Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-05-2015 01 Ran by Janina at 2015-05-09 08:13:17 Running from C:\Users\Janina\Downloads Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-2322281506-924598918-1386665992-500 - Administrator - Disabled) Gość (S-1-5-21-2322281506-924598918-1386665992-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2322281506-924598918-1386665992-1002 - Limited - Enabled) Janina (S-1-5-21-2322281506-924598918-1386665992-1000 - Administrator - Enabled) => C:\Users\Janina ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Acrobat.com (HKLM-x32\...\{77DCDCE3-2DED-62F3-8154-05E745472D07}) (Version: 1.1.377 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.) Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated) Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated) Adobe Flash Player 18 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 18.0.0.114 - Adobe Systems Incorporated) Adobe Reader 9.0.1 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A90100000001}) (Version: 9.0.1 - Adobe Systems Incorporated) Aktualizacja produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0415-0000-0000000FF1CE}_ENTERPRISE_{04E205D6-88B1-4652-B162-42DF2C3B1228}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0415-0000-0000000FF1CE}_ENTERPRISE_{442ECBCF-94A7-48CC-8CD9-D31FFFD5FA86}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0415-0000-0000000FF1CE}_ENTERPRISE_{128A36ED-21BE-4547-9FFE-5B85AEC735DD}) (Version: - Microsoft) ASUS AI Recovery (HKLM-x32\...\{06585B02-F20D-4AB2-9A64-86EF2AE0F8F0}) (Version: 1.0.9 - ASUS) ASUS CopyProtect (HKLM-x32\...\{6B77A7F6-DD63-4F13-A6FF-83137A5AC354}) (Version: 1.0.0015 - ASUS) ASUS Data Security Manager (HKLM-x32\...\{FA2092C5-7979-412D-A962-6485274AE1EE}) (Version: 1.00.0014 - ASUS) ASUS FancyStart (HKLM-x32\...\{2B81872B-A054-48DA-BE3B-FA5C164C303A}) (Version: 1.0.8 - ASUSTeK Computer Inc.) ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.20 - ASUS) ASUS Live Update (HKLM-x32\...\{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}) (Version: 2.5.9 - ASUS) ASUS MultiFrame (HKLM-x32\...\{9D48531D-2135-49FC-BC29-ACCDA5396A76}) (Version: 1.0.0021 - ASUS) ASUS Power4Gear Hybrid (HKLM\...\{91EFE3A1-585E-4F66-B5F6-F118F56C4C47}) (Version: 1.1.35 - ASUS) ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0008 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0028 - ASUS) ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.19 - asus) ATI AVIVO64 Codecs (Version: 10.12.0.00122 - ATI Technologies Inc.) Hidden ATI Catalyst Install Manager (HKLM\...\{D0528577-31BF-2ABC-D7FC-E443EBF8B40A}) (Version: 3.0.758.0 - ATI Technologies, Inc.) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0003 - ASUS) Autorun Organizer version 1.30 (HKLM-x32\...\Autorun Organizer_is1) (Version: 1.30 - ChemTable Software) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2215 - AVAST Software) BitComet 1.37 64-bit (HKLM-x32\...\BitComet_x64) (Version: 1.37 - CometNetwork) ccc-core-static (x32 Version: 2010.0122.858.16002 - Nazwa firmy) Hidden CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5306 - CDBurnerXP) Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.98.18.65 - Conexant) CWK (Czasowy Wyłącznik Komputera) (HKLM-x32\...\CWK) (Version: 2.52.3.43 - Damian Pasternak) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0337 - Disc Soft Ltd) DFX (HKLM-x32\...\DFX) (Version: 11.400.0.0 - Power Technology) DriverAgent by eSupport.com (HKLM-x32\...\DriverAgent_is1) (Version: - Copyright © 2013 eSupport.com, Inc • All Rights Reserved) ETDWare PS/2-x64 7.0.5.10_WHQL (HKLM\...