Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16.01.2019 01 Ran by Petrus (16-01-2019 23:26:43) Running from D:\Dowloads\apps Windows 7 Professional N Service Pack 1 (X64) (2013-10-01 18:47:24) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-2519034047-2250226979-2394731953-500 - Administrator - Disabled) Guest (S-1-5-21-2519034047-2250226979-2394731953-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2519034047-2250226979-2394731953-1002 - Limited - Enabled) Petrus (S-1-5-21-2519034047-2250226979-2394731953-1000 - Administrator - Enabled) => C:\Users\Petrus UpdatusUser (S-1-5-21-2519034047-2250226979-2394731953-1003 - Limited - Enabled) => C:\Users\UpdatusUser ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AV: Bitdefender Antivirus (Enabled - Up to date) {0E17DB7D-A20F-62CE-B95B-17DB0CDFE318} AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Bitdefender Antispyware (Enabled - Up to date) {B5763A99-8435-6D40-83EB-2CA97758A9A5} FW: Bitdefender Firewall (Enabled) {362C5A58-E860-6396-9204-BEEEF20CA463} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKLM-x32\...\uTorrent) (Version: 2.0.3 - ) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 19.010.20069 - Adobe Systems Incorporated) Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated) Altium Designer (HKLM-x32\...\Altium Designer Release 10 {92A1EBF6-495D-448A-91A6-24B80137D4A3}) (Version: 10.1810.28368 - Altium Limited) Amazon Kindle (HKLM-x32\...\Amazon Kindle) (Version: 1.17.1.44183 - Amazon) Arduino (HKLM-x32\...\Arduino) (Version: 1.8.5 - Arduino LLC) AssaultCube v1.2.0.2 (HKLM-x32\...\AssaultCube) (Version: 1.2.0.2 - ) Audacity 2.0.4 (HKLM-x32\...\Audacity_is1) (Version: 2.0.4 - Audacity Team) Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 23.0.8.115 - Bitdefender) Bitdefender Internet Security (HKLM\...\Bitdefender) (Version: 23.0.11.48 - Bitdefender) Broadcom Card Reader Driver Installer (HKLM\...\{4710662C-8204-4334-A977-B1AC9E547819}) (Version: 15.0.7.3 - Broadcom Corporation) Broadcom NetLink Controller (HKLM\...\{C91DCB72-F5BB-410D-A91A-314F5D1B4284}) (Version: 15.0.7.1 - Broadcom Corporation) CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.3.9.2809 - CDBurnerXP) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5306 - CDBurnerXP) Cisco WebEx Meetings (HKLM-x32\...\ActiveTouchMeetingClient) (Version: - Cisco WebEx LLC) CodeBlocks (HKU\S-1-5-21-2519034047-2250226979-2394731953-1000\...\CodeBlocks) (Version: 16.01 - The Code::Blocks Team) CodeBlocks (HKU\S-1-5-21-2519034047-2250226979-2394731953-1003\...\CodeBlocks) (Version: 13.12 - The Code::Blocks Team) CPUID HWMonitor 1.26 (HKLM\...\CPUID HWMonitor_is1) (Version: - ) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0337 - Disc Soft Ltd) Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.7000.7 - Dolby Laboratories Inc) EAGLE 7.2.0 (HKLM-x32\...\EAGLE 7.2.0) (Version: 7.2.0 - CadSoft Computer GmbH) f.lux (HKU\S-1-5-21-2519034047-2250226979-2394731953-1000\...\Flux) (Version: - f.lux Software LLC) f.lux (HKU\S-1-5-21-2519034047-2250226979-2394731953-1003\...\Flux) (Version: - ) Free Audio CD Burner version 2.0.30.922 (HKLM-x32\...\Free Audio CD Burner_is1) (Version: 2.0.30.922 - DVDVideoSoft Ltd.) Free Download Manager 3.9.4 (HKLM-x32\...\Free Download Manager_is1) (Version: - FreeDownloadManager.ORG) GeekBuddy (HKLM\...\{64353004-AB3A-434D-8B97-85FFC6AE841A}) (Version: 4.9.69 - Comodo Security Solutions Inc) GIMP 2.8.8 (HKLM\...\GIMP-2_is1) (Version: 2.8.8 - The GIMP Team) Git version 2.5.0 (HKLM\...\Git_is1) (Version: 2.5.0 - The Git Development Community) GitHub (HKU\S-1-5-21-2519034047-2250226979-2394731953-1000\...\5f7eb300e2ea4ebf) (Version: 3.0.12.0 - GitHub, Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden GoTo Opener (HKLM-x32\...\{1F803452-798F-49FB-A5DD-9F527F7017E4}) (Version: 1.0.473 - LogMeIn, Inc.) GoToMeeting 8.34.0.9446 (HKU\S-1-5-21-2519034047-2250226979-2394731953-1000\...\GoToMeeting) (Version: 8.34.0.9446 - LogMeIn, Inc.) Grand Theft Auto Vice City (HKU\S-1-5-21-2519034047-2250226979-2394731953-1003\...\{4B35F00C-E63D-40DC-9839-DF15A33EAC46}) (Version: 1.00.000 - ) HP USB Disk Storage Format Tool (HKLM-x32\...\{0E0DF90C-D0BA-4C89-9262-AD78D1A3DE51}) (Version: - ) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation) Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2712 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation) Intel(R) Turbo Boost Technology Monitor 2.5 (HKLM\...