﻿Additional scan result of Farbar Recovery Scan Tool (x64) Version:06-06-2015
Ran by Martin at 2015-06-07 14:06:29
Running from C:\Users\Martin\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1181200559-1570802832-3044720726-500 - Administrator - Disabled)
Guest (S-1-5-21-1181200559-1570802832-3044720726-501 - Limited - Disabled)
Martin (S-1-5-21-1181200559-1570802832-3044720726-1001 - Administrator - Enabled) => C:\Users\Martin

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.38 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0938-000001000000}) (Version: 9.38.00.0 - Igor Pavlov)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Alien Isolation (HKLM-x32\...\Alien Isolation_is1) (Version:  - )
Aliens Colonial Marines versión 1.4.0 (HKLM-x32\...\Aliens Colonial Marines_is1) (Version: 1.4.0 - SEGA)
Bonjour (HKLM-x32\...\{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3}) (Version: 1.0.104 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
Classic Shell (HKLM\...\{7C129CF8-199F-4269-AAEE-60B5D8D716E2}) (Version: 4.2.1 - IvoSoft)
Crysis (HKLM-x32\...\Crysis) (Version:  - )
Crysis 3 versión 1.3 (HKLM-x32\...\Crysis 3_is1) (Version: 1.3 - EA Games)
Far Cry 3 (HKLM-x32\...\{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}) (Version: 1.05 - Ubisoft)
Grand Theft Auto V update versión 1.0.331.1 (HKLM-x32\...\{4959470E-EDAC-4710-A636-276D79A81B94}_is1) (Version: 1.0.331.1 - Rockstar Games)
HHD Software Hex Editor Neo 6.11 (HKLM\...\{8EB85C0E-DE7D-4A53-BD66-708B8F2C80B0}) (Version: 6.11.0.5363 - HHD Software, Ltd.)
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.232 - SurfRight B.V.)
Intel(R) Chipset Device Software (x32 Version: 10.0.20 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4170 - Intel Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
KMSpico v9.3.1 (HKLM\...\KMSpico_is1) (Version: 9.3.1 - )
Malwarebytes Anti-Malware versión 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Mozilla Firefox 38.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 en-US)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 34.0.5 - Mozilla)
MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD)
MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 3.0.0.09 - MSI)
MSI Kombustor 3.5.1 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version:  - MSI Co., LTD)
NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.06 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.5.28 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.28 - NVIDIA Corporation)
NVIDIA Graphics Driver 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.06 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA Miracast Virtual Audio 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 353.06 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.1.48.1376 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (Version: 1.1.48.1376 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer Performance Suite (HKLM-x32\...\{638B2F8F-46C9-477D-9E3E-1D3807319428}) (Version: 1.1.48.1376 - Qualcomm Atheros)
Qualcomm Atheros Network Manager (Version: 1.1.48.1376 - Qualcomm Atheros) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7404 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 6.3.0 (HKLM-x32\...\RTSS) (Version: 6.3.0 - Unwinder)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
RogueKiller version 10 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 10 - Adlice Software)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version:  - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version:  - Microsoft) Hidden
SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.5.28 - NVIDIA Corporation) Hidden
Storage Executive (HKU\S-1-5-21-1181200559-1570802832-3044720726-1001\...\Storage Executive 3.15.112014.06) (Version: 3.15.112014.06 - Crucial)
Synergy (64-bit) (HKLM\...\{A2220E8F-438C-478A-988F-B3594387594E}) (Version: 1.7.3 - The Synergy Project)
System Requirements Lab (HKLM-x32\...\{A92D0DBB-834A-4CAD-A434-F2232C692516}) (Version: 6.1.4.0 - Husdawg, LLC)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.)
Update for Skype for Business 2015 (KB2889853) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{40930C8E-A677-414C-A72F-DFDEB10738FB}) (Version:  - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1181200559-1570802832-3044720726-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)

