Additional scan result of Farbar Recovery Scan Tool (x86) Version: 08-02-2015 Ran by Solskier at 2015-02-13 22:30:04 Running from I:\ Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: avast! Antivirus (Disabled - Out of date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Disabled - Out of date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 888poker (HKLM\...\888poker) (Version: - ) AC3Filter (remove only) (HKLM\...\AC3Filter) (Version: - ) AC3Filter 2.6.0b (HKLM\...\AC3Filter_is1) (Version: 2.6.0b - Alexander Vigovsky) Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.296 - Adobe Systems Incorporated) Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.296 - Adobe Systems Incorporated) Akamai NetSession Interface (HKU\S-1-5-21-682935528-494026121-326331953-1001\...\Akamai) (Version: - Akamai Technologies, Inc) ALLPlayer V3.X (HKLM\...\ALLPlayer V3.0_is1) (Version: - MarBit COMPUTERS) Any Video Converter 3.5.7 (HKLM\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com) Apple Mobile Device Support (HKLM\...\{941B4CE7-3F5D-443E-A8B7-56A420D2EAFD}) (Version: 7.1.2.6 - Apple Inc.) Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Archiwizator WinRAR (HKLM\...\WinRAR archiver) (Version: - ) Assassin's Creed (HKLM\...\{8CFA9151-6404-409A-AF22-4632D04582FD}) (Version: 1.01 - Ubisoft) Avast Free Antivirus (HKLM\...\Avast) (Version: 10.0.2208 - AVAST Software) AVG Security Toolbar (HKLM\...\AVG Secure Search) (Version: 18.1.9.799 - AVG Technologies) Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.) Browser Manager (HKLM\...\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}) (Version: - ) Crack do Gothic 3 (HKLM\...\Crack do Gothic 3) (Version: - ) D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden doPDF 7.2 printer (HKLM\...\doPDF 7 printer_is1) (Version: - Softland) ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version: - ) Facebook Video Calling 3.1.0.521 (HKLM\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) FLV Player 1.3.3 (HKLM\...\FLVPlayer) (Version: - ) Full Tilt Poker (HKLM\...\{D4C9692E-4EFA-4DA0-8B7F-9439466D9E31}) (Version: 4.46.1.WIN.FullTilt.COM - ) Full Tilt Poker.Eu (HKLM\...\{127BEFB3-24B2-4B44-8E99-AD22C2A5A8ED}) (Version: 4.55.4.WIN.FullTilt.EU - ) Gadu-Gadu 10 (HKLM\...\Gadu-Gadu 10) (Version: - GG Network S.A.) Google Chrome (HKLM\...\Google Chrome) (Version: 40.0.2214.93 - Google Inc.) Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden Google+ Auto Backup (HKLM\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google) Gothic III (HKLM\...\{02B244A2-7F6A-42E8-A36F-8C385D7A1625}) (Version: 1.0.0 - JoWooD Productions Software AG) Half-Life(R) 2 (HKLM\...\{D45EC259-4A19-4656-B588-C2C360DD18EA}) (Version: 1.0.0.0 - Valve) InterVideo DeviceService (HKLM\...\{521AAD14-5030-44BB-8B0E-5CE65FCE57E0}) (Version: 1.0.0 - InterVideo) iTunes (HKLM\...\{86D04316-F49A-4AF2-B3F1-A1E943886CE7}) (Version: 11.3.1.2 - Apple Inc.) join.me (HKU\S-1-5-21-682935528-494026121-326331953-1001\...\JoinMe) (Version: 1.7.0.138 - LogMeIn, Inc.) Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden K-Lite Codec Pack 7.1.0 (Full) (HKLM\...\KLiteCodecPack_is1) (Version: 7.1.0 - ) Linksys Compact Wireless-G USB Adapter Driver - WUSB54GC (HKLM\...\{F855C3AE-992D-4B84-A09D-07103CDCDAC2}) (Version: 1.0 - Linksys, A Division of Cisco Systems, Inc.) Logitech Vid HD (HKLM\...\Logitech Vid) (Version: 7.2 (7259) - Logitech Inc..) Logitech Webcam Software (HKLM\...