox 55.0.3 (x64 cs)) (Version: 55.0.3 - Mozilla)
- Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 55.0.3 - Mozilla)
- Outlast (HKLM\...\Steam App 238320) (Version: - Red Barrels)
- Overwolf (HKLM-x32\...\Overwolf) (Version: 0.107.36.0 - Overwolf Ltd.)
- Overwolf.Setup.VC100CRTx64.Dist (HKLM\...\{EC9D5554-6852-4A55-81BB-AC02C7A8CFED}) (Version: 1.0.0 - Overwolf)
- Overwolf.Setup.VC100CRTx86.Dist (HKLM-x32\...\{8989DBC1-E87B-448F-9147-57EEEC5A24A5}) (Version: 1.0.0 - Overwolf) Hidden
- paint.net (HKLM\...\{02D89175-E08F-401B-BA30-8B7512B57724}) (Version: 4.0.17 - dotPDN LLC)
- Roblox Player for DELLoptiplex (HKU\S-1-5-21-2616879510-1291822146-3680109222-1000\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - Roblox Corporation)
- ROBLOX Studio for DELLoptiplex (HKU\S-1-5-21-2616879510-1291822146-3680109222-1000\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version: - ROBLOX Corporation)
- SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.24.0 - SAMSUNG Electronics Co., Ltd.)
- Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.103 - Skype Technologies S.A.)
- SoftEther VPN Client (HKLM\...\softether_sevpnclient) (Version: 4.22.9634 - SoftEther VPN Project)
- Spooky's Jump Scare Mansion (HKLM\...\Steam App 356670) (Version: - Lag Studios)
- Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
- Team Fortress 2 (HKLM\...\Steam App 440) (Version: - Valve)
- TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.1.6 - TeamSpeak Systems GmbH)
- Technitium MAC Address Changer v6.0 (HKLM-x32\...\TMACv6.0) (Version: 6.0 - Technitium)
- Unity (HKLM-x32\...\Unity) (Version: 2017.1.1f1 - Unity Technologies ApS)
- Unturned (HKLM\...\Steam App 304930) (Version: - Smartly Dressed Games)
- vs_communitymsi (HKLM-x32\...\{52100697-9C66-44F3-BA20-68F8148CDF9B}) (Version: 15.0.26711 - Microsoft Corporation) Hidden
- vs_communitymsires (HKLM-x32\...\{226CCDB6-96F9-4DE6-9CCC-DB49D0A0A971}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
- vs_devenvmsi (HKLM-x32\...\{BFFA2FFB-1095-4ADD-A352-368806D2412B}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
- vs_filehandler_amd64 (HKLM-x32\...\{DDEF2BD0-F728-4D04-A085-B5ACC9ADC311}) (Version: 15.0.26711 - Microsoft Corporation) Hidden
- vs_filehandler_x86 (HKLM-x32\...\{2512A3CE-E1E4-46D5-8B40-28DA3AE2261E}) (Version: 15.0.26711 - Microsoft Corporation) Hidden
- vs_FileTracker_Singleton (HKLM-x32\...\{384F31FB-B99D-48A7-9D72-E1FEBEC2201A}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
- vs_minshellinteropmsi (HKLM-x32\...\{D0772A03-7FC2-4B20-AC1F-B278299AA9C7}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
- vs_minshellmsi (HKLM-x32\...\{0F2742A7-6A64-46A2-94AE-22F19808BE2F}) (Version: 15.0.26711 - Microsoft Corporation) Hidden
- vs_minshellmsires (HKLM-x32\...\{B8B65A93-F72B-42C2-AE1A-FF440B44BB67}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
- WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
- ==================== Custom CLSID (Whitelisted): ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- CustomCLSID: HKU\S-1-5-21-2616879510-1291822146-3680109222-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
- CustomCLSID: HKU\S-1-5-21-2616879510-1291822146-3680109222-1000_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
- CustomCLSID: HKU\S-1-5-21-2616879510-1291822146-3680109222-1000_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
- CustomCLSID: HKU\S-1-5-21-2616879510-1291822146-3680109222-1000_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
- CustomCLSID: HKU\S-1-5-21-2616879510-1291822146-3680109222-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
- CustomCLSID: HKU\S-1-5-21-2616879510-1291822146-3680109222-1000_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
- ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
- ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
- ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
- ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
- ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2009-09-23] (Intel Corporation)
- ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
- ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
- ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
- ==================== Scheduled Tasks (Whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- Task: {03970508-6678-4586-A88B-E3DDB5C88BA0} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask => [Argument = /run]
