Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09.12.2018 Ran by Abdul (13-12-2018 12:42:58) Running from E:\ Windows 7 Ultimate Service Pack 1 (X64) (2018-08-13 10:36:05) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Abdul (S-1-5-21-2685662787-1516377248-208156778-1001 - Administrator - Enabled) => C:\Users\Abdul Administrator (S-1-5-21-2685662787-1516377248-208156778-500 - Administrator - Disabled) Guest (S-1-5-21-2685662787-1516377248-208156778-501 - Limited - Enabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Microsoft Security Essentials (Disabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189} AV: COMODO Antivirus (Enabled - Up to date) {08B84BA8-CC77-5A8B-A100-3F522B1B6106} AS: Microsoft Security Essentials (Disabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: COMODO Advanced Protection (Enabled - Up to date) {B3D9AA4C-EA4D-5505-9BB0-0420509C2BBB} FW: COMODO Firewall (Enabled) {3083CA8D-8618-5BD3-8A5F-9667D5C8267D} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 7-Zip 18.05 (HKLM-x32\...\7-Zip) (Version: 18.05 - Igor Pavlov) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.7.0.400 - Adobe Systems Incorporated) Adobe Dreamweaver CC 2017 (HKLM-x32\...\DRWV_17_0_0) (Version: 17.0.0 - Adobe Systems Incorporated) Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.0 - Adobe Systems Incorporated) ALLPlayer (wersja 8.3) (HKLM\...\{68972948-F221-4267-9EB6-2EB5D913C4CF}_is1) (Version: 8.3 - ALLPlayer Ltd.) ALLPlayer Remote Control (HKLM-x32\...\{146BDBDD-ACD9-4B04-A286-C27471841E8E}_is1) (Version: 2.1 - ALLPlayer Group, Ltd.) AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.9.3 - Advanced Micro Devices, Inc.) Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.14.4.0 - Asmedia Technology) Branding64 (HKLM\...\{EE2AFCE4-0238-4DE0-A140-1647021627C1}) (Version: 1.00.0001 - Advanced Micro Devices, Inc.) Hidden Brother MFL-Pro Suite MFC-L2720DW series (HKLM-x32\...\{F8ECC2FD-CE2B-4ED4-BDCC-90D0D34206FD}) (Version: 1.0.3.0 - Brother Industries, Ltd.) CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform) Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.) Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.) COMODO Internet Security Premium (HKLM\...\{785D9670-B355-487D-8B6A-6B28490AF489}) (Version: 11.0.0.6728 - COMODO Security Solutions Inc.) Hidden COMODO Internet Security Premium (HKLM\...\COMODO Internet Security) (Version: 11.0.0.6728 - COMODO Security Solutions Inc.) Core Temp 1.12.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.12.1 - ALCPU) CPUID CPU-Z 1.86 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.86 - CPUID, Inc.) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.8.0.0544 - Disc Soft Ltd) EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.) Fallout: New Vegas (HKLM-x32\...\1454587428_is1) (Version: 1.4.0.525 - GOG.com) Free Download Manager (HKLM\...\{43781dff-e0df-49ce-a6d2-47da96a485e7}}_is1) (Version: 5.1.37.7258 - FreeDownloadManager.ORG) GIMP 2.10.6 (HKLM\...\GIMP-2_is1) (Version: 2.10.6 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.110 - Google Inc.) Google Chrome Canary (HKU\S-1-5-21-2685662787-1516377248-208156778-1001\...\Google Chrome SxS) (Version: 73.0.3639.0 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden Grand Theft Auto V (HKLM\...\Grand Theft Auto V_is1) (Version: 1.0.877.1 - ) Hard Disk Sentinel PRO (HKLM-x32\...\Hard Disk Sentinel_is1) (Version: 5.01 - Janos Mathe) Installer (HKLM\...\{E9675998-9B12-4560-8E98-A6CCCDE0BE18}) (Version: 1.0.0 - Default Company Name) Internet Security Essentials (HKLM-x32\...\ComodoIse) (Version: 1.5.463447.175 - Comodo) IrfanView 4.51 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.51 - Irfan Skiljan) Java 8 Update 191 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180191F0}) (Version: 8.0.1910.12 - Oracle Corporation) Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation) K-Lite Mega Codec Pack 14.0.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 14.0.5 - KLCP) L.A. Noire The Complete Edition MULTi9 - ElAmigos wersja 1.3.2617 (HKLM-x32\...\{19636B1A-DA19-41FC-97D8-86065695E227}_is1) (Version: 1.3.2617 - Rockstar Games) LS-USBMX 1/2/3 Steering Wheel W/Vibration (HKLM-x32\...\{2A558A06-A44E-400D-95AD-D9FAA89AFD36}) (Version: V4.3a - ) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 11.1.137.0 - Microsoft Corporation) Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation) Mozilla Firefox 63.0.3 (x64 pl) (HKLM\...\Mozilla Firefox 63.0.3 (x64 pl)) (Version: 63.0.3 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 62.0 - Mozilla) Napisy24 (HKLM-x32\...