\{6C9365EB-1F9E-4893-9196-3EC77C88D0C5}) (Version: 2.5.1.0 - Intel) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.220 - Intel Corporation) Java 8 Update 191 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180191F0}) (Version: 8.0.1910.12 - Oracle Corporation) Java SE Development Kit 8 Update 74 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180740}) (Version: 8.0.740.2 - Oracle Corporation) Kinetis Design Studio (HKLM-x32\...\{78EA3558-0D67-4B87-8EAF-C4E8BF8A7EF9}) (Version: 3.0.0 - SOMNIUM Technologies) Komputerowy Słownik Niemiecko-Polski 0.8.2 (HKLM-x32\...\Komputerowy Słownik Niemiecko-Polski_is1) (Version: - Maciej Pańków) Logic (HKLM\...\{548EC3C7-70D3-4C75-A078-EBE6DC0DE7C3}) (Version: 1.2.10 - Saleae LLC) Malwarebytes version 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes) MATLAB R2011a (HKLM\...\MatlabR2011a) (Version: 7.12 - The MathWorks, Inc.) Meld (HKLM-x32\...\{790FF9F0-3503-4E4D-A50D-6B85749C8651}) (Version: 3.16.2 - The Meld project) Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Excel 2010 (HKLM\...\Office14.EXCEL) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation) Microsoft PowerPoint 2010 (HKLM\...\Office14.POWERPOINT) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Express - ENU (HKLM-x32\...\Microsoft Visual C++ 2010 Express - ENU) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (HKLM\...\{BCA26999-EC22-3007-BB79-638913079C9A}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Word 2010 (HKLM\...\Office14.WORD) (Version: 14.0.4763.1000 - Microsoft Corporation) Mozilla Firefox 62.0 (x64 pl) (HKLM\...\Mozilla Firefox 62.0 (x64 pl)) (Version: 62.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 58.0 - Mozilla) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.2 - Notepad++ Team) NVIDIA Graphics Driver 296.32 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 296.32 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) P&E Device Drivers (HKLM-x32\...\PEDrivers) (Version: - ) Private Internet Access v81 (HKLM-x32\...\{148169C2-5558-4C3E-B38A-7B1813A264CA}_is1) (Version: 81 - London Trust Media, Inc.) Python 3.4 py2exe-0.9.2.0 (HKLM\...\py2exe-py3.4) (Version: - ) Python 3.4.3 (64-bit) (HKLM\...\{9529565f-e693-3f11-b3bf-8cd545f5f9a0}) (Version: 3.4.3150 - Python Software Foundation) Python 3.7.2 (64-bit) (HKU\S-1-5-21-2519034047-2250226979-2394731953-1000\...\{c0f1e976-f585-48f8-968d-48c870496d4e}) (Version: 3.7.2150.0 - Python Software Foundation) Python 3.7.2 Add to Path (64-bit) (HKLM\...\{55DD38E4-4D05-4A05-A1CD-415A07DAF40B}) (Version: 3.7.2150.0 - Python Software Foundation) Hidden Python 3.7.2 Core Interpreter (64-bit) (HKLM\...\{8BDA6D6E-234F-4DD8-A7CA-6DB55F6B609E}) (Version: 3.7.2150.0 - Python Software Foundation) Hidden Python 3.7.2 Development Libraries (64-bit) (HKLM\...\{D2CC67CD-ED4E-40BC-94FD-3EA65A6824D6}) (Version: 3.7.2150.0 - Python Software Foundation) Hidden Python 3.7.2 Documentation (64-bit) (HKLM\...\{1A91F9E1-13CE-4D8B-9257-61376EC9ED92}) (Version: 3.7.2150.0 - Python Software Foundation) Hidden Python 3.7.2 Executables (64-bit) (HKLM\...\{24260BC9-6F83-4F8F-96AE-6D654621DDF7}) (Version: 3.7.2150.0 - Python Software Foundation) Hidden Python 3.7.2 pip Bootstrap (64-bit) (HKLM\...\{E33F2815-DA54-4554-87A2-FD25EAB1A963}) (Version: 3.7.2150.0 - Python Software Foundation) Hidden Python 3.7.2 Standard Library (64-bit) (HKLM\...\{BE46C9B8-DD8E-4835-B686-644EA6415FEE}) (Version: 3.7.2150.0 - Python Software Foundation) Hidden Python 3.7.2 Tcl/Tk Support (64-bit) (HKLM\...\{1ED81958-CE51-4748-ABFA-583227794FDB}) (Version: 3.7.2150.0 - Python Software Foundation) Hidden Python 3.7.2 Test Suite (64-bit) (HKLM\...\{C1CA4559-3153-4EF9-8B74-CC804965E441}) (Version: 3.7.2150.0 - Python Software Foundation) Hidden Python 3.7.2 Utility Scripts (64-bit) (HKLM\...\{259C5D04-A6E0-47F3-AB23-91F2E9828466}) (Version: 3.7.2150.0 - Python Software Foundation) Hidden Python Launcher (HKLM-x32\...\{FA2A3867-8965-4CF7-83E2-C8960652F5AD}) (Version: 3.7.6565.0 - Python Software Foundation) Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 3.1 - Qualcomm Atheros) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6543 - Realtek Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.50 - Piriform) SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.29.0 - SAMSUNG Electronics Co., Ltd.) scilab-5.4.1 (64-bit) (HKLM\...