- Task: {044A6734-E90E-4F8F-B357-B2DC8AB3B5EC} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => [Argument = start w32time task_started]
- Task: {088482FA-65B8-4E17-9ABF-1DCD48E8D373} - System32\Tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 => [Argument = ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem]
- Task: {09F06BFE-A3C8-40E3-846A-6E6F4000C238} - System32\Tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 => [Argument = ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem]
- Task: {0BA0C254-0D8E-4D4F-B2B4-1DBC9FA1DD0D} - System32\Tasks\GoogleUpdateTaskMachineUA => [Argument = /ua /installsource scheduler] <==== ATTENTION
- Task: {1190D8EC-89E0-4E26-8B67-BD6D3981E144} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => [Argument = Scan -ScheduleJob -WinTask -RestrictPrivilegesScan]
- Task: {123C2B00-0870-4142-A9A9-7E6AD511DBA8} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => [Argument = /InstallPlayReady $(Arg0)]
- Task: {163B000E-EE75-41F0-83C0-CFE33DB8E81B} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline => [Argument = /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"]
- Task: {1C9C3CC6-363E-4F03-9885-5F4B15C0FCA6} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => [Argument = /OCURActivate]
- Task: {235464EB-A8E0-43FE-988F-A780AF2E402E} - System32\Tasks\{7D8AD0A8-8260-459B-A917-12FE3EEE4977} => [Argument = -a C:\Users\DELLoptiplex\Desktop\Intel_Express_7.15.10.1666_VS_32\Intel_Express_7.15.10.1666_VS_32\Setup.exe -d C:\Users\DELLoptiplex\Desktop\Intel_Express_7.15.10.1666_VS_32\Intel_Express_7.15.10.1666_VS_32]
- Task: {25A1645A-97A7-4DF4-9D02-17C7F243FC0D} - System32\Tasks\Driver Booster SkipUAC (DELLoptiplex) => [Argument = /skipuac]
- Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - System32\Tasks\Microsoft\Windows\WindowsBackup\ConfigNotification => [Argument = /CONFIGNOTIFICATION]
- Task: {3359BA56-310D-4C6E-8B96-7CA8B13A9C98} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => [Argument = /DoUpdateRecordPath $(Arg0)]
- Task: {38A422BA-A378-4CC4-A393-AA53E65C4610} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => [Argument = /DoRecoveryTasks $(Arg0)]
- Task: {3A5179B0-EABF-411C-BAC0-91887E97B759} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => [Argument = /DoReindexSearchRoot]
- Task: {3F678B08-FDC9-4BD9-BCBC-D1FD46D38D68} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => [Argument = /PBDADiscovery]
- Task: {4A112BC0-B3DE-445A-A8AE-53A46AC7239E} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => [Argument = -pscn 0]
- Task: {4B5E711A-CF45-470C-BB52-50A27623A1E2} - System32\Tasks\Adobe Flash Player Updater =>
- Task: {544C0B08-FCB2-4E3F-9F19-25A23D5ACFE2} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => [Argument = /DoRegisterSearch $(Arg0)]
- Task: {59949528-BB25-44AF-93E5-94770C7B14D7} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => [Argument = /DoConfigureInternetTimeService]
- Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => [Argument = config upnphost start= auto]
- Task: {5B44809E-3966-4244-9D85-7D5B5B78247F} - System32\Tasks\GoogleUpdateTaskMachineCore => [Argument = /c] <==== ATTENTION
- Task: {5C0AEEEA-C154-45BE-8499-BEA5F11BAFF6} - System32\Tasks\Microsoft\Windows\Defrag\ScheduledDefrag => [Argument = -c]
- Task: {5F1E631E-AD9C-4491-B6E5-8A71BED35121} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => [Argument = /RestartRecording]
- Task: {72DB7465-BC54-491B-A92A-4637A28C9BBF} - System32\Tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck =>
- Task: {741B9A33-4014-471A-A339-D9C1D93D490D} - System32\Tasks\Overwolf Updater Task => [Argument = /RunningFrom Schedule]
- Task: {753C47AE-EC5E-44B3-95A9-2C8E553F0E39} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary =>
- Task: {796B21A8-2D8B-4E0C-B060-5879F4CC11FE} - System32\Tasks\Driver Booster Scheduler => [Argument = /scheduler]
- Task: {7CCA88D7-29F2-4FA1-8335-2D51D7BBC36A} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => [Argument = //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\task.vbs"]
- Task: {81540B9F-B5BF-47EB-9C95-BE195BF2C664} - System32\Tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo =>
- Task: {84C70568-25C9-4592-8A8C-AA789FEAA8BF} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => [Argument = /wait:7 /PBDADiscovery]