==================== Restore Points =========================

22-05-2015 20:44:04 Windows Update
30-05-2015 14:24:17 Scheduled Checkpoint
05-06-2015 22:30:34 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2015-04-25 12:21 - 00000768 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1	localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0AD533B3-D8D5-419A-A197-C203B67D5EAF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {13DC7BF4-DA97-401E-A570-8DB43DB31C9F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd)
Task: {16193DD7-73E9-4E56-8360-9682AAF2E85B} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [2014-06-29] (@ByELDI)
Task: {53AA285A-81CA-4B70-96AD-6A1EFA658122} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {5F5B0880-7162-41A0-A672-B2447C5E5812} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-06] (Microsoft Corporation)
Task: {6A6E4585-CCDF-4D0C-B3F6-1ABF0A3420B1} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {74FC4CA7-95A7-4486-BF28-167B01EDC5EE} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-05-22] (Microsoft Corporation)
Task: {8E583646-EB19-4920-BEC8-C78A199F81E2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {95799900-0AF7-4981-A693-9EFFBB6C7112} - System32\Tasks\{B61E308A-90FE-40CB-9983-C471F1DBAAF6} => pcalua.exe -a C:\Users\Martin\Desktop\mbam-setup-2.1.6.1022.exe -d C:\Users\Martin\Desktop
Task: {BE823DE0-3CA1-4E5F-BE35-24E3B81F7372} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {BEE0099F-95C2-4ADA-ACD5-512542FD38EA} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks
Task: {EFAC4C3B-4023-4356-A32C-FB074F87D89B} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {EFB1A305-CD34-4AF3-A5E7-271C172C05EB} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-17] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (Whitelisted) ==============

2015-05-26 19:44 - 2015-05-26 19:44 - 00306368 _____ () C:\Program Files\Synergy\synergyd.exe
2014-12-23 19:35 - 2015-05-28 06:15 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-05-26 19:44 - 2015-05-26 19:44 - 00796864 _____ () C:\Program Files\Synergy\synergyc.exe
2014-03-20 12:43 - 2014-03-20 12:43 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-04-03 10:57 - 2015-05-23 03:48 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Martin\Desktop\FRST64.exe:com.apple.metadatakMDItemDownloadedDate
AlternateDataStreams: C:\Users\Martin\Desktop\FRST64.exe:com.apple.metadatakMDItemWhereFroms
AlternateDataStreams: C:\Users\Martin\Desktop\FRST64.exe:com.apple.quarantine
AlternateDataStreams: C:\Users\Martin\Desktop\FRSTLauncher.exe:com.apple.metadatakMDItemDownloadedDate
AlternateDataStreams: C:\Users\Martin\Desktop\FRSTLauncher.exe:com.apple.metadatakMDItemWhereFroms
AlternateDataStreams: C:\Users\Martin\Desktop\FRSTLauncher.exe:com.apple.quarantine
AlternateDataStreams: C:\Users\Martin\Desktop\RSITx64.exe:com.apple.metadatakMDItemDownloadedDate
AlternateDataStreams: C:\Users\Martin\Desktop\RSITx64.exe:com.apple.metadatakMDItemWhereFroms
AlternateDataStreams: C:\Users\Martin\Desktop\RSITx64.exe:com.apple.quarantine
AlternateDataStreams: C:\Users\Martin\Desktop\synergy-v1.7.3-stable-efd0108-Windows-x64.msi:com.apple.metadatakMDItemDownloadedDate
AlternateDataStreams: C:\Users\Martin\Desktop\synergy-v1.7.3-stable-efd0108-Windows-x64.msi:com.apple.metadatakMDItemWhereFroms
AlternateDataStreams: C:\Users\Martin\Desktop\synergy-v1.7.3-stable-efd0108-Windows-x64.msi:com.apple.quarantine
AlternateDataStreams: C:\Users\Public\DRM:احتضان

