Additional scan result of Farbar Recovery Scan Tool (x64) Version:27-01-2016 Ran by KAAM (2016-01-30 09:22:50) Running from E:\FRST Windows 7 Home Premium Service Pack 1 (X64) (2014-09-24 18:43:10) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-4156027226-2253448997-1576552463-500 - Administrator - Disabled) ASPNET (S-1-5-21-4156027226-2253448997-1576552463-1005 - Limited - Enabled) Guest (S-1-5-21-4156027226-2253448997-1576552463-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-4156027226-2253448997-1576552463-1003 - Limited - Enabled) KAAM (S-1-5-21-4156027226-2253448997-1576552463-1000 - Administrator - Enabled) => C:\Users\KAAM ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\uTorrent) (Version: 3.4.5.41372 - BitTorrent Inc.) 7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov) Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.296 - Adobe Systems Incorporated) Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated) Adobe Flash Player 20 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 20.0.0.228 - Adobe Systems Incorporated) Adobe Reader 9.5.0 - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-A95000000001}) (Version: 9.5.0 - Adobe Systems Incorporated) Advanced SystemCare 8 (HKLM-x32\...\Advanced SystemCare 8_is1) (Version: 8.3.0 - IObit) Akamai NetSession Interface (HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\Akamai) (Version: - Akamai Technologies, Inc) Alien Shooter (HKLM-x32\...\Alien Shooter_is1) (Version: - ) ALLPlayer Remote Control (HKLM-x32\...\{146BDBDD-ACD9-4B04-A286-C27471841E8E}_is1) (Version: 1.2 - ALLPlayer Group, Ltd.) ANNO 1404 (HKLM-x32\...\{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}) (Version: 1.02.0000 - Ubisoft) Anno 1404 (x32 Version: 1.00.0000 - Ubisoft) Hidden Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 4.0.69.0 - Autodesk) Autodesk DirectConnect 2016 64-bit (HKLM\...\Autodesk DirectConnect 2016 64-bit) (Version: 10.0.98.0 - Autodesk) Autodesk DirectConnect 2016 64-bit (Version: 10.0.98.0 - Autodesk) Hidden Autodesk Maya 2016 (HKLM\...\Autodesk Maya 2016) (Version: 16.0.1312.0 - Autodesk) Autodesk Maya 2016 (Version: 16.0.1312.0 - Autodesk) Hidden Autodesk Softimage 2015 (HKLM\...\Autodesk Softimage 2015) (Version: 13.0.114.0 - Autodesk) Autodesk Softimage 2015 (Version: 13.0.114.0 - Autodesk) Hidden Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.1.2245 - AVAST Software) Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts) Battlefield: Bad Company™ 2 (HKLM-x32\...\{3AC8457C-0385-4BEA-A959-E095F05D6D67}) (Version: 1.0.1.0 - Electronic Arts) Binary Domain (HKLM-x32\...\Binary Domain_is1) (Version: - ) Blender (HKLM\...\{A92D3758-1EE8-4E41-90B6-2EF40BDDA349}) (Version: 2.76.0 - Blender Foundation) Blender (HKLM\...\Blender) (Version: 2.74 - Blender Foundation) Blitzkrieg (HKLM-x32\...\Blitzkrieg_is1) (Version: - Cenega) Blitzkrieg: Horyzont w Ogniu i Pomruk Zagłady (HKLM-x32\...\Blitzkrieg_BH_RT_is1) (Version: - Cenega) Bubble Bobble Nostalgie (HKLM-x32\...\Bubble Bobble Nostalgie_is1) (Version: - GameOver-Games) Call of Duty: Black Ops - Multiplayer (HKLM-x32\...\Steam App 42710) (Version: - Treyarch) Call of Duty: Black Ops (HKLM-x32\...\Steam App 42700) (Version: - Treyarch) Call of Duty: Black Ops II - Multiplayer (HKLM-x32\...\Steam App 202990) (Version: - Treyarch) Camtasia Studio 8 (HKLM-x32\...\{5303CFB5-D635-44F0-A94B-9611E81F07C4}) (Version: 8.3.0.1471 - TechSmith Corporation) Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.5.0.0 - Canon Inc.) Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.) Canon MG2500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2500_series) (Version: 1.00 - Canon Inc.) Canon MG2500 series On-screen Manual (HKLM-x32\...\Canon MG2500 series On-screen Manual) (Version: 7.6.1 - Canon Inc.) Canon MG2500 series User Registration (HKLM-x32\...\Canon MG2500 series User Registration) (Version: - ‭Canon Inc.) Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 2.0.1 - Canon Inc.) Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 2.0.0 - Canon Inc.) Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.) Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.2.1 - Canon Inc.) Carmageddon 2 Carpocalypse Now (HKLM-x32\...\GOGPACKCARMAGEDDON2_is1) (Version: 2.0.0.26 - GOG.com) CCleaner (HKLM\...\CCleaner) (Version: 5.11 - Piriform) CDisplayEx 1.10.29 (HKLM\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.) CodeBlocks (HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\CodeBlocks) (Version: 13.12 - The Code::Blocks Team) CodeStuff Starter (HKLM-x32\...\CodeStuff Starter) (Version: 5.6.2.9 - CodeStuff) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) CPUID CPU-Z 1.72 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) Croc (HKLM-x32\...\Croc) (Version: - ) Croc 2 (HKLM-x32\...\Croc 2) (Version: - ) Crysis(R) (HKLM-x32\...\{000E79B7-E725-4F01-870A-C12942B7F8E4}) (Version: 1.00.0000 - Electronic Arts) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 5.0.1.0407 - Disc Soft Ltd) Dark Souls 2 (HKLM-x32\...\RGFya1NvdWxzMg==_is1) (Version: 1 - ) Dark Souls: Prepare to Die Edition (HKLM-x32\...\Steam App 211420) (Version: - FromSoftware) Dawn of War - Dark Crusade (HKLM-x32\...\{FF39FC01-819B-42E4-AE49-1968AF12DDD4}) (Version: 1.00.0000 - THQ) Dead Space (HKLM-x32\...\{6E6F22D7-8AD6-4A87-9A47-733E6E996F50}) (Version: 1.0.0.222 - Electronic Arts) Delta Force Helikopter w Ogniu z dodatkiem Team Sabre (HKLM-x32\...\Delta Force Helikopter w Ogniu_is1) (Version: - ) Dinos and Bubbles v1.04 (HKLM-x32\...\Dinos and Bubbles_is1) (Version: - GameOver-Games) Disciples 2 Gold: Dark Prophecy & Rise of the Elves (HKLM-x32\...\Disciples 2 Gold: Dark Prophecy & Rise of the Elves_is1) (Version: - GOG.com) Dolphin 4.0 (HKLM-x32\...\Dolphin) (Version: 4.0 - Dolphin Development Team) Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve) Dragon Age: Origins (HKLM-x32\...\{AEC81925-9C76-4707-84A9-40696C613ED3}) (Version: 1.05.0.0 - Electronic Arts) Driver San Francisco wersja 1.0.4.0 (HKLM-x32\...\Driver San Francisco_is1) (Version: 1.0.4.0 - GTX Box Team) Earth 2150: The Moon Project (HKLM-x32\...\Steam App 259280) (Version: - ) EaseUS Data Recovery Wizard 8.6 (HKLM\...\EaseUS Data Recovery Wizard 8.6_is1) (Version: - EaseUS) Empire Earth - Sztuka Podboju (HKLM-x32\...\{B49C924C-A651-4378-94F6-5D9BF44A959F}) (Version: 1.0 - Sierra) Empire Earth (HKLM-x32\...\{2447500B-22D7-47BD-9B13-1A927F43A267}) (Version: 1.0 - Sierra) Epic Games Launcher (HKLM\...\{0AE5C8C8-1EF6-48F5-AD91-259BB5E49610}) (Version: 1.1.20.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - ) ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - ) Evolva (HKLM-x32\...\GOGPACKEVOLVA_is1) (Version: 2.0.0.3 - GOG.com) Fallout 4 (HKLM-x32\...\Fallout 4_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91) Fallout: New Vegas (HKLM-x32\...\Steam App 22490) (Version: - Obsidian Entertainment) Far Cry (HKLM-x32\...\FarCry_is1) (Version: - Cenega Poland Sp. z o. o.) FlatOut 2 (HKLM-x32\...\{4E6D2462-AB33-40BB-AA9F-3FA3E0DD0290}) (Version: 1.00.0000 - Empire Interactive) Fraps (HKLM-x32\...\Fraps) (Version: - ) Frogger 2: Swampy's Revenge (HKLM-x32\...