Additional scan result of Farbar Recovery Scan Tool (x86) Version:09-12-2015
Ran by ПК (2015-12-11 17:30:21)
Running from C:\Users\ПК\Downloads
Microsoft Windows 7 Начальная  Service Pack 1 (X86) (2012-08-16 14:53:39)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Администратор (S-1-5-21-1717853897-3824431654-278837176-500 - Administrator - Disabled)
Гость (S-1-5-21-1717853897-3824431654-278837176-501 - Limited - Disabled)
ПК (S-1-5-21-1717853897-3824431654-278837176-1001 - Administrator - Enabled) => C:\Users\ПК

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.3.181.34 - Adobe Systems Incorporated)
Adobe Reader 9.3 - Russian (HKLM\...\{AC76BA86-7AD7-1049-7B44-A93000000001}) (Version: 9.3.0 - Adobe Systems Incorporated)
AIDA64 Extreme Edition v3.00 (HKLM\...\AIDA64 Extreme Edition_is1) (Version: 3.00 - FinalWire Ltd.)
ASUS WebStorage (HKLM\...\ASUS WebStorage) (Version: 3.0.102.211 - eCareme Technologies, Inc.)
AsusScreensaver (HKLM\...\{99E77016-BCF2-48C8-9119-43ECF5815F65}) (Version: 1.05 - AsusTek Computer Inc.)
ASUSUpdate for Eee PC (HKLM\...\{587178E7-B1DF-494E-9838-FA4DD36E873C}) (Version: 1.06.03 - ASUSTeK Computer Inc.)
AsusVibe2.0 (HKLM\...\Asus Vibe2.0) (Version: 2.0.5.103 - ASUSTEK)
Atheros Client Installation Program (HKLM\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 7.0 - Atheros)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.36 - Atheros Communications Inc.)
ATI Catalyst Install Manager (HKLM\...\{46DD5269-1B4F-9416-039E-9206D7901CBA}) (Version: 3.0.829.0 - ATI Technologies, Inc.)
Avast Free Antivirus (HKLM\...\Avast) (Version: 10.2.2218 - AVAST Software)
CapsHook (HKLM\...\{4B5092B6-F231-4D18-83BC-2618B729CA45}) (Version: 1.0.0.7 - AsusTek Computer)
CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Eee Docking 3.10.4 (HKLM\...\Eee Docking_is1) (Version: 3.10.4 - ASUSTek Computer Inc.)
ETDWare PS/2-x86 7.0.5.13_WHQL (HKLM\...\Elantech) (Version: 7.0.5.13 - ELAN Microelectronics Corp.)
ExpressGateCloud (HKLM\...\InstallShield_{36B0DC39-3282-40EB-8587-B875CE46C3A7}) (Version: 2.7.42.274 - VideACE Co.)
ExpressGateCloud (Version: 2.7.42.274 - VideACE Co.) Hidden
Facebook Video Calling 3.1.0.521 (HKLM\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
FontResizer (HKLM\...\InstallShield_{17780F99-A9DF-450B-81B3-6781B20A17A8}) (Version: 1.01.0011 - ASUSTek)
FontResizer (Version: 1.01.0011 - ASUSTek) Hidden
Google Chrome (HKU\S-1-5-21-1717853897-3824431654-278837176-1001\...\Google Chrome) (Version: 47.0.2526.80 - Google Inc.)
InstantOn (HKLM\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 2.0.5 - ASUS)
Java 7 Update 15 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217015FF}) (Version: 7.0.150 - Oracle)
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LiveUpdate (HKLM\...\{38E5A3B1-ADF1-47E0-8024-76310A30EB36}) (Version: 1.29 - AsusTek Computer Inc.)
Mesh Runtime (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Русский) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1049) (Version: 4.5.50938 - Корпорация Майкрософт)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2010 (HKLM\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - русский (HKLM\...\{90140011-0066-0419-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office нажми и работай 2010 (HKLM\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
MultiFon (HKLM\...\{E9D73EB5-B6D9-4E7E-B34B-66BA6C2AB045}) (Version: 2.0.0.5301 - MegaFon)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6293 - Realtek Semiconductor Corp.)
Skype Click to Call (HKLM\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.5 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.102 - Skype Technologies S.A.)