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1181200559-1570802832-3044720726-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\StartupFolder: => "Killer Network Manager.lnk"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "NvBackend"
HKU\S-1-5-21-1181200559-1570802832-3044720726-1001\...\StartupApproved\Run: => "CCleaner Monitoring"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [{8C46D630-8470-4DEB-A758-756DE5F18A48}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{9F389DCE-464D-45C5-9EA3-CD1BC063DC79}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{0E8A80C3-65E9-4473-B778-CF59B959F418}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A6045A8A-D179-4DC2-A3AD-DD90B8D86CBB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{820ED732-4D71-472E-8930-3784843397D4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{02F0F9C1-D07A-4331-BA12-748D03FDE70D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{C4334924-A5BB-4478-AB44-7D14E3D5A9C3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B8AADE82-4139-4625-A897-A1D9FDE6CE24}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{9D85E881-F25C-4063-A112-7B5B78646082}C:\program files (x86)\alien isolation\ai.exe] => (Block) C:\program files (x86)\alien isolation\ai.exe
FirewallRules: [UDP Query User{A8951A7F-5D6F-493F-BC9C-952AC4D3503C}C:\program files (x86)\alien isolation\ai.exe] => (Block) C:\program files (x86)\alien isolation\ai.exe
FirewallRules: [{747A72D3-CB08-43F6-A5CA-A3BB5804C6BA}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{91C13F24-D094-45BA-97C9-ABFC68A40939}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{136639AB-7056-4526-8AE2-754EE65F1174}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{CDEC3AB0-3816-44EA-A455-CD6CCF99FBB1}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{13490FFE-332A-4AE8-ABB7-3D4C0C3DDD87}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3.exe
FirewallRules: [{97E8E86F-F24A-4B7E-8DCF-7F3B0D0F7658}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3.exe
FirewallRules: [{803291FD-5960-4D6E-A05A-BA3F18CE39D6}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe
FirewallRules: [{F262910F-46D6-49FE-BD7B-F7F66FDBA471}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe
FirewallRules: [{96FDDC61-3BEB-47EC-AAB0-01D71AF8A364}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Updater.exe
FirewallRules: [{42814B00-BE09-4612-9002-D5DA8FEE11D9}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Updater.exe
FirewallRules: [{AB7002BF-66BB-484D-BA60-79C8E285EC1A}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Editor.exe
FirewallRules: [{490AB1AD-E12A-43AC-BAC1-34CDCC4C7A17}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Editor.exe
FirewallRules: [{B9838F33-2BE9-4A63-AFF3-7C6955524A2A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{74DB46B5-8FAD-40F9-BFB9-B4A89CD05F78}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{BBBEA033-E8A6-4555-95CC-689D36CF01A5}] => (Allow) C:\Program Files (x86)\Ubisoft\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe
FirewallRules: [{F7010C5E-CB13-4400-975A-23DB173B8CAF}] => (Allow) C:\Program Files (x86)\Ubisoft\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe
FirewallRules: [{1102D2DB-9765-4949-8055-F02EE5F4611A}] => (Allow) C:\Program Files (x86)\Ubisoft\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe
FirewallRules: [{A425988D-6D16-4565-B29C-2850DC0282BD}] => (Allow) C:\Program Files (x86)\Ubisoft\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe
FirewallRules: [{2BBF8EB9-B979-4446-A2CC-5D370B672D45}] => (Allow) C:\Program Files (x86)\Ubisoft\Far Cry 3 Blood Dragon\bin\FC3BDUpdater.exe
FirewallRules: [{3F5463E3-60F1-4BE3-A5AB-8610DE2AB792}] => (Allow) C:\Program Files (x86)\Ubisoft\Far Cry 3 Blood Dragon\bin\FC3BDUpdater.exe
FirewallRules: [{EA680168-7DCB-4CDB-8C35-F6737DFF385A}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{C50558C9-444C-4A5C-9902-8EB8690D6756}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{490EAB5B-A9D9-4CF2-A623-40609DC4F12C}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{59323D28-321B-413B-A5EE-8E18BA2D0EDF}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{F0F92F3C-42A5-4FAC-8642-597D5EDC40FC}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{DC4185B9-818E-4ED6-B847-8DCFE8F73105}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{A95374BC-05A4-4B0C-A7D0-C6655D995DA7}] => (Allow) C:\Program Files\Synergy\synergys.exe
FirewallRules: [{230FCB01-6AA5-476A-9424-6589C1BDA6BC}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{406A4AEC-CDF4-4FAD-A1B8-407F0C34B755}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{A74FACC5-9EE4-4072-BF34-CF7A762B4B58}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{E5A3B398-575F-44D9-AECE-6F2F1602E169}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/06/2015 11:16:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program WinRAR.exe version 5.20.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 14d4

Start Time: 01d0a09d7f92f552

Termination Time: 4294967295

Application Path: C:\Program Files\WinRAR\WinRAR.exe

Report Id: 5a215a3d-0c91-11e5-82a0-fcaa14252d9e

Faulting package full name: 

Faulting package-relative application ID:

