Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015 Ran by user at 2015-03-20 21:26:56 Running from C:\Users\user\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-2832837052-2721902705-4106856573-1000\...\uTorrent) (Version: 3.4.2.38913 - BitTorrent Inc.) 3DMark Demo (HKLM-x32\...\Steam App 231350) (Version: - Futuremark) 8BitMMO (HKLM-x32\...\Steam App 250420) (Version: - Archive Entertainment) Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.235 - Adobe Systems Incorporated) Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated) Adobe Reader XI (11.0.10) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated) Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.) Akamai NetSession Interface (HKU\S-1-5-21-2832837052-2721902705-4106856573-1000\...\Akamai) (Version: - Akamai Technologies, Inc) Aktualizacja produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0415-0000-0000000FF1CE}_ENTERPRISE_{04E205D6-88B1-4652-B162-42DF2C3B1228}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0415-0000-0000000FF1CE}_ENTERPRISE_{442ECBCF-94A7-48CC-8CD9-D31FFFD5FA86}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0415-0000-0000000FF1CE}_ENTERPRISE_{128A36ED-21BE-4547-9FFE-5B85AEC735DD}) (Version: - Microsoft) AMD Catalyst Install Manager (HKLM\...\{338248E5-6466-84C2-B590-1F78DE389246}) (Version: 3.0.864.0 - Advanced Micro Devices, Inc.) ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 2.2.14 - ASUS) Avast Internet Security (HKLM-x32\...\Avast) (Version: 10.2.2214 - AVAST Software) Badanie mające na celu poprawę produktów HP Deskjet 2540 series (HKLM\...\{C563C37E-0690-42D9-8B53-3AAABF494A14}) (Version: 32.2.188.47710 - Hewlett-Packard Co.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.8.11.3116 - BlueStack Systems, Inc.) BlueStacks Notification Center (HKLM-x32\...\{80194F84-21CE-44CF-A46E-38D8CE448856}) (Version: 0.8.11.3116 - BlueStack Systems, Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.00 - Piriform) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4291 - CDBurnerXP) Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine) Codec Pack - All In 1 6.0.1.9 (HKLM-x32\...\Cool's_Codec_pack_4.12) (Version: - ) Combat Arms EU (HKLM-x32\...\Combat Arms EU) (Version: - ) Dizzel (HKLM-x32\...\{A0AD4BC1-E7E9-4E5F-9FED-E303C4F4FBE3}_is1) (Version: 1.0 - OGPlanet, Inc) Dragon Ball: Xenoverse (HKLM-x32\...\Dragon Ball: Xenoverse_is1) (Version: - ) Dropbox (HKU\S-1-5-21-2832837052-2721902705-4106856573-1000\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.) Dust - An Elysian Tail (HKLM-x32\...\Dust - An Elysian Tail_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter) Elsword_PL (HKLM-x32\...\Elsword_PL_is1) (Version: - ) Free Download Manager 3.9.4 (HKLM-x32\...\Free Download Manager_is1) (Version: - FreeDownloadManager.ORG) Futuremark SystemInfo (HKLM-x32\...\{049285D1-9444-42CE-8EB2-9DED22B6FCEC}) (Version: 4.35.507.0 - Futuremark) Gameforge Live 2.0.5 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.5 - Gameforge) GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team) GogoRun (HKLM-x32\...\{8B3B793D-0421-4204-850D-A3A3099B4BC6}) (Version: 1.2.1.59 - Rhaon Entainment) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.89 - Google Inc.) Google Chrome Canary (HKU\S-1-5-21-2832837052-2721902705-4106856573-1000\...\Google Chrome SxS) (Version: 43.0.2338.2 - Google Inc.) Google Drive (HKLM-x32\...\{6C36881B-0E51-4231-9D02-BF2149664D34}) (Version: 1.20.8672.3137 - Google, Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden Happy Wars (HKLM-x32\...\Steam App 246280) (Version: - Toylogic inc.) Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) HEX (HKLM-x32\...\{6EDED3CB-CAC5-4200-A534-CCA1732EAF23}_is1) (Version: - Gameforge) Hide My IP 6 (HKLM-x32\...\HIDEMYIP_is1) (Version: - My Privacy Tools, Inc) Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios) HP Deskjet 2540 series — podstawowe oprogramowanie urządzenia (HKLM\...\{642A855A-F7A6-429C-9818-DF41AE1982BE}) (Version: 32.2.188.47710 - Hewlett-Packard Co.) HP Deskjet 2540 series Pomoc (HKLM-x32\...\{387813C9-5DFE-453E-95AE-142F2C6E929E}) (Version: 30.0.0 - Hewlett Packard) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle) Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation) K-Defense R6 : Anti-Keylogger (HKLM-x32\...\kdefense) (Version: - Kings Information & Network) LF2_B-N (HKLM-x32\...\LF2_B-N) (Version: - ) Little Fighter (HKLM-x32\...\Little Fighter) (Version: - ) LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.319 - LogMeIn, Inc.) LogMeIn Hamachi (x32 Version: 2.2.0.319 - LogMeIn, Inc.) Hidden Magicka: Wizard Wars (HKLM-x32\...