Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-05.2019 Ran by Mojo (01-05-2019 15:35:12) Running from C:\Users\Mojo\Downloads Windows 7 Ultimate Service Pack 1 (X64) (2012-01-05 11:29:27) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-2938345947-3627495209-2985966000-500 - Administrator - Disabled) => C:\Users\Administrator Guest (S-1-5-21-2938345947-3627495209-2985966000-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2938345947-3627495209-2985966000-1017 - Limited - Enabled) Mojo (S-1-5-21-2938345947-3627495209-2985966000-1000 - Administrator - Enabled) => C:\Users\Mojo Renia (S-1-5-21-2938345947-3627495209-2985966000-1026 - Limited - Enabled) => C:\Users\Renia ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Avira Desktop (Disabled - Out of date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C} AS: Avira Desktop (Disabled - Out of date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-2938345947-3627495209-2985966000-1000\...\uTorrent) (Version: 3.5.1.44332 - BitTorrent Inc.) 64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden A360 Desktop (HKLM\...\{B209E611-5511-4AD6-B4B3-9D36F93DBCD4}) (Version: 6.0.3.1100 - Autodesk) ACA & MEP 2016 Object Enabler (HKLM\...\{5783F2D7-F004-0000-5102-0060B0CE6BBA}) (Version: 7.8.41.0 - Autodesk) Hidden ACAD Private (HKLM\...\{5783F2D7-F001-0000-3102-0060B0CE6BBA}) (Version: 20.1.49.0 - Autodesk) Hidden Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.2.0.2070 - Adobe Systems Incorporated) Adobe Captivate 5.5 (HKLM-x32\...\{7DE6CDC3-CFEE-4564-813D-3F59E5D71F10}) (Version: 5.5 - Adobe Systems Incorporated) Adobe Captivate Quiz Results Analyzer (HKLM-x32\...\QuizResultsAnalyzer1.5.D22673E681B55698FF9C7ED1AC2C76EECFF3CF3F.1) (Version: 1.5 - Adobe Systems Incorporated) Adobe Captivate Reviewer (HKLM-x32\...\AdobeCaptivateReviewer2.5.D22673E681B55698FF9C7ED1AC2C76EECFF3CF3F.1) (Version: 2.5 - Adobe Systems Incorporated) Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.0.6 - Adobe Systems Incorporated) Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.171 - Adobe) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.171 - Adobe) Adobe Flash Professional CS6 (HKLM-x32\...\{BD5669B5-49FF-4490-B956-E9D7CB9B0ADC}) (Version: 12.0 - Adobe Systems Incorporated) Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated) Adobe Illustrator CS5.1 (HKLM-x32\...\{23767F5D-A80C-4264-B8EA-ED4085FC332A}) (Version: 15.1 - Adobe Systems Incorporated) Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated) Adobe Reader X (10.1.1) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.1 - Adobe Systems Incorporated) AMD Catalyst Install Manager (HKLM\...\{20384EBF-4F10-13F0-07C6-7A6C87FD83DF}) (Version: 8.0.903.0 - Advanced Micro Devices, Inc.) amuleC (HKLM-x32\...\{0F7B5011-72EC-493D-A7BF-546591047E8E}) (Version: 1.0.2 - amuleC) <==== ATTENTION amuleC (HKLM-x32\...\{418DDAC3-E16C-47C2-B5FE-4FBCAB0E10D0}) (Version: 1.0.0 - amuleC) <==== ATTENTION amulesw (HKLM-x32\...\{13D7C2E9-08E7-4889-94FF-87E707184E53}) (Version: 1.0.7 - amules) <==== ATTENTION Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.6.3.0 - Asmedia Technology) ASUSUpdate for Eee PC (HKLM-x32\...\{587178E7-B1DF-494E-9838-FA4DD36E873C}) (Version: 1.06.02 - ASUSTeK Computer Inc.) Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.36 - Atheros Communications Inc.) Audacity 2.0.2 (HKLM-x32\...\Audacity_is1) (Version: 2.0.2 - Audacity Team) AutoCAD 2016 - English (HKLM\...\{5783F2D7-F001-0409-2102-0060B0CE6BBA}) (Version: 20.1.49.0 - Autodesk) Hidden AutoCAD 2016 (HKLM\...\{5783F2D7-F001-0000-0102-0060B0CE6BBA}) (Version: 20.1.49.0 - Autodesk) Hidden AutoCAD 2016 Language Pack - English (HKLM\...\{5783F2D7-F001-0409-1102-0060B0CE6BBA}) (Version: 20.1.49.0 - Autodesk) Hidden Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-4291-8714-7A3B761D2783}) (Version: 6.3.0.15 - Autodesk) Autodesk App Manager 2016 (HKLM-x32\...\{4ECF9E00-2978-46AF-BD80-455EFEAB7A93}) (Version: 2.0.0 - Autodesk) Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 5.0.142.14 - Autodesk) Autodesk AutoCAD 2016 - English (HKLM\...\AutoCAD 2016 - English) (Version: 20.1.49.0 - Autodesk) Autodesk AutoCAD Performance Feedback Tool 1.2.4 (HKLM-x32\...\{4E20873D-BC20-495C-AFD9-B18877B7F9BB}) (Version: 1.2.4.0 - Autodesk) Autodesk BIM 360 Glue AutoCAD 2016 Add-in 64 bit (HKLM\...\{4BEE127E-95C4-434D-ABAC-65155192BB24}) (Version: 4.35.1742 - Autodesk) Autodesk Content Service (HKLM\...\{A37CDB58-AAE8-0000-8C13-E0F7BACB0D5F}) (Version: 3.2.0.0 - Autodesk) Hidden Autodesk Content Service (HKLM\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk) Autodesk Content Service Language Pack (HKLM\...\{A37CDB58-AAE8-0001-8C13-E0F7BACB0D5F}) (Version: 3.2.0.0 - Autodesk) Hidden Autodesk Design Review 2012 (HKLM-x32\...\{A49BDCBE-590E-43A6-AB77-7C40E499B7C1}) (Version: 12.0.0.93 - Autodesk, Inc.) Hidden Autodesk Design Review 2012 (HKLM-x32\...\Autodesk Design Review 2012) (Version: 12.0.0.93 - Autodesk, Inc.) Autodesk Featured Apps 2016 (HKLM-x32\...\{D42F37CD-9AF9-4435-A474-B387C5BB6B47}) (Version: 2.0.0 - Autodesk) Autodesk Inventor Fusion 2012 (HKLM\...\{FFF5619F-6669-4EC5-A85E-9994F70A9E5D}) (Version: 1.0.0.79 - Autodesk, Inc.) Hidden Autodesk Inventor Fusion 2012 (HKLM\...\Autodesk Inventor Fusion 2012) (Version: 1.0.0.79 - Autodesk, Inc.) Autodesk Inventor Fusion 2012 Language Pack (HKLM\...\{FFF7F80F-929E-497F-A112-B070DE816128}) (Version: 1.0.0.79 - Autodesk, Inc.) Hidden Autodesk Material Library 2011 (HKLM-x32\...\{9DEABCB6-B759-4D52-92F8-51B34A2B4D40}) (Version: 2.0.0.49 - Autodesk) Autodesk Material Library 2011 Base Image library (HKLM-x32\...\{CD1E078C-A6B9-47DA-B035-6365C85C7832}) (Version: 2.0.0.49 - Autodesk) Autodesk Material Library 2012 (HKLM-x32\...\{8F0837C2-EE09-4903-88F3-1976FE7FFF4E}) (Version: 2.5.0.8 - Autodesk) Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.15 - Autodesk) Autodesk Material Library Base Resolution Image Library 2012 (HKLM-x32\...\{65420DC9-306E-4371-905F-F4DC3B418E52}) (Version: 2.5.0.8 - Autodesk) Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.15 - Autodesk) Autodesk ReCap 2016 (HKLM\...\{F6FD1651-0000-1033-0102-387BAF9B3B0A}) (Version: 1.5.0.33 - Autodesk) Hidden Autodesk ReCap 2016 (HKLM\...\Autodesk ReCap 2016) (Version: 1.5.0.33 - Autodesk) Autodesk SketchBook Pro 6.2.4 (HKLM-x32\...\{B882B2FC-D21E-4BCA-A173-4855757DE84A}) (Version: 6.24.0000 - Autodesk) Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 12.1.9.2400 - Avira) Broadcom Wireless Network Adapter (HKLM-x32\...\{4FCBCF89-1823-4D97-A6F2-0E8DD66E273A}) (Version: 1.00.0000 - AzureWave) BufferChm (HKLM-x32\...\{FA0FF682-CC70-4C57-93CD-E276F3E7537E}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden C4700 (HKLM-x32\...\{B5978DF3-8A04-4F22-AF67-8CCE52E04B13}) (Version: 140.0.690.000 - Hewlett-Packard) Hidden Canon SELPHY CP510 (HKLM\...\Canon SELPHY CP510) (Version: - ) CapsHook (HKLM-x32\...\{4B5092B6-F231-4D18-83BC-2618B729CA45}) (Version: 1.0.0.7 - AsusTek Computer) CCS64 V3.9 (HKLM-x32\...\{B7B5A370-3DFF-4F0E-AE11-FD267C4938AA}) (Version: 1.0.0 - Computerbrains C.C.S.) CINEMA 4D 13.029 (HKLM\...\MAXONFB05E576) (Version: 13.029 - MAXON Computer GmbH) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.41.3.0173 - DT Soft Ltd) deskapp (HKLM-x32\...\{7DBE4CA5-2DEE-4B98-A137-7D3D4F7E31B1}) (Version: 1.0.9 - deskapp) <==== ATTENTION Destinations (HKLM-x32\...\{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}) (Version: 140.0.77.000 - Hewlett-Packard) Hidden DeviceDiscovery (HKLM-x32\...\{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden E-Cam (HKLM-x32\...\{185AFA7A-F63E-450B-94AA-011CAC18090E}) (Version: 2.0.2.9 - AzureWave) Enscape 2.1.1.2 (HKLM\...\Enscape) (Version: 2.1.1.2 - Enscape GmbH) Equalizer APO (HKLM\...\EqualizerAPO) (Version: 1.1.1 - ) FastImageResizer (remove only) (HKLM-x32\...