Additional scan result of Farbar Recovery Scan Tool (x86) Version: 10.02.2018 02 Ran by ADMINPC (10-02-2018 23:07:08) Running from C:\Users\ADMINPC\Desktop Microsoft Windows 7 Домашняя расширенная Service Pack 1 (X86) (2012-12-19 13:43:20) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= ADMINPC (S-1-5-21-2611090722-3937820500-115396711-1098 - Administrator - Enabled) => C:\Users\ADMINPC HomeGroupUser$ (S-1-5-21-2611090722-3937820500-115396711-1003 - Limited - Enabled) UpdatusUser (S-1-5-21-2611090722-3937820500-115396711-1004 - Limited - Enabled) => C:\Users\UpdatusUser Администратор (S-1-5-21-2611090722-3937820500-115396711-500 - Administrator - Disabled) Гость (S-1-5-21-2611090722-3937820500-115396711-501 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-2611090722-3937820500-115396711-1098\...\uTorrent) (Version: 3.5.1.44332 - BitTorrent Inc.) 2ГИС 3.16.3.0 (HKLM\...\{7A4DAA49-F574-4186-8085-BFC8CF0BAA2F}) (Version: 3.16.3.0 - ООО "ДубльГИС") Adobe Acrobat Reader DC - Russian (HKLM\...\{AC76BA86-7AD7-1049-7B44-AC0F074E4100}) (Version: 18.009.20050 - Adobe Systems Incorporated) Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.7.0.2090 - Adobe Systems Incorporated) Adobe Community Help (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated) Adobe Flash Player 28 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 28.0.0.161 - Adobe Systems Incorporated) Adobe Flash Player 28 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 28.0.0.161 - Adobe Systems Incorporated) Adobe Flash Player 28 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 28.0.0.161 - Adobe Systems Incorporated) Adobe Media Player (HKLM\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated) Adobe Photoshop CS5 (HKLM\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated) AIDA64 (HKLM\...\TheBestAidaInstallEver_is1) (Version: 3.20.2600 - Copyright (c) 1995-2013 FinalWire Ltd.) android_driver_install.exe (HKLM\...\android_driver_install_is1) (Version: - android) Apple Mobile Device Support (HKLM\...\{D9F3D66A-9885-4DDD-A800-9DDF488359A1}) (Version: 10.0.1.3 - Apple Inc.) Battle.net (HKLM\...\Battle.net) (Version: - Blizzard Entertainment) Blender (HKLM\...\Blender) (Version: 2.68 - Blender Foundation) CCleaner (HKLM\...\CCleaner) (Version: 5.39 - Piriform) Civilization V (HKLM\...\Civilization V_R.G._Element_Arts_is1) (Version: 1.0 - R.G. Element Arts, SeregA_Lus) CuneiForm OpenOCR (HKLM\...\{2C695618-6950-4C88-B836-A4FE7DD7FC9F}) (Version: 01.08.1006 - Cognitive Technologies) Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform) Dishonored 1.00 (HKLM\...\Dishonored 1.00) (Version: 1.00 - R.G. - Кинозал.ТВ) Download Master version 5.14.2.1329 (HKLM\...\Download Master_is1) (Version: 5.14.2.1329 - WestByte) Fahrenheit (HKLM\...\{8C1CE68A-F073-4FC6-B4EF-2FC23779AED4}) (Version: - ) Fallout 3 - NMC's Texture Pack (HKLM\...\Fallout 3 - NMC's Texture Pack_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91) Fallout 3 - Wasteland Edition (HKLM\...\Fallout 3 - Wasteland Edition_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91) FastStone Image Viewer 3.5 (HKLM\...\FastStone Image Viewer_is1) (Version: - FastStone Software) Free Video Call Recorder for Skype version 1.0.2.115 (HKLM\...\Free Video Call Recorder for Skype_is1) (Version: 1.0.2.115 - DVDVideoSoft Ltd.) Geeks3D.com FurMark 1.10.6 (HKLM\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: - Geeks3D.com) Google Chrome (HKLM\...\Google Chrome) (Version: 64.0.3282.140 - Google Inc.) Google Drive (HKLM\...\{9BC95947-92FD-438B-A168-C01F9A5B7292}) (Version: 2.34.7529.6838 - Google, Inc.) Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden H264Player (HKLM\...\H264Player_is1) (Version: 1.2.0.29 - ) Hearthstone (HKLM\...\Hearthstone) (Version: - Blizzard Entertainment) Heroes of Might & Magic III - HD Edition v.1.0 (HKLM\...\Heroes of Might & Magic III - HD Edition_is1) (Version: - ) Heroes of the Storm (HKLM\...\Heroes of the Storm) (Version: - Blizzard Entertainment) Hitman: Absolution (HKLM\...\Hitman: Absolution_is1) (Version: 1.0.447.0 - R.G. Reverants) ICCup Launcher (HKLM\...\ICCup Launcher_is1) (Version: 1.6 - ICCup) Imperial Glory (HKLM\...\{8D79AC80-9996-4C5A-B831-B8A9C4741C04}_is1) (Version: - Created by DRIFTER) Java 8 Update 25 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation) Malwarebytes, версия 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes) Mathcad 15 M010 (HKLM\...\{8FD0167F-A752-467A-86BE-3728D71F68B8}) (Version: 15.0.1.0 - PTC) Mgn Service Updater (HKLM\...\Mgn Service Updater) (Version: - ) MicGame. Counter-Strike 1.6, версия 2.06 (HKLM\...\{A0EC780D-EED5-479D-A1D8-59D5FAF848E0}_is1) (Version: 2.06 - MicGame ([Psycho]-Fox)) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (Русский) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1049) (Version: 4.5.50938 - Корпорация Майкрософт) Microsoft Access Runtime 2013 (HKLM\...\Office15.AccessRT) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation) Microsoft Games for Windows Marketplace (HKLM\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0016-0000-0000-0000000FF1CE}_EXCEL_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0018-0000-0000-0000000FF1CE}_POWERPOINT_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-001B-0000-0000-0000000FF1CE}_WORD_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Access 2007 (HKLM\...\Access) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft Office Excel 2007 (HKLM\...