\Steam App 202090) (Version: - Paradox North) Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.4.4.3000 - Maxthon International Limited) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft AppLocale (HKLM-x32\...\{394BE3D9-7F57-4638-A8D1-1D88671913B7}) (Version: 1.0.0 - MS) Microsoft LifeCam (HKLM\...\{5CE7E3F5-9803-4F32-AA89-2D8848A80109}) (Version: 3.60.253.0 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{887868A2-D6DE-3255-AA92-AA0B5A59B874}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Windows Application Compatibility Database (HKLM\...\{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb) (Version: - ) Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) MiniTool Partition Wizard Free 9.0 (HKLM-x32\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.) MixPad Multitrack Recording Software (HKLM-x32\...\MixPad) (Version: 3.61 - NCH Software) Mozilla Firefox 32.0.3 (x86 pl) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 pl)) (Version: 32.0.3 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla) My Game Long Name (HKLM\...\UDK-2fbee851-ab2c-4695-b837-25f83c021fbb) (Version: - Epic Games, Inc.) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.7 - Notepad++ Team) NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation) OGPlanet Game Launcher (HKLM-x32\...\OGPlanet Game Launcher) (Version: 3.0.0 - OGPlanet, Inc.) Oracle VM VirtualBox 4.3.22 (HKLM\...\{F053F74A-A631-4CFA-A271-6D0747599BC9}) (Version: 4.3.22 - Oracle Corporation) Origin (HKLM-x32\...\Origin) (Version: 9.5.5.2850 - Electronic Arts, Inc.) osu! (HKLM-x32\...\{ed8fefdc-4949-4837-a9fc-2a710162435f}) (Version: latest - ppy Pty Ltd) Pakiet sterowników systemu Windows - ASUS (ATP) Mouse (03/17/2014 1.0.0.207) (HKLM\...\AA2CC56D4BBEE037DC99871F5F6551133D2A0CC3) (Version: 03/17/2014 1.0.0.207 - ASUS) PowerISO (HKLM-x32\...\PowerISO) (Version: 6.1 - Power Software Ltd) Project64 1.6 (HKLM-x32\...\{9559F7CA-5E34-4237-A2D9-D856464AD727}) (Version: 1.6 - Project64) Quake Live (HKLM-x32\...\Quake Live) (Version: - id Software) Qualcomm Atheros WiFi Driver Installation Program (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 9.2 - Qualcomm Atheros) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6570 - Realtek Semiconductor Corp.) Rogue Legacy (HKLM-x32\...\GOGPACKROGUELEGACY_is1) (Version: 2.2.0.10 - GOG.com) S.K.I.L.L. - Special Force 2 (HKLM-x32\...\Special Force 2 Beta_is1) (Version: - ) Skype™ 7.1 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.1.105 - Skype Technologies S.A.) Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 2.2.2636.0 - Hi-Rez Studios) Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation) Supraball (HKLM-x32\...\Supraball) (Version: - Supra Games Gbr) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Tales Runner (HKLM-x32\...\Steam App 328060) (Version: - Rhaon Entertainment) Tales Runner version 1.0 (HKLM-x32\...\{FB205A57-6847-4BAE-8854-ED09266CC221}_is1) (Version: 1.0 - OGPlanet, Inc) TalesRunner (HKLM-x32\...\{297B6242-1BC2-4414-97EF-778C6BD33244}) (Version: 1.1.1.1 - Rhaon Entainment) TalesRunner_VN_Mini (HKLM-x32\...\{C36006BD-249B-49E8-9548-90DE884E8CB8}) (Version: 1.2.1.59 - Rhaon Entainment) The Mighty Quest For Epic Loot wersja 1.264394 (HKLM-x32\...\The Mighty Quest For Epic Loot_is1) (Version: 1.264394 - ) Ultimate Riders (HKLM-x32\...\Ultimate Riders_is1) (Version: - PLAY) Unity Web Player (HKU\S-1-5-21-2832837052-2721902705-4106856573-1000\...\UnityWebPlayer) (Version: 4.5.1f3 - Unity Technologies ApS) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: 6.02 - NCH Software) WinRAR 5.11 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH) Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org) 테일즈런너-카툰네트워크 (HKLM-x32\...\{FDB8DC94-BB52-47E3-BC6A-1A0B25454A0D}) (Version: 1.1.69.1 - 라온엔터테인먼트) 跑Online (HKLM-x32\...\{72A6F65F-4D6D-42E1-A1F3-B15E94685F9A}) (Version: 1.8.6.1 - Rhaon Entainment) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-2832837052-2721902705-4106856573-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\user\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-2832837052-2721902705-4106856573-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\user\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File CustomCLSID: HKU\S-1-5-21-2832837052-2721902705-4106856573-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\user\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-2832837052-2721902705-4106856573-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2832837052-2721902705-4106856573-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2832837052-2721902705-4106856573-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2832837052-2721902705-4106856573-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.) ==================== Restore Points ========================= 23-01-2015 23:50:46 Installed Project64 1.6 25-01-2015 15:41:01 Tunngle 5.1 Setup 25-01-2015 15:41:59 Instalacja pakietu sterownika urządzenia: TAP-Win32 Provider V9 (Tunngle) Karty sieciowe 27-01-2015 14:09:13 Windows Update 30-01-2015 15:36:56 Windows Update 01-02-2015 22:38:13 Zainstalowany program DirectX 02-02-2015 14:34:22 Zainstalowany program DirectX 03-02-2015 14:12:22 Windows Update 07-02-2015 15:48:03 Windows Update 11-02-2015 23:03:12 Windows Update 12-02-2015 19:24:52 Windows Update 16-02-2015 19:54:30 Windows Update 20-02-2015 11:28:34 Windows Update 24-02-2015 11:57:47 Windows Update 26-02-2015 00:09:02 Windows Update 26-02-2015 12:52:19 Installed Oracle VM VirtualBox 4.3.22 03-03-2015 14:09:19 Windows Update 03-03-2015 15:46:49 Installed Hi-Rez Studios Games 03-03-2015 22:02:10 Zainstalowany program DirectX 06-03-2015 16:09:44 Windows Update 10-03-2015 14:20:58 Windows Update 12-03-2015 07:27:21 Windows Update 12-03-2015 18:13:14 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 12-03-2015 18:13:14 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 12-03-2015 18:19:56 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 17-03-2015 15:06:54 Windows Update 18-03-2015 15:26:12 Zainstalowany program DirectX 20-03-2015 14:06:03 avast! antivirus system restore point 20-03-2015 14:12:34 Instalacja pakietu sterownika urządzenia: Avast Usługa sieciowa 20-03-2015 15:36:32 Windows Update ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {0A0DB4E2-8BA6-4E65-A549-B89F338DEC06} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-11-21] (Piriform Ltd) Task: {0EDE1C06-31C4-4F5F-A272-8339FFDA456F} - System32\Tasks\{112B7D02-E05B-4471-82ED-D92ED2D0B397} => C:\Games\The Binding of Isaac Rebirth\isaac-ng.exe Task: {15A94795-C878-443C-9972-97C2E7A5C3DA} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-19] (Adobe Systems Incorporated) Task: {21D23775-B5AA-42A2-AF3A-BB37F8849436} - System32\Tasks\{3BC7364D-A7B3-42A3-A32C-7E1C930984F0} => pcalua.exe -a "C:\Users\user\Downloads\Talesrunner_SGP_20140715_v1664_1 (1).exe" -d C:\Users\user\Downloads Task: {248A0C64-302E-46DF-AB4D-527795A00569} - System32\Tasks\{58881454-063E-4341-AC7D-0C8ABB657801} => C:\Games\The Binding of Isaac Rebirth\isaac-ng.exe Task: {33327A67-B89A-49FF-A8B9-93FD1CE8684D} - System32\Tasks\HPCustParticipation HP Deskjet 2540 series => C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPCustPartic.exe [2014-03-06] (Hewlett-Packard Co.) Task: {76315613-355C-4F4A-95AB-21795C659A07} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2832837052-2721902705-4106856573-1000Core => C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-18] (Google Inc.) Task: {782A8E4B-82C1-4E98-944A-8C482E9FC5C4} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2832837052-2721902705-4106856573-1000 Task: {78C48C76-5E18-4B26-9B01-B744337F10C6} - System32\Tasks\{F73FE386-757F-4400-9B33-08C7668E82D3} => C:\Games\The Binding of Isaac Rebirth\isaac-ng.exe Task: {7D2426CA-6AA4-404C-BE8A-431534A34AAF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-16] (Google Inc.) Task: {95DBB6C3-9E43-43D1-A177-2ABE8B0E7793} - System32\Tasks\avastBCLRestartS-1-5-21-2832837052-2721902705-4106856573-1000 => Chrome.exe Task: {969568AE-9B5A-4504-985A-E9C8D16D24F7} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-03-20] (Avast Software s.r.o.) Task: {ABA25537-19FF-45E4-AF5B-A967FC9B64A2} - System32\Tasks\Maxthon Update => C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe [2015-03-12] (Maxthon International ltd.) Task: {ACB91E86-0D76-4E87-83D4-64E2CFC54D03} - System32\Tasks\{1E678CB1-A557-421A-966D-10E69BCEC054} => C:\Games\The Binding of Isaac Rebirth\isaac-ng.exe Task: {AFF6318B-7A8A-4983-8CFA-7EEAAB580D32} - System32\Tasks\{75D42FB4-34E7-40E5-A032-1C3D0C9C7FA8} => pcalua.exe -a C:\Users\user\Downloads\Talesrunner_SGP_20140715_v1664_1.exe -d C:\Users\user\Downloads Task: {B56115EB-C82D-462B-9A4F-99355B080AF4} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2014-03-31] (AsusTek) Task: {CACB5724-401C-4E72-B0F7-E72E7228ED14} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2832837052-2721902705-4106856573-1000UA => C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-18] (Google Inc.) Task: {F0AC117E-3037-4DB9-B4EB-F3F9D3A5947D} - System32\Tasks\{EB32D7A0-38EE-44D3-9729-D370A7812ACB} => C:\Games\The Binding of Isaac Rebirth\isaac-ng.exe Task: {FECFA357-6942-48A8-9DC9-9A98F3668471} - System32\Tasks\{3ED876F5-A430-4EFC-B1AB-BCA48B6A9296} => pcalua.exe -a "C:\Users\user\Downloads\Talesrunner_SGP_20140715_v1664_1 (4).exe" -d C:\Users\user\Downloads Task: {FEE665D5-E425-408D-9377-0CCD7F32E366} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-16] (Google Inc.