﻿Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-01-2017
Ran by Walte_000 (06-01-2017 11:33:38)
Running from C:\Users\Walte_000\Desktop
Windows 10 Home Version 1607 (X64) (2016-10-31 12:27:12)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2578528865-457382264-3746371107-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2578528865-457382264-3746371107-503 - Limited - Disabled)
Guest (S-1-5-21-2578528865-457382264-3746371107-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2578528865-457382264-3746371107-1003 - Limited - Enabled)
Walte_000 (S-1-5-21-2578528865-457382264-3746371107-1001 - Administrator - Enabled) => C:\Users\Walte_000

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version:  - Studio Wildcard)
Arma 2 (HKLM-x32\...\Steam App 33910) (Version:  - Bohemia Interactive)
Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version:  - Bohemia Interactive)
Arma 2: Operation Arrowhead Beta (Obsolete) (HKLM-x32\...\Steam App 219540) (Version:  - )
Armored Warfare MyCom (HKU\S-1-5-21-2578528865-457382264-3746371107-1001\...\Armored Warfare MyCom) (Version: 1.76 - My.com B.V.)
Armored Warfare MyCom Beta (HKU\S-1-5-21-2578528865-457382264-3746371107-1001\...\Armored Warfare MyCom Beta) (Version: 1.59 - My.com B.V.)
Aslain's WoT Modpack verze 9.15.1.06 (HKLM-x32\...\Aslains_WoT_Modpack_Installer_is1) (Version: 9.15.1.06 - Aslain)
Aslain's XVM WoT Modpack verze 9.15.18 (HKLM-x32\...\ZRwTINhSZfduKONYrSCTiCiGPggQZdcLRvoAVxyCOXXpkHeC~1DC3968F_is1) (Version: 9.15.18 - Aslain)
ASUS GIFTBOX Desktop (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 1.1.6 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.4.3 - ASUS)
ASUS ROG Gaming Mouse (HKLM-x32\...\{3B9E171F-A955-4834-B877-447C0A437260}) (Version: 2.00.026 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.12 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.05.0001 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.1 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.29 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0037 - ASUS)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefleet Gothic Armada (HKLM-x32\...\Battlefleet Gothic Armada_is1) (Version:  - )
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version:  - )
BitComet 1.39 64-bit (HKLM-x32\...\BitComet_x64) (Version: 1.39 - CometNetwork)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Chronicle: RuneScape Legends (HKLM\...\Steam App 205890) (Version:  - Jagex)
DAEMON Tools Pro (HKLM-x32\...\DAEMON Tools Pro) (Version: 6.0.0.0445 - Disc Soft Ltd)
DayZLauncher version 0.0.0.19 (HKLM-x32\...\{E31045B4-9DB5-9EBD-44DF-BD4E6CFD40DF}_is1) (Version: 0.0.0.19 - Maca134)
Device Setup (HKLM-x32\...\{1F07F2C7-596F-4F34-B805-2C61A3E50E5A}) (Version: 1.0.18 - ASUSTek Computer Inc.)
GIMP 2.8.18 (HKLM\...\GIMP-2_is1) (Version: 2.8.18 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version:  - Reto-Moto)
Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation)
Intel(R) Chipset Device Software (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.28.1006 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4062 - Intel Corporation)
Intel(R) Wireless Bluetooth(R)(patch version 17.1.1440.2) (HKLM\...\{302600C1-6BDF-4FD1-1409-148929CC1385}) (Version: 17.1.1409.0486 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{9bffdf20-c3a3-4e93-9cbf-61712c6a38be}) (Version: 17.13.2 - Intel Corporation)
Maxx Audio Installer (x64) (Version: 1.6.4882.94 - Waves Audio Ltd.) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4641.3004 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2578528865-457382264-3746371107-1001\...\OneDriveSetup.exe) (Version: 17.3.6720.1207 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
MPC-HC 1.7.9 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.9 - MPC-HC Team)
My.com Game Center (HKU\S-1-5-21-2578528865-457382264-3746371107-1001\...\MyComGames) (Version: 3.162 - My.com B.V.)
NVIDIA Graphics Driver 345.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 345.05 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
PixelMaster Video HDR (HKLM\...\{65302154-AAF6-4020-A070-76CAA9CEC8D3}) (Version: 1.1.23 - ASUS)