\Frogger 2: Swampy's Revenge) (Version: - ) Gameforge Live 2.0.8 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.8 - Gameforge) GameSpy Arcade (HKLM-x32\...\GameSpy Arcade) (Version: - ) GameTracker Lite (HKLM-x32\...\GameTracker Lite) (Version: - ClanServers Hosting LLC.) GCFScape 1.8.5 (HKLM\...\GCFScape_is1) (Version: - Ryan Gregg) Gears of War (HKLM-x32\...\InstallShield_{1170D24F-42B7-40CF-AA1B-6395CE562354}) (Version: 1.00.0000 - Microsoft Game Studios) Gears of War (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team) Glary Utilities PRO 5.43 (HKLM-x32\...\Glary Utilities 5) (Version: 5.43.0.63 - Glarysoft Ltd) GOG.com Carmageddon 2 (HKLM\...\{753f4dd7-070a-4364-b384-36a077200785}.sdb) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.) Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Google Update Helper (x32 Version: 1.3.28.17 - Google Inc.) Hidden Gothic (HKLM-x32\...\{758A4269-70E5-4B11-B419-F692882408A9}) (Version: 1.08 - Piranha Bytes) Gothic II (HKLM-x32\...\{2965C062-FBC0-4505-9EB8-4497252BB41F}) (Version: 1.00.000 - JoWood) Gothic II Złota Edycja (HKLM-x32\...\{6FB6D550-DDC4-4996-9CDF-91C34F0A4C4A}) (Version: 2.6 - JoWood) Gothic III (HKLM-x32\...\{02B244A2-7F6A-42E8-A36F-8C385D7A1625}) (Version: 1.0.0 - JoWooD Productions Software AG) Grand Theft Auto Vice City (HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\{4B35F00C-E63D-40DC-9839-DF15A33EAC46}) (Version: 1.00.000 - ) Grandia II Anniversary Edition (HKLM-x32\...\1435140754_is1) (Version: 2.0.0.3 - GOG.com) GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games) GTA2 (HKLM-x32\...\GTA2) (Version: - ) Half-Life 2: Deathmatch (HKLM-x32\...\Steam App 320) (Version: - Valve) headus UVLayout v2 Demo (HKLM-x32\...\{D5F0B415-C05A-4C0F-A2AF-A242F8D809A8}) (Version: 2.09.02 - headus) Heroes III Armageddon's Blade (HKLM-x32\...\Heroes III Armageddon's Blade) (Version: - ) Heroes III The Restoration of Erathia (HKLM-x32\...\Heroes III The Restoration of Erathia) (Version: - ) Heroes of Might and Magic IV - Złota Edycja (HKLM-x32\...\{94B4E2D8-A184-415C-BF9E-F699D76466BD}) (Version: 3.0 - ) Hitman Blood Money version 1.0.0 (HKLM-x32\...\Hitman Blood Money_is1) (Version: 1.0.0 - GTX Box Team) Hotline Miami (HKLM-x32\...\GOGPACKHOTLINEMIAMI_is1) (Version: 2.0.0.4 - GOG.com) Instinct (HKLM-x32\...\{062A8785-E349-4B26-9495-1E5FBD12F346}) (Version: 1.00.0000 - ND Games) IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 4.3.0.5 - IObit) Java 8 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418025F0}) (Version: 8.0.250 - Oracle Corporation) Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation) Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation) Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation) Kaan (HKLM-x32\...\Kaan) (Version: - ) Kill Ping version 0.0.32.3 (HKLM\...\{A5619902-2321-4118-90C7-7486C66792E3}_is1) (Version: 0.0.32.3 - Kill Ping) KillProcess 2.44 (HKLM-x32\...\KillProcess) (Version: 2.44 - Orange Lamp Software Solutions) K-Lite Codec Pack 11.8.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.8.5 - KLCP) Kozacy - Europejskie Boje (HKLM-x32\...\InstallShield_{5BFDB060-06A4-11D0-9C4F-00A0C705475F}) (Version: 1.00.0000 - CDV) Kozacy - Europejskie Boje (x32 Version: 1.00.0000 - CDV) Hidden League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden LibreOffice 4.3.2.2 (HKLM-x32\...\{9C13F99C-6E1A-4126-AE91-EAA2DADE08D6}) (Version: 4.3.2.2 - The Document Foundation) LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.406 - LogMeIn, Inc.) LogMeIn Hamachi (x32 Version: 2.2.0.406 - LogMeIn, Inc.) Hidden Mafia II version 1.2.0 (HKLM-x32\...\Mafia II_is1) (Version: 1.2.0 - GTX Box Team) Magic ISO Maker v5.5 (build 0281) (HKLM-x32\...\Magic ISO Maker v5.5 (build 0281)) (Version: - ) Medal of Honor (TM) (HKLM-x32\...\{415030B8-3E8B-462A-8C03-41D95AA3AB3B}) (Version: 1.0.0.0 - Electronic Arts) Medieval - Total War - Złota Edycja (HKLM-x32\...\InstallShield_{F01B7EF4-F487-4948-AA18-5332FE5495C9}) (Version: 1.00.0000 - SEGA) Medieval - Total War - Złota Edycja (x32 Version: 1.00.0000 - SEGA) Hidden Medieval II Total War (HKLM-x32\...\{C0698BDA-0D29-40EE-8570-A31106DF9AB1}) (Version: 1.03.000 - SEGA) Medieval II Total War : Kingdoms : Americas (HKLM-x32\...\{75983B66-804C-40D1-BA13-64DAF652A6F1}) (Version: 1.03.000 - SEGA) Medieval Total War (HKLM-x32\...\Medieval Total War) (Version: - ) MeshLab_64b 1.3.4BETA (HKLM-x32\...\MeshLab_64b) (Version: 1.3.4BETA - Paolo Cignoni - Guido Ranzuglia VCG - ISTI - CNR) Metal Gear Rising Revengeance wersja 1.0.0.0 (HKLM-x32\...\Metal Gear Rising Revengeance_is1) (Version: 1.0.0.0 - GTX Box Team) Metin2 (HKLM-x32\...\Metin2_is1) (Version: - Gameforge 4D GmbH) Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation) Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation) Microsoft Office Excel 2007 (HKLM-x32\...\EXCEL) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft Office Excel Viewer (HKLM-x32\...\{95120000-003F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft PowerPoint Home and Student 2010 (HKLM-x32\...\Office14.POWERPOINTR) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual J# .NET Redistributable Package 1.1 (HKLM-x32\...\{1A655D51-1423-48A3-B748-8F5A0BE294C8}) (Version: 1.1.4322 - Microsoft) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) MyBestOffersToday 005.014010221 (HKLM-x32\...\mbot_be_014010221_is1) (Version: - MYBESTOFFERSTODAY) <==== ATTENTION Need for Speed Underground 2 wersja 1.2.0.0 (HKLM-x32\...\Need for Speed Underground 2_is1) (Version: 1.2.0.0 - GTX Box Team) Need for Speed™ Carbon version 1.2.0.0 (HKLM-x32\...\Need for Speed™ Carbon_is1) (Version: 1.2.0.0 - GTX Box Team) Need for Speed™ Most Wanted version 1.0.0.0 (HKLM-x32\...\Need for Speed™ Most Wanted_is1) (Version: 1.0.0.0 - GTX Box Team) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.9 - Notepad++ Team) NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation) NVIDIA 3D Vision Driver 359.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 359.00 - NVIDIA Corporation) NVIDIA GeForce Experience 2.7.4.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.7.4.10 - NVIDIA Corporation) NVIDIA Graphics Driver 359.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 359.00 - NVIDIA Corporation) NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) OCCT 4.4.1 (HKLM-x32\...\OCCT) (Version: 4.4.1 - Ocbase.com) Odinstaluj drukarkę EPSON Stylus SX400 Series (HKLM\...\EPSON Stylus SX400 Series) (Version: - SEIKO EPSON Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) OpenOffice 4.1.2 (HKLM-x32\...\{E0ED9630-38E3-418F-A615-A9B2B5758BE5}) (Version: 4.12.9782 - Apache Software Foundation) OpenRL Runtime 1.3.1000.14 x64 (HKLM\...\{250C8D22-1757-11E3-818E-1803734DBB4F}) (Version: 1.3.1000.14 - Caustic Graphics, Inc.) Opera Stable 34.0.2036.50 (HKLM-x32\...\Opera 34.0.2036.50) (Version: 34.0.2036.50 - Opera Software) Origin (HKLM-x32\...\Origin) (Version: 9.4.22.2815 - Electronic Arts, Inc.) osu! (HKLM-x32\...\{6e9b3fd2-5f13-4eb6-99e4-5f4bfc7d10d5}) (Version: latest - ppy Pty Ltd) Project64 1.6 (HKLM-x32\...\{9559F7CA-5E34-4237-A2D9-D856464AD727}) (Version: 1.6 - Project64) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.) Quake III Arena (HKLM-x32\...