syncables desktop SE (HKLM\...\{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables)
The KMPlayer (remove only) (HKLM\...\The KMPlayer) (Version:  - )
WinRAR 4.01 (RePack by Otanim) (HKLM\...\WinRAR (RePack by Otanim)_is1) (Version: 5.10.1.1267 - )
Елемент керування Windows Live Mesh ActiveX для віддалених підключень (HKLM\...\{6756D5CA-3E31-4308-9BF0-79DFD1AF196E}) (Version: 15.4.5722.2 - Microsoft Corporation)
Основи Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (HKLM\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Основные компоненты Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Фотоколекція Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Элемент управления Windows Live Mesh ActiveX для удаленных подключений (HKLM\...\{BCB0D6F7-7EAB-4009-A6F2-8E0E7F317773}) (Version: 15.4.5722.2 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1717853897-3824431654-278837176-1001_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\ПК\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1717853897-3824431654-278837176-1001_Classes\CLSID\{1FD1FE74-9E3C-4C1C-AEEB-AAB592AD770F}\localserver32 -> C:\Users\ПК\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
CustomCLSID: HKU\S-1-5-21-1717853897-3824431654-278837176-1001_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\ПК\AppData\Local\Google\Update\1.3.29.1\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1717853897-3824431654-278837176-1001_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\ПК\AppData\Local\Google\Update\1.3.29.1\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1717853897-3824431654-278837176-1001_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Users\ПК\AppData\Local\Google\Update\1.3.29.1\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1717853897-3824431654-278837176-1001_Classes\CLSID\{5C65F4B0-3651-4514-B207-D10CB699B14B}\localserver32 -> C:\Users\ПК\AppData\Local\Google\Chrome\Application\47.0.2526.80\delegate_execute.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1717853897-3824431654-278837176-1001_Classes\CLSID\{5E71E4F3-E8C7-4906-9626-973E418762B6}\InprocServer32 -> C:\Users\ПК\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll (Facebook Inc.)
CustomCLSID: HKU\S-1-5-21-1717853897-3824431654-278837176-1001_Classes\CLSID\{724FE766-71C2-4E6E-8379-CD0EF5E51BDD}\InprocServer32 -> C:\Users\??\AppData\Local\Google\Update\1.3.28.17\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-1717853897-3824431654-278837176-1001_Classes\CLSID\{8B9F5BF4-0407-4BB2-9FED-4C0372DABD00}\localserver32 -> C:\Users\ПК\AppData\Local\Facebook\Video\Skype\FacebookVideoCallingProxy.exe (Skype Limited)
CustomCLSID: HKU\S-1-5-21-1717853897-3824431654-278837176-1001_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\ПК\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1717853897-3824431654-278837176-1001_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\ПК\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1717853897-3824431654-278837176-1001_Classes\CLSID\{CBE9C57E-FFA9-4123-8354-AD360D6DD3CC}\InprocServer32 -> C:\Users\ПК\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CustomCLSID: HKU\S-1-5-21-1717853897-3824431654-278837176-1001_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\??\AppData\Local\Google\Update\1.3.29.1\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-1717853897-3824431654-278837176-1001_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\ПК\AppData\Local\Google\Update\1.3.29.1\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1717853897-3824431654-278837176-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\ПК\AppData\Local\Google\Update\1.3.29.1\psuser.dll (Google Inc.)