PokerStars.uk (HKLM-x32\...\PokerStars.uk) (Version:  - PokerStars.uk)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.21260 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.34.617.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7417 - Realtek Semiconductor Corp.)
Riders of Icarus (HKLM\...\Steam App 442080) (Version:  - WeMade)
SafeZone Stable 1.46.1990.55 (x32 Version: 1.46.1990.55 - Avast Software) Hidden
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
Search Provided by Yahoo (HKLM-x32\...\YahooProvidedSearch) (Version:  - ) <==== ATTENTION
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Spellcross CZ verze 1.07 (HKLM-x32\...\{CEE982F1-7CD4-44FF-9015-4EC1F605848B}_is1) (Version: 1.07 - )
Star Conflict Launcher 1.0.1.62 (HKLM-x32\...\StarConflictLauncher_is1) (Version:  - )
Star Trek Online (HKLM\...\Steam App 9900) (Version:  - Cryptic Studios)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version:  - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
The Desktop Weather 2.0.1.11332 (HKLM\...\WeatherTool) (Version: 2.0.1.11332 - ShenZhen Enode Techology co,.Ltd) <==== ATTENTION
Thea The Awakening (HKLM-x32\...\Thea The Awakening_is1) (Version:  - )
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Wasteland 2 (HKLM-x32\...\Wasteland 2_is1) (Version:  - )
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.1.11.399 - ASUS Cloud Corporation)
WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.11.14 - WildTangent)
Windows Driver Package - ASUS (ATP) Mouse  (10/30/2014 1.0.0.230) (HKLM\...\52EDDD14D2DC9D32A2EA2720C02CBB9E354F8DE2) (Version: 10/30/2014 1.0.0.230 - ASUS)
Windows Driver Package - ASUS (ATP) Mouse  (11/11/2015 1.0.0.262) (HKLM\...\A044C5901003C24E6891688653ABA1068D04A1A0) (Version: 11/11/2015 1.0.0.262 - ASUS)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS)
WinRAR 5.21 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-2578528865-457382264-3746371107-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version:  - Wargaming.net)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
XVM version 6.1.6 (HKLM-x32\...\{2865cd27-6b8b-4413-8272-cd968f316050}_is1) (Version: 6.1.6 - XVM team)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {019C672D-7BEB-4CE2-841C-8BE818D6EF7F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-04] (Google Inc.)
Task: {05D824CF-A465-45C6-B9A3-7936214ED67B} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {05F99A28-D1FB-4F37-AC6A-96570F1338FB} - System32\Tasks\SafeZone scheduled Autoupdate 1448584786 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {09F45006-6518-4513-8FCA-5920DD9A3BC4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {0AFC9CAA-E59C-4939-9300-C36203E899FA} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {0EC29BA2-6FB8-4EB5-916B-9F80E9E75B41} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {160BF500-AFF3-4F2A-9513-9227EA90E387} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-12-14] (AsusTek)
Task: {165C333D-92DE-40F6-B809-560D239A3418} - System32\Tasks\{8E1A20BC-39B1-9717-83BD-04E2E892907C} => C:\ProgramData\{A8CE6E72-1F65-D9D9-3393-17D0C8D86F3B}\FC395409-4B92-E3A2-A65A-0F71DE2048CC.exe [2016-12-18] () <==== ATTENTION
Task: {175D7277-1B38-4475-A4E1-A7F22C40D549} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {1EDE354F-2BD5-42B4-B7D7-C183D2B7B112} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {2025BDB8-5EE1-4116-8F3C-18D80EACE2AA} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-09-26] (AVAST Software)
Task: {251827BC-5579-440A-B8B1-FA2C5825596C} - System32\Tasks\{1E75C546-A9DE-72ED-AE38-3A9FC5AF45F0} => C:\ProgramData\{A1E08EEC-164B-3947-3304-A25EA7952867}\10D2EC3C-A779-5B97-99CE-BF6488D3E34E.exe [2016-12-19] () <==== ATTENTION
Task: {33ED5F4C-67C0-48E2-857F-27B024E2EF37} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {34ABDD7D-5EC9-4285-A962-66E3671FBF55} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2014-09-02] (ASUSTek Computer Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {3AAB7A41-D11A-44BF-80EA-A83870339E65} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2016-12-14] (Microsoft Corporation)
