Additional scan result of Farbar Recovery Scan Tool (x86) Version:27-09-2015 01
Ran by Gncomputers (2015-09-28 01:40:12)
Running from C:\Users\Gncomputers\Downloads
Microsoft Windows 7 Ultimate  Service Pack 1 (X86) (2012-07-07 13:59:26)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2123204161-853072409-3690002975-500 - Administrator - Disabled)
Gncomputers (S-1-5-21-2123204161-853072409-3690002975-1000 - Administrator - Enabled) => C:\Users\Gncomputers
Guest (S-1-5-21-2123204161-853072409-3690002975-501 - Limited - Disabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-2123204161-853072409-3690002975-1002 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2123204161-853072409-3690002975-1000\...\uTorrent) (Version: 3.4.5.41073 - BitTorrent Inc.)
Adobe Reader X (10.1.15) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.15 - Adobe Systems Incorporated)
Apple Application Support (32-bit) (HKLM\...\{3540ADD5-822B-47FB-B1C2-CD7B2C8E9FEC}) (Version: 4.0.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{A75CA58D-DB9C-4D14-9428-E0C7B0F623DC}) (Version: 9.0.0.26 - Apple Inc.)
ASIO4ALL (HKLM\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach)
Avast Free Antivirus (HKLM\...\Avast) (Version: 10.4.2233 - AVAST Software)
Bonjour (HKLM\...\{D168AAD0-6686-47C1-B599-CDD4888B9D1A}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 3.20 - Piriform)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Dropbox (HKU\S-1-5-21-2123204161-853072409-3690002975-1000\...\Dropbox) (Version: 3.8.8 - Dropbox, Inc.)
FL Studio 11 (HKLM\...\FL Studio 11) (Version:  - Image-Line)
FlowStone FL 3.0 (HKLM\...\FlowStone) (Version:  - )
FoneLab 8.0.55 (HKLM\...\{CA7ED0B0-3CD4-4254-A9D2-2D7F78C5E3C5}_is1) (Version: 8.0.55 - Aiseesoft Studio)
Google Chrome (HKLM\...\Google Chrome) (Version: 45.0.2454.101 - Google Inc.)
Google Update Helper (Version: 1.3.21.165 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.28.15 - Google Inc.) Hidden
iTunes (HKLM\...\{9E9CFD9F-64D6-498F-8584-E5CD08BA60BE}) (Version: 12.3.0.44 - Apple Inc.)
IVONA 2 (HKLM\...\IVONA 2) (Version: 1.6.60 - IVONA Software Sp. z o.o.)
Java(TM) 6 Update 20 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216020FF}) (Version: 6.0.200 - Sun Microsystems, Inc.)
Junk Mail filter update (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft DirectX SDK (June 2010) (HKLM\...\Microsoft DirectX SDK (June 2010)) (Version: 9.29.1962.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM\...\{95140000-007A-0409-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{86CE1746-9EFF-3C9C-8755-81EA8903AC34}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Sp5 (Version: 5.1.4324.0 - Microsoft) Hidden
Sp5Intl (Version: 5.1.4324.0 - Microsoft) Hidden
Sp5TTInt (Version: 5.1.4324.0 - Microsoft) Hidden
SpCommon (Version: 5.1.4324.0 - Microsoft) Hidden
SpPhones (Version: 6.0.3122.0 - Microsoft) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Vegas Pro 11.0 (HKLM\...\{E6F012B0-E930-11E0-A67A-F04DA23A5C58}) (Version: 11.0.370 - Sony)
Victoria 2 (HKLM\...\{9C3B7F54-C6E2-4A74-9937-9C6EBA10C4A2}) (Version:  - )
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
WinRAR 5.21 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WordWeb (HKLM\...\WordWeb) (Version: 6 - WordWeb Software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2123204161-853072409-3690002975-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Gncomputers\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2123204161-853072409-3690002975-1000_Classes\CLSID\{3059C9E6-9EDC-4C89-933E-C65623F8FD60}\localserver32 -> C:\Users\Gncomputers\AppData\Local\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2123204161-853072409-3690002975-1000_Classes\CLSID\{87DC457B-B35D-48AC-BD42-BDF35EF623CE}\localserver32 -> C:\Users\Gncomputers\AppData\Local\Dropbox\Update\1.3.27.35\DropboxUpdateOnDemand.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2123204161-853072409-3690002975-1000_Classes\CLSID\{9FAA38ED-5635-44F7-9BE0-8CAFE29B3783}\localserver32 -> C:\Users\Gncomputers\AppData\Local\Dropbox\Update\1.3.27.35\DropboxUpdateOnDemand.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2123204161-853072409-3690002975-1000_Classes\CLSID\{C0DD324D-A74F-4533-84AD-030F76771C77}\localserver32 -> C:\Users\Gncomputers\AppData\Local\Dropbox\Update\1.3.27.35\DropboxUpdateOnDemand.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2123204161-853072409-3690002975-1000_Classes\CLSID\{C32E3EEC-3C10-426E-95F3-38C7F139FADD}\localserver32 -> C:\Users\Gncomputers\AppData\Local\Dropbox\Update\1.3.27.35\DropboxUpdateOnDemand.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2123204161-853072409-3690002975-1000_Classes\CLSID\{E763661E-E497-4D41-AFF4-6BBCB62B9E89}\InprocServer32 -> C:\Users\Gncomputers\AppData\Local\Dropbox\Update\1.3.27.35\psuser.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2123204161-853072409-3690002975-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Gncomputers\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2123204161-853072409-3690002975-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Gncomputers\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2123204161-853072409-3690002975-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Gncomputers\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2123204161-853072409-3690002975-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Gncomputers\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2123204161-853072409-3690002975-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Gncomputers\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2123204161-853072409-3690002975-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Gncomputers\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2123204161-853072409-3690002975-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Gncomputers\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2123204161-853072409-3690002975-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Gncomputers\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2123204161-853072409-3690002975-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Gncomputers\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2123204161-853072409-3690002975-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Gncomputers\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2123204161-853072409-3690002975-1000_Classes\CLSID\{FE819BE5-BADF-4370-9913-6FB84ABA6FB1}\InprocServer32 -> C:\Users\Gncomputers\AppData\Local\Dropbox\Update\1.3.27.35\psuser.dll (Dropbox, Inc.)