- Task: {89D1164B-36DB-4879-AAC3-0B519F591681} - System32\Tasks\Microsoft\Windows\WindowsBackup\Windows Backup Monitor => [Argument = /CHECKSKIPPED]
- Task: {8CA91461-477A-47EE-B6B6-783EBC1104B0} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => [Argument = /DRMInit]
- Task: {950359B4-82CF-4F34-A726-33792177C33D} - System32\Tasks\Intel\Intel Telemetry 2 =>
- Task: {97CF86A4-3F4C-4864-B203-F48E046DB0AF} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => [Argument = $(Arg0)]
- Task: {994C86AD-A929-4B2C-88A0-4E25A107A029} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => [Argument = /d srrstr.dll,ExecuteScheduledSPPCreation]
- Task: {9E5B5F7B-A19A-4372-9D8A-9CAB08BE2382} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => [Argument = /OCURDiscovery $(Arg0)]
- Task: {A48CABBF-24C8-4B87-B00F-9261807C3B43} - System32\Tasks\Microsoft\Windows\AppID\PolicyConverter =>
- Task: {A6AF9377-77CE-47AB-AD7D-EC32CAD0C82D} - System32\Tasks\Microsoft\Windows\Location\Notifications =>
- Task: {AAA05E46-F21E-4C98-A41C-A9CB1CB90C11} - System32\Tasks\WPD\SqmUpload_S-1-5-21-2616879510-1291822146-3680109222-1000 => [Argument = portabledeviceapi.dll,#1]
- Task: {AB555A7E-2DE5-4F4B-801A-1C3D32C17BCB} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => [Argument = -PvrRecoveryTask]
- Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent =>
- Task: {B152A0D1-2E3B-4D3E-81EF-639F8D62D871} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => [Argument = -maintenance]
- Task: {B589A864-1A44-47AC-9BBD-4D5FB3144270} - System32\Tasks\Opera scheduled Autoupdate 1503127715 => [Argument = --scheduledautoupdate $(Arg0)]
- Task: {B91B64DB-0EEB-4FB3-B7A0-3C81DD8336A3} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => [Argument = /DoActivateWindowsSearch]
- Task: {B969FEE5-79D7-45F4-92DD-01EA8A286551} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver =>
- Task: {BCAD3F49-6D88-406C-9360-0AC63126096D} - System32\Tasks\WindowsUp =>
- Task: {C016366B-7126-46CA-B36B-592A3D95A60B} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator =>
- Task: {C5E88925-5888-4D9F-A13F-4408187B218E} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => [Argument = -PvrSchedule]
- Task: {CB3D64BF-C0C9-45FF-BFB0-FF1A8F680186} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => [Argument = /offerraupdate]
- Task: {CF787872-2F43-45E5-B4C6-A7F544661C16} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => [Argument = -SqlLiteRecoveryTask]
- Task: {D01BF506-E3A9-4CF8-BA6E-488CDEF60948} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector => [Argument = dfdts.dll,DfdGetDefaultPolicyAndSMART]
- Task: {D0250F3F-6480-484F-B719-42F659AC64D5} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting => [Argument = -queuereporting]
- Task: {D6DEF5EB-B888-448D-A1B5-50B9C86F3CCD} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => [Argument = -MediaCenterRecoveryTask]
- Task: {D7B6E81D-3CF4-432C-84D2-24213F4316E6} - System32\Tasks\Microsoft\Windows\Autochk\Proxy => [Argument = /d acproxy.dll,PerformAutochkOperations]
- Task: {D8EBD005-4A74-426F-86AC-7B645D847D22} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => [Argument = -v]
- Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => [Argument = start sppsvc]
- Task: {E22A8667-F75B-4BA9-BA46-067ED4429DE8} - System32\Tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange => [Argument = bfe.dll,BfeOnServiceStartTypeChange]
- Task: {E3163C33-301D-4730-A266-5518C5ED3967} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => [Argument = $(Arg0)]
- Task: {E369BF4D-33A7-4797-AA85-DB40AAED18BD} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => [Argument = -ObjectStoreRecoveryTask]
- Task: {EB02381F-D652-4B1C-894A-712498C62C51} - System32\Tasks\Microsoft\Windows\MUI\LPRemove =>
- Task: {EB8E6DB7-F3BD-4747-AEC2-04E78AB48F0D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => [Argument = /wait:90 /PBDADiscovery]
- Task: {F4AC3A87-6B98-4555-800D-72AF06E24C36} - System32\Tasks\Microsoft\Windows\MUI\Mcbuilder =>
- Task: {FB3C354D-297A-4EB2-9B58-090F6361906B} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem => [Argument = -energy -auto]
- Task: {FE12A219-AC55-4ED5-B740-CB31DEE6D11F} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => [Argument = /d sdengin2.dll,ExecuteScheduledBackup]
- (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
- ==================== Shortcuts & WMI ========================
- (The entries could be listed to be restored or removed.)
