Additional scan result of Farbar Recovery Scan Tool (x64) Version:19-08-2015 Ran by Brave (2015-08-19 22:30:01) Running from C:\Users\Brave\Downloads Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-2195184045-3265951034-2981680463-500 - Administrator - Disabled) Brave (S-1-5-21-2195184045-3265951034-2981680463-1000 - Administrator - Enabled) => C:\Users\Brave Gość (S-1-5-21-2195184045-3265951034-2981680463-501 - Limited - Enabled) HomeGroupUser$ (S-1-5-21-2195184045-3265951034-2981680463-1004 - Limited - Enabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: ESET Smart Security 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: ESET Smart Security 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834} FW: ESET Personal firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.1.0.5790 - Adobe Systems Inc.) Adobe Anchor Service x64 CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden Adobe CMaps x64 CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden Adobe CSI CS4 x64 (Version: 1 - Adobe Systems Incorporated) Hidden Adobe Drive CS4 x64 (Version: 1 - Adobe Systems Incorporated) Hidden Adobe Flash Player 18 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 18.0.0.232 - Adobe Systems Incorporated) Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated) Adobe Fonts All x64 (Version: 2.0 - Adobe Systems Incorporated) Hidden Adobe Linguistics CS4 x64 (Version: 4.0.0 - Adobe Systems Incorporated) Hidden Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1 - Adobe Systems Incorporated) Adobe PDF Library Files x64 CS4 (Version: 9.0 - Adobe Systems Incorporated) Hidden Adobe Photoshop CS4 (64 Bit) (Version: 11.0 - Adobe Systems Incorporated) Hidden Adobe Photoshop CS4 (HKLM-x32\...\Adobe_faf656ef605427ee2f42989c3ad31b8) (Version: 11.0 - Adobe Systems Incorporated) Adobe Reader XI (11.0.12) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated) Adobe Type Support x64 CS4 (Version: 9.0 - Adobe Systems Incorporated) Hidden Adobe WinSoft Linguistics Plugin x64 (Version: 1.1 - Adobe Systems Incorporated) Hidden AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.00.981 - AIMP DevTeam) Aktualizacja produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0415-0000-0000000FF1CE}_ENTERPRISE_{04E205D6-88B1-4652-B162-42DF2C3B1228}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0415-0000-0000000FF1CE}_ENTERPRISE_{442ECBCF-94A7-48CC-8CD9-D31FFFD5FA86}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0415-0000-0000000FF1CE}_ENTERPRISE_{128A36ED-21BE-4547-9FFE-5B85AEC735DD}) (Version: - Microsoft) Aktualizacje NVIDIA 17.12.8 (Version: 17.12.8 - NVIDIA Corporation) Hidden AnyPC Client (HKLM-x32\...\{1AFA1FEF-8CF9-4A51-AC46-64FAA7F3D9E2}) (Version: 1.0.0.25 - Doctorsoft) Archiwizator WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - ) Atheros Client Installation Program (HKLM-x32\...\{D1434266-0486-4469-B338-A60082CC04E1}) (Version: 1.0.2.1119 - Atheros) BatteryLifeExtender (HKLM-x32\...\{853F8A41-A3C9-43FA-87FA-1AE74FC6F3F7}) (Version: 1.0.1 - Samsung) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.0.0.0 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.2 - EA Digital Illusions CE AB) Bezpieczeństwo rodzinne usługi Windows Live (Version: 14.0.8093.805 - Microsoft Corporation) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform) ChargeableUSB (HKLM-x32\...\{92D50865-FC60-4EA8-BA7A-5581B0D13EFB}) (Version: 1.0.0.0 - SAMSUNG) Connect (x32 Version: 1.0.0.1 - Adobe Systems Incorporated) Hidden Counter-Strike (HKLM-x32\...\Steam App 10) (Version: - Valve) Counter-Strike: Condition Zero (HKLM-x32\...\Steam App 80) (Version: - Valve) Counter-Strike: Condition Zero Deleted Scenes (HKLM-x32\...\Steam App 100) (Version: - Valve) CyberLink DVD Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.2806 - CyberLink Corp.) CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1916 - CyberLink Corp.) CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.3108a - CyberLink Corp.) CyberLink PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.3213 - CyberLink Corp.) CyberLink PowerDVD 8 (HKLM-x32\...\InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}) (Version: 8.0.2815b - CyberLink Corp.) CyberLink PowerProducer (HKLM-x32\...\InstallShield_{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version: 5.0.1.1812 - CyberLink Corp.) CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.3625 - CyberLink Corp.) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.4.0316 - DT Soft Ltd) Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment) EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.0.0.1 - Electronic Arts) EaseUS Partition Master 10.5 Trial Edition (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version: - EaseUS) Easy Display Manager (HKLM-x32\...\{17283B95-21A8-4996-97DA-547A48DB266F}) (Version: 3.0 - Samsung Electronics Co., Ltd.) Easy Network Manager (HKLM-x32\...\{34B76DCB-BF7C-440F-B058-C84172C1E338}) (Version: 4.2.8 - Samsung) Easy SpeedUp Manager (HKLM-x32\...\{EF367AA4-070B-493C-9575-85BE59D789C9}) (Version: 3.0.0.5 - Samsung Electronics Co.,Ltd.) EasyBatteryManager (HKLM-x32\...\{178EE5F4-0F86-4BF0-A0D1-9790AFF409D1}) (Version: 4.0.0.3 - Samsung) ESET Smart Security (HKLM\...\{5E36CC8E-12E2-4900-B1EA-9DBE625B9D79}) (Version: 7.0.302.0 - ESET, spol s r. o.) ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB) Euro Truck Simulator 2 (HKLM-x32\...\{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1) (Version: 1.0.5 - SCS Software) Euro Truck Simulator 2 version 1.12.1s + 15 DLC (HKLM-x32\...\Euro Truck Simulator 2_is1) (Version: 1.12.1s + 15 DLC - ) EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.) Gadu-Gadu 6.1 (HKLM-x32\...\Gadu-Gadu) (Version: - ) Galeria fotografii usługi Windows Live (x32 Version: 14.0.8081.709 - Microsoft Corporation) Hidden GameDesire-Pool & Snooker (HKLM-x32\...\GameDesire-Pool & Snooker) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.134 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden Heroes of Might & Magic III - HD Edition (HKLM-x32\...\Heroes of Might & Magic III - HD Edition_is1) (Version: 1.0 - Релиз от R.G. Steamgames) Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment) ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.2.0 - LIGHTNING UK!) inSSIDer (HKLM-x32\...\{BF6379E6-9936-46B0-B6AC-C56EE3987D2E}) (Version: 2.1.1 - MetaGeek) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.5.4.1001 - Intel Corporation) Intel(R) Turbo Boost Technology Driver (HKLM-x32\...\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}) (Version: 01.00.01.1003 - Intel Corporation) Intel(R) Turbo Boost Technology Monitor (HKLM\...\{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}) (Version: 1.0.186.3 - Intel) Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.) Internet Manager (HKLM\...\{27D28586-BEF1-4E06-8787-3B1FC3A41489}) (Version: 1.0.0.3 - ZTE CORPORATION) IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.32 - Irfan Skiljan) Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.550 - Oracle) Junk Mail filter update (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden kuler (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden Marvell Miniport Driver (HKLM-x32\...\Marvell Miniport Driver) (Version: 11.22.3.3 - Marvell) Microsoft .NET Framework 4.5.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation) Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Works (HKLM-x32\...\{306B39C9-3AB1-4161-8567-9C7E50B41AE3}) (Version: 9.7.0621 - Microsoft Corporation) MP3 Cutter 1.8 (HKLM-x32\...\MP3 Cutter_is1) (Version: - Aiv Software) MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden Narzędzie do przekazywania usługi Windows Live (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation) NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation) NVIDIA Sterownik graficzny 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.44 - NVIDIA Corporation) Office Password Unlocker 4.0 (HKLM-x32\...\{A4668F74-30A8-4D55-BD5E-10DBA6DA3F32}_is1) (Version: - Password Unlocker, Inc.) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Origin (HKLM-x32\...\Origin) (Version: 8.5.0.4550 - Electronic Arts, Inc.) Pajączek 5 NxG PRO - Deinstalacja (HKLM-x32\...\Pajączek 5 NxG PRO_is1) (Version: v5.8.0 - Cream Software - Rafał Płatek) Pakiet zgodności dla systemu Office 2007 (HKLM-x32\...\{90120000-0020-0415-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.3.5.2 - Pando Networks Inc.) Panel sterowania NVIDIA 341.44 (Version: 341.44 - NVIDIA Corporation) Hidden PC Tools Registry Mechanic 11.0 (HKLM-x32\...\Registry Mechanic_is1) (Version: 11.0 - PC Tools) PDF Settings CS4 (x32 Version: 9.0 - Adobe Systems Incorporated) Hidden Photoshop Camera Raw (x32 Version: 5.0 - Adobe Systems Incorporated) Hidden Photoshop Camera Raw_x64 (Version: 5.0 - Adobe Systems Incorporated) Hidden Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.8 - Google, Inc.) Poczta usługi Windows Live (x32 Version: 14.0.8089.0726 - Microsoft Corporation) Hidden Podstawowe programy Windows Live (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation) Podstawowe programy Windows Live (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden Pro Evolution Soccer 2014 (HKLM-x32\...