==================== Restore Points =========================


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 07:04 - 2015-09-24 13:28 - 00003333 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 hl2rcv.adobe.com
127.0.0.1 adobeereg.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 3dns.adobe.com
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-1.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 adobe-dns-4.adobe.com
127.0.0.1 adobe-dns-5.adobe.com
127.0.0.1 hh-software.com
127.0.0.1 www.hh-software.com
127.0.0.1 activate.adobe.de
127.0.0.1 practivate.adobe.de
127.0.0.1 ereg.adobe.de
127.0.0.1 activate.wip3.adobe.de
127.0.0.1 wip3.adobe.de

There are 41 more lines.


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {08F6E8C2-1571-4803-8359-FCA6446B673E} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
Task: {1C0F5E56-9FBC-4130-B8A5-B2792E373B77} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-24] (Google Inc.)
Task: {40E5A3D8-D9FA-456E-A18A-D124BCB4109A} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2123204161-853072409-3690002975-1000Core => C:\Users\Gncomputers\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-09-23] (Dropbox, Inc.)
Task: {902DFAF7-C28E-4C15-8E5B-219DA79C8A37} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-06-23] (Piriform Ltd)
Task: {99ED8BA7-B099-499C-B935-C3024FB96874} - \DTReg -> No File <==== ATTENTION
Task: {9A28175A-20C0-4E7D-B34F-A53A8FE8DB0B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-24] (Google Inc.)
Task: {A982AC4E-4B61-4CD0-A8DE-6CC5C45F0B96} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-09-23] (AVAST Software)
Task: {AE9BA27F-25B4-48DA-84EF-D72599677A42} - System32\Tasks\{94DCE11B-0188-4B03-B629-BAB7B969A247} => pcalua.exe -a E:\Softwares\avg_free_stb_all_9_114_cnet.exe -d E:\Softwares
Task: {C399D39D-BBFC-4D64-9B3D-940A949B46AF} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2123204161-853072409-3690002975-1000UA => C:\Users\Gncomputers\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-09-23] (Dropbox, Inc.)
Task: {E8EBA390-CEA0-4782-8904-1668DB728EE2} - System32\Tasks\{DFC407C1-923E-422C-8AC2-5B90A724A566} => pcalua.exe -a C:\Users\GNCOMP~1\AppData\Local\Temp\U4A7E.tmp\UNT4A7F.tmp.exe -c -uninstall