- ==================== Loaded Modules (Whitelisted) ==============
- 2017-08-21 12:44 - 2017-07-24 16:07 - 000017384 _____ () C:\Users\DELLoptiplex\AppData\Local\Kingosoft\Kingo Root\update_27205\bin\KingoSoftService.exe
- 2017-03-07 19:04 - 2017-03-07 19:04 - 000157456 _____ () C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe
- 2017-09-15 17:24 - 2017-03-07 19:15 - 000824592 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe
- 2017-09-15 17:24 - 2017-03-07 19:18 - 001981712 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_modeler.dll
- 2017-09-15 17:24 - 2017-03-07 19:10 - 000248080 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\acpi_battery_input.dll
- 2017-09-15 17:24 - 2017-03-07 19:09 - 000213776 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\wifi_input.dll
- 2017-09-15 17:24 - 2017-03-07 19:10 - 000175376 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\devices_use_input.dll
- 2017-09-15 17:24 - 2017-03-07 19:09 - 000204048 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_system_power_state_input.dll
- 2017-09-15 17:24 - 2017-03-07 19:08 - 000337680 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_process_input.dll
- 2017-09-15 17:24 - 2017-03-07 19:05 - 000148240 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_winstat_input.dll
- 2017-09-15 17:24 - 2017-03-07 19:05 - 000178448 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_acdc_setting_input.dll
- 2017-09-15 17:24 - 2017-03-07 19:10 - 000213776 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\sema_thermal_input.dll
- 2017-09-15 17:24 - 2017-03-07 19:06 - 000229648 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_quality_and_reliability_input.dll
- 2017-09-15 17:24 - 2017-03-07 19:07 - 000225040 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_sampler_input.dll
- 2017-09-15 17:24 - 2017-03-07 19:05 - 000212752 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_stress_odometer_input.dll
- 2017-09-15 17:24 - 2017-03-07 19:07 - 000220432 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_turbo_input.dll
- 2017-09-26 16:13 - 2017-09-21 09:29 - 002692440 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\swiftshader\libglesv2.dll
- 2017-09-26 16:13 - 2017-09-21 09:29 - 000138584 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\swiftshader\libegl.dll
- 2017-09-15 17:24 - 2017-03-07 19:13 - 000747792 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\esrv.exe
- 2017-09-15 17:24 - 2017-03-07 19:11 - 000238864 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\foreground_window_input.dll
- 2017-09-15 17:24 - 2017-03-07 19:08 - 000218384 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_user_waiting_input.dll
- 2017-08-20 10:26 - 2017-08-20 10:26 - 001412608 _____ () C:\Pylo\MCreator173\MCreator.exe
- 2017-08-17 16:51 - 2017-08-17 16:51 - 001993184 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll
- 2017-08-16 15:43 - 2017-08-04 23:19 - 000678176 _____ () C:\Program Files (x86)\Steam\SDL2.dll
- 2017-08-16 15:43 - 2016-09-01 03:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll
- 2017-08-16 15:43 - 2016-09-01 03:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
- 2017-08-16 15:43 - 2016-09-01 03:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
- 2017-08-16 15:43 - 2017-09-27 18:19 - 002507552 _____ () C:\Program Files (x86)\Steam\video.dll
- 2017-08-16 15:43 - 2016-01-27 09:49 - 002549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
- 2017-08-16 15:43 - 2016-01-27 09:49 - 000442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
- 2017-08-16 15:43 - 2016-01-27 09:49 - 000491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
- 2017-08-16 15:43 - 2016-01-27 09:49 - 000332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
- 2017-08-16 15:43 - 2016-01-27 09:49 - 000485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
- 2017-08-16 15:43 - 2017-09-27 18:19 - 000885024 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
- 2017-08-16 15:43 - 2016-07-05 00:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
- 2017-09-10 10:34 - 2017-09-10 10:34 - 071940936 _____ () C:\Program Files (x86)\Overwolf\0.107.36.0\libcef.DLL
- 2017-08-16 15:44 - 2017-07-18 00:50 - 073115424 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
- 2017-08-16 15:44 - 2017-05-17 03:54 - 000678176 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll
- 2017-08-16 15:43 - 2015-09-25 01:52 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
- 2017-09-01 21:26 - 2016-08-01 10:48 - 000355616 _____ () C:\Program Files (x86)\IObit\Driver Booster\4.4.0\madExcept_.bpl
- 2017-09-01 21:26 - 2016-08-01 10:48 - 000190240 _____ () C:\Program Files (x86)\IObit\Driver Booster\4.4.0\madBasic_.bpl
- 2017-09-01 21:26 - 2016-08-01 10:48 - 000057632 _____ () C:\Program Files (x86)\IObit\Driver Booster\4.4.0\madDisAsm_.bpl
- 2017-09-01 21:26 - 2016-08-01 10:48 - 000899872 _____ () C:\Program Files (x86)\IObit\Driver Booster\4.4.0\webres.dll
- 2017-09-01 21:26 - 2016-08-01 10:48 - 000524064 _____ () C:\Program Files (x86)\IObit\Driver Booster\4.4.0\sqlite3.dll
- ==================== Alternate Data Streams (Whitelisted) =========
- (If an entry is included in the fixlist, only the ADS will be removed.)