\Quake III Arena) (Version: - ) Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform) Registry Reviver (HKLM\...\Registry Reviver) (Version: 4.4.2.10 - ReviverSoft LLC) Revo Uninstaller Pro 3.1.1 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.1 - VS Revo Group, Ltd.) RollerCoaster Tycoon 2 (HKLM-x32\...\{72DF62BD-FF36-424E-AA5F-D89BAFF2C249}) (Version: - ) Rollercoaster Tycoon 3 ZE (HKLM-x32\...\{907B4640-266B-4A21-92FB-CD1A86CD0F63}) (Version: 1.0 - Atari) Rome - Total War (HKLM-x32\...\{E01662A1-BF0F-4DA8-A2FC-4E7F685884B8}) (Version: 1.6 - The Creative Assembly) Sacrifice (HKLM-x32\...\Sacrifice) (Version: - ) SCAR (HKLM-x32\...\{B8372C2D-9549-4C85-83FE-BBD29D95D4C0}) (Version: 1.00.0000 - ) SEGA Rally (HKLM-x32\...\InstallShield_{4A05FF52-4AA8-4681-BC06-5EE7F812A441}) (Version: 1.00.0000 - SEGA) SEGA Rally (x32 Version: 1.00.0000 - SEGA) Hidden Serious Sam 3 BFE (HKLM-x32\...\Serious Sam 3 BFE_is1) (Version: - ) Serious Sam The First Encounter (HKLM-x32\...\Serious Sam The First Encounter_is1) (Version: - GOG.com) Serious Sam The Second Encounter (HKLM-x32\...\Serious Sam The Second Encounter_is1) (Version: - GOG.com) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0018-0000-0000-0000000FF1CE}_Office14.POWERPOINTR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Settlers IV - Złota Edycja (HKLM-x32\...\{A2422674-F3A7-46F2-8966-EC6B1FBD6EB3}) (Version: 1.0 - ) Setup (HKLM-x32\...\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}) (Version: - ) <==== ATTENTION Seven Kingdoms - Ancient Adversaries (HKLM-x32\...\Seven Kingdoms - Ancient Adversaries_is1) (Version: - GOG.com) Shadow Man (HKLM-x32\...\1207659713_is1) (Version: 2.1.0.5 - GOG.com) ShadowMan (HKLM-x32\...\ShadowMan) (Version: - ) SHIELD Streaming (Version: 4.1.0240 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.7.4.10 - NVIDIA Corporation) Hidden Shogun Total War - Złota Edycja (HKLM-x32\...\{208EFEE8-DDEF-4996-86CC-A5B8E997CF13}) (Version: 1.0 - SEGA) Sid Meier's Civilization 4 Complete (HKLM-x32\...\{30D1F3D2-54CF-481D-A005-F94B0E98FEEC}) (Version: 1.74 - Firaxis Games) Sid Meier's Civilization V (HKLM-x32\...\Sid Meier's Civilization V_is1) (Version: - ) Skype™ 7.17 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.17.105 - Skype Technologies S.A.) SlimDX Runtime .NET 4.0 x86 (January 2012) (HKLM-x32\...\{7EBD0E43-6AC0-4CA8-9990-00E50069AD29}) (Version: 2.0.13.43 - SlimDX Group) Source SDK (HKLM-x32\...\Steam App 211) (Version: - Valve) Spellforce (HKLM-x32\...\{85DAE0C8-B3BB-11D8-88E4-0004769F25D1}) (Version: 1.52.000 - Phenomic) Split/Second (HKLM-x32\...\{28526951-55EF-4901-A0CA-B9AC966D1DD1}) (Version: 1.00.0000 - Disney Interactive Studios) Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.) Star Wars Battlefront II (HKLM-x32\...\{3D374523-CFDE-461A-827E-2A102E2AB365}) (Version: 1.0 - LucasArts) StarOffice 7 (HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\StarOffice 7) (Version: 7 - Sun Microsystems, Inc.) Starsiege (HKLM-x32\...\Starsiege) (Version: - ) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1210 - SUPERAntiSpyware.com) SWAT 4 (HKLM-x32\...\SWAT 4) (Version: - ) Terraria (HKLM-x32\...\1207665503_is1) (Version: 2.3.0.5 - GOG.com) The Elder Scrolls IV OBLIVION GOTY wersja 1.2.0.0 (HKLM-x32\...\The Elder Scrolls IV OBLIVION GOTY_is1) (Version: 1.2.0.0 - GTX Box Team) The Neverhood (HKLM-x32\...\DreamWorks Interactive: Neverhood) (Version: - ) The Witcher 2 - Assassins of Kings Enhanced Edition (HKLM-x32\...\GOGPACKTHEWITCHER2EE_is1) (Version: 3.4.0.25 - GOG.com) TMNT (HKLM-x32\...\{B3583D27-C12A-483E-98B8-235506F71502}) (Version: 1.00 - Ubisoft) ToonCar (HKLM-x32\...\ToonCar) (Version: - ) Total War: SHOGUN 2 (HKLM-x32\...\Steam App 34330) (Version: - The Creative Assembly) Uninstall Seal Of Evil (HKLM-x32\...\{BE1CEBB2-8615-475C-A91F-168D87CDAFD6}) (Version: - ) Unity (HKLM-x32\...\Unity) (Version: 4.6.1f1 - Unity Technologies ApS) Unreal Tournament 2004 (HKLM-x32\...\Unreal Tournament 2004_is1) (Version: - GOG.com) Unreal Tournament 3 Black Edition (HKLM-x32\...\Unreal Tournament 3 Black Edition_is1) (Version: - ) Unturned (HKLM-x32\...\Steam App 304930) (Version: - Smartly Dressed Games) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0016-0000-0000-0000000FF1CE}_EXCEL_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Uplay (HKLM-x32\...\Uplay) (Version: 3.0 - Ubisoft) Virtua Fighter 2 V1.0E (HKLM-x32\...\Virtua Fighter 2) (Version: - ) VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN) Warblade 1.33 (HKLM-x32\...\{975E691C-D9EF-4CFB-A9C7-AB44F4201B0C}_is1) (Version: - EMV Software AS) Warblade v1.2E (HKLM-x32\...\Warblade v1.2E_is1) (Version: v1.2E - Edgar M Vigdal, EMV Software) Warhammer 40,000 Antologia (HKLM-x32\...\{F2B02345-93D0-42EC-922A-33481CE9A6E1}) (Version: 1.51 - THQ) WARMODE (HKLM-x32\...\Steam App 391460) (Version: - WARTEAM) WarThunder (HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\WarThunder) (Version: - WarThunder) <==== ATTENTION Wasteland 2 Directors Cut (HKLM-x32\...\Wasteland 2 Directors Cut_is1) (Version: - ) Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation) Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation) WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies) WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH) Wonderland Secret Worlds v1.00 (HKLM-x32\...\Wonderland Secret Worlds_is1) (Version: - Midnight Synergy) Worms Forts - Under Siege (HKLM-x32\...\GOGPACKWORMSFORTSUNDERSIEGE_is1) (Version: 2.0.0.9 - GOG.com) Xfire (remove only) (HKLM-x32\...\Xfire) (Version: - ) xNormal 3.18.10 (HKLM\...\xNormal 3.18.10) (Version: - Santiago Orgaz) Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team) Youtube Downloader HD v. 2.9.9.27 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com) ZBrush 4R6 (HKLM-x32\...\ZBrush 4R6 4R6) (Version: 4R6 - Pixologic) Zeus Pan Olimpu - Złota Edycja (HKLM-x32\...\{6FF4B5E9-F1E8-4622-B97C-A1E5344F56AF}) (Version: 1.1.0.0 - Vu Games) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000_Classes\CLSID\{D45F043D-F17F-4e8a-8435-70971D9FA46D}\InprocServer32 -> C:\Program Files\Blender Foundation\Blender\BlendThumb64.dll () ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0485EA79-C872-49DC-AEF7-F71412278200} - System32\Tasks\Start Registry Reviver Update => C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver.exe [2015-12-03] (ReviverSoft LLC) Task: {06EC8B93-C575-4E66-BD67-D89CDDCDEBF4} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.) Task: {141954F6-B11B-495A-A8AC-A102E36DD52F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-10-19] (Piriform Ltd) Task: {2F0A17E4-7353-4EBE-8B2F-39977FAEB8A5} - System32\Tasks\{84DE5E78-64CC-4A0D-92B7-88D961F5C156} => pcalua.exe -a F:\Setup.now.exe -d F:\ Task: {37364E86-F8D7-461B-AEC9-0074928ADCC9} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2016-01-18] (Glarysoft Ltd) Task: {3A4E344B-1FB1-40E9-AE6C-F0F124BBE0B7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-29] (Google Inc.) Task: {406C6749-7890-4CC4-9DB1-353B06E95C66} - System32\Tasks\WarThunder24 => Chrome.exe hxxp://mmotraffic.com/catalog/goplay/1000932/MTE3NjYvLy8xMDAwOTMy?click_id=zytDtB0BtAyE0A0EtB0E0BzytA0FtB0C2RtBtDtCyCtDtCtBzytCtBtCzzyEyCtDyEyD <==== ATTENTION Task: {43FA161D-F091-4096-A03E-DAC574D8402C} - System32\Tasks\{467EDC5A-3E11-463C-B245-C79B5C9F97AA} => pcalua.exe -a C:\Users\KAAM\Desktop\RTLTOOL\WIN7\64\EXE\RtlStartInstall.exe -d C:\Users\KAAM\Desktop\RTLTOOL\WIN7\64\EXE Task: {44F701C1-7157-4A7F-919D-340161EBA42E} - System32\Tasks\Start Registry Reviver for KAAM-PC@KAAM(logon) => C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver.exe [2015-12-03] (ReviverSoft LLC) Task: {458C55B8-0C73-4AC2-BDE1-8178F184F590} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation) Task: {47B51A2F-F819-4752-8E98-F3F2474A89B0} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2016-01-18] (Glarysoft Ltd) Task: {4FEEA7D4-D20B-4CAB-A4CC-7A2269C3FD49} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-01-26] (AVAST Software) Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto Task: {5A686041-99BA-457F-932C-933623B753DB} - System32\Tasks\{BEE96EE5-2A4D-4132-9013-52A9A02C10E8} => pcalua.exe -a "D:\Program Files (x86)\Raggot\wormsarm\RegSetup.exe" -d "D:\Program Files (x86)\Raggot\wormsarm" Task: {62448B39-897E-4B62-A52E-26D9E879064E} - System32\Tasks\{1488BBFF-48DE-470A-9A0C-09CC17C389C2} => pcalua.exe -a "D:\Program Files (x86)\IxGxI\IGI 2 PL[ExtremeB14]\Project IGI 2-CovertStrike.exe" -d "D:\Program Files (x86)\IxGxI\IGI 2 PL[ExtremeB14]" Task: {8316DE53-3708-4809-A7E1-2DD97CD59B7B} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_228_pepper.exe [2015-12-11] (Adobe Systems Incorporated) Task: {853A08B4-5BF7-40D7-A0F9-CA2F6DE83349} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.) Task: {883804E9-4D29-43AB-B3DF-1EC1C43BB227} - System32\Tasks\Start Registry Reviver( SR ) for KAAM-PC@KAAM at logon => C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver.exe [2015-12-03] (ReviverSoft LLC) Task: {8D50850F-5A7C-4F88-A104-7E7C221CAFCF} - System32\Tasks\WarThunder sat => Chrome.exe hxxp://mmotraffic.com/catalog/goplay/1000932/MTE3NjYvLy8xMDAwOTMy?click_id=zytDtB0BtAyE0A0EtB0E0BzytA0FtB0C2RtBtDtCyCtDtCtBzytCtBtCzzyEyCtDyEyD <==== ATTENTION Task: {9BCCB23A-16AD-4FE1-A1D9-F14145A7BF17} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation) Task: {9F5069EF-C002-4B7E-9F64-E4ECBA28ACD8} - System32\Tasks\AVAST Software\Avast settings backup Task: {A07EC053-9E31-4845-8F85-73C039FAF690} - System32\Tasks\Opera scheduled Autoupdate 1411674226 => C:\Program Files (x86)\Opera\launcher.exe [2016-01-18] (Opera Software) Task: {BCAB20DE-C253-490E-A08F-C9C63B2EE8E9} - System32\Tasks\WarThunder sun => Chrome.exe hxxp://mmotraffic.com/catalog/goplay/1000932/MTE3NjYvLy8xMDAwOTMy?click_id=zytDtB0BtAyE0A0EtB0E0BzytA0FtB0C2RtBtDtCyCtDtCtBzytCtBtCzzyEyCtDyEyD <==== ATTENTION Task: {BE833969-848F-449C-ADA6-81DCC39DF8A6} - System32\Tasks\ASC8_SkipUac_KAAM => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe [2015-06-16] (IObit) Task: {BFA8EEAE-86B3-4A65-B030-6C46FD839053} - System32\Tasks\{E9768EB2-1BEC-4648-9E72-6992B17621BF} => pcalua.exe -a F:\DOW_DC\directx\dxsetup.exe -d F:\DOW_DC\directx Task: {CADC321B-FCB3-43C9-B0D0-545209BF438A} - System32\Tasks\{932B773E-958E-4F65-8308-9FCDB155739A} => pcalua.exe -a "D:\Program Files (x86)\Spellforce 2 - Czas Mrocznych Wojen\Spellforce 2_1.2a-1.2_poprawka.exe" -d "D:\Program Files (x86)\Spellforce 2 - Czas Mrocznych Wojen" Task: {DB76B5D3-1498-4DB7-86F5-781CC86EFBBF} - System32\Tasks\Start Registry Reviver Schedule => C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver.exe [2015-12-03] (ReviverSoft LLC) Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc Task: {E6E9DC69-AB39-4708-8129-B7EE309B59BA} - System32\Tasks\{A7887154-DFE0-4FFC-8E1A-EE7427B7F116} => pcalua.exe -a "D:\Program Files (x86)\Spellforce 2 - Czas Mrocznych Wojen\base\data\Spellforce 2_1.2a-1.2_poprawka.exe" -d "D:\Program Files (x86)\Spellforce 2 - Czas Mrocznych Wojen\base\data" Task: {E7B95861-66FF-4EF9-86C5-A0A696EB4840} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-29] (Google Inc.) Task: {F33E2A82-4BD6-4E97-89A4-CE5FC1D38394} - System32\Tasks\SUPERAntiSpyware Scheduled Task 65d17247-8c41-4a90-9485-dadbc6099c53 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com) Task: {F823821E-FBA6-4FBC-A6D8-0F4F4648FE8F} - System32\Tasks\SUPERAntiSpyware Scheduled Task 3e4588d7-0240-4589-a10a-929f3170b89c => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com) Task: {FA94A638-C6D3-4887-B6A0-79F1CADEB80C} - System32\Tasks\Start Registry Reviver( SR ) for KAAM-PC@KAAM => C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver.exe [2015-12-03] (ReviverSoft LLC) Task: {FBF83302-56FA-4712-A768-0E04A5B48BF6} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_228_pepper.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\Start Registry Reviver for KAAM-PC@KAAM(logon).job => C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver.exe Task: C:\Windows\Tasks\Start Registry Reviver( SR ) for KAAM-PC@KAAM at logon.job => C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver.exe-runExecutable SRTray.exe Task: C:\Windows\Tasks\Start Registry Reviver( SR ) for KAAM-PC@KAAM.job => C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver.exe-runExecutable SRTray.exe Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 3e4588d7-0240-4589-a10a-929f3170b89c.job => C:\Program Files\SUPERAntiSpyware\SASTask.exedC:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 65d17247-8c41-4a90-9485-dadbc6099c53.job => C:\Program Files\SUPERAntiSpyware\SASTask.exedC:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe ==================== Shortcuts ============================= (The entries could be listed to be restored or removed.) Shortcut: C:\Users\Public\Desktop\Softimage 2015.lnk -> D:\Program Files\Autodesk\Softimage 2015\Application\bin\XSI.bat () ShortcutWithArgument: C:\Users\KAAM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://mmotraffic.com/catalog/goplay/1000932/MTE3NjYvLy8xMDAwOTMy?click_id=zytDtB0BtAyE0A0EtB0E0BzytA0FtB0C2RtBtDtCyCtDtCtBzytCtBtCzzyEyCtDyEyD ShortcutWithArgument: C:\Users\KAAM\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://mmotraffic.com/catalog/goplay/1000932/MTE3NjYvLy8xMDAwOTMy?click_id=zytDtB0BtAyE0A0EtB0E0BzytA0FtB0C2RtBtDtCyCtDtCtBzytCtBtCzzyEyCtDyEyD ShortcutWithArgument: C:\Users\KAAM\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\WarThunder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://mmotraffic.com/catalog/goplay/1000932/MTE3NjYvLy8xMDAwOTMy?click_id=zytDtB0BtAyE0A0EtB0E0BzytA0FtB0C2RtBtDtCyCtDtCtBzytCtBtCzzyEyCtDyEyD ==================== Loaded Modules (Whitelisted) ============== 2014-05-12 10:49 - 2014-05-12 10:49 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll 2014-11-15 22:08 - 2015-12-26 23:24 - 00066872 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2014-11-15 22:08 - 2015-12-26 23:24 - 00107832 _____ () C:\Windows\SysWOW64\PnkBstrB.exe 2016-01-29 10:45 - 2016-01-28 11:03 - 03278000 _____ () C:\Users\KAAM\AppData\Local\mbot_be_014010221\upmbot_be_014010221.exe 2016-01-29 10:45 - 2016-01-28 11:03 - 03956400 _____ () C:\Program Files (x86)\mbot_be_014010221\mbot_be_014010221.exe 2016-01-30 09:09 - 2014-01-28 18:36 - 00380416 _____ () E:\GMER\gmer.exe 2015-07-03 11:12 - 2013-10-25 11:08 - 00517408 