\EXCEL) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Excel 2007 Help Обновление (KB963678) (HKLM\...\{90120000-0016-0419-0000-0000000FF1CE}_EXCEL_{420938DB-BF97-4664-BE29-0C68B4802C00}) (Version: - Microsoft) Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office PowerPoint 2007 (HKLM\...\POWERPOINT) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Powerpoint 2007 Help Обновление (KB963669) (HKLM\...\{90120000-0018-0419-0000-0000000FF1CE}_POWERPOINT_{BD1C2AC7-63F3-4C75-8B44-DE3D700B3BC8}) (Version: - Microsoft) Microsoft Office Word 2007 (HKLM\...\WORD) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Word 2007 Help Обновление (KB963665) (HKLM\...\{90120000-001B-0419-0000-0000000FF1CE}_WORD_{D3A002FB-0F62-4840-80AD-2D2C63F83449}) (Version: - Microsoft) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Mozilla Firefox 26.0 (x86 ru) (HKLM\...\Mozilla Firefox 26.0 (x86 ru)) (Version: 26.0 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML 4.0 SP2 Parser and SDK (HKLM\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) Multi-Function Station Operating Instruction (HKLM\...\{99C61552-08FD-4A64-9DEE-9B1A6782DF39}) (Version: 1.80 - Panasonic System Networks Co., Ltd.) Nero 8 Micro v8.3.2.1 (HKLM\...\Nero8321_Micro_is1) (Version: - www.nero.com) NVIDIA GeForce Experience 1.5.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.5.1 - NVIDIA Corporation) NVIDIA Аудиодрайвер HD 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation) NVIDIA Графический драйвер 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.52 - NVIDIA Corporation) NVIDIA Драйвер 3D Vision 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.52 - NVIDIA Corporation) NVIDIA Драйвер контроллера 3D Vision 320.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 320.49 - NVIDIA Corporation) NVIDIA Системное программное обеспечение PhysX 9.13.0604 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0604 - NVIDIA Corporation) Opera 12.17 (HKLM\...\Opera 12.17.1863) (Version: 12.17.1863 - Opera Software ASA) Opera Stable 50.0.2762.67 (HKLM\...\Opera 50.0.2762.67) (Version: 50.0.2762.67 - Opera Software) Panasonic Easy Print Utility (HKLM\...\{47D884A9-7354-4034-A663-81544A68B386}) (Version: 1.00.0000 - Panasonic System Networks Co., Ltd.) Panasonic V1.15.00RU Статус устройства (HKLM\...\{5061C9FB-BA2D-4498-92B6-5459A0E2F6E3}) (Version: 1.00 - Panasonic System Networks Co., Ltd.) PDF Settings CS5 (HKLM\...\{A78FE97A-C0C8-49CE-89D0-EDD524A17392}) (Version: 10.0 - Adobe Systems Incorporated) Hidden Platform (HKLM\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Hidden PlayClaw 4 (HKLM\...\PlayClaw 4_is1) (Version: 4 - ) PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) Punto Switcher 4.2.6 (HKLM\...\{0F768FC7-B895-4765-8AE5-52DEA4C3EBDB}) (Version: 4.2.6.1275 - Яндекс) Python 2.6.6 (HKLM\...\{6151cf20-0bd8-4023-a4a0-6a86dcfe58e5}) (Version: 2.6.6150 - Python Software Foundation) Qualcomm USB Drivers For Windows (HKLM\...\{D9FB7F91-9687-4B09-894D-072903CADEA4}) (Version: 1.0.14 - QUALCOMM Incorporated) QuickTime 7 (HKLM\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) RaidCall (HKLM\...\RaidCall) (Version: 8.2.0-1.0.3231.155 - raidcall.com.ru) Rise of Nations (HKLM\...\Rise of Nations) (Version: - ) Safari (HKLM\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.) Samsung New PC Studio (HKLM\...\{F193FC0E-9E18-40FC-A974-509A1BDD240A}) (Version: 1.00.0000 - Samsung Electronics Co., Ltd.) Hidden Samsung New PC Studio (HKLM\...\InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}) (Version: 1.00.0000 - Samsung Electronics Co., Ltd.) SAMSUNG PC Share Manager (HKLM\...\InstallShield_{2A2E822B-3B0E-46C1-9E3B-ACD7D1E95139}) (Version: 4.0 - SAMSUNG) SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.3.150.0 - SAMSUNG Electronics Co., Ltd.) Shareman, версия 102.3.75.36 (HKLM\...\Shareman_is1) (Version: 102.3.75.36 - ) Skype™ 7.38 (HKLM\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.38.101 - Skype Technologies S.A.) SopCast 3.8.3 (HKLM\...\SopCast) (Version: 3.8.3 - www.sopcast.com) Space Rangers HD A War Apart, версия 2.1.1650 (HKLM\...\Space Rangers HD A War Apart_is1) (Version: 2.1.1650 - ) Steam (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.11 - TeamSpeak Systems GmbH) The Hobbit (HKLM\...\The Hobbit_is1) (Version: - ) The KMPlayer (HKLM\...\The KMPlayer) (Version: - ) Twonky Windows Components (HKLM\...\{7CC673E7-5271-409D-B196-BB76DA60300B}) (Version: 3.0.3 - PacketVideo) ULauncher (HKU\S-1-5-21-2611090722-3937820500-115396711-1098\...\ULauncher) (Version: 0.29.21 - uwow.biz) UltraISO Premium V9.7 (HKLM\...\UltraISO_is1) (Version: - ) Uninstall Tool 2.3.2 (HKLM\...\Uninstall Tool_is1) (Version: - ) Unity Web Player (HKU\S-1-5-21-2611090722-3937820500-115396711-1098\...\UnityWebPlayer) (Version: 5.3.5f1 - Unity Technologies ApS) Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0016-0000-0000-0000000FF1CE}_EXCEL_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0018-0000-0000-0000000FF1CE}_POWERPOINT_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-001B-0000-0000-0000000FF1CE}_WORD_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Vegas Pro 11.0 (HKLM\...\{B5B98340-0296-11E2-8B8E-F04DA23A5C58}) (Version: 11.0.700 - Sony) VIA Диспетчер устройств платформы (HKLM\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Viber (HKLM\...