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2123204161-853072409-3690002975-1000Core.job => C:\Users\Gncomputers\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2123204161-853072409-3690002975-1000UA.job => C:\Users\Gncomputers\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-09-23 04:17 - 2015-09-23 04:17 - 00103376 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-09-23 04:17 - 2015-09-23 04:17 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-09-27 05:46 - 2015-09-27 05:46 - 02966016 _____ () C:\Program Files\AVAST Software\Avast\defs\15092601\algo.dll
2015-09-27 21:58 - 2015-09-27 21:58 - 02966016 _____ () C:\Program Files\AVAST Software\Avast\defs\15092700\algo.dll
2015-09-15 14:25 - 2015-09-15 14:25 - 00073512 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-09-15 14:25 - 2015-09-15 14:25 - 01040144 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-09-23 04:17 - 2015-09-23 04:17 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2012-07-23 04:52 - 2010-10-23 10:06 - 00022792 ____N () C:\Program Files\WordWeb\WUCNT.dll
2015-09-25 18:26 - 2015-09-24 07:34 - 01501512 _____ () C:\Program Files\Google\Chrome\Application\45.0.2454.101\libglesv2.dll
2015-09-25 18:26 - 2015-09-24 07:34 - 00081224 _____ () C:\Program Files\Google\Chrome\Application\45.0.2454.101\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:91467C9A
AlternateDataStreams: C:\Users\Gncomputers\Application Data:NT
AlternateDataStreams: C:\Users\Gncomputers\AppData\Roaming:NT

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2123204161-853072409-3690002975-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Gncomputers\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^Users^Gncomputers^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Dropbox Update => "C:\Users\Gncomputers\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
MSCONFIG\startupreg: FoneLabAppService => C:\Program Files\Aiseesoft Studio\FoneLab\AppService.exe
MSCONFIG\startupreg: GoogleChromeAutoLaunch_E8ECCB72F80CEB0C4E6CE696614E02B1 => "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{98424A22-8289-4361-9122-5C69C80AA26A}E:\games\games\gta san andreas\samp server\server\samp-server.exe] => (Allow) E:\games\games\gta san andreas\samp server\server\samp-server.exe
FirewallRules: [UDP Query User{FB340ADE-613D-4557-A90F-6DE075A6BB1C}E:\games\games\gta san andreas\samp server\server\samp-server.exe] => (Allow) E:\games\games\gta san andreas\samp server\server\samp-server.exe
FirewallRules: [TCP Query User{2A6CE45D-64AE-4B8C-8EC2-29D7B365E1E2}C:\windows\system32\taskhost.exe] => (Allow) C:\windows\system32\taskhost.exe
FirewallRules: [UDP Query User{9A044ACE-9585-4CB4-AF19-D7BDD4559BFD}C:\windows\system32\taskhost.exe] => (Allow) C:\windows\system32\taskhost.exe
FirewallRules: [{F44DC025-02C1-469A-B7EB-C2BB306EB325}] => (Allow) C:\Program Files\uTorrent\uTorrent.exe
FirewallRules: [{360970C3-4DF0-4FE6-A0C2-8B13AE1B89E1}] => (Allow) C:\Program Files\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{757C17DA-405C-4397-9F5B-A8354B014F25}C:\windows\system32\taskhost.exe] => (Allow) C:\windows\system32\taskhost.exe
FirewallRules: [UDP Query User{E3CD6BFE-DBF5-4CD0-97BD-06E6F20CCA7E}C:\windows\system32\taskhost.exe] => (Allow) C:\windows\system32\taskhost.exe
FirewallRules: [TCP Query User{35C97A5A-9EF5-4214-8E56-676BD1C5866D}E:\games\games\gta san andreas\samp server\server\samp-server.exe] => (Allow) E:\games\games\gta san andreas\samp server\server\samp-server.exe
FirewallRules: [UDP Query User{531A4AC1-9EED-4A1E-8A55-310017C21B7B}E:\games\games\gta san andreas\samp server\server\samp-server.exe] => (Allow) E:\games\games\gta san andreas\samp server\server\samp-server.exe
FirewallRules: [TCP Query User{B95F90D3-2104-469B-BED3-BBD68DCD2D05}C:\windows\system32\taskeng.exe] => (Block) C:\windows\system32\taskeng.exe
FirewallRules: [UDP Query User{9EC335E4-94E8-4E41-8B7A-075855C31349}C:\windows\system32\taskeng.exe] => (Block) C:\windows\system32\taskeng.exe
FirewallRules: [TCP Query User{44A3ACAB-CF34-4B03-A0B6-970537477577}C:\windows\explorer.exe] => (Block) C:\windows\explorer.exe
FirewallRules: [UDP Query User{CE12D38C-0AA8-4864-8E25-81329442AB7B}C:\windows\explorer.exe] => (Block) C:\windows\explorer.exe
FirewallRules: [TCP Query User{62909C51-416D-414D-85A5-373087CF8647}C:\windows\explorer.exe] => (Allow) C:\windows\explorer.exe
FirewallRules: [UDP Query User{DE4299C9-677C-4816-A0B2-7A61155C3871}C:\windows\explorer.exe] => (Allow) C:\windows\explorer.exe
FirewallRules: [{95FA6F85-0F35-4AF3-9C61-D3C0747C2FA4}] => (Allow) C:\Users\Gncomputers\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{7D6A23DA-5CE6-4BDA-91AC-138E9B440E44}] => (Allow) C:\Users\Gncomputers\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [TCP Query User{D6441352-FDB8-4C23-9C9B-2DF420BA37E5}C:\windows\system32\taskeng.exe] => (Block) C:\windows\system32\taskeng.exe
FirewallRules: [UDP Query User{8072258E-6B7E-43C8-9DD3-56A6F73090C7}C:\windows\system32\taskeng.exe] => (Block) C:\windows\system32\taskeng.exe
FirewallRules: [TCP Query User{0B790F10-571B-483E-A6B0-85F2AF81A1FA}C:\users\gncomputers\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\gncomputers\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{2879E523-3511-429C-AD1E-FFC704699667}C:\users\gncomputers\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\gncomputers\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{28D99E70-4950-4FED-8AD1-67C5434FCE81}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B842D9C3-6B1C-4F3C-92E3-D67F404C73FE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F317D994-EFD6-40AB-AEED-ED1B9D8C95E7}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{98AF50B4-DAB6-4D67-A11F-6D3D090776B5}] => (Allow) C:\Users\Gncomputers\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{3A86C3C6-1806-40AF-BFD7-8C9FB427D481}] => (Allow) C:\Users\Gncomputers\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{DDF9CBCD-179B-460B-872B-63D5EC8C7A9B}] => (Allow) C:\Users\Gncomputers\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F34364F0-5C7F-4A6F-BA06-6CAA8B9C4423}] => (Allow) C:\Users\Gncomputers\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1AC79D88-5279-4F9A-8B1B-85845C966865}] => (Allow) C:\Users\Gncomputers\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8AD5438B-B419-4EAE-A686-F36BEA3B0E86}] => (Allow) C:\Users\Gncomputers\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{7D2C0435-3190-476C-9424-92E4EC9AE3B0}] => (Allow) C:\Users\Gncomputers\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{146C83D8-8992-49F6-9F04-8D2166666A21}] => (Allow) C:\Users\Gncomputers\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C7CBE42A-DABE-44CA-AB8C-2C617910AAF4}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: Hamachi Network Interface
Description: Hamachi Network Interface
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn, Inc.
Service: hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Unknown Device
Description: Unknown Device
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: 
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. 