\{C27BC2A2-30DD-4014-B22E-63EB0DB572F9}) (Version: 12.10.1113 - Logitech Inc.) Logitech Webcam Software Driver Package (HKLM\...\lvdrivers_12.10) (Version: 12.10.1110 - Logitech Inc.) Medieval - Total War - Gold Edition (HKLM\...\{A10F7877-4276-416C-9F22-CB56C0CB2700}) (Version: 2.0 - The Creative Assembly) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Movie Studio Platinum 12.0 (HKLM\...\{698B3D80-9588-11E2-AFF4-F04DA23A5C58}) (Version: 12.0.895 - Sony) Mozilla Firefox 35.0.1 (x86 pl) (HKLM\...\Mozilla Firefox 35.0.1 (x86 pl)) (Version: 35.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla) Nero 8 (HKLM\...\{B944FA21-81AF-4A77-8328-CE4F4CC51045}) (Version: 8.10.21 - Nero AG) Obsługa programów Apple (HKLM\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.) PC Probe II (HKLM\...\{F7338FA3-DAB5-49B2-900D-0AFB5760C166}) (Version: 1.04.60 - ASUSTek) PDF Architect (HKLM\...\{80A07844-CA64-4DE4-AB61-D37DDBE8074F}) (Version: 1.0.52.8917 - pdfforge) PDF Editor 3 (HKLM\...\PDF Editor 3) (Version: - ) PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.6.2 - pdfforge) Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.) PLAY ONLINE (HKLM\...\PLAY ONLINE) (Version: 11.302.09.06.264 - Huawei Technologies Co.,Ltd) PokerStars (HKLM\...\PokerStars) (Version: - PokerStars) QuickTime (HKLM\...\{57752979-A1C9-4C02-856B-FBB27AC4E02C}) (Version: 7.69.80.9 - Apple Inc.) RMVB Player 1.0 (HKLM\...\RMVB Player_is1) (Version: - vsevensoft.com) Samsung Kies (HKLM\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.0.2.11071_128 - Samsung Electronics Co., Ltd.) Samsung Kies (Version: 2.0.2.11071_128 - Samsung Electronics Co., Ltd.) Hidden SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.4.2.2 - SAMSUNG Electronics Co., Ltd.) Skype Click to Call (HKLM\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation) Skype™ 6.18 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.106 - Skype Technologies S.A.) SopCast 3.2.8 (HKLM\...\SopCast) (Version: 3.2.8 - www.sopcast.com) Steam(TM) (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve) Super HUD (HKLM\...\Super HUD) (Version: - Poker Pro Labs) System Update (HKLM\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 4.00.0024 - Lenovo) Tasker version 3.13 (HKLM\...\Tasker_is1) (Version: - Vista Software, Inc.) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH) TeamSpeak 3 Client (HKU\S-1-5-21-682935528-494026121-326331953-1001\...\TeamSpeak 3 Client) (Version: 3.0.6 - TeamSpeak Systems GmbH) The Witcher 2 (HKLM\...\{F0A209B7-7F85-4BDD-8F1F-B98EEAD9E04B}) (Version: 1.00.0000 - CD Projekt Red) TibiaCam TV Lite 3.4 (HKLM\...\TibiaCam TV Lite_is1) (Version: - TibiaCam TV) Unibet (HKLM\...\unibetpoker (Poker)) (Version: 16.3.2.9976 - ) VCRedistSetup (Version: 1.0.0 - Nero AG) Hidden Ventrilo Client (HKLM\...\{789289CA-F73A-4A16-A331-54D498CE069F}) (Version: 3.0.8 - Flagship Industries, Inc.) Vuze (HKLM\...\8461-7759-5462-8226) (Version: - Vuze Inc.) Vuze_Remote Toolbar (HKLM\...\Vuze_Remote Toolbar) (Version: - ) Winamp (remove only) (HKLM\...\Winamp) (Version: - ) Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation) Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp) YourFileDownloader (HKU\S-1-5-21-682935528-494026121-326331953-1001\...