Additional scan result of Farbar Recovery Scan Tool (x64) Version:04-10-2015 Ran by MARK (2016-09-25 06:58:37) Running from C:\Users\MARK\Downloads\Programs Windows 7 Ultimate Service Pack 1 (X64) (2016-09-23 09:17:28) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-678541255-2295460757-2273824982-500 - Administrator - Disabled) Guest (S-1-5-21-678541255-2295460757-2273824982-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-678541255-2295460757-2273824982-1002 - Limited - Enabled) MARK (S-1-5-21-678541255-2295460757-2273824982-1000 - Administrator - Enabled) => C:\Users\MARK ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 7-Zip 15.14 (HKLM-x32\...\7-Zip) (Version: 15.14 - Igor Pavlov) Adobe Flash Player 21 ActiveX & Plugins 64-bit (HKLM\...\Adobe Flash Player ActiveX) (Version: 21.0.0.213 - Adobe Systems Incorporated) Adobe Shockwave Player 12.0 (HKLM-x32\...\{AA3B06B1-E89A-43C6-A26B-7109DB4BEE7B}) (Version: 12.0.7.148 - Adobe Systems, Inc) Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.3.7 - Sereby Corporation) AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.52.2.34122 - AVG Technologies) AVG PC TuneUp (x32 Version: 16.52.2 - AVG Technologies) Hidden Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB) Blur (HKLM-x32\...\Blur_R.G. Mechanics_is1) (Version: - R.G. Mechanics, ProZorg_tm) CCleaner (HKLM\...\CCleaner) (Version: 5.22 - Piriform) ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB) FMW 1 (Version: 1.122.3 - AVG Technologies) Hidden Google Chrome (HKU\S-1-5-21-678541255-2295460757-2273824982-1000\...\Google Chrome) (Version: 53.0.2785.101 - Google Inc.) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4358 - Intel Corporation) Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.) Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle) Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle) Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - ) Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM-x32\...\M2698023) (Version: - ) Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM-x32\...\M2833941) (Version: - ) Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM-x32\...\M979906) (Version: - ) Microsoft .NET Framework 1.1 SP1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: - ) Microsoft .NET Framework 1.1 SP1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - ) Microsoft .NET Framework 4.6.1 Hotfix Rollup (KB3120241) (HKLM\...\{46556DC7-EFC0-361E-832E-E0A9B0D2EFAB}) (Version: 4.6.01067 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60830 (HKLM-x32\...\{c7ed0d4c-89c5-47fc-9e89-1088affe63f3}) (Version: 11.0.60830.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60830 (HKLM-x32\...\{9dba0447-b749-41ea-90bc-2aa19a9eb580}) (Version: 11.0.60830.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{90ffcee5-8608-4e94-8c18-a4feb4f83fb8}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version: - Microsoft Corporation) Need for Speed™ Most Wanted (HKLM-x32\...\{FB0127F3-985B-44CE-AE29-378CAF60B361}) (Version: 1.5.0.0 - Electronic Arts) NVIDIA GeForce Experience 3.0.6.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.0.6.48 - NVIDIA Corporation) NVIDIA PhysX (Legacy) (HKLM-x32\...\{FAAC26AD-73BA-40CE-86AA-C9213F9E064A}) (Version: 9.13.0604 - NVIDIA Corporation) NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) NvNodejs (Version: 3.0.6.48 - NVIDIA Corporation) Hidden NvTelemetry (Version: 1.0.0.0 - NVIDIA Corporation) Hidden Origin (HKLM-x32\...\Origin) (Version: 10.0.2.33129 - Electronic Arts, Inc.) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 7.3.26.13113 - Razer Inc.) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7807 - Realtek Semiconductor Corp.) SAM CoDeC Pack (HKLM\...\SAM CoDeC Pack) (Version: 5.85 - www.SamLab.ws) SHIELD Streaming (Version: 7.1.0310 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 3.0.6.48 - NVIDIA Corporation) Hidden TechUtilities (HKLM\...\TechUtilities_is1) (Version: 1.1.1.8 - Seven Servos Software Pvt Ltd.) VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: - Elaborate Bytes) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-678541255-2295460757-2273824982-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\MARK\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-678541255-2295460757-2273824982-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation) CustomCLSID: HKU\S-1-5-21-678541255-2295460757-2273824982-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\MARK\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll (Google Inc.) ==================== Restore Points ========================= 23-09-2016 16:21:31 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 23-09-2016 16:23:02 Installed Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 23-09-2016 16:24:29 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60830 23-09-2016 16:25:01 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 23-09-2016 16:25:30 Installed Microsoft .NET Framework 1.1 23-09-2016 16:29:42 Installed Adobe Shockwave Player 12.0. 