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/27/2015 05:24:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11653

Error: (09/27/2015 05:24:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11653

Error: (09/27/2015 05:24:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/27/2015 05:24:33 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10655

Error: (09/27/2015 05:24:33 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10655

Error: (09/27/2015 05:24:33 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/27/2015 05:24:32 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 9485

Error: (09/27/2015 05:24:32 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 9485

Error: (09/27/2015 05:24:32 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/27/2015 05:24:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8455


System errors:
=============
Error: (09/27/2015 10:00:56 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error: 
%%-2140993535

Error: (09/27/2015 10:00:56 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error: 
%%-2140993535

Error: (09/27/2015 10:00:56 PM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: 0x80630801

Error: (09/27/2015 10:00:54 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error: 
%%-2140993535

Error: (09/27/2015 10:00:54 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error: 
%%-2140993535

Error: (09/27/2015 10:00:54 PM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: 0x80630801

Error: (09/27/2015 10:00:52 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error: 
%%-2140993535

Error: (09/27/2015 10:00:52 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error: 
%%-2140993535

Error: (09/27/2015 10:00:52 PM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: 0x80630801

Error: (09/27/2015 09:56:39 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error: 
%%-2140993535


==================== Memory info =========================== 

Processor: Pentium(R) Dual-Core CPU T4300 @ 2.10GHz
Percentage of memory in use: 64%
Total physical RAM: 1977.98 MB
Available physical RAM: 708.11 MB
Total Virtual: 3955.95 MB
Available Virtual: 1913.3 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:58.5 GB) (Free:18.03 GB) NTFS
Drive d: (Local Disk) (Fixed) (Total:12 GB) (Free:11.9 GB) NTFS
Drive e: () (Fixed) (Total:162.29 GB) (Free:102.73 GB) NTFS
Drive g: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[system with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 2C9B7617)
Partition 1: (Not Active) - (Size=12 GB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=58.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=162.3 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================