\{FE02F79A-4DEE-44E6-B432-BCC3BC7D5CC6}) (Version: 8.0.0.4 - Viber Media Inc.) Hidden Viber (HKU\S-1-5-21-2611090722-3937820500-115396711-1098\...\{b03a5a79-b015-477f-95cd-8875e64d7b1e}) (Version: 8.0.0.4 - Viber Media Inc.) Vpn интернет (HKU\S-1-5-21-2611090722-3937820500-115396711-1098\...\Vpn интернет) (Version: - ) WinDjView 0.5 (HKLM\...\WinDjView_is1) (Version: - ) Windows Live ID Sign-in Assistant (HKLM\...\{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}) (Version: 6.500.3165.0 - Microsoft Corporation) Zona (HKLM\...\Zona) (Version: - Zona Team) Архиватор WinRAR (HKLM\...\WinRAR archiver) (Version: - ) Герои Меча и Магии III Полное Собрание HD (HKLM\...\Герои Меча и Магии III Полное Собрание HD_is1) (Version: Герои Меча и Магии III Полное Собрание HD - ) Герои Меча и Магии III: Полное собрание (HKLM\...\{A08343A0-0C33-42AD-921F-2F3080784687}) (Version: - ) Данные 2ГИС г.Магнитогорск 01.02.2018 (HKLM\...\{C67294ED-1FBD-406C-8E71-B907D617D65C}) (Version: 94.0.0 - ООО "ДубльГИС") КОМПАС-3D V15.1 (HKLM\...\{9DFC1F2D-AB0A-4B32-BB75-588677671F9A}) (Version: 15.1.4 - АСКОН) КОМПАС-3D: Машиностроительная конфигурация V15.1 (HKLM\...\{38C5DCED-B4F2-4577-B219-1CE7E16F752C}) (Version: 15.1.0 - АСКОН) КОМПАС-3D: Приборостроительная конфигурация V15.1 (HKLM\...\{7517E857-5EF4-4C0C-9B4B-E58090CE2EE7}) (Version: 15.1.0 - АСКОН) КОМПАС-3D: Строительная конфигурация V15.1 (HKLM\...\{10DA1BBA-AD2D-4BDC-9933-ADCE0EF00C6D}) (Version: 15.1.0 - АСКОН) КОМПАС-Электрик V15.1 (HKLM\...\{9B769C2C-413A-46DB-B178-567067E02769}) (Version: 15.1.0 - АСКОН) Модуль "Фотографии на карте города" для 2ГИС (HKLM\...\{E468C6E0-E3BB-4ABF-BD59-CBA2AB94AA86}) (Version: 1.0.4.0 - ООО "ДубльГИС") Модуль GPS для ДубльГИС (HKLM\...\{96EC845D-3D94-41C6-9DB2-A355A43DEE51}) (Version: 1.12.0 - ООО "ДубльГИС") Обновления NVIDIA 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation) Панель управления NVIDIA 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 347.52 - NVIDIA Corporation) Hidden Поддержка программ Apple (x86) (HKLM\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.) Программное обеспечение Panasonic Multi-Function Station (HKLM\...\{53DE4FAD-F853-44F3-AC39-AD2940E5DD53}) (Version: 1.00 - Panasonic System Networks Co., Ltd.) Страусиные Бега (Удалить) (HKLM\...\Ostrich Runner) (Version: - ) Уличный гонщик (HKLM\...\{0BBB1F77-3A10-4233-AE05-A12475CAE071}) (Version: 1.00.0000 - Akella Inc.) Утилита Мониторинга Магинфо (HKU\S-1-5-21-2611090722-3937820500-115396711-1098\...\Утилита Мониторинга Магинфо) (Version: - ) Хоббит (HKLM\...\{A9348DFB-80EF-40DC-B405-9B17F1B54B3E}) (Version: 1.00.000 - Sierra) Hidden Хоббит (HKLM\...\InstallShield_{A9348DFB-80EF-40DC-B405-9B17F1B54B3E}) (Version: 1.00.000 - Sierra) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-2611090722-3937820500-115396711-1098_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\ADMINPC\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS) CustomCLSID: HKU\S-1-5-21-2611090722-3937820500-115396711-1098_Classes\CLSID\{60B721A1-F7C8-11D2-A02E-0050040618B8}\InprocServer32 -> C:\games\Уличный Гонщик\EaxMan.dll (Creative Labs Custom Engineering) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-11-10] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-11-10] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-11-10] (Google) ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell.dll [2016-03-08] (Piriform Ltd) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2017-11-10] (Google) ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2007-09-21] () ContextMenuHandlers2: [AlcoholShellEx] -> {32020A01-506E-484D-A2A8-BE3CF17601C3} => C:\Program Files\Alcohol Soft\Alcohol 120\AxShlex.dll [2010-03-25] (Alcohol Soft Development Team) ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files\UltraISO\isoshell.dll [2015-10-08] (EZB Systems, Inc.) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2017-11-10] (Google) ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files\UltraISO\isoshell.dll [2015-10-08] (EZB Systems, Inc.) ContextMenuHandlers4: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2007-09-21] () ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2015-02-05] (NVIDIA Corporation) ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell.dll [2016-03-08] (Piriform Ltd) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes) ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files\UltraISO\isoshell.dll [2015-10-08] (EZB Systems, Inc.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2007-09-21] () ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {15BA5387-6805-46B3-BB5E-EE0BFF9E694C} - \Microsoft\Windows\Media Center\PvrScheduleTask -> No File <==== ATTENTION Task: {333221C3-415D-4A8B-905A-9916C8390698} - \{5FD27D74-3EB5-4BF7-9EE3-BC96D3273622} -> No File <==== ATTENTION Task: {3701D301-13E2-44AB-AE58-CEC1DCB56097} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy Task: {3DCEF31F-A19E-4473-A9E2-17BBF5AD3FFA} - \{352F3975-7927-4E46-A15F-ADD29EB87003} -> No File <==== ATTENTION Task: {3EE06AD3-DE0E-4616-B207-DA3513A50011} - \Uninstaller_SkipUac_ADMINPC -> No File <==== ATTENTION Task: {46AE2F6A-D4D3-41AD-85D3-565A2A3A71E5} - \ASC8_SkipUac_ADMINPC -> No File <==== ATTENTION Task: {48406ECB-BC8F-4B14-B613-AD9FFD4DF185} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated) Task: {69BD8113-8182-4F19-954E-AEBA6B2840C0} - \Microsoft\Windows\Media Center\ObjectStoreRecoveryTask -> No File <==== ATTENTION Task: {6F2AFDFC-A694-408A-9421-AF3DA371FA90} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2018-02-06] (Adobe Systems Incorporated) Task: {701B1F0B-271E-4F64-8A87-46BCB1D73ED5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-09] (Google Inc.) Task: {879205FB-FA32-415E-889F-15B8B9B50EBE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-01-09] (Piriform Ltd) Task: {9F8E05B6-FA62-41AE-AF7C-DDD648DF6377} - System32\Tasks\Opera scheduled Autoupdate 1423588213 => C:\Program Files\Opera\launcher.exe [2018-01-22] (Opera Software) Task: {A1CB44CB-2448-4872-A989-5A8D3815CCDC} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_28_0_0_161_pepper.exe [2018-02-06] (Adobe Systems Incorporated) Task: {B3A3E388-97E8-4D99-BEAF-FE97D29A3126} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-01-09] (Piriform Ltd) Task: {C371C524-6063-415A-A4DB-798C11B24A2F} - System32\Tasks\{D14334D4-69EC-4A05-85ED-099EEF97444D} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\Uninstall Tool\utool.exe" -d C:\Users\Михаил\Desktop Task: {CA7081B5-3E3C-4AC9-8BD0-567805558524} - \Microsoft\Windows\Media Center\SqlLiteRecoveryTask -> No File <==== ATTENTION Task: {D2B0E496-F66B-4904-BA21-3B812775EFC8} - \{AB94AC57-C6DA-46A8-8809-5CBB9BC7D470} -> No File <==== ATTENTION Task: {D8CB1F7C-4BFA-419D-BF50-9D7CEDD24C1C} - \Microsoft\Windows\Media Center\MediaCenterRecoveryTask -> No File <==== ATTENTION Task: {E8944A78-8488-41D6-828A-D9BB02977BAC} - System32\Tasks\{B2A7495D-6CA6-4301-9612-85B006180321} => "c:\program files\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/7.24.85.104/ru/abandoninstall?page=tsProgressBar Task: {EAA06BE8-CE8D-42AE-95E8-1867109905B4} - \Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan -> No File <==== ATTENTION Task: {FE1DC830-6FF8-44B2-8970-559EC0688520} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-09] (Google Inc.) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) Shortcut: C:\Users\ADMINPC\Links\Google Диск.lnk -> C:\Users\ADMINPC\Google Диск () <==== Cyrillic Shortcut: C:\Users\ADMINPC\Links\Загрузки.lnk -> C:\Downloads () <==== Cyrillic Shortcut: C:\Users\ADMINPC\Desktop\Страусиные Бега.lnk -> C:\Program Files\Ostrich Runner\ORunner.exe () <==== Cyrillic Shortcut: C:\Users\ADMINPC\Desktop\Программы\КОМПАС-3D V15.lnk -> C:\Program Files\ASCON\KOMPAS-3D V15\Bin\KOMPAS.Exe (ASCON-Design systems, LLC (Russia)) <==== Cyrillic Shortcut: C:\Users\ADMINPC\Desktop\Программы\Программное обеспечение Multi-Function Station.lnk -> C:\Program Files\Panasonic\MFStation\PcMFStation.exe (Panasonic System Networks Co., Ltd. ) <==== Cyrillic Shortcut: C:\Users\ADMINPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Интернет Магинфо\Магинфо PPPoE.lnk -> C:\Windows\System32\rasphone.exe (Microsoft Corporation) <==== Cyrillic Shortcut: C:\Users\ADMINPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Интернет Магинфо\Удалить Vpn интернет.lnk -> C:\ProgramData\Интернет Магинфо PPPoE\uninstall.exe () <==== Cyrillic Shortcut: C:\Users\ADMINPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maginfo\DiagnosticUtility\Uninstall Утилита Мониторинга Магинфо.lnk -> C:\Program Files\Maginfo\DiagnosticUtility\uninstall.exe () <==== Cyrillic Shortcut: C:\Users\ADMINPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maginfo\DiagnosticUtility\АДИС - Ассистент Диагностики и Исправления Сети.lnk -> C:\Program Files\Maginfo\DiagnosticUtility\MgnAutoDiag.exe (Maginfo) <==== Cyrillic Shortcut: C:\Users\ADMINPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Akella Games\Уличный гонщик\Руководство пользователя.lnk -> C:\games\Уличный Гонщик\Manual\Manual_RUSSIAN.pdf () <==== Cyrillic Shortcut: C:\Users\ADMINPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Akella Games\Уличный гонщик\Удалить игру.lnk -> C:\Windows\System32\msiexec.exe (Microsoft Corporation) <==== Cyrillic Shortcut: C:\Users\ADMINPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Akella Games\Уличный гонщик\Уличный гонщик.lnk -> C:\Users\ADMINPC\AppData\Roaming\Microsoft\Installer\{0BBB1F77-3A10-4233-AE05-A12475CAE071}\_E64E29D0D150_406E_9561_EB57983CCC35.exe () <==== Cyrillic Shortcut: C:\Users\ADMINPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Akella Games\Уличный гонщик\Установка видеодрайвера.lnk -> C:\Users\ADMINPC\AppData\Roaming\Microsoft\Installer\{0BBB1F77-3A10-4233-AE05-A12475CAE071}\_E64E29D0D150_406E_9561_EB57983CCC35.exe () <==== Cyrillic Shortcut: C:\Users\ADMINPC\AppData\Roaming\Microsoft\Windows\SendTo\МойМир@Mail.ru.lnk -> C:\Users\ADMINPC\AppData\Local\Mail.Ru\GameCenter\GameCenter@Mail.Ru.exe (No File) <==== Cyrillic Shortcut: C:\Users\ADMINPC\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Программное обеспечение Multi-Function Station.lnk -> C:\Program Files\Panasonic\MFStation\PcMFStation.exe (Panasonic System Networks Co., Ltd. ) <==== Cyrillic ==================== Loaded Modules (Whitelisted) ============== 2013-05-11 23:23 - 2015-02-05 23:27 - 000108864 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll 2016-09-01 18:13 - 2016-09-01 18:13 - 000080184 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2016-10-05 18:18 - 2016-10-05 18:18 - 001041720 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2013-01-03 20:51 - 2013-01-03 20:51 - 000076888 _____ () C:\Windows\system32\PnkBstrA.exe 2018-02-06 14:00 - 2017-11-29 09:11 - 001798608 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll 2018-02-06 14:00 - 2017-11-29 09:11 - 001934792 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2018-01-30 15:37 - 2018-01-30 15:37 - 000047688 _____ () C:\Users\ADMINPC\AppData\Local\Viber\qrencode.dll 2018-01-30 15:37 - 2018-01-30 15:37 - 011123272 _____ () C:\Users\ADMINPC\AppData\Local\Viber\ViberRTC.dll 2018-01-30 15:38 - 2018-01-30 15:38 - 000483912 _____ () C:\Users\ADMINPC\AppData\Local\Viber\imageformats\qsvg.dll 2018-02-08 17:10 - 2018-02-01 10:58 - 003730264 _____ () C:\Program Files\Google\Chrome\Application\64.0.3282.140\libglesv2.dll 2018-02-08 17:10 - 2018-02-01 10:58 - 000085848 _____ () C:\Program Files\Google\Chrome\Application\64.0.3282.140\libegl.