==================== Restore Points =========================

17-07-2015 12:02:08 Центр обновления Windows
18-07-2015 03:40:56 Центр обновления Windows
15-08-2015 06:17:02 Центр обновления Windows
08-12-2015 16:09:09 Центр обновления Windows
10-12-2015 16:30:34 JRT Pre-Junkware Removal

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {5802D0A8-939C-4E67-8664-E088074237A0} - System32\Tasks\{42E14C0F-69F0-4ACC-B623-65480C3E3A5F} => pcalua.exe -a C:\Users\ПК\Desktop\ZHPFix.exe -d C:\Users\ПК\Desktop
Task: {59996073-80F3-4EB6-A0AD-C203E1AD59B0} - System32\Tasks\{61C75BEA-F085-44BA-AED6-CABBD6830FB2} => pcalua.exe -a C:\Users\ПК\Downloads\ZHPFix.exe -d C:\Users\ПК\Downloads
Task: {5F0E8DB9-F7D9-46D0-B24C-D08722077278} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1717853897-3824431654-278837176-1001UA => C:\Users\ПК\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-11-06] (Facebook Inc.)
Task: {7D1A8B5D-6E07-49E0-8DD6-1D38B80AC949} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-18] (Avast Software s.r.o.)
Task: {A0C0105B-6210-46F9-A54C-E96C67475B1E} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1717853897-3824431654-278837176-1001Core => C:\Users\ПК\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-11-06] (Facebook Inc.)
Task: {A3A9BBF2-5F1A-4CE6-926F-A03EB83EECE7} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1717853897-3824431654-278837176-1001UA => C:\Users\ПК\AppData\Local\Google\Update\GoogleUpdate.exe [2015-12-06] (Google Inc.)
Task: {ABAF0A58-8C4C-46F4-B723-0C710734BCA4} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2015-12-06] (AVAST Software)
Task: {C00EBAC7-D595-4203-B3D0-EBD17A8A6F4E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
Task: {C8A17295-B7F1-47C7-806E-CEBA9C060E19} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1717853897-3824431654-278837176-1001Core => C:\Users\ПК\AppData\Local\Google\Update\GoogleUpdate.exe [2015-12-06] (Google Inc.)
Task: {D21F6024-191F-4454-BBBC-09A650DA2549} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => C:\windows\system32\aitagent.exe [2010-11-20] (Корпорация Майкрософт (Microsoft Corp.))

