Additional scan result of Farbar Recovery Scan Tool (x86) Version: 06-01-2015 Ran by Dominik at 2015-01-06 15:03:29 Running from C:\Users\Dominik\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-2109998537-1096708334-3085003647-1000\...\uTorrent) (Version: 3.4.2.35141 - BitTorrent Inc.) Adobe Acrobat 5.0 CE (HKLM\...\Adobe Acrobat 5.0) (Version: 5.0 - Adobe Systems, Inc.) Adobe AIR (HKLM\...\Adobe AIR) (Version: 13.0.0.83 - Adobe Systems Incorporated) Adobe Flash Player 15 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 15.0.0.246 - Adobe Systems Incorporated) Adobe Reader X (10.1.9) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.9 - Adobe Systems Incorporated) Adobe Shockwave Player 11.6 (HKLM\...\Adobe Shockwave Player) (Version: 11.6.4.634 - Adobe Systems, Inc.) AIMP3 (HKLM\...\AIMP3) (Version: v3.00.981 - AIMP DevTeam) Akamai NetSession Interface (HKU\S-1-5-21-2109998537-1096708334-3085003647-1000\...\Akamai) (Version: - Akamai Technologies, Inc) Aktualizacje NVIDIA 15.3.33 (Version: 15.3.33 - NVIDIA Corporation) Hidden Angry Birds Star Wars (HKLM\...\{DDDA784F-1F6F-4ECA-B432-EBE0374C322D}) (Version: 1.0.0 - Rovio) avast! Free Antivirus (HKLM\...\avast) (Version: 9.0.2021 - AVAST Software) Bandisoft MPEG-1 Decoder (HKLM\...\BandiMPEG1) (Version: - ) Battle.net (HKLM\...\Battle.net) (Version: - Blizzard Entertainment) CCleaner (HKLM\...\CCleaner) (Version: 4.11 - Piriform) Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve) Creative Live! Cam Vista IM (VF0420) Driver (1.01.01.00) (HKLM\...\Creative VF0420) (Version: - ) DealPly (HKU\.DEFAULT\...\DealPly) (Version: - ) <==== ATTENTION Diablo III (HKLM\...\Diablo III) (Version: - Blizzard Entertainment) GG (HKU\S-1-5-21-2109998537-1096708334-3085003647-1000\...\GG) (Version: 12 - GG Network S.A.) Google Chrome (HKLM\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.) HDvid Codec V1 (HKLM\...\HDvid Codec V1) (Version: 1.27.153.8 - installdaddy) <==== ATTENTION Internet Explorer Toolbar 4.6 by SweetPacks (HKLM\...\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}) (Version: 4.6.0004 - SweetIM Technologies Ltd.) <==== ATTENTION Java 7 Update 71 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle) Java(TM) 6 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216031FF}) (Version: 6.0.310 - Oracle) League of Legends (HKLM\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games) LightScribe 1.6.43.1 (Version: 1.6.43.1 - http://www.lightscribe.com) Hidden LOLReplay (HKLM\...\LOLReplay) (Version: 0.8.9.22 - www.leaguereplays.com) Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - ) Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version: - ) Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation) Microsoft Games for Windows Marketplace (HKLM\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{887868A2-D6DE-3255-AA92-AA0B5A59B874}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Mozilla Firefox 34.0.5 (x86 pl) (HKLM\...\Mozilla Firefox 34.0.5 (x86 pl)) (Version: 34.0.5 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 34.0.5 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Nero 7 Essentials (HKLM\...\{F61DD673-0030-4BB2-A382-7E57E97F1045}) (Version: 7.02.8078 - Nero AG) NVIDIA GeForce Experience 2.1.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.1 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation) NVIDIA Sterownik graficzny 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation) OpenFM (HKU\S-1-5-21-2109998537-1096708334-3085003647-1000\...\OpenFM) (Version: 2 - GG Network S.A.) OpenOffice.org 2.4 (HKLM\...\{E33DB440-A008-4928-8A4E-5FC5ADDED608}) (Version: 2.4.9364 - OpenOffice.org) Pakiet językowy programu Microsoft .NET Framework 3.5 — PLK (HKLM\...