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2014-06-17 18:50 - 2015-11-23 20:48 - 000000077 _____ C:\Windows\system32\Drivers\etc\hosts ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2611090722-3937820500-115396711-1098\Control Panel\Desktop\\Wallpaper -> C:\Users\ADMINPC\AppData\Roaming\FastStone\FSIV\FSViewerWallPaper.bmp DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [TCP Query User{BA841D4F-6960-48EF-A540-A284D69945B4}C:\program files\maginfo\diagnosticutility\mgnautodiag.exe] => (Allow) C:\program files\maginfo\diagnosticutility\mgnautodiag.exe FirewallRules: [UDP Query User{7B0A16FE-DDD8-4C15-8F6A-C9072A756634}C:\program files\maginfo\diagnosticutility\mgnautodiag.exe] => (Allow) C:\program files\maginfo\diagnosticutility\mgnautodiag.exe FirewallRules: [{ABFD11B9-BF88-4B78-A96F-2FA9526C5E67}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe FirewallRules: [{C17809C0-8E1A-4696-A9F5-E3D7548F9293}] => (Allow) C:\Program Files\Opera\opera.exe FirewallRules: [{702D0FAD-C607-4BFB-8543-8247745FA9DD}] => (Allow) C:\Program Files\Opera\opera.exe FirewallRules: [TCP Query User{54B7E740-FBBE-42D2-8C38-374CC356C573}C:\program files\maginfo\diagnosticutility\mgnautodiag.exe] => (Allow) C:\program files\maginfo\diagnosticutility\mgnautodiag.exe FirewallRules: [UDP Query User{7F4F3A22-E5A9-4C07-B77F-61E78C3B41BC}C:\program files\maginfo\diagnosticutility\mgnautodiag.exe] => (Allow) C:\program files\maginfo\diagnosticutility\mgnautodiag.exe FirewallRules: [{EB380171-95AF-49FD-9909-3C9F0C68ACF5}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [{C2512403-8F39-4235-9954-DF44923A86CD}] => (Allow) C:\Windows\System32\PnkBstrA.exe FirewallRules: [{FAEFBC33-02A1-4D88-8E0D-8E43A8FDBEE5}] => (Allow) C:\Windows\System32\PnkBstrA.exe FirewallRules: [{D7EBE268-0B3A-4250-AFAD-10DF9DFA8FCF}] => (Allow) C:\Windows\System32\PnkBstrB.exe FirewallRules: [{E613098C-64FF-4DEC-9A04-0D5F8C7656BC}] => (Allow) C:\Windows\System32\PnkBstrB.exe FirewallRules: [TCP Query User{280815E3-C6EF-497E-AF8B-C25343E3DC36}C:\games\far cry 3\bin\farcry3.exe] => (Allow) C:\games\far cry 3\bin\farcry3.exe FirewallRules: [UDP Query User{80D3ECE2-B703-4B82-A9CE-37EACDA01261}C:\games\far cry 3\bin\farcry3.exe] => (Allow) C:\games\far cry 3\bin\farcry3.exe FirewallRules: [{C0104B7A-6547-436C-8ED5-8548E5E589F9}] => (Allow) C:\Windows\explorer.exe FirewallRules: [{1B75A59C-AFAF-4DB0-A3D2-FA39D410351F}] => (Allow) C:\Windows\explorer.exe FirewallRules: [{618342A1-C546-4693-8572-AA5B13DC7009}] => (Allow) C:\Program Files\Opera\opera.exe FirewallRules: [{2EFB0312-0FF5-4280-868E-498FF58D832C}] => (Allow) C:\Program Files\Opera\opera.exe FirewallRules: [TCP Query User{331BB726-DDC8-47F1-A8BF-5F610DC66134}C:\program files\maginfo\maginfo\serviceupdater\temp\diagnosticutility\mgnautodiag.exe] => (Allow) C:\program files\maginfo\maginfo\serviceupdater\temp\diagnosticutility\mgnautodiag.exe FirewallRules: [UDP Query User{FE2F1F94-4E23-4347-857A-BD017D5E12FC}C:\program files\maginfo\maginfo\serviceupdater\temp\diagnosticutility\mgnautodiag.exe] => (Allow) C:\program files\maginfo\maginfo\serviceupdater\temp\diagnosticutility\mgnautodiag.exe FirewallRules: [{BD4D1DE9-30E6-4536-813A-50E5D46C572E}] => (Block) C:\program files\maginfo\maginfo\serviceupdater\temp\diagnosticutility\mgnautodiag.exe FirewallRules: [{7F532296-1D31-45B1-B31C-47DA0D34FA0F}] => (Block) C:\program files\maginfo\maginfo\serviceupdater\temp\diagnosticutility\mgnautodiag.exe FirewallRules: [TCP Query User{DC727F34-89A3-4524-8D27-1198BBC95967}C:\windows\system32\javaw.exe] => (Allow) C:\windows\system32\javaw.exe FirewallRules: [UDP Query User{6E4ED802-74AF-4743-BE91-FF6B55B3E156}C:\windows\system32\javaw.exe] => (Allow) C:\windows\system32\javaw.exe FirewallRules: [TCP Query User{CC8EB8F9-EB82-4AA2-952A-224B07452C96}C:\program files\philips\mediamanager\twonkymanager.exe] => (Allow) C:\program files\philips\mediamanager\twonkymanager.exe FirewallRules: [UDP Query User{6A3948BB-3517-4563-895A-B350652C53DC}C:\program files\philips\mediamanager\twonkymanager.exe] => (Allow) C:\program files\philips\mediamanager\twonkymanager.exe FirewallRules: [TCP Query User{39B5319A-24BF-44F9-97C4-BB0450958FAE}C:\program files\philips\mediamanager\twonkyrenderer.exe] => (Allow) C:\program files\philips\mediamanager\twonkyrenderer.exe FirewallRules: [UDP Query User{855497AC-3B1B-41D9-A2ED-CD41CFC0EBD4}C:\program files\philips\mediamanager\twonkyrenderer.exe] => (Allow) C:\program files\philips\mediamanager\twonkyrenderer.exe FirewallRules: [{6DC43B6D-489B-40E2-889D-5407E3B39995}] => (Allow) C:\Program Files\Twonky\TwonkyServer\twonkystarter.exe FirewallRules: [{CF3541A2-D5E6-41AC-AE98-7F03BA362692}] => (Allow) C:\Program Files\Twonky\TwonkyServer\twonkystarter.exe FirewallRules: [{26ECDAB4-0EE5-4624-96C7-C21FCE820C76}] => (Allow) C:\Program