Task: {3BB8D365-7B11-4049-870E-B0B4303599F9} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {3C8419F5-4D5F-4956-9C41-FD650814E16D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-04] (Google Inc.)
Task: {3F71C1D7-EE44-4CC7-A102-C38EFD4F1EEB} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-12-26] (Realtek Semiconductor)
Task: {54DABCBB-053A-47AC-90B4-96092CE963F9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {55314312-FA31-4DED-9954-9BAFD392DDC4} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Walte_000\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Task: {60595C8D-41CF-4DA0-971E-26768A503CD8} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {66CEF2D8-890E-4828-9B4A-5CB26E1D469B} - System32\Tasks\{93509FAA-346B-85DA-8261-7EAA3AFC5D7E} => Regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\f15f7bd2\b281b0f8.dll" <==== ATTENTION
Task: {6BC41CC4-7653-4D3E-A063-11CB5ECE846D} - System32\Tasks\{54BDED0E-E316-5AA5-FE4D-D56B5EBFF7D7} => C:\ProgramData\{A96DF2A7-1EC6-450C-97A5-10E787996237}\111FC59E-A6B4-7235-9337-F465E15B6C5A.exe [2016-12-19] () <==== ATTENTION
Task: {7EB38C3E-5A86-483F-B41B-47BE2F53DC36} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2014-12-17] (ASUSTek Computer Inc.)
Task: {7FEAC698-9EAE-4691-BEC5-AD635629F690} - System32\Tasks\{2DADDF59-9A06-68F2-9DBF-3126AFEC82FC} => C:\ProgramData\{757FCCFF-C2D4-7B54-2D4E-7E298F915DB0}\09C76C54-BE6C-DBFF-50A8-666FCB7E8EBB.exe [2016-12-16] () <==== ATTENTION
Task: {919DEB38-5107-4B79-AEF5-3D31F6EDCA9B} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-12-04] (Realtek Semiconductor)
Task: {91C0D052-8867-4A9A-9858-3E959DAD9E9A} - System32\Tasks\{1F55DEF6-A8FE-695D-8DEE-1A087639E4BA} => C:\ProgramData\{184CA6B0-AFE7-111B-F480-472B5BEB9689}\87FAC1AD-3051-7606-2FF6-5CE5FA87CB4D.exe [2016-12-16] () <==== ATTENTION
Task: {9304580F-97B9-401D-B4E6-C94C7DBDFBEA} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {98AEF8BD-E64B-4D20-A8B5-FE8B2ED7E03A} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {9B5BADA5-1264-419B-96AF-B4C34EA8675D} - System32\Tasks\SafeZone scheduled Autoupdate 1477603028 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {9FBEB695-EB75-44C9-A061-0E837541DFF8} - System32\Tasks\{775BD9AE-C0F0-6E05-89B3-9892A5A5640B} => C:\ProgramData\{11816D10-A62A-DABB-1580-28C34C3D667A}\B03C7C18-0797-CBB3-1AA2-DFFBD0B1FD25.exe [2016-12-16] () <==== ATTENTION
Task: {A34B85F7-4AB2-44DF-BCC0-6B4DE4B06EDC} - \WPD\SqmUpload_S-1-5-21-2578528865-457382264-3746371107-1001 -> No File <==== ATTENTION
Task: {A85C12C9-63E1-434E-8385-2B8FB6DFEEF2} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2014-06-12] (ASUSTek Computer Inc.)
Task: {A8C9B5DA-86A5-4D63-B439-04F0B5C210DF} - System32\Tasks\{B0C195A7-076A-220C-B95E-0F942E1341CF} => C:\ProgramData\{04323BD5-B399-8C7E-F486-8A3517AAD9B8}\87CB8144-3060-36EF-D7A5-35A990EA41AC.exe [2016-12-18] () <==== ATTENTION
Task: {C234FFC1-2A38-4648-99B5-5E0B6C732D02} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {C38E18F8-7CD8-419F-BD1C-689843344688} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {DBC3C353-1976-4912-86CD-935E0D3E1962} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {EBF5240F-5CCC-43BA-B324-107FF1F8E02F} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2014-11-05] (ASUS)
Task: {EF469CA5-CB6E-46CF-843A-9ACB5B43B42B} - System32\Tasks\{C2D4E2DE-757F-5575-BCCD-40F27068BB9A} => C:\ProgramData\{2DC84D8E-9A63-FA25-AC91-ACF075D9D4E1}\9A66FC7F-2DCD-4BD4-A893-737658F0E8BA.exe [2016-12-16] () <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2016-04-26 10:47 - 2016-04-26 10:47 - 00155784 _____ () C:\Program Files (x86)\WeatherTool\2.0.1.11332\WeatherService.exe
2016-07-16 11:42 - 2016-07-16 11:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-14 19:23 - 2016-12-09 10:29 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-10-31 12:01 - 2016-08-01 12:54 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-04-26 10:47 - 2016-04-26 10:47 - 01049736 _____ () C:\Program Files (x86)\WeatherTool\2.0.1.11332\WeatherEntryDll.dll
