Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-04-2015 Ran by Adrian at 2015-04-12 13:17:03 Running from C:\Users\Adrian\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 2007 Microsoft Office system (HKLM-x32\...\PROHYBRIDR) (Version: 12.0.6612.1000 - Microsoft Corporation) ACE Mega CoDecS Pack (HKLM-x32\...\{FFFF6D5C-E2F1-4B40-BC89-8923312E89EB}}_is1) (Version: 6.03.0911 - ACE DESIGN Software) Activation Assistant for the 2007 Microsoft Office suites (HKLM-x32\...\Activation Assistant for the 2007 Microsoft Office suites) (Version: - Microsoft Corporation) Activation Assistant for the 2007 Microsoft Office suites (x32 Version: 1.0 - Microsoft Corporation) Hidden Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated) Adobe Reader 9.5.5 - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-A95000000001}) (Version: 9.5.5 - Adobe Systems Incorporated) Advertising Center (x32 Version: 0.0.0.2 - Nero AG) Hidden Akamai NetSession Interface (HKU\S-1-5-21-511461997-2466024275-2353699939-1000\...\Akamai) (Version: - Akamai Technologies, Inc) Aktualizacja produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0415-0000-0000000FF1CE}_PROHYBRIDR_{04E205D6-88B1-4652-B162-42DF2C3B1228}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0415-0000-0000000FF1CE}_PROHYBRIDR_{442ECBCF-94A7-48CC-8CD9-D31FFFD5FA86}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0415-0000-0000000FF1CE}_PROHYBRIDR_{128A36ED-21BE-4547-9FFE-5B85AEC735DD}) (Version: - Microsoft) Aktualizacje NVIDIA 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation) ALLPlayer V4.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLCinema Ltd.) Archiwizator WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - ) avast! Free Antivirus (HKLM-x32\...\avast) (Version: 9.0.2018 - Avast Software) Bloodline Champions (HKLM-x32\...\{81E58F0A-E24E-4132-98C2-6BA39899692E}_is1) (Version: 2.4.1.0 - Stunlock Studios) CCleaner (HKLM\...\CCleaner) (Version: 4.12 - Piriform) ChomikBox (HKLM-x32\...\{4F7B7598-88EA-4442-A54E-65EADCF06D97}) (Version: 2.0.4.3 - Chomikuj.pl) CM 03-04 (HKLM-x32\...\InstallShield_{F71C0208-1D32-439D-9257-F90F0BAACE6A}) (Version: 4.1.0 - Eidos) CM 03-04 (x32 Version: 4.1.0 - Eidos) Hidden Counter-Strike 1.6 (HKLM-x32\...\{9ABFB92D-93DA-49EE-8ABF-F8195DE45CA9}) (Version: 1.6 - ) CWK (Czasowy Wyłącznik Komputera) (HKLM-x32\...\CWK) (Version: 2.52.3.43 - Damian Pasternak) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Delta Chrome Toolbar (HKLM-x32\...\Delta Chrome Toolbar) (Version: - Visual Tools) <==== ATTENTION Facebook Messenger 2.1.4814.0 (HKLM-x32\...\{7204BDEE-1A48-4D95-A964-44A9250B439E}) (Version: 2.1.4814.0 - Facebook) FIFA 11 (HKLM-x32\...\{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}) (Version: 1.0.0.0 - Electronic Arts) FIFA 12 (HKLM-x32\...\{EA8ADAA9-6671-4839-A51E-0C6792B78F3E}) (Version: 1.6.0.0 - Electronic Arts) FoxTab FLV Player (HKU\S-1-5-21-511461997-2466024275-2353699939-1000\...\FoxTab FLV Player) (Version: - ) <==== ATTENTION FoxTab PDF Reader (HKU\S-1-5-21-511461997-2466024275-2353699939-1000\...\FoxTab PDF Reader) (Version: - ) <==== ATTENTION Full Tilt Poker.Eu (HKLM-x32\...\{127BEFB3-24B2-4B44-8E99-AD22C2A5A8ED}) (Version: 5.30.1.WIN.FullTilt.EU - ) Galeria fotografii (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden GameShadow (HKLM-x32\...\{F7C1C17E-70E3-475F-BD52-EA554391F15D}) (Version: 2.01.0000 - Nazwa firmy) GG (HKU\S-1-5-21-511461997-2466024275-2353699939-1000\...\GG) (Version: 11 - GG Network S.A.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 32.0.1700.107 - Google Inc.) Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden Heroes of Might & Magic V: Kuźnia Przeznaczenia (HKLM-x32\...\{ACC75323-DB4A-4F7F-9AF2-1D1DEFF2D0B4}) (Version: - ) Heroes of Might and Magic III - Złota Edycja (HKLM-x32\...\{8B743AA0-53B2-11D2-808A-00600895FB43}) (Version: 1.0 - ) Heroes of Might and Magic V - Dzikie Hordy (HKLM-x32\...