23-09-2016 18:05:05 Installed DirectX 23-09-2016 21:40:14 Installed DirectX 23-09-2016 21:51:47 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 23-09-2016 21:52:17 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 24-09-2016 08:38:50 Installed DirectX ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 05:34 - 2016-09-25 06:39 - 00000905 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 iraqiads1.blogspot.com 127.0.0.1 www.iraqiads1.blogspot.com ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {04B82475-51EA-4CF5-9ABB-87FCE66D5B56} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-09-17] (NVIDIA Corporation) Task: {090F8F90-92A5-4BE9-AD17-C10A7E08C194} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-09-17] (NVIDIA Corporation) Task: {43EED79A-90F8-4D9D-AB10-73585C36E646} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-09-17] (NVIDIA Corporation) Task: {444F3FCC-BAE7-4FA8-8458-4BB420AACF35} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-678541255-2295460757-2273824982-1000UA => C:\Users\MARK\AppData\Local\Google\Update\GoogleUpdate.exe [2016-09-24] (Google Inc.) Task: {4EAA8C88-1F8F-4028-8E9E-1A1666910C5B} - System32\Tasks\Updat4.5\GoogleUpdat4.5 task => C:\Users\MARK\Documents\devenvs.exe Task: {74A5ACF7-647E-4EB2-A6AD-F28AFAC708D3} - System32\Tasks\TechUtilities => C:\Program Files\TechUtilities\TechUtilities.exe [2016-03-29] (Seven Servos Software, Pvt Ltd.) Task: {A0EEBDCA-BD88-47C7-AF56-F559F7B56287} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-678541255-2295460757-2273824982-1000Core => C:\Users\MARK\AppData\Local\Google\Update\GoogleUpdate.exe [2016-09-24] (Google Inc.) Task: {BFD87B23-BD3E-49DC-A624-C2EFEAF3B748} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-09-17] (NVIDIA Corporation) Task: {C79B8D6B-BCC8-40B6-8C48-EC242DC039BB} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-05-03] (Realtek Semiconductor) Task: {DB4FDA76-4C07-43E5-8487-2BF32826794C} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-09-17] (NVIDIA Corporation) Task: {DC4EF748-39E1-4588-826D-37525D267FB0} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-09-17] (NVIDIA Corporation) Task: {F987D5A1-A699-4896-98DF-13B1C7087E10} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-26] (Piriform Ltd) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-678541255-2295460757-2273824982-1000Core.job => C:\Users\MARK\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-678541255-2295460757-2273824982-1000UA.job => C:\Users\MARK\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\TechUtilities.job => C:\Program Files\TechUtilities\TechUtilities.exe ==================== Loaded Modules (Whitelisted) ============== 2016-09-23 18:37 - 2016-09-17 04:42 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-09-23 18:37 - 2016-09-17 04:42 - 04490808 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll 2016-09-23 18:37 - 2016-09-17 04:42 - 00419896 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll 2016-09-23 21:50 - 2016-09-23 21:52 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2016-06-01 01:31 - 2016-06-01 01:31 - 00187824 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe 2016-01-06 19:41 - 2016-01-06 19:41 - 00062168 _____ () C:\Program Files\CCleaner\branding.dll 2016-08-26 21:25 - 2016-08-26 21:25 - 00046592 _____ () C:\Program Files\CCleaner\lang\lang-1025.dll 2016-09-24 16:16 - 2016-09-07 08:03 - 02280264 _____ () C:\Users\MARK\AppData\Local\Google\Chrome\Application\53.0.2785.101\libglesv2.dll 2016-09-24 16:16 - 2016-09-07 08:03 - 00107848 _____ () C:\Users\MARK\AppData\Local\Google\Chrome\Application\53.0.2785.101\libegl.dll 2016-09-23 18:37 - 2016-09-17 04:42 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-678541255-2295460757-2273824982-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\MARK\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupreg: IDMan => C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: VirtualCloneDrive => "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{9999ED42-8AA6-4883-B81F-539F82F86BA6}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe FirewallRules: [{C6EC194A-4874-40FA-B77C-6B79116D5A91}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe FirewallRules: [{0EFDB087-F1E4-4887-86C0-2FE100F3B32D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{A39D954B-8E74-43E4-B757-093FCC4F8155}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{9EFA4D53-1BAB-4F44-B504-827683119E6A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{49780341-1D7C-4FF5-9583-A3A3CB71AC4A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{C50E47D4-0D3F-4AAB-9A9A-2B95A42BBC73}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{D43F2D02-D43B-40FB-A236-87B9D9BE9D6A}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{0F4DBD94-FC72-4EEA-AAE8-D8444D2934BF}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{DBB95784-1448-48E1-BB8C-75514392C458}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{E9987812-4326-4B29-803F-6BC5E5253ADE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{9698C874-0DC6-406F-9F29-914DEF384608}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe FirewallRules: [{2551ECFB-4DB3-4E06-95D7-3A4149D1AC0E}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe FirewallRules: [{6F08505C-D166-4EAA-8392-4C432184B177}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe FirewallRules: [{8C0B07B3-9F57-4CDA-A1B4-D8D56058F46D}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe FirewallRules: [{C0CDF318-8021-4003-AA6C-AEA73536DB87}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe FirewallRules: [{6E82364C-8483-43DE-812F-584C9C8A84E5}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe FirewallRules: [TCP Query User{9FAD8EB8-64F5-4746-BC5F-00C6D8476107}D:\blur\blur.exe] => (Block) D:\blur\blur.exe FirewallRules: [UDP Query User{3B229FCE-C768-4ED7-AC0D-379E5CC6DD0C}D:\blur\blur.exe] => (Block) D:\blur\blur.exe ==================== Faulty Device Manager Devices ============= Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (09/24/2016 07:25:26 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: The program mbam.exe version 1.80.0.