Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015 Ran by Marek at 2015-03-12 14:15:34 Running from C:\Users\Marek\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 7-Zip 9.21 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0921-000001000000}) (Version: 9.21.00.0 - Igor Pavlov) Activision(R) (x32 Version: 1.00.0000 - Activision) Hidden Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated) Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.6.156 - Adobe Systems, Inc.) Akamai NetSession Interface (HKU\S-1-5-21-3251776730-861767313-4254609882-1000\...\Akamai) (Version: - Akamai Technologies, Inc) Aktualizacje NVIDIA 17.12.8 (Version: 17.12.8 - NVIDIA Corporation) Hidden ArcaniA - Gothic 4 (HKLM-x32\...\ArcaniA) (Version: - JoWooD Entertainment AG) ArchiCAD 16 POL (HKLM\...\001FFF2FFF16FF00FF1801F01F02F000-R1) (Version: 16.0 - GRAPHISOFT) ArchiCAD 17 INT (HKLM\...\001FFF2FFF17FF00FF0701F01F02F000-R1) (Version: 17.0 - GRAPHISOFT) Ashampoo Office 2012 (Trial) (HKLM-x32\...\{8EBB8452-274B-465D-8324-00B0832FBB02}) (Version: 12.0.959 - ashampoo GmbH & Co. KG) Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.14.1.0 - Asmedia Technology) AutoCAD 2012 - Polski (HKLM\...\AutoCAD 2012 - Polski) (Version: 18.2.51.0 - Autodesk) AutoCAD 2012 - Polski (Version: 18.2.51.0 - Autodesk) Hidden AutoCAD 2012 Language Pack - Polski (Version: 18.2.51.0 - Autodesk) Hidden Autodesk DWG TrueView 2014 (HKLM\...\DWG TrueView 2014) (Version: 19.1.18.0 - Autodesk) BitTorrent (HKU\S-1-5-21-3251776730-861767313-4254609882-1000\...\BitTorrent) (Version: 7.9.2.37755 - BitTorrent Inc.) Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.2.0.65 - Atheros Communications) Combined Community Codec Pack 2014-07-13 (HKLM-x32\...\Combined Community Codec Pack_is1) (Version: 2014.07.13.0 - CCCP Project) Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu) Counter-Strike 1.6 v48 (HKLM-x32\...\{3340BC0B-F0E2-429A-8348-59C3481EA06E}_is1) (Version: v48 - CSSetti.pl) CPUID CPU-Z 1.72 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) Crysis 3 (HKLM-x32\...\Crysis 3_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91) Crysis® 2 (HKLM-x32\...\{6033673D-2530-4587-8AD0-EB059FC263F9}) (Version: 1.0.0.0 - Electronic Arts) Crysis®3 (HKLM-x32\...\{4198AE83-A3C6-4C41-85C8-EC63E990696E}) (Version: 1.1.0.0 - Electronic Arts) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd) Diablo II + Diablo II - Lord of Destruction PL 1.12a (HKLM-x32\...\Diablo II + Diablo II - Lord of Destruction PL 1.12a) (Version: - ) DWG TrueView 2014 (Version: 19.1.18.0 - Autodesk) Hidden EasyBCD 2.2 (HKLM-x32\...\EasyBCD) (Version: 2.2 - NeoSmart Technologies) Edificius (x32 Version: 6.00 - ACCA) Hidden Epic Games Launcher (HKLM\...\{325AC861-EDAF-440B-97DD-259906E216D3}) (Version: 1.1.24.0 - Epic Games, Inc.) Far Cry 4 (HKLM-x32\...\Far Cry 4_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91) FastTrack Schedule 10 (HKLM-x32\...\{3DF79CDF-FD93-48AD-A9FC-0FFF31C24D3C}) (Version: - ) GG (HKU\S-1-5-21-3251776730-861767313-4254609882-1000\...\GG) (Version: 11 - GG Network S.A.) GIMP 2.8.6 (HKLM\...\GIMP-2_is1) (Version: 2.8.6 - The GIMP Team) Google Chrome (HKU\S-1-5-21-3251776730-861767313-4254609882-1000\...\Google Chrome) (Version: 40.0.2214.115 - Google Inc.) Intel(R) Network Connections 15.6.25.0 (HKLM\...\PROSetDX) (Version: 15.6.25.0 - Intel) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation) Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle) Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation) Język etykietek ekranowych pakietu Microsoft Office 2013 — polski (HKLM\...\{90150000-00BD-0415-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Kontrolki Elektryczne wersja 5.00 (HKLM-x32\...\{071B8B4F-4088-4239-8CF3-1DC69867E9ED}_is1) (Version: - ISE.pl) L.A.Noire (HKLM-x32\...\L.A.Noire_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91) LG United Mobile Driver (HKLM-x32\...\{2A3A4BD6-6CE0-4E2A-80D2-1D0FF6ACBFBA}) (Version: 3.8.1 - LG Electronics) Malwarebytes Anti-Malware wersja 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft SQL Server 2008 R2 (64-bit) (HKLM\...\Microsoft SQL Server 2008 R2) (Version: - Microsoft Corporation) Microsoft SQL Server 2008 R2 Native Client (HKLM\...\{471AAD2C-9078-4DAC-BD43-FA10FB7C3FCE}) (Version: 10.51.2500.0 - Microsoft Corporation) Microsoft SQL Server 2008 R2 Setup (English) (HKLM\...