Additional scan result of Farbar Recovery Scan Tool (x64) Version:07-06-2015 Ran by dmxo at 2015-06-08 16:22:24 Running from C:\Users\dmxo\Downloads Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-366782665-2929205055-3203858903-500 - Administrator - Disabled) dmxo (S-1-5-21-366782665-2929205055-3203858903-1002 - Administrator - Enabled) => C:\Users\dmxo Gość (S-1-5-21-366782665-2929205055-3203858903-501 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: ESET Smart Security 7.0 (Disabled - Out of date) {19259FAE-8396-A113-46DB-15B0E7DFA289} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: ESET Smart Security 7.0 (Disabled - Out of date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834} FW: Zapora osobista ESET (Disabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-366782665-2929205055-3203858903-1002\...\uTorrent) (Version: 3.4.3.40208 - BitTorrent Inc.) 7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.110 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.5.0.367 - Adobe Systems Incorporated) Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated) Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated) Aktualizacje NVIDIA 2.4.5.28 (Version: 2.4.5.28 - NVIDIA Corporation) Hidden Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 4.4.1245.72462 - Alcor Micro Corp.) Alcor Micro USB Card Reader (x32 Version: 4.4.1245.72462 - Alcor Micro Corp.) Hidden ALLConverter PRO 1.3 (HKLM-x32\...\{9370105C-71BB-4FF9-A85B-36D79B95457A}_is1) (Version: - ALLCinema, Inc.) ALLMediaServer (HKLM-x32\...\{FE77909E-B782-4554-A92A-4D887CEF0ACC}_is1) (Version: 0.95 - ALLCinema Ltd.) ALLPlayer V5.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLCinema Ltd.) AmiBroker 5.80.2 x64 (HKLM\...\AmiBroker64_is1) (Version: 5.80 - AmiBroker.com) Atheros Bluetooth Filter Driver Package (HKLM\...\{026B819B-4D60-4C8B-892D-33A0D8666F60}) (Version: 2.0.0.9 - Qualcomm Atheros) Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Atheros) Audacity 2.0.4 (HKLM-x32\...\Audacity_is1) (Version: 2.0.4 - Audacity Team) AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.0.6.10 - AVG Technologies) Batman: Arkham City GOTY (HKLM-x32\...\Steam App 200260) (Version: - Rocksteady Studios) BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.9.4.4078 - BlueStack Systems, Inc.) BlueStacks Notification Center (HKLM-x32\...\{152E0B21-19D5-4772-9EF8-8E76074B0C0A}) (Version: 0.9.4.4078 - BlueStack Systems, Inc.) browse pulse (HKLM-x32\...\browse pulse) (Version: 2.0.5564.10082 - browse pulse) calibre (HKLM-x32\...\{B5D724AD-AC50-46B4-AAA7-62EF18F0CDFE}) (Version: 1.44.0 - Kovid Goyal) Call of Duty(R) 2 (HKLM-x32\...\InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.00.0000 - Activision) Call of Duty(R) 2 (x32 Version: 1.00.0000 - Activision) Hidden Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine) Cities Skylines (HKLM-x32\...\Cities Skylines_is1) (Version: - ) Citrix Online Launcher (HKLM-x32\...\{3E7E6F1E-7376-475A-8BC9-E3126B20CF5F}) (Version: 1.0.198 - Citrix) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0337 - Disc Soft Ltd) dbNotowania 4 MAX (HKLM-x32\...\{E562FAC4-8C22-45CC-949D-430BC1851561}) (Version: 4.1.111.0 - Statica) DC++ 0.830 (HKLM-x32\...\DC++) (Version: 0.830 - Jacek Sieka) Dragonball Xenoverse (HKLM-x32\...\Dragonball Xenoverse_is1) (Version: - ) DTS Sound (HKLM-x32\...\{F8EB8FFC-C535-49A1-A84D-CC75CB2D6ADA}) (Version: 1.00.0062 - DTS, Inc.) Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD) EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.8.0.0 - Electronic Arts) eGazetyReader 3.1 (HKLM-x32\...\eGazetyReader_is1) (Version: 3.1 - e-Kiosk S.A.) ESET Smart Security (HKLM\...\{B0D9ABD0-A8FD-41CE-85A5-D5AFF3BB3990}) (Version: 7.0.302.26 - ESET, spol s r. o.) Far Cry 4 (HKLM-x32\...\Far Cry 4_is1) (Version: 1.0 - Релиз от R.G. Steamgames) foobar2000 v1.2.9 (HKLM-x32\...\foobar2000) (Version: 1.2.9 - Peter Pawlowski) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 6.0.6.722 - Foxit Corporation) Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - ) Free YouTube to MP3 Converter version 3.12.48.1015 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.48.1015 - DVDVideoSoft Ltd.) Freemake Video Downloader (HKLM-x32\...\Freemake Video Downloader_is1) (Version: 3.7.4 - Ellora Assets Corporation) Gameo (HKU\S-1-5-21-366782665-2929205055-3203858903-1002\...\Gameo) (Version: 0.13.7 - IronSource Ltd.) <==== ATTENTION! Giełdomat (HKLM-x32\...\{83010674-6062-4832-8C45-C810D7492E89}) (Version: 1.0.2 - e-MSI Sp. z o. o.) GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.) Google Drive (HKLM-x32\...\{35574F09-89F9-4B16-B69B-64F3E25901B8}) (Version: 1.21.9226.6034 - Google, Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden GoToMeeting 7.2.0.2759 (HKU\S-1-5-21-366782665-2929205055-3203858903-1002\...