\{D1985DBC-F09E-4317-91B8-932AD0FD4A27}_is1) (Version: 1.9.3 - Napisy24.pl) Narzędzia sprawdzające pakietu Microsoft Office 2016 — polski (HKLM\...\{90160000-001F-0415-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation) OCCT 4.5.1 (HKLM-x32\...\OCCT) (Version: 4.5.1 - Ocbase.com) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Opera Stable 56.0.3051.116 (HKU\S-1-5-21-2685662787-1516377248-208156778-1001\...\Opera 56.0.3051.116) (Version: 56.0.3051.116 - Opera Software) Origin (HKLM-x32\...\Origin) (Version: 10.5.30.15625 - Electronic Arts, Inc.) PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 1.7.14804 - Kakao Corp.) PremiumOs4 (HKLM-x32\...\PremiumOs4) (Version: 35.59.5 - ) Realtek USB Wireless LAN Driver (HKLM-x32\...\InstallShield_{DBCC4C27-F949-482b-B786-7B3B67587CD2}) (Version: Drv_3.00.0017 - REALTEK Semiconductor Corp.) Realtek USB Wireless LAN Utility (HKLM-x32\...\{9C049509-055C-4CFF-A116-1D12312225EB}) (Version: UI_1.00.0287 - REALTEK Semiconductor Corp.) Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.28.1 - Renesas Electronics Corporation) Hidden Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.28.1 - Renesas Electronics Corporation) Skype version 8.29 (HKLM-x32\...\Skype_is1) (Version: 8.29 - Skype Technologies S.A.) SlimDrivers (HKLM-x32\...\{746AB259-6474-4111-8966-1C62F9A6E063}) (Version: 2.3.1 - SlimWare Utilities, Inc.) Sp5 (HKLM-x32\...\{560F47F7-EB23-44B1-AAFC-667F1CD8FE5C}) (Version: 5.1.4324.0 - Microsoft) Hidden Sp5Intl (HKLM-x32\...\{FD4B33E1-24AE-4535-AA7B-162B30FB57CD}) (Version: 5.1.4324.0 - Microsoft) Hidden Sp5TTInt (HKLM-x32\...\{E415C943-37E5-473F-8BAE-043C56734124}) (Version: 5.1.4324.0 - Microsoft) Hidden SpCommon (HKLM-x32\...\{6C3959C6-943E-44B3-BAAD-570B04B134E5}) (Version: 5.1.4324.0 - Microsoft) Hidden SpPhones (HKLM-x32\...\{4DFF1415-4C29-44A8-BFD4-2BCE249C4991}) (Version: 6.0.3122.0 - Microsoft) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp) Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.12 - Ghisler Software GmbH) Uplay (HKLM-x32\...\Uplay) (Version: 27.0 - Ubisoft) USB Dual-core Game Controller (HKLM-x32\...\{EE3F507D-7C47-4AB7-B535-4829ACDFA147}) (Version: v3.61 - Dragon rise) USB Vibration Joystick (BM) (HKLM-x32\...\{61A994FF-DF9B-4937-9DB9-87EC4FF1B31F}) (Version: 1.00.0000 - ShanWan) WinRAR 5.50 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-2685662787-1516377248-208156778-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) CustomCLSID: HKU\S-1-5-21-2685662787-1516377248-208156778-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Abdul\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-2685662787-1516377248-208156778-1001_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4}\InprocServer32 -> C:\Users\Abdul\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-2685662787-1516377248-208156778-1001_Classes\CLSID\{FA372A6E-149F-4E95-832D-8F698D40AD7F}\localserver32 -> C:\Users\Abdul\AppData\Local\Google\Chrome SxS\Application\73.0.3639.0\notification_helper.exe (Google Inc.) ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Windows\7z\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers1-x32: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2018-10-29] (COMODO) ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-09-13] (Alexander Roshal) ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-09-13] (Alexander Roshal) ContextMenuHandlers2: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2018-10-29] (COMODO) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-08-10] (Disc Soft Ltd) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-08-10] (Disc Soft Ltd) ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Windows\7z\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2018-09-25] (Advanced Micro Devices, Inc.) ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Windows\7z\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers6-x32: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2018-10-29] (COMODO) ContextMenuHandlers6-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-09-13] (Alexander Roshal) ContextMenuHandlers6-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-09-13] (Alexander Roshal) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {07E8CE1D-607B-45A8-8DD9-44ECD58992EF} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2018-10-29] (COMODO) Task: {0C63302C-3C32-4DF5-A710-4929782FEADB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2685662787-1516377248-208156778-1001UA => C:\Users\Abdul\AppData\Local\Google\Update\GoogleUpdate.exe [2018-12-11] (Google Inc.) Task: {0F45847B-A10E-4069-B3EA-A73DE37A8695} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2018-10-29] (COMODO) Task: {149DD8F1-DCAA-4A2C-99C4-39C54C7BA370} - System32\Tasks\Opera scheduled Autoupdate 1539165143 => C:\Users\Abdul\AppData\Local\Programs\Opera\launcher.exe [2018-11-26] (Opera Software) Task: {202A4568-8253-42B1-91C8-E2BE5098F758} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation) Task: {20303074-3EAA-4041-ABB4-D8F0F742E79B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-09-10] (Piriform Ltd) Task: {2666DD5C-5DF3-4104-8468-259C7A745FA5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-10-20] (Google Inc.) Task: {287A0224-3406-4FDE-A6A6-49A2D7605BFD} - System32\Tasks\FreeDownloadManagerNetworkMonitor => C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\winwfpmonitor.exe [2018-05-28] (FreeDownloadManager.org) Task: {2D445EA8-FB49-433C-A732-6C2F17BAB591} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2018-11-26] (Microsoft Corporation) Task: {33639A99-328E-4EA3-843B-2F87A6B9CA65} - System32\Tasks\AdobeGCInvoker-1.0-Abdul-PC-Abdul => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-09-10] (Adobe Systems, Incorporated) Task: {36463FDF-2E51-431E-B2AE-6667D23398DE} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2018-11-26] (Microsoft Corporation) Task: {49B7B2CF-0BB2-4AA4-ACDB-687F267A83B7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-10-20] (Google Inc.) Task: {506FE930-99D0-4294-B698-26FFF6532443} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2018-11-26] (Microsoft Corporation) Task: {51273E3A-C344-49A5-8837-F611EF138A93} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2018-10-29] (COMODO) Task: {5853A394-385C-49A0-85AF-F770DB1EC731} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2018-11-26] (Microsoft Corporation) Task: {5D780C9C-D851-4DB6-80FA-59E63632E435} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe [2018-11-26] (Microsoft) Task: {6ABEA115-139A-4F08-80E0-52EDF4C20698} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe Task: {73E50146-7B30-43E6-8447-744D2D91CE95} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation) Task: {827C46DA-33CC-428F-90BB-C029A23717BD} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [2018-10-29] (COMODO) Task: {9504F709-C6F0-49B1-9A69-81DA63C4399A} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2018-10-29] (COMODO) Task: {9985A785-AB70-4E74-9637-CB3409F7193A} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2018-11-26] (Microsoft) Task: {AC34EEE1-55F9-4F00-A9DE-4F94ED486457} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2018-09-25] (Advanced Micro Devices, Inc.) Task: {AC59F1F2-421D-4A8C-9DC7-751B8B84AF06} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary => rundll32.exe StartupCheckLibrary.dll,DllMainRunLibrary Task: {B055D9D5-B3A1-4940-B213-58F3809D3CC6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-09-10] (Piriform Ltd) Task: {B4A6FBC1-55D3-4BFA-BD36-72E46CC52D6C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation) Task: {C5883CB1-30B0-4586-B0F6-A3F4BD8F6B8A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2685662787-1516377248-208156778-1001Core => C:\Users\Abdul\AppData\Local\Google\Update\GoogleUpdate.exe [2018-12-11] (Google Inc.) Task: {C93D37E3-4E65-4768-AAE5-36F06F1E5CC7} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [2018-09-25] (Advanced Micro Devices, Inc.) Task: {D0260806-6C16-47CE-A5A9-A05C02CF6872} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2018-10-29] (COMODO) Task: {D3CD6B1A-1863-41C3-BF47-6A43FC8DA481} - System32\Tasks\AdobeAAMUpdater-1.0-Abdul-PC-Abdul => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2018-04-10] (Adobe Systems Incorporated) Task: {DD0C107C-8C4C-4DF9-8B26-5F7C9C25FAE8} - System32\Tasks\EVEREST AutoStart => C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\everest.exe [2010-03-30] (Lavalys, Inc.) Task: {F71307D5-5D2B-462F-B985-3532625962A8} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2018-03-19] () (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) ==================== Loaded Modules (Whitelisted) ============== 2018-10-29 12:17 - 2018-10-29 12:17 - 000246464 _____ () C:\Program Files\COMODO\COMODO Internet Security\cmdcomps.dll 2018-10-29 12:16 - 2018-10-29 12:16 - 000107200 _____ () C:\Program Files\COMODO\COMODO Internet Security\cavwpps.dll 2018-08-13 12:45 - 2018-05-28 17:05 - 000037376 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\WinDivert.dll 2018-04-24 21:07 - 2018-04-24 21:07 - 000015360 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.DLL 2018-04-24 21:07 - 2018-04-24 21:07 - 002519040 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll 2018-08-14 02:19 - 2018-08-14 02:19 - 004565504 