\Elantech) (Version: 7.0.5.10 - ELAN Microelectronics Corp.) Far Cry (HKLM-x32\...\FarCry_is1) (Version: - Cenega Poland Sp. z o. o.) Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.5 - ASUS) FotoSender 3.0 (HKLM-x32\...\FotoSender_is1) (Version: - Fotolab-Fuji) GG (HKU\S-1-5-21-2322281506-924598918-1386665992-1000\...\GG) (Version: 12 - GG Network S.A.) GIMP 2.8.6 (HKLM\...\GIMP-2_is1) (Version: 2.8.6 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.135 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation) Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217055FF}) (Version: 7.0.550 - Oracle) Java 8 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418040F0}) (Version: 8.0.400 - Oracle Corporation) JMicron Ethernet Adapter NDIS Driver (HKLM-x32\...\{96DCEE2F-98EE-4F80-8C0F-7C04D1FB9D7F}) (Version: 6.0.17.1 - JMicron Technology Corp.) JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.33.2 - JMicron Technology Corp.) K_Series_ScreenSaver_EN (HKLM-x32\...\K_Series_ScreenSaver_EN) (Version: - ) K-Lite Codec Pack 10.7.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.7.5 - ) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation) NapiProjekt 2.0.0 (build 2151) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) NB Probe (HKLM-x32\...\{6324A1EF-CEF4-43E3-8BCD-9EF3F67317FD}) (Version: - ) Net4Switch (HKLM-x32\...\{9D6D7811-43B3-463C-BC79-5D1755269989}) (Version: 1.00.0020 - ASUS) OpenFM (HKU\S-1-5-21-2322281506-924598918-1386665992-1000\...\OpenFM) (Version: 2 - GG Network S.A.) Opera Stable 29.0.1795.47 (HKLM-x32\...\Opera 29.0.1795.47) (Version: 29.0.1795.47 - Opera Software ASA) Origin (HKLM-x32\...\Origin) (Version: 9.3.6.4643 - Electronic Arts, Inc.) Płatnik 9.01.001A (HKLM-x32\...\{05381030-963D-4779-BECA-0D7D49268EDB}) (Version: 9.01.001A - Asseco Poland S.A.) qone8 Browser Protecter (HKLM-x32\...\qone8 Browser Protecter) (Version: - qone8) <==== ATTENTION Registry Life version 2.06 (HKLM-x32\...\Registry Life_is1) (Version: 2.06 - ChemTable Software) RMVB Player 1.0.3 (HKLM-x32\...\RMVB Player_is1) (Version: - ) Sentinel System Driver Installer 7.5.7 (HKLM-x32\...\{B281C7D1-C088-40E0-86EA-B2D9D7E0810A}) (Version: 7.5.7 - SafeNet, Inc.) Soft Organizer wersja 3.51 (HKLM-x32\...\Soft Organizer_is1) (Version: 3.51 - ChemTable Software) SPORE™ (HKLM-x32\...\{9DF0196F-B6B8-4C3A-8790-DE42AA530101}) (Version: 1.00.0000 - Electronic Arts) System Requirements Lab Detection (HKLM-x32\...\{F16A13BC-AF81-41AD-AB75-0D4B72BFE861}) (Version: 2.2.3.0 - Husdawg, LLC) The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.57.62 - Electronic Arts) The Sims™ 3 Nie z tego świata (HKLM-x32\...\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}) (Version: 15.0.135 - Electronic Arts) The Sims™ 3 Nowoczesny apartament Akcesoria (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.13.1 - Electronic Arts) The Sims™ 3 Po zmroku (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.5.1 - Electronic Arts) The Sims™ 4 Demo Stwórz Sima (HKLM-x32\...\{6908ED99-F02B-4E99-A202-3FAC99C510ED}) (Version: 1.0.237.100 - Electronic Arts Inc.) Tibia (HKLM-x32\...\Tibia_is1) (Version: 10.64 - CipSoft GmbH) TopSolid 2013 By Missler Software (HKLM-x32\...\{D3D069BC-4E36-4A62-AB00-FC570D65DB22}) (Version: 6.14 - Missler Software) TopSolid'Finder 2013 by Missler Software (HKLM-x32\...\{6F0DE23C-A590-44BF-B2FF-0B56F22FACF3}) (Version: 6.14 - Missler Software) TopSolid'Update (HKLM\...