2016-12-14 19:23 - 2016-12-09 10:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-14 19:23 - 2016-12-09 10:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-12-18 11:05 - 2016-12-18 11:05 - 01678560 _____ () C:\Users\Walte_000\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64\ClientTelemetry.dll
2016-10-31 19:53 - 2016-10-31 19:53 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-12-14 19:22 - 2016-12-09 09:41 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-05-27 14:50 - 2016-05-27 14:50 - 00402520 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-12-01 15:31 - 2016-11-02 10:21 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-12-01 15:31 - 2016-11-02 10:15 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-12-01 15:31 - 2016-11-02 10:14 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-12-01 15:31 - 2016-11-02 10:15 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-12-01 15:31 - 2016-11-02 10:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-12-01 15:31 - 2016-11-02 10:17 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-12-14 19:05 - 2016-12-14 19:33 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-12-14 19:05 - 2016-12-14 19:33 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-12-14 19:05 - 2016-12-14 19:33 - 42130432 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-12-14 19:05 - 2016-12-14 19:33 - 02216448 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\roottools.dll
2015-04-09 19:52 - 2013-05-15 21:39 - 00463872 _____ () C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
2016-09-26 18:57 - 2016-09-26 18:57 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-09-26 18:57 - 2016-09-26 18:57 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-01-05 22:56 - 2017-01-05 22:56 - 03070464 _____ () C:\Program Files\AVAST Software\Avast\defs\17010502\algo.dll
2016-04-26 10:46 - 2016-04-26 10:46 - 00543368 _____ () C:\Program Files (x86)\WeatherTool\2.0.1.11332\EVPTask.dll
2016-04-26 10:46 - 2016-04-26 10:46 - 00406664 _____ () C:\Program Files (x86)\WeatherTool\2.0.1.11332\EVPNet.dll
2016-04-26 10:46 - 2016-04-26 10:46 - 00428680 _____ () C:\Program Files (x86)\WeatherTool\2.0.1.11332\EVPDR.dll
2014-09-03 18:03 - 2014-09-03 18:03 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-11-05 19:44 - 2014-11-05 19:44 - 00037424 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2014-11-05 19:44 - 2014-11-05 19:44 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2015-12-16 14:21 - 2015-12-21 20:20 - 00144896 _____ () C:\Users\Walte_000\AppData\Local\MyComGames\zlib1.dll
2015-12-16 14:21 - 2016-09-19 08:50 - 00076176 _____ () C:\Users\Walte_000\AppData\Local\MyComGames\pxd.dll
2015-12-16 14:21 - 2016-09-19 08:50 - 00186256 _____ () C:\Users\Walte_000\AppData\Local\MyComGames\LightUpdate.dll
2015-12-16 14:21 - 2016-09-19 08:50 - 02318224 _____ () C:\Users\Walte_000\AppData\Local\MyComGames\BigUp2.dll
2016-05-23 18:36 - 2016-05-23 18:36 - 48962048 _____ () C:\Users\Walte_000\AppData\Local\MyComGames\Chrome\3.2623.1401\libcef.dll
2016-12-18 11:05 - 2016-12-18 11:05 - 01244376 _____ () C:\Users\Walte_000\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\ClientTelemetry.dll
2016-09-26 18:58 - 2016-09-26 18:58 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-12-15 13:27 - 2016-12-08 07:29 - 01829208 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-15 13:27 - 2016-12-08 07:29 - 00085848 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
2015-11-01 21:30 - 2015-01-03 23:55 - 00002048 ____R () C:\Program Files (x86)\DAEMON Tools Pro\MSIMG32.dll
2016-11-26 11:28 - 2016-11-26 11:28 - 01361408 _____ () C:\ProgramData\f15f7bd2\b281b0f8.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 13:25 - 2016-05-26 23:08 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2578528865-457382264-3746371107-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Walte_000\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\asus.jpg
DNS Servers: 82.163.143.157 - 82.163.142.159
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [UDP Query User{285CCFD3-371C-4DF5-9CBB-96C9B21EDAEB}C:\program files (x86)\steam\steamapps\common\riders of icarus\bin64\launcher.exe] => C:\program files (x86)\steam\steamapps\common\riders of icarus\bin64\launcher.exe