Files\Twonky\TwonkyServer\twonkyserver.exe FirewallRules: [{C5BDCFE3-6EBB-4685-A7AA-EE28DDC55A87}] => (Allow) C:\Program Files\Twonky\TwonkyServer\twonkyserver.exe FirewallRules: [TCP Query User{D753DFB1-308F-401C-8CCE-153E24732B83}C:\games\dishonored\binaries\win32\dishonored.exe] => (Allow) C:\games\dishonored\binaries\win32\dishonored.exe FirewallRules: [UDP Query User{458A7E62-3156-444D-9813-28B315D6E50F}C:\games\dishonored\binaries\win32\dishonored.exe] => (Allow) C:\games\dishonored\binaries\win32\dishonored.exe FirewallRules: [TCP Query User{07FBB099-C4F3-4F86-BC4A-29949059B823}C:\games\micgamecs\hlds.exe] => (Allow) C:\games\micgamecs\hlds.exe FirewallRules: [UDP Query User{4A2C0DB9-4A64-47F4-ABFA-A4375EFFAC7C}C:\games\micgamecs\hlds.exe] => (Allow) C:\games\micgamecs\hlds.exe FirewallRules: [TCP Query User{E0C69A10-1145-40E1-85C3-92EFBAB410C5}C:\games\micgamecs\hl.exe] => (Allow) C:\games\micgamecs\hl.exe FirewallRules: [UDP Query User{B12E8774-A336-47CA-8938-E10F90747505}C:\games\micgamecs\hl.exe] => (Allow) C:\games\micgamecs\hl.exe FirewallRules: [{488165A9-9A2B-4767-8E7C-2C34923F13AA}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{85465E47-3ACD-4291-9415-6E372DA0E4EC}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [TCP Query User{23FB467F-D2AB-4EC8-A714-8A59B6A464C6}C:\program files\philips\mediamanager\twonkymanager.exe] => (Block) C:\program files\philips\mediamanager\twonkymanager.exe FirewallRules: [UDP Query User{EA6BF731-2E80-4FD4-BDE7-16A1FCFE29C3}C:\program files\philips\mediamanager\twonkymanager.exe] => (Block) C:\program files\philips\mediamanager\twonkymanager.exe FirewallRules: [TCP Query User{48E90DB7-785F-4510-8F9F-8DDB60415609}C:\games\starcraft\starcraft.exe] => (Allow) C:\games\starcraft\starcraft.exe FirewallRules: [UDP Query User{10A5DBBA-1D04-459C-8889-83D9032BCB0A}C:\games\starcraft\starcraft.exe] => (Allow) C:\games\starcraft\starcraft.exe FirewallRules: [TCP Query User{F8CEBD7E-7CA7-464D-91E8-13829174B4B4}C:\games\starcraft\starcraft.exe] => (Allow) C:\games\starcraft\starcraft.exe FirewallRules: [UDP Query User{F9D296A4-7930-4DDF-89C7-C16455C41888}C:\games\starcraft\starcraft.exe] => (Allow) C:\games\starcraft\starcraft.exe FirewallRules: [TCP Query User{ED3769D9-6776-405E-BBBC-6E227784D6C0}C:\program files\philips\mediamanager\twonkyrenderer.exe] => (Allow) C:\program files\philips\mediamanager\twonkyrenderer.exe FirewallRules: [UDP Query User{1A4BB7D2-A343-4CF2-8851-90BB28DF8859}C:\program files\philips\mediamanager\twonkyrenderer.exe] => (Allow) C:\program files\philips\mediamanager\twonkyrenderer.exe FirewallRules: [{7B31D044-1144-426E-BAA1-042717B978F1}] => (Allow) C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe FirewallRules: [{3194F84E-A384-4E84-8462-38406A777C36}] => (Allow) C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe FirewallRules: [{17E99C3C-1568-4D2D-98E8-6B1F8E4D924A}] => (Allow) C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe FirewallRules: [{94FEDA4A-A5E1-4C42-8022-A4B7A0BA4CE6}] => (Allow) C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe FirewallRules: [{2444C5B4-07C7-4EC6-AA0F-A96AB104A348}] => (Allow) C:\Program Files\Steam\Steam.exe FirewallRules: [{4E8597BC-906B-45CE-A6F1-8067DEF56794}] => (Allow) C:\Program Files\Steam\Steam.exe FirewallRules: [{A00C6EA5-1968-4CA3-91BF-0E6DD2B73907}] => (Allow) C:\Users\ADMINPC\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{EFACF0CA-9069-4C12-BA6E-F84A76D0C8D9}] => (Allow) C:\Users\ADMINPC\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{B25AA9B4-C0DE-4C63-922F-5D29423EBDE4}C:\program files\steam\steam.exe] => (Allow) C:\program files\steam\steam.exe FirewallRules: [UDP Query User{962B3F6C-2DC6-4CDE-9662-DA5A581F0448}C:\program files\steam\steam.exe] => (Allow) C:\program files\steam\steam.exe FirewallRules: [TCP Query User{970204C0-9A57-4551-B617-DB6AC2394A49}C:\games\counte strike source\hl2.exe] => (Allow) C:\games\counte strike source\hl2.exe FirewallRules: [UDP Query User{30175188-EC9C-4214-BCCF-B291C62003BB}C:\games\counte strike source\hl2.exe] => (Allow) C:\games\counte strike source\hl2.exe FirewallRules: [{A9828E64-4F21-47EA-A20F-64B11FDF4AF0}] => (Allow) C:\games\Battle.net\Battle.net.exe FirewallRules: [{F5AE9EC0-9023-4D0D-87C0-233533FF63A2}] => (Allow) C:\games\Battle.net\Battle.net.exe FirewallRules: [{9D4716AF-BB1F-450B-A083-276A43CC225F}] => (Allow) LPort=2869 FirewallRules: [{51F5E084-99C4-4239-B711-F9F638165C16}] => (Allow) LPort=1900 FirewallRules: [TCP Query User{7E07FC29-0B05-4472-B96D-2E485F9A505A}C:\program files\sopcast\sopcast.exe] => (Allow) C:\program files\sopcast\sopcast.exe FirewallRules: [UDP Query User{85F75CB1-7959-4EF5-8C71-038AD7038354}C:\program files\sopcast\sopcast.exe] => (Allow) C:\program files\sopcast\sopcast.exe FirewallRules: [{19168074-6A6F-4ED5-B167-869AE71728F3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe FirewallRules: [{F7576E14-6FF2-4281-B4A1-2859B1041537}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe FirewallRules: [{4D7030DC-BCC9-4667-B542-F925B6B613C2}] => (Allow) C:\Users\ADMINPC\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{5B68B605-26F0-40BE-8406-E7BA5E514130}] => (Allow) C:\Users\ADMINPC\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{6BEF9926-E15B-4723-B3EE-185906D998B4}] => (Allow) C:\games\Hearthstone\Hearthstone\Hearthstone.exe FirewallRules: [{D9B32D7B-62CD-45F1-9B46-9D8EF7542DB1}] => (Allow) C:\games\Hearthstone\Hearthstone\Hearthstone.exe FirewallRules: [{DB3E78F9-3FFF-404A-9699-8275240C6404}] => (Allow) C:\Program Files\Shareman\Shareman.exe FirewallRules: [{596AF9CF-5CB5-413B-AF02-30F2FFEBE7CC}] => (Allow) C:\Program Files\Shareman\Shareman.exe FirewallRules: [{10E2DE28-F6D6-4909-8920-9FAF5A0B13CC}] => (Allow) C:\PROGRA~1\PANASO~1\TRAPMO~1\Trapmnnt.exe FirewallRules: [{99AE35BF-1066-4B64-8A1D-F52BF15FC42C}] => (Allow) C:\PROGRA~1\PANASO~1\TRAPMO~1\Trapmnnt.exe FirewallRules: [{A0B45C2B-A22F-4A09-862E-4B4A2B6C5E2C}] => (Allow) C:\Program Files\Panasonic\Device Monitor\DMList.exe FirewallRules: [{F1FAD597-C301-4BCC-9C0E-5028E2E64230}] => (Allow) C:\Program Files\Panasonic\Device Monitor\DMList.exe FirewallRules: [TCP Query User{61EF9C1B-5BA0-4C80-8E8B-D5A34D5617CA}C:\games\counte strike source\hl2.exe] => (Block) C:\games\counte strike source\hl2.exe FirewallRules: [UDP Query User{8BDBF622-8B87-4BB6-AD75-25F5B6C3B0F3}C:\games\counte strike source\hl2.exe] => (Block) C:\games\counte strike source\hl2.exe FirewallRules: [{3BD6303C-E0F3-46AA-912D-B1C4D12242C3}] => (Allow) C:\Windows\system32\hasplms.exe FirewallRules: [TCP Query User{90BE7E01-61AB-4A09-A82A-387CD1C67722}C:\program files\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{833A0CD8-640D-4FEE-8FF3-851E6CF92134}C:\program files\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_25\bin\javaw.exe FirewallRules: [{B88DA3A8-6D87-4E37-94B6-E1790F55667F}] => (Allow) C:\Windows\system32\hasplms.exe FirewallRules: [{6DB9250A-5185-48B9-B821-0D34DFF94818}] => (Allow) C:\Windows\system32\hasplms.exe FirewallRules: [{DEEC3CA8-005C-4B25-AB20-D62C6860A68C}] => (Allow) C:\Windows\system32\hasplms.exe FirewallRules: [{454847C0-2581-4836-A325-729C5F5A8933}] => (Allow) C:\Program Files\Steam\SteamApps\common\dota 2 beta\game\bin\win32\dota2.exe FirewallRules: [{42A4496A-5990-4DBB-926D-5E399FF8A30A}] => (Allow) C:\Program Files\Steam\SteamApps\common\dota 2 beta\game\bin\win32\dota2.exe FirewallRules: [{C5958AF1-C57E-440D-BD1C-F29CDF496B79}] => (Allow) C:\Users\ADMINPC\AppData\Roaming\Acer\AcerEXTEND\FunctModules\{3AE3E562-DDCD-4188-B625-892B932ACCF2}\AcerEXTENDSvc.exe FirewallRules: [{B2E27CB3-9C9E-4831-BCCA-E91AEE2F770B}] => (Allow) C:\Users\ADMINPC\AppData\Roaming\Acer\AcerEXTEND\FunctModules\{3AE3E562-DDCD-4188-B625-892B932ACCF2}\AcerEXTENDSvc.exe FirewallRules: [{2BE49FDC-3656-4AE7-B1A8-507B6F48382D}] => (Allow) LPort=30122 FirewallRules: [{381B32FE-8212-4D91-B6A3-37EE76DA9372}] => (Allow) LPort=30122 FirewallRules: [{3B24E1B5-F030-4EC0-8706-322FBE67146C}] => (Allow) LPort=59888 FirewallRules: [TCP Query User{1F1CB39D-DECE-47FE-83D9-2CE0A6198F4D}C:\users\adminpc\appdata\roaming\acer\acerextend\functmodules\{365c4421-38a3-4de4-9656-dc22f9dcdc34}\asmainapp.exe] => (Allow) C:\users\adminpc\appdata\roaming\acer\acerextend\functmodules\{365c4421-38a3-4de4-9656-dc22f9dcdc34}\asmainapp.exe FirewallRules: [UDP Query User{F6395F99-9DC8-4FCE-BDCD-E2303C715AFE}C:\users\adminpc\appdata\roaming\acer\acerextend\functmodules\{365c4421-38a3-4de4-9656-dc22f9dcdc34}\asmainapp.exe] => (Allow) C:\users\adminpc\appdata\roaming\acer\acerextend\functmodules\{365c4421-38a3-4de4-9656-dc22f9dcdc34}\asmainapp.exe FirewallRules: [{85910CA4-B2FA-407F-893A-C1EF4A91F69E}] => (Allow) C:\games\Hearthstone\Heroes of the Storm\Versions\Base48297\HeroesOfTheStorm.exe FirewallRules: [{CF8B5EEA-AA41-4F7B-B566-5C74676B9097}] => (Allow) C:\games\Hearthstone\Heroes of the Storm\Versions\Base48297\HeroesOfTheStorm.exe FirewallRules: [{9CB69B0D-DD1F-4F1E-BA1C-F550CE314C4B}] => (Allow) C:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{9FD4FEC0-D40C-48C2-90FE-D47CBD7B71BC}] => (Allow) C:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{DEFD7E53-F523-45E4-BF24-E374B40E751E}] => (Allow) C:\Program Files\RaidCall.RU\rcplugin.exe FirewallRules: [{B3D230DA-0B26-4430-9DEA-669FEE338856}] => (Allow) C:\Program Files\RaidCall.RU\rcplugin.exe FirewallRules: [{CC9955D1-78AD-416C-A22B-04AB3AF5466F}] => (Allow) C:\Program Files\RaidCall.RU\rcplugin.exe FirewallRules: [{038C7A84-DE67-4A02-8288-EB8998441B41}] => (Allow) C:\Program Files\RaidCall.RU\rcplugin.exe FirewallRules: [{3032CD08-1F40-49AC-BA04-8E0E9B8404D1}] => (Allow) C:\Users\ADMINPC\Desktop\ULauncher.exe FirewallRules: [{C72F25C3-0C5D-4E40-A0BE-445DE7A42C89}] => (Allow) C:\Users\ADMINPC\Desktop\ULauncher.exe FirewallRules: [{956CE62A-DEA2-4027-BDD4-FFF6C6A33E8C}] => (Allow) C:\Program Files\Opera\50.0.2762.58\opera.exe FirewallRules: [{CBA75231-ABFB-4408-B69F-7553BE1D242C}] => (Allow) C:\Program Files\Opera\50.0.2762.67\opera.exe FirewallRules: [{642DABFB-17AC-4D19-9452-DF6056FE9F39}] => (Allow) C:\Program Files\Zona\Zona.exe FirewallRules: [{942D1496-5540-4ECB-BE02-E40899F089F4}] => (Allow) C:\Program Files\Zona\Zona.exe FirewallRules: [{D19352A2-945D-4A4A-B20F-396C354F2960}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Restore Points ========================= Check "winmgmt" service or repair WMI. ==================== Faulty Device Manager Devices ============= Name: Teredo Tunneling Pseudo-Interface Description: Туннельный адаптер Microsoft Teredo Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (02/10/2018 10:34:30 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (02/10/2018 10:32:49 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Ошибка теневого копирования тома: Непредвиденная ошибка при вызове подпрограммы