\{213BF6F0-AC65-4D33-A9B6-0BF7C0CE5776}) (Version: 7.7 - Missler Software) TopSolid'Viewer 2013 by Missler Software (HKLM-x32\...\{28301E8C-61ED-42A5-AC01-7912079B70B0}) (Version: 6.14 - Missler Software) Transformice (HKLM-x32\...\Steam App 335240) (Version: - Atelier 801) TS3 Install Helper Monkey (HKLM-x32\...\TS3 Install Helper Monkey) (Version: - Mad Scientist Productions) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) USB2.0 UVC VGA WebCam (HKLM\...\USB2.0 UVC VGA WebCam) (Version: 5.8.54000.205 - Sonix) VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.30.1 - ASUS) WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH) Wireless Console 3 (HKLM-x32\...\{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}) (Version: 3.0.15 - ASUS) WRF 1.02.001 G (HKLM-x32\...\{460BE803-88CF-4FD2-9082-2450A5959959}) (Version: 1.02.001 G - Asseco Poland S.A.) WRFKL 1.02.001 C (HKLM-x32\...\{A98C53C1-D7D5-43FE-82F4-EACD66292004}) (Version: 1.02.001 C - Asseco Poland S.A.) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-2322281506-924598918-1386665992-1000_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\Janina\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll (GG Network S.A.) ==================== Restore Points ========================= 05-05-2015 06:05:19 Removed Skype™ 7.0 06-05-2015 00:48:26 Windows Update 09-05-2015 07:41:00 Usunięte WRFSL ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:34 - 2014-12-30 11:20 - 00000917 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost 121.128.133.26 gwgt1.joymax.com 121.128.133.26 gwgt2.joymax.com ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {015CDF80-86FD-42E7-9E6E-7C3D74C6589D} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2322281506-924598918-1386665992-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe Task: {0CC172A0-8915-4822-8BB1-1653F7146A65} - System32\Tasks\Net4Switch => C:\Program Files (x86)\ASUS\Net4Switch\Net4Switch.exe [2009-09-23] (ASUS) Task: {0F5D743F-2D6D-4E3C-B96E-F1CE45A0AA8A} - \{A0E3145F-5F7C-446F-BDAA-2B3B7664E09E} No Task File <==== ATTENTION Task: {1690504D-392E-42DF-89EB-07BBBEDD0BFF} - System32\Tasks\{9DDF3E31-8A38-4313-9B47-C1D73F200EFC} => c:\program files (x86)\opera\launcher.exe [2015-04-17] (Opera Software) Task: {18FD389E-7721-4DDA-A1FF-EB03E2119036} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-07] (Adobe Systems Incorporated) Task: {287E5833-BCEB-472C-8E74-A4A29AAB7811} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [2007-11-30] () Task: {36539ABB-439C-4084-9E15-48910E9791E9} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation) Task: {377BE249-E133-4489-90C2-DFDCF2855A8E} - System32\Tasks\{2787B9A9-58B1-43C8-BD5D-358AB2FBABE1} => pcalua.exe -a F:\setup.exe -d F:\ Task: {3D0C4EEC-116A-44F9-A871-5E407024A83F} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2322281506-924598918-1386665992-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe Task: {551BA245-022F-4203-8925-DE4F4C2D6854} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-25] (Microsoft Corporation) Task: {756412B3-F487-406E-BF5B-968FA053752E} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation) Task: {988D6041-91F2-4D30-B172-390F75A0FBF4} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2009-07-31] (ASUS) Task: {98D426B9-4B53-4EB6-A074-303A192C2C32} - System32\Tasks\{11FF7379-1091-44E3-8BCF-EBACAC8506BB} => C:\Program Files\GIMP 2\bin\gimp-2.8.exe [2013-06-24] (Spencer Kimball, Peter Mattis and the GIMP Development Team) Task: {9D9CDC87-FB3F-4C7D-9EE7-5D355F86B83A} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation) Task: {AAD2290C-D7F9-44F2-8B05-9296A9331BBE} - System32\Tasks\WC3 => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2010-01-04] () Task: {AB78825B-F407-4585-8637-8EFD6B55E860} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2010-04-08] (ATK) Task: {B0446499-CAD6-40A5-BA6A-52CFC7C330C2} - System32\Tasks\ASPG => C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe [2009-06-29] (ASUS) Task: {B822CBDE-517C-4B61-BC41-42CE0537723B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-24] (Google Inc.) Task: {CBBFEF2B-50EB-4D06-B63A-5DE4F40FECA8} - System32\Tasks\Opera scheduled Autoupdate 1375036892 => C:\Program Files (x86)\Opera\launcher.exe [2015-04-17] (Opera Software) Task: {CF3F2E7D-2E89-4275-9440-FB6FA7847A90} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-24] (Google Inc.) Task: {E856243C-5467-46AF-A84D-69EAAFCE39F2} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2009-07-23] (ATK) Task: {ECA5A8C6-3B6F-4885-AC1A-69D1AA6E5213} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-04-03] (Avast Software s.r.o.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============== 2013-10-10 09:48 - 2013-04-15 11:50 - 00198144 _____ () C:\Windows\System32\HP1006LM.DLL 2013-10-10 09:48 - 2013-04-15 11:50 - 00065024 _____ () C:\Windows\system32\spool\PRTPROCS\x64\HP1006PP.dll 2007-06-15 10:28 - 2007-06-15 10:28 - 00104960 _____ () C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt64.dll 2007-06-01 16:52 - 2007-06-01 16:52 - 00159744 _____ () C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt1_64.dll 2013-07-28 18:59 - 2007-11-30 11:20 - 00051768 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe 2010-01-11 10:27 - 2010-01-11 10:27 - 00017920 _____ () C:\Program Files\P4G\DevMng.dll 2010-02-03 17:14 - 2010-02-03 17:14 - 00033792 _____ () C:\Program Files\P4G\OvrClk.dll 2008-09-30 23:02 - 2008-09-30 23:08 - 00011264 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll 2010-01-04 17:43 - 2010-01-04 17:43 - 01597440 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe 2013-07-28 19:03 - 2007-08-03 12:24 - 00125496 _____ () C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe 2015-02-28 04:21 - 2015-02-28 04:21 - 01282008 _____ () C:\Program Files (x86)\DFX\DFX.exe 2015-02-28 04:14 - 2015-02-28 04:14 - 00130520 _____ () C:\Program Files (x86)\DFX\Universal\Apps\DfxSharedApp32.exe 2015-02-28 04:18 - 2015-02-28 04:18 - 00131544 _____ () C:\Program Files (x86)\DFX\Universal\Apps\DfxSharedApp64.exe 2015-02-28 04:48 - 2015-02-28 04:48 - 00048088 _____ () C:\Program Files (x86)\Common Files\DFX\Dlls\dfxShared64.dll 2008-10-23 10:21 - 2008-10-23 10:21 - 00016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll 2013-07-28 18:52 - 2013-07-28 18:52 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll 2015-04-29 10:22 - 2015-04-29 10:21 - 00479352 _____ () C:\Program Files (x86)\Opera\29.0.1795.47\opera_crashreporter.exe 2015-04-03 14:19 - 2015-04-03 14:19 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2015-04-03 14:19 - 2015-04-03 14:19 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2015-05-08 20:00 - 2015-05-08 20:00 - 02926592 _____ () C:\Program Files\AVAST Software\Avast\defs\15050801\algo.dll 2013-07-28 19:03 - 2009-09-15 10:47 - 00049152 _____ () C:\Program Files (x86)\ASUS\Net4Switch\ResItf.dll 2013-07-28 19:03 - 2009-09-11 16:40 - 00084992 _____ () C:\Program Files (x86)\ASUS\Net4Switch\cxcmrt.dll 2013-07-28 19:03 - 2009-07-03 13:13 - 00074752 _____ () C:\Program Files (x86)\ASUS\Net4Switch\ipswobj.dll 2013-07-28 19:03 - 2009-07-01 16:46 - 00461824 _____ () C:\Program Files (x86)\ASUS\Net4Switch\ipswresmgr.dll 2013-07-28 19:03 - 2009-07-03 13:12 - 00049152 _____ () C:\Program Files (x86)\ASUS\Net4Switch\ipswhlp.dll 2013-07-28 19:03 - 2009-07-08 11:24 - 00167424 _____ () C:\Program Files (x86)\ASUS\Net4Switch\ipsw_cfgmgr.dll 2013-07-28 19:03 - 2009-07-03 13:12 - 00089088 _____ () C:\Program Files (x86)\ASUS\Net4Switch\ipswds.dll 2013-07-28 19:03 - 2009-07-03 13:12 - 00065024 _____ () C:\Program Files (x86)\ASUS\Net4Switch\ipswgblset.dll 2013-07-28 19:03 - 2009-07-03 13:40 - 00085504 _____ () C:\Program Files (x86)\ASUS\Net4Switch\LogonStartup.dll 2013-07-28 19:03 - 2009-09-15 16:45 - 00228864 ____N () C:\Program Files (x86)\ASUS\Net4Switch\ipswsysmon.dll 2013-07-28 19:03 - 2009-07-03 13:21 - 00042496 _____ () C:\Program Files (x86)\ASUS\Net4Switch\iphelper.dll 2013-07-28 19:03 - 2009-09-17 13:41 - 00267264 _____ () C:\Program Files (x86)\ASUS\Net4Switch\ipswcore.dll 2013-07-28 19:03 - 2009-07-03 13:13 - 00297984 _____ () C:\Program Files (x86)\ASUS\Net4Switch\ipswui.dll 2013-07-28 19:03 - 2007-09-14 10:00 - 00147456 _____ () C:\Program Files\ASUS\NB Probe\SPM\spdiskex.dll 2013-07-28 19:03 - 2003-11-28 02:11 - 00135168 _____ () C:\Program Files\ASUS\NB Probe\SPM\spos.dll 2013-07-28 19:03 - 2005-08-29 15:24 - 00081920 _____ () C:\Program Files\ASUS\NB Probe\SPM\spnbacpi.dll 2013-07-28 19:03 - 2003-09-09 16:08 - 00049152 _____ () C:\Program Files\ASUS\NB Probe\SPM\spdmi.dll 2013-07-28 19:03 - 2006-04-04 10:24 - 00036864 _____ () C:\Program Files\ASUS\NB Probe\SPM\ghadmi.dll 2013-07-28 19:03 - 2005-04-07 19:25 - 00077824 _____ () C:\Program Files\ASUS\NB Probe\SPM\spmemory.dll 2015-03-24 12:08 - 2015-03-24 12:08 - 03715648 _____ () C:\Users\Janina\AppData\Local\GG\Application\xulrunner\mozjs.dll 2015-03-17 12:06 - 2015-03-17 12:06 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2007-06-15 10:28 - 2007-06-15 10:28 - 00147456 _____ () C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt.dll 2007-06-01 17:08 - 2007-06-01 17:08 - 00143360 _____ () C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll 2015-02-28 04:43 - 2015-02-28 04:43 - 00049112 _____ () C:\Program Files (x86)\Common Files\DFX\Dlls\dfxShared32.dll 2015-03-24 12:08 - 2015-03-24 12:08 - 00122432 _____ () C:\Users\Janina\AppData\Local\GG\Application\ggdrive\ZLIB1.dll 2009-09-23 11:07 - 2009-09-23 11:07 - 00204800 _____ () C:\Program Files (x86)\asus\VirtualCamera\virtualCamera.ax 2015-04-29 10:22 - 2015-04-29 10:21 - 01576568 _____ () C:\Program Files (x86)\Opera\29.0.1795.47\libglesv2.dll 2015-04-29 10:22 - 2015-04-29 10:20 - 00081016 _____ () C:\Program Files (x86)\Opera\29.0.1795.47\libegl.dll 2015-05-07 16:26 - 2015-05-07 16:26 - 15017648 _____ () C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_18_0_0_114.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) =============== (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, the associated entry will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2322281506-924598918-1386665992-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Janina\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" MSCONFIG\startupreg: ADSMTray => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\Windows\AsScrPro.exe ==================== FirewallRules (whitelisted) =============== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) FirewallRules: [TCP Query User{A215D0A3-73AD-47A0-951B-8905F205CECE}C:\program files\wapster\wapster aqq\aqq.exe] => (Allow) C:\program files\wapster\wapster aqq\aqq.exe FirewallRules: [UDP Query