\{01078B88-2981-4F75-96B0-8B22E2D2DE03}) (Version: 10.51.2500.0 - Microsoft Corporation) Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{B40EE88B-400A-4266-A17B-E3DE64E94431}) (Version: 10.1.2731.0 - Microsoft Corporation) Microsoft SQL Server VSS Writer (HKLM\...\{288D79EE-A2D1-42AF-9597-B0ADCC23A8ED}) (Version: 10.51.2500.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710F4C1C-CC18-4C49-8CBF-51240C89A1A2}) (Version: - ) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052B-02A4-4627-81F2-1818DA5D550D}) (Version: - ) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: - ) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: - ) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Windows Debugging Symbols (HKLM-x32\...\{46EA439E-2D16-49B6-AA80-00DE992FE7CE}) (Version: 7601 - Microsoft) Microsoft Windows Debugging Symbols (HKLM-x32\...\{68ADAEAA-DABD-45C1-9CC2-F995407549CD}) (Version: 7601 - Microsoft) Mozilla Firefox 36.0.1 (x86 pl) (HKLM-x32\...\Mozilla Firefox 36.0.1 (x86 pl)) (Version: 36.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 36.0 - Mozilla) Mozilla Thunderbird 24.6.0 (x86 pl) (HKLM-x32\...\Mozilla Thunderbird 24.6.0 (x86 pl)) (Version: 24.6.0 - Mozilla) Mp3tag v2.63 (HKLM-x32\...\Mp3tag) (Version: v2.63 - Florian Heidenreich) MPC-HC 1.7.5 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.5 - MPC-HC Team) MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) NEC DISPLAY SOLUTIONS: Desktop Monitor Installer (HKLM-x32\...\NEC DISPLAY SOLUTIONS Drivers) (Version: 0.14.04.22 - NEC Display Solutions, Ltd.) NEC NaViSet 1.1.27.00 (HKLM-x32\...\NEC NaViSet) (Version: 1.1.27.00 - NEC Display Solutions) Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.53.2 - Black Tree Gaming) Nokia Connectivity Cable Driver (HKLM-x32\...\{D4BF151C-70A8-4CE2-906F-4173A575BAD9}) (Version: 7.1.182.0 - Nokia) Nokia Suite (HKLM-x32\...\{EDB188F5-D8E8-42EE-89E0-F212DA48CB81}) (Version: - ) Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.48.0 - Nokia) NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.52 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation) NVIDIA Sterownik graficzny 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.52 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation) Panel sterowania NVIDIA 347.52 (Version: 347.52 - NVIDIA Corporation) Hidden PDF Creator (HKLM\...\PDF Creator) (Version: - ) PhoenixSuit (HKLM-x32\...\{6EF04997-3ADF-491E-84E1-09228A74BC30}) (Version: 1.0.8 - AllWinnerTech) ProjectLibre (HKLM-x32\...\{E29A4ED9-3192-4D72-A2E2-9C32B512714D}) (Version: 1.5.19.0 - ProjectLibre) Proton+ Szkice Elektryczne 3.7.3.2006 (HKLM-x32\...\PROTONDRAW_is1) (Version: - EnergoTools) Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.314 - Qualcomm Atheros Communications) Recuva (HKLM\...\Recuva) (Version: 1.49 - Piriform) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.0.6.1 - Rockstar Games) SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.33.0 - SAMSUNG Electronics Co., Ltd.) Service Pack 1 for SQL Server 2008 R2 (KB2528583) (64-bit) (HKLM\...\KB2528583) (Version: 10.51.2500.0 - Microsoft Corporation) Setup - FIFA 14 Ultimate Edition ... (HKLM-x32\...\Setup - FIFA 14 Ultimate Edition ...) (Version: ... - Electronic Arts) SHIELD Streaming (Version: 4.0.1000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 17.12.8 - NVIDIA Corporation) Hidden Skype™ 7.1 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.1.105 - Skype Technologies S.A.) SQL Server 2008 R2 SP1 Common Files (Version: 10.51.2500.0 - Microsoft Corporation) Hidden SQL Server 2008 R2 SP1 Database Engine Services (Version: 10.51.2500.0 - Microsoft Corporation) Hidden SQL Server 2008 R2 SP1 Database Engine Shared (Version: 10.51.2500.0 - Microsoft Corporation) Hidden Sql Server Customer Experience Improvement Program (Version: 10.50.1600.1 - Microsoft Corporation) Hidden Subtitle Edit 3.4.5 (HKLM-x32\...\SubtitleEdit_is1) (Version: 3.4.5.0 - Nikse) swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: - ) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH) TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp) The Elder Scrolls V Skyrim (HKLM-x32\...\{4FEF52F2-3C2C-4B80-9443-3D6A654328D0}_is1) (Version: - Bethesda Softworks) The Sims 4 Update 6 - RELOADED Multi17 (HKLM-x32\...