\scilab-5.4.1 (64-bit)_is1) (Version: - Scilab Enterprises) Sentinel Protection Installer 7.6.7 (HKLM-x32\...\{C238971D-5059-4B2F-B760-BB237AF4206A}) (Version: 7.6.7 - SafeNet, Inc.) Skype Web Plugin (HKLM-x32\...\{CD62BCB9-02D2-443F-AC7A-443377DA5B38}) (Version: 7.31.0.56 - Skype Technologies S.A.) Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.) Słownik YDP (niemiecko-polski, polsko-niemiecki) (HKLM-x32\...\YdpDict200) (Version: - ) Spesoft Free CD Ripper Version 4.2 (HKLM-x32\...\Spesoft Free CD Ripper_is1) (Version: - Spesoft) STM32CubeMX (HKLM-x32\...\STM32CubeMX) (Version: 4.11.0 - STMicroelectronics) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.41.5 - Synaptics Incorporated) The Klub 17 (HKU\S-1-5-21-2519034047-2250226979-2394731953-1000\...\Klub-7) (Version: 7.5.0 - Team WRK17) Tibia (HKU\S-1-5-21-2519034047-2250226979-2394731953-1000\...\Tibia) (Version: - CipSoft GmbH) Twierdza Krzyżowiec (HKLM-x32\...\{E5B77685-3AEB-432D-8F73-29FEEEE89613}) (Version: 1.00.0000 - Firefly Studios) UltraVnc (HKLM\...\Ultravnc2_is1) (Version: 1.2.1.2 - uvnc bvba) USBPcap 1.2.0.3 (HKLM\...\USBPcap) (Version: 1.2.0.3 - Tomasz Mon) VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN) VMware Workstation (HKLM\...\{0D94F75A-0EA6-4951-B3AF-B145FA9E05C6}) (Version: 10.0.1 - VMware, Inc.) Hidden VMware Workstation (HKLM-x32\...\VMware_Workstation) (Version: 10.0.1 - VMware, Inc) Warcraft III eSK 1.26.0.6401 (HKLM-x32\...\Warcraft III eSK 1.26.0.6401) (Version: - ) Wielki słownik angielsko-polski i polsko-angielski PWN-OXFORD (HKLM-x32\...\Wielki słownik angielsko-polski i polsko-angielski PWN-OXFORD) (Version: - ) Win32DiskImager version 0.9.5 (HKLM-x32\...\{D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1) (Version: 0.9.5 - ImageWriter Developers) WinDjView 2.0.2 (HKLM\...\WinDjView) (Version: 2.0.2 - Andrew Zhezherun) Windows Driver Package - BeagleBone CDM Driver Package - Bus/D2XX Driver (03/18/2013 2.08.14) (HKLM\...\FFDF997AC6E448F0BF7B699A8B3C99CB87785193) (Version: 03/18/2013 2.08.14 - BeagleBone) Windows Driver Package - BeagleBone CDM Driver Package - VCP Driver (03/18/2013 2.08.14) (HKLM\...\DA44737142523A4057DD71693B7D00CE1E5733EE) (Version: 03/18/2013 2.08.14 - BeagleBone) Windows Driver Package - FTDI CDM Driver Package (10/22/2009 2.06.00) (HKLM\...\3B093C44CA19A7D5324F4A3CEB666DD4EBB257D6) (Version: 10/22/2009 2.06.00 - FTDI) Windows Driver Package - FTDI CDM Driver Package (10/22/2009 2.06.00) (HKLM\...\5AB23CC5A2E8D3A0AA129214C6F9CE8D7F4874B9) (Version: 10/22/2009 2.06.00 - FTDI) Windows Driver Package - IAR Systems (IJET) IARUSB (05/23/2012 2.05) (HKLM\...\1C43F1704FCDAEB095E591CCD332A2EEE6D1B03B) (Version: 05/23/2012 2.05 - IAR Systems) Windows Driver Package - IAR Systems (SigUSB3) IARUSB (05/02/2013 1.2.3.3) (HKLM\...\C91C3DBD969776AC431390C385B6D21100CEDEC2) (Version: 05/02/2013 1.2.3.3 - IAR Systems) Windows Driver Package - Linux Developer Community (usbser) Ports (11/15/2012 5.1.2600.0) (HKLM\...\857AC726688E383CA737CAF280F4F9B9B2CB8657) (Version: 11/15/2012 5.1.2600.0 - Linux Developer Community) Windows Driver Package - Linux Developer Community Net (06/21/2006 6.0.6000.16384) (HKLM\...\F8DB389D3D629D89F82795C4EB490AE50D7FB01E) (Version: 06/21/2006 6.0.6000.16384 - Linux Developer Community) Windows Driver Package - Saleae LLC (WinUSB) USB (08/20/2013 6.0.6000.16388) (HKLM\...\BD9EADEC31DCD1E266A1735E4DC87B51EA97A9D6) (Version: 08/20/2013 6.0.6000.16388 - Saleae LLC) Windows Driver Package - Segger (jlink) USB (07/28/2014 2.6.8.1) (HKLM\...\468237BA12C6D9DD0125166A16609C632EE9CF1C) (Version: 07/28/2014 2.6.8.1 - Segger) Windows Driver Package - SEGGER (JLinkCDC_x64) Ports (08/28/2014 6.0.2601.5) (HKLM\...\ED80E3D3A350D18BFD3D3D8DAED8E2B19105763A) (Version: 08/28/2014 6.0.2601.5 - SEGGER) Windows Driver Package - STMicroelectronics (usbser) Ports (01/03/2015 1.1) (HKLM\...\8B490B43468268910E742A8433A1F69F5DA16BC9) (Version: 01/03/2015 1.1 - STMicroelectronics) Windows Driver Package - STMicroelectronics (usbser) Ports (12/10/2013 1.0) (HKLM\...\45AA86EE6DDE2E6B24D33192285E3F816B891B86) (Version: 12/10/2013 1.0 - STMicroelectronics) Windows Driver Package - STMicroelectronics (WinUSB) STLinkWinUSB (01/21/2013 1.01) (HKLM\...