\FastImageResizer) (Version: - ) FileZilla Client 3.7.4.1 (HKLM-x32\...\FileZilla Client) (Version: 3.7.4.1 - Tim Kosse) FLAC Player 1.0.1 (HKLM-x32\...\FLAC Player_is1) (Version: - vsevensoft.com) Free YouTube to MP3 Converter version 3.12.39.604 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.39.604 - DVDVideoSoft Ltd.) Gadu-Gadu 10 (HKLM-x32\...\Gadu-Gadu 10) (Version: - GG Network S.A.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.103 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google) GPBaseService2 (HKLM-x32\...\{BB3447F6-9553-4AA9-960E-0DB5310C5779}) (Version: 140.0.211.000 - Hewlett-Packard) Hidden HiJackThis (HKLM-x32\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro) HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd) Hotkey Service (HKLM-x32\...\{71C0E38E-09F2-4386-9977-404D4F6640CD}) (Version: 1.37 - AsusTek Computer Inc.) HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP) HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP) HP Photosmart C4700 All-in-One Driver Software 14.0 Rel. 6 (HKLM\...\{68550918-63B5-4762-85CB-3C160AA4B213}) (Version: 14.0 - HP) HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP) HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP) HP Update (HKLM-x32\...\{74DC0593-6BC6-4001-AD5F-D810AFB68D86}) (Version: 5.002.002.002 - Hewlett-Packard) HPDiagnosticAlert (HKLM-x32\...\{846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}) (Version: 1.00.0000 - Microsoft) Hidden HPPhotoGadget (HKLM-x32\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 140.0.524.000 - Hewlett-Packard) Hidden HPProductAssistant (HKLM-x32\...\{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden HPSSupply (HKLM-x32\...\{AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3}) (Version: 140.0.211.000 - Hewlett-Packard) Hidden Icy Tower v1.5.1 (HKLM-x32\...\Icy Tower v1.5.1_is1) (Version: - Free Lunch Design) Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle) Java(TM) 6 Update 30 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216018FF}) (Version: 6.0.300 - Sun Microsystems, Inc.) JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation) Magic ISO Maker v5.5 (build 0281) (HKLM-x32\...\Magic ISO Maker v5.5 (build 0281)) (Version: - ) MarketResearch (HKLM-x32\...\{D360FA88-17C8-4F14-B67F-13AAF9607B12}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation) Microsoft Office 2010 Service Pack 1 (SP1) (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{047B0968-E622-4FAA-9B4B-121FA109EDDE}) (Version: - Microsoft) Microsoft Office Language Pack 2010 - Polish/Polski (HKLM-x32\...\Office14.OMUI.pl-pl) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.6029.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Works 6-9 Converter (HKLM-x32\...\{95140000-0137-0415-0000-0000000FF1CE}) (Version: 14.0.6120.5002 - Microsoft Corporation) mocha Pro V3.1.0-5680 (HKLM\...\{A92093BC-8AD8-4096-8D92-23AAE656AD68}) (Version: 3.10.5680 - Imagineer Systems) MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) NET Render Client 13.016 (HKLM\...\MAXON8C66D661) (Version: 13.016 - MAXON Computer GmbH) Network64 (HKLM\...\{48C0866E-57EB-444C-8371-8E4321066BC3}) (Version: 140.0.215.000 - Hewlett-Packard) Hidden Network64 (HKLM\...\{6BFAB6C1-6D46-46DB-A538-A269907C9F2F}) (Version: 140.0.221.000 - Hewlett-Packard) Hidden Nokia Connectivity Cable Driver (HKLM-x32\...\{A57025CC-5F2E-4D01-B387-06DB10500D43}) (Version: 7.1.78.0 - Nokia) OpenOffice 4.0.1 (HKLM-x32\...\{DA0106A3-216E-48DE-9CF6-655DA8FC1D22}) (Version: 4.01.9714 - Apache Software Foundation) PC Connectivity Solution (HKLM-x32\...\{DA5B2BDC-F654-4A88-A669-4D34BC7846A1}) (Version: 12.0.17.0 - Nokia) PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.) PS_AIO_06_C4700_SW_Min (HKLM-x32\...\{537DB9D6-1AB1-4CE9-8DE7-312256B49A98}) (Version: 140.0.690.000 - Hewlett-Packard) Hidden QuickTime (HKLM-x32\...\{8B7917E0-AF55-4E8A-9473-017F0AA03AC8}) (Version: 7.65.17.80 - Apple Inc.) QuickTransfer (HKLM-x32\...\{E517094C-06B6-419F-8FFD-EF4F57972130}) (Version: 140.0.98.000 - Hewlett-Packard) Hidden Real Alternative 2.0.2 (HKLM-x32\...\RealAlt_is1) (Version: 2.0.2 - ) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6293 - Realtek Semiconductor Corp.) Scan (HKLM-x32\...\{06A1D88C-E102-4527-AF70-29FFD7AF215A}) (Version: 140.0.80.000 - Hewlett-Packard) Hidden Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP) ShufflePlusVLOI (HKLM-x32\...\{0A80329D-1B59-4F10-8D1D-924C59B2840B}) (Version: 1.00.0000 - Your Company Name) Hidden Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) (HKLM-x32\...\SLABCOMM&10C4&EA60) (Version: - ) SketchUp 2014 (HKLM-x32\...\{A608A8D3-E77C-4BEE-8F2A-F8124F5F0FE2}) (Version: 14.0.4900 - Trimble Navigation Limited) Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.109 - Skype Technologies S.A.) SmartWebPrinting (HKLM-x32\...\{8FF6F5CA-4E30-4E3B-B951-204CAAA2716A}) (Version: 140.0.186.000 - Hewlett-Packard) Hidden SolutionCenter (HKLM-x32\...\{5DCF0E4B-F8EA-4229-A0BD-5CA6D4AFB749}) (Version: 140.0.213.000 - Hewlett-Packard) Hidden SoulSeek 157 NS 13e (HKLM-x32\...\Soulseek2) (Version: - ) Status (HKLM-x32\...\{2FB9EA69-51D4-4913-9AD5-762C034DE811}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden Sublime Text 2.0.2 (HKLM\...\Sublime Text 2_is1) (Version: - ) Super Hybrid Engine (HKLM-x32\...\{88F08F98-12BC-4613-81A2-8F9B88CFC73E}) (Version: 2.18 - AsusTek Computer) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.1.8.0 - Synaptics Incorporated) Tablet Wacom (HKLM\...\Wacom Tablet Driver) (Version: 6.3.11-4 - Wacom Technology Corp.) Toolbox (HKLM-x32\...\{292F0F52-B62D-4E71-921B-89A682402201}) (Version: 140.0.428.000 - Hewlett-Packard) Hidden Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH) TrayApp (HKLM-x32\...\{CD31E63D-47FD-491C-8117-CF201D0AFAB5}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden USBCharge+ (HKLM-x32\...\{8165EFD2-0EB8-4C4F-A0E4-0E641B117ED2}) (Version: 1.0.0.17 - AsusTek Computer) VLC media player 2.1.0 (HKLM\...\VLC media player) (Version: 2.1.0 - VideoLAN) VMCPlayer (HKLM-x32\...\VMCPlayer_is1) (Version: - VMCPlayer) V-Ray for SketchUp demo (HKLM-x32\...\V-Ray for SketchUp demo 2.00.24261) (Version: 2.00.24261 - Chaos Software, Ltd) Wacom (HKLM\...\Pen Tablet Driver) (Version: 5.3.2-1 - Wacom Technology Corp.) WebReg (HKLM-x32\...\{8EE94FD8-5F52-4463-A340-185D16328158}) (Version: 140.0.212.017 - Hewlett-Packard) Hidden WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.) WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.) WebTablet IE Plugin (HKLM-x32\...\Wacom WebTabletPlugin for IE) (Version: 1.1.0.12 - Wacom Technology Corp.) WebTablet Netscape Plugin (HKLM-x32\...\Wacom WebTabletPlugin for Netscape) (Version: 1.1.0.10 - Wacom Technology Corp.) WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.5500 - Broadcom Corporation) Winamp (remove only) (HKLM-x32\...\Winamp) (Version: - ) WinRAR 4.01 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH) WinSnare (HKLM-x32\...\{FC5A2575-5D95-4466-A08A-8908998E49D0}) (Version: 4.3.3 - WinSnare) <==== ATTENTION XnView 1.98.8 (HKLM-x32\...\XnView_is1) (Version: 1.98.8 - Gougelet Pierre-e) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) HKU\S-1-5-21-2938345947-3627495209-2985966000-1000\...