\The Sims 4 Update 6 - RELOADED Multi17) (Version: - ) Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT) Unity Web Player (HKU\S-1-5-21-3251776730-861767313-4254609882-1000\...\UnityWebPlayer) (Version: 4.6.1f1 - Unity Technologies ApS) Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft) ViewSonic EDID Editor (HKLM-x32\...\{4623D44F-6208-11D4-B78C-005004566E4D}) (Version: - ) VS10Runtimex64 (Version: 1.0.0 - sourcefire) Hidden Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: - ) Windows Driver Package - Android (WUDFRd) WPD (04/07/2011 5.2.5326.4762) (HKLM\...\78917410BE8040E4932D812DC4AE7CA774A40096) (Version: 04/07/2011 5.2.5326.4762 - Android) Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00001) (HKLM\...\947CB7152B060DC6E5778A4FA54EAF3B421890E4) (Version: 08/27/2012 7.0.0000.00001 - Google, Inc.) Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation) Zero Assumption Recovery Version 9 (HKLM-x32\...\Zero Assumption Recovery_is1) (Version: - ) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-3251776730-861767313-4254609882-1000_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Program Files\Autodesk\DWG TrueView 2014\en-US\dwgviewrficn.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3251776730-861767313-4254609882-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\DWG TrueView 2014\dwgviewr.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3251776730-861767313-4254609882-1000_Classes\CLSID\{6D7AE628-FF41-4CD3-91DD-34825BB1A251}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Polski\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3251776730-861767313-4254609882-1000_Classes\CLSID\{B77E471C-FBF3-4CB5-880F-D7528AD4B349}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Polski\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3251776730-861767313-4254609882-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-3251776730-861767313-4254609882-1000_Classes\CLSID\{C92FB640-AD4D-498A-9979-A51A2540C977}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Polski\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3251776730-861767313-4254609882-1000_Classes\CLSID\{D70E31AD-2614-49F2-B0FC-ACA781D81F3E}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Polski\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3251776730-861767313-4254609882-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Polski\acadficn.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3251776730-861767313-4254609882-1000_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\Marek\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll (GG Network S.A.) CustomCLSID: HKU\S-1-5-21-3251776730-861767313-4254609882-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc.) ==================== Restore Points ========================= 19-02-2015 19:22:59 Zainstalowany program DirectX 20-02-2015 20:57:29 Zainstalowany program DirectX 23-02-2015 15:36:10 Installed ViewSonic EDID Editor 26-02-2015 20:25:28 Installed Microsoft Office Enterprise 2007 28-02-2015 20:53:38 Zainstalowane LG United Mobile Driver 04-03-2015 21:27:52 ComboFix created restore point 05-03-2015 18:21:11 Usunięto: Microsoft Office File Validation Add-In 06-03-2015 10:25:22 Zainstalowany program DirectX ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:34 - 2015-03-05 17:48 - 00000768 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {058B47F7-E8CD-4192-B98B-F810A1F3B9A5} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2010-11-26] (ASUSTeK Computer Inc.) Task: {08F20D13-4690-4FC1-91C2-835CA17F784A} - System32\Tasks\{DD2ADB99-A079-4391-ADA9-6304C9F26FFE} => pcalua.exe -a C:\LGE400\USB_Driver\LG_SmartPhone\LGWindowsMobile_USBDriver_WHQL_ML_Ver_1.0.exe -d C:\LGE400\USB_Driver\LG_SmartPhone Task: {12766C0B-3B61-4EBF-831A-DB7597FE97AF} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc Task: {17A79EF3-7E4C-4B2D-8C07-E5ED82ADC51C} - System32\Tasks\{02C4D9D8-33BF-49FD-A366-ACA003139FDE} => pcalua.exe -a C:\Users\Marek\Downloads\AutodeskDesignRevSetup(1).exe -d "C:\Program Files (x86)\Mozilla Firefox" Task: {1889F5AF-E556-4D24-A583-3C4A87F35584} - System32\Tasks\{F533F91D-0F2D-4A4B-A7DB-3682548DC9F5} => C:\Program Files (x86)\PDF Architect\PDF Architect.exe [2013-04-08] (pdfforge GmbH) Task: {18B249CF-88D6-4CB1-ACB9-3C69326C220D} - System32\Tasks\{D71B946D-AE97-437E-AB40-FE5482C62F72} => pcalua.exe -a H:\RGSC\setup.exe -d H:\RGSC Task: {1C309FD6-D0B9-4B7E-A15A-CE8A743DA69C} - System32\Tasks\{60FEDB73-3B5A-40DA-AAC7-60A4EDAC31BE} => pcalua.exe -a C:\Users\Marek\Desktop\LiveSuitPack_1.11\LiveSuitPack_1.11\drvinstaller_X86.exe -d C:\Users\Marek\Desktop\LiveSuitPack_1.11\LiveSuitPack_1.11 Task: {1E296070-4AE2-476A-B145-BE85FAC337C3} - System32\Tasks\{C9EAA7F7-692B-4B00-AACD-5456C25D86D3} => pcalua.exe -a "C:\Users\Marek\tadeusza\kopia kartaMSD\Achicad15_PL\ArchiCAD 15\Setup.exe" -d "C:\Users\Marek\tadeusza\kopia kartaMSD\Achicad15_PL\ArchiCAD 15" Task: {1E633E3B-D70E-429D-8AD9-F4E418841244} - System32\Tasks\{C1105FE9-91FE-46AC-A8B8-2DFED467AAD7} => pcalua.exe -a D:\Setup.exe -d D:\ Task: {206AB8BF-B78C-4E89-86FB-0BA6CE7B5183} - System32\Tasks\{6D8FBAE8-EF73-4C15-ACA2-CF8722532925} => pcalua.exe -a C:\Users\Marek\Downloads\Sims3EP10\Sims3EP10\Sims3EP10Setup.exe -d C:\Users\Marek\Downloads\Sims3EP10\Sims3EP10 Task: {216E8A22-E8F1-4975-8D93-6C2A08326FF4} - System32\Tasks\{953D42B0-83D8-4ED3-B06F-1740FAA41902} => pcalua.exe -a C:\Users\Marek\Downloads\AC9-2172.exe -d "C:\Program Files\Graphisoft\ArchiCAD 15" Task: {222B3FA3-5036-4456-8F50-759401E9518D} - System32\Tasks\{8F129C33-F3CF-40C4-82F8-A713F2562375} => pcalua.exe -a "C:\Program Files (x86)\TornPlusTV_version1.11\UninstallBrw.exe" -d "C:\Program Files (x86)\TornPlusTV_version1.11" Task: {2AD44A90-0CC7-4C22-B8BC-1B030897E43C} - System32\Tasks\{6A0EE277-B121-43EA-8925-CA087E2945B4} => pcalua.exe -a "C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\spolszczenie GTA 4 0.97b.exe" -d "C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV" Task: {308CA61F-D81A-4A07-9B16-208C0F926F52} - System32\Tasks\ASUS\ASUS DigiVRM Help => C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe [2011-04-13] (ASUSTeK Computer Inc.) Task: {30B62D51-C4B5-4CFD-9FCB-5F5B092AD01D} - System32\Tasks\{383F8D4C-6311-46D9-A503-FD199FF77807} => pcalua.exe -a C:\Users\Marek\Downloads\nor4full\nor4full\Setup.exe -d C:\Users\Marek\Downloads\nor4full\nor4full Task: {37C428CC-CA5E-4072-9813-E0D0B23AE4B2} - System32\Tasks\{CAE3FC35-FC83-4925-912A-2AD2184496EB} => pcalua.exe -a "C:\Users\Marek\tadeusza\kopia kartaMSD\Achicad15_PL\ArchiCAD 15\ArchiCAD 15-Win64\archive.exe" -d "C:\Users\Marek\tadeusza\kopia kartaMSD\Achicad15_PL\ArchiCAD 15\ArchiCAD 15-Win64" Task: {39533448-ED85-440D-92AA-B6202F09988F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3251776730-861767313-4254609882-1000UA => C:\Users\Marek\AppData\Local\Google\Update\GoogleUpdate.exe [2015-02-04] (Google Inc.) Task: {39D8AD39-648D-46E1-9847-A1E1236B4CE1} - System32\Tasks\{0885A0E0-9032-48DD-81D7-269709935185} => pcalua.exe -a "C:\Program Files (x86)\Samsung\Kies\KiesDriverInstaller.exe" -d "C:\Program Files (x86)\Samsung\Kies" Task: {3C97B31E-8B19-47D9-9667-7FD2AD4943A8} - System32\Tasks\{F678BBD6-D866-4504-8B20-6D7C6119EA68} => pcalua.exe -a "C:\Users\Marek\Documents\Archicad 15 pl\ArchiCAD 15\ArchiCAD 15-Win64\Setup.exe" -d "C:\Users\Marek\Documents\Archicad 15 pl\ArchiCAD 15\ArchiCAD 15-Win64" Task: {49C1EE6F-0F20-4775-A860-2C8026BEBC5B} - \hdtotal1.3-chromeinstaller No Task File <==== ATTENTION Task: {4CF90ABA-19FB-413A-8C5E-5FC47F0BBC5E} - System32\Tasks\{C93A41AD-E21C-4768-B432-632ECAA6846D} => pcalua.exe -a C:\Users\Marek\Downloads\Second_Life_Setup.exe -d "C:\Program Files (x86)\Mozilla Firefox" Task: {50CC78FF-6186-4524-AE7F-1A9DB5AEEC14} - System32\Tasks\{CAB4599B-DBE6-4E9F-B6F0-34442F762910} => pcalua.exe -a "C:\Program Files (x86)\Samsung\Kies\KiesDriverInstaller.exe" -d "C:\Program Files (x86)\Samsung\Kies" Task: {52BE1C64-C26E-4EDD-8A88-192DDF37D836} - System32\Tasks\{6AA1B680-C346-4410-AD1F-11DDE7B0B54F} => C:\Program Files (x86)\Concilio\ProjectFuture\projectfuture.exe Task: {68D8FBC5-8C7E-4CDD-8041-B7729B18CB87} - System32\Tasks\{D3FCEDEB-8DB0-4D98-B3C8-3CB9D39BA019} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{974C4B12-4D02-4879-85E0-61C95CC63E9E}\setup.exe" -c -runfromtemp -l0x0015 -removeonly Task: {6A7EE5EA-8184-4B70-8B05-44CFF1AA9626} - System32\Tasks\{1EE6F774-B12D-40EF-B995-754B3D224B7F} => pcalua.exe -a C:\Users\Marek\Downloads\Flash_Disinfector.exe -d "C:\Program Files (x86)\Mozilla Firefox" Task: {6D5A55AA-CC74-41B7-ACB8-70111D6CDEE4} - System32\Tasks\ASUS\ASUS Mobilink Execute => C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\ASUS