\{ACC75323-DB4A-4f7f-9AF3-1D1DEFF2D1B5}_is1) (Version: - Ubisoft) Heroes of Might and Magic V - Tribes of the East (HKLM-x32\...\{ACC75323-DB4A-4F7F-9AF3-1D1DEFF2D1B5}) (Version: - ) HLTooLz (HKLM-x32\...\ST6UNST #1) (Version: - ) ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden IncrediMail MediaBar 2 Toolbar (HKLM-x32\...\IncrediMail_MediaBar_2 Toolbar) (Version: 6.1.0.7 - IncrediMail MediaBar 2) <==== ATTENTION Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.5.0.1037 - Intel Corporation) ipla 2.2.1 (HKLM-x32\...\ipla) (Version: 2.2.1 - Redefine Sp z o.o.) Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle) Junk Mail filter update (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden K-Lite Codec Pack 5.1.0 (64-bit) (HKLM\...\KLiteCodecPack64_is1) (Version: 5.1.0 - ) LG PC Suite II (HKLM-x32\...\{14DCD95A-EBA3-4BF0-B7EF-533852E99BE6}) (Version: 2.00.0000 - LG PC Suite) LG PC Suite II (x32 Version: 2.00.0000 - LG PC Suite) Hidden LG USB Modem driver (HKLM-x32\...\{C3ABE126-2BB2-4246-BFE1-6797679B3579}) (Version: 4.9.2 - LG Electronics) livebox tp (HKLM-x32\...\{FC7DDAAE-7F2B-4270-9BFD-5A130B667E9E}) (Version: 1.00.000 - SAGEM) Menu Templates - Starter Kit (x32 Version: 9.4.6.0 - Nero AG) Hidden Metin2 (HKLM-x32\...\Metin2_is1) (Version: - Gameforge 4D GmbH) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Live Add-in 1.4 (HKLM-x32\...\{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}) (Version: 2.0.3008.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation) Might & Magic Heroes VI (HKLM-x32\...\{745D37C2-26F4-4B65-BA13-F9840EBFA75B}) (Version: 1.8 - Ubisoft) Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden Mozilla Firefox 10.0.2 (x86 pl) (HKLM-x32\...\Mozilla Firefox 10.0.2 (x86 pl)) (Version: 10.0.2 - Mozilla) Mp3 Knife 3.6 (HKLM-x32\...\Mp3 Knife_is1) (Version: - ) MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Nero 9 Essentials (HKLM-x32\...\{0c228a7d-6060-4e8e-bc25-fb40a7cd4439}) (Version: - Nero AG) Nokia Connectivity Cable Driver (HKLM-x32\...\{1B9B5B3B-28E7-4E59-A80D-D670AA984514}) (Version: 7.1.29.0 - Nokia) Nokia PC Suite (HKLM-x32\...\Nokia PC Suite) (Version: 7.1.51.0 - Nokia) Nokia PC Suite (x32 Version: 7.1.51.0 - Nokia) Hidden NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 1.10 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{E10DB5DA-E576-40EA-A7FC-1CB2A7B283A6}) (Version: 9.09.1112 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 311.06 - NVIDIA Corporation) NVIDIA Sterownik graficzny 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.06 - NVIDIA Corporation) OpenOffice 4.1.0 (HKLM-x32\...\{7EB1185B-6319-42D7-B103-707570BFB0D8}) (Version: 4.10.9764 - Apache Software Foundation) Pakiet sterowników systemu Windows - Nokia Modem (06/09/2010 4.5) (HKLM\...\34EA302E7F4CBD17A19E33BBCB72363234956D7E) (Version: 06/09/2010 4.5 - Nokia) Pakiet sterowników systemu Windows - Nokia Modem (06/09/2010 7.01.0.7) (HKLM\...\EEEE705096F837B7907659F100C9FE6DA001970F) (Version: 06/09/2010 7.01.0.7 - Nokia) Pakiet sterowników systemu Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0) (HKLM\...\FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D) (Version: 08/22/2008 7.0.0.0 - Nokia) Panel sterowania NVIDIA 311.06 (Version: 311.06 - NVIDIA Corporation) Hidden PC Connectivity Solution (HKLM-x32\...\{089DD780-DB3F-4CDB-A0C2-111360247298}) (Version: 10.24.0.0 - Nokia) PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation) Poczta usługi Windows Live (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden Podstawowe programy Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation) Podstawowe programy Windows Live (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden Poker at bet365 (HKLM-x32\...\bet365poker) (Version: - ) PokerStars.eu (HKLM-x32\...\PokerStars.eu) (Version: - PokerStars.eu) Real Alternative 2.0.2 (HKLM-x32\...