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\sqlite3.dll 2016-01-26 17:28 - 2016-01-26 17:28 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2016-01-26 17:28 - 2016-01-26 17:28 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2016-01-29 10:47 - 2016-01-29 10:47 - 02818048 _____ () C:\Program Files\AVAST Software\Avast\defs\16012900\algo.dll 2016-01-26 17:28 - 2016-01-26 17:28 - 00469008 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2016-01-25 19:46 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl 2016-01-25 19:46 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl 2016-01-25 19:46 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl 2016-01-25 19:46 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll 2016-01-25 19:46 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll 2016-01-26 17:28 - 2016-01-26 17:28 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2016-01-18 06:51 - 2016-01-18 06:51 - 00079784 _____ () C:\Program Files (x86)\Glary Utilities 5\zlib1.dll 2016-01-21 12:30 - 2016-01-18 08:19 - 61568120 _____ () C:\Program Files (x86)\Opera\34.0.2036.50\opera.dll 2016-01-21 12:30 - 2016-01-18 08:19 - 01983096 _____ () C:\Program Files (x86)\Opera\34.0.2036.50\libglesv2.dll 2016-01-21 12:30 - 2016-01-18 08:19 - 00081528 _____ () C:\Program Files (x86)\Opera\34.0.2036.50\libegl.dll 2015-12-11 11:29 - 2015-12-11 11:29 - 16573120 _____ () C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_20_0_0_228.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\ProgramData\TEMP:76650B61 ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com There are 7868 more sites. IE restricted site: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\007guard.com -> install.007guard.com IE restricted site: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\008k.com -> www.008k.com IE restricted site: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\00hq.com -> www.00hq.com IE restricted site: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\010402.com -> 010402.com IE restricted site: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\01i.info -> 01i.info IE restricted site: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\05p.com -> 05p.com IE restricted site: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\0calories.net -> 0calories.net IE restricted site: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\0cj.net -> 0cj.net IE restricted site: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\0scan.com -> www.0scan.com IE restricted site: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\...\1-se.com -> 1-se.com There are 11405 more sites. ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2016-01-11 17:51 - 2016-01-25 21:49 - 00450025 ____R C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com 127.0.0.1 www.0scan.com 127.0.0.1 0scan.com 127.0.0.1 1000gratisproben.com 127.0.0.1 www.1000gratisproben.com 127.0.0.1 1001namen.com 127.0.0.1 www.1001namen.com 127.0.0.1 100888290cs.com 127.0.0.1 www.100888290cs.com 127.0.0.1 www.100sexlinks.com 127.0.0.1 100sexlinks.com 127.0.0.1 10sek.com 127.0.0.1 www.10sek.com 127.0.0.1 www.1-2005-search.com 127.0.0.1 1-2005-search.com 127.0.0.1 123fporn.info 127.0.0.1 www.123fporn.info 127.0.0.1 123haustiereundmehr.com 127.0.0.1 www.123haustiereundmehr.com 127.0.0.1 123moviedownload.com 127.0.0.1 www.123moviedownload.com There are 15466 more lines. ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-4156027226-2253448997-1576552463-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\KAAM\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupfolder: C:^Users^KAAM^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^StarOffice 7.lnk => C:\Windows\pss\StarOffice 7.lnk.Startup MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: mbot_be_014010221 => "C:\Program Files (x86)\mbot_be_014010221\mbot_be_014010221.exe" MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" MSCONFIG\startupreg: SpybotPostWindows10UpgradeReInstall => "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe" MSCONFIG\startupreg: upmbot_be_014010221.exe => C:\Users\KAAM\AppData\Local\mbot_be_014010221\upmbot_be_014010221.exe -runonce ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{4ED79C23-FF72-4118-978E-F50D3AF63FCC}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{E1EB282C-92DB-4E3A-AC4D-1FF2BC1DA3EB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{0B25D7E6-4B6A-4AF4-B0B3-7469AE12BAF7}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{B312A602-BB29-4C24-9D8F-9F99C8C9216F}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{DCFDBA84-EF38-41D6-8EDA-C2BDE8334FFF}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{5B4A50A1-232F-41BE-B923-C5328308A5B4}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{8A90AAF7-7678-4791-B2CA-F3EA647A49EA}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{52D0205F-8FD8-46D2-BA13-B6DD2841022D}] => (Allow) C:\Users\KAAM\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{CFA962E1-CA1C-431F-99F1-C008E84F2515}] => (Allow) C:\Users\KAAM\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{CFD5F654-1CDB-46BA-9AF4-DBF72EE2CFA5}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{18493F30-BED8-4F95-BA75-2A7D10533D3B}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [TCP Query User{8BE85AE1-C1BD-4B54-8639-986AE02FFB05}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Allow) C:\program files (x86)\libreoffice 4\program\soffice.bin FirewallRules: [UDP Query User{37821FE1-0F58-4471-B72D-4AF55C0761E7}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Allow) C:\program files (x86)\libreoffice 4\program\soffice.bin FirewallRules: [{B7FFD02B-95B2-405F-9FAA-2CBA8456C8BE}] => (Allow) LPort=8317 FirewallRules: [{5E109915-88FE-44F0-9E15-B8676FBB676A}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\SourceSDK\bin\SDKLauncher.exe FirewallRules: [{39CA8AD8-68C8-481D-BBA5-075D1F17A712}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\SourceSDK\bin\SDKLauncher.exe FirewallRules: [{8DC34823-C287-4617-9CB2-3A9BCEF4BC08}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOpsMP.exe FirewallRules: [{B5DC4754-B2DC-4B86-8A7F-D64217C9F6CA}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOpsMP.exe FirewallRules: [{F2A60EF9-5BB5-43E5-B552-6BE1BC923341}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe FirewallRules: [{210E3F1A-89B7-4F88-AA70-F0985C1B8501}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe FirewallRules: [{2AD88ECB-A1C8-4262-AE86-E00DE777D140}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops II\t6mp.exe FirewallRules: [{F510FC0B-6E05-4CF0-B758-519287458840}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops II\t6mp.exe FirewallRules: [TCP Query User{58E75266-31E3-4137-B0E4-7AA192FBFCEE}C:\Program Files (x86)\Unity\Editor\Unity.exe] => (Allow) C:\Program Files (x86)\Unity\Editor\Unity.exe FirewallRules: [UDP Query User{E3930B20-10AA-47E6-9CE9-AAEBDCC5EF00}C:\Program Files (x86)\Unity\Editor\Unity.exe] => (Allow) C:\Program Files (x86)\Unity\Editor\Unity.exe FirewallRules: [TCP Query User{34413DFC-D712-446E-8697-B2D82C9BCABC}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Allow) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe FirewallRules: [UDP Query User{3E8AAF8F-E2FE-4035-9C6C-251807A8EA8C}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Allow) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe FirewallRules: [{30179062-EBA9-4D90-8E11-AF32BE11DE71}] => (Allow) D:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe FirewallRules: [{DB15EBBE-E57F-4AFA-AAE7-04BF4CCAF5AA}] => (Allow) D:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe FirewallRules: [{DB297EB1-4FEE-4F6F-BAA2-3368A7597B0D}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe FirewallRules: [{56C95124-4BB0-47B8-AE9B-660A6A0516C2}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe FirewallRules: [{94CA1CBE-F75B-493E-9065-3C16C0090092}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Fallout New Vegas enplczru\FalloutNVLauncher.exe FirewallRules: [{6A1D7FE6-276D-4DAC-AA74-2D3051AAC613}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Fallout New Vegas enplczru\FalloutNVLauncher.exe FirewallRules: [TCP Query User{3E3AB9FB-7C9F-4D79-A05F-A050FD6997BD}D:\program files (x86)\najlepsze gry na earth\unreal tournament 3 black edition\binaries\ut3.exe] => (Allow) D:\program files (x86)\najlepsze gry na earth\unreal tournament 3 black edition\binaries\ut3.exe FirewallRules: [UDP Query User{280B13ED-AED3-4071-9EEB-4194FAA03FF3}D:\program files (x86)\najlepsze gry na earth\unreal tournament 3 black edition\binaries\ut3.exe] => (Allow) D:\program files (x86)\najlepsze gry na earth\unreal tournament 3 black edition\binaries\ut3.exe FirewallRules: [TCP Query User{D442044B-E36F-4FE5-9586-A156C65C804A}C:\gog games\evolva\evolva.exe] => (Allow) C:\gog games\evolva\evolva.exe FirewallRules: [UDP Query User{96EB2776-FA71-4ED8-802D-81CD2D2A0788}C:\gog games\evolva\evolva.exe] => (Allow) C:\gog games\evolva\evolva.exe FirewallRules: [{8E27735D-1DDF-417C-985F-E8A43F9F0FF2}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{AE6BE11D-AE0D-4EF4-865C-F1EA71962F84}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{5FA079B7-9CFA-4DA3-95AA-05029BBD8D04}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{875ADE7C-F9A9-4191-8DA6-AF7B693EEFF9}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [TCP Query User{D73D6021-7347-43D8-AE3C-704B052F87BA}D:\program files (x86)\id\quake3\quake3.exe] => (Allow) D:\program files (x86)\id\quake3\quake3.exe FirewallRules: [UDP Query User{73C98BA8-D7F2-49E6-BA69-617CD6D66308}D:\program files (x86)\id\quake3\quake3.exe] => (Allow) D:\program files (x86)\id\quake3\quake3.exe FirewallRules: [TCP Query User{F6E26C71-EC04-4203-B86B-448DA9B2E6FF}D:\program files (x86)\id\quake3\quake3e.exe] => (Block) D:\program files (x86)\id\quake3\quake3e.exe FirewallRules: [UDP Query User{E6065956-4D6F-4F5E-87C0-6AACDF27567E}D:\program files (x86)\id\quake3\quake3e.exe] => (Block) D:\program files (x86)\id\quake3\quake3e.exe FirewallRules: [TCP Query User{8BFC40F7-11DD-4FC0-9B8A-44B2C92DF5AB}D:\program files (x86)\thq\dawn of war - dark crusade\darkcrusade.exe] => (Allow) D:\program files (x86)\thq\dawn of war - dark crusade\darkcrusade.exe FirewallRules: [UDP Query User{578A659E-5316-48C2-9DDB-665621BF6309}D:\program files (x86)\thq\dawn of war - dark crusade\darkcrusade.exe] => (Allow) D:\program files (x86)\thq\dawn of war - dark crusade\darkcrusade.exe FirewallRules: [TCP Query User{EB883581-364A-487C-A30B-FE538FBD6957}D:\program files (x86)\origin games\dead space\dead space.exe] => (Allow) D:\program files (x86)\origin games\dead space\dead space.exe FirewallRules: [UDP Query User{2621278A-9D3D-47FF-86C6-864686836AEB}D:\program files (x86)\origin games\dead space\dead space.exe] => (Allow) D:\program files (x86)\origin games\dead space\dead space.exe FirewallRules: [TCP Query User{B8715DC6-E702-459B-A632-934A702D8C99}D:\program files (x86)\id\quake3\quake3e.exe] => (Allow) D:\program files (x86)\id\quake3\quake3e.exe FirewallRules: [UDP Query User{A8B50E4C-D290-4E11-8A3D-97C3BE7B4362}D:\program files (x86)\id\quake3\quake3e.exe] => (Allow) D:\program files (x86)\id\quake3\quake3e.exe FirewallRules: [TCP Query User{E19D3307-D5B8-4136-BF7A-B41C54E9C09B}D:\program files (x86)\najlepsze gry na earth\unreal tournament 3 black edition\binaries\ut3.exe] => (Block) D:\program files (x86)\najlepsze gry na earth\unreal tournament 3 black edition\binaries\ut3.exe FirewallRules: [UDP Query User{027F7543-7013-4EB5-96EE-9D3D8FE36D10}D:\program files (x86)\najlepsze gry na earth\unreal tournament 3 black edition\binaries\ut3.exe] => (Block) D:\program files (x86)\najlepsze gry na earth\unreal tournament 3 black edition\binaries\ut3.exe FirewallRules: [{50E8BF67-D807-4E1B-A8A1-2F32CE268FFB}] => (Allow) C:\Program Files (x86)\GameforgeLive\gfl_client.exe FirewallRules: [{BFAA4C73-C671-4565-B15D-D4A5AE9E34A6}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe FirewallRules: [{6422527C-6C4D-4CB2-8ACC-D3E34F3C357B}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe FirewallRules: [{95186B75-0AD8-4869-9B0F-D3E10C3E2244}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win32\dota2.exe FirewallRules: [{CD5CC218-3934-426C-968A-1529E27B91DB}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win32\dota2.exe FirewallRules: [TCP Query User{A7E31A9C-3FB4-47B1-B8C3-AE60D1807262}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe FirewallRules: [UDP Query User{5DA8523C-380E-4EEA-BD5C-82ED0AA01BF0}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe FirewallRules: [TCP Query User{E050D98C-AF06-40FE-8026-2590DD64E95B}C:\gog games\evolva\evolva.exe] => (Allow) C:\gog games\evolva\evolva.exe FirewallRules: [UDP Query User{535CF394-7826-4012-B206-E4BE1330BA44}C:\gog games\evolva\evolva.exe] => (Allow) C:\gog games\evolva\evolva.exe FirewallRules: [TCP Query User{6FFB0BA1-0363-430F-93FD-8009B960EB0C}D:\program files (x86)\thq\dawn of war - dark crusade\darkcrusade.exe] => (Allow) D:\program files (x86)\thq\dawn of war - dark crusade\darkcrusade.exe FirewallRules: [UDP Query User{5A9A0015-77F6-4C3C-AAE7-A1A6771B645C}D:\program files (x86)\thq\dawn of war - dark crusade\darkcrusade.exe] => (Allow) D:\program files (x86)\thq\dawn of war - dark crusade\darkcrusade.exe FirewallRules: [{A0181918-8558-4A12-B69E-572CB6AF5203}] => (Allow) D:\Program Files (x86)\Najlepsze gry na Earth\Unreal Tournament 2004\System\UT2004.exe FirewallRules: [{DA762C67-CBBE-41C1-A656-D12008E24D31}] => (Allow) D:\Program Files (x86)\Najlepsze gry na Earth\Unreal Tournament 2004\System\UT2004.exe FirewallRules: [TCP Query User{1CBEB5D6-09E2-464A-992B-B6DEAB0CDC01}D:\program files (x86)\ubisoft\settlers iv - zlota edycja\exe\s4_main.exe] => (Block) D:\program files (x86)\ubisoft\settlers iv - zlota edycja\exe\s4_main.exe FirewallRules: [UDP Query User{F4A087EF-A169-403D-ADAB-07BA28E45D42}D:\program files (x86)\ubisoft\settlers iv - zlota edycja\exe\s4_main.exe] => (Block) D:\program files (x86)\ubisoft\settlers iv - zlota edycja\exe\s4_main.exe FirewallRules: [{74A9C45A-0C20-436D-B7D2-59EAA67D03D5}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\WARMODE\warmode.exe FirewallRules: [{4A7C05F7-4240-47FB-81E1-29525192BB55}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\WARMODE\warmode.exe FirewallRules: [TCP Query