\ChromeHTML: -> C:\Program Files (x86)\Tooltony\Application\chrome.exe (Google Inc -> Google Inc.) <==== ATTENTION CustomCLSID: HKU\S-1-5-21-2938345947-3627495209-2985966000-1000_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-2938345947-3627495209-2985966000-1000_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-2938345947-3627495209-2985966000-1000_Classes\CLSID\{5370C727-1451-4700-A960-77630950AF6D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-2938345947-3627495209-2985966000-1000_Classes\CLSID\{6D7AE628-FF41-4CD3-91DD-34825BB1A251}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2011\acad.exe /Automation => No File CustomCLSID: HKU\S-1-5-21-2938345947-3627495209-2985966000-1000_Classes\CLSID\{B77E471C-FBF3-4CB5-880F-D7528AD4B349}\localserver32 -> C:\Program Files\Autodesk\AutoCAD Architecture 2012\acad.exe /Automation => No File CustomCLSID: HKU\S-1-5-21-2938345947-3627495209-2985966000-1000_Classes\CLSID\{C92FB640-AD4D-498A-9979-A51A2540C977}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2011\acad.exe /Automation => No File CustomCLSID: HKU\S-1-5-21-2938345947-3627495209-2985966000-1000_Classes\CLSID\{D70E31AD-2614-49F2-B0FC-ACA781D81F3E}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2011\acad.exe => No File CustomCLSID: HKU\S-1-5-21-2938345947-3627495209-2985966000-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2016\en-US\acadficn.dll (Autodesk, Inc -> Autodesk, Inc.) ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc -> Autodesk, Inc.) ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2015-02-06] (Autodesk, Inc -> Autodesk) ContextMenuHandlers1-x32: [Autodesk.DWF.ContextMenu] -> {6C18531F-CA85-45F7-8278-FF33CF0A5964} => C:\Program Files (x86)\Common Files\Autodesk Shared\DWF Common\DWFShellExtension.dll [2011-01-10] (Autodesk, Inc -> Autodesk, Inc.) ContextMenuHandlers1: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => C:\Program Files (x86)\MagicISO\misosh64.dll [2008-05-23] (MagicISO, Inc.) [File not signed] ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\AntiVir Desktop\shlext64.dll [2012-05-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) ContextMenuHandlers1: [WinRAR] -> _{B41DB860-64E4-11D2-9906-E49FADC173CA} => -> No File ContextMenuHandlers1: [WinRAR32] -> _{B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> No File ContextMenuHandlers1: [WinZipper] -> {DC638EEA-2BA2-4459-9C46-85A2F0BE6040} => C:\Program Files (x86)\WinZipper\wzShellctx64.dll -> No File ContextMenuHandlers4: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => C:\Program Files (x86)\MagicISO\misosh64.dll [2008-05-23] (MagicISO, Inc.) [File not signed] ContextMenuHandlers4: [WinRAR] -> _{B41DB860-64E4-11D2-9906-E49FADC173CA} => -> No File ContextMenuHandlers4: [WinRAR32] -> _{B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> No File ContextMenuHandlers4: [WinZipper] -> {DC638EEA-2BA2-4459-9C46-85A2F0BE6040} => C:\Program Files (x86)\WinZipper\wzShellctx64.dll -> No File ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2012-12-19] (Advanced Micro Devices, Inc.) [File not signed] ContextMenuHandlers6: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => C:\Program Files (x86)\MagicISO\misosh64.dll [2008-05-23] (MagicISO, Inc.) [File not signed] ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\AntiVir Desktop\shlext64.dll [2012-05-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) ContextMenuHandlers6: [WinRAR] -> _{B41DB860-64E4-11D2-9906-E49FADC173CA} => -> No File ContextMenuHandlers6: [WinRAR32] -> _{B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> No File ContextMenuHandlers6: [WinZipper] -> {DC638EEA-2BA2-4459-9C46-85A2F0BE6040} => C:\Program Files (x86)\WinZipper\wzShellctx64.dll -> No File ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) Shortcut: C:\Users\Mojo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation) ShortcutWithArgument: C:\Users\Mojo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.omniboxes.com/?type=sc&ts=1447353203&z=f3e4af687c4d1df6a4895fdg4zaz6mec4wdc8obe6c&from=wpm07163&uid=ST9500325AS_6VETGV4BXXXX6VETGV4B ShortcutWithArgument: C:\Users\Mojo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.omniboxes.com/?type=sc&ts=1447353203&z=f3e4af687c4d1df6a4895fdg4zaz6mec4wdc8obe6c&from=wpm07163&uid=ST9500325AS_6VETGV4BXXXX6VETGV4B ShortcutWithArgument: C:\Users\Mojo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.omniboxes.com/?type=sc&ts=1447353203&z=f3e4af687c4d1df6a4895fdg4zaz6mec4wdc8obe6c&from=wpm07163&uid=ST9500325AS_6VETGV4BXXXX6VETGV4B ShortcutWithArgument: C:\Users\Mojo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.omniboxes.com/?type=sc&ts=1447353203&z=f3e4af687c4d1df6a4895fdg4zaz6mec4wdc8obe6c&from=wpm07163&uid=ST9500325AS_6VETGV4BXXXX6VETGV4B ShortcutWithArgument: C:\Users\Mojo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk -> C:\Program Files (x86)\Tooltony\Application\chrome.exe (Google Inc.) -> hxxp://www.mylucky123.com/?type=sc&ts=1478039244&z=90ce2b469f9319036284ae4g1zamcb9e9c0t0oez8o&from=interhop1024&uid=ST9500325AS_6VETGV4BXXXX6VETGV4B ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.mylucky123.com/?type=sc&ts=1478039244&z=90ce2b469f9319036284ae4g1zamcb9e9c0t0oez8o&from=interhop1024&uid=ST9500325AS_6VETGV4BXXXX6VETGV4B ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation) -> hxxp://www.mylucky123.com/?type=sc&ts=1478039244&z=90ce2b469f9319036284ae4g1zamcb9e9c0t0oez8o&from=interhop1024&uid=ST9500325AS_6VETGV4BXXXX6VETGV4B ==================== Loaded Modules (Whitelisted) ============== 2015-12-09 22:11 - 2015-12-09 22:11 - 000594432 _____ () [File not signed] C:\Program Files\EqualizerAPO\EqualizerAPO.dll 2012-09-19 00:34 - 2012-09-19 00:34 - 002375168 _____ () [File not signed] C:\Program Files\EqualizerAPO\libsndfile-1.dll 2014-03-15 23:29 - 2014-03-15 23:29 - 002604934 _____ () [File not signed] C:\Program Files\EqualizerAPO\libfftw3f-3.dll 2012-04-30 11:46 - 2009-04-16 14:08 - 000136704 _____ (Hewlett-Packard Company) [File not signed] C:\Windows\System32\hpf3l70v.dll 2012-04-30 11:49 - 2009-04-16 15:08 - 000248320 _____ (Hewlett-Packard Corporation) [File not signed] C:\Windows\system32\spool\PRTPROCS\x64\hpfpp70v.dll 2012-12-19 16:32 - 2012-12-19 16:32 - 000361984 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe 2012-12-19 16:32 - 2012-12-19 16:32 - 000073728 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll 2016-12-03 23:51 - 2016-12-01 05:04 - 000393728 _____ () [File not signed] C:\Users\Mojo\AppData\Roaming\dgadg\UvConverter.exe 2016-11-02 00:28 - 2016-10-31 08:37 - 000486912 _____ () [File not signed] C:\Program Files (x86)\InterHop\InterHop.exe 2017-03-12 15:35 - 2017-03-01 20:42 - 000113152 _____ () [File not signed] C:\Users\Mojo\AppData\Roaming\Kyubey\Kyubey.exe 2017-03-17 14:30 - 2017-03-17 14:30 - 000776704 _____ (InterSect Alliance Pty Ltd) [File not signed] c:\users\mojo\appdata\roaming\winsnare\winsnare.dll 2012-04-30 11:46 - 2009-04-16 15:08 - 001607168 _____ (Hewlett-Packard Corporation) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\hpfui70v.dll 2010-10-22 14:08 - 2010-10-22 14:08 - 001039360 _____ (Hewlett-Packard Co.) [File not signed] c:\program files (x86)\hp\digital imaging\bin\hpslpsvc64.dll 2010-01-02 16:42 - 2010-01-02 16:42 - 000098304 _____ () [File not signed] C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll 2012-12-19 16:14 - 2012-12-19 16:14 - 000837632 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll 2012-12-19 16:14 - 2012-12-19 16:14 - 000004608 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiamplk.dll 2012-01-07 20:52 - 2011-06-01 00:37 - 000164864 _____ (Alexander Roshal) [File not signed] C:\Program Files\WinRAR\rarext.dll 2012-02-03 23:16 - 2009-09-30 07:00 - 000738816 _____ (WIBU-SYSTEMS AG) [File not signed] C:\Program Files\WIBU-SYSTEMS\System\WibuShellExt64.dll 2014-12-20 17:18 - 2008-05-23 00:25 - 000043520 _____ (MagicISO, Inc.) [File not signed] C:\Program Files (x86)\MagicISO\misosh64.dll 2014-10-26 18:35 - 2014-10-26 18:35 - 001658368 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\MFC80.DLL 2014-10-26 18:35 - 2014-10-26 18:35 - 001654784 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\MFC80U.DLL 2014-10-26 18:35 - 2014-10-26 18:35 - 000047104 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_bc20f59b0bdd1acd\MFC80ENU.DLL 2012-01-25 15:32 - 2012-01-25 15:32 - 000299008 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe 2012-12-19 16:17 - 2012-12-19 16:17 - 000097792 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.Implementation.dll 2012-12-19 16:15 - 2012-12-19 16:15 - 000031744 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000025088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Private.