- ==================== Safe Mode (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMSwissArmy => ""="Driver"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMSwissArmy => ""="Driver"
- ==================== Association (Whitelisted) ===============
- (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
- ==================== Internet Explorer trusted/restricted ===============
- (If an entry is included in the fixlist, it will be removed from the registry.)
- ==================== Hosts content: ===============================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts
- ==================== Other Areas ============================
- (Currently there is no automatic fix for this section.)
- HKU\S-1-5-21-2616879510-1291822146-3680109222-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\DELLoptiplex\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
- DNS Servers: 192.168.0.1
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
- Windows Firewall is enabled.
- ==================== MSCONFIG/TASK MANAGER disabled items ==
- ==================== FirewallRules (Whitelisted) ===============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
- FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
- FirewallRules: [{8AB5E790-BDBE-4EF6-81D2-3009D1A19A74}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
- FirewallRules: [TCP Query User{D90FA29F-3B47-4F79-B227-8C97D339E041}C:\program files\java\jre1.8.0_144\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_144\bin\javaw.exe
- FirewallRules: [UDP Query User{B8477B6D-721E-4163-873C-E6AA6733819F}C:\program files\java\jre1.8.0_144\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_144\bin\javaw.exe
- FirewallRules: [TCP Query User{16D168AB-8BE6-4A3E-A4C4-1BC8136F7784}C:\pylo\mcreator175\jdk32\bin\java.exe] => (Allow) C:\pylo\mcreator175\jdk32\bin\java.exe
- FirewallRules: [UDP Query User{561CDEA4-669D-475C-AEBB-AF671D53AA16}C:\pylo\mcreator175\jdk32\bin\java.exe] => (Allow) C:\pylo\mcreator175\jdk32\bin\java.exe
- FirewallRules: [TCP Query User{04C24228-B86C-4B70-ADFD-4BD664D6EDF1}C:\pylo\mcreator171\jdk64\bin\java.exe] => (Allow) C:\pylo\mcreator171\jdk64\bin\java.exe
- FirewallRules: [UDP Query User{BBC228FB-4827-466A-AD88-EFFF2FC7A9FF}C:\pylo\mcreator171\jdk64\bin\java.exe] => (Allow) C:\pylo\mcreator171\jdk64\bin\java.exe
- FirewallRules: [{8FF9FBB7-6913-4A7F-83D7-68EA68B1B9D6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{FF64CC2A-FF49-4465-8D3C-4A2DAC92B261}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{8016D695-2AE1-4805-9532-08B0A5EBFE85}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
- FirewallRules: [{E3AA3164-F84E-4227-9498-B2BA7202BD23}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
- FirewallRules: [{7CFF3E84-3C5B-4358-83AD-CE6A355059C9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Spooky's House of Jump Scares\SPOOKY.exe
- FirewallRules: [{B179CF3D-6B53-409A-9436-9FD61E20F8BE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Spooky's House of Jump Scares\SPOOKY.exe
- FirewallRules: [{18CF5703-D95F-4B0F-8F1A-E54F72BDBF4A}] => (Allow) C:\Users\DELLoptiplex\AppData\Local\Programs\Opera\47.0.2631.39\opera.exe
- FirewallRules: [{9015A18E-6B9C-4764-BC65-F095E9906B00}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr.exe
- FirewallRules: [{1E313DCC-0B33-4C2C-9513-028F7560C118}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd.exe
- FirewallRules: [{F386DEC4-F9C5-437C-B1CF-2A8D5ED7C076}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe
- FirewallRules: [{9777C2D3-488F-46DA-9A74-90EBB57D8711}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
- FirewallRules: [{934388A7-2DC3-4A4C-96CF-84C2386CD2D4}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd_x64.exe
- FirewallRules: [{7CBC4BE4-46CC-491B-A26D-A06C12E83385}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient.exe
- FirewallRules: [{F92C13E8-ABF3-4603-92C3-5A046FB504D5}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DriverBooster.exe