FirewallRules: [TCP Query User{C1B640F2-8E1B-4B87-B7E3-11400EE79646}C:\program files (x86)\steam\steamapps\common\riders of icarus\bin64\launcher.exe] => C:\program files (x86)\steam\steamapps\common\riders of icarus\bin64\launcher.exe
FirewallRules: [{98B8E39D-E1FD-4A4B-81BB-A645CF7CE53B}] => C:\Program Files (x86)\Steam\steamapps\common\Riders of Icarus\Bin32\nxsteam.exe
FirewallRules: [{8B9126EF-C86E-4205-B898-4DCD317AD6F2}] => C:\Program Files (x86)\Steam\steamapps\common\Riders of Icarus\Bin32\nxsteam.exe
FirewallRules: [UDP Query User{CCBFA90F-D0D3-4DBF-B55D-2E2F1C3C0205}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
FirewallRules: [TCP Query User{7CDE1FFE-37A5-4E6D-8A11-EF7B7BE6FBB7}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
FirewallRules: [{A3E28C83-9A70-48AB-B399-B476336FA767}] => C:\Program Files (x86)\Steam\steamapps\common\Star Trek Online\Star Trek Online.exe
FirewallRules: [{4121D5A0-3910-442D-AEC9-C9F488DC685C}] => C:\Program Files (x86)\Steam\steamapps\common\Star Trek Online\Star Trek Online.exe
FirewallRules: [{FAEF5B1C-D7E5-4E5E-AC23-63906E4C16D4}] => C:\Program Files (x86)\Steam\steamapps\common\Chronicle\Chronicle.exe
FirewallRules: [{4426ECA2-05B2-40E2-B9B3-5090744486B9}] => C:\Program Files (x86)\Steam\steamapps\common\Chronicle\Chronicle.exe
FirewallRules: [UDP Query User{FC4F93F6-06B1-45FA-9715-3B6057144C07}D:\games\battlefleet gothic armada\battlefleetgothic\binaries\win64\battlefleetgothic-win64-shipping.exe] => D:\games\battlefleet gothic armada\battlefleetgothic\binaries\win64\battlefleetgothic-win64-shipping.exe
FirewallRules: [TCP Query User{8B727F0E-8077-4257-B9CE-9E32AA03E4DC}D:\games\battlefleet gothic armada\battlefleetgothic\binaries\win64\battlefleetgothic-win64-shipping.exe] => D:\games\battlefleet gothic armada\battlefleetgothic\binaries\win64\battlefleetgothic-win64-shipping.exe
FirewallRules: [UDP Query User{725477F5-F111-430B-87CB-D0EF7DFF7221}C:\program files (x86)\star conflict\launcher.exe] => C:\program files (x86)\star conflict\launcher.exe
FirewallRules: [TCP Query User{FAE8488B-CD1A-4EA4-974F-70DE093EAEFB}C:\program files (x86)\star conflict\launcher.exe] => C:\program files (x86)\star conflict\launcher.exe
FirewallRules: [UDP Query User{3445F83C-9FC6-4BE5-B7D4-7F6B43CA5CFA}C:\users\walte_000\appdata\local\mycomgames\mycomgames.exe] => C:\users\walte_000\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{C501B56C-C4F8-4496-8F30-2D68C91F5EB3}C:\users\walte_000\appdata\local\mycomgames\mycomgames.exe] => C:\users\walte_000\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [{564A4039-5CE5-402F-8AD0-C0C53DDC38B7}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{DC9DC6DD-1F1C-429A-8849-FAC3B5B8DBDD}] => C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{8E93A3AB-455E-4E40-82E7-9D688F4CA3D2}] => C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{1FC556E7-7CF7-4139-B5AC-26D0C52572E7}] => C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{B5FDA54E-9BCD-4929-8691-790EE7FD4003}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D980727A-37C9-4AD7-B40B-D899D89572FC}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{417FC61E-83E0-489E-A5C6-0BB721B479CF}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{B2F6EC97-DA3C-4539-BF48-A22CA3606D4B}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{F1660764-5E9B-426A-811F-08F831B6D502}] => C:\Program Files\BitComet\BitComet.exe
FirewallRules: [{0B2ECFF9-744C-4B39-BB95-FB53019EF9DD}] => C:\Program Files\BitComet\BitComet.exe
FirewallRules: [{0266FE6F-75D4-4E72-A83F-DB35E131CFDE}] => C:\Program Files (x86)\Steam\steamapps\common\Arma 2\arma2.exe
FirewallRules: [{2C611AD2-9B9C-46E4-8AAC-1593A5F53E01}] => C:\Program Files (x86)\Steam\steamapps\common\Arma 2\arma2.exe