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000048640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.Foundation.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.Private.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000022016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.Implementation.dll 2012-12-19 16:15 - 2012-12-19 16:15 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\NEWAEM.Foundation.dll 2012-04-09 17:13 - 2012-04-09 17:13 - 000299008 _____ (ATI Technologies Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe 2012-12-19 16:15 - 2012-12-19 16:15 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.XManifest.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000061440 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000038912 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.Private.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000029184 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.Private.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ATICCCom.dll 2012-09-12 05:24 - 2012-09-12 05:24 - 000185344 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ADL.Foundation.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000035328 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000006144 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.Shared.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000048128 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Source.Kit.Server.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.CoreAudioAPI.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000007168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.DPPE.Shared.dll 2012-12-19 16:15 - 2012-12-19 16:15 - 000007168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Hotkeys.Shared.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.WinMessages.Shared.dll 2012-05-14 09:35 - 2012-05-14 09:35 - 000045056 _____ (ATI Technologies Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0601.dll 2012-05-14 09:35 - 2012-05-14 09:35 - 000016384 _____ (ATI Technologies Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Foundation.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.dll 2012-05-14 09:35 - 2012-05-14 09:35 - 000007168 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I1010.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.REG.Shared.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000327680 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000208896 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Shared.dll 2012-05-14 09:35 - 2012-05-14 09:35 - 000006144 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.GD.Shared.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Actions.CCAA.Shared.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000008704 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Private.dll 2012-05-14 09:35 - 2012-05-14 09:35 - 000006656 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0804.dll 2012-12-19 16:20 - 2012-12-19 16:20 - 000066048 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.WirelessDisplay.Graphics.Runtime.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000009216 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.Shared.Private.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000035328 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.WirelessDisplay.Graphics.shared.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Shared.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000057344 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.shared.dll 2012-05-14 09:35 - 2012-05-14 09:35 - 000005120 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0912.dll 2012-05-14 09:35 - 2012-05-14 09:35 - 000005120 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0706.dll 2012-05-14 09:35 - 2012-05-14 09:35 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0712.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000057856 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll 2012-12-19 16:19 - 2012-12-19 16:19 - 000158720 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Combined.Graphics.Aspects2.Runtime.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceLCD.Graphics.Shared.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000069632 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000053248 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Shared.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CustomFormats.Graphics.Shared.dll 2012-05-14 09:35 - 2012-05-14 09:35 - 000005120 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0812.dll 2012-05-14 09:35 - 2012-05-14 09:35 - 000004608 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0805.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000110592 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Runtime.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000081920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Shared.dll 2012-05-14 09:35 - 2012-05-14 09:35 - 000004608 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I1011.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000106496 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Runtime.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000081920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Shared.dll 2012-05-14 09:35 - 2012-05-14 09:35 - 000005120 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0906.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000036352 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Runtime.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.shared.dll 2012-12-19 16:19 - 2012-12-19 16:19 - 000014336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.Runtime.dll 2012-12-19 16:19 - 2012-12-19 16:19 - 000008192 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.shared.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Fuel.Runtime.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000010752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Fuel.Shared.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000013824 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Fuel.Foundation.dll 2012-12-19 16:32 - 2012-12-19 16:32 - 000037376 _____ (AMD) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\FUEL.ImplementationNet4.dll 2012-12-19 16:32 - 2012-12-19 16:32 - 000103424 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll 2012-12-19 16:15 - 2012-12-19 16:15 - 000523264 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Localization.Foundation.Private.dll 2012-12-19 16:15 - 2012-12-19 16:15 - 000359424 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Localization.Foundation.Implementation.pl_Localization.dll 2012-12-19 16:19 - 2012-12-19 16:19 - 000071680 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Combined.Fusion.Aspects.Runtime.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DPPE.Fuel.Shared.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Fets.Fuel.Shared.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000007680 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.WiFi.Fuel.Shared.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000013824 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CPUPStates.Fuel.Shared.dll 2012-12-19 16:19 - 2012-12-19 16:19 - 000019456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CPUOverDrive.Fuel.Runtime.dll 2012-12-19 16:19 - 2012-12-19 16:19 - 000019456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CPUOverDrive.Fuel.Shared.dll 2012-12-19 16:19 - 2012-12-19 16:19 - 000011264 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Platform.Runtime.dll 2012-12-19 16:19 - 2012-12-19 16:19 - 000009216 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Platform.Shared.dll 2012-12-19 16:19 - 2012-12-19 16:19 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDOverDrive.Platform.Runtime.