- FirewallRules: [{ECAE9931-283A-4729-A633-0C8DE6B16C63}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DriverBooster.exe
- FirewallRules: [{54612E35-F7A3-417C-9854-8392EDB798A4}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DBDownloader.exe
- FirewallRules: [{B69F220E-D47A-4018-A3D7-3FE2101A2BE2}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DBDownloader.exe
- FirewallRules: [{8F6A45DB-D583-4553-B52B-CCC284EB63CF}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\AutoUpdate.exe
- FirewallRules: [{184A2CFA-A703-4D2F-8C45-4E9A803BA4BF}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\AutoUpdate.exe
- FirewallRules: [{E45F8816-7B5A-40A2-9C4E-86EEB6A4F988}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
- FirewallRules: [{E02186E5-CD6C-4285-B72B-56C48BE6E449}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
- FirewallRules: [{6F0B7D3A-9B08-4087-8BC8-EF7F5B4078B0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe
- FirewallRules: [{4ACB8B8C-90C9-4438-A270-F1AAB24A9951}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe
- FirewallRules: [{2BEB9E09-00EF-4974-A8AF-FDE82FD3606A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
- FirewallRules: [{28EFAE92-41F1-4A65-A167-286542F84539}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
- FirewallRules: [{C07ED1E4-D896-4446-BF12-B05F627B628D}] => (Allow) C:\Program Files (x86)\Nox\bin\Nox.exe
- FirewallRules: [{C90BE08B-2A4B-4613-BEF4-F511CB785D06}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
- FirewallRules: [{36E4F747-F226-4221-80BF-793610B2F345}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe
- FirewallRules: [{9B21FE9D-286E-4F7B-A200-D8CF121B99F9}] => (Allow) C:\Users\DELLoptiplex\AppData\Roaming\uTorrent\uTorrent.exe
- FirewallRules: [{5C5A01E7-39FB-4BFE-AD15-F8B393C428C3}] => (Allow) C:\Users\DELLoptiplex\AppData\Roaming\uTorrent\uTorrent.exe
- FirewallRules: [{F972463F-883C-4485-9D3F-F1C5ED6B7D31}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Outlast\OutlastLauncher.exe
- FirewallRules: [{7381D670-8DBA-4ABA-B156-2A1F382CE933}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Outlast\OutlastLauncher.exe
- FirewallRules: [TCP Query User{BE7F3DD6-1D93-49E1-875E-B86F3ED8958B}C:\program files\unity\editor\unity.exe] => (Block) C:\program files\unity\editor\unity.exe
- FirewallRules: [UDP Query User{2D9E6419-F56A-44F1-81F3-184F8DFE5646}C:\program files\unity\editor\unity.exe] => (Block) C:\program files\unity\editor\unity.exe
- FirewallRules: [{D91CE37E-EF39-48BD-B033-24E604095E59}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- FirewallRules: [{18D67730-1AC1-46D2-A127-A77CAB4AC307}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
- FirewallRules: [{DF07C82D-5694-47F2-B508-F6A9712910FA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
- FirewallRules: [{6103665D-4A22-43AB-8430-E5E3BC4C8008}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout\FalloutLauncher.exe
- FirewallRules: [{2A2C4F86-C60A-4B81-A47D-FA774565E90A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout\FalloutLauncher.exe
- FirewallRules: [TCP Query User{27900370-6EDD-49AF-BF7D-50EB55E67000}C:\pylo\mcreator175\jdk64\bin\java.exe] => (Allow) C:\pylo\mcreator175\jdk64\bin\java.exe
- FirewallRules: [UDP Query User{B0411E93-6B5C-4CC5-AC86-FEA94C3B8E33}C:\pylo\mcreator175\jdk64\bin\java.exe] => (Allow) C:\pylo\mcreator175\jdk64\bin\java.exe
- FirewallRules: [TCP Query User{3B2A2AAE-0DD1-439F-A484-6094A418909B}C:\pylo\mcreator173\jdk64\bin\java.exe] => (Allow) C:\pylo\mcreator173\jdk64\bin\java.exe
- FirewallRules: [UDP Query User{65A6B4CD-9890-42B2-8450-338D35669483}C:\pylo\mcreator173\jdk64\bin\java.exe] => (Allow) C:\pylo\mcreator173\jdk64\bin\java.exe
- ==================== Restore Points =========================
- 23-09-2017 15:06:13 Instalace balíčku ovladače zařízení: SoftEther Corporation Síťové adaptéry
- 23-09-2017 15:09:34 Instalace balíčku ovladače zařízení: SoftEther Corporation Síťové adaptéry