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\DiscSoft.NET.Common\35a32d2fdea9f6e6bdc2924ce7609b81\DiscSoft.NET.Common.ni.dll 2018-08-14 02:21 - 2018-08-14 02:21 - 003156992 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\DotNetCommon\a2b26280cd49d4bb1343783ea5ab8611\DotNetCommon.ni.dll 2018-08-10 12:56 - 2018-08-10 12:56 - 000067584 _____ () C:\Program Files\DAEMON Tools Lite\ToastNotificationControl.dll 2018-08-13 12:45 - 2017-04-13 11:42 - 002158592 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\avformat-57.dll 2018-08-13 12:45 - 2017-04-13 11:42 - 012242432 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\avcodec-57.dll 2018-08-13 12:45 - 2017-04-13 11:42 - 000138752 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\swresample-2.dll 2018-08-13 12:45 - 2017-04-13 11:42 - 000485376 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\avutil-55.dll 2018-08-13 12:45 - 2017-04-13 11:42 - 001825792 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\avfilter-6.dll 2018-08-13 12:45 - 2017-04-13 11:42 - 000662016 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\swscale-4.dll 2018-08-13 12:45 - 2017-04-13 11:46 - 069740544 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\libcef.dll 2018-08-13 12:45 - 2017-11-30 17:02 - 002521088 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\libglesv2.dll 2018-08-13 12:45 - 2017-11-30 17:02 - 000015360 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\libegl.dll 2018-11-06 12:56 - 2018-11-06 12:56 - 000044760 _____ () C:\Windows\runSW.exe 2018-08-13 13:33 - 2005-04-22 05:36 - 000143360 _____ () C:\Windows\system32\BrSNMP64.dll 2017-09-07 08:39 - 2017-09-07 08:39 - 000073920 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav 2018-11-28 06:54 - 2018-11-16 06:43 - 005020504 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.110\libglesv2.dll 2018-11-28 06:54 - 2018-11-16 06:43 - 000116056 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.110\libegl.dll 2018-08-13 12:45 - 2018-05-28 17:06 - 000729600 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\browsernativehost.exe 2018-08-13 13:32 - 2009-02-27 15:38 - 000139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll 2018-08-13 13:33 - 2018-01-18 15:39 - 001720832 _____ () C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll 2018-08-13 13:33 - 2018-01-18 15:39 - 000208896 _____ () C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll 2018-08-13 13:33 - 2017-11-07 19:55 - 000137728 _____ () C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll 2018-12-07 08:47 - 2017-11-07 19:55 - 000440832 _____ () C:\Program Files (x86)\ControlCenter4\Track.dll 2018-08-13 13:33 - 2017-11-07 20:04 - 000091648 _____ () C:\Program Files (x86)\ControlCenter4\BrCcLPol.dll 2018-08-13 13:33 - 2017-08-18 11:23 - 000087552 _____ () C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll 2018-08-13 13:33 - 2017-08-18 11:23 - 017974784 _____ () C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll 2018-11-06 12:57 - 2014-04-17 09:54 - 000221184 _____ () C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\EnumDevLib.dll 2018-08-13 13:33 - 2018-01-18 15:39 - 000519168 _____ () C:\Program Files (x86)\Browny02\BrMonitor.dll 2018-08-13 13:33 - 2017-12-22 12:53 - 000180224 _____ () C:\Program Files (x86)\Browny02\BroSNMP.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:34 - 2018-10-04 14:55 - 000000035 _____ C:\Windows\system32\Drivers\etc\hosts ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2685662787-1516377248-208156778-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Abdul\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 94.232.216.45 - 208.67.222.220 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is disabled. ==================== MSCONFIG/TASK MANAGER disabled items == If an entry is included in the fixlist, it will be removed. MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true MSCONFIG\startupreg: ALLUpdate => "C:\Program Files\ALLPlayer\ALLUpdate.exe" "sleep" MSCONFIG\startupreg: Google Update Manager => C:\Windows\gmda.exe MSCONFIG\startupreg: IVONA Reader => "C:\Program Files (x86)\IVONA\IVONA Reader\IVONA Reader.exe" -t -nosplash MSCONFIG\startupreg: Napisy24Update => "C:\Program Files (x86)\Napisy24\Napisy24Update.exe" "sleep" MSCONFIG\startupreg: Steam => "D:\Steam\steam.exe" -silent ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{D59D9F24-600E-43B3-9FB8-0B271524AF38}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe FirewallRules: [{E944D897-8B12-413D-BFA1-90F84CDEB121}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe FirewallRules: [{82A76C39-F6AF-4AFD-906A-3312C7049CDB}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe FirewallRules: [{40386B65-C92D-43DB-8716-3E2BC9E9B3DB}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe FirewallRules: [{16D12BEC-38AB-4C36-870C-126145F828D8}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe FirewallRules: [{CCEB9F07-5F5D-49D8-B107-AE924E98BFCD}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe FirewallRules: [{7CA4515E-0788-4A21-9B6C-B00E37AB0427}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe FirewallRules: [{FF6C0D92-C309-4528-A4A5-3B225E8FA091}] => (Allow) C:\Program Files (x86)\Brother\Brmfl14d\FAXRX.EXE FirewallRules: [{3EF7102A-346D-48A0-86EC-018D2D70844C}] => (Allow) LPort=54925 FirewallRules: [TCP Query User{DCFADCFF-8850-4596-994C-BE6753EC7547}C:\program files\freedownloadmanager.org\free download manager\fdm.exe] => (Allow) C:\program files\freedownloadmanager.org\free download manager\fdm.exe FirewallRules: [UDP Query User{00A28D0D-A755-4848-866C-431FA24845E5}C:\program files\freedownloadmanager.org\free download manager\fdm.exe] => (Allow) C:\program files\freedownloadmanager.org\free download manager\fdm.exe FirewallRules: [TCP Query User{9A983C54-A5AF-487D-B44E-2599B931EAAF}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe FirewallRules: [UDP Query User{919EAE60-A328-4E5F-A630-B9C92470BB6D}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe FirewallRules: [{E445D826-C961-40C0-995B-8B5F6D151E61}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe FirewallRules: [{AB30D8F3-114C-4B88-92E3-C2F484E3D7E3}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe FirewallRules: [{6554DA0C-5CFD-48BA-B8A8-88C6ABFB34E1}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [{2068355E-CF1C-45DD-9A39-A7C2F9069715}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [{AA86C46F-1B2F-40E3-92CB-A20571411E91}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{39152D32-C253-456E-82A7-1CB7AE17E801}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{9DED877C-E07D-4D82-8F62-B4014A22070D}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{C3A6731C-7E40-4692-86BB-F1EB755003A8}] => (Allow) D:\Steam\Steam.exe FirewallRules: [TCP Query User{72CEAA3F-E3DD-441A-BC27-3B35E4447F96}D:\wolfenstein - the new order\wolfneworder_x64.exe] => (Block) D:\wolfenstein - the new order\wolfneworder_x64.exe FirewallRules: [UDP Query User{8B5C69D4-ABB4-4EA3-9652-B40F83979D7C}D:\wolfenstein - the new order\wolfneworder_x64.exe] => (Block) D:\wolfenstein - the new order\wolfneworder_x64.exe FirewallRules: [TCP Query User{C3D2208E-66EE-474A-9564-F8138B3F87A1}D:\battlefield 4\bf4.exe] => (Block) D:\battlefield 4\bf4.exe FirewallRules: [UDP Query User{EBF73B9D-ECF3-43EB-B76A-02A1629AAAC6}D:\battlefield 4\bf4.exe] => (Block) D:\battlefield 4\bf4.exe FirewallRules: [TCP Query User{655808CB-1A75-4098-8972-1C6E3F64B1F2}D:\battlefield hardline\bfh.exe] => (Block) D:\battlefield hardline\bfh.exe FirewallRules: [UDP Query User{AB860F29-09A2-4387-956B-7A00CE7AE6E8}D:\battlefield hardline\bfh.exe] => (Block) D:\battlefield hardline\bfh.exe FirewallRules: [{7821B93D-36F2-46DD-94BD-95FCC8DC7A5F}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe FirewallRules: [{E9D019A2-0DB7-493E-BD21-0FF9ABBC3470}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe FirewallRules: [TCP Query User{7A71F1CE-F2E4-4103-B571-00DB6336F998}D:\battlefield 1\bf1.exe] => (Block) D:\battlefield 1\bf1.exe FirewallRules: [UDP Query User{9E35259B-9DEA-40FC-9427-B19805C7D8A8}D:\battlefield 1\bf1.exe] => (Block) D:\battlefield 1\bf1.exe FirewallRules: [TCP Query User{F84A0FA4-C534-44FD-BDA9-3E25043D4499}C:\program files\adobe\adobe dreamweaver cc 2017\node\node.exe] => (Block) C:\program files\adobe\adobe dreamweaver cc 2017\node\node.exe FirewallRules: [UDP Query User{10C79B00-82CC-4B51-8F2A-B0DAA442C1B6}C:\program files\adobe\adobe dreamweaver cc 2017\node\node.exe] => (Block) C:\program files\adobe\adobe dreamweaver cc 2017\node\node.exe FirewallRules: [{E1109CE6-E53F-4742-9A29-8CA20ABF7B6F}] => (Allow) C:\Program Files (x86)\Ralink\Common\RaUI.exe FirewallRules: [{D912AE35-D32F-4583-8F6C-AC4AB976DDB8}] => (Allow) C:\Program Files (x86)\Ralink\Common\RaUI.exe FirewallRules: [{14CC1F7E-7D84-46DA-9979-CC7BC029CEC7}] => (Allow) C:\PROGRA~2\REALTEK\USBWIR~2\RtWlan.exe FirewallRules: [{3CADF940-9EF9-4B06-A9F7-97060A1A29A7}] => (Allow) LPort=1542 FirewallRules: [{69463800-340D-4D79-B1A7-04A56BDAE0A0}] => (Allow) LPort=1542 FirewallRules: [{0965D93A-F2D3-4B49-A33E-05BF47775898}] => (Allow) LPort=53 FirewallRules: [{BC8790F1-231C-43CF-A387-23886ADF1DF2}] => (Allow) C:\PROGRA~2\REALTEK\USBWIR~2\Rtldhcp.exe FirewallRules: [{70713702-0D00-4736-9F5C-E854155422F2}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe FirewallRules: [{EF02A1C0-3D2E-49DC-8082-3496E21011BF}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe FirewallRules: [{4E81ADC2-8A5B-4C87-A33D-11475797C246}] => (Allow) LPort=53 FirewallRules: [{38ECE239-44C7-4095-BDA1-7B3F9210B460}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe FirewallRules: [{72466A6A-0081-4289-801C-0B0F884C3FAE}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe FirewallRules: [{55505044-7092-4DAD-B220-8C40096D503D}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe FirewallRules: [{238EE15F-896D-4E29-8DE1-C2C50CDF3582}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe FirewallRules: [TCP Query User{72D4BAC7-2E0C-4CA9-8EA7-BAC05F8226E3}D:\program files (x86)\doom\doomx64.exe] => (Block) D:\program files (x86)\doom\doomx64.exe FirewallRules: [UDP Query User{B45377CD-1A67-4B0F-B675-187448BFAF5E}D:\program files (x86)\doom\doomx64.exe] => (Block) D:\program files (x86)\doom\doomx64.exe FirewallRules: [TCP Query User{238E212C-BEE9-47C4-BCBD-B26E11A2F740}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Allow) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe FirewallRules: [UDP Query User{B345C2DB-1AF6-484C-AF62-1F272491D6F4}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Allow) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe FirewallRules: [TCP Query User{BEE2EAE5-4AA2-467D-AF22-13B3AD6541B7}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Allow) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe FirewallRules: [UDP Query User{11702D7B-1AD5-4DB9-A512-ED1B57E7B4AC}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Allow) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe FirewallRules: [TCP Query User{C35D89A3-2D95-4F7C-9098-34804FA99E7C}D:\far cry 4\bin\farcry4.exe] => (Block) D:\far cry 4\bin\farcry4.exe FirewallRules: [UDP Query User{B8F11407-A0A7-4AC3-9138-DC784950FE9F}D:\far cry 4\bin\farcry4.exe] => (Block) D:\far cry 4\bin\farcry4.exe FirewallRules: [TCP Query User{1FE7C7A1-5082-415F-8F61-7A064BDA26CD}D:\far cry 4\far cry 4\bin\farcry4.exe] => (Block) D:\far cry 4\far cry 4\bin\farcry4.exe FirewallRules: [UDP Query User{D8C40873-C9A2-4C4D-8094-DCEAB8457BB4}D:\far cry 4\far cry 4\bin\farcry4.exe] => (Block) D:\far cry 4\far cry 4\bin\farcry4.exe FirewallRules: [{9C70A8BF-7844-4637-BF73-EBB64AD39374}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Restore Points ========================= 03-12-2018 02:17:31 Scheduled Checkpoint 03-12-2018 12:46:40 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 10-12-2018 20:55:37 Scheduled Checkpoint 11-12-2018 12:15:22 DCInstallRestorePoint ==================== Faulty Device Manager Devices ============= Name: Realtek 8811CU Wireless LAN 802.11ac USB NIC Description: Realtek 8811CU Wireless LAN 802.11ac USB NIC Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Realtek Semiconductor Corp. Service: RtlWlanu Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (12/13/2018 07:45:07 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (12/12/2018 02:25:51 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (12/12/2018 10:04:22 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (12/12/2018 09:56:01 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (12/11/2018 07:41:32 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (12/11/2018 12:16:06 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: mousekeyboardcenter.exe, version: 11.1.137.0, time stamp: 0x5bf2249c Faulting module name: KERNELBASE.dll, version: 6.1.7601.23391, time stamp: 0x56e9ab2a Exception code: 0xe0434352 Fault offset: 0x000000000001a06d Faulting process id: 0x17f4 Faulting application start time: 0x01d49142e61659db Faulting application path: C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe Faulting module path: C:\Windows\system32\KERNELBASE.dll Report Id: 26a972cc-fd36-11e8-9b7a-20cf30f2a5a7 Error: (12/11/2018 12:16:05 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Application: mousekeyboardcenter.exe Framework Version: v4.0.30319 Description: The process was terminated due to an unhandled exception. Exception Info: System.Windows.Markup.XamlParseException Stack: at System.Windows.FrameworkTemplate.LoadTemplateXaml(System.Xaml.XamlReader, System.Xaml.XamlObjectWriter) at System.Windows.FrameworkTemplate.LoadTemplateXaml(System.Xaml.XamlObjectWriter) at System.Windows.FrameworkTemplate.LoadOptimizedTemplateContent(System.Windows.DependencyObject, System.Windows.Markup.IComponentConnector, System.Windows.Markup.IStyleConnector, System.Collections.Generic.List`1, System.Windows.UncommonField`1) at