\YourFileDownloader) (Version: 1.0.3 - http://yourfiledownloader.com/) <==== ATTENTION ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-682935528-494026121-326331953-1001_Classes\CLSID\{0F130AC8-CDF1-4DAA-AA9B-7B4083F49EA4}\InprocServer32 -> C:\Program Files\Titan Poker\widgetbar\PtContainerUI.dll No File CustomCLSID: HKU\S-1-5-21-682935528-494026121-326331953-1001_Classes\CLSID\{1FD1FE74-9E3C-4C1C-AEEB-AAB592AD770F}\localserver32 -> C:\Users\Solskier\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.) CustomCLSID: HKU\S-1-5-21-682935528-494026121-326331953-1001_Classes\CLSID\{492042A2-4432-44A1-9A39-85B2D3C0119E}\InprocServer32 -> C:\Program Files\Titan Poker\widgetbar\PtContainerUI.dll No File CustomCLSID: HKU\S-1-5-21-682935528-494026121-326331953-1001_Classes\CLSID\{5E71E4F3-E8C7-4906-9626-973E418762B6}\InprocServer32 -> C:\Users\Solskier\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll (Facebook Inc.) CustomCLSID: HKU\S-1-5-21-682935528-494026121-326331953-1001_Classes\CLSID\{876FA801-2B5E-4201-9E6B-2EF2C05A5C6B}\InprocServer32 -> C:\Program Files\Titan Poker\widgetbar\WidgetbarAPI.dll No File CustomCLSID: HKU\S-1-5-21-682935528-494026121-326331953-1001_Classes\CLSID\{89425F5E-A2BD-44CD-9E4F-F1498522F0E5}\InprocServer32 -> C:\Program Files\Titan Poker\widgetbar\WidgetbarManagerUI.dll No File CustomCLSID: HKU\S-1-5-21-682935528-494026121-326331953-1001_Classes\CLSID\{8B9F5BF4-0407-4BB2-9FED-4C0372DABD00}\localserver32 -> C:\Users\Solskier\AppData\Local\Facebook\Video\Skype\FacebookVideoCallingProxy.exe (Skype Limited) CustomCLSID: HKU\S-1-5-21-682935528-494026121-326331953-1001_Classes\CLSID\{CBE9C57E-FFA9-4123-8354-AD360D6DD3CC}\InprocServer32 -> C:\Users\Solskier\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited) CustomCLSID: HKU\S-1-5-21-682935528-494026121-326331953-1001_Classes\CLSID\{F6F8856F-374D-4397-BB1C-80AB57E60529}\InprocServer32 -> C:\Program Files\Titan Poker\widgetbar\WidgetbarAPI.dll No File ==================== Restore Points ========================= 04-02-2015 09:50:55 Scheduled Checkpoint ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:04 - 2015-02-01 09:55 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {0277A5CC-7CA8-44E2-91C9-BC51224C34BE} - System32\Tasks\YourFile Update => C:\Program Files\YourFileDownloader\YourFileUpdater.exe <==== ATTENTION Task: {0BA4AE2C-6F59-4432-99D0-C5E5D9833D9F} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-682935528-494026121-326331953-1001Core => C:\Users\Solskier\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-08-13] (Facebook Inc.) Task: {0F48912C-F754-4A3F-A91C-5CFD66F4F647} - System32\Tasks\{00DAA81E-B8A2-4288-930C-F0A83073AF27} => pcalua.exe -a G:\Drivers\VGA\AsusSetup.exe -d G:\Drivers\VGA Task: {0FB61A85-DE4A-4D63-887B-670CCB2B6BAA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-18] (Google Inc.) Task: {28AA3242-0D34-4BD8-991A-599F99471F57} - System32\Tasks\Browser Manager => Sc.exe start Browser Manager Task: {2970EDBE-A7CA-403F-A81C-0109567B933A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-18] (Google Inc.) Task: {36AD32E0-FA7D-489A-A059-84F5DCFCEE32} - System32\Tasks\{9A4D0A0E-CA95-4771-9B3A-AD4141988CFE} => pcalua.exe -a G:\Software\DirectX\AsusSetup.exe -d G:\Software\DirectX Task: {3BD0DC3F-6F3E-4D87-A9AA-A82A09D853CE} - System32\Tasks\{5FF585DD-E372-4400-A3A6-F76B5E5635D9} => pcalua.exe -a G:\Drivers\Audio\AsusSetup.exe -d G:\Drivers\Audio Task: {53AB78D9-EC78-4FB4-AA24-2A6D44E449D0} - System32\Tasks\{F9088CA0-4F4A-4BB6-ABDE-1A15B7EAC697} => pcalua.exe -a G:\autorun.exe -d G:\ Task: {5AFDE8B1-FDE7-47BA-BF9E-FB306FE3B96E} - System32\Tasks\{267B9635-2732-4379-BAAE-88EEBA4E0C9C} => pcalua.exe -a G:\Software\AntiVirus\AsusSetup.exe -d G:\Software\AntiVirus Task: {681285EA-860D-48EE-82E0-1BEF3FE5EA90} - System32\Tasks\{1FAA204A-E672-45EC-B6D5-7198BCF157D0} => pcalua.exe -a "C:\Users\Solskier\Desktop\New folder\ATISetup.exe" -d "C:\Users\Solskier\Desktop\New folder" Task: {71D53462-9FBC-4F43-860B-65B0BD15EE36} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-682935528-494026121-326331953-1001UA => C:\Users\Solskier\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-08-13] (Facebook Inc.) Task: {898CB1B7-56D6-4198-B02A-C981ABDA4561} - System32\Tasks\{34AA7B63-D4CB-4A3A-8D5E-57B042C38520} => pcalua.exe -a G:\Software\ProbeII\AsusSetup.exe -d G:\Software\ProbeII Task: {9B58A5BA-B2E9-4941-83AC-0456AEECACBC} - System32\Tasks\{EFB16370-9AE3-4CFB-9C10-92846373CBB3} => pcalua.exe -a G:\Drivers\VGA\32bit\AsusSetup.exe -d G:\Drivers\VGA\32bit Task: {AE477224-A9D9-4BB6-8320-4A296C4573D0} - System32\Tasks\{4024BF99-9CA8-4B11-B617-165D43F0F628} => pcalua.exe -a G:\Software\Photoimpact\AsusSetup.exe -d G:\Software\Photoimpact Task: {B11917FD-57B3-46C6-B900-E453F3BF5DAD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-24] (Adobe Systems Incorporated) Task: {B242DAF7-2E50-4AAF-8D14-12E5C8404507} - System32\Tasks\ASUS\ASUS RegRun Loader => C:\Program Files\ASUS\AASP\1.00.80\AsLoader.exe [2008-07-02] () Task: {CAC169EB-CA98-4F7E-9DC3-216DCC54471E} - System32\Tasks\{326C7F0E-4D2E-4F74-8BC5-152A488D7AB1} => Firefox.exe http://ui.skype.com/ui/0/6.3.73.105.457/pl/abandoninstall?page=tsMain Task: {E5C1EE6E-6711-4F66-B876-01FDE3B5383B} - System32\Tasks\{261711DB-5E53-4435-8147-38BFC7AFA7F3} => pcalua.exe -a G:\Drivers\Chipset\AsusSetup.exe -d G:\Drivers\Chipset Task: {F3ECAC6B-EDFB-4276-B5D1-47090E718A7B} - System32\Tasks\{5C288E99-BE14-4A56-B765-794AE1A4F00E} => C:\Program Files\Skype\Phone\Skype.exe [2014-07-24] (Skype Technologies S.A.) Task: {FD84CB80-ABA1-4855-B2F4-280A22AA39CF} - System32\Tasks\ASUS\ASUS ACPI Service Provider => C:\Program Files\ASUS\AASP\1.00.80\aaCenter.exe [2008-11-18] () Task: {FEF61103-4F88-42D4-A9C5-7DEC3AD37CB0} - System32\Tasks\{7FEA2E0E-3212-44EC-8942-080317546EF3} => pcalua.exe -a C:\Users\Solskier\Desktop\mp3DC211.exe -d C:\Users\Solskier\Desktop (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-682935528-494026121-326331953-1001Core.job => C:\Users\Solskier\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-682935528-494026121-326331953-1001UA.job => C:\Users\Solskier\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============== 2015-02-03 18:39 - 2015-02-03 18:39 - 02913280 _____ () C:\Program Files\AVAST Software\Avast\defs\15020300\algo.dll 2014-07-31 11:16 - 2014-07-31 11:16 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2014-07-31 11:16 - 2014-07-31 11:16 - 01044776 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2010-11-16 14:37 - 2010-11-16 14:37 - 00264704 _____ () C:\ProgramData\DatacardService\HWDeviceService.exe 2014-08-11 17:34 - 2014-08-11 17:34 - 00159768 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\loggingserver.exe 2014-08-11 17:34 - 2014-08-11 17:34 - 00519704 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\log4cplusU.dll 2008-11-18 11:27 - 2008-11-18 11:27 - 00621056 ____R () C:\Program Files\ASUS\AASP\1.00.80\aaCenter.exe 2010-02-06 20:38 - 2006-01-10 17:50 - 00024576 ____R () C:\Windows\system32\AsIO.dll 2010-02-06 20:38 - 2005-06-22 18:39 - 00204851 ____R () C:\Program Files\ASUS\AASP\1.00.80\PowerDll.dll 2010-02-06 20:38 - 2008-01-17 17:46 - 00053248 ____R () C:\Program Files\ASUS\AASP\1.00.80\cpuutil.dll 2009-10-14 12:36 - 2009-10-14 12:36 - 02793304 _____ () C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe 2015-01-31 23:42 - 2015-01-31 23:42 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2009-10-14 12:34 - 2009-10-14 12:34 - 00560472 _____ () C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe 2010-03-23 11:01 - 2010-08-06 20:01 - 08818688 _____ () C:\Program Files\Gadu-Gadu 10\QtGui4.dll 2010-03-19 08:34 - 2010-08-06 20:01 - 02404352 _____ () C:\Program Files\Gadu-Gadu 10\QtCore4.dll 2010-03-19 08:34 - 2010-08-06 20:01 - 01040384 _____ () C:\Program Files\Gadu-Gadu 10\QtNetwork4.dll 2010-03-19 08:34 - 2010-08-06 20:01 - 13553664 _____ () C:\Program Files\Gadu-Gadu 10\QtWebKit4.dll 2010-03-19 08:34 - 2010-08-06 20:01 - 03334144 _____ () C:\Program Files\Gadu-Gadu 10\QtXmlPatterns4.dll 2010-03-19 08:34 - 2010-08-06 20:01 - 00323584 _____ () C:\Program Files\Gadu-Gadu 10\QtSvg4.dll 2010-03-19 08:34 - 2010-08-06 20:01 - 01515520 _____ () C:\Program Files\Gadu-Gadu 10\QtScript4.dll 2010-03-19 08:34 - 2010-08-06 20:01 - 00389120 _____ () C:\Program Files\Gadu-Gadu 10\QtXml4.dll 2010-03-19 08:33 - 2010-03-19 08:33 - 00059904 _____ () C:\Program Files\Gadu-Gadu 10\zlib1.dll 2010-07-22 00:25 - 2010-10-07 09:05 - 00123488 _____ () C:\Program Files\Gadu-Gadu 10\ggipcradioproxy.dll 2010-07-22 00:25 - 2010-10-07 09:05 - 00356960 _____ () C:\Program Files\Gadu-Gadu 10\ggcommon.dll 2010-07-22 00:25 - 2010-10-07 09:05 - 00027744 _____ () C:\Program Files\Gadu-Gadu 10\ggcrypto.dll 2010-07-22 00:25 - 2010-10-07 09:05 - 00217696 _____ () C:\Program Files\Gadu-Gadu 10\gglog.dll 2010-07-22 00:25 - 2010-10-07 09:05 - 00017504 _____ () C:\Program Files\Gadu-Gadu 10\ggipc.dll 2010-03-19 08:33 - 2010-08-06 20:00 - 00027648 _____ () C:\Program Files\Gadu-Gadu 10\imageformats\qgif4.dll 2010-03-19 08:33 - 2010-08-06 20:00 - 00143360 _____ () C:\Program Files\Gadu-Gadu 10\imageformats\qjpeg4.dll 2010-03-19 08:33 - 2010-08-06 20:00 - 00274432 _____ () C:\Program Files\Gadu-Gadu 10\imageformats\qmng4.dll 2010-03-19 08:33 - 2010-08-06 20:00 - 00018944 _____ () C:\Program Files\Gadu-Gadu 10\imageformats\qsvg4.dll 2010-03-19 08:33 - 2010-08-06 20:00 - 00311296 _____ () C:\Program Files\Gadu-Gadu 10\imageformats\qtiff4.dll 2011-07-26 19:23 - 2011-07-26 19:23 - 00020880 _____ () C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe 2015-02-13 22:21 - 2015-02-13 22:21 - 00115137 _____ () C:\Users\Solskier\AppData\Local\Temp\3dcf2df1-2a83-477c-a7dd-858967792357\CliSecureRT.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver" ==================== EXE Association (whitelisted) =============== (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== Other Registry Areas ===================== (Currently there is no automatic fix for this section.) HKU\S-1-5-21-682935528-494026121-326331953-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Solskier\AppData\Roaming\Mozilla\Firefox\Tapeta pulpitu.bmp ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== Accounts: ============================= Administrator (S-1-5-21-682935528-494026121-326331953-500 - Administrator - Disabled) Guest (S-1-5-21-682935528-494026121-326331953-501 - Limited - Enabled) => C:\Users\Guest HomeGroupUser$ (S-1-5-21-682935528-494026121-326331953-1005 - Limited - Enabled) Sol (S-1-5-21-682935528-494026121-326331953-1006 - Administrator - Enabled) => C:\Users\Sol.Solskier-PC Solskier (S-1-5-21-682935528-494026121-326331953-1001 - Administrator - Enabled) => %SystemDrive%\Users\Solskier ==================== Faulty Device Manager Devices ============= Name: USB DISK Description: USB Flash