- 23-09-2017 15:49:05 Windows Update
- 23-09-2017 22:37:59 Installed Gtk# for .Net 2.12.26
- 23-09-2017 22:52:01 Microsoft Visual C++ 2017 Redistributable (x86) - 14.11.25325
- 23-09-2017 22:52:44 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215
- 23-09-2017 22:53:08 Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325
- 23-09-2017 22:53:58 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215
- 23-09-2017 22:54:44 Instalační služba modulů systému Windows
- 25-09-2017 18:06:58 Windows Zálohování
- 25-09-2017 18:27:35 Windows Update
- 29-09-2017 09:17:56 Windows Update
- ==================== Faulty Device Manager Devices =============
- Name: VPN Client Adapter - 115
- Description: VPN Client Adapter - 115
- Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
- Manufacturer: SoftEther Corporation
- Service: Neo_115
- Problem: : This device is disabled. (Code 22)
- Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (10/01/2017 02:37:35 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
- Error: (10/01/2017 12:22:27 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
- Error: (10/01/2017 12:22:05 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Název chybující aplikace: DSATray.exe, verze: 2.9.0.2, časové razítko: 0x598ca911
- Název chybujícího modulu: KERNELBASE.dll, verze: 6.1.7601.23889, časové razítko: 0x598d4d26
- Kód výjimky: 0xe0434352
- Posun chyby: 0x0000c54f
- ID chybujícího procesu: 0x9a8
- Čas spuštění chybující aplikace: 0x01d33a9ef890e157
- Cesta k chybující aplikaci: C:\Program Files (x86)\Intel Driver Update Utility\DSATray.exe
- Cesta k chybujícímu modulu: C:\Windows\syswow64\KERNELBASE.dll
- ID zprávy: 5eafb847-a692-11e7-9318-029f859d0d3f
- Error: (10/01/2017 12:21:47 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
- Description: Aplikace: DSATray.exe
- Verze Framework: v4.0.30319
- Popis: Proces byl ukončen z důvodu neošetřené výjimky.
- Informace o výjimce: System.Exception
- na DSAUtility.LoggingController.TraceError(System.String, Boolean, System.Nullable`1<System.DateTime>)
- na DSATray.App.Dispatcher_UnhandledException(System.Object, System.Windows.Threading.DispatcherUnhandledExceptionEventArgs)
- na System.Windows.Threading.Dispatcher.CatchException(System.Exception)
- na System.Windows.Threading.Dispatcher.CatchExceptionStatic(System.Object, System.Exception)
- na System.Windows.Threading.ExceptionWrapper.CatchException(System.Object, System.Exception, System.Delegate)
- na System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
- na System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
- na MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
- na MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
- na System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
- na System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
- na System.Windows.Application.RunDispatcher(System.Object)
- na System.Windows.Application.RunInternal(System.Windows.Window)
- na System.Windows.Application.Run(System.Windows.Window)
- na DSATray.App.Main()
- Error: (10/01/2017 12:12:06 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
- Error: (10/01/2017 12:11:50 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Název chybující aplikace: DSATray.exe, verze: 2.9.0.2, časové razítko: 0x598ca911
- Název chybujícího modulu: KERNELBASE.dll, verze: 6.1.7601.23889, časové razítko: 0x598d4d26
- Kód výjimky: 0xe0434352
- Posun chyby: 0x0000c54f
- ID chybujícího procesu: 0x740
- Čas spuštění chybující aplikace: 0x01d33a9d8fe96681
- Cesta k chybující aplikaci: C:\Program Files (x86)\Intel Driver Update Utility\DSATray.exe
- Cesta k chybujícímu modulu: C:\Windows\syswow64\KERNELBASE.dll
- ID zprávy: f083e3ab-a690-11e7-a10e-029f859d0d3f
- Error: (10/01/2017 12:11:37 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
- Description: Aplikace: DSATray.exe
- Verze Framework: v4.0.30319
- Popis: Proces byl ukončen z důvodu neošetřené výjimky.