\{5EFD3544-2371-4900-8ACA-F157BA80FB0C}) (Version: 1.08.0000 - KONAMI) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6003 - Realtek Semiconductor Corp.) REALTEK Wireless LAN Software (HKLM-x32\...\{F2BC3383-F000-410C-A038-3846ADBE8D90}) (Version: 1.01.0088 - REALTEK Semiconductor Corp.) Samsung Recovery Solution 4 (HKLM-x32\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 4.0.0.6 - Samsung) Samsung R-Series (HKLM-x32\...\{3EED7541-55F8-4DC6-B9CD-28762D71310E}) (Version: 1.0 - Samsung) Samsung Support Center (HKLM-x32\...\{0A353130-D22C-41DD-8C67-1B02A05F2CE0}) (Version: 1.1.0 - Samsung) Samsung Update Plus (HKLM-x32\...\{D3F2FAA5-FEC4-42AA-9ABA-1F763919A2B5}) (Version: 2.0 - Samsung Electronics Co., Ltd.) SHIELD Streaming (Version: 4.0.1000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 17.12.8 - NVIDIA Corporation) Hidden Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation) Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Suite Shared Configuration CS4 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.10.0 - Synaptics Incorporated) System Requirements Lab Detection (HKLM-x32\...\{82728564-FC36-49DB-B07D-81DCD9D42DF8}) (Version: 6.1.4.0 - Husdawg, LLC) TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: - TeamSpeak Systems GmbH) The Elder Scrolls V Skyrim - Legendary Edition (HKLM-x32\...\The Elder Scrolls V Skyrim - Legendary Edition_is1) (Version: - ) The Sims 4 - Deluxe Edition wersja 1.0.797.20 (HKLM-x32\...\{C4DDC9A9-3945-4D10-A90E-5938BA75AD5A}_is1) (Version: 1.0.797.20 - Electronic Arts Inc.) TmNationsForever (HKLM-x32\...\TmNationsForever_is1) (Version: - Nadeo) TomTom HOME (HKLM-x32\...\{7A2BB1C8-903D-4585-9F3B-CADD67D07D37}) (Version: 2.9.8 - Nazwa firmy) TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.) Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH) UltraISO Premium V9.61 (HKLM-x32\...\UltraISO_is1) (Version: - ) Unity Web Player (HKU\S-1-5-21-2195184045-3265951034-2981680463-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) User Guide (HKLM-x32\...\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}) (Version: 1.0 - ) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN) WIDCOMM Bluetooth Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.1.800 - Broadcom Corporation) Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) (HKLM\...\6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1) (Version: 07/30/2009 6.2.0.9405 - Broadcom) Windows Driver Package - Broadcom Bluetooth (09/11/2009 6.2.0.9407) (HKLM\...\3932CA781A7894D20116FDF60F878301800EA8AB) (Version: 09/11/2009 6.2.0.9407 - Broadcom) Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom) Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation) Windows Live Sync (HKLM-x32\...\{2E522ED6-01E2-4207-82D5-B3BFB31B8BD4}) (Version: 14.0.8089.726 - Microsoft Corporation) World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== Restore Points ========================= 07-08-2015 16:33:46 Windows Update 13-08-2015 18:34:35 Kopia zapasowa systemu Windows 13-08-2015 19:01:33 Utworzony przez PC Tools Registry Mechanic 13-08-2015 19:14:03 Windows Update 19-08-2015 18:00:00 Windows Update 19-08-2015 18:05:13 Kopia zapasowa systemu Windows 19-08-2015 21:11:07 Removed AMD APP SDK 2.9. ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:34 - 2015-08-19 22:10 - 00000027 ____A C:\windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0901214D-3A9E-45F8-B643-3CAFEA3D985C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated) Task: {0FC03ED8-1009-4435-960F-9E43900ED509} - System32\Tasks\SamsungSupportCenter => C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe [2009-12-14] (SAMSUNG Electronics) Task: {1616ED09-A5CD-4828-955D-E0259AF4C73D} - System32\Tasks\{1A950CE0-5B55-4837-9632-915B25DA93FF} => C:\Program Files (x86)\McAfee\MSC\mcshell.exe Task: {16F5FCF2-6D41-441F-8959-D1B7C889ABB7} - System32\Tasks\{39A66C1B-1856-4017-9371-9DD4E444DAF9} => H:\Garmin\Apps\Symbian\bin\S60\GMOBILEXT.EXE Task: {22614966-E4D8-43AD-9AF6-FA4C6EEC5A10} - System32\Tasks\EasySpeedUpManager => C:\Program Files (x86)\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe [2009-10-13] (Samsung Electronics Co., Ltd.) Task: {2886CF0E-7007-472D-8FDD-6E12FFE9E85B} - System32\Tasks\RMSchedule => C:\Program Files (x86)\PC Tools Registry Mechanic\RegMech.exe [2011-12-12] (PC Tools) Task: {2CB0AC6F-E031-4FAE-A343-596192043C7A} - System32\Tasks\{9DB0B5ED-39D7-4997-BE10-65470CF55B93} => C:\Program