\9D86A7873F09A2D5C42DD364C17C404218AE945B) (Version: 01/21/2013 1.01 - STMicroelectronics) Windows Driver Package - STMicroelectronics (WinUSB) STLinkWinUSB (12/10/2013 1.01) (HKLM\...\A4903F0008EC669EE631C16D8D91D9E04DFC6557) (Version: 12/10/2013 1.01 - STMicroelectronics) Windows Driver Package - STMicroelectronics USBDevice (12/05/2012 13.54.20.543) (HKLM\...\5F098C624211E38F05D1721159DCE8A657A06CCE) (Version: 12/05/2012 13.54.20.543 - STMicroelectronics) Windows Driver Package - Texas Instruments CDM Driver Package (03/18/2011 2.08.14) (HKLM\...\0BDF85E56A265712467599C1BB6297100A196F83) (Version: 03/18/2011 2.08.14 - Texas Instruments) Windows Driver Package - Texas Instruments CDM Driver Package (03/18/2011 2.08.14) (HKLM\...\75CE7050FCC4D8267A3BD5D3253B1AF44CB375B9) (Version: 03/18/2011 2.08.14 - Texas Instruments) Windows Driver Package - Texas Instruments Inc. (WinUSB) StellarisDFUDeviceClass (08/03/2012 1.2.9270) (HKLM\...\A0AA8F842A8763D58C48062D95A9CB19C452DF57) (Version: 08/03/2012 1.2.9270 - Texas Instruments Inc.) Windows Driver Package - Texas Instruments Inc. (WinUSB) StellarisDFUDeviceClass (09/30/2011 1.2.8114) (HKLM\...\30B1E6EA4B589C7D5E107255B3C2B786EBFABB3B) (Version: 09/30/2011 1.2.8114 - Texas Instruments Inc.) Windows Driver Package - Texas Instruments, Inc. (usbser) Ports (08/03/2012 2.0.9270) (HKLM\...\8A1FDB05EC5DC94785A88769D4A9AF2F496970A1) (Version: 08/03/2012 2.0.9270 - Texas Instruments, Inc.) Windows Driver Package - Texas Instruments, Inc. (usbser) Ports (09/30/2011 2.0.8114) (HKLM\...\80D059E5CF6F17C07049753AA3CC77328486BF6D) (Version: 09/30/2011 2.0.8114 - Texas Instruments, Inc.) Windows Driver Package - Texas Instruments, Inc. (WinUSB) StellarisICDIDeviceClass (08/03/2012 2.0.9270) (HKLM\...\811EE677BA910AF18E88222F81F2AA6F083E3C53) (Version: 08/03/2012 2.0.9270 - Texas Instruments, Inc.) Windows Driver Package - Texas Instruments, Inc. (WinUSB) StellarisICDIDeviceClass (09/30/2011 2.0.8114) (HKLM\...\0E6C17C1AEF97CE518314A8E68886747B632015E) (Version: 09/30/2011 2.0.8114 - Texas Instruments, Inc.) WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.) WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) Wireshark 2.4.5 64-bit (HKLM-x32\...\Wireshark) (Version: 2.4.5 - The Wireshark developer community, hxxps://www.wireshark.org) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-2519034047-2250226979-2394731953-1000_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\Petrus\AppData\Local\GoToMeeting\8953\G2MOutlookAddin64.dll => No File CustomCLSID: HKU\S-1-5-21-2519034047-2250226979-2394731953-1000_Classes\CLSID\{A62E09B4-6467-4E0F-9B52-E61D8BC9FC69}\localserver32 -> C:\Users\Petrus\AppData\Local\SkypePlugin\7.31.0.56\GatewayVersion-x64.exe (Skype Technologies S.A.) CustomCLSID: HKU\S-1-5-21-2519034047-2250226979-2394731953-1000_Classes\CLSID\{BEA218D2-6950-497B-9434-61683EC065FE}\InprocServer32 -> C:\Users\Petrus\AppData\Local\Programs\Python\Launcher\pyshellext.amd64.dll (Python Software Foundation) CustomCLSID: HKU\S-1-5-21-2519034047-2250226979-2394731953-1000_Classes\CLSID\{CBF9CD8C-2714-4F36-B76A-43E6C7547BC2}\localserver32 -> C:\Users\Petrus\AppData\Local\SkypePlugin\7.31.0.56\EdgeCalling.exe (Skype Technologies S.A.) CustomCLSID: HKU\S-1-5-21-2519034047-2250226979-2394731953-1000_Classes\CLSID\{E5A7A7B5-9D06-4DBE-BAC0-04B69FF070B5}\InprocServer32 -> C:\Users\Petrus\AppData\Local\SkypePlugin\7.31.0.56\GatewayActiveX-x64.dll (Skype Technologies S.A.) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2016-05-17] () ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal) ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => D:\VMWare\vmdkShellExt.dll [2013-10-18] (VMware, Inc.) ContextMenuHandlers2-x32: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => D:\VMWare\x64\vmdkShellExt64.dll [2013-10-18] (VMware, Inc.) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2012-03-27] (Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2012-03-21] (NVIDIA Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {183CCF2E-8BFF-4551-97AA-3360DBC01FF0} - System32\Tasks\Private Internet Access Startup => %SYSTEMDRIVE%/Program Files/pia_manager/pia_manager.exe Task: {1C76B113-1343-43A1-B05E-AA48CB00222B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems Incorporated) Task: {653874A6-8B80-47E7-B786-01E902819836} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-21] (Google Inc.) Task: {9D29D8A3-8B72-4567-BD08-E61F0F2B6F0B} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2018-11-15] (Bitdefender) Task: {A073F1A9-5230-4911-BEF3-CF1118744F0C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-21] (Google Inc.) Task: {B93A4301-E6E1-4D05-80B2-636D456FFECC} - System32\Tasks\G2MUpdateTask-S-1-5-21-2519034047-2250226979-2394731953-1000 => C:\Users\Petrus\AppData\Local\GoToMeeting\9446\g2mupdate.exe Task: {E6A79660-880F-44C8-BFAD-D23C486FB973} - System32\Tasks\G2MUploadTask-S-1-5-21-2519034047-2250226979-2394731953-1000 => C:\Users\Petrus\AppData\Local\GoToMeeting\9446\g2mupload.exe Task: {F4688588-865B-4997-84C6-6F15C893E641} - System32\Tasks\{0232A3E5-3E69-433C-8C2C-13003FDEC624} => C:\Windows\system32\pcalua.exe -a D:\Altium\System\Installation\uninstall.bat (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-2519034047-2250226979-2394731953-1000.job => C:\Users\Petrus\AppData\Local\GoToMeeting\9446\g2mupdate.exe Task: C:\Windows\Tasks\G2MUploadTask-S-1-5-21-2519034047-2250226979-2394731953-1000.job => C:\Users\Petrus\AppData\Local\GoToMeeting\9446\g2mupload.exe ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\": WMI:subscription\__EventFilter->BVTFilter: WMI:subscription\CommandLineEventConsumer->BVTConsumer: ShortcutWithArgument: C:\Users\Petrus\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\4dd27fe0c0617864\Readium.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=fepbnnnkkadjhjahcafoaglimekefifl ==================== Loaded Modules (Whitelisted) ============== 2018-11-14 22:20 - 2018-11-14 22:20 - 000994752 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_02951_002\ashttpbr.mdl 2018-11-14 22:20 - 2018-11-14 22:20 - 000544880 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_02951_002\ashttpdsp.mdl 2018-11-14 22:20 - 2018-11-14 22:20 - 003240080 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_02951_002\ashttpph.mdl 2018-11-14 22:20 - 2018-11-14 22:20 - 001530368 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_02951_002\ashttprbl.mdl 2019-01-02 01:27 - 2019-01-02 18:39 - 002712432 _____ () D:\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2019-01-02 01:27 - 2019-01-02 18:39 - 002842608 _____ () D:\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll 2013-10-18 12:10 - 2013-10-18 12:10 - 014405200 _____ () D:\VMWare\vmware-hostd.exe 2016-05-17 23:42 - 2016-05-17 23:42 - 000230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll 2013-10-01 20:35 - 2012-03-27 01:33 - 000094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2018-12-16 09:30 - 2018-12-12 06:11 - 005237216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libglesv2.dll 2018-12-16 09:30 - 2018-12-12 06:11 - 000117216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libegl.dll 2013-10-18 12:46 - 2013-10-18 12:46 - 001260624 _____ () D:\VMWare\libxml2.dll 2016-02-12 14:51 - 2016-02-12 14:51 - 000172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\b4aed9b5bac22d4e9008e99e935fe2de\IsdiInterop.ni.dll 2013-10-14 21:55 - 2012-02-01 15:25 - 000059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:34 - 2019-01-16 22:56 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;D:\MATLAB\runtime\win64;D:\MATLAB\bin;D:\Python\Scripts;D:\Skype\Phone\ HKCU\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;D:\MATLAB\runtime\win64;D:\MATLAB\bin;D:\Python\Scripts;D:\Skype\Phone\ HKU\S-1-5-21-2519034047-2250226979-2394731953-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Petrus\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == If an entry is included in the fixlist, it will be removed. MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Aktywacja Testera.lnk => C:\Windows\pss\Aktywacja Testera.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Start GeekBuddy.lnk => C:\Windows\pss\Start GeekBuddy.lnk.CommonStartup MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" MSCONFIG\startupreg: ApnTBMon => "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" MSCONFIG\startupreg: BCSSync => "D:\Office\Office14\BCSSync.exe" /DelayServices MSCONFIG\startupreg: DAEMON Tools Lite => "D:\DAEMON\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: Dolby Home Theater v4 => "C:\Dolby PCEE4\pcee4.exe" -autostart MSCONFIG\startupreg: KiesAirMessage => D:\KIEs\Kies\KiesAirMessage.exe -startup MSCONFIG\startupreg: KiesPreload => D:\KIEs\Kies\Kies.exe /preload MSCONFIG\startupreg: KiesTrayAgent => D:\KIEs\Kies\KiesTrayAgent.exe MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: tvncontrol => "C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe" -controlservice -slave ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Corporation) FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Corporation) FirewallRules: [{0E712D3B-42D5-4943-A203-212859E2A5AC}] => (Allow) D:\Skype\Phone\Skype.exe (Skype Technologies S.A.) FirewallRules: [{15E70C4D-16F8-4245-826B-E760CE4E33D6}] => (Allow) D:\uTorrent\uTorrent.exe (BitTorrent, Inc.) FirewallRules: [{7A0981E0-9BE2-4A72-8455-CB7746F0DC84}] => (Allow) D:\uTorrent\uTorrent.exe (BitTorrent, Inc.) FirewallRules: [{66EB2928-9A84-4EAF-8243-6E523665D4B3}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation) FirewallRules: [{2068D80D-648C-4F09-B0EA-1A87639446DC}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation) FirewallRules: [{3209C02F-77AA-4AF0-BAB1-E257AEF4F219}] => (Allow) C:\Windows\Temp\CMC_DRAGON\restart_helper.exe (Comodo Security Solutions, Inc.) FirewallRules: [{76D94495-1CB4-42B8-9952-3D241A9E83C1}] => (Allow) C:\Windows\Temp\CMC_DRAGON\restart_helper.exe (Comodo Security Solutions, Inc.) FirewallRules: [TCP Query User{EB7803B5-BE7E-4A47-B118-B19B2DC1E1AD}D:\cisco\cisco packet tracer 6.0.1\bin\packettracer6.exe] => (Allow) D:\cisco\cisco packet tracer 6.0.1\bin\packettracer6.exe No File FirewallRules: [UDP Query User{BF5CE99E-7BA2-4D42-BF31-F109C7F88F8A}D:\cisco\cisco packet tracer 6.0.1\bin\packettracer6.exe] => (Allow) D:\cisco\cisco packet tracer 6.0.1\bin\packettracer6.exe No File FirewallRules: [TCP Query User{839A6506-B7B8-4BCB-8E6E-B87184D0EE7E}D:\altium\dxp.exe] => (Allow) D:\altium\dxp.exe () FirewallRules: [UDP Query User{FE227A7B-B2FA-4218-BD30-A58D9833E22E}D:\altium\dxp.exe] => (Allow) D:\altium\dxp.exe () FirewallRules: [TCP Query User{0355C95F-94DB-44E4-9367-D63E23DA6E8D}D:\cisco\cisco packet tracer 6.0.1\bin\packettracer6.exe] => (Allow) D:\cisco\cisco packet tracer 6.0.1\bin\packettracer6.exe No File FirewallRules: [UDP Query User{F54A2B66-A97F-4A34-A5D8-4EEEE42BCF0A}D:\cisco\cisco packet tracer 6.0.1\bin\packettracer6.exe] => (Allow) D:\cisco\cisco packet tracer 6.0.1\bin\packettracer6.exe No File FirewallRules: [TCP Query User{D32A4CC5-2C63-4B1A-83E6-366AA5091FD6}D:\altium\dxp.exe] => (Allow) D:\altium\dxp.exe () FirewallRules: [UDP Query User{217B3EBA-C6CF-433E-9890-38F62871BD08}D:\altium\dxp.exe] => (Allow) D:\altium\dxp.exe () FirewallRules: [{527B1098-DEC4-4A18-A953-6FC203A350AB}] => (Allow) D:\VMWare\vmware-authd.exe (VMware, Inc.) FirewallRules: [{98FD3961-0D9A-48AF-A370-1351553932EC}] => (Allow) D:\VMWare\vmware-authd.exe (VMware, Inc.) FirewallRules: [{557581C0-FC39-45BB-B9DC-37E65DBC5EF7}] => (Allow) D:\VMWare\vmware-hostd.exe () FirewallRules: [{6935DCD3-6ABC-4F94-B86F-7EA869C4CF0D}] => (Allow) D:\VMWare\vmware-hostd.exe () FirewallRules: [TCP Query User{043E0C1F-A154-4A15-8195-7C5443F5AD07}C:\program files (x86)\free download manager\fdmwi.exe] => (Block) C:\program files (x86)\free download manager\fdmwi.exe () FirewallRules: [UDP Query User{A941E79E-9D49-4D1E-AEE4-D82EDD3DA4B8}C:\program files (x86)\free download manager\fdmwi.exe] => (Block) C:\program files (x86)\free download manager\fdmwi.exe () FirewallRules: [{8EBDDA65-D992-421E-9E4E-610F695C1954}] => (Allow) C:\Users\Petrus\AppData\Local\Temp\7zS2425\HPDiagnosticCoreUI.exe No File FirewallRules: [{BD703441-68AC-4BFC-A9CF-012C86CDE81E}] => (Allow) C:\Users\Petrus\AppData\Local\Temp\7zS2425\HPDiagnosticCoreUI.exe No File FirewallRules: [TCP Query User{23CEDA07-2FC1-4C41-A145-5491A35D5E86}D:\java\bin\java.exe] => (Block) D:\java\bin\java.exe (Oracle Corporation) FirewallRules: [UDP Query User{B286824C-FD6C-4638-82C5-7B49B084CF58}D:\java\bin\java.exe] => (Block) D:\java\bin\java.exe (Oracle Corporation) FirewallRules: [{39A28CEC-E6F9-4FAF-BEE6-177D838AD90A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe No File FirewallRules: [TCP Query User{0EEDBD05-583D-4738-8B32-EDE5E1E041A7}D:\freescale\eclipse\kinetis-design-studio.exe] => (Allow) D:\freescale\eclipse\kinetis-design-studio.exe () FirewallRules: [UDP Query User{C8209B3A-A44B-42EA-BAF7-5160671351A1}D:\freescale\eclipse\kinetis-design-studio.exe] => (Allow) D:\freescale\eclipse\kinetis-design-studio.exe () FirewallRules: [TCP Query