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDOverDrive.Platform.Shared.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000051200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.Shared.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Runtime.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000009216 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Shared.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000066560 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\APM.Server.dll 2012-12-19 16:15 - 2012-12-19 16:15 - 000024576 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\APM.Foundation.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000007680 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Extension.EEU.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.EEU.Shared.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000385024 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000036864 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.Private.dll 2012-12-19 16:15 - 2012-12-19 16:15 - 000008192 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 001437184 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.Private.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000413696 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Systemtray.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000175104 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Implementation.dll 2012-05-04 17:42 - 2012-05-04 17:42 - 000098304 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\BrandingNet4.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000176128 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 001093632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.Shared.dll 2012-12-19 16:19 - 2012-12-19 16:19 - 000028672 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.Dashboard.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000057344 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll 2012-12-19 16:19 - 2012-12-19 16:19 - 001414656 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Combined.Graphics.Aspects1.Dashboard.dll 2012-12-19 16:18 - 2012-12-19 16:18 - 000550400 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll 2012-12-19 16:18 - 2012-12-19 16:18 - 000369664 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll 2012-12-19 16:18 - 2012-12-19 16:18 - 000393216 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll 2012-12-19 16:18 - 2012-12-19 16:18 - 002498560 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MultiVPU2.Graphics.Shared.dll 2012-12-19 16:18 - 2012-12-19 16:18 - 000241664 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Dashboard.dll 2012-12-19 16:18 - 2012-12-19 16:18 - 000021504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Dashboard.dll 2012-12-19 16:18 - 2012-12-19 16:18 - 000053248 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.dll 2012-12-19 16:19 - 2012-12-19 16:19 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Audio.Graphics.Dashboard.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Fuel.Dashboard.dll 2012-12-19 16:18 - 2012-12-19 16:18 - 001260544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.User.Fuel.Dashboard.dll 2012-12-19 16:18 - 2012-12-19 16:18 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Fets.Fuel.Dashboard.dll 2012-12-19 16:19 - 2012-12-19 16:19 - 000021504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.WiFi.Fuel.Dashboard.dll 2012-12-19 16:18 - 2012-12-19 16:18 - 000048640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DPPE.Fuel.Dashboard.dll 2012-12-19 16:18 - 2012-12-19 16:18 - 000030208 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CPUPStates.Fuel.Dashboard.dll 2012-12-19 16:19 - 2012-12-19 16:19 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CPUOverDrive.Fuel.Dashboard.dll 2012-12-19 16:19 - 2012-12-19 16:19 - 000008192 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Platform.Dashboard.dll 2012-12-19 16:19 - 2012-12-19 16:19 - 000040448 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDOverDrive.Platform.Dashboard.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Dashboard.dll 2012-12-19 16:16 - 2012-12-19 16:16 - 000311296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.Client.dll 2012-12-19 16:19 - 2012-12-19 16:19 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.ProfileManager2.dll 2012-12-19 16:18 - 2012-12-19 16:18 - 001351680 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared.dll 2012-12-19 16:14 - 2012-12-19 16:14 - 000489984 _____ (Microsoft) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Microsoft.WindowsAPICodePack.Shell.dll 2012-12-19 16:14 - 2012-12-19 16:14 - 000083456 _____ (Microsoft) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Microsoft.WindowsAPICodePack.dll 2012-12-19 16:17 - 2012-12-19 16:17 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CustomFormatSelection.Graphics.Dashboard.Shared.Private.dll 2016-10-08 16:39 - 2016-10-08 16:39 - 000237568 _____ (hxxp://www.amule.org/) [File not signed] C:\Program Files (x86)\amuleC\ed2k.exe 2016-12-03 23:49 - 2016-12-03 23:49 - 000622592 _____ () [File not signed] C:\Program Files (x86)\Common Files\Services\iThemes.dll 2016-11-05 03:19 - 2016-12-02 04:29 - 000329728 _____ () [File not signed] c:\programdata\microsoft\blend\14.0\1033\resourcecacher.dll 2017-02-10 18:48 - 2017-02-10 09:12 - 000527872 _____ () [File not signed] c:\programdata\apple\lockdown\installinfo.dll 2017-02-19 10:31 - 2017-02-14 07:57 - 000128000 _____ () [File not signed] c:\program files (x86)\bilibili\bilibili.dll 2009-11-18 05:16 - 2009-11-18 05:16 - 000137344 _____ (Hewlett Packard -> Hewlett-Packard Co.) [File not signed] c:\program files (x86)\hp\digital imaging\bin\hpqddsvc.dll 2009-11-18 05:16 - 2009-11-18 05:16 - 000217728 _____ (Hewlett Packard -> Hewlett-Packard Co.) [File not signed] c:\program files (x86)\hp\digital imaging\bin\hpqddcmn.dll 2017-03-12 15:35 - 2017-03-17 11:25 - 000218624 _____ (Windows) [File not signed] c:\users\mojo\appdata\roaming\winsapsvc\winsap.dll 2014-02-11 21:29 - 2014-02-11 21:29 - 000093696 _____ () [File not signed] C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll 2017-02-10 18:48 - 2017-02-10 09:11 - 042419200 _____ (Google Inc.) [File not signed] C:\Program Files (x86)\Tooltony\Application\chrome.dll 2017-02-10 18:48 - 2017-02-10 09:09 - 051100672 _____ (Google Inc.) [File not signed] C:\Program Files (x86)\Tooltony\Application\chrome_child.