\GoToMeeting) (Version: 7.2.0.2759 - CitrixOnline) Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games) IDT Audio Driver (HKLM\...\{09F3839A-9FBA-409D-A0AF-5E7D63F646B1}) (Version: 6.10.6466.0 - IDT) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3345 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.4.1001 - Intel Corporation) Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation) Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation) Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation) JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden Magicka (HKLM-x32\...\Steam App 42910) (Version: - Arrowhead Game Studios) McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation) Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation) Mobipocket Reader 6.2 (HKLM-x32\...\{342126E1-173C-4585-BFBE-3EBDD20E3E9E}) (Version: 6.2.608 - Mobipocket.com) Mozilla Firefox 38.0.5 (x86 pl) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 pl)) (Version: 38.0.5 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla) NapiProjekt 2.0.0 (build 2151) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Nero 8 Lite (HKLM-x32\...\Nero8Lite_is1) (Version: 8.3.13.0 - UpdatePack.nl) NVIDIA GeForce Experience 2.4.5.28 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.28 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) NVIDIA Sterownik graficzny 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.06 - NVIDIA Corporation) OpenFM (HKU\S-1-5-21-366782665-2929205055-3203858903-1002\...\OpenFM) (Version: 2 - GG Network S.A.) Opera Stable 29.0.1795.60 (HKLM-x32\...\Opera 29.0.1795.60) (Version: 29.0.1795.60 - Opera Software ASA) Origin (HKLM-x32\...\Origin) (Version: 9.0.10.69 - Electronic Arts, Inc.) Panel sterowania NVIDIA 353.06 (Version: 353.06 - NVIDIA Corporation) Hidden PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden PDFMate PDF Converter 1.7.2 (HKLM-x32\...\PDFMate PDF Converter_is1) (Version: - pdfmate.com) PDFtoEPUB (HKLM-x32\...\PDFtoEPUB) (Version: 1.5.0 - DNAML Pty Ltd.) PLAY ONLINE (HKLM-x32\...\PLAY ONLINE) (Version: 21.005.11.17.264 - Huawei Technologies Co.,Ltd) Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) Popcorn Time (HKU\S-1-5-21-366782665-2929205055-3203858903-1002\...\Popcorn Time) (Version: - Popcorn Official) PowerTrader Free Edition (HKLM-x32\...\{8180ECD7-7DFB-4BD5-A596-A34DBC746A7A}_is1) (Version: - Sumito Development) Provider (HKLM-x32\...\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{6135ae48}) (Version: - Provider) <==== ATTENTION Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.13 - Qualcomm Atheros Communications Inc.) RAR Password Recovery v1.1 RC17 (remove only) (HKLM-x32\...\Intelore - RAR Password Recovery) (Version: - ) Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform) Remo Repair MOV (HKLM-x32\...\{8DD5B1BF-E1BB-43DB-965C-DC6180A19518}_is1) (Version: 2.0.0.16 - Remo Software) Rockstar Games Social Club (HKLM-x32\...\{08B3869E-D282-424C-9AFC-870E04A4BA14}) (Version: 1.00.0000 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games) RollerCoaster Tycoon 3 Platinum (HKLM-x32\...\RollerCoaster Tycoon 3 Platinum3) (Version: 3 - Friends in War) Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft) Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee) SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.4.5.28 - NVIDIA Corporation) Hidden Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation) Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.) SopCast 3.9.3 (HKLM-x32\...\SopCast) (Version: 3.9.3 - www.sopcast.com) Spotflux (HKLM-x32\...\Spotflux) (Version: 3.1.1 - Spotflux) Spotify (HKU\S-1-5-21-366782665-2929205055-3203858903-1002\...\Spotify) (Version: 1.0.3.101.gbfa97dfe - Spotify AB) Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation) sweet-page uninstall (HKLM-x32\...\sweet-page uninstall) (Version: - sweet-page) <==== ATTENTION Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.10.51 - Synaptics Incorporated) TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH) Testy B 5.1.3.51 (HKLM-x32\...\{2ABBBEA8-D801-46AA-9E27-C62EB2724494}_is1) (Version: 5.1.3.51 - Grupa IMAGE sp. z o.o.) TOSHIBA Display Utility (HKLM\...\{B6619F14-F766-4000-BC8A-522D4CC4E44F}) (Version: 1.0.4.5 - Toshiba Corporation) TOSHIBA eco Utility (HKLM\...\{5944B9D4-3C2A-48DE-931E-26B31714A2F7}) (Version: 2.0.3.6403 - Toshiba Corporation) TOSHIBA Function Key (HKLM\...\{16562A90-71BC-41A0-B890-D91B0C267120}) (Version: 1.00.6629.6406 - Toshiba Corporation) TOSHIBA Manuals (HKLM-x32\...\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}) (Version: 10.10 - TOSHIBA) TOSHIBA Password Utility (HKLM-x32\...