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: 1240 Start Time: 01d2167f607acab1 Termination Time: 5 Application Path: C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe Report Id: 7eb3624f-8273-11e6-9b1d-645a0464c7b3 Error: (09/24/2016 07:13:33 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: The program GTA5.exe version 1.0.350.2 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: a20 Start Time: 01d2167e40e087d3 Termination Time: 320 Application Path: D:\GTA5\Grand Theft Auto V\GTA5.exe Report Id: Error: (09/24/2016 07:07:43 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/24/2016 06:55:12 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/24/2016 08:35:15 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/24/2016 01:44:52 AM) (Source: SideBySide) (EventID: 63) (User: ) Description: Activation context generation failed for "urn:schemas-microsoft-com:asm.v1^file1".Error in manifest or policy file "urn:schemas-microsoft-com:asm.v1^file2" on line urn:schemas-microsoft-com:asm.v1^file3. The value "F:\joju\projects\XSplitCSDemo\RazerLauncher\Components\StreamingServicesAPI.dll" of attribute "name" in element "urn:schemas-microsoft-com:asm.v1^file" is invalid. Error: (09/24/2016 01:38:34 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: winsat.exe, version: 6.1.7601.17514, time stamp: 0x4ce798fc Faulting module name: EasyHook64.dll, version: 2.7.5726.0, time stamp: 0x55ea31b0 Exception code: 0xc0000005 Fault offset: 0x0000000000013978 Faulting process id: 0x8ec Faulting application start time: 0xwinsat.exe0 Faulting application path: winsat.exe1 Faulting module path: winsat.exe2 Report Id: winsat.exe3 Error: (09/23/2016 04:37:07 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/23/2016 03:29:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: ) Description: Failed extract of third-party root list from auto update cab at: with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file. . Error: (09/23/2016 03:29:04 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: ) Description: Failed extract of third-party root list from auto update cab at: with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file. . System errors: ============= Error: (09/25/2016 06:37:28 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY) Description: There was an error while attempting to read the local hosts file. Error: (09/24/2016 07:07:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Origin Web Helper Service service failed to start due to the following error: %%1053 Error: (09/24/2016 07:07:35 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: A timeout was reached (30000 milliseconds) while waiting for the Origin Web Helper Service service to connect. Error: (09/24/2016 07:05:38 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Software Protection service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service. Error: (09/24/2016 07:05:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Windows Media Player Network Sharing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service. Error: (09/24/2016 07:05:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service. Error: (09/24/2016 07:05:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Windows Presentation Foundation Font Cache 3.0.0.0 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service. Error: (09/24/2016 07:05:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The RzKLService service terminated unexpectedly. It has done this 1 time(s). Error: (09/24/2016 07:05:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Razer Game Scanner service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service. Error: (09/24/2016 07:05:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The PnkBstrA service terminated unexpectedly. It has done this 1 time(s). ==================== Memory info =========================== Processor: Intel(R) Core(TM) i5-4210U CPU @ 1.70GHz Percentage of memory in use: 43% Total physical RAM: 3999.98 MB Available physical RAM: 2253.97 MB Total Virtual: 7998.17 MB Available Virtual: 5704.93 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:206.19 GB) (Free:101.81 GB) NTFS Drive d: () (Fixed) (Total:244.14 GB) (Free:92.02 GB) NTFS Drive f: (System Reserved) (Fixed) (Total:0.34 GB) (Free:0.08 GB) NTFS ==>[system with boot components (obtained from reading drive)] Drive h: () (Removable) (Total:7.38 GB) (Free:3.38 GB) FAT32 Drive j: (KALI LIVE) (Removable) (Total:3.63 GB) (Free:0 GB) FAT32 ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 000DFB2E) Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=244.1 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=206.2 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=450 MB) - (Type=27) ======================================================== Disk: 1 (MBR Code: Windows XP) (Size: 3.6 GB) (Disk ID: B83D9BC8) Partition 1: (Not Active) - (Size=3.6 GB) - (Type=0B) ======================================================== Disk: 2 (Size: 7.4 GB) (Disk ID: 00000000) Partition: GPT. ==================== End of Addition.txt ============================