FirewallRules: [{E18B7E21-7E67-4559-B7C1-AE5AAE6F951E}] => C:\Program Files (x86)\Steam\steamapps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{5E5960DF-41C6-48AC-92D7-DF71D846F503}] => C:\Program Files (x86)\Steam\steamapps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{9BFFC57C-B875-4E85-B39F-AD27389277D6}] => C:\Program Files (x86)\Steam\steamapps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{3EDD216E-9157-4D74-AE6A-C2C0F8AE8B92}] => C:\Program Files (x86)\Steam\steamapps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{E8D3A7B2-D66A-4416-A032-95674F790E7C}] => C:\Program Files (x86)\Steam\steamapps\common\Arma 2 Operation Arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{406A4E48-F9EE-4E0B-82CA-FD771E48ED6F}] => C:\Program Files (x86)\Steam\steamapps\common\Arma 2 Operation Arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{073984F4-DA18-4A2B-A9F1-A9138A9AAAB9}] => C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{C51B8214-B9A8-4254-A2A3-D014133D9542}] => C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{7C09EC21-4398-4F1E-8725-0151138E9598}] => C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{B5DB1030-3CD5-468E-865A-E4E90C2C04F5}] => C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{114005AC-B629-48E6-89B9-349076F04145}] => C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{B246F8F2-F79C-4489-A105-746C3BA3D181}] => C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{56903BA6-F6C9-41DB-A4CD-BEFC93CD5F14}] => C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{4EAF3C66-B481-4441-8D9E-737FE488CFDD}] => C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{3B00F3DB-C461-4BA5-B915-5943A3B71818}] => C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{EA215F61-CE06-40C8-9C72-CBEFD1F68C19}] => C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [TCP Query User{93512F07-A3FB-4DC6-9F44-268F378E75E5}C:\games\world_of_tanks\worldoftanks.exe] => C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [UDP Query User{F5980B00-9451-4869-A70E-9C7E1E864CD0}C:\games\world_of_tanks\worldoftanks.exe] => C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [TCP Query User{C1114D3D-25E4-468C-922E-4877D259DA34}C:\games\world_of_tanks\wotlauncher.exe] => C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [UDP Query User{9F002840-E0BC-4C7F-885C-F48F3B638989}C:\games\world_of_tanks\wotlauncher.exe] => C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [{7E5FB919-12E3-47C9-A4B8-BF97A4C94AB3}] => C:\Users\Walte_000\AppData\Local\Chromatic\Application\chromatic.exe
FirewallRules: [{B3CF5D36-1D23-46CC-BDA6-6F6CB8D84BCB}] => C:\Users\Walte_000\AppData\Local\Chromatic\Application\chromatic.exe
FirewallRules: [{9ED92697-478F-4B9B-A1E9-8B729C287D8A}] => C:\Users\Walte_000\AppData\Local\Chromatic\Utils\Updater.exe
FirewallRules: [{146B7484-6A2A-4B73-BC09-7FCB87917397}] => C:\Users\Walte_000\AppData\Local\Chromatic\Utils\Updater.exe
FirewallRules: [{998DEAFA-5B03-44C2-A8DB-70800721DA7B}] => C:\Users\Walte_000\AppData\Local\wd\wd.exe
FirewallRules: [{AA342CF0-9A00-4F1E-8038-75DD9B31D37A}] => C:\Users\Walte_000\AppData\Local\wd\wd.exe
FirewallRules: [TCP Query User{541F94B6-4B7F-4E5F-B383-E4BA96C303AB}C:\users\walte_000\appdata\local\mycomgames\mycomgames.exe] => C:\users\walte_000\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{6DE0ABB5-E3EC-4F4C-ACFC-5D9A77A7E753}C:\users\walte_000\appdata\local\mycomgames\mycomgames.exe] => C:\users\walte_000\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [{5EAA64C9-E2A3-4BED-A80C-E7BAA24BAFA5}] => C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{BC12F13E-9252-473E-A739-6A38408E61A4}] => C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [TCP Query User{BBD75A57-2E10-4824-BF85-C5E21C476CEE}D:\mygames\armored warfare mycom beta\bin64\armoredwarfare.exe] => D:\mygames\armored warfare mycom beta\bin64\armoredwarfare.exe
FirewallRules: [UDP Query User{F3A37919-AD62-4C02-9E07-CA3A109CCDE8}D:\mygames\armored warfare mycom beta\bin64\armoredwarfare.exe] => D:\mygames\armored warfare mycom beta\bin64\armoredwarfare.exe
FirewallRules: [{A061EF0A-16D6-4919-8693-7B544870AD26}] => C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{E17E4837-5949-4393-AB44-92C9F5CF863F}] => C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{DA5B73C0-BBCB-418C-830B-49F9A201FC5A}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