\InstallShield_{78931270-BC9E-441A-A52B-73ECD4ACFAB5}) (Version: 3.00.341 - Toshiba Corporation) TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 1.9.02.6402 - Toshiba Corporation) TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 3.0.01.55004008 - Toshiba Corporation) TOSHIBA Resolution+ Plug-in for Windows Media Player (HKLM-x32\...\{6CB76C9D-80C2-4CB3-A4CD-D96B239E3F94}) (Version: 1.2.5.03 - Toshiba Corporation) TOSHIBA Service Station (HKLM\...\{6499E894-43F8-458B-AE35-724F4732BCDE}) (Version: 2.5.6 - Toshiba Corporation) TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 1.00.0020 - Toshiba Corporation) TOSHIBA System Settings (HKLM-x32\...\{05A55927-DB9B-4E26-BA44-828EBFF829F0}) (Version: 1.00.0007.32003 - Toshiba Corporation) TOSHIBA VIDEO PLAYER (HKLM\...\{FF07604E-C860-40E9-A230-E37FA41F103A}) (Version: 5.3.5.59 - Toshiba Corporation) TuneUp Utilities 2013 (HKLM-x32\...\TuneUp Utilities 2013) (Version: 13.0.3020.16 - TuneUp Software) TuneUp Utilities 2013 (x32 Version: 13.0.3020.16 - TuneUp Software) Hidden TuneUp Utilities Language Pack (pl-PL) (x32 Version: 13.0.3020.16 - TuneUp Software) Hidden Unity Web Player (HKU\S-1-5-21-366782665-2929205055-3203858903-1002\...\UnityWebPlayer) (Version: - Unity Technologies ApS) UpDown page without arrows (HKLM-x32\...\{88E96402-3BBD-02D9-0A36-6FB806AEE04E}) (Version: - ) Uplay (HKLM-x32\...\Uplay) (Version: 4.9 - Ubisoft) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN) VLC media player 2.1.4 (HKLM\...\VLC media player) (Version: 2.1.4 - VideoLAN) WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies) WinRAR 5.00 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-366782665-2929205055-3203858903-1002_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\dmxo\AppData\Local\Citrix\GoToMeeting\2331\G2MOutlookAddin64.dll (Citrix Online, a division of Citrix Systems, Inc.) ==================== Restore Points ========================= 24-05-2015 07:53:15 Windows Update 01-06-2015 07:27:03 Zaplanowany punkt kontrolny 05-06-2015 13:17:14 Windows Update 06-06-2015 15:35:21 Zainstalowane Grand Theft Auto V ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2015-02-26 15:58 - 2015-02-26 15:58 - 00000000 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {03072C36-AF22-4983-BA17-806FB549FF6C} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation) Task: {0A1B57E2-C3B7-4B25-9A05-0400A91DD247} - System32\Tasks\{D3DEE753-F745-4AFE-B9EF-FAAB4BBB63A1} => pcalua.exe -a C:\Users\dmxo\Downloads\cwk252_setup_[www.programosy.pl].exe -d C:\Users\dmxo\Downloads Task: {236E6CBF-05C0-4E88-8D00-99D3721924D7} - System32\Tasks\AppLite => c:\programdata\{d56aa1ac-4deb-c217-d56a-aa1ac4de86b1}\6973705245575412647b.exe [2014-06-05] () Task: {3A94E84B-C7FE-4707-B5B4-9FBFF6281B0C} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2013\OneClick.exe [2013-01-31] (TuneUp Software) Task: {613B35DD-043B-4B10-814E-C025708C2C20} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\Windows\system32\compattel\DiagTrackRunner.exe [2015-03-16] (Microsoft Corporation) Task: {839036B8-59E6-42C8-895E-388451AE85DC} - System32\Tasks\{C610F0A0-BDD2-4379-A878-CDBE38B8E364} => c:\program files (x86)\opera\launcher.exe [2015-05-18] (Opera Software) Task: {8841D21C-3DE6-4321-8D56-39A1E4699799} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-05-13] (Microsoft Corporation) Task: {91597C90-35C7-4309-9D31-31CA8074F6E8} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation) Task: {A2C03BA5-D9A5-48BB-AF9E-611A1DFB47FA} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks Task: {AABA9F40-45EB-4212-B3E2-07A9915F7164} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation) Task: {BA385722-C756-47F5-9523-FA53BA50AEBB} - System32\Tasks\G2MUploadTask-S-1-5-21-366782665-2929205055-3203858903-1002 => C:\Users\dmxo\AppData\Local\Citrix\GoToMeeting\2759\g2mupload.exe [2015-05-31] (Citrix Online, a division of Citrix Systems, Inc.) Task: {D2C23D4A-AE7F-4861-9570-0FEA04AEB206} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14] (Adobe Systems Incorporated) Task: {DD928FDF-6AB4-479D-A015-B5C4CFAA68CB} - System32\Tasks\G2MUpdateTask-S-1-5-21-366782665-2929205055-3203858903-1002 => C:\Users\dmxo\AppData\Local\Citrix\GoToMeeting\2759\g2mupdate.exe [2015-05-31] (Citrix Online, a division of Citrix Systems, Inc.) Task: {EA27F6F7-80DB-4058-B365-365F2402F44E} - System32\Tasks\Opera scheduled Autoupdate 1427486593 => C:\Program Files (x86)\Opera\launcher.exe [2015-05-18] (Opera Software) Task: {EAFBC971-9DEA-405D-8041-80D140B2AA57} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe Task: {F6EF983A-B6B4-4715-AF9B-8C17E0466058} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-damiansurazynskii@gmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated) Task: {FE416672-51C8-431B-99BB-99D99B09EFFE} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-06] (Microsoft Corporation) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\AppLite.job => c:\programdata\{d56aa1ac-4deb-c217-d56a-aa1ac4de86b1}\6973705245575412647b.exe Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-366782665-2929205055-3203858903-1002.job => C:\Users\dmxo\AppData\Local\Citrix\GoToMeeting\2759\g2mupdate.exe Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-366782665-2929205055-3203858903-1002.job => C:\Users\dmxo\AppData\Local\Citrix\GoToMeeting\2759\g2mupload.exe Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ==================== Loaded Modules (Whitelisted) ============== 2013-03-28 00:53 - 2013-03-28 00:53 - 00163168 _____ () C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe 2013-04-10 23:45 - 2013-04-10 23:45 - 00016720 _____ () C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe 2011-03-14 17:27 - 2011-03-14 17:27 - 00346976 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe 2013-12-02 19:32 - 2013-12-02 19:31 - 00246112 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\ouc.exe 2013-12-23 13:33 - 2015-05-28 09:04 - 00012104 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll 2014-11-05 16:16 - 2015-05-28 06:15 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2014-03-20 11:24 - 2014-03-20 11:24 - 00667808 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll 2013-09-05 01:17 - 2013-09-05 01:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2013-11-04 20:22 - 2013-11-04 20:22 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2012-07-19 03:38 - 2012-07-19 03:38 - 00020904 _____ () C:\Program Files\TOSHIBA\Hotkey\SmoothView.dll 2015-04-18 21:20 - 2015-04-18 21:20 - 00379248 _____ () C:\ProgramData\{36e66674-bac6-51e9-36e6-66674bac99d2}\Download 3DMGAME-Grand Theft Auto V Update 1 and Crack v2-3DM 7z Torrent - KickassTorrents(1).exe 2014-03-20 11:24 - 2014-03-20 11:24 - 05288608 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe 2015-06-07 22:54 - 2015-06-07 22:54 - 00566439 _____ () C:\Users\dmxo\AppData\Local\JDownloader v2.0\tmp\7zip\SevenZipJBinding-FKPz9\libgcc_s_sjlj-1.dll 2015-06-07 22:54 - 2015-06-07 22:54 - 04078962 _____ () C:\Users\dmxo\AppData\Local\JDownloader v2.0\tmp\7zip\SevenZipJBinding-FKPz9\lib7-Zip-JBinding.dll 2015-06-05 21:33 - 2015-06-05 21:33 - 01740288 _____ () c:\Program Files (x86)\SustainerPlus\SustainerPlus.dll 2013-12-02 19:32 - 2013-12-02 19:31 - 00011362 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\mingwm10.dll 2013-12-02 19:32 - 2013-12-02 19:31 - 00043008 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\libgcc_s_dw2-1.dll 2013-12-02 19:32 - 2013-12-02 19:31 - 02415104 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\QtCore4.dll 2013-12-02 19:32 - 2013-12-02 19:31 - 01148416 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\QtNetwork4.dll 2013-12-02 19:32 - 2013-12-02 19:31 - 00384512 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\QueryStrategy.dll 2013-12-02 19:32 - 2013-12-02 19:31 - 00398336 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\QtXml4.dll 2014-10-31 23:36 - 2014-10-31 23:36 - 00032256 _____ () C:\Program Files (x86)\Spotflux\services\SpotfluxFilterLib.dll 2013-07-09 02:19 - 2012-07-18 15:55 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2015-04-19 12:54 - 2015-05-23 03:48 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2014-03-18 23:22 - 2014-03-18 23:22 - 32733088 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\libcef.dll 2015-04-19 12:50 - 2015-05-28 09:04 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Users\dmxo\OneDrive:ms-properties ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-366782665-2929205055-3203858903-1002\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg DNS Servers: 148.81.184.6 - 148.81.186.1 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\Services: TuneUp.UtilitiesSvc => 2 HKLM\...\StartupApproved\StartupFolder: => "CodecPackTrayMenu.lnk" HKLM\...\StartupApproved\StartupFolder: => "CodecPackUpdateChecker.lnk" HKLM\...\StartupApproved\Run: => "HotKeysCmds" HKLM\...\StartupApproved\Run: => "TecoResident" HKLM\...\StartupApproved\Run: => "BCSSync" HKLM\...\StartupApproved\Run: => "SynTPEnh" HKLM\...\StartupApproved\Run32: => "AmIcoSinglun64" HKLM\...\StartupApproved\Run32: => "1.TPUReg" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "mobilegeni daemon" HKLM\...\StartupApproved\Run32: => "SearchSettings" HKLM\...\StartupApproved\Run32: => "BlueStacks Agent" HKLM\...\StartupApproved\Run32: => "vProt" HKU\S-1-5-21-366782665-2929205055-3203858903-1002\...\StartupApproved\Run: => "ALLUpdate" HKU\S-1-5-21-366782665-2929205055-3203858903-1002\...