User{714E0E54-A8A4-4898-8743-D3ADBB8500EE}C:\users\kaam\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\kaam\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{8CB50E84-10CF-4814-BD31-A546907F2C05}C:\users\kaam\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\kaam\appdata\local\akamai\netsession_win.exe FirewallRules: [{733907F7-813F-48D6-B8DE-0E2C7846A0BC}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Half-Life 2 Deathmatch\hl2.exe FirewallRules: [{32C6D7CC-AE57-4DD7-BCC0-E33B81C9A0C8}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Half-Life 2 Deathmatch\hl2.exe FirewallRules: [TCP Query User{62794C9E-B87C-4CF8-B95E-43FD9F102962}C:\users\kaam\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\kaam\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{A1D4959E-7E00-467B-A274-2CFC89892D65}C:\users\kaam\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\kaam\appdata\local\akamai\netsession_win.exe FirewallRules: [{40C2A52E-0827-4323-9F85-3EBD4D16B43E}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{9F28BFD9-57E0-4249-B12B-EFE451AB7FB1}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{0C268C54-1F1C-4EC6-91B7-177CABEB9875}] => (Allow) D:\Program Files (x86)\GTX Box Team\The Elder Scrolls IV OBLIVION GOTY\OblivionLauncher.exe FirewallRules: [{1397E1B5-3C6D-4B85-BD6A-892D87DE9C94}] => (Allow) D:\Program Files (x86)\GTX Box Team\The Elder Scrolls IV OBLIVION GOTY\OblivionLauncher.exe FirewallRules: [TCP Query User{42F6FA01-CABA-4C13-AC19-BCFEC5D6C909}D:\gog games\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) D:\gog games\the witcher 2 enhanced edition\bin\witcher2.exe FirewallRules: [UDP Query User{4D522033-5104-476D-8FF8-D432B5C98AFC}D:\gog games\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) D:\gog games\the witcher 2 enhanced edition\bin\witcher2.exe FirewallRules: [{4754DC85-0E17-41AD-B74E-AB29B7365672}] => (Allow) LPort=49166 FirewallRules: [{D00DEFF1-CC17-4F27-86AF-11F21648660A}] => (Allow) LPort=5000 FirewallRules: [TCP Query User{0EE6A3C4-B8ED-42F6-913A-A2C2DE4A2075}D:\program files (x86)\gog.com\serious sam the first encounter\bin\serioussam.exe] => (Allow) D:\program files (x86)\gog.com\serious sam the first encounter\bin\serioussam.exe FirewallRules: [UDP Query User{383FCB6A-6108-4131-A07A-2194682DB8D2}D:\program files (x86)\gog.com\serious sam the first encounter\bin\serioussam.exe] => (Allow) D:\program files (x86)\gog.com\serious sam the first encounter\bin\serioussam.exe FirewallRules: [{BFA38439-55A1-471A-AB9B-9D3F6E912749}] => (Allow) D:\Program Files (x86)\Unreal REAL GOLD\UnrealGold\UnrealGold\System\Unreal.exe FirewallRules: [{FCA00B08-9DB1-4E44-B1E1-A8E1499F9CC3}] => (Allow) D:\Program Files (x86)\Unreal REAL GOLD\UnrealGold\UnrealGold\System\Unreal.exe FirewallRules: [TCP Query User{36F71768-FA94-4474-A517-10724521AF2C}C:\program files (x86)\phenomic\spellforce\spellforce.exe] => (Allow) C:\program files (x86)\phenomic\spellforce\spellforce.exe FirewallRules: [UDP Query User{92192E27-1F39-4FBF-9639-77FAB8EBC0C5}C:\program files (x86)\phenomic\spellforce\spellforce.exe] => (Allow) C:\program files (x86)\phenomic\spellforce\spellforce.exe FirewallRules: [{AF910961-475F-479C-B852-F0132FC31E9E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{F49C3D5B-1611-4FE4-98B3-23F9A68822D8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{40B54EC6-3C59-4D02-9EF0-2BD746123FD8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{89057A09-D555-463C-9A30-5FA2EFC4466B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{CB84F0DD-26F0-4FCE-99B8-CF32B3DB85B7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{41A73A49-B934-4FCA-ACFE-068C3627898E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{D593CE2D-75E4-4BBB-9259-FC5D294A5FFA}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield Bad Company 2\BFBC2Game.exe FirewallRules: [{09EACDA6-EE6A-48DA-A3A8-1A847C12111E}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield Bad Company 2\BFBC2Game.exe FirewallRules: [{83E0F0A9-3F1A-4459-B3FF-9E3DF80E3DA5}] => (Allow) E:\GTX Box Team\Driver San Francisco\Driver.exe FirewallRules: [{40D724C8-9A18-4DD5-B78B-42A80E74B2D8}] => (Allow) E:\GTX Box Team\Driver San Francisco\Driver.exe FirewallRules: [{835C7016-EFEF-4441-B8F0-D2439C0810AC}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Unturned\Unturned.exe FirewallRules: [{F324E178-04AA-438C-9596-6F86B635836E}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Unturned\Unturned.exe FirewallRules: [TCP Query User{19E62904-0D2F-4251-87BE-C8EFDFDEBFB2}E:\gog games\worms forts - under siege\wf.exe] => (Allow) E:\gog games\worms forts - under siege\wf.exe FirewallRules: [UDP Query User{4D30296B-7443-46B7-94A1-C67DBCD93B09}E:\gog games\worms forts - under siege\wf.exe] => (Allow) E:\gog games\worms forts - under siege\wf.exe FirewallRules: [{01E743E7-97C5-4A08-81D3-CB817AC8A37A}] => (Allow) E:\Program Files (x86)\GTX Box Team\Metal Gear Rising Revengeance\METAL GEAR RISING REVENGEANCE.exe FirewallRules: [{6CD2996A-1C8A-4AA6-8508-D788AC5C36B1}] => (Allow) E:\Program Files (x86)\GTX Box Team\Metal Gear Rising Revengeance\METAL GEAR RISING REVENGEANCE.exe FirewallRules: [{621743B7-95E5-49D8-9267-99337F333E3D}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Earth 2150 The Moon Project\TheMoonProject.exe FirewallRules: [{A3EF5611-9A8C-4C86-B3C8-21171564D3BD}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Earth 2150 The Moon Project\TheMoonProject.exe FirewallRules: [{D5848709-0120-4B6A-AB57-6D844AA58727}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Earth 2150 The Moon Project\Setup.exe FirewallRules: [{1D53823A-DA28-4033-AE38-4C6D16FD9C0E}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Earth 2150 The Moon Project\Setup.exe FirewallRules: [{17349954-FC17-485C-8987-4F878E839432}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{59E852D3-E629-4329-B1B4-EA303BA5DF7B}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{3D2D132E-FD80-4F3E-82E5-EFC108E6F72E}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{328F40E8-56AC-4D3B-B00A-8E28FB313598}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{F61C8114-945A-46A9-92EC-57B62EAAA265}] => (Allow) D:\Program Files (x86)\Najlepsze gry na Earth\Unreal Tournament 2004\System\UT2004.exe FirewallRules: [{AE2ABEA1-69A8-492D-B1FF-D56C2A16DE20}] => (Allow) D:\Program Files (x86)\Najlepsze gry na Earth\Unreal Tournament 2004\System\UT2004.exe FirewallRules: [TCP Query User{94304704-682C-48AC-BD5F-38B281E7B1BE}D:\program files (x86)\najlepsze gry na earth\unreal tournament\unrealtournament\system\unrealtournament.exe] => (Block) D:\program files (x86)\najlepsze gry na earth\unreal tournament\unrealtournament\system\unrealtournament.exe FirewallRules: [UDP Query User{F665C845-E36C-455A-B80D-585C51F89DC1}D:\program files (x86)\najlepsze gry na earth\unreal tournament\unrealtournament\system\unrealtournament.exe] => (Block) D:\program files (x86)\najlepsze gry na earth\unreal tournament\unrealtournament\system\unrealtournament.exe FirewallRules: [{DFAFD3A3-6AE5-4D73-A1C5-85820A66779A}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404\Anno4.exe FirewallRules: [{9A19636E-4A89-4AFD-A92A-498CC69247AC}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404\Anno4.exe