28-12-2016 21:04:27 Scheduled Checkpoint
05-01-2017 19:05:41 Scheduled Checkpoint

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (01/05/2017 11:12:05 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FALLOUT)
Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (01/05/2017 11:12:05 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FALLOUT)
Description: Activation of app Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe!Microsoft.MicrosoftOfficeHub failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (01/05/2017 11:12:05 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FALLOUT)
Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (01/05/2017 11:12:03 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FALLOUT)
Description: Activation of app Microsoft.Windows.Photos_8wekyb3d8bbwe!App failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (01/05/2017 07:06:11 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (12/28/2016 09:04:41 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddWin32ServiceFiles: Unable to back up image of service Avast Firewall since QueryServiceConfig API failed

System Error:
The system cannot find the file specified.
.

Error: (12/28/2016 09:04:41 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (12/24/2016 05:00:48 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FALLOUT)
Description: Activation of app Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (12/24/2016 05:00:48 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FALLOUT)
Description: Activation of app Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (12/24/2016 05:00:47 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FALLOUT)
Description: Activation of app Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.


System errors:
=============
Error: (01/06/2017 11:05:20 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 and APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/06/2017 11:05:20 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 and APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/06/2017 11:05:20 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 and APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/05/2017 11:12:05 PM) (Source: DCOM) (EventID: 10010) (User: FALLOUT)
Description: The server microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca did not register with DCOM within the required timeout.

Error: (01/05/2017 11:12:05 PM) (Source: DCOM) (EventID: 10010) (User: FALLOUT)
Description: The server Microsoft.MicrosoftOfficeHub.AppXrqs94aemecwbtd1veqtvyn34m9ks80g7.mca did not register with DCOM within the required timeout.

Error: (01/05/2017 11:12:05 PM) (Source: DCOM) (EventID: 10010) (User: FALLOUT)
Description: The server microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca did not register with DCOM within the required timeout.

Error: (01/05/2017 11:12:03 PM) (Source: DCOM) (EventID: 10010) (User: FALLOUT)
Description: The server App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca did not register with DCOM within the required timeout.

Error: (01/05/2017 11:11:59 PM) (Source: DCOM) (EventID: 10010) (User: FALLOUT)
Description: The server {7160A13D-73DA-4CEA-95B9-37356478588A} did not register with DCOM within the required timeout.

Error: (01/05/2017 11:11:58 PM) (Source: DCOM) (EventID: 10010) (User: FALLOUT)
Description: The server {7160A13D-73DA-4CEA-95B9-37356478588A} did not register with DCOM within the required timeout.

Error: (01/05/2017 11:11:58 PM) (Source: DCOM) (EventID: 10010) (User: FALLOUT)
Description: The server {7160A13D-73DA-4CEA-95B9-37356478588A} did not register with DCOM within the required timeout.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-4720HQ CPU @ 2.60GHz
Percentage of memory in use: 17%
Total physical RAM: 16273.04 MB
Available physical RAM: 13351.76 MB
Total Virtual: 18705.04 MB
Available Virtual: 15717.49 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:372.6 GB) (Free:31.37 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Data) (Fixed) (Total:542.8 GB) (Free:452.51 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: ACB1C9AD)

Partition: GPT.

==================== End of Addition.txt ============================