\StartupApproved\Run: => "DAEMON Tools Lite" HKU\S-1-5-21-366782665-2929205055-3203858903-1002\...\StartupApproved\Run: => "lollipop" HKU\S-1-5-21-366782665-2929205055-3203858903-1002\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-366782665-2929205055-3203858903-1002\...\StartupApproved\Run: => "Trans" HKU\S-1-5-21-366782665-2929205055-3203858903-1002\...\StartupApproved\Run: => "Overwolf" HKU\S-1-5-21-366782665-2929205055-3203858903-1002\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-366782665-2929205055-3203858903-1002\...\StartupApproved\Run: => "SoftonicAssistant" HKU\S-1-5-21-366782665-2929205055-3203858903-1002\...\StartupApproved\Run: => "spotflux" HKU\S-1-5-21-366782665-2929205055-3203858903-1002\...\StartupApproved\Run: => "GoogleDriveSync" HKU\S-1-5-21-366782665-2929205055-3203858903-1002\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-366782665-2929205055-3203858903-1002\...\StartupApproved\Run: => "Gameo" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{C881EC43-F276-4727-8251-5BA8A40FD770}] => (Allow) C:\Users\dmxo\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{9552C7BD-20A9-41A3-8BB9-13752BCC454D}] => (Allow) C:\Users\dmxo\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{C8704D5D-7172-4D58-80F0-FAD9227B8E56}] => (Allow) C:\Program Files (x86)\Applian Technologies\Freecorder 8 Applications\Torrent\aria2c.exe FirewallRules: [{890D54B3-D7AD-40C1-8BD1-A6E4373E334B}] => (Allow) C:\Program Files (x86)\Applian Technologies\Freecorder 8 Applications\Torrent\aria2c.exe FirewallRules: [{4F38FAA6-AF18-4D57-BF61-9C6CEAF15DCC}] => (Allow) C:\Program Files (x86)\Applian Technologies\Freecorder 8 Applications\Torrent\fctorrentp.exe FirewallRules: [{56D5402E-1E99-4CB9-9020-9E573DB774E3}] => (Allow) C:\Program Files (x86)\Applian Technologies\Freecorder 8 Applications\Torrent\fctorrentp.exe FirewallRules: [{963C32BF-BC18-4C2C-84D5-074F254238D0}] => (Allow) C:\Program Files (x86)\Applian Technologies\Freecorder 8 Applications\Video\fctubep.exe FirewallRules: [{C0DFC883-4152-4CD9-9C19-AAB66E21745F}] => (Allow) C:\Program Files (x86)\Applian Technologies\Freecorder 8 Applications\Video\fctubep.exe FirewallRules: [{130270DC-14FB-4C4F-90BC-079BCEF65C92}] => (Allow) C:\Program Files (x86)\Applian Technologies\Freecorder 8 Applications\Video\fcvideop.exe FirewallRules: [{2E1F8649-083B-4152-99D0-8A35DA2B25E2}] => (Allow) C:\Program Files (x86)\Applian Technologies\Freecorder 8 Applications\Video\fcvideop.exe FirewallRules: [{A47A4FE9-59D3-491F-B978-B8573D138080}] => (Allow) C:\Program Files (x86)\Applian Technologies\Freecorder 8 Applications\Screen\fcscreenp.exe FirewallRules: [{CD8A2A9A-6B0D-4FB9-AAEA-4FB8697669D4}] => (Allow) C:\Program Files (x86)\Applian Technologies\Freecorder 8 Applications\Screen\fcscreenp.exe FirewallRules: [{A2EB711A-67BE-424A-9032-9E6E9CE6F7DE}] => (Allow) C:\Program Files (x86)\Applian Technologies\Freecorder 8 Applications\Audio\fcaudiop.exe FirewallRules: [{F52FE3B4-B120-4618-A2BC-0556AC16C573}] => (Allow) C:\Program Files (x86)\Applian Technologies\Freecorder 8 Applications\Audio\fcaudiop.exe FirewallRules: [{688563C3-86AE-410B-9573-BC5153A80834}] => (Allow) C:\Program Files (x86)\Applian Technologies\Freecorder 8 Applications\Converter\fcmediap.exe FirewallRules: [{F6905996-CBB8-4B50-8F9A-7743DA6DF8C0}] => (Allow) C:\Program Files (x86)\Applian Technologies\Freecorder 8 Applications\Converter\fcmediap.exe FirewallRules: [{3291668D-D9C9-457A-A1EF-AC0930256800}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{BDC569EA-77FF-4834-AB3D-6AD0F4E05C09}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe FirewallRules: [{FD838149-2871-49C2-B2AB-512A8748D6CD}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe FirewallRules: [{650BA8A3-2EED-4B1E-BB7C-0251A6C07C9E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{0C4F6A62-7EAD-4F54-9D2F-3F82C98E33EF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{0E1D6289-45B5-49F9-B232-D463AAB6A929}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{194596E6-5CC3-42EE-8379-BEBFFDCCBEC9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{BAB3AC9E-DAE2-4C66-AA47-C31B08AFB36E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Magicka\Magicka.exe FirewallRules: [{374E4AD4-6734-4229-84A9-5A8B70C8E7E9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Magicka\Magicka.exe FirewallRules: [{8E42F3EC-1087-42BA-BE56-F3F3BBA9BE55}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{B3BFB282-2AAC-4087-A97C-7A4FEED4837A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{E347F310-99B5-43CE-BEE3-496AF08B8196}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{A1295ED2-12F4-45AE-9E34-26F3C5F1CE52}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{3E9AAA97-78E6-4158-8EAF-D38E10BDFF56}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{2C4143C0-9F25-4691-94BA-B2556E92B2C9}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{C30EAF52-0DFE-44D2-9601-DAE6C3238B4E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Batman