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2832837052-2721902705-4106856573-1000Core.job => C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2832837052-2721902705-4106856573-1000UA.job => C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============== 2009-07-14 00:57 - 2009-07-14 02:40 - 00069120 _____ () C:\Windows\system32\BWContextHandler.dll 2012-06-17 21:20 - 2012-06-17 21:20 - 00073728 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll 2014-11-22 01:03 - 2014-11-22 01:03 - 00047104 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll 2012-06-17 21:20 - 2012-06-17 21:20 - 00103424 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll 2012-06-17 20:59 - 2012-06-17 20:59 - 00369152 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll 2015-03-20 14:11 - 2015-03-20 14:11 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2015-03-20 14:11 - 2015-03-20 14:11 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2015-03-20 14:02 - 2015-03-20 14:02 - 02922496 _____ () C:\Program Files\AVAST Software\Avast\defs\15032000\algo.dll 2015-03-20 20:20 - 2015-03-20 20:20 - 02922496 _____ () C:\Program Files\AVAST Software\Avast\defs\15032001\algo.dll 2014-06-28 22:06 - 2014-04-29 11:43 - 03553280 _____ () C:\Program Files (x86)\Free Download Manager\fdmbtsupp.dll 2015-03-20 14:11 - 2015-03-20 14:11 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2015-03-20 14:11 - 2015-03-20 14:11 - 01359872 _____ () C:\Program Files\AVAST Software\Avast\libglesv2.dll 2015-03-20 14:11 - 2015-03-20 14:11 - 00212992 _____ () C:\Program Files\AVAST Software\Avast\libegl.dll 2015-03-20 14:11 - 2015-03-20 14:11 - 00985600 _____ () C:\Program Files\AVAST Software\Avast\ffmpegsumo.dll 2015-03-11 19:25 - 2015-03-07 07:12 - 01174856 _____ () C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.89\libglesv2.dll 2015-03-11 19:25 - 2015-03-07 07:12 - 00080200 _____ () C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.89\libegl.dll 2015-03-11 19:25 - 2015-03-07 07:13 - 09279304 _____ () C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.89\pdf.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HideMyIpSRV => ""="service" ==================== EXE Association (whitelisted) =============== (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2832837052-2721902705-4106856573-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\user\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 8.8.4.4 - 213.241.79.37 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\Services: ehRecvr => 3 MSCONFIG\Services: ehSched => 3 MSCONFIG\Services: Fax => 3 MSCONFIG\Services: FontCache3.0.0.0 => 3 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: Hamachi2Svc => 2 MSCONFIG\Services: HideMyIpSRV => 3 MSCONFIG\Services: HiPatchService => 2 MSCONFIG\Services: HomeGroupListener => 3 MSCONFIG\Services: idsvc => 3 MSCONFIG\Services: IEEtwCollectorService => 3 MSCONFIG\Services: LanmanServer => 2 MSCONFIG\Services: LMIGuardianSvc => 2 MSCONFIG\Services: Microsoft Office Groove Audit Service => 3 MSCONFIG\Services: MozillaMaintenance => 3 MSCONFIG\Services: odserv => 3 MSCONFIG\Services: ose => 3 MSCONFIG\Services: SensrSvc => 3 MSCONFIG\Services: Spooler => 2 MSCONFIG\Services: Steam Client Service => 3 MSCONFIG\Services: stisvc => 2 MSCONFIG\Services: TapiSrv => 3 MSCONFIG\Services: TermService => 3 MSCONFIG\Services: Themes => 2 MSCONFIG\Services: upnphost => 3 MSCONFIG\Services: vds => 3 MSCONFIG\Services: WPCSvc => 3 MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: Adobe Speed Launcher => 1418472642 MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: Google Update => "C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe" /c MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" MSCONFIG\startupreg: LifeCam => "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe" MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start MSCONFIG\startupreg: PWRISOVM.EXE => C:\Program Files\PowerISO\PWRISOVM.EXE -startup MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: uTorrent => "C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED ==================== Accounts: ============================= Administrator (S-1-5-21-2832837052-2721902705-4106856573-500 - Administrator - Disabled) Gość (S-1-5-21-2832837052-2721902705-4106856573-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2832837052-2721902705-4106856573-1003 - Limited - Enabled) user (S-1-5-21-2832837052-2721902705-4106856573-1000 - Administrator - Enabled) => C:\Users\user ==================== Faulty Device Manager Devices ============= Name: Realtek PCIe GBE Family Controller Description: Realtek PCIe GBE Family Controller Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Realtek Service: RTL8167 Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: ASUS Touchpad Description: ASUS Touchpad Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: ASUS Service: i8042prt Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Name: Standardowa klawiatura PS/2 Description: Standardowa klawiatura PS/2 Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Klawiatury standardowe) Service: i8042prt Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. Name: Urządzenie Bluetooth (sieć osobista) Description: Urządzenie Bluetooth (sieć osobista) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: BthPan Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Karta wirtualnego miniportu WiFi firmy Microsoft Description: Karta wirtualnego miniportu WiFi firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: vwifimp Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (03/20/2015 03:00:34 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: ) Description: Nie można uruchomić usługi. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. w BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) w System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (03/20/2015 02:22:06 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: ) Description: Nie można uruchomić usługi. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. w BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) w System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (03/20/2015 01:59:58 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: ) Description: Nie można uruchomić usługi. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. w BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) w System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (03/19/2015 06:52:56 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: ) Description: Nie można uruchomić usługi. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. w BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) w System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (03/19/2015 04:19:52 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: 80004005 Error: (03/19/2015 03:52:44 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: ) Description: Nie można uruchomić usługi. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. w BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) w System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (03/18/2015 05:13:07 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: 80004005 Error: (03/18/2015 02:50:49 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: ) Description: Nie można uruchomić usługi. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. w BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) w System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (03/17/2015 10:11:33 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: 80004005 Error: (03/17/2015 06:43:53 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: ) Description: Nie można uruchomić usługi. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. w BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) w System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) System errors: ============= Error: (03/20/2015 09:28:00 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (03/20/2015 09:28:00 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (03/20/2015 09:28:00 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (03/20/2015 09:27:50 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (03/20/2015 09:27:50 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (03/20/2015 09:27:50 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (03/20/2015 09:27:06 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (03/20/2015 09:27:06 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (03/20/2015 09:27:06 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (03/20/2015 09:26:58 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1058 Microsoft Office Sessions: ========================= ==================== Memory info =========================== Processor: AMD A8-4500M APU with Radeon(tm) HD Graphics Percentage of memory in use: 75% Total physical RAM: 3540.08 MB Available physical RAM: 871.45 MB Total Pagefile: 8848.27 MB Available Pagefile: 5510.18 MB Total Virtual: 8192 MB Available Virtual: 8191.79 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:295.32 GB) (Free:39.76 GB) NTFS Drive d: () (Fixed) (Total:170.34 GB) (Free:84.45 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 82A8A0A0) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=295.3 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=170.3 GB) - (Type=07 NTFS) ==================== End Of Log ============================