\RealAlt_is1) (Version: 2.0.2 - ) Realtek AC'97 Audio (HKLM-x32\...\{FB08F381-6533-4108-B7DD-039E11FBC27E}) (Version: 5.36 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6000 - Realtek Semiconductor Corp.) SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.3.650.0 - SAMSUNG Electronics Co., Ltd.) Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation) Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.) SMPlayer 0.6.9.3566 (HKLM-x32\...\SMPlayer) (Version: 0.6.9.3566 - Ricardo Villalba) SopCast 3.2.9 (HKLM-x32\...\SopCast) (Version: 3.2.9 - www.sopcast.com) Spelling Dictionaries Support For Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-5464-3428-900000000004}) (Version: 9.0.0 - Adobe Systems Incorporated) Spotify (HKU\S-1-5-21-511461997-2466024275-2353699939-1000\...\Spotify) (Version: 1.0.3.101.gbfa97dfe - Spotify AB) Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: - TeamSpeak Systems GmbH) The KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: - ) Tibia (HKLM-x32\...\Tibia_is1) (Version: 9.70 - CipSoft GmbH) Tibia MULTI-ip changer (HKLM-x32\...\TMIPC) (Version: - Asprate) Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT) Unity Web Player (HKU\S-1-5-21-511461997-2466024275-2353699939-1000\...\UnityWebPlayer) (Version: 5.0.0f4 - Unity Technologies ApS) Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) VCRedistSetup (x32 Version: 1.0.0 - Nero AG) Hidden Ventrilo (HKLM-x32\...\{789289CA-F73A-4A16-A331-54D498CE069F}) (Version: 2.1.4 - Flagship Industries, Inc.) Winamp (HKLM-x32\...\Winamp) (Version: 5.572 - Nullsoft, Inc) Winamp Detector Plug-in (HKU\S-1-5-21-511461997-2466024275-2353699939-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc) Windows Live Sync (HKLM-x32\...\{C3335EFB-008F-44DB-A87A-9EC8EE53D045}) (Version: 14.0.8050.1202 - Microsoft Corporation) Xfire (remove only) (HKLM-x32\...\Xfire) (Version: - ) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-511461997-2466024275-2353699939-1000_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\Adrian\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll (GG Network S.A.) ==================== Restore Points ========================= 03-04-2015 14:44:51 Windows Update 06-04-2015 00:41:04 Windows Update 10-04-2015 15:52:44 Windows Update ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {06B2A65B-62B8-4508-9CDB-235184C3160E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-05-10] (Google Inc.) Task: {11E50F82-5367-450B-8E1E-FE0A5022C410} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-03-18] (Piriform Ltd) Task: {18153EB2-E4B0-4BAB-A30B-3040CD1645FD} - System32\Tasks\{44CD5408-8F50-4FE2-9BF7-21209B778B1C} => C:\Program Files (x86)\Sports Interactive\Football Manager 2010\fm.exe [2011-01-15] (Sports Interactive) Task: {26367150-E7FC-4D8F-99C7-7F013C7292CF} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation) Task: {3B92768D-4A4A-4952-B655-F27622AAA335} - System32\Tasks\{058ECDB7-E458-4740-ADF2-08F1212AFF3E} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-12-11] (Skype Technologies S.A.) Task: {463A01F1-EE79-4407-83FD-72922E714973} - System32\Tasks\{9A8D1288-9BA7-49BE-9154-8D17E40AF955} => C:\Program Files (x86)\Metin2\metin2.exe [2013-03-24] () Task: {5030BD66-255A-4FE5-8EE8-B4C3F49D20AE} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-25] (Microsoft Corporation) Task: {528447B5-ADB9-442A-AAED-93D65E8E3A18} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-511461997-2466024275-2353699939-1000Core => C:\Users\Adrian\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.) Task: {52E15BC4-A270-4A0F-A388-EA3EAD5117FB} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-511461997-2466024275-2353699939-1000UA => C:\Users\Adrian\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.) Task: {5FA92F30-E5B5-44C2-BED1-4238F52228CC} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-05-25] (AVAST Software) Task: {8C57DE09-CE55-4ED4-B3A3-E61006E29E3D} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation) Task: {9980A57F-63A0-4A00-AA97-4C8B74F6977D} - System32\Tasks\{111B60CC-5B99-4BDC-AC5F-426233FB526E} => pcalua.exe -a D:\Metin2_20080908.exe -d D:\ Task: {A96ECFE5-1B34-42C8-9697-48EE3CA2013D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-05-10] (Google Inc.) Task: {AA716098-337D-4AA9-AF35-3D13169C979A} - \WPD\SqmUpload_S-1-5-21-511461997-2466024275-2353699939-500 No Task File <==== ATTENTION Task: {BC48404F-290C-4351-9B72-6A2AB32A5C56} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation) Task: {C640B76F-6410-4B19-A545-8EC90FC9AA51} - System32\Tasks\{D3A2E4D1-6BF6-4E77-BC4B-007001C90113} => pcalua.exe -a C:\Users\Adrian\Downloads\WDM_A406.exe -d C:\Users\Adrian\Downloads Task: {EF10318E-71A1-4CD4-AFB0-0BBA00C92289} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-05] (Adobe Systems Incorporated) Task: {EFC92F18-8431-41ED-86A8-C524E71BE8DE} - System32\Tasks\EPUpdater => C:\Users\Adrian\AppData\Roaming\BabSolution\Shared\BabMaint.exe [2013-06-06] () <==== ATTENTION Task: {F3A32570-EBC7-4D68-8AC0-9CF5766FF3C6} - System32\Tasks\BitGuard => Sc.exe start BitGuard <==== ATTENTION Task: {F88604E8-D1CA-42A7-AA15-855CC8B01A3F} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-511461997-2466024275-2353699939-1000Core.job => C:\Users\Adrian\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-511461997-2466024275-2353699939-1000UA.job => C:\Users\Adrian\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============== 2012-11-18 12:42 - 2013-01-18 17:00 - 00087328 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-01-16 02:07 - 2015-04-12 02:49 - 02344216 _____ () C:\Program Files (x86)\PokerStars.EU\gameutil1.exe 2015-01-16 02:07 - 2015-04-12 02:49 - 00261912 _____ () C:\Program Files (x86)\PokerStars.EU\br\PokerStarsBr.exe 2015-04-06 19:30 - 2015-04-12 12:30 - 00397040 _____ () C:\Program Files (x86)\Techgile\bin\utilTechgile.exe 2015-04-12 02:49 - 2015-04-11 17:00 - 00353520 _____ () C:\Program Files (x86)\Techgile\bin\Techgile.PurBrowse64.exe 2015-04-12 02:49 - 2015-04-12 01:59 - 00123120 _____ () C:\Program Files (x86)\Techgile\bin\Techgile.BrowserAdapter64.exe 2015-04-12 02:49 - 2015-04-12 01:59 - 00105712 _____ () C:\Program Files (x86)\Techgile\bin\Techgile.BrowserAdapter.exe 2015-04-12 02:55 - 2015-04-12 12:35 - 00397040 _____ () C:\Program Files (x86)\Techgile\updateTechgile.exe 2015-04-12 02:46 - 2015-04-12 02:46 - 02925568 _____ () C:\Program Files\AVAST Software\Avast\defs\15041101\algo.dll 2015-04-12 12:26 - 2015-04-12 12:26 - 02925568 _____ () C:\Program Files\AVAST Software\Avast\defs\15041200\algo.dll 2014-05-25 11:14 - 2014-05-25 11:14 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2010-01-06 12:03 - 2009-10-02 14:18 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll 2015-04-12 02:49 - 2015-04-12 01:59 - 00197360 _____ () C:\Program Files (x86)\Techgile\bin\7d71b13cfa474ddba69a.dll 2014-02-04 01:36 - 2014-02-02 01:41 - 00715592 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\libglesv2.dll 2014-02-04 01:36 - 2014-02-02 01:41 - 00100168 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\libegl.dll 2014-02-04 01:36 - 2014-02-02 01:42 - 04055368 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\pdf.dll 2014-02-04 01:36 - 2014-02-02 01:42 - 00399688 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll 2014-02-04 01:36 - 2014-02-02 01:41 - 01634632 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\ffmpegsumo.dll 2014-02-19 09:40 - 2014-02-19 09:40 - 13632904 _____ () C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\PepperFlash\12.0.0.70\pepflashplayer.