Arkham City GOTY\RunLauncher.bat FirewallRules: [{C8D21ED7-1754-413D-BEFF-021ACD3DDD08}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Batman Arkham City GOTY\RunLauncher.bat FirewallRules: [{9B97D862-6CE6-4E86-8592-C9D18362F1C4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe FirewallRules: [{5573D834-B489-4490-8CF5-0BA88699DE82}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe FirewallRules: [{CACE4878-F026-4899-9873-FBE72980F9B0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Magicka\Magicka.exe FirewallRules: [{FBFF7038-ECA4-4206-BE90-2E4C4BBCA3EC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Magicka\Magicka.exe FirewallRules: [{8FFAC420-582A-44F1-B008-B37B6BE08079}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Batman Arkham City GOTY\RunLauncher.bat FirewallRules: [{915351C3-096D-44EF-BFA2-9E9A8767E8C2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Batman Arkham City GOTY\RunLauncher.bat FirewallRules: [{5D0DC970-F227-4A1D-B3D8-296D2B1AF6D1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe FirewallRules: [{8C76B6DA-861B-4893-8129-7804AD24D18E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe FirewallRules: [{EE212BA5-C2C1-4320-8048-3B29A67D35C8}] => (Allow) C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe FirewallRules: [{AA58CE31-6B2C-4AFA-A792-E346EAE76EEA}] => (Allow) C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe FirewallRules: [{09AFA292-3850-42A1-B694-F56BF61E3727}] => (Allow) C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe FirewallRules: [{AC9EE15B-6FA3-416D-A7FB-DC2515D5B8F6}] => (Allow) C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe FirewallRules: [{47513F07-F495-4B02-B813-6018FB891565}] => (Allow) C:\Program Files\Common Files\mcafee\platform\mcsvchost\McSvHost.exe FirewallRules: [{DA072542-50EF-41CA-BFFF-6F1DD2D7ECF5}] => (Allow) C:\Program Files\Common Files\mcafee\platform\mcsvchost\McSvHost.exe FirewallRules: [{27851E0E-18B2-471C-B427-9D10BB76B720}] => (Allow) C:\Users\dmxo\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{2EB7B0B6-D9AD-4882-9125-5D6F28FAC115}] => (Allow) C:\Users\dmxo\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{9D08D1EE-42D3-40D7-AEDB-9764CD9D185C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{20BE5E3E-06EF-4311-8784-FD63FD07D397}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{3DA5F8C9-080E-49AC-B120-171C990761DE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{D5B09FC9-5814-441A-B6EF-853953D3F23E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{DDA100BD-8B8F-4E64-AE2C-E589EDCEEA65}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{08DD1BC0-69AE-453B-8869-CA7FDB77C827}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{D48DE1DA-1ADF-4781-803F-659A76CF99E8}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe FirewallRules: [{ED68F81E-58F6-46DC-A8A0-2811DA0830E4}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe FirewallRules: [{0A108AC8-1335-4A6A-AAB4-51D26B5BF2A9}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgdiagex.exe FirewallRules: [{FA818E95-ADE9-4459-B2E1-D9588321AC78}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgdiagex.exe FirewallRules: [{946CA956-589A-41BA-914B-8B417DA064EA}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe FirewallRules: [{77230BEA-FE2D-4A45-BA5A-4324DA0CEA36}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe FirewallRules: [{4E6D0AC2-ECA0-46AC-8EBA-FA2D6187244B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{011441EF-C360-45EF-8755-3205AB9ECC96}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{003D728C-C68A-404E-9708-924B1ECBAB42}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Allow) C:\program files (x86)\origin games\fifa 15\fifa15.exe FirewallRules: [UDP Query User{1FE316B3-49A9-483C-87C3-4F9B5AD719C8}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Allow) C:\program files (x86)\origin games\fifa 15\fifa15.exe FirewallRules: [TCP Query User{21540A7F-DB04-4ACC-A68A-99549C12234E}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Block) C:\program files (x86)\origin games\fifa 15\fifa15.exe FirewallRules: [UDP Query User{39A115CB-53E5-4D88-8FB2-6C07E50D97CA}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Block) C:\program files (x86)\origin games\fifa 15\fifa15.exe FirewallRules: [{EAB3A7D7-3831-43C3-AFD7-C4ACCCADC212}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{E9B72B56-64B3-4D45-A19A-F9D8D69AEE83}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{F29BF1B5-D834-4F8E-A989-142A041FAD38}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe FirewallRules: [{B0AA7D5B-F3B5-4FB9-8417-004D4AE90853}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe FirewallRules: [{D64C29F3-C146-4B75-A25B-1ECEC87C79DB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{7CF6EE11-2338-4BC9-8A39-FABBA49794C6}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe FirewallRules: [{78E917B3-6AE0-43DC-AF64-5FC2E3423DB6}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (06/08/2015 05:40:21 AM) (Source: SideBySide) (EventID: 78) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest1”. Błąd w pliku manifestu lub w pliku zasad „C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest2” w wierszu C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest3. Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest. Składnik 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest. Error: (06/08/2015 05:36:45 AM) (Source: SideBySide) (EventID: 78) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest1”. Błąd w pliku manifestu lub w pliku zasad „C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest2” w wierszu C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest3. Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest. Składnik 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest. Error: (06/07/2015 11:03:03 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: plugin-container.exe, wersja: 38.0.5.5623, sygnatura czasowa: 0x5563c49a Nazwa modułu powodującego błąd: mozalloc.dll, wersja: 38.0.5.5623, sygnatura czasowa: 0x5563b229 Kod wyjątku: 0x80000003 Przesunięcie błędu: 0x00001aa1 Identyfikator procesu powodującego błąd: 0x1d84 Godzina uruchomienia aplikacji powodującej błąd: 0xplugin-container.exe0 Ścieżka aplikacji powodującej błąd: plugin-container.exe1 Ścieżka modułu powodującego błąd: plugin-container.exe2 Identyfikator raportu: plugin-container.exe3 Pełna nazwa pakietu powodującego błąd: plugin-container.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: plugin-container.exe5 Error: (06/07/2015 11:03:03 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program firefox.exe w wersji 38.0.5.5623 przestał współpracować z systemem Windows i został zamknięty. Aby sprawdzić, czy jest dostępnych więcej informacji na temat tego problemu, sprawdź historię problemu w aplecie Centrum akcji w Panelu sterowania. Identyfikator procesu: fe8 Godzina rozpoczęcia: 01d0a1652eebfd2b Godzina zakończenia: 4294967295 Ścieżka aplikacji: C:\Program Files (x86)\Mozilla Firefox\firefox.exe Identyfikator raportu: 959e7c3d-0d58-11e5-bf44-24fd52a34c19 Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (06/07/2015 10:53:35 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: plugin-container.exe, wersja: 38.0.5.5623, sygnatura czasowa: 0x5563c49a Nazwa modułu powodującego błąd: mozalloc.dll, wersja: 38.0.5.5623, sygnatura czasowa: 0x5563b229 Kod wyjątku: 0x80000003 Przesunięcie błędu: 0x00001aa1 Identyfikator procesu powodującego błąd: 0x1464 Godzina uruchomienia aplikacji powodującej błąd: 0xplugin-container.exe0 Ścieżka aplikacji powodującej błąd: plugin-container.exe1 Ścieżka modułu powodującego błąd: plugin-container.exe2 Identyfikator raportu: plugin-container.exe3 Pełna nazwa pakietu powodującego błąd: plugin-container.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: plugin-container.exe5 Error: (06/07/2015 10:53:34 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program firefox.exe w wersji 38.0.5.5623 przestał współpracować z systemem Windows i został zamknięty. Aby sprawdzić, czy jest dostępnych więcej informacji na temat tego problemu, sprawdź historię problemu w aplecie Centrum akcji w Panelu sterowania. Identyfikator procesu: 1fc4 Godzina rozpoczęcia: 01d0a16361be0717 Godzina zakończenia: 4294967295 Ścieżka aplikacji: C:\Program Files (x86)\Mozilla Firefox\firefox.exe Identyfikator raportu: 4239aa26-0d57-11e5-bf44-24fd52a34c19 Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (06/07/2015 02:49:10 PM) (Source: SideBySide) (EventID: 78) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest1”. Błąd w pliku manifestu lub w pliku zasad „C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest2” w wierszu C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest3. Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest. Składnik 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest. Error: (06/07/2015 02:46:02 PM) (Source: SideBySide) (EventID: 78) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest1”. Błąd w pliku manifestu lub w pliku zasad „C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest2” w wierszu C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest3. Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest. Składnik 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest. Error: (06/07/2015 11:59:50 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: 80070005 Error: (06/07/2015 11:38:43 AM) (Source: SideBySide) (EventID: 78) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest1”. Błąd w pliku manifestu lub w pliku zasad „C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest2” w wierszu C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest3. Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest. Składnik 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest. System errors: ============= Error: (06/06/2015 02:08:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Usługa Google Update (gupdate) z powodu następującego błędu: %%2 Error: (06/06/2015 02:06:11 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa BlueStacks Android Service zakończyła działanie; wystąpił następujący błąd: %%1064 Error: (06/06/2015 02:05:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi PLAY ONLINE. OUC z powodu następującego błędu: %%1053 Error: (06/06/2015 02:05:55 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą PLAY ONLINE. OUC. Error: (06/06/2015 02:05:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi TuneUp Theme Extension z powodu następującego błędu: %%1083 Error: (06/06/2015 01:56:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Usługa Google Update (gupdate) z powodu następującego błędu: %%2 Error: (06/06/2015 01:54:53 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa BlueStacks Android Service zakończyła działanie; wystąpił następujący błąd: %%1064 Error: (06/06/2015 01:54:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi PLAY ONLINE. OUC z powodu następującego błędu: %%1053 Error: (06/06/2015 01:54:21 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą PLAY ONLINE. OUC. Error: (06/06/2015 01:53:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi TuneUp Theme Extension z powodu następującego błędu: %%1083 Microsoft Office: ========================= Error: (06/08/2015 05:40:21 AM) (Source: SideBySide) (EventID: 78) (User: ) Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifestC:\Program Files (x86)\Nero\Nero Toolkit\Nero DiscSpeed\DiscSpeed.exe Error: (06/08/2015 05:36:45 AM) (Source: SideBySide) (EventID: 78) (User: ) Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifestC:\Program Files (x86)\Nero\Nero Toolkit\Nero DiscSpeed\DiscSpeed.exe Error: (06/07/2015 11:03:03 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: plugin-container.exe38.0.5.56235563c49amozalloc.dll38.0.5.56235563b2298000000300001aa11d8401d0a1654068f316C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll95e1a9e6-0d58-11e5-bf44-24fd52a34c19 Error: (06/07/2015 11:03:03 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: firefox.exe38.0.5.5623fe801d0a1652eebfd2b4294967295C:\Program Files (x86)\Mozilla Firefox\firefox.exe959e7c3d-0d58-11e5-bf44-24fd52a34c19 Error: (06/07/2015 10:53:35 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: plugin-container.exe38.0.5.56235563c49amozalloc.dll38.0.5.56235563b2298000000300001aa1146401d0a1639be1e3aaC:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll42eab531-0d57-11e5-bf44-24fd52a34c19 Error: (06/07/2015 10:53:34 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: firefox.exe38.0.5.56231fc401d0a16361be07174294967295C:\Program Files (x86)\Mozilla Firefox\firefox.exe4239aa26-0d57-11e5-bf44-24fd52a34c19 Error: (06/07/2015 02:49:10 PM) (Source: SideBySide) (EventID: 78) (User: ) Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifestC:\Program Files (x86)\Nero\Nero Toolkit\Nero DiscSpeed\DiscSpeed.exe Error: (06/07/2015 02:46:02 PM) (Source: SideBySide) (EventID: 78) (User: ) Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifestC:\Program Files (x86)\Nero\Nero Toolkit\Nero DiscSpeed\DiscSpeed.exe Error: (06/07/2015 11:59:50 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: 80070005 Error: (06/07/2015 11:38:43 AM) (Source: SideBySide) (EventID: 78) (User: ) Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifestC:\Program Files (x86)\Nero\Nero Toolkit\Nero DiscSpeed\DiscSpeed.exe ==================== Memory info =========================== Processor: Intel(R) Core(TM) i7-3630QM CPU @ 2.40GHz Percentage of memory in use: 50% Total physical RAM: 8067.27 MB Available physical RAM: 3974.15 MB Total Pagefile: 9347.27 MB Available Pagefile: 4714.83 MB Total Virtual: 131072 MB Available Virtual: 131071.84 MB ==================== Drives ================================ Drive c: (TI31102500B) (Fixed) (Total:685.6 GB) (Free:37.15 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 698.6 GB) (Disk ID: 00000000) Partition: GPT Partition Type. ==================== End of log ============================