User{54FEE1E2-4F61-4766-B6B0-24CC9EBA5018}C:\program files\wapster\wapster aqq\aqq.exe] => (Allow) C:\program files\wapster\wapster aqq\aqq.exe FirewallRules: [{1CEC32C7-A20D-4AB0-9264-9EF3952CD9CB}] => (Allow) D:\steam\Steam.exe FirewallRules: [{53B511D8-B2EB-421E-893A-929C86735F1D}] => (Allow) D:\steam\Steam.exe FirewallRules: [{2E395FB3-DFA9-4BC0-8227-1B3329D31AB3}] => (Allow) D:\steam\bin\steamwebhelper.exe FirewallRules: [{DF942B4C-879C-469E-A0FF-F5DE9DD4B0AF}] => (Allow) D:\steam\bin\steamwebhelper.exe FirewallRules: [{122FCD03-1C81-4E1E-BA2E-0D36B7227B56}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4 Create A Sim Demo\Game\Bin\TS4CAS.exe FirewallRules: [{09E192F7-E9BC-4947-A2FA-7EAD304B487F}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4 Create A Sim Demo\Game\Bin\TS4CAS.exe FirewallRules: [TCP Query User{7AD0B295-D77B-470A-8CA6-D91427A7B96F}C:\users\janina\downloads\psro_full_client_downloader_v3.exe] => (Allow) C:\users\janina\downloads\psro_full_client_downloader_v3.exe FirewallRules: [UDP Query User{CFE002FE-F7C9-48ED-AABD-B88C61CF2AB6}C:\users\janina\downloads\psro_full_client_downloader_v3.exe] => (Allow) C:\users\janina\downloads\psro_full_client_downloader_v3.exe FirewallRules: [{F1FD8AE1-D7CA-4A4F-8C87-8F24AEDA89AC}] => (Allow) D:\steam\SteamApps\common\The Binding Of Isaac\Isaac.exe FirewallRules: [{5F7864D2-E04F-4F5A-B7E5-59D0D354FECC}] => (Allow) D:\steam\SteamApps\common\The Binding Of Isaac\Isaac.exe FirewallRules: [{31F49DC6-F0CC-4DFD-8D17-F0A8E7097F6E}] => (Allow) D:\steam\SteamApps\common\Half-Life\hl.exe FirewallRules: [{524D05F3-120A-4EB1-B5B9-02DEAE08220C}] => (Allow) D:\steam\SteamApps\common\Half-Life\hl.exe FirewallRules: [{7FF8CAB7-CE44-4204-B789-5409C5C72BC2}] => (Allow) D:\steam\SteamApps\common\Transformice\Transformice.exe FirewallRules: [{01D18E4B-1FBF-4FE2-B572-FB1C88E5B303}] => (Allow) D:\steam\SteamApps\common\Transformice\Transformice.exe FirewallRules: [{AB409456-0941-4028-ACAF-21C1981B4F86}] => (Allow) C:\Program Files\BitComet\BitComet.exe FirewallRules: [{199CD2E4-53E2-4220-9B42-77C6A6B62CEE}] => (Allow) C:\Program Files\BitComet\BitComet.exe FirewallRules: [{142955E3-221A-4035-8724-FDF088CD0C18}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Faulty Device Manager Devices ============= Name: Karta Microsoft ISATAP Description: Karta Microsoft ISATAP Class Guid: Manufacturer: Microsoft Service: tunnel Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (05/09/2015 07:28:05 AM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: Nie można zainicjować indeksu. Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (05/09/2015 07:28:05 AM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: Nie można zainicjować aplikacji. Kontekst: aplikacja Windows Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (05/09/2015 07:28:05 AM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: Nie można zainicjować obiektu programu zbierającego. Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (05/09/2015 07:28:05 AM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Nie można zainicjować dodatku typu plug-in w . Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Nie można odnaleźć elementu. (HRESULT : 0x80070490) (0x80070490) Error: (05/09/2015 07:28:03 AM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Nie można zainicjować dodatku typu plug-in w . Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (05/09/2015 07:28:03 AM) (Source: Windows Search Service) (EventID: 9002) (User: ) Description: Usługa Windows Search nie może załadować informacji z magazynu właściwości. Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Baza danych indeksów zawartości jest uszkodzona. (HRESULT : 0xc0041800) (0xc0041800) Error: (05/09/2015 07:28:03 AM) (Source: Windows Search Service) (EventID: 7042) (User: ) Description: Usługa Windows Search jest zatrzymywana, ponieważ wystąpił problem z indeksatorem: The catalog is corrupt. Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (05/09/2015 07:28:03 AM) (Source: Windows Search Service) (EventID: 7040) (User: ) Description: Usługa wyszukiwania wykryła uszkodzone pliki danych w indeksie {id=4700}. Usługa podejmie próbę automatycznego rozwiązania tego problemu przez odbudowanie indeksu. Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (05/09/2015 07:28:03 AM) (Source: Windows Search Service) (EventID: 9000) (User: ) Description: Usługa Windows Search nie może otworzyć magazynu właściwości aparatu Jet. Szczegóły: 0x%08x (0xc0041800 - Baza danych indeksów zawartości jest uszkodzona. (HRESULT : 0xc0041800)) Error: (05/09/2015 07:28:02 AM) (Source: ESENT) (EventID: 454) (User: ) Description: Windows (3680) Windows: Odzyskiwanie/przywracanie bazy danych nie powiodło się z powodu nieoczekiwanego błędu: -501. System errors: ============= Error: (05/09/2015 07:28:14 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Windows Search niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (05/09/2015 07:28:05 AM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: Usługa Windows Search zakończyła działanie; wystąpił specyficzny dla niej błąd %%-1073473535. Error: (05/09/2015 07:27:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Update AdvanceElite z powodu następującego błędu: %%3 Error: (05/08/2015 08:00:39 PM) (Source: iaStor) (EventID: 5) (User: ) Description: Na \Device\Ide\iaStor0 został wykryty błąd parzystości. Error: (05/08/2015 11:11:06 AM) (Source: iaStor) (EventID: 5) (User: ) Description: Na \Device\Ide\iaStor0 został wykryty błąd parzystości. Error: (05/08/2015 07:56:18 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Update AdvanceElite z powodu następującego błędu: %%3 Error: (05/08/2015 00:57:57 AM) (Source: iaStor) (EventID: 9) (User: ) Description: Urządzenie \Device\Ide\iaStor0 nie odpowiedziało w ramach ustalonego limitu czasu. Error: (05/07/2015 11:22:44 PM) (Source: iaStor) (EventID: 9) (User: ) Description: Urządzenie \Device\Ide\iaStor0 nie odpowiedziało w ramach ustalonego limitu czasu. Error: (05/07/2015 11:21:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Update AdvanceElite z powodu następującego błędu: %%3 Error: (05/07/2015 07:35:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Update AdvanceElite z powodu następującego błędu: %%3 Microsoft Office Sessions: ========================= ==================== Memory info =========================== Processor: Intel(R) Pentium(R) CPU P6100 @ 2.00GHz Percentage of memory in use: 71% Total physical RAM: 3948.55 MB Available physical RAM: 1137.96 MB Total Pagefile: 7895.29 MB Available Pagefile: 4436.59 MB Total Virtual: 8192 MB Available Virtual: 8191.81 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:100 GB) (Free:26.06 GB) NTFS Drive d: () (Fixed) (Total:197.99 GB) (Free:59.51 GB) NTFS Drive f: (TopSolid 2013) (CDROM) (Total:4.33 GB) (Free:0 GB) UDF ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 01C4B1AA) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=100 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=198 GB) - (Type=07 NTFS) ==================== End Of Log ============================