Mobilink.exe [2010-11-25] (ASUSTeK Computer Inc.) Task: {6E4DE8AC-987B-4017-9CAC-43C5B59E99D5} - System32\Tasks\{CE222A91-2952-46BC-A751-725498793F43} => pcalua.exe -a C:\instalatory\programy\IVT.BlueSoleil.v6.4.249.0.Incl.Keymaker\IVT.BlueSoleil.v6.4.249.0.Incl.Keymaker\install\setup.exe -d C:\instalatory\programy\IVT.BlueSoleil.v6.4.249.0.Incl.Keymaker\IVT.BlueSoleil.v6.4.249.0.Incl.Keymaker\install Task: {795CA726-7113-41F0-A020-CF4CD47922CD} - System32\Tasks\Launch HTC Sync Loader => C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe Task: {7B4F158A-F0AE-4052-9511-C5C5D180539E} - System32\Tasks\{5189E901-8899-4B9D-B02F-CF518C04C5C3} => pcalua.exe -a "C:\instalatory\programy\stery do tv\DirectX\dx9install.exe" -d "C:\instalatory\programy\stery do tv\DirectX" Task: {8193B431-08A2-4A89-808C-72922A8D47B9} - System32\Tasks\{95D927FD-4B7B-44C3-9ED6-D7ED9E8C169E} => Firefox.exe http://ui.skype.com/ui/0/6.6.0.106/pl/abandoninstall?page=tsMain Task: {829C5D4A-1897-4FA0-BE7E-933D7FE33968} - \hdtotal1.3-enabler No Task File <==== ATTENTION Task: {83EFCDAA-CCBF-4A62-86E9-C79BEF057324} - System32\Tasks\{C3ABCCEE-F216-4136-AE4D-9DB02F53ABAE} => pcalua.exe -a "C:\Program Files (x86)\Common Files\Nero\Nero ProductInstaller 4\SetupX.exe" -c REMOVESERIALNUMBER="2M0K-K085-4W59-U5LW-585P-W083-MM85-1Z8L-257X-66XA-TC3T-K1M8-3204-2A2C-5T2C-2408-4W3C-6482" Task: {84101856-1EB2-4C0F-9D1C-FA165785B408} - System32\Tasks\{1C79DFE8-4301-4BDE-940C-40257101A229} => pcalua.exe -a "C:\Program Files (x86)\Combined Community Codec Pack\Filters\madVR\InstallFilter.exe" -d "C:\Program Files (x86)\Combined Community Codec Pack\Filters\madVR" Task: {871187CE-ADA5-41F2-9E00-4B727DF9C226} - System32\Tasks\{57573279-914B-4833-8628-F5CCD446E132} => pcalua.exe -a "C:\Program Files (x86)\HDDGURU LLF Tool\unins000.exe" -d "C:\Program Files (x86)\HDDGURU LLF Tool" Task: {8CE9278D-FAB4-4F5E-8D8F-DE014B6227D5} - \hdtotal1.3-codedownloader No Task File <==== ATTENTION Task: {9E23C915-11AD-47F4-9EC5-1C1363838720} - System32\Tasks\{55445773-79E0-4EC3-8CC8-AD3A3A0B0BE9} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{7E19B002-4CA3-4C9F-BA92-91D101B97219}\setup.exe" -c -runfromtemp -l0x0009 -removeonly Task: {A5B4CED1-8847-4194-B001-DCD3F75B6C51} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3251776730-861767313-4254609882-1000 Task: {B05B7162-F070-412A-AF43-BA342DC153A0} - System32\Tasks\{6703D721-F800-4CF7-BC1D-22F39B830235} => pcalua.exe -a "Q:\gry i programy\antymalware\sar_15_sfx.exe" -d "Q:\gry i programy\antymalware" Task: {B466D0BA-E4B2-4534-BF37-D1D396F68473} - \hdtotal1.3-updater No Task File <==== ATTENTION Task: {B88D73A5-466E-4370-A5E4-0C64A6CF2029} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe [2011-09-09] () Task: {C23F9608-9B43-4605-994A-401D6E3F9E58} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation) Task: {C373681C-C9C1-4370-BC5F-9A1A6EEF73CE} - System32\Tasks\{A34D8324-5C67-4278-9C18-5CBCCCD9DEDC} => C:\Program Files (x86)\Concilio\ProjectFuture\projectfuture.exe Task: {C4EB0448-65B4-4978-9CAE-77FC1C3A3E84} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3251776730-861767313-4254609882-1000Core => C:\Users\Marek\AppData\Local\Google\Update\GoogleUpdate.exe [2015-02-04] (Google Inc.) Task: {C8FE7D71-7FA1-4746-B05A-1541F1E0DBA6} - System32\Tasks\{EBC13C0C-79CD-4675-8E05-4CCC9FC40977} => pcalua.exe -a "C:\Program Files (x86)\The SIMS 4 Deluxe Edition\__Installer\vp6\vp6install.exe" -d "C:\Program Files (x86)\The SIMS 4 Deluxe Edition\__Installer\vp6" Task: {CA3E3153-A271-4414-91BB-ECBDC4DAFE69} - System32\Tasks\{5852168C-8337-4D69-90AA-8864BF9D5495} => C:\Program Files (x86)\Dziobas Rar Player\DziobasPlayer.exe Task: {CC549727-BE44-4552-A46A-8A4F3659E141} - System32\Tasks\{44E91F80-513D-432F-A858-BE58D06BB4AF} => C:\Program Files (x86)\iPlus\iPlusManager.exe Task: {CD74A4A6-3202-493A-A828-D5F442A7E883} - System32\Tasks\{D5616665-48F2-461B-A18D-D43DECEFDDFF} => pcalua.exe -a D:\Portable.Adobe.Photoshop.CS4-PL\PhotoshopPortable.exe -d D:\Portable.Adobe.Photoshop.CS4-PL Task: {CE8A146F-3D1A-4F84-BED8-BA7BCACAEE54} - System32\Tasks\{381A7BB8-1770-4944-ACD0-8D1B7E534A1C} => C:\Program Files (x86)\KryptoANSI\KryptoANSI.exe Task: {D0A91105-663A-477F-9AE6-698A291D8ABE} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask => C:\Windows\system32\Wat\WatAdminSvc.exe [2011-08-17] () Task: {D39596FD-E820-4EFE-BAE2-005F461306C4} - System32\Tasks\{D8220155-1EC4-4B00-A4EF-64752FFCAFED} => C:\Program Files (x86)\KryptoANSI\KryptoANSI.exe Task: {D667EBB4-E48B-4B66-BB4B-496102BBC695} - System32\Tasks\{6F9F6ACA-2BC2-4169-93D1-7F019752CE16} => pcalua.exe -a "C:\Program Files (x86)\Combined Community Codec Pack\madVR\InstallFilter.exe" -d "C:\Program Files (x86)\Combined Community Codec Pack\madVR" Task: {D8FF207C-78C8-4BBB-BFDD-342028082D87} - System32\Tasks\{78902D5B-13CF-4C59-B0DF-3624594BB45D} => pcalua.exe -a "C:\Program Files (x86)\Audials\Audials 10\AudialsWebInstaller.exe" -d "C:\Program Files (x86)\Audials\Audials 10" Task: {DF528FED-40A0-4A34-89CB-A436FD65DB76} - \PandaUSBVaccine No Task File <==== ATTENTION Task: {E0282C77-C540-4C52-9BA4-03F56A712122} - System32\Tasks\{AAA19B20-6EFF-4158-821D-E2B361A1A2BB} => pcalua.exe -a "C:\Program Files (x86)\Torntv V9.0\Uninstall.exe" -c /fromcontrolpanel=1 Task: {E2D6CF48-73EC-4BA5-BFFA-3033906C2823} - \hdtotal1.3-firefoxinstaller No Task File <==== ATTENTION Task: {E2DF7DB9-8D61-4709-A525-F3D94CE22F29} - System32\Tasks\{B7C0AE89-C6B8-4ADD-BD70-16D27A2821BC} => pcalua.exe -a I:\wyk\Instaluj.exe -d I:\wyk Task: {E3834461-5543-4ADF-8CE8-92888A82D2EB} - System32\Tasks\{234B74DB-ADB2-4535-8CFA-0BCD5742312C} => C:\instalatory\programy\IVT.BlueSoleil.v6.4.249.0.Incl.Keymaker\IVT.BlueSoleil.v6.4.249.0.Incl.Keymaker\install\setup.exe Task: {E5E98EA4-CC59-42AD-9ED4-E4EAA13E9B01} - System32\Tasks\{541C7703-F1EA-4FC1-8BE2-CCE302FC9AD3} => pcalua.exe -a C:\Users\Marek\Downloads\PhotoScapeSetup_V3.0.exe -d "C:\Program Files (x86)\Mozilla Firefox" Task: {E9007F25-D992-476B-BF50-E27FCFDED0E3} - System32\Tasks\{F7AE00DC-16D0-4D81-855B-3DC19C25CC8E} => pcalua.exe -a "C:\Users\Marek\tadeusza\kopia kartaMSD\Achicad15_PL\ArchiCAD 15\ArchiCAD 15-Win64\Setup.exe" -d "C:\Users\Marek\tadeusza\kopia kartaMSD\Achicad15_PL\ArchiCAD 15\ArchiCAD 15-Win64" Task: {FAA9AB2A-9D4D-4D36-8E4D-DA25EE666D07} - System32\Tasks\{E89746D9-5A43-4694-BBC0-5726DB179D8D} => pcalua.exe -a C:\Users\Marek\Fasttrack.Schedule.10.0.1.Build.5000-ENGiNE\Fasttrack.Schedule.10.0.1.Build.5000-ENGiNE\FastTrack_Schedule_10_Install.exe -d C:\Users\Marek\Fasttrack.Schedule.10.0.1.Build.5000-ENGiNE\Fasttrack.Schedule.10.0.1.Build.5000-ENGiNE ==================== Loaded Modules (whitelisted) ============== 2015-02-19 18:38 - 2015-02-05 20:07 - 00117576 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2013-09-05 17:09 - 2011-10-04 21:43 - 00087552 _____ () C:\Windows\System32\custmon64i.dll 2013-05-24 02:10 - 2011-06-13 15:36 - 00922240 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe 2010-12-02 03:15 - 2010-12-02 03:15 - 00915584 ____N () C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe 2011-09-28 16:12 - 2010-10-21 10:52 - 00586880 ____R () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe 2013-12-24 02:20 - 2013-12-24 02:20 - 00086016 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll 2014-01-29 23:02 - 2014-01-29 23:02 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2014-11-23 12:33 - 2014-11-23 12:33 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2012-06-18 16:24 - 2012-06-18 16:24 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_05.dll 2013-05-24 02:10 - 2015-03-12 12:30 - 00025600 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.14\PEbiosinterface32.dll 2013-05-24 02:10 - 2010-06-29 09:58 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.14\ATKEX.dll 2014-02-21 23:24 - 2010-11-25 15:12 - 00086016 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\iPhone Simulator\AsNetlib.dll 2014-02-21 23:24 - 2010-11-25 15:12 - 00661504 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\iPhone Simulator\aaHMLib.dll 2014-02-21 23:24 - 2010-11-25 15:12 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\iPhone Simulator\pngio.dll 2014-02-21 23:24 - 2010-11-25 15:12 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\iPhone Simulator\ImageHelper.dll 2011-09-28 16:13 - 2010-11-25 08:12 - 00061440 ____R () C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\Simulator\AsMultiLang.dll 2011-09-28 16:13 - 2010-11-25 08:12 - 00661504 ____R () C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\Simulator\aaHMLib.dll 2011-09-28 16:13 - 2010-11-25 08:12 - 00703488 ____R () C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\Simulator\CpuFreq.dll 2011-09-28 16:13 - 2010-11-25 08:12 - 00114688 ____R () C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\Simulator\AssistFunc.dll 2014-02-21 23:29 - 2011-03-04 16:33 - 00053248 ____N () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\HookKey32.dll 2014-02-21 23:29 - 2009-05-21 10:14 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\pngio.dll 2011-09-28 16:12 - 2010-08-23 10:17 - 00662016 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMLib.dll 2014-11-15 14:53 - 2014-11-15 14:53 - 00172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\5d29373df3398f72bd90d096a4b94d97\IsdiInterop.ni.dll 2011-08-17 00:09 - 2011-04-30 00:28 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll 2013-11-18 18:48 - 2012-05-10 15:03 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\ProgramData:NT AlternateDataStreams: C:\ProgramData:NT2 AlternateDataStreams: C:\Users\All Users:NT AlternateDataStreams: C:\Users\All Users:NT2 AlternateDataStreams: C:\ProgramData\Application Data:NT AlternateDataStreams: C:\ProgramData\Application Data:NT2 AlternateDataStreams: C:\ProgramData\Dane aplikacji:NT AlternateDataStreams: C:\ProgramData\Dane aplikacji:NT2 AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 AlternateDataStreams: C:\ProgramData\TEMP:05E9FFE5 AlternateDataStreams: C:\ProgramData\TEMP:373E1720 AlternateDataStreams: C:\ProgramData\TEMP:56E2E879 AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 AlternateDataStreams: C:\ProgramData\TEMP:C31F31E6 AlternateDataStreams: C:\ProgramData\TEMP:CB0AACC9 AlternateDataStreams: C:\ProgramData\TEMP:D1B5B4F1 AlternateDataStreams: C:\Users\Marek\Dane aplikacji:NT AlternateDataStreams: C:\Users\Marek\Dane aplikacji:NT2 AlternateDataStreams: C:\Users\Marek\AppData\Roaming:NT AlternateDataStreams: C:\Users\Marek\AppData\Roaming:NT2 AlternateDataStreams: C:\Users\Public\DRM:مهندسة ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BasementDuster => ""="service" ==================== EXE Association (whitelisted) =============== (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-3251776730-861767313-4254609882-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 31.11.202.254 - 37.8.214.2 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== Accounts: ============================= Administrator (S-1-5-21-3251776730-861767313-4254609882-500 - Administrator - Disabled) Gość (S-1-5-21-3251776730-861767313-4254609882-501 - Limited - Disabled) Marek (S-1-5-21-3251776730-861767313-4254609882-1000 - Administrator - Enabled) => C:\Users\Marek ==================== Faulty Device Manager Devices ============= Name: SCSI/RAID Host Controller Description: SCSI/RAID Host Controller Class Guid: Manufacturer: Service: albxpmi3 Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (03/12/2015 00:39:28 PM) (Source: Customer Experience Improvement Program) (EventID: 1006) (User: ) Description: 80004005 Error: (03/12/2015 00:37:32 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: mbamservice.exe, wersja: 3.0.8.1, sygnatura czasowa: 0x546e4a58 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x01ccffd8 Identyfikator procesu powodującego błąd: 0xa78 Godzina uruchomienia aplikacji powodującej błąd: 0xmbamservice.exe0 Ścieżka aplikacji powodującej błąd: mbamservice.exe1 Ścieżka modułu powodującego błąd: mbamservice.exe2 Identyfikator raportu: mbamservice.exe3 Error: (03/12/2015 00:36:45 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: xlm2tf31.exe, wersja: 2.1.19357.0, sygnatura czasowa: 0x52e7ea83 Nazwa modułu powodującego błąd: xlm2tf31.exe, wersja: 2.1.19357.0, sygnatura czasowa: 0x52e7ea83 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0008da4e Identyfikator procesu powodującego błąd: 0x1a0c Godzina uruchomienia aplikacji powodującej błąd: 0xxlm2tf31.exe0 Ścieżka aplikacji powodującej błąd: xlm2tf31.exe1 Ścieżka modułu powodującego błąd: xlm2tf31.exe2 Identyfikator raportu: xlm2tf31.exe3 Error: (03/12/2015 00:30:17 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error: (03/11/2015 10:06:25 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error: (03/11/2015 09:49:22 PM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: NvStreamSvcNvVAD initialization failed [6] Error: (03/11/2015 09:49:22 PM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0] Error: (03/11/2015 09:49:22 PM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: NvStreamSvcNvVAD endpoint registration failed [0] Error: (03/11/2015 09:48:55 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error: (03/11/2015 08:17:29 PM) (Source: .NET Runtime) (EventID: 1022) (User: ) Description: .NET Runtime version 4.0.30319.34209 - Wystąpił błąd podczas inicjacji infrastruktury dołączania interfejsu API profilowania. Ten proces nie zezwoli na dołączenie profilera. HRESULT: 0x80004005. Identyfikator procesu (liczba dziesiętna): 6216. Identyfikator komunikatu: [0x2509]. System errors: ============= Error: (03/12/2015 00:31:10 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: fsned zhhh Error: (03/12/2015 00:30:25 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Adapter odbiornika Net.Tcp zależy od usługi Usługa udostępniania portów Net.Tcp, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (03/12/2015 00:30:25 PM) (Source: Service Control Manager) (EventID: 7003) (User: ) Description: Usługa Adapter odbiornika Net.Msmq zależy od następującej usługi: msmq. Ta usługa może nie być zainstalowana. Error: (03/12/2015 00:30:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Kmm4xNT z powodu następującego błędu: %%1275 Error: (03/12/2015 00:30:22 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Ładowanie sterownika \SystemRoot\SysWow64\Drivers\Kmm4xNT.SYS zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika. Error: (03/12/2015 00:30:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi BasementDuster z powodu następującego błędu: %%2 Error: (03/12/2015 00:30:18 PM) (Source: APPHOSTSVC) (EventID: 9010) (User: ) Description: Usługa pomocnika hosta aplikacji napotkała błąd podczas próby uzyskania dostępu do głównego katalogu historii „C:\inetpub\history”. Katalog nie istnieje lub związane z nim uprawnienia nie zezwalają usłudze historii na dostęp do niego. Funkcja historii konfiguracji jest teraz wyłączona i zostanie włączona ponownie po rozwiązaniu tego problemu. Aby rozwiązać ten problem, upewnij się, że katalog istnieje i że grupa Administratorzy ma do niego dostęp do odczytu i zapisu. Pole danych zawiera numer błędu. Error: (03/11/2015 10:07:38 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: fsned zhhh Error: (03/11/2015 10:07:18 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Adapter odbiornika Net.Tcp zależy od usługi Usługa udostępniania portów Net.Tcp, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (03/11/2015 10:07:18 PM) (Source: Service Control Manager) (EventID: 7003) (User: ) Description: Usługa Adapter odbiornika Net.Msmq zależy od następującej usługi: msmq. Ta usługa może nie być zainstalowana. Microsoft Office Sessions: ========================= CodeIntegrity Errors: =================================== Date: 2015-03-04 21:38:14.684 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-03-04 21:38:14.612 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-03-04 21:38:14.538 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-03-04 21:38:14.465 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-01-20 23:40:54.687 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-01-20 23:40:54.625 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-01-20 23:40:54.547 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-01-20 23:40:54.484 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-12-23 04:48:50.899 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\MoboRobo\MoboroboAssDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-12-23 04:48:50.832 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\MoboRobo\MoboroboAssDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i5-2500K CPU @ 3.30GHz Percentage of memory in use: 41% Total physical RAM: 8089.14 MB Available physical RAM: 4721 MB Total Pagefile: 16176.46 MB Available Pagefile: 12725.49 MB Total Virtual: 8192 MB Available Virtual: 8191.78 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:465.76 GB) (Free:199.14 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive q: (Dane) (Fixed) (Total:931.51 GB) (Free:142.61 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 66DD7BFA) Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 988EF9D0) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ==================== End Of Log ============================