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\ProgramData\Temp:6BE50C2B AlternateDataStreams: C:\ProgramData\Temp:CE2C623F ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) =============== (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-511461997-2466024275-2353699939-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 62.233.233.233 - 87.204.204.204 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupfolder: C:^Users^Adrian^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^debug.log => C:\Windows\pss\debug.log.Startup MSCONFIG\startupreg: AlcoholAutomount => "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount MSCONFIG\startupreg: ApnUpdater => "C:\Program Files (x86)\Ask.com\Updater\Updater.exe" MSCONFIG\startupreg: ChomikBox => C:\Program Files (x86)\ChomikBox\chomikbox.exe MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: msnmsgr => ~"C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background MSCONFIG\startupreg: Spotify => "C:\Users\Adrian\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Adrian\AppData\Roaming\Spotify\SpotifyWebHelper.exe" MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: SweetIM => C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe ==================== Accounts: ============================= Administrator (S-1-5-21-511461997-2466024275-2353699939-500 - Administrator - Disabled) Adrian (S-1-5-21-511461997-2466024275-2353699939-1000 - Administrator - Enabled) => C:\Users\Adrian Gość (S-1-5-21-511461997-2466024275-2353699939-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-511461997-2466024275-2353699939-1002 - Limited - Enabled) Ilona (S-1-5-21-511461997-2466024275-2353699939-1003 - Limited - Enabled) => C:\Users\Ilona TomeczeK (S-1-5-21-511461997-2466024275-2353699939-1004 - Limited - Enabled) => C:\Users\TomeczeK UpdatusUser (S-1-5-21-511461997-2466024275-2353699939-1005 - Limited - Enabled) => C:\Users\UpdatusUser ==================== Faulty Device Manager Devices ============= Name: Karta tunelowania Teredo firmy Microsoft Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (04/05/2015 04:49:59 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program ALLUpdate.exe w wersji 1.1.0.0 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: d20 Godzina rozpoczęcia: 01d06faf95ae8d1a Godzina zakończenia: 16 Ścieżka aplikacji: C:\Program Files\Gry\PROGRAMY\Allplayer\ALLPlayer\ALLUpdate.exe Identyfikator raportu: f2861c92-dba2-11e4-8370-6cf04974a08f Error: (03/23/2015 01:34:37 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program ALLUpdate.exe w wersji 1.1.0.0 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: c94 Godzina rozpoczęcia: 01d0655d37274cd5 Godzina zakończenia: 15 Ścieżka aplikacji: C:\Program Files\Gry\PROGRAMY\Allplayer\ALLPlayer\ALLUpdate.exe Identyfikator raportu: 8f4cc562-d150-11e4-a18a-6cf04974a08f Error: (02/28/2015 02:12:36 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1". Nie można odnaleźć zestawu zależnego Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (02/26/2015 00:38:07 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program ALLUpdate.exe w wersji 1.1.0.0 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 6f8 Godzina rozpoczęcia: 01d051b0156eee9c Godzina zakończenia: 3 Ścieżka aplikacji: C:\Program Files\Gry\PROGRAMY\Allplayer\ALLPlayer\ALLUpdate.exe Identyfikator raportu: 7aedcaea-bda3-11e4-997b-6cf04974a08f Error: (02/22/2015 11:54:24 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1". Nie można odnaleźć zestawu zależnego Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (02/21/2015 10:42:57 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program ALLUpdate.exe w wersji 1.1.0.0 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: e08 Godzina rozpoczęcia: 01d04db24e7f244b Godzina zakończenia: 0 Ścieżka aplikacji: C:\Program Files\Gry\PROGRAMY\Allplayer\ALLPlayer\ALLUpdate.exe Identyfikator raportu: 989ee278-b9a5-11e4-a641-6cf04974a08f Error: (02/18/2015 10:19:22 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program ALLUpdate.exe w wersji 1.1.0.0 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: cec Godzina rozpoczęcia: 01d04b53750d53f0 Godzina