Error: (06/06/2015 10:54:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: WinRAR.exe, version: 5.20.0.0, time stamp: 0x547d8f4e
Faulting module name: WinRAR.exe, version: 5.20.0.0, time stamp: 0x547d8f4e
Exception code: 0xc000041d
Fault offset: 0x00000000000a709a
Faulting process id: 0x1438
Faulting application start time: 0xWinRAR.exe0
Faulting application path: WinRAR.exe1
Faulting module path: WinRAR.exe2
Report Id: WinRAR.exe3
Faulting package full name: WinRAR.exe4
Faulting package-relative application ID: WinRAR.exe5

Error: (06/06/2015 10:54:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: WinRAR.exe, version: 5.20.0.0, time stamp: 0x547d8f4e
Faulting module name: WinRAR.exe, version: 5.20.0.0, time stamp: 0x547d8f4e
Exception code: 0xc0000005
Fault offset: 0x00000000000a709a
Faulting process id: 0x1438
Faulting application start time: 0xWinRAR.exe0
Faulting application path: WinRAR.exe1
Faulting module path: WinRAR.exe2
Report Id: WinRAR.exe3
Faulting package full name: WinRAR.exe4
Faulting package-relative application ID: WinRAR.exe5

Error: (06/06/2015 10:53:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: GTA5.exe, version: 1.0.350.1, time stamp: 0x5540c256
Faulting module name: GTA5.exe, version: 1.0.350.1, time stamp: 0x5540c256
Exception code: 0xc0000005
Fault offset: 0x0000000001133400
Faulting process id: 0xffc
Faulting application start time: 0xGTA5.exe0
Faulting application path: GTA5.exe1
Faulting module path: GTA5.exe2
Report Id: GTA5.exe3
Faulting package full name: GTA5.exe4
Faulting package-relative application ID: GTA5.exe5

Error: (06/06/2015 10:53:29 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: GTA5.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: exception code c0000005, exception address 00007FF7C3EC3400
Stack:

Error: (06/06/2015 08:53:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: GTA5.exe, version: 1.0.350.1, time stamp: 0x5540c256
Faulting module name: GTA5.exe, version: 1.0.350.1, time stamp: 0x5540c256
Exception code: 0xc0000005
Fault offset: 0x0000000001133400
Faulting process id: 0xf50
Faulting application start time: 0xGTA5.exe0
Faulting application path: GTA5.exe1
Faulting module path: GTA5.exe2
Report Id: GTA5.exe3
Faulting package full name: GTA5.exe4
Faulting package-relative application ID: GTA5.exe5

Error: (06/06/2015 08:52:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: GTA5.exe, version: 1.0.350.1, time stamp: 0x5540c256
Faulting module name: GTA5.exe, version: 1.0.350.1, time stamp: 0x5540c256
Exception code: 0xc0000005
Fault offset: 0x00000000004be759
Faulting process id: 0x410
Faulting application start time: 0xGTA5.exe0
Faulting application path: GTA5.exe1
Faulting module path: GTA5.exe2
Report Id: GTA5.exe3
Faulting package full name: GTA5.exe4
Faulting package-relative application ID: GTA5.exe5

Error: (06/06/2015 08:25:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: vlc.exe, version: 2.1.5.0, time stamp: 0x00000000
Faulting module name: ntdll.dll, version: 6.3.9600.17736, time stamp: 0x550f4336
Exception code: 0xc0000005
Fault offset: 0x000000000005473b
Faulting process id: 0x410
Faulting application start time: 0xvlc.exe0
Faulting application path: vlc.exe1
Faulting module path: vlc.exe2
Report Id: vlc.exe3
Faulting package full name: vlc.exe4
Faulting package-relative application ID: vlc.exe5

Error: (06/06/2015 03:11:13 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest.

Error: (06/06/2015 02:22:18 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest.


System errors:
=============
Error: (06/06/2015 07:46:43 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Service KMSELDI service terminated unexpectedly.  It has done this 1 time(s).

Error: (06/06/2015 07:46:30 PM) (Source: Microsoft-Windows-EnhancedStorage-EhStorTcgDrv) (EventID: 10) (User: NT AUTHORITY)
Description: A TCG Command has returned an error.
Desc: AuthenticateSession
Param1: 0x1
Param2: 0x60000001c
Param3: 0x900000006
Param4: 0x0
Status: 0x1

Error: (06/06/2015 07:46:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Windows Presentation Foundation Font Cache 3.0.0.0 service terminated unexpectedly.  It has done this 2 time(s).