Files (x86)\McAfee\MSC\mcshell.exe Task: {3904734D-FF1E-41C9-9C69-126F3CB41468} - System32\Tasks\{1ED5C693-BE8A-40E7-BDDC-4B3E439CB61F} => H:\Garmin\Apps\Symbian\bin\S60\GMOBILEXT.EXE Task: {494D4D96-2FA8-4EDB-A32C-523019D67B56} - System32\Tasks\advSRS4 => C:\Program Files (x86)\Samsung\Samsung Recovery Solution 4\WCScheduler.exe [2010-01-19] (SEC) Task: {53E4C741-5CBA-45DA-951A-5E3AA1F5A96D} - System32\Tasks\{B829EAFC-AA68-48DD-8F55-503BE8E98B45} => C:\Users\Brave\Downloads\Prince of Persia\PRINCE.EXE Task: {5491D63A-38F6-4A5A-8F06-2484FA9CB088} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-24] (Google Inc.) Task: {5D706D50-C94C-44EF-B8DF-058C772AACA4} - System32\Tasks\{5C256657-4826-44EF-8E94-F38F0B3AFD9F} => C:\Program Files\Steam\Steam.exe Task: {5EA7C7CA-8478-4FC3-BB8A-0B1EB4D31DCE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-24] (Google Inc.) Task: {613179D3-17E6-4356-AA29-9F5487EAB03F} - System32\Tasks\{C3FBD77F-AD13-48F3-81AD-DCDB22C6A213} => C:\Users\Brave\Downloads\Prince of Persia\PRINCE.EXE Task: {67E5390A-0793-4170-9647-AE1AC9302D58} - System32\Tasks\{F6A0F198-F9CA-425B-9467-7B21D68342CA} => H:\Garmin\Apps\Symbian\bin\S60\GMOBILEXT.EXE Task: {6C7D7244-CF99-447E-B737-ED997E3E824D} - System32\Tasks\{870C2326-1FFF-41A5-9822-B4FD5FEDCEBF} => C:\Users\Brave\Downloads\Prince of Persia\PRINCE.EXE Task: {75864C43-5BF1-40D0-A4E2-789C9CBEDF86} - System32\Tasks\{DC99E662-1431-40D0-B629-257EB54CB8F8} => pcalua.exe -a D:\GRY\Diablo-III-8370-plPL-Installer-downloader.exe -d D:\GRY Task: {87ABB3F6-FD98-4592-8394-D60BC98B1BC3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-01-20] (Piriform Ltd) Task: {8DF7FFB9-97EB-4CD3-B36A-F1CE6C735E58} - System32\Tasks\{DE505136-8D97-480C-A58A-1A6E089C59E4} => C:\Users\Brave\Downloads\Prince of Persia\PRINCE.EXE Task: {90499034-C33D-4273-AAA6-77C901E0AFF9} - System32\Tasks\{6664A888-4D2D-470C-8392-7B9F10F99F81} => C:\Users\Brave\Downloads\Prince of Persia\PRINCE.EXE Task: {911D329B-8745-4285-8231-4F7BB16B8411} - System32\Tasks\{6863D1AE-F711-405C-AA65-9CE27829F5BF} => C:\Users\Brave\Downloads\Prince of Persia\PRINCE.EXE Task: {94A6E3E8-62DF-4F3D-8C49-3D3F0B38701F} - System32\Tasks\{E387E122-5058-4413-95A9-275CD221410D} => C:\Users\Brave\Downloads\Prince of Persia\PRINCE.EXE Task: {A00E6391-D4EE-4A4A-A132-6BEFA0BCAD4D} - System32\Tasks\SUPBackground => C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe Task: {A4FC35A1-91E5-4063-B932-F3C9A26CAD52} - System32\Tasks\BatteryLifeExtender => C:\Program Files (x86)\Samsung\BatteryLifeExtender\BatteryLifeExtender.exe [2009-11-19] (Samsung Electronics. Co. Ltd.) Task: {A9E19056-89EE-4634-9712-5DF405F9D391} - System32\Tasks\RMSmartUpdate => C:\Program Files (x86)\PC Tools Registry Mechanic\update.exe [2011-12-12] (PC Tools) Task: {AFAC1353-5AB5-45B3-BACC-747A57D48657} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-19] (Adobe Systems Incorporated) Task: {CC79CFF1-4940-473D-99AF-8EB36C3742DB} - System32\Tasks\EasyDisplayMgr => C:\Program Files (x86)\Samsung\Easy Display Manager\dmhkcore.exe [2009-11-04] (Samsung Electronics Co., Ltd.) Task: {DA2C6E37-0178-4AAD-A5ED-17C279774A57} - System32\Tasks\EasyBatteryManager => C:\Program Files (x86)\Samsung\EasyBatteryManager\EasyBatteryMgr4.exe [2009-10-16] (SAMSUNG Electronics co., LTD.) Task: {DA5FCE3F-2693-4606-8083-18E3B817A321} - System32\Tasks\{6CD1E348-621D-4277-AA13-A29818BAFFC5} => C:\Users\Brave\Downloads\Prince of Persia\PRINCE.EXE Task: {DEAEA475-AED1-4D44-8E44-6335FE29E4BC} - System32\Tasks\{60A261DB-C940-41DC-884B-FB717D24F372} => H:\Garmin\Apps\Symbian\bin\S60\GMOBILEXT.EXE Task: {E9843FE7-8D3C-4DCB-BEA7-A5D57F5523B4} - System32\Tasks\APSchedulerC => C:\Program Files (x86)\AnyPC Client\APLanMgrC.exe [2009-11-20] (DoctorSoft) Task: {E9CCE666-8BE3-4FA4-A3B9-7321BE51B9E5} - System32\Tasks\{12A7A389-06B5-4FD4-8CBC-7A55C43B656A} => I:\Eastern_Europe_937_5913\FastActivate.exe Task: {F5D1005A-E8FF-49D3-85B8-3A22FCF8A355} - System32\Tasks\{5F31AA7A-47AD-4A9E-AE7E-E79062BB7E6F} => C:\Users\Brave\Downloads\Prince of Persia\PRINCE.EXE Task: {FAD03F72-D199-402E-836A-5FB9DD5398D8} - System32\Tasks\{ED4B770B-F1CA-4DBF-9ADA-BDB54ACDE3A0} => C:\Users\Brave\Downloads\Prince of Persia\PRINCE.EXE Task: {FD976792-1CD0-4B6B-A377-E227D27DB390} - System32\Tasks\{EAE965B0-0B6F-4259-B44B-8C8149DD3C63} => C:\Program Files (x86)\McAfee\MSC\mcshell.exe Task: {FEEB075D-750F-42D6-82B7-508C844DD6E2} - System32\Tasks\{68DEBF79-49F4-4FB5-9D7F-470AB120BF87} => C:\Program Files\Steam\Steam.exe (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\windows\Tasks\RMSchedule.job => C:\Program Files (x86)\PC Tools Registry Mechanic\RegMech.exe ==================== Loaded Modules (Whitelisted) ============== 2015-05-17 14:29 - 2015-02-04 04:21 - 00115400 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2011-12-10 18:34 - 2012-02-16 00:24 - 00076888 _____ () C:\windows\SysWOW64\PnkBstrA.exe 2010-03-06 04:13 - 2009-03-05 11:54 - 00311296 _____ () C:\windows\SysWOW64\Rezip.exe 2010-03-06 04:19 - 2009-07-07 20:23 - 00247152 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe 2015-01-21 04:06 - 2015-01-21 04:06 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll 2015-07-14 18:04 - 2015-07-13 23:55 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\libglesv2.dll 2015-07-14 18:04 - 2015-07-13 23:55 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\libegl.dll 2015-07-14 18:04 - 2015-07-13 23:55 - 16308040 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\ProgramData\Temp:D1B5B4F1 ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2195184045-3265951034-2981680463-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Brave\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\windows\pss\Bluetooth.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^mcserver.lnk => C:\windows\pss\mcserver.lnk.CommonStartup MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: AdobeCS4ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin MSCONFIG\startupreg: APLangApp => "C:\Program Files (x86)\AnyPC Client\APLangApp.exe" MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe" MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" MSCONFIG\startupreg: PDVD8LanguageShortcut => "C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe" MSCONFIG\startupreg: RemoteControl8 => "C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe" MSCONFIG\startupreg: RIMBBLaunchAgent.exe => C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe MSCONFIG\startupreg: SSDMonitor => C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: TomTomHOME.exe => "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" MSCONFIG\startupreg: UCam_Menu => "C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" MSCONFIG\startupreg: UpdateLBPShortCut => "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5" MSCONFIG\startupreg: UpdateP2GoShortCut => "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0" MSCONFIG\startupreg: UpdatePDRShortCut => "C:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerDirector" UpdateWithCreateOnce "Software\CyberLink\PowerDirector\7.0" MSCONFIG\startupreg: UpdatePPShortCut => "C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerProducer" UpdateWithCreateOnce "Software\CyberLink\PowerProducer\5.0" MSCONFIG\startupreg: UpdatePSTShortCut => "C:\Program Files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{4967453C-0CD4-4BE6-A616-029BA0B44519}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector\PDR.EXE FirewallRules: [{DA3125DB-8925-4A06-884C-918723864D75}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD8\PowerDVD8.EXE FirewallRules: [{FE34D945-F238-47B1-B6C4-117FE691C367}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{D70ED3E3-E78C-49F5-847E-2185128E82CE}] => (Allow) svchost.exe FirewallRules: [{7549508D-BEC4-4062-BF5B-EBBFBEB8CBD4}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe FirewallRules: [{56B19FFD-F5D4-4A4A-B537-5963E2AAAE92}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{EEECE066-B5E6-4EFC-B4BD-C8B76B04D07E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{35A94AD8-7AF4-4D49-9058-0BE2859468C7}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe FirewallRules: [{4F0601C1-3592-4581-8EE8-9EC31AC524B4}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe FirewallRules: [{F54FFDAC-D840-48C9-98FE-7CDFEA7E3226}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe FirewallRules: [{7B602869-A9EE-4D03-9A6C-26A882BF83B1}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe FirewallRules: [{8A65FDB4-D22B-41C8-B259-832CD6945F33}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe FirewallRules: [{416F4C38-1F4D-4C1C-BD06-3EDE1A52EE7B}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{836A5CF5-F538-499C-9343-55894431ECBD}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{8BB7EFE9-769C-481D-9E18-C1915443EE58}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{18414027-5DB3-4CE6-9307-B43F67D61D02}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{84BD0F92-3A84-4992-93E8-A631278F091F}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe FirewallRules: [{8FDDC4A9-2067-453F-9E8F-F943F4794B03}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe FirewallRules: [{B19CC503-BC5B-44A2-9BB5-77EB7E4B2497}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{3698A3B0-11B2-4C71-8F87-9DFD00961428}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{87006C8B-E018-4B95-BDF5-F0588448406C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{A07024E8-325E-4E2A-B2A0-419003762E9B}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{56F22144-966D-4F77-810D-AFCAF16BA6F8}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{075EC5D1-4F82-4EB1-9882-5CB9E74C24F2}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe FirewallRules: [{F9CD3912-E883-45A9-B4D6-D58042112B53}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe FirewallRules: [{C7ECD291-04AE-4C0E-BCA4-055AB36A546C}] => (Allow) LPort=5353 FirewallRules: [{5488B578-37B3-4D5F-9781-49E770E84646}] => (Allow) C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe FirewallRules: [{CA57CE76-F3F9-4974-B567-B9929836F310}] => (Allow) C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe FirewallRules: [TCP Query User{FA869097-2740-45A5-BEE8-DA7806CE4F85}C:\program files (x86)\gadu-gadu\gg.exe] => (Block) C:\program files (x86)\gadu-gadu\gg.exe FirewallRules: [UDP Query User{FED482E9-D35C-4A76-A9FA-BFF31FA23D59}C:\program files (x86)\gadu-gadu\gg.exe] => (Block) C:\program files (x86)\gadu-gadu\gg.exe FirewallRules: [TCP Query User{40116B90-9376-4812-A9EA-5EE82B76175A}C:\program files (x86)\gadu-gadu\gg.exe] => (Block) C:\program files (x86)\gadu-gadu\gg.exe FirewallRules: [UDP Query User{3CEB4E94-29AD-4CE2-B12B-117742C4FD7A}C:\program files (x86)\gadu-gadu\gg.exe] => (Block) C:\program files (x86)\gadu-gadu\gg.exe FirewallRules: [TCP Query User{4BC5AFB2-5987-4118-AD5B-351681D617C6}D:\gry\diablo-iii-8370-plpl-installer-downloader.exe] => (Block) D:\gry\diablo-iii-8370-plpl-installer-downloader.exe FirewallRules: [UDP Query User{9BDF0846-698C-43E6-B3A4-B16145571B84}D:\gry\diablo-iii-8370-plpl-installer-downloader.exe] => (Block) D:\gry\diablo-iii-8370-plpl-installer-downloader.exe FirewallRules: [TCP Query User{6E3420E6-8A7F-42EE-B0E8-7AEFB8CED5BD}D:\gry\diablo-iii-8370-plpl-installer-downloader.exe] => (Allow) D:\gry\diablo-iii-8370-plpl-installer-downloader.exe FirewallRules: [UDP Query User{9F605059-7280-4848-804B-F307D867143A}D:\gry\diablo-iii-8370-plpl-installer-downloader.exe] => (Allow) D:\gry\diablo-iii-8370-plpl-installer-downloader.exe FirewallRules: [{9D311B0F-D898-4622-A53F-37059E5133C8}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe FirewallRules: [{9A2B9DC1-6A1C-423D-B4B8-B953767C7C92}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe FirewallRules: [{A72BB97F-7E62-4FEF-B6ED-BDB6CCF89E1E}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [{3AAA8513-6DC0-4B28-9C2A-0DBFB11B8F54}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [{3F8EA939-EFA3-404B-AE36-3EBCAAA07666}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe FirewallRules: [{BCAE7B76-9D35-49F9-8664-9024B8611053}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe FirewallRules: [{E8E572F0-4AC3-4B54-A643-B6179501A478}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{EF013FE3-097F-499E-A0C5-8B373E44647E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{325CB0A0-D834-4DE0-8D23-429131740FE8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{83B4CD2B-0BF5-4D90-A6F5-5B6AE12BC6E1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{429677AD-AEBF-46C4-8146-145E54FB98BD}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe FirewallRules: [{724F3AFE-1458-4BEF-AB26-C95CD77B7955}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe FirewallRules: [{4A7BC7BA-5867-4B3D-AE1A-2EACDAC0398F}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{DB5BC9C8-DD53-4371-8F3F-51FF2F8CDC6C}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{C0A4F6C9-2553-4A81-913F-6A49C4E04318}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2816\Agent.exe FirewallRules: [{6DBC6DE6-2FD4-4575-B69D-1C52BD4EEE34}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2816\Agent.exe FirewallRules: [{4D385893-F54A-4102-8254-70537A450A55}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3147\Agent.exe FirewallRules: [{1F843644-7791-4AA1-B7CD-C6FD6C7F1A39}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3147\Agent.exe FirewallRules: [{D5269572-6761-4B98-ABFB-5BF753FC47A8}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{B22C0B06-7DAF-4402-9C38-7D6A28CB6852}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{C6E66BF7-3060-4780-8EAE-7C40E54DAC24}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe FirewallRules: [{06F24454-9D1C-4E42-9D45-91145CA0FF09}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe FirewallRules: [{4E94E76B-7FEB-4AFC-806B-07F26360D6D3}] => (Allow) C:\Users\Brave\Downloads\Compressed\fifa-15-ultimate-edition-team-pl\Fifa.15.PL\Fifa.15.PL\FIFA 15\fifasetup\fifaconfig.exe FirewallRules: [{B1AA2F95-7E7F-4376-96A1-D1DAEA7078B4}] => (Allow) C:\Users\Brave\Downloads\Compressed\fifa-15-ultimate-edition-team-pl\Fifa.15.PL\Fifa.15.PL\FIFA 15\fifasetup\fifaconfig.exe FirewallRules: [{9C0EB409-BD67-4E64-872E-BF2FE3D816F7}] => (Allow) C:\Users\Brave\Downloads\Compressed\fifa-15-ultimate-edition-team-pl\Fifa.15.PL\Fifa.15.PL\FIFA 15\fifasetup\fifaconfig.exe FirewallRules: [{FDAAFC85-7312-4BD2-A8ED-1FBDB62D391F}] => (Allow) C:\Users\Brave\Downloads\Compressed\fifa-15-ultimate-edition-team-pl\Fifa.15.PL\Fifa.15.PL\FIFA 15\fifasetup\fifaconfig.exe FirewallRules: [{527CC74B-63B7-4C9A-B806-EEEDCFB03695}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{6853C534-FDFC-4743-88C8-662B813A9D38}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{11120C68-B13A-44F1-A0CA-DBC5E35B7D19}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (08/01/2015 10:47:03 PM) (Source: TomTomHOMEService) (EventID: 10000) (User: ) Description: TomTomHOMEServiceStartServiceCtrlDispatcher failed with 0 Error: (07/28/2015 05:52:56 PM) (Source: Windows Backup) (EventID: 4100) (User: ) Description: Wykonanie kopii zapasowej nie powiodło się, ponieważ nie można utworzyć kopii w tle. Zwolnij miejsce w stacji dysków kopii zapasowej, usuwając niepotrzebne pliki, i ponów próbę. Error: (07/28/2015 05:52:49 PM) (Source: VSS) (EventID: 12289) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd DeviceIoControl(\\?\Volume{b94adb2e-2952-11df-8d10-806e6f6e6963} - 000000000000013C,0x0053c008,000000000042D020,0,000000000042E430,4096,[0]). hr = 0x80070079, Przekroczono limit czasu semafora. . Operacja: Przetwarzanie metody EndPrepareSnapshots Kontekst: Kontekst wykonywania: System Provider Error: (07/18/2015 12:32:36 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: egui.exe, wersja: 7.0.302.0, sygnatura czasowa: 0x5231910a Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000004108a8d48ff Identyfikator procesu powodującego błąd: 0x9b4 Godzina uruchomienia aplikacji powodującej błąd: 0xegui.exe0 Ścieżka aplikacji powodującej błąd: egui.exe1 Ścieżka modułu powodującego błąd: egui.exe2 Identyfikator raportu: egui.exe3 Error: (07/14/2015 09:15:07 PM) (Source: SideBySide) (EventID: 63) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "assemblyIdentity1". Błąd w pliku manifestu lub w pliku zasad "assemblyIdentity2" w wierszu assemblyIdentity3. Wartość "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" atrybutu "version" elementu "assemblyIdentity" jest nieprawidłowa. Error: (07/14/2015 09:13:28 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"1". Błąd w pliku manifestu lub w pliku zasad "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"2" w wierszu WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"3. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1". Definicja to WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (07/12/2015 08:20:03 PM) (Source: SideBySide) (EventID: 63) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "assemblyIdentity1". Błąd w pliku manifestu lub w pliku zasad "assemblyIdentity2" w wierszu assemblyIdentity3. Wartość "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" atrybutu "version" elementu "assemblyIdentity" jest nieprawidłowa. Error: (07/12/2015 08:18:29 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"1". Błąd w pliku manifestu lub w pliku zasad "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"2" w wierszu WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"3. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1". Definicja to WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (07/08/2015 06:52:48 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: chrome.exe, wersja: 42.0.2311.135, sygnatura czasowa: 0x553ea9d4 Nazwa modułu powodującego błąd: YCWebCameraSource.ax, wersja: 2.0.8320.3402, sygnatura czasowa: 0x4ac5ca7b Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000c9d8 Identyfikator procesu powodującego błąd: 0xafc Godzina uruchomienia aplikacji powodującej błąd: 0xchrome.exe0 Ścieżka aplikacji powodującej błąd: chrome.exe1 Ścieżka modułu powodującego błąd: chrome.exe2 Identyfikator raportu: chrome.exe3 Error: (07/03/2015 07:12:59 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: chrome.exe, wersja: 42.0.2311.135, sygnatura czasowa: 0x553ea9d4 Nazwa modułu powodującego błąd: YCWebCameraSource.ax, wersja: 2.0.8320.3402, sygnatura czasowa: 0x4ac5ca7b Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000c9d8 Identyfikator procesu powodującego błąd: 0x3e8 Godzina uruchomienia aplikacji powodującej błąd: 0xchrome.exe0 Ścieżka aplikacji powodującej błąd: chrome.exe1 Ścieżka modułu powodującego błąd: chrome.exe2 Identyfikator raportu: chrome.exe3 System errors: ============= Error: (08/19/2015 10:10:32 PM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: Usługa PEVSystemStart jest oznaczona jako usługa interakcyjna. System jest jednak skonfigurowany tak, aby nie zezwalać na usługi interakcyjne, dlatego ta usługa może nie działać właściwie. Error: (08/19/2015 10:09:43 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Ładowanie sterownika \??\C:\ComboFix\catchme.sys zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika. Error: (08/19/2015 10:09:43 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Ładowanie sterownika \??\C:\ComboFix\catchme.sys zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika. Error: (08/19/2015 10:05:00 PM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: Usługa PEVSystemStart jest oznaczona jako usługa interakcyjna. System jest jednak skonfigurowany tak, aby nie zezwalać na usługi interakcyjne, dlatego ta usługa może nie działać właściwie. Error: (08/19/2015 09:46:05 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Windows Image Acquisition (WIA) zależy od usługi Wykrywanie sprzętu powłoki, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (08/19/2015 09:44:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Bluetooth Service z powodu następującego błędu: %%109 Error: (08/19/2015 09:44:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Bufor wydruku z powodu następującego błędu: %%1069 Error: (08/19/2015 09:44:56 PM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Usługa Spooler nie może zalogować się jako NT AUTHORITY\SYSTEM za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu: %%50 Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC). Error: (08/19/2015 09:44:27 PM) (Source: Service Control Manager) (EventID: 7032) (User: ) Description: Menedżer sterowania usługami próbował podjąć akcję korekcyjną (Uruchom usługę ponownie) po nieoczekiwanym zakończeniu usługi Windows Search, ale ta akcja nie powiodła się przy następującym błędzie: %%1056. Error: (08/19/2015 09:43:58 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Usługa Google Update (gupdate) niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Microsoft Office: ========================= CodeIntegrity: =================================== Date: 2015-08-19 22:09:43.425 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-08-19 22:09:43.316 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-08-19 22:09:43.082 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-08-19 22:09:42.973 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-02-22 22:41:57.735 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\blackberryncm6_AMD64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-02-22 22:41:57.610 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\blackberryncm6_AMD64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-02-22 22:41:57.486 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\blackberryncm6_AMD64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-02-22 22:41:57.392 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\blackberryncm6_AMD64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-02-22 22:40:24.286 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\blackberryncm6_AMD64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-02-22 22:40:24.161 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\blackberryncm6_AMD64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i5 CPU M 430 @ 2.27GHz Percentage of memory in use: 58% Total physical RAM: 3949.61 MB Available physical RAM: 1620.15 MB Total Virtual: 7897.43 MB Available Virtual: 5430.67 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:202.8 GB) (Free:41.38 GB) NTFS Drive d: () (Fixed) (Total:247.87 GB) (Free:54.26 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: CC5F9E61) Partition 1: (Not Active) - (Size=15 GB) - (Type=27) Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=202.8 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=247.9 GB) - (Type=07 NTFS) ==================== End of log ============================