Disk Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a} Manufacturer: General Service: WUDFRd Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. Name: Realtek RTL8102E/RTL8103E Family PCI-E Fast Ethernet NIC (NDIS 6.20) - AVG miniport driver Description: AVG miniport driver Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: AVG Technologies Service: Avgfwdx Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. Name: WAN Miniport (IP) - AVG miniport driver Description: AVG miniport driver Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: AVG Technologies Service: Avgfwdx Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. Name: WAN Miniport (Network Monitor) - AVG miniport driver Description: AVG miniport driver Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: AVG Technologies Service: Avgfwdx Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. Name: WAN Miniport (IPv6) - AVG miniport driver Description: AVG miniport driver Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: AVG Technologies Service: Avgfwdx Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. Name: Compact Wireless-G USB Adapter - AVG miniport driver Description: AVG miniport driver Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: AVG Technologies Service: Avgfwdx Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Compact Wireless-G USB Adapter #2 - AVG miniport driver Description: AVG miniport driver Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: AVG Technologies Service: Avgfwdx Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. Name: Compact Wireless-G USB Adapter #3 - AVG miniport driver Description: AVG miniport driver Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: AVG Technologies Service: Avgfwdx Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. ==================== Event log errors: ========================= Application errors: ================== Error: (02/13/2015 10:28:35 PM) (Source: Google Update) (EventID: 20) (User: Solskier-PC) Description: Network Request Error. Error: 0x80072ee7. Http status code: 0. Url=https://www.facebook.com/omaha/update.php Trying config: source=FireFox, direct connection. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=FireFox, direct connection. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x80 Error: (02/13/2015 10:21:01 PM) (Source: Google Update) (EventID: 20) (User: Solskier-PC) Description: Network Request Error. Error: 0x80072ee7. Http status code: 0. Url=https://www.facebook.com/omaha/update.php Trying config: source=FireFox, direct connection. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=FireFox, direct connection. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x80 Error: (02/08/2015 04:46:53 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Activation context generation failed for "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1". Dependent Assembly Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found. Please use sxstrace.exe for detailed diagnosis. Error: (02/08/2015 04:28:01 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1505) (User: Solskier-PC) Description: Windows cannot load the user's profile but has logged you on with the default profile for the system. DETAIL - Access is denied. Error: (02/08/2015 04:28:01 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1505) (User: Solskier-PC) Description: Windows cannot load the user's profile but has logged you on with the default profile for the system. DETAIL - Access is denied. Error: (02/08/2015 