System.Windows.FrameworkTemplate.LoadContent(System.Windows.DependencyObject, System.Collections.Generic.List`1) at System.Windows.StyleHelper.ApplyTemplateContent(System.Windows.UncommonField`1, System.Windows.DependencyObject, System.Windows.FrameworkElementFactory, Int32, System.Collections.Specialized.HybridDictionary, System.Windows.FrameworkTemplate) at System.Windows.FrameworkTemplate.ApplyTemplateContent(System.Windows.UncommonField`1, System.Windows.FrameworkElement) at System.Windows.FrameworkElement.ApplyTemplate() at System.Windows.FrameworkElement.MeasureCore(System.Windows.Size) at System.Windows.UIElement.Measure(System.Windows.Size) at System.Windows.Controls.StackPanel.StackMeasureHelper(System.Windows.Controls.IStackMeasure, System.Windows.Controls.IStackMeasureScrollData, System.Windows.Size) at System.Windows.Controls.StackPanel.MeasureOverride(System.Windows.Size) at System.Windows.FrameworkElement.MeasureCore(System.Windows.Size) at System.Windows.UIElement.Measure(System.Windows.Size) at MS.Internal.Helper.MeasureElementWithSingleChild(System.Windows.UIElement, System.Windows.Size) at System.Windows.Controls.ScrollContentPresenter.MeasureOverride(System.Windows.Size) at System.Windows.FrameworkElement.MeasureCore(System.Windows.Size) at System.Windows.UIElement.Measure(System.Windows.Size) at System.Windows.Controls.ScrollViewer.MeasureOverride(System.Windows.Size) at System.Windows.FrameworkElement.MeasureCore(System.Windows.Size) at System.Windows.UIElement.Measure(System.Windows.Size) at System.Windows.Controls.Grid.MeasureOverride(System.Windows.Size) at System.Windows.FrameworkElement.MeasureCore(System.Windows.Size) at System.Windows.UIElement.Measure(System.Windows.Size) at System.Windows.Controls.Control.MeasureOverride(System.Windows.Size) at Microsoft.MouseKeyboardCenter.DeviceScroll.MeasureOverride(System.Windows.Size) at System.Windows.FrameworkElement.MeasureCore(System.Windows.Size) at System.Windows.UIElement.Measure(System.Windows.Size) at System.Windows.Controls.Grid.MeasureCell(Int32, Boolean) at System.Windows.Controls.Grid.MeasureCellsGroup(Int32, System.Windows.Size, Boolean, Boolean, Boolean ByRef) at System.Windows.Controls.Grid.MeasureCellsGroup(Int32, System.Windows.Size, Boolean, Boolean) at System.Windows.Controls.Grid.MeasureOverride(System.Windows.Size) at System.Windows.FrameworkElement.MeasureCore(System.Windows.Size) at System.Windows.UIElement.Measure(System.Windows.Size) at System.Windows.Controls.Grid.MeasureOverride(System.Windows.Size) at System.Windows.FrameworkElement.MeasureCore(System.Windows.Size) at System.Windows.UIElement.Measure(System.Windows.Size) at System.Windows.Controls.Border.MeasureOverride(System.Windows.Size) at System.Windows.FrameworkElement.MeasureCore(System.Windows.Size) at System.Windows.UIElement.Measure(System.Windows.Size) at MS.Internal.Helper.MeasureElementWithSingleChild(System.Windows.UIElement, System.Windows.Size) at System.Windows.Controls.ContentPresenter.MeasureOverride(System.Windows.Size) at System.Windows.FrameworkElement.MeasureCore(System.Windows.Size) at System.Windows.UIElement.Measure(System.Windows.Size) at System.Windows.Documents.AdornerDecorator.MeasureOverride(System.Windows.Size) at System.Windows.FrameworkElement.MeasureCore(System.Windows.Size) at System.Windows.UIElement.Measure(System.Windows.Size) at System.Windows.Controls.Grid.MeasureOverride(System.Windows.Size) at System.Windows.FrameworkElement.MeasureCore(System.Windows.Size) at System.Windows.UIElement.Measure(System.Windows.Size) at System.Windows.Controls.Border.MeasureOverride(System.Windows.Size) at System.Windows.FrameworkElement.MeasureCore(System.Windows.Size) at System.Windows.UIElement.Measure(System.Windows.Size) at System.Windows.Window.MeasureOverrideHelper(System.Windows.Size) at System.Windows.Window.MeasureOverride(System.Windows.Size) at System.Windows.FrameworkElement.MeasureCore(System.Windows.Size) at System.Windows.UIElement.Measure(System.Windows.Size) at System.Windows.Interop.HwndSource.SetLayoutSize() at System.Windows.Interop.HwndSource.set_RootVisualInternal(System.Windows.Media.Visual) at System.Windows.Window.SetRootVisualAndUpdateSTC() at System.Windows.Window.SetupInitialState(Double, Double, Double, Double) at System.Windows.Window.CreateSourceWindow(Boolean) at System.Windows.Window.ShowHelper(System.Object) at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32) at MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate) at System.Windows.Threading.DispatcherOperation.InvokeImpl() at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) at