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm [0] AlternateDataStreams: C:\Users\Public\.DS_Store:AFP_AfpInfo [122] ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) HKU\S-1-5-21-2938345947-3627495209-2985966000-1000\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1" ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:34 - 2012-06-18 11:21 - 000000854 _____ C:\Windows\system32\drivers\etc\hosts 127.0.0.1 activate.adobe.com ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;C:\Program Files (x86)\PC Connectivity Solution\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files (x86)\Skype\Phone\ HKU\S-1-5-21-2938345947-3627495209-2985966000-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Mojo\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 62.179.1.61 - 62.179.1.63 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == If an entry is included in the fixlist, it will be removed. MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: ServiceLayer => 3 MSCONFIG\Services: SkypeUpdate => 2 MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SketchBook Snapshot.lnk => C:\Windows\pss\SketchBook Snapshot.lnk.CommonStartup MSCONFIG\startupfolder: C:^Users^Mojo^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Tworzenie wycinków ekranu i uruchamianie programu OneNote 2010.lnk => C:\Windows\pss\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2010.lnk.Startup MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" MSCONFIG\startupreg: ADSKAppManager => "C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe" -showminimized -checkautorun MSCONFIG\startupreg: avgnt => "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe MSCONFIG\startupreg: NokiaSuite.exe => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: uTorrent => "C:\Users\Mojo\AppData\Roaming\uTorrent\updates\3.4.5_41202.exe" /MINIMIZED ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{4AB364B9-BBD5-4598-941E-12A2AE58302D}] => (Allow) D:\Games\Need for Speed The Run\Need For Speed The Run.exe No File FirewallRules: [{E43B738F-3E78-4761-909F-7606AEE33C6A}] => (Allow) D:\Games\Need for Speed The Run\Need For Speed The Run.exe No File FirewallRules: [TCP Query User{794B2169-091B-4BC3-88C5-1AFD8BED0E49}C:\program files (x86)\soulseekns\slsk.exe] => (Allow) C:\program files (x86)\soulseekns\slsk.exe () [File not signed] FirewallRules: [UDP Query User{4CA812AA-70EF-4D1F-926A-27F2BCD98FB3}C:\program files (x86)\soulseekns\slsk.exe] => (Allow) C:\program files (x86)\soulseekns\slsk.exe () [File not signed] FirewallRules: [TCP Query User{6DA122CA-365D-426B-833D-BD1AA6BFB192}C:\program files (x86)\gadu-gadu 10\gg.exe] => (Allow) C:\program files (x86)\gadu-gadu 10\gg.exe (GG Network S.A. -> GG Network S.A.) FirewallRules: [UDP Query User{ACA28093-24E6-4186-95B4-2374AB8CB558}C:\program files (x86)\gadu-gadu 10\gg.exe] => (Allow) C:\program files (x86)\gadu-gadu 10\gg.exe (GG Network S.A. -> GG Network S.A.) FirewallRules: [{7AFF41A4-148F-428D-8ADD-E5EB0334B868}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{30981AD0-B42B-415B-98B8-66A89C5EE5BE}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{C1238D79-EF8B-4499-89DF-34B30A477A86}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [TCP Query User{90692078-F337-4C5E-8F6E-CFCC49342882}C:\program files\maxon\net render r13 client\net render client 64 bit.exe] => (Allow) C:\program files\maxon\net render r13 client\net render client 64 bit.exe (MAXON Computer GmbH -> MAXON Computer GmbH) FirewallRules: [UDP Query User{E3B6684D-21F0-4F0E-AA23-573AB4E628A0}C:\program files\maxon\net render r13 client\net render client 64 bit.exe] => (Allow) C:\program files\maxon\net render r13 client\net render client 64 bit.exe (MAXON Computer GmbH -> MAXON Computer GmbH) FirewallRules: [TCP Query User{1867552F-4E5B-41D6-97E1-03334E70A80A}C:\program files\maxon\net render r13 client\net render client.exe] => (Allow) C:\program files\maxon\net render r13 client\net render client.exe (MAXON Computer GmbH -> MAXON Computer GmbH) FirewallRules: [UDP Query User{A61292CA-08C4-4414-A6A8-C3CED1E45327}C:\program files\maxon\net render r13 client\net render client.exe] => (Allow) C:\program files\maxon\net render r13 client\net render client.exe (MAXON Computer GmbH -> MAXON Computer GmbH) FirewallRules: [TCP Query User{1F11A8D2-47A4-4053-89D6-92C2B459CDBC}C:\program files (x86)\soulseekns\slsk.exe] => (Allow) C:\program files (x86)\soulseekns\slsk.exe () [File not signed] FirewallRules: [UDP Query User{B16B64BD-86C8-4ACF-BC76-8667614BD540}C:\program files (x86)\soulseekns\slsk.exe] => (Allow) C:\program files (x86)\soulseekns\slsk.exe () [File not signed] FirewallRules: [TCP Query User{C974084D-90A4-4CE3-9048-1234E4F8654E}C:\program files (x86)\gadu-gadu 10\gg.exe] => (Block) C:\program files (x86)\gadu-gadu 10\gg.exe (GG Network S.A. -> GG Network S.A.) FirewallRules: [UDP Query User{9342720D-349B-43CF-AE50-FA2F24A8D3EE}C:\program files (x86)\gadu-gadu 10\gg.exe] => (Block) C:\program files (x86)\gadu-gadu 10\gg.exe (GG Network S.A. -> GG Network S.A.) FirewallRules: [TCP Query User{4EDE3368-CF42-4E3A-9CC7-684767C75D7D}C:\program files (x86)\google\google sketchup 8\sketchup.exe] => (Block) C:\program files (x86)\google\google sketchup 8\sketchup.exe No File FirewallRules: [UDP Query User{5CA7EAB7-01B2-445E-A617-7ADBBF0E70B8}C:\program files (x86)\google\google sketchup 8\sketchup.exe] => (Block) C:\program files (x86)\google\google sketchup 8\sketchup.exe No File FirewallRules: [{5F5DE133-BB28-41FB-A1E2-1A05D9B5CD44}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [TCP Query User{76CE70D2-E42A-49AC-A8DD-BF2184B41731}C:\program files\graphisoft\archicad 14\archicad.exe] => (Allow) C:\program files\graphisoft\archicad 14\archicad.exe No File FirewallRules: [UDP Query User{3EB998EB-34A9-4216-BFB5-31294094AD23}C:\program files\graphisoft\archicad 14\archicad.exe] => (Allow) C:\program files\graphisoft\archicad 14\archicad.exe No File FirewallRules: [{FEA4B587-3775-454E-B8CD-EFE07836E386}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{92D81BC8-188C-42A5-84F0-B0F004C56309}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe (Hewlett Packard -> Hewlett-Packard) FirewallRules: [{EE9F75DB-F6AF-49FB-859D-A814FFA01FB0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{71A7C604-0D35-4FF9-A170-188C7B370879}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{A94958A7-E02A-49D3-8A26-409AA4FF2533}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{76C26D4E-3159-4CC3-AA6E-F78E6D0DA9BB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{365AE45E-C595-45EF-8B7E-12FD564042E4}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{9682B27A-87F9-44EC-A3CF-0316055181A2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{EF822DFD-FEBE-4E7A-B02E-E709647CA5EA}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe (Hewlett-Packard Company -> Hewlett-Packard) FirewallRules: [{DC07C2E2-4BD9-4C2A-AB28-F55E53D5D918}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe (Hewlett-Packard Company -> Hewlett-Packard Co.) FirewallRules: [{697C9FD6-C1F0-449D-BA10-F4DB0D76323B}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe () [File not signed] FirewallRules: [{457EC56B-E614-45A1-86E1-F9C764AE4765}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe () [File not signed] FirewallRules: [{149020D8-DF97-4F6E-ADAB-86AB2F0233CF}] => (Allow) C:\Users\asiunius.MOJORISIN\AppData\Roaming\uTorrent\uTorrent.exe No File FirewallRules: [{BDA65469-7E88-4114-8FBF-A72B57C87329}] => (Allow) C:\Users\asiunius.MOJORISIN\AppData\Roaming\uTorrent\uTorrent.exe No File FirewallRules: [TCP Query User{7ABF59DD-5C77-48DC-89C0-9CD5BABDC25E}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent, Inc.) FirewallRules: [UDP Query User{8E0CEC3F-B4BE-4C04-B4BA-041BA0AE503A}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent, Inc.) FirewallRules: [TCP Query User{DB34376E-DB36-40E7-9371-DBB297A7559A}C:\program files (x86)\sketchup\sketchup 2013\sketchup.exe] => (Block) C:\program files (x86)\sketchup\sketchup 2013\sketchup.exe No File FirewallRules: [UDP Query User{69C0AA7D-64FC-466A-919F-9BC7DF66CA8E}C:\program files (x86)\sketchup\sketchup 2013\sketchup.exe] => (Block) C:\program files (x86)\sketchup\sketchup 2013\sketchup.exe No File FirewallRules: [TCP Query User{7DC21A0E-6B9E-4E23-90C3-796A9E6A15AD}C:\programdata\asgvis\common\x86\vc8\distributed rendering\xmldrspawner.exe] => (Allow) C:\programdata\asgvis\common\x86\vc8\distributed rendering\xmldrspawner.exe () [File not signed] FirewallRules: [UDP Query User{016CCAAE-CA56-4614-8172-7BBC3DD0EA2E}C:\programdata\asgvis\common\x86\vc8\distributed rendering\xmldrspawner.exe] => (Allow) C:\programdata\asgvis\common\x86\vc8\distributed rendering\xmldrspawner.exe () [File not signed] FirewallRules: [TCP Query