04:28:01 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1505) (User: Solskier-PC) Description: Windows cannot load the user's profile but has logged you on with the default profile for the system. DETAIL - Access is denied. Error: (02/04/2015 08:02:41 PM) (Source: RasClient) (EventID: 20227) (User: ) Description: CoId={E92D555E-C979-419B-BCAF-D60DFDCCD122}: The user Solskier-PC\Sol dialed a connection named Broadband Connection which has failed. The error code returned on failure is 651. Error: (02/04/2015 07:54:51 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1505) (User: Solskier-PC) Description: Windows cannot load the user's profile but has logged you on with the default profile for the system. DETAIL - Access is denied. Error: (02/04/2015 07:54:51 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1505) (User: Solskier-PC) Description: Windows cannot load the user's profile but has logged you on with the default profile for the system. DETAIL - Access is denied. Error: (02/04/2015 07:54:51 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1505) (User: Solskier-PC) Description: Windows cannot load the user's profile but has logged you on with the default profile for the system. DETAIL - Access is denied. System errors: ============= Error: (02/10/2015 08:07:04 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: %%1068 Error: (02/10/2015 08:07:04 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: %%1068 Error: (02/10/2015 08:07:04 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: %%1068 Error: (02/10/2015 08:07:04 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: %%1068 Error: (02/10/2015 08:07:04 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: %%1068 Error: (02/10/2015 08:07:04 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: %%1068 Error: (02/10/2015 08:07:02 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: %%1068 Error: (02/10/2015 08:07:02 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: %%1068 Error: (02/10/2015 08:07:02 PM) (Source: DCOM) (EventID: 10005) (User: ) Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} Error: (02/10/2015 08:07:02 PM) (Source: DCOM) (EventID: 10005) (User: ) Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030} Microsoft Office Sessions: ========================= ==================== Memory info =========================== Processor: Intel(R) Core(TM)2 Duo CPU E7600 @ 3.06GHz Percentage of memory in use: 42% Total physical RAM: 2047.18 MB Available physical RAM: 1174.4 MB Total Pagefile: 4094.36 MB Available Pagefile: 3000.25 MB Total Virtual: 2047.88 MB Available Virtual: 1891.95 MB ==================== Drives ================================ Drive c: (System) (Fixed) (Total:63.77 GB) (Free:28.51 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive d: () (Fixed) (Total:97.66 GB) (Free:3.43 GB) NTFS Drive e: (Gry) (Fixed) (Total:292.97 GB) (Free:208.76 GB) NTFS Drive f: (Filmy i muzyka) (Fixed) (Total:244.04 GB) (Free:89.06 GB) NTFS Drive i: (USB DISK) (Removable) (Total:3.73 GB) (Free:2.44 GB) FAT32 ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 1497C43D) Partition 1: (Not Active) - (Size=97.7 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=293 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=244 GB) - (Type=07 NTFS) Partition 4: (Active) - (Size=63.8 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Size: 3.7 GB) (Disk ID: 00000000) Partition: GPT Partition Type. ==================== End Of Log ============================