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1717853897-3824431654-278837176-1001Core.job => C:\Users\ПК\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1717853897-3824431654-278837176-1001UA.job => C:\Users\ПК\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1717853897-3824431654-278837176-1001Core.job => C:\Users\ПК\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1717853897-3824431654-278837176-1001UA.job => C:\Users\ПК\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-05-26 22:04 - 2015-05-26 22:04 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-05-26 22:04 - 2015-05-26 22:04 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-12-10 15:51 - 2015-12-10 15:51 - 02803200 _____ () C:\Program Files\AVAST Software\Avast\defs\15121000\algo.dll
2015-12-11 17:19 - 2015-12-11 17:19 - 02803200 _____ () C:\Program Files\AVAST Software\Avast\defs\15121100\algo.dll
2010-09-02 12:08 - 2010-09-02 12:08 - 00118784 _____ () C:\Program Files\Asus\ASUS WebStorage\3.0.102.211\AsusWSShellExt.dll
2012-09-13 19:56 - 2011-05-28 19:04 - 00140288 _____ () C:\Program Files\WinRAR\rarext.dll
2011-07-20 21:46 - 2011-07-20 21:46 - 00065024 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2011-03-25 14:55 - 2011-03-25 14:55 - 00091464 _____ () C:\ExpressGateUtil\VAWinService.exe
2011-03-25 14:55 - 2011-03-25 14:55 - 00157000 _____ () C:\ExpressGateUtil\libexpat.dll
2011-03-25 14:55 - 2011-03-25 14:55 - 00061768 _____ () C:\ExpressGateUtil\netProfileDatabase.DLL
2015-05-26 22:05 - 2015-05-26 22:05 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2011-07-20 21:46 - 2011-07-20 21:46 - 00095232 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2011-03-14 12:21 - 2011-03-14 12:21 - 00016384 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
2011-07-20 21:35 - 2011-07-20 21:35 - 00243712 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2015-12-10 23:05 - 2015-12-04 22:32 - 01583432 _____ () C:\Users\ПК\AppData\Local\Google\Chrome\Application\47.0.2526.80\libglesv2.dll
2015-12-10 23:05 - 2015-12-04 22:32 - 00081224 _____ () C:\Users\ПК\AppData\Local\Google\Chrome\Application\47.0.2526.80\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1717853897-3824431654-278837176-1001\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 212.56.129.228 - 212.56.132.20
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk => C:\windows\pss\AsusVibeLauncher.lnk.CommonStartup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: ASUSPRP => C:\Program Files\ASUS\APRP\APRP.EXE
MSCONFIG\startupreg: ASUSWebStorage => C:\Program Files\ASUS\ASUS WebStorage\3.0.102.211\AsusWSPanel.exe /S
MSCONFIG\startupreg: CapsHook => AsusSender.exe C:\Program Files\ASUS\CapsHook\CapsHook.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: Eee Docking => C:\Program Files\ASUS\Eee Docking\Eee Docking.exe autorun
MSCONFIG\startupreg: ETDWare => %ProgramFiles%\Elantech\ETDCtrl.exe
MSCONFIG\startupreg: Google Update => "C:\Users\ПК\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: LiveUpdate => AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto
MSCONFIG\startupreg: multifon.exe => "C:\Program Files\MegaFon\MultiFon\multifon.exe" /dontstart
MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: Trend Micro Client Framework => "C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe"
MSCONFIG\startupreg: VAWinAgent => C:\ExpressGateUtil\VAWinAgent.exe
MSCONFIG\startupreg: VizorHtmlDialog.exe => "C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe" "DEF" "EULA" "C:\Program Files\Trend Micro\Titanium\UI\Installer.cmpt\resources\preinstall_01_welcome_trial.html" "DEF" "DEF" "DEF"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{167072D0-ECC3-4D67-9884-8D5A2F387AA1}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{7A475C4E-1629-431E-B6AA-9BA9E8AFB1E5}] => (Allow) LPort=2869
FirewallRules: [{4D6EDDA9-2A06-4E44-98D7-09F949CF0A02}] => (Allow) LPort=1900
FirewallRules: [{99459D28-7691-46C8-A11D-B41450570A59}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{94366F6E-4F84-4941-A1C6-DD8CB6BDB37E}] => (Allow) C:\Program Files\Windows Live\Mesh\MOE.exe
FirewallRules: [{DFC0FD03-5A89-4425-8CEA-C65635D1100F}] => (Allow) LPort=5353
FirewallRules: [{AA61543F-DB16-4808-9348-B852915041D9}] => (Allow) LPort=8182
FirewallRules: [{3F58F491-6CC5-47E2-AA7D-5E6B17087B59}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{6BA55ABB-7F91-4841-97D1-3094E01B7347}] => (Allow) C:\Users\ПК\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{CCDFA281-5B88-4338-8580-7472B77A1FE4}] => (Allow) C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/10/2015 10:57:19 PM) (Source: ESENT) (EventID: 454) (User: )
Description: wuaueng.dll (1116) SUS20ClientDataStore: Не удалось выполнить восстановление базы данных. Непредвиденная ошибка -1032.

Error: (12/10/2015 10:57:19 PM) (Source: ESENT) (EventID: 439) (User: )
Description: wuaueng.dll (1116) SUS20ClientDataStore: Не удается записать теневой заголовок для файла C:\windows\SoftwareDistribution\DataStore\DataStore.edb. Ошибка -1032.

Error: (12/10/2015 10:57:19 PM) (Source: ESENT) (EventID: 490) (User: )
Description: wuaueng.dll (1116) SUS20ClientDataStore: Не удалось открыть файл "C:\windows\SoftwareDistribution\DataStore\DataStore.edb" для чтения и записи, системная ошибка 32 (0x00000020): "Процесс не может получить доступ к файлу, так как этот файл занят другим процессом. ".  Операция открытия файла не будет выполнена, ошибка: -1032 (0xfffffbf8).

Error: (12/10/2015 10:57:08 PM) (Source: ESENT) (EventID: 454) (User: )
Description: wuaueng.dll (1116) SUS20ClientDataStore: Не удалось выполнить восстановление базы данных. Непредвиденная ошибка -1032.

Error: (12/10/2015 10:57:08 PM) (Source: ESENT) (EventID: 439) (User: )
Description: wuaueng.dll (1116) SUS20ClientDataStore: Не удается записать теневой заголовок для файла C:\windows\SoftwareDistribution\DataStore\DataStore.edb. Ошибка -1032.