User{D91BAD77-4443-4ED5-AB97-A8DE446E7FA9}D:\freescale\eclipse\plugins\com.pemicro.debug.gdbjtag.pne_2.0.8.201504092111\win32\pegdbserver_console.exe] => (Allow) D:\freescale\eclipse\plugins\com.pemicro.debug.gdbjtag.pne_2.0.8.201504092111\win32\pegdbserver_console.exe No File FirewallRules: [UDP Query User{E01E72F8-E9E0-48F9-BFF7-13A5D697C0EC}D:\freescale\eclipse\plugins\com.pemicro.debug.gdbjtag.pne_2.0.8.201504092111\win32\pegdbserver_console.exe] => (Allow) D:\freescale\eclipse\plugins\com.pemicro.debug.gdbjtag.pne_2.0.8.201504092111\win32\pegdbserver_console.exe No File FirewallRules: [TCP Query User{FBA970DE-19EE-49D1-996E-7B43E28CE3FB}D:\freescale\eclipse\plugins\com.pemicro.debug.gdbjtag.pne_2.1.5.201507151627\win32\pegdbserver_console.exe] => (Allow) D:\freescale\eclipse\plugins\com.pemicro.debug.gdbjtag.pne_2.1.5.201507151627\win32\pegdbserver_console.exe (P&E Microcomputer Systems, Inc.) FirewallRules: [UDP Query User{41B4A357-440F-4F0C-8889-877C8A1A3F04}D:\freescale\eclipse\plugins\com.pemicro.debug.gdbjtag.pne_2.1.5.201507151627\win32\pegdbserver_console.exe] => (Allow) D:\freescale\eclipse\plugins\com.pemicro.debug.gdbjtag.pne_2.1.5.201507151627\win32\pegdbserver_console.exe (P&E Microcomputer Systems, Inc.) FirewallRules: [{41E8DA04-E14A-4446-BC0A-8A970657EC16}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe No File FirewallRules: [{4BDD9FA4-2CB3-4096-B86C-CE08816FC336}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe No File FirewallRules: [TCP Query User{67C6FDC1-210F-4999-81C0-7CBCDCC39752}D:\androidstudio\bin\studio64.exe] => (Allow) D:\androidstudio\bin\studio64.exe No File FirewallRules: [UDP Query User{216CE793-9222-4381-9FF3-E72A2BB8CA1B}D:\androidstudio\bin\studio64.exe] => (Allow) D:\androidstudio\bin\studio64.exe No File FirewallRules: [{2F9297E5-9D97-4AC7-8BAF-7A4732A31119}] => (Allow) C:\Windows\SysWOW64\muzapp.exe (Musiccity Co.Ltd.) FirewallRules: [{13DF5ED5-C2F8-41A3-94F6-CA722DE770DD}] => (Allow) C:\Windows\SysWOW64\muzapp.exe (Musiccity Co.Ltd.) FirewallRules: [TCP Query User{FC9077BC-4C4C-4700-8099-C9DC3DA01CE1}D:\sw4stm32\plugins\fr.ac6.mcu.externaltools.openocd.win32_1.8.0.201603291052\tools\openocd\bin\openocd.exe] => (Allow) D:\sw4stm32\plugins\fr.ac6.mcu.externaltools.openocd.win32_1.8.0.201603291052\tools\openocd\bin\openocd.exe No File FirewallRules: [UDP Query User{B0A01737-6C4B-47F9-BE20-9555ED50A93C}D:\sw4stm32\plugins\fr.ac6.mcu.externaltools.openocd.win32_1.8.0.201603291052\tools\openocd\bin\openocd.exe] => (Allow) D:\sw4stm32\plugins\fr.ac6.mcu.externaltools.openocd.win32_1.8.0.201603291052\tools\openocd\bin\openocd.exe No File FirewallRules: [{10BEE3A6-1386-4A2D-A2EE-556BCF96E913}] => (Allow) C:\Program Files\UltraVNC\vncviewer.exe (UltraVNC) FirewallRules: [{61D7A8A6-F64B-4631-A209-E59F531CF5C8}] => (Allow) C:\Program Files\UltraVNC\vncviewer.exe (UltraVNC) FirewallRules: [TCP Query User{B1A5F95C-EFFC-4F87-9193-6640AFA687C8}C:\users\petrus\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\petrus\appdata\local\skypeplugin\pluginhost.exe (Skype Technologies S.A.) FirewallRules: [UDP Query User{0BEC999E-53D9-48CE-935D-95875E7EF978}C:\users\petrus\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\petrus\appdata\local\skypeplugin\pluginhost.exe (Skype Technologies S.A.) FirewallRules: [TCP Query User{E7439E17-4460-449A-98E5-94CC2F590D28}D:\arduino\java\bin\javaw.exe] => (Allow) D:\arduino\java\bin\javaw.exe (Oracle Corporation) FirewallRules: [UDP Query User{5CAE6ACF-DC5A-4B15-8624-C3524608FB52}D:\arduino\java\bin\javaw.exe] => (Allow) D:\arduino\java\bin\javaw.exe (Oracle Corporation) FirewallRules: [{E1217A0C-F76A-4C42-8C4C-A4553F57FD44}] => (Block) D:\arduino\java\bin\javaw.exe (Oracle Corporation) FirewallRules: [{64CF151F-7491-49D4-88CD-9437B9373B80}] => (Block) D:\arduino\java\bin\javaw.exe (Oracle Corporation) FirewallRules: [{C7018A47-D469-44BE-A814-66F8F7A9234D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) FirewallRules: [{26A7BADC-9D53-48CB-AA29-7D84E602F26F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) FirewallRules: [{FFE4102A-422C-456A-9CF6-8EA86ABF85FF}] => (Allow) C:\Users\Petrus\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe No File FirewallRules: [{70674105-C653-4320-A318-552CEB8A1B37}] => (Allow) C:\Users\Petrus\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe No File FirewallRules: [{D4AFF6AF-04E7-43AB-ACCD-21C4621276A2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ==================== Restore Points ========================= ATTENTION: System Restore is disabled ==================== Faulty Device Manager Devices ============= Name: VMware Virtual Ethernet Adapter for VMnet1 Description: VMware Virtual Ethernet Adapter for VMnet1 Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: VMware, Inc. Service: VMnetAdapter Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: VMware Virtual Ethernet Adapter for VMnet8 Description: VMware Virtual Ethernet Adapter for VMnet8 Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: VMware, Inc. Service: VMnetAdapter Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (01/11/2019 06:44:34 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (01/10/2019 10:51:09 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (01/09/2019 12:29:40 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (01/09/2019 12:26:42 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: mbamservice.exe, version: 3.2.0.704, time stamp: 0x5b9acf90 Faulting module name: ntdll.dll, version: 6.1.7601.19160, time stamp: 0x56bcd74c Exception code: 0xc0000005 Fault offset: 0x000000000004a604 Faulting process id: 0x818 Faulting application start time: 0x01d4a79b5ad65714 Faulting application path: D:\Malwarebytes\Anti-Malware\mbamservice.exe Faulting module path: C:\Windows\SYSTEM32\ntdll.dll Report Id: dadb1e33-139c-11e9-bb35-b888e3b1fe2e Error: (01/08/2019 10:45:42 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (01/07/2019 06:46:35 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (01/06/2019 10:09:23 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: The program explorer.exe version 6.1.7601.17514 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: 16b4 Start Time: 01d4a603fc9308dd Termination Time: 4103 Application Path: C:\Windows\explorer.exe Report Id: 52e130f4-11f7-11e9-bfda-b888e3b1fe2e Error: (01/06/2019 10:08:35 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: The program explorer.exe version 6.1.7601.17514 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: 1ea0 Start Time: 01d4a603687f8ef2 Termination Time: 14103 Application Path: C:\Windows\explorer.exe Report Id: 30a244e3-11f7-11e9-bfda-b888e3b1fe2e System errors: ============= Error: (01/11/2019 06:49:30 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: The NVIDIA Update Service Daemon service hung on starting. Error: (01/11/2019 01:44:16 AM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the VSSERV service. Error: (01/09/2019 12:27:08 AM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the VSSERV service. Error: (01/05/2019 08:57:47 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Browser service. Error: (12/27/2018 09:03:55 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Bitdefender Virus Shield service terminated unexpectedly. It has done this 1 time(s). Error: (12/22/2018 08:16:14 PM) (Source: Microsoft-Windows-BitLocker-Driver) (EventID: 24620) (User: NT AUTHORITY) Description: Encrypted volume check: Volume information on G: cannot be read. Error: (12/22/2018 08:16:14 PM) (Source: Disk) (EventID: 15) (User: ) Description: The device, \Device\Harddisk2\DR2, is not ready for access yet. Error: (12/22/2018 08:02:52 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: The Bitdefender Virus Shield service hung on starting. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz Percentage of memory in use: 43% Total physical RAM: 8030.36 MB Available physical RAM: 4530.38 MB Total Virtual: 9874.56 MB Available Virtual: 5294.2 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:50 GB) (Free:2.38 GB) NTFS Drive d: () (Fixed) (Total:400 GB) (Free:10.8 GB) NTFS Drive e: (TWIERDZA) (CDROM) (Total:1.38 GB) (Free:0 GB) CDFS Drive f: (VS2010Express) (CDROM) (Total:0.68 GB) (Free:0 GB) UDF Drive g: () (Removable) (Total:119.22 GB) (Free:86.97 GB) exFAT \\?\Volume{f9d1aa35-2ac8-11e3-a670-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: 1AAF1E19) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=50 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=400 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Protective MBR) (Size: 119.3 GB) (Disk ID: 00000000) Partition: GPT. ==================== End of Addition.txt ============================