User{CE75659A-46C8-49F5-B98A-010598F0607A}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent, Inc.) FirewallRules: [UDP Query User{C94240F9-F0D3-4C32-99E9-82E47DD83019}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent, Inc.) FirewallRules: [{71088B30-B56A-4FA1-A25B-473EDCF241BB}] => (Allow) C:\Users\Mojo\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{23728880-95B9-42EC-A4A1-AB359F656DA3}] => (Allow) C:\Users\Mojo\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{F4F3BFA9-9D33-4573-B16C-85F4D3A11B7D}C:\program files (x86)\google\google sketchup 8\sketchup.exe] => (Allow) C:\program files (x86)\google\google sketchup 8\sketchup.exe No File FirewallRules: [UDP Query User{15FC3F70-CD58-4A69-B448-61BA52A61483}C:\program files (x86)\google\google sketchup 8\sketchup.exe] => (Allow) C:\program files (x86)\google\google sketchup 8\sketchup.exe No File FirewallRules: [TCP Query User{833EFC83-0753-48C1-9D89-B2403DD493EB}C:\programdata\asgvis\common\x86\vc8\distributed rendering\xmldrspawner.exe] => (Allow) C:\programdata\asgvis\common\x86\vc8\distributed rendering\xmldrspawner.exe () [File not signed] FirewallRules: [UDP Query User{18183450-7AE2-4B9A-88E5-D02E63208FF8}C:\programdata\asgvis\common\x86\vc8\distributed rendering\xmldrspawner.exe] => (Allow) C:\programdata\asgvis\common\x86\vc8\distributed rendering\xmldrspawner.exe () [File not signed] FirewallRules: [{645168D3-94E9-4F2B-8DE9-1FF551442949}] => (Allow) LPort=50248 FirewallRules: [TCP Query User{035A68B2-2302-47D5-A16E-6E5215B5F741}C:\programdata\asgvis\common\x64\vc10\distributed rendering\xmldrspawner.exe] => (Allow) C:\programdata\asgvis\common\x64\vc10\distributed rendering\xmldrspawner.exe () [File not signed] FirewallRules: [UDP Query User{EB7FB9C0-C5A3-4143-97B1-EA83CAF5B055}C:\programdata\asgvis\common\x64\vc10\distributed rendering\xmldrspawner.exe] => (Allow) C:\programdata\asgvis\common\x64\vc10\distributed rendering\xmldrspawner.exe () [File not signed] FirewallRules: [TCP Query User{2E329236-822B-4086-90C4-755501EB4FB4}C:\program files (x86)\sketchup\sketchup 2014\sketchup.exe] => (Allow) C:\program files (x86)\sketchup\sketchup 2014\sketchup.exe (Trimble Navigation Limited) [File not signed] FirewallRules: [UDP Query User{A1036A2E-7FB4-4E46-B48F-621EDE7905EF}C:\program files (x86)\sketchup\sketchup 2014\sketchup.exe] => (Allow) C:\program files (x86)\sketchup\sketchup 2014\sketchup.exe (Trimble Navigation Limited) [File not signed] FirewallRules: [TCP Query User{A5858F38-7EFD-4C1A-8063-354CAB84BA71}C:\users\mojo\appdata\roaming\utorrent\updates\3.4.5_41202.exe] => (Block) C:\users\mojo\appdata\roaming\utorrent\updates\3.4.5_41202.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{1EDE049E-9D3A-4EFA-9A68-FA5BA607A7DD}C:\users\mojo\appdata\roaming\utorrent\updates\3.4.5_41202.exe] => (Block) C:\users\mojo\appdata\roaming\utorrent\updates\3.4.5_41202.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{FC8D7B8D-9599-4D5A-8CBF-02EFA45144F6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe No File FirewallRules: [{4B467082-3F10-41B0-B327-DADD109BDDA8}] => (Allow) C:\Program Files (x86)\peaeLlz\peaeLlz\bin\peaeLlz_server.exe No File FirewallRules: [{8EE6A23D-F14C-432F-9988-9E5E625A08CE}] => (Allow) C:\Program Files (x86)\Firefox\bin\FirefoxCommand.exe No File FirewallRules: [TCP Query User{3774914E-8F2A-47F2-B0F7-E33DC874CFB2}C:\program files (x86)\sketchup\sketchup 2014\sketchup.exe] => (Allow) C:\program files (x86)\sketchup\sketchup 2014\sketchup.exe (Trimble Navigation Limited) [File not signed] FirewallRules: [UDP Query User{E3FD248B-7643-4255-A029-42DFA5898DB0}C:\program files (x86)\sketchup\sketchup 2014\sketchup.exe] => (Allow) C:\program files (x86)\sketchup\sketchup 2014\sketchup.exe (Trimble Navigation Limited) [File not signed] FirewallRules: [TCP Query User{DCC6F302-783F-444B-AD2C-7B3B90384AD4}C:\programdata\asgvis\common\x64\vc10\distributed rendering\xmldrspawner.exe] => (Allow) C:\programdata\asgvis\common\x64\vc10\distributed rendering\xmldrspawner.exe () [File not signed] FirewallRules: [UDP Query User{05462FDD-0AEE-45A4-9CEA-E4AF3C5B2ADF}C:\programdata\asgvis\common\x64\vc10\distributed rendering\xmldrspawner.exe] => (Allow) C:\programdata\asgvis\common\x64\vc10\distributed rendering\xmldrspawner.exe () [File not signed] FirewallRules: [{3ECB10F4-98D3-4C2F-B472-75179D586302}] => (Allow) C:\Program Files (x86)\Tooltony\Application\chrome.exe (Google Inc -> Google Inc.) FirewallRules: [{ED582D55-386F-4F4B-B356-45B9B9B9DCE1}] => (Allow) C:\Program Files (x86)\MIO\loader\st9500325as_6vetgv4bxxxx6vetgv4b.exe () [File not signed] FirewallRules: [{076802CF-FB06-4D6C-B768-7F04F49A69C6}] => (Allow) C:\Program Files (x86)\MIO\loader\st9500325as_6vetgv4bxxxx6vetgv4b.exe () [File not signed] FirewallRules: [{36BD4C4D-B5AD-46B1-994B-81AA71F8479E}] => (Allow) C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe (Chao Wei -> ) FirewallRules: [{23054649-42A8-4987-A16A-4055C89B6318}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe (Mengmeng Wang -> Mozilla Corporation) FirewallRules: [{B1E5F91A-E400-4092-A1B0-5F42DF6B7E5E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) FirewallRules: [{A563BCF3-8971-4458-BBB9-C96F84A340D0}] => (Allow) C:\ProgramData\Monold\protect\protect.exe (Wei Liu -> ) FirewallRules: [{97E09FD6-1C5F-42B6-8FC9-CAEAE92D8017}] => (Allow) C:\Program Files (x86)\MIO\loader\st9500325as_6vetgv4bxxxx6vetgv4b.dat () [File not signed] FirewallRules: [{D9D2253B-BC4C-429C-9090-873A51BB7697}] => (Allow) C:\Program Files (x86)\MIO\loader\st9500325as_6vetgv4bxxxx6vetgv4b.dat () [File not signed] StandardProfile\AuthorizedApplications: [C:\Rebus\Rebus Manager\RebusManager.exe] => Enabled:RebusManager ==================== Restore Points ========================= ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (05/01/2019 03:42:00 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: Connect.Service.ContentService.exe, wersja: 20.1.49.0, sygnatura czasowa: 0x54d43c57 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000007fe967f6887 Identyfikator procesu powodującego błąd: 0x6c4 Godzina uruchomienia aplikacji powodującej błąd: 0x01d50023a5ec016c Ścieżka aplikacji powodującej błąd: C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe Ścieżka modułu powodującego błąd: unknown Identyfikator raportu: e497e742-6c16-11e9-93e8-14dae92bfa1b Error: (05/01/2019 03:42:00 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Application: Connect.Service.ContentService.exe Framework Version: v4.0.30319 Description: The process was terminated due to an unhandled exception. Exception Info: System.NullReferenceException Stack: at System.Data.SqlServerCe.SqlCeException.ToString() at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(System.Object) at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) at System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem() at System.Threading.ThreadPoolWorkQueue.Dispatch() Error: (05/01/2019 03:42:00 PM) (Source: Autodesk Content Service) (EventID: 0) (User: ) Description: UNHANDLED EXCEPTION. Process is terminating: True. EXCEPTION: System.NullReferenceException: Object reference not set to an instance of an object. at System.Data.SqlServerCe.SqlCeException.ToString() at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) at System.Threading.ExecutionContext.RunInternal(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx) at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx) at System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem() at System.Threading.ThreadPoolWorkQueue.Dispatch() Error: (05/01/2019 03:41:47 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: Connect.Service.ContentService.exe, wersja: 20.1.49.0, sygnatura czasowa: 0x54d43c57 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000007fe967d6887 Identyfikator procesu powodującego błąd: 0x1750 