FirewallRules: [{D0050606-A4C6-4B8E-8660-AF6821DFB078}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404\tools\Anno4Web.exe FirewallRules: [{95946F37-A0C0-420D-96E1-DB8D082ED0FB}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404\tools\Anno4Web.exe FirewallRules: [{E65223B2-C4BC-49F1-B864-A9DDFBF3B290}] => (Allow) E:\SteamLibrary\steamapps\common\Total War SHOGUN 2\Shogun2.exe FirewallRules: [{0E26275C-EB3B-43BD-A0E3-87F5BC5092A7}] => (Allow) E:\SteamLibrary\steamapps\common\Total War SHOGUN 2\Shogun2.exe FirewallRules: [TCP Query User{4E920723-E76A-43E7-95A4-15D98766421D}C:\program files (x86)\unity\monodevelop\bin\monodevelop.exe] => (Allow) C:\program files (x86)\unity\monodevelop\bin\monodevelop.exe FirewallRules: [UDP Query User{542F6B63-BFBB-42E8-8309-B8BE5A1C8D9E}C:\program files (x86)\unity\monodevelop\bin\monodevelop.exe] => (Allow) C:\program files (x86)\unity\monodevelop\bin\monodevelop.exe FirewallRules: [{A6C52E18-009B-40B7-973A-EB9E5BBA8931}] => (Allow) D:\Program Files\Autodesk\Softimage 2015\Application\bin\XSI.exe FirewallRules: [{89B3663D-B74F-4E92-A8D3-71732DF58107}] => (Allow) D:\Program Files\Autodesk\Softimage 2015\Application\bin\XSI.exe StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service ==================== Restore Points ========================= 30-01-2016 09:09:37 Registry Reviver Restore Point (01/30/16) ==================== Faulty Device Manager Devices ============= Name: TsNetHlpX64.sys Description: TsNetHlpX64.sys Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: tsnethlpx64 Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Teredo Tunneling Pseudo-Interface Description: Microsoft Teredo Tunneling Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (01/30/2016 09:16:46 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/30/2016 09:00:58 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/30/2016 04:53:06 AM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: ) Description: The handle is invalid Error: (01/30/2016 04:52:48 AM) (Source: MsiInstaller) (EventID: 1024) (User: NT AUTHORITY) Description: Product: Microsoft Office Excel 2007 - Update 'Microsoft Office 2007 Service Pack 3 (SP3)' could not be installed. Error code 1603. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127 Error: (01/30/2016 04:52:32 AM) (Source: MsiInstaller) (EventID: 11307) (User: NT AUTHORITY) Description: Product: Microsoft Office Excel 2007 -- Error 1307.There is not enough disk space to install this file: C:\Windows\Installer\3084e0f.msp. Free some disk space and click 'Retry', or click 'Cancel' to exit. Error: (01/30/2016 03:04:18 AM) (Source: MsiInstaller) (EventID: 1024) (User: NT AUTHORITY) Description: Product: Microsoft Office Excel 2007 - Update 'Microsoft Office 2007 Service Pack 3 (SP3)' could not be installed. Error code 1603. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127 Error: (01/30/2016 03:03:39 AM) (Source: MsiInstaller) (EventID: 11307) (User: NT AUTHORITY) Description: Product: Microsoft Office Excel 2007 -- Error 1307.There is not enough disk space to install this file: C:\Windows\Installer\2a26cf9.msp. Free some disk space and click 'Retry', or click 'Cancel' to exit. Error: (01/29/2016 04:14:10 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Error: (01/29/2016 02:47:01 PM) (Source: ESENT) (EventID: 215) (User: ) Description: WinMail (3452) WindowsMail0: The backup has been stopped because it was halted by the client or the connection with the client failed. Error: (01/29/2016 02:46:32 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 System errors: ============= Error: (01/30/2016 09:16:06 AM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \SystemRoot\SysWow64\drivers\tandpl.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver. Error: (01/30/2016 09:15:01 AM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \??\C:\Windows\SysWow64\drivers\SSHDRV65.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver. Error: (01/30/2016 09:15:11 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: The previous system shutdown at 09:14:21 on ‎2016-‎01-‎30 was unexpected. Error: (01/30/2016 09:00:50 AM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \SystemRoot\SysWow64\drivers\tandpl.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver. Error: (01/30/2016 09:00:46 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Spybot-S&D 2 Scanner Service service failed to start due to the following error: %%1053 Error: (01/30/2016 09:00:46 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: A timeout was reached (30000 milliseconds) while waiting for the Spybot-S&D 2 Scanner Service service to connect. Error: (01/30/2016 08:59:21 AM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \??\C:\Windows\SysWow64\drivers\SSHDRV65.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver. Error: (01/30/2016 04:52:48 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installation Failure: Windows failed to install the following update with error 0x80070643: The 2007 Microsoft Office Suite Service Pack 3 (SP3). Error: (01/30/2016 03:04:18 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installation Failure: Windows failed to install the following update with error 0x80070643: The 2007 Microsoft Office Suite Service Pack 3 (SP3). Error: (01/29/2016 05:33:20 PM) (Source: volsnap) (EventID: 36) (User: ) Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit. CodeIntegrity: =================================== Date: 2016-01-01 11:55:51.053 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-01-01 11:55:51.016 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-01-01 11:55:45.642 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-01-01 11:55:45.479 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-01-01 04:37:41.766 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-01-01 04:37:41.729 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-01-01 04:37:31.922 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-01-01 04:37:31.605 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-12-31 10:09:21.591 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-12-31 10:09:21.552 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Processor: AMD FX(tm)-6300 Six-Core Processor Percentage of memory in use: 41% Total physical RAM: 7421.55 MB Available physical RAM: 4306.98 MB Total Virtual: 14841.32 MB Available Virtual: 11527.7 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:146.39 GB) (Free:1.21 GB) NTFS Drive d: () (Fixed) (Total:319.28 GB) (Free:43.65 GB) NTFS Drive e: (Dumpster) (Fixed) (Total:232.88 GB) (Free:89.37 GB) NTFS Drive g: (PSZARAMA) (Removable) (Total:7.32 GB) (Free:7.04 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: C7C1BAFB) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=146.4 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=319.3 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Size: 232.9 GB) (Disk ID: 1C661C65) Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows XP) (Size: 7.3 GB) (Disk ID: C3072E18) Partition 1: (Not Active) - (Size=7.3 GB) - (Type=07 NTFS) ==================== End of Addition.txt ============================