RegOpenKeyExW(-2147483646,SYSTEM\CurrentControlSet\Services\VSS\Diag,...).. hr = 0x80070005, Отказано в доступе. . Операция: Инициализация модуля записи Контекст: Код класса модуля записи: {e8132975-6f93-4464-a53e-1050253ae220} Имя модуля записи: System Writer Код экземпляра модуля записи: {4af97772-192b-45e8-978f-91aae73e69d3} Error: (02/10/2018 11:34:20 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (02/10/2018 11:32:38 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Ошибка теневого копирования тома: Непредвиденная ошибка при вызове подпрограммы RegOpenKeyExW(-2147483646,SYSTEM\CurrentControlSet\Services\VSS\Diag,...).. hr = 0x80070005, Отказано в доступе. . Операция: Инициализация модуля записи Контекст: Код класса модуля записи: {e8132975-6f93-4464-a53e-1050253ae220} Имя модуля записи: System Writer Код экземпляра модуля записи: {88f3b061-ebb5-4a48-a7eb-b353ab154460} Error: (02/10/2018 08:26:36 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Ошибка при создании контекста активации для "c:\program files\android_driver_install\64bit\DPInst.exe". Не найдена зависимая сборка "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"". Используйте sxstrace.exe для подробной диагностики. Error: (02/10/2018 07:54:20 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (02/10/2018 07:52:38 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Ошибка теневого копирования тома: Непредвиденная ошибка при вызове подпрограммы RegOpenKeyExW(-2147483646,SYSTEM\CurrentControlSet\Services\VSS\Diag,...).. hr = 0x80070005, Отказано в доступе. . Операция: Инициализация модуля записи Контекст: Код класса модуля записи: {e8132975-6f93-4464-a53e-1050253ae220} Имя модуля записи: System Writer Код экземпляра модуля записи: {1665f678-66d2-4f23-87f4-c3bb11fe7379} Error: (02/09/2018 09:48:30 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (02/09/2018 09:46:48 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Ошибка теневого копирования тома: Непредвиденная ошибка при вызове подпрограммы RegOpenKeyExW(-2147483646,SYSTEM\CurrentControlSet\Services\VSS\Diag,...).. hr = 0x80070005, Отказано в доступе. . Операция: Инициализация модуля записи Контекст: Код класса модуля записи: {e8132975-6f93-4464-a53e-1050253ae220} Имя модуля записи: System Writer Код экземпляра модуля записи: {81747940-9542-4466-ac26-8ce4615755a7} Error: (02/09/2018 07:16:45 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. System errors: ============= Error: (02/10/2018 10:33:37 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Служба "Группировка сетевых участников" является зависимой от службы "Протокол PNRP", которую не удалось запустить из-за ошибки %%-2140993535 Error: (02/10/2018 10:33:37 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Служба "Протокол PNRP" завершена из-за ошибки %%-2140993535 Error: (02/10/2018 10:33:37 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Служба "Группировка сетевых участников" является зависимой от службы "Протокол PNRP", которую не удалось запустить из-за ошибки %%-2140993535 Error: (02/10/2018 10:33:37 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Служба "Протокол PNRP" завершена из-за ошибки %%-2140993535 Error: (02/10/2018 10:33:37 PM) (Source: PNRPSvc) (EventID: 102) (User: ) Description: Облако протокола PNRP не запущено из-за сбоя при создании удостоверения по умолчанию; код ошибки: 0x80630801. Error: (02/10/2018 10:33:37 PM) (Source: PNRPSvc) (EventID: 102) (User: ) Description: Облако протокола PNRP не запущено из-за сбоя при создании удостоверения по умолчанию; код ошибки: 0x80630801. Error: (02/10/2018 10:33:26 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Служба "Группировка сетевых участников" является зависимой от службы "Протокол PNRP", которую не удалось запустить из-за ошибки %%-2140993535 Error: (02/10/2018 10:33:26 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Служба "Протокол PNRP" завершена из-за ошибки %%-2140993535 Error: (02/10/2018 10:33:26 PM) (Source: PNRPSvc) (EventID: 102) (User: ) Description: Облако протокола PNRP не запущено из-за сбоя при создании удостоверения по умолчанию; код ошибки: 0x80630801. Error: (02/10/2018 10:32:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Сбой при запуске службы "WebcamMax, WDM Video Capture" из-за ошибки Указанная служба не может быть запущена, поскольку она отключена или все связанные с ней устройства отключены. CodeIntegrity: =================================== Date: 2017-06-19 11:08:38.591 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\ADMINPC\AppData\Local\Temp\FE4D1F83.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-06-19 11:08:38.591 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\ADMINPC\AppData\Local\Temp\FE4D1F83.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz Percentage of memory in use: 39% Total physical RAM: 3575.05 MB Available physical RAM: 2165.25 MB Total Virtual: 8935.35 MB Available Virtual: 7369.72 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:1348.34 GB) (Free:1112.72 GB) NTFS Drive d: (Хранилище) (Fixed) (Total:48.83 GB) (Free:39.6 GB) NTFS \\?\Volume{e525a71c-49f1-11e2-b4cd-806e6f6e6963}\ (Зарезервировано системой) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1397.3 GB) (Disk ID: E74B6F19) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=1348.3 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=48.8 GB) - (Type=07 NTFS) ==================== End of Addition.txt ============================