\Microsoft .NET Framework 3.5 Language Pack - plk) (Version: - Microsoft Corporation) Panel sterowania NVIDIA 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden PC Inspector smart recovery (HKLM\...\{C9A87D86-FDFD-418B-BF96-EF09320973B3}) (Version: 4.50 - ) Photoscape Packages (HKU\S-1-5-21-2109998537-1096708334-3085003647-1000\...\Photoscape Packages) (Version: - ) <==== ATTENTION Pinnacle VideoSpin (HKLM\...\{FEB15887-0932-4D2D-BB85-6AC03FBF1AA8}) (Version: 2.0.0.669 - Pinnacle Systems) Power Challenge Game Plugin (HKU\S-1-5-21-2109998537-1096708334-3085003647-1000\...\Power Loader) (Version: - ) Realm of the Mad God (HKLM\...\Steam App 200210) (Version: - Wild Shadow Studios) Saints Row: The Third (HKLM\...\Steam App 55230) (Version: - Volition) screenSHU - the fastest screen capture ever. (HKLM\...\screenSHU) (Version: - ) SiteFinder (HKLM\...\SiteFinder) (Version: 1.0.0.0 - SiteFinder) <==== ATTENTION! Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.3.11079 - Skype Technologies S.A.) Skype™ 7.0 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-2109998537-1096708334-3085003647-1000\...\Spotify) (Version: 0.9.15.27.g87efe634 - Spotify AB) Steam (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation) swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH) Unity Web Player (HKU\S-1-5-21-2109998537-1096708334-3085003647-1000\...\UnityWebPlayer) (Version: 4.6.1f1 - Unity Technologies ApS) VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden Windows Media Player 11 Packages (HKU\S-1-5-21-2109998537-1096708334-3085003647-1000\...\Windows Media Player 11 Packages) (Version: - ) <==== ATTENTION WinRAR 4.20 (32-bitowy) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH) XP Codec Pack (HKLM\...\XP Codec Pack) (Version: - ) Yontoo 1.10.02 (HKLM\...\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}) (Version: 1.10.02 - Yontoo LLC) <==== ATTENTION ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-2109998537-1096708334-3085003647-1000_Classes\CLSID\{00B7E0AB-817A-44AD-A04B-D1148D524136}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2109998537-1096708334-3085003647-1000_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\Dominik\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS) CustomCLSID: HKU\S-1-5-21-2109998537-1096708334-3085003647-1000_Classes\CLSID\{7C6E29BC-8B8B-4C3D-859E-AF6CD158BE0F}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2109998537-1096708334-3085003647-1000_Classes\CLSID\{88D969C0-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2109998537-1096708334-3085003647-1000_Classes\CLSID\{88D969C1-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2109998537-1096708334-3085003647-1000_Classes\CLSID\{88D969C2-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2109998537-1096708334-3085003647-1000_Classes\CLSID\{88D969C3-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2109998537-1096708334-3085003647-1000_Classes\CLSID\{88D969C4-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2109998537-1096708334-3085003647-1000_Classes\CLSID\{88D969C5-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2109998537-1096708334-3085003647-1000_Classes\CLSID\{88D969C6-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2109998537-1096708334-3085003647-1000_Classes\CLSID\{88D969C8-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2109998537-1096708334-3085003647-1000_Classes\CLSID\{88D969C9-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2109998537-1096708334-3085003647-1000_Classes\CLSID\{88D969CA-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2109998537-1096708334-3085003647-1000_Classes\CLSID\{88D969D6-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2109998537-1096708334-3085003647-1000_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\Dominik\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll (GG Network S.A.) ==================== Restore Points ========================= ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2006-11-02 11:23 - 2006-09-18 22:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ::1 localhost ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {0048FF3E-EB91-4258-8AA3-7EEE8BC4BBDE} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-03-04] (Oracle Corporation) Task: {01C4E655-24EF-4262-842E-908A4095A613} - System32\Tasks\DealPly => C:\Windows\System32\config\systemprofile\AppData\Roaming\DealPly\UpdateProc\UpdateTask.exe [2013-04-23] () <==== ATTENTION Task: {2E24167B-8A76-4CF1-91E9-AD172626FA77} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\VistaSP1CEIP => C:\Windows\servicing\vsp1ceip.exe [2008-01-19] (Microsoft Corporation) Task: {2EAD9E21-1875-4786-9D2F-54F692B759F7} - System32\Tasks\EPUpdater => C:\Users\Dominik\AppData\Roaming\BabSolution\Shared\BabMaint.exe [2013-08-04] () <==== ATTENTION Task: {4053F668-3EC6-4036-9637-2E79A6C95617} - System32\Tasks\GoodGameEmpire W1 => Chrome.exe --app=http://a2g-secure.com/?E=bwsPamg0MAiwFF%2bnM1a0Fg%3d%3d&s1= --app-window-size=1280,1024 Task: {4CE5D1F6-A956-46D4-BF26-6564FA86EC6C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-10] (Adobe Systems Incorporated) Task: {5A3ED164-A29F-4698-B7F6-D534FB816E7A} - System32\Tasks\task358833 => C:\Windows\Temp\_ex-08.exe <==== ATTENTION Task: {5DC20A24-FBB0-45A6-9471-EDF58CA47993} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-03-10] (Google Inc.) Task: {62E4808D-C63B-4C0A-B621-B42DBE028A58} - \systems No Task File <==== ATTENTION Task: {6E042961-23D9-4FD5-BC83-41FD93DC2150} - System32\Tasks\GoodGameEmpire W2 => Chrome.exe --app=http://a2g-secure.com/?E=bwsPamg0MAiwFF%2bnM1a0Fg%3d%3d&s1= --app-window-size=1280,1024 Task: {6F8FCCC0-9A88-4479-9D41-F32692BF37A6} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-10-03] (AVAST Software) Task: {77930916-DC41-4D13-91D7-3C2D5FCD42E7} - System32\Tasks\SaveSenseLiveUpdateTaskMachineCore => C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe [2014-02-13] (SaveSense) <==== ATTENTION Task: {8576AD86-5029-43F2-8C67-B1F41116F93B} - System32\Tasks\GoodGameEmpire NextW1 => Chrome.exe --app=http://a2g-secure.com/?E=bwsPamg0MAiwFF%2bnM1a0Fg%3d%3d&s1= --app-window-size=1280,1024 Task: {AA1B585A-F14A-42BF-91F1-DEC9DF5CDB85} - \fbagent No Task File <==== ATTENTION Task: {AA3D7EEB-7C06-4283-AAB9-36511726160C} - System32\Tasks\{00E2789E-2120-4C0A-B516-7D5841DE9AAF} => pcalua.exe -a "C:\Program Files\CAPCOM\Devil May Cry 3 Edycja Specjalna\uninstall.exe" -d "C:\Program Files\CAPCOM\Devil May Cry 3 Edycja Specjalna" Task: {B5E62214-A5F9-4E42-964B-3890A7CDEC92} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files\IObit\Game Booster 3\AutoUpdate.exe Task: {B94EFB4F-3084-45D3-89AA-A84C90420EDE} - System32\Tasks\BonanzaDealsLiveUpdateTaskMachineUA => C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe [2013-09-25] (BonanzaDeals) <==== ATTENTION Task: {B9ADAE2A-425D-42DB-84FA-F0CB7A00DB38} - System32\Tasks\GoodGameEmpire NextW2 => Chrome.exe --app=http://a2g-secure.com/?E=bwsPamg0MAiwFF%2bnM1a0Fg%3d%3d&s1= --app-window-size=1280,1024 Task: {C174EEE4-8B17-43CC-A512-81BC7E0FF118} - System32\Tasks\SaveSenseLiveUpdateTaskMachineUA => C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe [2014-02-13] (SaveSense) <==== ATTENTION Task: {C9DF78F1-EE45-4AAB-9B15-44E218CB24D7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-03-10] (Google Inc.) Task: {DC89BBFB-FE14-4FF4-AB77-2AF925691C22} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-02-20] (Piriform Ltd) Task: {DE2E9F63-9081-45AC-B045-5C725B4BC358} - System32\Tasks\{778FC7CC-15CA-4C08-B6C4-DCEAE647707C} => pcalua.exe -a "C:\Deluxe Ski Jump 3\Setup.exe" -d "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deluxe Ski Jump 3" Task: {E0DE6DAF-CEEB-42D4-A022-BC1D31AF5728} - System32\Tasks\BonanzaDealsLiveUpdateTaskMachineCore => C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe [2013-09-25] (BonanzaDeals) <==== ATTENTION (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\BonanzaDealsLiveUpdateTaskMachineCore.job => C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe <==== ATTENTION Task: C:\Windows\Tasks\BonanzaDealsLiveUpdateTaskMachineUA.job => C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe <==== ATTENTION Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineCore.job => C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe <==== ATTENTION Task: C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineUA.job => C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe <==== ATTENTION Task: C:\Windows\Tasks\User_Feed_Synchronization-{846EC9CA-8A2B-4817-A076-0C4D41FC22D9}.job => C:\Windows\system32\msfeedssync.exe ==================== Loaded Modules (whitelisted) ============= 2012-07-04 09:00 - 2014-10-03 13:51 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll 2015-01-06 11:33 - 2015-01-06 11:33 - 02909696 _____ () C:\Program Files\AVAST Software\Avast\defs\15010600\algo.dll 2014-10-03 13:51 - 2014-10-03 13:51 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2015-01-04 13:05 - 2014-11-26 17:40 - 03758192 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll 2014-02-28 14:33 - 2014-02-28 14:33 - 00148480 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll 2014-02-27 14:46 - 2014-02-27 14:46 - 00864768 _____ () C:\Program Files\TeamSpeak 3 Client\platforms\qwindows.dll 2014-02-27 14:45 - 2014-02-27 14:45 - 00677376 _____ () C:\Program Files\TeamSpeak 3 Client\sqldrivers\qsqlite.dll 2014-02-28 14:41 - 2014-08-18 14:39 - 00092104 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win32.dll 2014-02-28 14:41 - 2014-08-18 14:39 - 00105416 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win32.dll 2014-02-27 14:46 - 2014-02-27 14:46 - 00025600 _____ () C:\Program Files\TeamSpeak 3 Client\imageformats\qgif.dll 2014-02-27 14:46 - 2014-02-27 14:46 - 00242688 _____ () C:\Program Files\TeamSpeak 3 Client\imageformats\qjpeg.dll 2014-02-28 14:42 - 2014-08-18 14:39 - 00477128 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll 2014-02-28 14:42 - 2014-08-18 14:39 - 00484808 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll 2014-02-27 14:46 - 2014-02-27 14:46 - 00123904 _____ () C:\Program Files\TeamSpeak 3 Client\accessible\qtaccessiblewidgets.dll 2014-12-10 10:21 - 2014-12-10 10:21 - 16841392 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_246.dll 2014-12-12 15:24 - 2014-12-06 02:50 - 09009480 _____ () C:\Program Files\Google\Chrome\Application\39.0.2171.95\pdf.dll 2014-12-12 15:24 - 2014-12-06 02:50 - 01677128 _____ () C:\Program Files\Google\Chrome\Application\39.0.2171.95\ffmpegsumo.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\Users\Dominik\Dane aplikacji:NT AlternateDataStreams: C:\Users\Dominik\AppData\Roaming:NT ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) HKU\S-1-5-21-2109998537-1096708334-3085003647-1000\Software\Classes\.exe: exefile => <===== ATTENTION! ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup MSCONFIG\startupfolder: C:^Users^Dominik^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse.lnk => C:\Windows\pss\Curse.lnk.Startup MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Dominik\AppData\Local\Akamai\netsession_win.exe" MSCONFIG\startupreg: BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} => "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" MSCONFIG\startupreg: GG => "C:\Users\Dominik\AppData\Local\GG\Application\gghub.exe" MSCONFIG\startupreg: NeroFilterCheck => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe MSCONFIG\startupreg: Skype => "C:\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Dominik\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe" ========================= Accounts: ========================== Administrator (S-1-5-21-2109998537-1096708334-3085003647-500 - Administrator - Disabled) ASPNET (S-1-5-21-2109998537-1096708334-3085003647-1003 - Limited - Enabled) Dominik (S-1-5-21-2109998537-1096708334-3085003647-1000 - Administrator - Enabled) => C:\Users\Dominik Gość (S-1-5-21-2109998537-1096708334-3085003647-501 - Limited - Disabled) ==================== Faulty Device Manager Devices ============= Name: isatap.{A03FA544-581C-4A49-BA6D-D02326AF0B45} Description: Karta Microsoft ISATAP Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Name: Kontroler Ethernet Description: Kontroler Ethernet Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Urządzenie pamięci masowej USB Description: Urządzenie pamięci masowej USB Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: Zgodne urządzenie magazynujące USB Service: USBSTOR Problem: : Windows cannot use this hardware device because it has been prepared for safe removal, but it has not been removed from the computer. (Code 47) Resolution: Unplug the device, and then plug it in again. Alternately, restart the computer to make the device available. Name: Kontroler magistrali zarządzania systemem Description: Kontroler magistrali zarządzania systemem Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Broadcom 590x 10/100 Ethernet Description: Broadcom 590x 10/100 Ethernet Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Broadcom Service: b57nd60x Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver Name: avast! Firewall NDIS Filter Miniport #8 Description: avast! Firewall NDIS Filter Miniport Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: ALWIL Software Service: aswNdis Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. ==================== Event log errors: ========================= Application errors: ================== Error: (01/06/2015 02:53:00 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Aplikacja powodująca błąd LolClient.exe, wersja 0.0.0.0, sygnatura czasowa 0x515663e0, moduł powodujący błąd WebKit.dll, wersja 6531.9.0.0, sygnatura czasowa 0x51566370, kod wyjątku 0xc0000005, przesunięcie błędu 0x0009426d, identyfikator procesu 0x100c, godzina rozpoczęcia aplikacji 0xLolClient.exe0. Error: (01/06/2015 02:52:01 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Aplikacja powodująca błąd LolClient.exe, wersja 0.0.0.0, sygnatura czasowa 0x515663e0, moduł powodujący błąd WebKit.dll, wersja 6531.9.0.0, sygnatura czasowa 0x51566370, kod wyjątku 0xc0000005, przesunięcie błędu 0x0009426d, identyfikator procesu 0x558, godzina rozpoczęcia aplikacji 0xLolClient.exe0. Error: (01/06/2015 02:51:12 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Aplikacja powodująca błąd LolClient.exe, wersja 0.0.0.0, sygnatura czasowa 0x515663e0, moduł powodujący błąd WebKit.dll, wersja 6531.9.0.0, sygnatura czasowa 0x51566370, kod wyjątku 0xc0000005, przesunięcie błędu 0x0009426d, identyfikator procesu 0xb78, godzina rozpoczęcia aplikacji 0xLolClient.exe0. Error: (01/06/2015 02:46:36 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Aplikacja powodująca błąd LolClient.exe, wersja 0.0.0.0, sygnatura czasowa 0x515663e0, moduł powodujący błąd WebKit.dll, wersja 6531.9.0.0, sygnatura czasowa 0x51566370, kod wyjątku 0xc0000005, przesunięcie błędu 0x0009426d, identyfikator procesu 0xc64, godzina