Error: (06/06/2015 07:46:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Synergy service terminated unexpectedly.  It has done this 1 time(s).

Error: (06/06/2015 07:46:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The NVIDIA Stereoscopic 3D Driver Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (06/06/2015 07:46:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The NVIDIA Display Driver Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (06/06/2015 07:46:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Intel(R) Dynamic Application Loader Host Interface Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (06/06/2015 07:46:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (06/06/2015 07:46:00 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Presentation Foundation Font Cache 3.0.0.0 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (06/06/2015 07:46:00 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Qualcomm Atheros Killer Service V2 service terminated unexpectedly.  It has done this 1 time(s).


Microsoft Office:
=========================
Error: (06/06/2015 11:16:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: WinRAR.exe5.20.0.014d401d0a09d7f92f5524294967295C:\Program Files\WinRAR\WinRAR.exe5a215a3d-0c91-11e5-82a0-fcaa14252d9e

Error: (06/06/2015 10:54:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: WinRAR.exe5.20.0.0547d8f4eWinRAR.exe5.20.0.0547d8f4ec000041d00000000000a709a143801d0a09af6b4d307C:\Program Files\WinRAR\WinRAR.exeC:\Program Files\WinRAR\WinRAR.exe363a4c69-0c8e-11e5-82a0-fcaa14252d9e

Error: (06/06/2015 10:54:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: WinRAR.exe5.20.0.0547d8f4eWinRAR.exe5.20.0.0547d8f4ec000000500000000000a709a143801d0a09af6b4d307C:\Program Files\WinRAR\WinRAR.exeC:\Program Files\WinRAR\WinRAR.exe3567acdd-0c8e-11e5-82a0-fcaa14252d9e

Error: (06/06/2015 10:53:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: GTA5.exe1.0.350.15540c256GTA5.exe1.0.350.15540c256c00000050000000001133400ffc01d0a08ba203ee0bC:\Program Files (x86)\Grand Theft Auto V\GTA5.exeC:\Program Files (x86)\Grand Theft Auto V\GTA5.exe1558cb82-0c8e-11e5-82a0-fcaa14252d9e

Error: (06/06/2015 10:53:29 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: GTA5.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: exception code c0000005, exception address 00007FF7C3EC3400
Stack:

Error: (06/06/2015 08:53:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: GTA5.exe1.0.350.15540c256GTA5.exe1.0.350.15540c256c00000050000000001133400f5001d0a089f300855aC:\Program Files (x86)\Grand Theft Auto V\GTA5.exeC:\Program Files (x86)\Grand Theft Auto V\GTA5.exe5197ca6b-0c7d-11e5-82a0-fcaa14252d9e

Error: (06/06/2015 08:52:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: GTA5.exe1.0.350.15540c256GTA5.exe1.0.350.15540c256c000000500000000004be75941001d0a089eb7ec5c5C:\Program Files (x86)\Grand Theft Auto V\GTA5.exeC:\Program Files (x86)\Grand Theft Auto V\GTA5.exe2e16d304-0c7d-11e5-82a0-fcaa14252d9e

Error: (06/06/2015 08:25:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: vlc.exe2.1.5.000000000ntdll.dll6.3.9600.17736550f4336c0000005000000000005473b41001d0a082c2280db5C:\Program Files\VideoLAN\VLC\vlc.exeC:\Windows\SYSTEM32\ntdll.dll7504cbca-0c79-11e5-82a0-fcaa14252d9e

Error: (06/06/2015 03:11:13 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifestC:\Program Files\CCleaner\CCleaner64.exe

Error: (06/06/2015 02:22:18 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifestc:\program files\CCleaner\CCleaner.exe


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Percentage of memory in use: 12%
Total physical RAM: 16244.95 MB
Available physical RAM: 14292.32 MB
Total Pagefile: 18676.95 MB
Available Pagefile: 16484.74 MB
Total Virtual: 131072 MB
Available Virtual: 131071.79 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:238.13 GB) (Free:37.2 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: EA54F223)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=238.1 GB) - (Type=07 NTFS)

==================== End of log ============================