Godzina uruchomienia aplikacji powodującej błąd: 0x01d500239e637d4f Ścieżka aplikacji powodującej błąd: C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe Ścieżka modułu powodującego błąd: unknown Identyfikator raportu: dcebd510-6c16-11e9-93e8-14dae92bfa1b Error: (05/01/2019 03:41:47 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Application: Connect.Service.ContentService.exe Framework Version: v4.0.30319 Description: The process was terminated due to an unhandled exception. Exception Info: System.NullReferenceException Stack: at System.Data.SqlServerCe.SqlCeException.ToString() at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(System.Object) at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) at System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem() at System.Threading.ThreadPoolWorkQueue.Dispatch() Error: (05/01/2019 03:41:47 PM) (Source: Autodesk Content Service) (EventID: 0) (User: ) Description: UNHANDLED EXCEPTION. Process is terminating: True. EXCEPTION: System.NullReferenceException: Object reference not set to an instance of an object. at System.Data.SqlServerCe.SqlCeException.ToString() at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) at System.Threading.ExecutionContext.RunInternal(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx) at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx) at System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem() at System.Threading.ThreadPoolWorkQueue.Dispatch() Error: (05/01/2019 03:41:34 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: Connect.Service.ContentService.exe, wersja: 20.1.49.0, sygnatura czasowa: 0x54d43c57 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000007fe967d6887 Identyfikator procesu powodującego błąd: 0x1670 Godzina uruchomienia aplikacji powodującej błąd: 0x01d5002396f167b7 Ścieżka aplikacji powodującej błąd: C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe Ścieżka modułu powodującego błąd: unknown Identyfikator raportu: d5792335-6c16-11e9-93e8-14dae92bfa1b Error: (05/01/2019 03:41:34 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Application: Connect.Service.ContentService.exe Framework Version: v4.0.30319 Description: The process was terminated due to an unhandled exception. Exception Info: System.NullReferenceException Stack: at System.Data.SqlServerCe.SqlCeException.ToString() at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(System.Object) at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) at System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem() at System.Threading.ThreadPoolWorkQueue.Dispatch() System errors: ============= Error: (05/01/2019 03:42:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Autodesk Content Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 840. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Restart the service. Error: (05/01/2019 03:41:48 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Autodesk Content Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 839. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Restart the service. Error: (05/01/2019 03:41:35 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Autodesk Content Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 838. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Restart the service. Error: (05/01/2019 03:41:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Autodesk Content Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 837. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Restart the service. Error: (05/01/2019 03:41:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Autodesk Content Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 836. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Restart the service. Error: (05/01/2019 03:40:57 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Autodesk Content Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 835. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Restart the service. Error: (05/01/2019 03:40:44 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Autodesk Content Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 834. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Restart the service. Error: (05/01/2019 03:40:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Autodesk Content Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 833. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Restart the service. Windows Defender: =================================== Date: 2014-05-09 16:54:23.277 Description: Podczas skanowania produktu Windows Defender wykryto program szpiegujący lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: http://go.microsoft.com/fwlink/?linkid=37020&name=MonitoringTool:Win32/FamilyKeylogger&threatid=5185 Nazwa:MonitoringTool:Win32/FamilyKeylogger Id.:5185 Ważność:Severe Kategoria:Monitoring Software Znaleziona ścieżka:file:C:\CTF\ctfmon.exe;file:C:\CTF\ctfs.dll;process:pid:15256 Typ wykrycia:Konkretne Źródło wykrycia:Ochrona w czasie rzeczywistym Stan:Nieznane Użytkownik:\ Nazwa procesu: Date: 2014-05-09 16:54:22.720 Description: Podczas skanowania produktu Windows Defender wykryto program szpiegujący lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: http://go.microsoft.com/fwlink/?linkid=37020&name=MonitoringTool:Win32/FamilyKeylogger&threatid=5185 Nazwa:MonitoringTool:Win32/FamilyKeylogger Id.:5185 Ważność:Severe Kategoria:Monitoring Software Znaleziona ścieżka:file:C:\CTF\ctfmon.exe;process:pid:15256 Typ wykrycia:Konkretne Źródło wykrycia:Ochrona w czasie rzeczywistym Stan:Nieznane Użytkownik:\ Nazwa procesu: Date: 2012-08-11 07:31:55.503 Description: Produkt Windows Defender napotkał błąd podczas próby załadowania podpisów i podejmie próbę powrotu do znanego zestawu dobrych podpisów. Podpisy objęte próbą:Bieżące Kod błędu:0x80070003 Opis błędu:The system cannot find the path specified. Wersja podpisu:0.0.0.0 Wersja aparatu:0.0.0.0 Date: 2012-07-14 10:28:52.009 Description: Produkt Windows Defender napotkał błąd podczas próby załadowania podpisów i podejmie próbę powrotu do znanego zestawu dobrych podpisów. Podpisy objęte próbą:Bieżące Kod błędu:0x80070002 Opis błędu:The system cannot find the file specified. Wersja podpisu:0.0.0.0 Wersja aparatu:0.0.0.0 CodeIntegrity: =================================== Date: 2016-03-30 22:37:44.702 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\EqualizerAPO\EqualizerAPO.dll because the set of per-page image hashes could not be found on the system. Date: 2016-03-30 22:37:44.499 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\EqualizerAPO\EqualizerAPO.dll because the set of per-page image hashes could not be found on the system. Date: 2016-03-30 22:36:30.117 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\EqualizerAPO\EqualizerAPO.dll because the set of per-page image hashes could not be found on the system. Date: 2016-03-30 22:35:58.946 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\EqualizerAPO\EqualizerAPO.dll because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== BIOS: American Megatrends Inc. 0315 04/21/2011 Motherboard: ASUSTeK Computer INC. 1215B Processor: AMD E-350 Processor Percentage of memory in use: 94% Total physical RAM: 3692.41 MB Available physical RAM: 200.99 MB Total Virtual: 7383.01 MB Available Virtual: 2926.33 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:195.31 GB) (Free:10.81 GB) NTFS ==>[drive with boot components (obtained from BCD)] Drive d: (Nowy) (Fixed) (Total:250.43 GB) (Free:16.87 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: F56DF5CF) Partition 1: (Active) - (Size=195.3 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=250.4 GB) - (Type=0F Extended) Partition 3: (Not Active) - (Size=17 MB) - (Type=EF) ==================== End of Addition.txt ============================