Error: (12/10/2015 10:57:08 PM) (Source: ESENT) (EventID: 490) (User: )
Description: wuaueng.dll (1116) SUS20ClientDataStore: Не удалось открыть файл "C:\windows\SoftwareDistribution\DataStore\DataStore.edb" для чтения и записи, системная ошибка 32 (0x00000020): "Процесс не может получить доступ к файлу, так как этот файл занят другим процессом. ".  Операция открытия файла не будет выполнена, ошибка: -1032 (0xfffffbf8).

Error: (12/10/2015 10:56:55 PM) (Source: ESENT) (EventID: 454) (User: )
Description: wuaueng.dll (1116) SUS20ClientDataStore: Не удалось выполнить восстановление базы данных. Непредвиденная ошибка -1032.

Error: (12/10/2015 10:56:55 PM) (Source: ESENT) (EventID: 439) (User: )
Description: wuaueng.dll (1116) SUS20ClientDataStore: Не удается записать теневой заголовок для файла C:\windows\SoftwareDistribution\DataStore\DataStore.edb. Ошибка -1032.

Error: (12/10/2015 10:56:55 PM) (Source: ESENT) (EventID: 490) (User: )
Description: wuaueng.dll (1116) SUS20ClientDataStore: Не удалось открыть файл "C:\windows\SoftwareDistribution\DataStore\DataStore.edb" для чтения и записи, системная ошибка 32 (0x00000020): "Процесс не может получить доступ к файлу, так как этот файл занят другим процессом. ".  Операция открытия файла не будет выполнена, ошибка: -1032 (0xfffffbf8).

Error: (12/10/2015 10:56:37 PM) (Source: ESENT) (EventID: 104) (User: )
Description: wuaueng.dll (1116) SUS20ClientDataStore: Остановлен экземпляр СУБД (0) с ошибкой (-1090).


System errors:
=============
Error: (12/10/2015 07:36:47 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Сбой при загрузке драйвера(ов) перезагрузки или запуска системы: 
cdrom

Error: (12/10/2015 07:35:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Сбой при запуске службы "HWDeviceService.exe" из-за ошибки 
%%2

Error: (12/10/2015 07:31:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Служба Кэш шрифтов Windows Presentation Foundation 3.0.0.0 была неожиданно завершена. Это произошло 1 раз(а). Следующее корректирующее действие будет предпринято через 0 мсек: Перезапуск службы.

Error: (12/10/2015 07:31:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Служба Служба общих сетевых ресурсов проигрывателя Windows Media была неожиданно завершена. Это произошло 1 раз(а). Следующее корректирующее действие будет предпринято через 30000 мсек: Перезапуск службы.

Error: (12/10/2015 07:31:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Служба Установщик модулей Windows была неожиданно завершена. Это произошло 1 раз(а). Следующее корректирующее действие будет предпринято через 120000 мсек: Перезапуск службы.

Error: (12/10/2015 07:31:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Служба Windows Search была неожиданно завершена. Это произошло 1 раз(а). Следующее корректирующее действие будет предпринято через 30000 мсек: Перезапуск службы.

Error: (12/10/2015 07:31:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Служба "Application Virtualization Client" неожиданно прервана. Это произошло (раз): 1.

Error: (12/10/2015 07:31:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Служба "Client Virtualization Handler" неожиданно прервана. Это произошло (раз): 1.

Error: (12/10/2015 07:31:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Служба Windows Live ID Sign-in Assistant была неожиданно завершена. Это произошло 1 раз(а). Следующее корректирующее действие будет предпринято через 10000 мсек: Перезапуск службы.

Error: (12/10/2015 07:31:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Служба "VideAceWindowsService" неожиданно прервана. Это произошло (раз): 1.


==================== Memory info =========================== 

Processor: AMD C-60 APU with Radeon(tm) HD Graphics
Percentage of memory in use: 65%
Total physical RAM: 1645.46 MB
Available physical RAM: 563.65 MB
Total Virtual: 9837.46 MB
Available Virtual: 8374.66 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:100 GB) (Free:61.07 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:183.07 GB) (Free:178.83 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: A8D6F410)
Partition 1: (Active) - (Size=100 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=15 GB) - (Type=1B)
Partition 3: (Not Active) - (Size=183.1 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=16 MB) - (Type=EF)

==================== End of Addition.txt ============================