zakończenia: 0 Ścieżka aplikacji: C:\Program Files\Gry\PROGRAMY\Allplayer\ALLPlayer\ALLUpdate.exe Identyfikator raportu: cbd9f316-b746-11e4-adaf-6cf04974a08f Error: (02/17/2015 00:30:33 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1". Nie można odnaleźć zestawu zależnego Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (02/17/2015 00:24:04 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1". Nie można odnaleźć zestawu zależnego Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (02/16/2015 00:13:22 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: rads_user_kernel.exe, wersja: 0.0.0.0, sygnatura czasowa: 0x4e65c1ac Nazwa modułu powodującego błąd: rads_user_kernel.exe, wersja: 0.0.0.0, sygnatura czasowa: 0x4e65c1ac Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000b8554 Identyfikator procesu powodującego błąd: 0x1240 Godzina uruchomienia aplikacji powodującej błąd: 0xrads_user_kernel.exe0 Ścieżka aplikacji powodującej błąd: rads_user_kernel.exe1 Ścieżka modułu powodującego błąd: rads_user_kernel.exe2 Identyfikator raportu: rads_user_kernel.exe3 System errors: ============= Error: (04/12/2015 00:28:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi NVIDIA Update Service Daemon z powodu następującego błędu: %%1069 Error: (04/12/2015 00:28:40 PM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Usługa nvUpdatusService nie może zalogować się jako .\UpdatusUser za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu: %%1330 Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC). Error: (04/12/2015 00:25:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi NMSAccessU z powodu następującego błędu: %%2 Error: (04/12/2015 02:49:16 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi NVIDIA Update Service Daemon z powodu następującego błędu: %%1069 Error: (04/12/2015 02:49:16 AM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Usługa nvUpdatusService nie może zalogować się jako .\UpdatusUser za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu: %%1330 Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC). Error: (04/12/2015 02:46:55 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi NMSAccessU z powodu następującego błędu: %%2 Error: (04/11/2015 00:19:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi NVIDIA Update Service Daemon z powodu następującego błędu: %%1069 Error: (04/11/2015 00:19:58 PM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Usługa nvUpdatusService nie może zalogować się jako .\UpdatusUser za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu: %%1330 Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC). Error: (04/11/2015 00:17:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Util Techgile z powodu następującego błędu: %%1053 Error: (04/11/2015 00:17:23 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Util Techgile. Microsoft Office Sessions: ========================= CodeIntegrity Errors: =================================== Date: 2010-05-30 21:04:18.396 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2010-05-30 21:04:18.392 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2010-05-30 21:04:00.565 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2010-05-30 21:04:00.561 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2010-05-30 21:03:34.672 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2010-05-30 21:03:34.654 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i3 CPU 530 @ 2.93GHz Percentage of memory in use: 70% Total physical RAM: 3003.48 MB Available physical RAM: 897.74 MB Total Pagefile: 6005.16 MB Available Pagefile: 3478.77 MB Total Virtual: 8192 MB Available Virtual: 8191.81 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:465.66 GB) (Free:306.79 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: F7407CD7) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS) ==================== End Of Log ============================