System.Windows.Threading.DispatcherOperation.Invoke() at System.Windows.Threading.Dispatcher.ProcessQueue() at System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) at MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) at MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object) at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32) at MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate) at System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32) at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr) at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef) at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef) at System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame) at System.Windows.Application.RunInternal(System.Windows.Window) at System.Windows.Application.Run() at Microsoft.MouseKeyboardCenter.App.Main() Error: (12/11/2018 11:11:55 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. System errors: ============= Error: (12/12/2018 02:24:22 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: cdrom Error: (12/12/2018 02:24:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Realtek DHCP Service service terminated unexpectedly. It has done this 1 time(s). Error: (12/12/2018 09:54:32 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: cdrom Error: (12/12/2018 09:54:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Realtek DHCP Service service terminated unexpectedly. It has done this 1 time(s). Error: (12/11/2018 07:40:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Realtek DHCP Service service terminated unexpectedly. It has done this 1 time(s). Error: (12/11/2018 07:40:02 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: cdrom Error: (12/11/2018 03:05:30 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: The following fatal alert was received: 20. Error: (12/11/2018 11:10:25 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: cdrom CodeIntegrity: =================================== Date: 2018-12-13 04:39:01.161 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Comodo\Internet Security Essentials\isedrv_vista.sys because the set of per-page image hashes could not be found on the system. Date: 2018-12-13 04:39:01.091 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Comodo\Internet Security Essentials\isedrv_vista.sys because the set of per-page image hashes could not be found on the system. Date: 2018-12-13 04:39:01.021 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Comodo\Internet Security Essentials\isedrv_vista.sys because the set of per-page image hashes could not be found on the system. Date: 2018-12-12 00:32:18.334 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Comodo\Internet Security Essentials\isedrv_vista.sys because the set of per-page image hashes could not be found on the system. Date: 2018-12-12 00:32:18.274 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Comodo\Internet Security Essentials\isedrv_vista.sys because the set of per-page image hashes could not be found on the system. Date: 2018-12-12 00:32:18.194 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Comodo\Internet Security Essentials\isedrv_vista.sys because the set of per-page image hashes could not be found on the system. Date: 2018-12-11 00:32:32.462 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Comodo\Internet Security Essentials\isedrv_vista.sys because the set of per-page image hashes could not be found on the system. Date: 2018-12-11 00:32:32.402 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Comodo\Internet Security Essentials\isedrv_vista.sys because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: Intel(R) Core(TM)2 Quad CPU Q9550 @ 2.83GHz Percentage of memory in use: 29% Total physical RAM: 8191.12 MB Available physical RAM: 5742.32 MB Total Virtual: 16380.42 MB Available Virtual: 12462.98 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:111.69 GB) (Free:51.07 GB) NTFS Drive d: (Nowy) (Fixed) (Total:223.58 GB) (Free:48.48 GB) NTFS Drive e: (Seagate 1TB) (Fixed) (Total:931.51 GB) (Free:356.13 GB) NTFS Drive h: (HBCD 15_2) (Removable) (Total:14.3 GB) (Free:13.67 GB) FAT32 \\?\Volume{1621d53f-9ee4-11e8-97b4-806e6f6e6963}\ (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 8F175926) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 8D695392) Partition 1: (Not Active) - (Size=223.6 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 000281F7) Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 3 (Size: 14.3 GB) (Disk ID: 01B7B41B) Partition 1: (Active) - (Size=14.3 GB) - (Type=0C) ==================== End of Addition.txt ============================