rozpoczęcia aplikacji 0xLolClient.exe0. Error: (01/06/2015 02:44:55 PM) (Source: RasClient) (EventID: 20227) (User: ) Description: Identyfikator CoId={7DD65101-DE0A-4630-99D5-7E6C05D36AA2}: Użytkownik Dominik-PC\Dominik wybrał numer w celu nawiązania połączenia o nazwie Połączenie szerokopasmowe, jednak jego nawiązanie nie powiodło się. Kod błędu zwrócony w wyniku niepowodzenia: 0. Error: (01/06/2015 02:44:52 PM) (Source: RasClient) (EventID: 20227) (User: ) Description: Identyfikator CoId={15F67676-484F-4CAF-801C-0509701439F3}: Użytkownik Dominik-PC\Dominik wybrał numer w celu nawiązania połączenia o nazwie Połączenie szerokopasmowe, jednak jego nawiązanie nie powiodło się. Kod błędu zwrócony w wyniku niepowodzenia: 0. Error: (01/05/2015 10:21:16 PM) (Source: RasClient) (EventID: 20227) (User: ) Description: Identyfikator CoId={3DE81062-8D57-4CA9-816D-9C0705249E20}: Użytkownik Dominik-PC\Dominik wybrał numer w celu nawiązania połączenia o nazwie Połączenie szerokopasmowe, jednak jego nawiązanie nie powiodło się. Kod błędu zwrócony w wyniku niepowodzenia: 0. Error: (01/05/2015 04:36:51 PM) (Source: RasClient) (EventID: 20227) (User: ) Description: Identyfikator CoId={87443764-22EB-4921-BDE8-441B6C1706C1}: Użytkownik Dominik-PC\Dominik wybrał numer w celu nawiązania połączenia o nazwie Połączenie szerokopasmowe, jednak jego nawiązanie nie powiodło się. Kod błędu zwrócony w wyniku niepowodzenia: 0. Error: (01/05/2015 04:12:38 PM) (Source: RasClient) (EventID: 20227) (User: ) Description: Identyfikator CoId={058A5ED4-ECBB-42E6-BAE4-96E7599F85E6}: Użytkownik Dominik-PC\Dominik wybrał numer w celu nawiązania połączenia o nazwie Połączenie szerokopasmowe, jednak jego nawiązanie nie powiodło się. Kod błędu zwrócony w wyniku niepowodzenia: 815. Error: (01/05/2015 04:06:11 PM) (Source: RasClient) (EventID: 20227) (User: ) Description: Identyfikator CoId={02EFD5EF-DC63-4C8D-94F8-53EE8E5AA3FA}: Użytkownik Dominik-PC\Dominik wybrał numer w celu nawiązania połączenia o nazwie Połączenie szerokopasmowe, jednak jego nawiązanie nie powiodło się. Kod błędu zwrócony w wyniku niepowodzenia: 0. System errors: ============= Error: (02/04/2013 08:39:41 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 22:21:08 na 2013-02-03 było nieoczekiwane. Error: (02/03/2013 09:07:34 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: NVIDIA Update Service Daemon%%1069 Error: (02/03/2013 09:07:34 AM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: nvUpdatusService.\UpdatusUser%%1330 Error: (02/03/2013 09:05:56 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: luafv Error: (02/03/2013 09:05:16 AM) (Source: HTTP) (EventID: 15016) (User: ) Description: \Device\Http\ReqQueueKerberos Error: (02/03/2013 00:01:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: NVIDIA Update Service Daemon%%1069 Error: (02/03/2013 00:01:30 AM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: nvUpdatusService.\UpdatusUser%%1330 Error: (02/02/2013 11:59:45 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: luafv Error: (02/02/2013 11:59:13 PM) (Source: HTTP) (EventID: 15016) (User: ) Description: \Device\Http\ReqQueueKerberos Error: (02/02/2013 06:49:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: NVIDIA Update Service Daemon%%1069 Microsoft Office Sessions: ========================= Error: (01/06/2015 02:53:00 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: LolClient.exe0.0.0.0515663e0WebKit.dll6531.9.0.051566370c00000050009426d100c01d029b8049872ce Error: (01/06/2015 02:52:01 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: LolClient.exe0.0.0.0515663e0WebKit.dll6531.9.0.051566370c00000050009426d55801d029b7dc8867ee Error: (01/06/2015 02:51:12 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: LolClient.exe0.0.0.0515663e0WebKit.dll6531.9.0.051566370c00000050009426db7801d029b7c6074c2e Error: (01/06/2015 02:46:36 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: LolClient.exe0.0.0.0515663e0WebKit.dll6531.9.0.051566370c00000050009426dc6401d029a9908e0f6e Error: (01/06/2015 02:44:55 PM) (Source: RasClient) (EventID: 20227) (User: ) Description: {7DD65101-DE0A-4630-99D5-7E6C05D36AA2}Dominik-PC\DominikPołączenie szerokopasmowe0 Error: (01/06/2015 02:44:52 PM) (Source: RasClient) (EventID: 20227) (User: ) Description: {15F67676-484F-4CAF-801C-0509701439F3}Dominik-PC\DominikPołączenie szerokopasmowe0 Error: (01/05/2015 10:21:16 PM) (Source: RasClient) (EventID: 20227) (User: ) Description: {3DE81062-8D57-4CA9-816D-9C0705249E20}Dominik-PC\DominikPołączenie szerokopasmowe0 Error: (01/05/2015 04:36:51 PM) (Source: RasClient) (EventID: 20227) (User: ) Description: {87443764-22EB-4921-BDE8-441B6C1706C1}Dominik-PC\DominikPołączenie szerokopasmowe0 Error: (01/05/2015 04:12:38 PM) (Source: RasClient) (EventID: 20227) (User: ) Description: {058A5ED4-ECBB-42E6-BAE4-96E7599F85E6}Dominik-PC\DominikPołączenie szerokopasmowe815 Error: (01/05/2015 04:06:11 PM) (Source: RasClient) (EventID: 20227) (User: ) Description: {02EFD5EF-DC63-4C8D-94F8-53EE8E5AA3FA}Dominik-PC\DominikPołączenie szerokopasmowe0 CodeIntegrity Errors: =================================== Date: 2014-09-04 21:25:49.635 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\apl005.sys because the set of per-page image hashes could not be found on the system. Date: 2014-09-04 21:25:49.505 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\apl005.sys because the set of per-page image hashes could not be found on the system. Date: 2014-09-04 21:25:49.385 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\apl005.sys because the set of per-page image hashes could not be found on the system. Date: 2014-09-04 21:25:49.238 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\apl005.sys because the set of per-page image hashes could not be found on the system. Date: 2014-09-04 21:25:49.113 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\apl005.sys because the set of per-page image hashes could not be found on the system. Date: 2014-09-04 21:25:48.994 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\apl005.sys because the set of per-page image hashes could not be found on the system. Date: 2014-09-04 21:25:48.869 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\apl005.sys because the set of per-page image hashes could not be found on the system. Date: 2014-09-04 21:25:48.714 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\apl005.sys because the set of per-page image hashes could not be found on the system. Date: 2014-09-04 21:25:48.589 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\apl005.sys because the set of per-page image hashes could not be found on the system. Date: 2014-09-04 21:25:48.389 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\apl005.sys because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: Intel(R) Core(TM)2 Duo CPU E6550 @ 2.33GHz Percentage of memory in use: 68% Total physical RAM: 2045.77 MB Available physical RAM: 653.26 MB Total Pagefile: 4340.55 MB Available Pagefile: 2525.11 MB Total Virtual: 2047.88 MB Available Virtual: 1898.17 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:117.19 GB) (Free:7.72 GB) NTFS Drive d: () (Fixed) (Total:31.85 GB) (Free:5.23 GB) NTFS ==>[System with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 149 GB) (Disk ID: 93921C5A) Partition 1: (Active) - (Size=31.9 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=117.2 GB) - (Type=07 NTFS) ==================== End Of Log ============================