- Informace o výjimce: System.Exception
- na DSAUtility.LoggingController.TraceError(System.String, Boolean, System.Nullable`1<System.DateTime>)
- na DSATray.App.Dispatcher_UnhandledException(System.Object, System.Windows.Threading.DispatcherUnhandledExceptionEventArgs)
- na System.Windows.Threading.Dispatcher.CatchException(System.Exception)
- na System.Windows.Threading.Dispatcher.CatchExceptionStatic(System.Object, System.Exception)
- na System.Windows.Threading.ExceptionWrapper.CatchException(System.Object, System.Exception, System.Delegate)
- na System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
- na System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
- na MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
- na MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
- na System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
- na System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
- na System.Windows.Application.RunDispatcher(System.Object)
- na System.Windows.Application.RunInternal(System.Windows.Window)
- na System.Windows.Application.Run(System.Windows.Window)
- na DSATray.App.Main()
- Error: (10/01/2017 12:07:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
- Error: (10/01/2017 08:49:07 AM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
- Error: (09/30/2017 10:07:26 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Název chybující aplikace: java.exe, verze: 8.0.1010.13, časové razítko: 0x576a4c7e
- Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.23889, časové razítko: 0x598d5074
- Kód výjimky: 0xc0000374
- Posun chyby: 0x00000000000bf3e2
- ID chybujícího procesu: 0x1380
- Čas spuštění chybující aplikace: 0x01d33a27a923b2af
- Cesta k chybující aplikaci: C:\Pylo\MCreator175\jdk64\bin\java.exe
- Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
- ID zprávy: f9eefda4-a61a-11e7-a07f-029f859d0d3f
- System errors:
- =============
- Error: (10/01/2017 02:35:53 PM) (Source: EventLog) (EventID: 6008) (User: )
- Description: Předchozí vypnutí systému (14:11:31, 1.10.2017) bylo neočekávané.
- Error: (10/01/2017 12:21:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: Služba Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK neuspěla při spuštění v důsledku následující chyby:
- Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
- Error: (10/01/2017 12:21:18 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
- Description: Při čekání na připojení služby Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK bylo dosaženo časového limitu (30000 ms).
- Error: (10/01/2017 12:10:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: Služba Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK neuspěla při spuštění v důsledku následující chyby:
- Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
- Error: (10/01/2017 12:10:56 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
- Description: Při čekání na připojení služby Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK bylo dosaženo časového limitu (30000 ms).
- Error: (10/01/2017 12:08:23 PM) (Source: DCOM) (EventID: 10005) (User: )
- Description: Služba DCOM zjistila chybu %%1084 = Tuto službu nelze spustit v nouzovém režimu. při pokusu o spuštění služby sdrsvc s argumenty za účelem spuštění serveru:
- {687E55CA-6621-4C41-B9F1-C0EDDC94BB05}
- Error: (10/01/2017 12:06:54 PM) (Source: DCOM) (EventID: 10005) (User: )
- Description: Služba DCOM zjistila chybu %%1084 = Tuto službu nelze spustit v nouzovém režimu. při pokusu o spuštění služby wuauserv s argumenty za účelem spuštění serveru:
- {E60687F7-01A1-40AA-86AC-DB1CBF673334}
- Error: (10/01/2017 12:06:38 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
- Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
- Nepodařilo se zahájit závislou službu nebo skupinu.
- Error: (10/01/2017 12:06:37 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
- Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
- Nepodařilo se zahájit závislou službu nebo skupinu.
- Error: (10/01/2017 12:06:37 PM) (Source: DCOM) (EventID: 10005) (User: )
- Description: Služba DCOM zjistila chybu %%1068 = Nepodařilo se zahájit závislou službu nebo skupinu. při pokusu o spuštění služby netman s argumenty za účelem spuštění serveru:
- {BA126AD1-2166-11D1-B1D0-00805FC1270E}
- ==================== Memory info ===========================
- Processor: Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
- Percentage of memory in use: 68%
- Total physical RAM: 4468.61 MB
- Available physical RAM: 1411.36 MB
- Total Virtual: 8935.39 MB
- Available Virtual: 3902.89 MB
- ==================== Drives ================================
- Drive c: () (Fixed) (Total:297.3 GB) (Free:202.59 GB) NTFS
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: C5F5FF18)
- Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
- Partition 2: (Not Active) - (Size=297.3 GB) - (Type=07 NTFS)
- Partition 3: (Not Active) - (Size=455 MB) - (Type=27)
- ==================== End of Addition.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement