Additional scan result of Farbar Recovery Scan Tool (x64) Version:17-12-2015 Ran by KO (2015-12-17 23:22:04) Running from C:\Users\KO\Downloads Windows 7 Ultimate Service Pack 1 (X64) (2012-12-19 20:19:31) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-2044814858-3257045265-4192325483-500 - Administrator - Disabled) Guest (S-1-5-21-2044814858-3257045265-4192325483-501 - Limited - Enabled) HomeGroupUser$ (S-1-5-21-2044814858-3257045265-4192325483-1002 - Limited - Enabled) KO (S-1-5-21-2044814858-3257045265-4192325483-1000 - Administrator - Enabled) => C:\Users\KO ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D} AS: Bitdefender Antispyware (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKLM-x32\...\uTorrent) (Version: 3.2.3.28705 - BitTorrent Inc.) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated) Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.228 - Adobe Systems Incorporated) Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.235 - Adobe Systems Incorporated) Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated) Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated) Adobe Reader XI - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated) Adobe Story (HKLM-x32\...\com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.0.571 - Adobe Systems Incorporated) Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.) AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.51.1288, 07.08.2013 - AIMP DevTeam) Aktualizacja produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0415-0000-0000000FF1CE}_ENTERPRISE_{04E205D6-88B1-4652-B162-42DF2C3B1228}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0415-0000-0000000FF1CE}_ENTERPRISE_{442ECBCF-94A7-48CC-8CD9-D31FFFD5FA86}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0415-0000-0000000FF1CE}_ENTERPRISE_{128A36ED-21BE-4547-9FFE-5B85AEC735DD}) (Version: - Microsoft) ALLMediaServer (HKLM-x32\...\{FE77909E-B782-4554-A92A-4D887CEF0ACC}_is1) (Version: 0.94 - ALLCinema Ltd.) ALLPlayer V5.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLCinema Ltd.) AMD Catalyst Install Manager (HKLM\...\{53A19094-2C04-A9B9-7309-3E92152D4845}) (Version: 8.0.903.0 - Advanced Micro Devices, Inc.) AutoCAD 2015 - English (Version: 20.0.51.0 - Autodesk) Hidden AutoCAD 2015 — Polski (Polish) (Version: 20.0.51.0 - Autodesk) Hidden AutoCAD 2015 Language Pack - English (Version: 20.0.51.0 - Autodesk) Hidden AutoCAD 2015 Language Pack – Polski (Polish) (Version: 20.0.51.0 - Autodesk) Hidden Autodesk App Manager (HKLM-x32\...\{C8125548-F2D5-4059-823F-1F3C5BBD9F19}) (Version: 1.2.0 - Autodesk) Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 4.0.69.0 - Autodesk) Autodesk AutoCAD 2015 - English (HKLM\...\AutoCAD 2015 - English) (Version: 20.0.51.0 - Autodesk) Autodesk AutoCAD 2015 Language Pack – Polski (Polish) (HKLM\...\AutoCAD 2015 Language Pack – Polski (Polish)) (Version: 20.0.51.0 - Autodesk) Autodesk AutoCAD Performance Feedback Tool Version 1.2.2 (HKLM-x32\...\{85735431-6CD3-4B16-BEC8-95332034E53B}) (Version: 1.2.2.0 - Autodesk) Autodesk BIM 360 Glue AutoCAD 2015 Add-in 64 bit (HKLM\...\{9D589081-AFC2-4932-9071-AC585AC1EA83}) (Version: 3.32.3004 - Autodesk) Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk) Autodesk Content Service (x32 Version: 3.2.0.0 - Autodesk) Hidden Autodesk Content Service Language Pack (x32 Version: 3.2.0.0 - Autodesk) Hidden Autodesk Featured Apps (HKLM-x32\...\{EDDEE94B-214D-4B07-9727-A3E46F3E379A}) (Version: 1.2.0 - Autodesk) Autodesk Material Library 2015 (HKLM-x32\...\{427F733F-4D6C-45BC-9324-EB743104C321}) (Version: 5.2.9.100 - Autodesk) Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32\...\{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}) (Version: 5.2.9.100 - Autodesk) AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.2.4.155 - AVG Technologies) Bitdefender Total Security (HKLM\...\Bitdefender) (Version: 17.20.0.883 - Bitdefender) bl (x32 Version: 1.0.0 - Your Company Name) Hidden BlueStacks App Player (HKLM-x32\...\{D7E3588F-25E6-4A93-8B1C-596F7951CA38}) (Version: 0.10.7.5601 - BlueStack Systems, Inc.) ChomikBox (HKLM-x32\...\{C7B52FAF-58D8-438C-B810-F78C3C927504}) (Version: 2.0.8.0 - Chomikuj.pl) Creative Audio Control Panel (HKLM-x32\...\AudioCS) (Version: 3.00 - Creative Technology Limited) Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.41 - Creative Technology Limited) Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: 1.03 - Creative Technology Limited) CyberLink PowerDVD 13 (HKLM-x32\...\InstallShield_{3CFDF154-7E60-4E98-A8DF-C693A4F8E6B6}) (Version: 13.0.3105.58 - CyberLink Corp.) CyberLink PowerDVD 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.3917.58 - CyberLink Corp.) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd) Dev-C++ (HKLM-x32\...\Dev-C++) (Version: 5.9.2 - Bloodshed Software) Diagram Designer (HKLM-x32\...\Diagram Designer) (Version: - ) Easy Tune 6 B11.0728.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE) Easy Tune 6 B11.0728.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden FEMAP v11 64-bit (HKLM-x32\...\InstallShield_{61686B5A-C32B-4564-BDFE-26AD8CDB4E72}) (Version: 11.0 - Siemens Product Lifecycle Management Software Inc.) FEMAP v11 64-bit (Version: 11.0 - Siemens Product Lifecycle Management Software Inc.) Hidden Filedrop version 1.1.5 (HKLM-x32\...\{3A309583-1B4A-4C90-85EA-124EB8DB331A}_is1) (Version: 1.1.5 - Filedrop) Free Word To PDF (HKLM-x32\...\Free Word To PDF_is1) (Version: - Free Word To PDF) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.) Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden Happy Cloud Client (HKU\S-1-5-21-2044814858-3257045265-4192325483-1000\...\HappyCloud) (Version: 3.41 - Happy Cloud, Inc.) HP Deskjet 3540 series — podstawowe oprogramowanie urządzenia (HKLM\...\{09A6295E-F212-4D88-8AC7-D728EBC1D036}) (Version: 32.2.188.47710 - Hewlett-Packard Co.) HP LaserJet Professional P1100-P1560-P1600 Series (HKLM\...\HP LaserJet Professional P1100-P1560-P1600 Series) (Version: - ) HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) hppLaserJetService (x32 Version: 001.001.0.0 - Hewlett-Packard) Hidden hppP1100P1560P1600SeriesLaserJetService (x32 Version: 001.001.0.0 - Hewlett-Packard) Hidden hppusgP1100P1560P1600Series (x32 Version: 1.0.0.1 - Hewlett-Packard) Hidden HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.) Java 7 Update 17 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417017FF}) (Version: 7.0.170 - Oracle) Java 7 Update 21 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217021FF}) (Version: 7.0.210 - Oracle) Jing (HKLM-x32\...\{8C784F8B-89D0-4A59-A000-7EEF129E1574}) (Version: 2.9.15255.1 - TechSmith Corporation) K-Lite Codec Pack 10.0.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.0.5 - ) Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve) LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.410 - LogMeIn, Inc.) LogMeIn Hamachi (x32 Version: 2.2.0.410 - LogMeIn, Inc.) Hidden MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden Metric Collection SDK (x32 Version: 1.1.0012.00 - Lenovo Group Limited) Hidden Microsoft .NET Framework 4.5.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) Mozilla Firefox 33.1.1 (x86 pl) (HKLM-x32\...\Mozilla Firefox 33.1.1 (x86 pl)) (Version: 33.1.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla) Mozilla Thunderbird 38.4.0 (x86 pl) (HKLM-x32\...\Mozilla Thunderbird 38.4.0 (x86 pl)) (Version: 38.4.0 - Mozilla) MSI Afterburner 2.3.1 (HKLM-x32\...\Afterburner) (Version: 2.3.1 - MSI Co., LTD) MSI Kombustor 2.5.0 (HKLM-x32\...\{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1) (Version: - MSI Co., LTD) MyPlayer (HKLM-x32\...\MyPlayer) (Version: 2.7.0.10 - MyPortal) NapiProjekt 2.0.0 (build 2151) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.7 - Notepad++ Team) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden ph (x32 Version: 1.0.0 - Your Company Name) Hidden Piwowar (HKLM-x32\...\{43EF8C62-7744-461A-8A62-2471354239C1}) (Version: 1.11.0004 - AGcomp) PxMergeModule (x32 Version: 1.00.0000 - Your Company Name) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.45.516.2011 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6387 - Realtek Semiconductor Corp.) SketchUp 2015 (HKLM\...\{350488A4-1540-4103-8F01-B27503891EB0}) (Version: 15.3.331 - Trimble Navigation Limited) SketchUp Import (HKLM-x32\...\{C403E867-FCF1-432B-BCC1-8FFD40A10A6E}) (Version: 1.2.0 - Autodesk) Skype™ 7.15 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.15.103 - Skype Technologies S.A.) SpyHunter (HKLM-x32\...\{4FC9DA9D-F608-454E-8191-D7EFFDCC5726}) (Version: 4.1.11 - Enigma Software Group USA, LLC) Starbound (HKLM-x32\...\Steam App 211820) (Version: - ) Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation) Total CMA Pack 0.58 (HKLM-x32\...\Total CMA Pack) (Version: 0.58 - CMA) Unified Remote (HKLM-x32\...\{D7930C67-5816-417B-BF28-54BB75EFDAF9}) (Version: 2.14.4.0 - Unified Remote) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player 2.0.5 (HKLM-x32\...\VLC media player) (Version: 2.0.5 - VideoLAN) WinRAR 4.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH) WRFSL (x32 Version: 1.02.001 D - Asseco Poland S.A.) Hidden WRFSL 1.02.001 D (HKLM-x32\...\{98A95680-71E0-4C6B-B3D0-384193FCA4F6}) (Version: 1.02.001 D - Asseco Poland S.A.) Xiph.Org Ogg Codecs 0.83.17220 32-bit (HKLM-x32\...\Ogg Codecs) (Version: 0.83.17220 - Xiph.Org) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-2044814858-3257045265-4192325483-1000_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-2044814858-3257045265-4192325483-1000_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-2044814858-3257045265-4192325483-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2015\en-US\acadficn.dll (Autodesk, Inc.) ==================== Restore Points ========================= 17-12-2015 13:20:03 Scheduled Checkpoint 17-12-2015 21:17:44 Installed SpyHunter 17-12-2015 22:47:04 Installed Microsoft Fix it 50688 ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:34 - 2015-12-17 22:36 - 00001086 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 systweak.com 127.0.0.1 updateservice1.systweak.com 127.0.0.1 www.systweak.com 127.0.0.1 systemspeedup.systweak.com 127.0.0.1 systweak.com/STCheckGenuineness ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0E7839FE-EE11-47EF-8C4F-D063070EC499} - System32\Tasks\{2FE8B0D1-4608-4F26-A63F-A98671E9D533} => pcalua.exe -a "C:\Program Files (x86)\Steam\steam.exe" -c steam://uninstall/1250 Task: {0F3AE62F-CE3B-401C-8795-F48408F0BCB2} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-08] (Lenovo) Task: {2C6EA660-D6E9-4256-9747-59C2C4015781} - System32\Tasks\CTF Host => C:\Users\KO\AppData\Roaming\.minecraft\Ctfhost\ctfhost.exe Task: {41367201-68CD-439F-AC64-CE8DD36F930C} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender\bdproductdata.exe [2015-07-29] (Bitdefender) Task: {41CC1B16-9794-4E8C-AA02-1E18066C816E} - System32\Tasks\ALL Update => C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe [2013-04-14] (ALLPlayer Group Ltd.) Task: {44DD1140-7D9A-40EF-A077-5391881B558C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-09] (Adobe Systems Incorporated) Task: {4E897B6B-2987-4475-8906-E3436FC3B2BC} - System32\Tasks\DLL-Files.Com Fixer_MONTHLY => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe Task: {AA547EB9-414D-4777-B9EE-4577E55B8EB6} - System32\Tasks\SpyHunter4Startup => C:\Program Files (x86)\Enigma Software Group\SpyHunter\Spyhunter4.exe [2015-12-17] (Enigma Software Group USA, LLC.) Task: {AD58BF4F-7881-4EE2-B10E-28BCDF613FF1} - System32\Tasks\0915wtUpdateInfo => C:\ProgramData\Avg_Update_0915wt\0915wt_{FBDD9017-B407-48D7-A009-BB1636219C98}.exe Task: {CE1C38E9-EC40-4587-911F-911153215090} - System32\Tasks\{B3996386-9F10-46F8-8A21-547C99CD2D54} => pcalua.exe -a I:\SISetup.exe -d I:\ Task: {D5D1DDBD-05C1-4939-829A-498DB1B83F44} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12] (Oracle Corporation) Task: {ED16E6E4-E316-476D-A6A2-84D165555F57} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {F0F9C490-E997-4399-B353-BE67955A8CC8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {F0FB22AB-0316-466B-B3A2-259321D03A34} - \Program aktualizacji online firmy Adobe. -> No File <==== ATTENTION Task: {F12E955B-5C71-49AD-ADFF-BB48133F2220} - System32\Tasks\DLL-Files.Com Fixer_Updates => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\0915wtUpdateInfo.job => C:\ProgramData\Avg_Update_0915wt\0915wt_{FBDD9017-B407-48D7-A009-BB1636219C98}.exe Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe Task: C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Shortcuts ============================= (The entries could be listed to be restored or removed.) ShortcutWithArgument: C:\Users\KO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1450070380&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=wpm07173&uid=ST3250410AS_6RY1WRLEXXXX6RY1WRLE ShortcutWithArgument: C:\Users\KO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1450070380&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=wpm07173&uid=ST3250410AS_6RY1WRLEXXXX6RY1WRLE ShortcutWithArgument: C:\Users\KO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Program uruchamiający aplikacje Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1450070380&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=wpm07173&uid=ST3250410AS_6RY1WRLEXXXX6RY1WRLE ShortcutWithArgument: C:\Users\KO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1450070380&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=wpm07173&uid=ST3250410AS_6RY1WRLEXXXX6RY1WRLE ShortcutWithArgument: C:\Users\KO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1450070380&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=wpm07173&uid=ST3250410AS_6RY1WRLEXXXX6RY1WRLE ShortcutWithArgument: C:\Users\KO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1450070380&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=wpm07173&uid=ST3250410AS_6RY1WRLEXXXX6RY1WRLE ShortcutWithArgument: C:\Users\KO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1450070380&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=wpm07173&uid=ST3250410AS_6RY1WRLEXXXX6RY1WRLE ShortcutWithArgument: C:\Users\KO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1450070380&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=wpm07173&uid=ST3250410AS_6RY1WRLEXXXX6RY1WRLE ShortcutWithArgument: C:\Users\KO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1450070380&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=wpm07173&uid=ST3250410AS_6RY1WRLEXXXX6RY1WRLE ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1450070380&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=wpm07173&uid=ST3250410AS_6RY1WRLEXXXX6RY1WRLE ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1450070380&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=wpm07173&uid=ST3250410AS_6RY1WRLEXXXX6RY1WRLE ==================== Loaded Modules (Whitelisted) ============== 2014-10-13 18:13 - 2014-10-13 18:13 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender\txmlutil.dll 2014-08-13 15:07 - 2014-08-13 15:07 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\accessl.ui 2013-10-28 19:31 - 2011-11-14 20:17 - 00153680 _____ () C:\Program Files\Bitdefender\Bitdefender\bdfwcore.dll 2013-10-28 19:31 - 2014-08-13 15:06 - 00004608 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\IMSecurityAL.ui 2015-12-03 20:17 - 2015-12-03 20:17 - 00876888 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_031\ashttpbr.mdl 2015-12-03 20:17 - 2015-12-03 20:17 - 00742976 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_031\ashttpdsp.mdl 2015-12-03 20:17 - 2015-12-03 20:18 - 02803536 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_031\ashttpph.mdl 2015-12-03 20:17 - 2015-12-03 20:18 - 01415584 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_031\ashttprbl.mdl 2015-09-13 19:00 - 2015-12-17 12:39 - 01164688 _____ () C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe 2015-04-05 00:24 - 2010-03-04 15:56 - 00289280 _____ () C:\Windows\System32\HP1100LM.DLL 2015-04-05 00:25 - 2010-03-04 15:56 - 00074240 _____ () C:\Windows\system32\spool\PRTPROCS\x64\HP1100PP.DLL 2012-12-20 12:45 - 2011-03-02 12:40 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll 2015-09-13 19:00 - 2015-12-17 12:39 - 02814864 _____ () C:\Program Files (x86)\AVG Web TuneUp\vprot.exe 2015-12-17 12:39 - 2015-12-17 12:39 - 00192912 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.2.4\loggingserver.exe 2013-10-28 19:31 - 2013-03-25 16:16 - 01117920 _____ () C:\Program Files\Bitdefender\Bitdefender SafeBox\System.Data.SQLite.dll 2015-03-10 20:00 - 2014-12-05 03:27 - 00055688 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll 2015-03-10 20:00 - 2014-12-05 03:27 - 00104328 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll 2010-05-18 16:54 - 2010-05-18 16:54 - 00395776 _____ () C:\Program Files (x86)\Enigma Software Group\SpyHunter\ExecutionGuard.dll 2014-04-25 19:21 - 2014-02-19 04:21 - 00541683 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DMS\sqlite3.dll 2013-10-28 19:31 - 2014-10-13 18:13 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender\antispam32\txmlutil.dll 2015-11-14 03:30 - 2015-11-14 03:30 - 00147136 ____R () C:\Program Files (x86)\Skype\Phone\ssScreenVVS2.dll 2014-04-25 19:20 - 2014-03-17 07:38 - 00866056 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\common\UNO\UNO.dll 2014-04-25 19:20 - 2013-12-10 08:39 - 00074240 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Common\Koan\_ctypes.pyd 2014-04-25 19:20 - 2013-12-10 08:39 - 00285184 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Common\Koan\_hashlib.pyd 2014-04-25 19:20 - 2013-12-10 08:39 - 00040960 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Common\Koan\_socket.pyd 2014-04-25 19:20 - 2013-12-10 08:39 - 00721920 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Common\Koan\_ssl.pyd 2014-04-25 19:20 - 2014-03-17 07:38 - 00043784 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DHProcedure\DHProcedure.dll 2015-12-17 12:39 - 2015-12-17 12:39 - 00533904 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.2.4\log4cplusU.dll 2014-04-25 19:20 - 2014-03-17 07:27 - 00337920 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Common\sqlite3.dll 2014-04-25 19:20 - 2014-03-17 04:10 - 00249344 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Common\NavFilter\libebml.dll 2014-04-25 19:20 - 2014-03-17 04:10 - 00548352 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Common\NavFilter\libmatroska.dll 2015-12-16 20:15 - 2015-12-11 04:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll 2015-12-16 20:15 - 2015-12-11 04:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll 2015-12-16 20:15 - 2015-12-11 04:54 - 16573256 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\PepperFlash\pepflashplayer.dll 2015-12-03 22:15 - 2015-12-03 22:15 - 00153768 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll 2015-12-03 22:15 - 2015-12-03 22:15 - 00023208 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Windows\SysWOW64\FlashPlayerInstaller.exe:BDU AlternateDataStreams: C:\ProgramData\Microsoft:ecSWXQzQmt0NYxUedBRJg AlternateDataStreams: C:\ProgramData\Microsoft:NaZu2xXXVCcoQdibmem30Mu4 AlternateDataStreams: C:\ProgramData\Microsoft:YEQkrOj5IinKrit2 AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm AlternateDataStreams: C:\ProgramData\TEMP:4FC01C57 AlternateDataStreams: C:\Users\KO\Desktop\HijackThis.exe:BDU AlternateDataStreams: C:\Users\KO\Downloads\BlueStacks-Installer_native.exe:BDU AlternateDataStreams: C:\Users\KO\Downloads\FRST64.exe:BDU AlternateDataStreams: C:\Users\KO\Downloads\sh-remover.exe:BDU ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2044814858-3257045265-4192325483-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\KO\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 62.179.1.61 - 62.179.1.63 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{657A44E1-BDE4-48EB-A60E-A6406E6F9353}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe FirewallRules: [{AD2295E7-F2C7-42B1-913F-38C248AE0D93}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe FirewallRules: [{01BED5AB-E382-44BB-AD31-3EC221AC8C3B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{736300F7-38B8-49C1-9FB2-3D981B5C0EC6}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe FirewallRules: [UDP Query User{BD7C97AC-F07F-476A-87A6-5EE855305472}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe FirewallRules: [TCP Query User{1C5ADD18-C64A-4386-811F-0E6001405E38}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe FirewallRules: [UDP Query User{1C424732-95DB-479C-BA37-6A0ACFEEBE3D}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe FirewallRules: [TCP Query User{024A57C0-B652-404D-A4BC-BCC1AA858AFF}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [UDP Query User{A0845DEE-7B9D-40DA-9817-66846CD0B264}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [{28B9780F-3DE9-4335-936C-251708866417}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{9EE894A6-74EB-40DB-B2E0-778CC2A0B176}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{D435AC2D-480E-4BD9-B8E3-A1165A9D34F1}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13.exe FirewallRules: [{A5AC150D-5B52-4D20-9DBD-62E509E5D9B6}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe FirewallRules: [{09EAC46E-060D-4A03-87A5-D4394BE875A4}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe FirewallRules: [{36ECA461-5909-40F9-A193-8AC3FA6A86D8}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13ML.exe FirewallRules: [{5D2D61B5-F7B5-40A6-9D19-8F6C7C5593A1}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Movie\PowerDVD.exe FirewallRules: [{66393F7E-86A6-4CEE-8993-C7B37A0DFC06}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Movie\PowerDVD Cinema\PowerDVDCinema13.exe FirewallRules: [{CB2E4A5B-4FE4-48A6-B60C-485F1A8828AB}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD11\Movie\PowerDVD Cinema\PowerDVDCinema11.exe FirewallRules: [{8836D77F-0A31-4D02-ADB7-A1BA785DA974}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD11\PowerDVD11.exe FirewallRules: [{334D01BA-0B0F-4705-AF65-F54E59B27010}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD11\PDVD11Serv.exe FirewallRules: [{BE348C2B-CB0F-4FBC-A604-332C9A0324BF}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe FirewallRules: [TCP Query User{C5AB3382-DE43-49D0-B5B3-36B101C48782}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe FirewallRules: [UDP Query User{EFDEE0B6-4752-4FAA-B340-B42925B408ED}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe FirewallRules: [TCP Query User{2B5EA993-1966-4955-A41C-01F9EA5ECFBC}C:\games\terraria\terrariaserver.exe] => (Allow) C:\games\terraria\terrariaserver.exe FirewallRules: [UDP Query User{0455616A-067C-45AA-8B30-70F90000A245}C:\games\terraria\terrariaserver.exe] => (Allow) C:\games\terraria\terrariaserver.exe FirewallRules: [TCP Query User{A5DB4799-AE8C-482E-9DAD-86836AD848E3}E:\downloads\terraria-server-122\terrariaserver.exe] => (Allow) E:\downloads\terraria-server-122\terrariaserver.exe FirewallRules: [UDP Query User{92DC30F5-BB70-4F65-BD88-1C07E6545393}E:\downloads\terraria-server-122\terrariaserver.exe] => (Allow) E:\downloads\terraria-server-122\terrariaserver.exe FirewallRules: [{4208FE63-40A2-4957-A255-200EA589EB79}] => (Block) E:\downloads\terraria-server-122\terrariaserver.exe FirewallRules: [{65A2A459-282A-4F72-A99C-44691A15F103}] => (Block) E:\downloads\terraria-server-122\terrariaserver.exe FirewallRules: [TCP Query User{0F6F7BF6-A566-4E70-9E90-1E497DEF1CD4}E:\downloads\tshock.4.2\terrariaserver.exe] => (Allow) E:\downloads\tshock.4.2\terrariaserver.exe FirewallRules: [UDP Query User{B716B1B5-87DB-42E9-B3E6-400F907A1450}E:\downloads\tshock.4.2\terrariaserver.exe] => (Allow) E:\downloads\tshock.4.2\terrariaserver.exe FirewallRules: [{667F5CA3-9937-4B18-AEB3-90FC1ABB03AC}] => (Block) E:\downloads\tshock.4.2\terrariaserver.exe FirewallRules: [{B3F385AC-45BC-4B5F-B8AB-E6CBB765AB32}] => (Block) E:\downloads\tshock.4.2\terrariaserver.exe FirewallRules: [TCP Query User{CDB221E9-A082-4986-84CC-17E805A0A90D}C:\program files (x86)\steam\steamapps\common\starbound\win32\starbound_server.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\starbound\win32\starbound_server.exe FirewallRules: [UDP Query User{5A0424F0-F4EC-497D-8CE5-DF98C9863D6E}C:\program files (x86)\steam\steamapps\common\starbound\win32\starbound_server.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\starbound\win32\starbound_server.exe FirewallRules: [{F94B7A33-502D-4746-9FB0-3B2E3B84646F}] => (Block) C:\program files (x86)\steam\steamapps\common\starbound\win32\starbound_server.exe FirewallRules: [{6F1C8E09-67D3-4E45-9D5E-B59ABD327E73}] => (Block) C:\program files (x86)\steam\steamapps\common\starbound\win32\starbound_server.exe FirewallRules: [TCP Query User{A3B027E1-DABC-4822-A86B-7EB134491479}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe FirewallRules: [UDP Query User{4CC18594-592A-4B9B-8D7D-56A968042115}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe FirewallRules: [{8D5BE8B5-2547-4448-AC1F-8DC4175727E0}] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe FirewallRules: [{21458BF5-CBA5-4203-828E-F38D9FC9593D}] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe FirewallRules: [{12CDD6BF-9A03-45E7-B869-B2937F7F7F9B}] => (Allow) LPort=53168 FirewallRules: [{0CC2E540-AE30-46C8-81BF-90A28DA79E00}] => (Allow) LPort=2869 FirewallRules: [{B6A97305-0B99-4F6F-B70B-78DD005EA7DC}] => (Allow) LPort=1900 FirewallRules: [{0E2F9D92-87E2-441A-9E45-5E69F8126C9F}] => (Allow) LPort=53168 FirewallRules: [{5EF10AC6-E54C-4265-A67B-92B508B0AAD6}] => (Allow) LPort=2869 FirewallRules: [{5FABAB9C-2C04-4806-8608-FBEF2CF70D8A}] => (Allow) LPort=1900 FirewallRules: [{AFDD1AA0-5B20-4D75-874C-311ADA848656}] => (Allow) LPort=53168 FirewallRules: [{3F0FF638-125F-4CCD-A15E-ABE4417FC60E}] => (Allow) LPort=2869 FirewallRules: [{0D19E8AD-2CE4-4E03-A835-844523E09A51}] => (Allow) LPort=1900 FirewallRules: [TCP Query User{518FE239-2221-4BF0-98FD-99D108E9DC46}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [UDP Query User{E491B52F-5AD2-4DA1-BD3B-88D2DA5E70E0}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [TCP Query User{0FE07F54-5DB0-4AE6-B117-8AAE4486DCBC}C:\games\world_of_warplanes\wowplauncher.exe] => (Allow) C:\games\world_of_warplanes\wowplauncher.exe FirewallRules: [UDP Query User{759ADF43-2D00-42A2-929F-5D4F85D1DC58}C:\games\world_of_warplanes\wowplauncher.exe] => (Allow) C:\games\world_of_warplanes\wowplauncher.exe FirewallRules: [{DFF5C705-7E69-4238-9590-2D15BFD8752E}] => (Block) C:\games\world_of_warplanes\wowplauncher.exe FirewallRules: [{CD2349BD-9B07-4A89-8A03-F446FB9D14CF}] => (Block) C:\games\world_of_warplanes\wowplauncher.exe FirewallRules: [{B4DE4B50-7F28-43B9-8567-D98C31DF5905}] => (Allow) C:\Program Files (x86)\WarThunder\launcher.exe FirewallRules: [{A525DEC4-BDBC-4231-B8A0-1139ACEE656B}] => (Allow) C:\Program Files (x86)\WarThunder\launcher.exe FirewallRules: [TCP Query User{404B4489-29BE-431C-9EE9-5E34D463659B}C:\program files (x86)\warthunder\aces.exe] => (Allow) C:\program files (x86)\warthunder\aces.exe FirewallRules: [UDP Query User{1AE5B4AC-9D17-494D-82DB-286CC03B4157}C:\program files (x86)\warthunder\aces.exe] => (Allow) C:\program files (x86)\warthunder\aces.exe FirewallRules: [{7855D976-1623-453C-8F09-C423945A96E6}] => (Block) C:\program files (x86)\warthunder\aces.exe FirewallRules: [{293EFD28-EEAF-411D-9BA9-CFE2F93DC32A}] => (Block) C:\program files (x86)\warthunder\aces.exe FirewallRules: [TCP Query User{EA62E585-B0B0-4789-AD43-CDD3DDAEEA8C}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe FirewallRules: [UDP Query User{41FC164D-5D79-4A4B-84C5-E3D5AA010954}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe FirewallRules: [{62EAEA8A-144C-4AC8-9A19-8E1D4AB274BA}] => (Block) C:\windows\syswow64\javaw.exe FirewallRules: [{1B187728-614D-4E14-979B-E33850159F30}] => (Block) C:\windows\syswow64\javaw.exe FirewallRules: [TCP Query User{118AB9F6-B432-4EAD-9CD7-953EB7A40A28}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Allow) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe FirewallRules: [UDP Query User{D3842595-9815-40AF-84CA-A82B6DF6342E}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Allow) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe FirewallRules: [{9EC66223-5776-451D-AD58-9C6455D69F3F}] => (Block) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe FirewallRules: [{6B3099DD-1787-41F2-B817-91DF452C3A84}] => (Block) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe FirewallRules: [{34A82225-8226-44CE-B655-B685EE3A86C8}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe FirewallRules: [{43BCA25C-0C9C-406B-8A22-8FFE96367D90}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe FirewallRules: [{A15F016C-3BDA-43C1-974D-F2E1E9CD85A0}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe FirewallRules: [{794329CC-2618-4A75-959A-78E63C6FF45F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe FirewallRules: [{7E34AADA-702A-42EF-BED3-EA81E5B9307D}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe FirewallRules: [TCP Query User{11E09909-CBA3-4636-989B-0251F873571E}C:\program files (x86)\flashget network\flashget 3\flashget3.exe] => (Allow) C:\program files (x86)\flashget network\flashget 3\flashget3.exe FirewallRules: [UDP Query User{AC07CE5B-4F10-413B-B34C-6593A80E6EFC}C:\program files (x86)\flashget network\flashget 3\flashget3.exe] => (Allow) C:\program files (x86)\flashget network\flashget 3\flashget3.exe FirewallRules: [{6CE57AA8-BC03-4C07-9913-C6BBEB05195C}] => (Block) C:\program files (x86)\flashget network\flashget 3\flashget3.exe FirewallRules: [{29E11FB2-AAD0-454F-89A0-C36330CC5E25}] => (Block) C:\program files (x86)\flashget network\flashget 3\flashget3.exe FirewallRules: [TCP Query User{FCEA8097-61CB-4D6A-B172-C5A59F6BCE62}C:\program files (x86)\steam\steamapps\common\nether\game\binaries\win64\nether.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\nether\game\binaries\win64\nether.exe FirewallRules: [UDP Query User{3A1C8675-5125-41D9-A607-5713326368A3}C:\program files (x86)\steam\steamapps\common\nether\game\binaries\win64\nether.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\nether\game\binaries\win64\nether.exe FirewallRules: [{34EFA2E7-7F18-476C-A4BC-18FE7C532D3F}] => (Block) C:\program files (x86)\steam\steamapps\common\nether\game\binaries\win64\nether.exe FirewallRules: [{06F13CF9-83AB-49E6-80FA-CB26CA41D698}] => (Block) C:\program files (x86)\steam\steamapps\common\nether\game\binaries\win64\nether.exe FirewallRules: [{99865DC8-B035-4197-8A61-BAFD55674852}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{CEE89157-3885-4F67-AEF3-943EFF53BCA5}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{1440C12C-5F81-4EF6-B797-9E119AEFBCDF}] => (Allow) C:\Program Files (x86)\CDP Games\The Witcher 2 Enhanced Edition\Launcher.exe FirewallRules: [{889E54DC-4E25-4E1A-B7C3-E967B5EB3299}] => (Allow) C:\Program Files (x86)\CDP Games\The Witcher 2 Enhanced Edition\bin\witcher2.exe FirewallRules: [TCP Query User{BF6D1068-620F-4025-9336-293BD45B55D9}C:\program files (x86)\unified remote\remoteserver.exe] => (Allow) C:\program files (x86)\unified remote\remoteserver.exe FirewallRules: [UDP Query User{6DD2A514-2531-4AAC-833F-F6CD6E6B0E77}C:\program files (x86)\unified remote\remoteserver.exe] => (Allow) C:\program files (x86)\unified remote\remoteserver.exe FirewallRules: [{5E99A7DD-A8AB-4AD4-B104-0E0D021574E7}] => (Block) C:\program files (x86)\unified remote\remoteserver.exe FirewallRules: [{B9D5EC2F-F403-4349-A9BE-3910D5444F44}] => (Block) C:\program files (x86)\unified remote\remoteserver.exe FirewallRules: [{8037F766-3D81-477E-984D-EFC2F15C2ACC}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{05819B21-46C9-4B0B-BB76-D75D4A7324A8}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{50A0A788-A370-4719-85DF-32CC09FEF852}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{FECE0B68-D0DF-4FAA-8311-DDE0ACA4F069}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{F5F46E37-1A8F-4EFC-B4AE-E43ADADFF12E}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [TCP Query User{5E23DD4C-B975-4554-A6E5-5C719F7D538F}C:\program files (x86)\dying light\dyinglightgame.exe] => (Block) C:\program files (x86)\dying light\dyinglightgame.exe FirewallRules: [UDP Query User{400B1975-C58D-4950-A514-870438FFEB05}C:\program files (x86)\dying light\dyinglightgame.exe] => (Block) C:\program files (x86)\dying light\dyinglightgame.exe FirewallRules: [{3F94857E-F622-4594-B61B-F89CD534CC0D}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{C13D0ED1-32F8-475F-8FE9-9E25767BF651}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{D30F8DEA-6CD3-4463-951A-EF74E4C5C632}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{1F3745C6-9781-4158-8C85-3EF682F9E1A5}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{54376960-1600-4A23-8393-812DA8FEE289}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{E13DCD0C-F98E-4851-A4B3-A4F05E4829BD}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{8D49D224-7E29-43B5-9D35-8F5F06D8BDEE}] => (Allow) LPort=50248 FirewallRules: [TCP Query User{9ACDE043-E73D-40E3-9414-C0C949D9DECD}C:\program files (x86)\filedrop\filedrop.exe] => (Allow) C:\program files (x86)\filedrop\filedrop.exe FirewallRules: [UDP Query User{8CEB0479-5AF0-4244-9200-87503AC70255}C:\program files (x86)\filedrop\filedrop.exe] => (Allow) C:\program files (x86)\filedrop\filedrop.exe FirewallRules: [{95A41DA3-E0BC-40CC-AD18-3F6E3874817C}] => (Block) C:\program files (x86)\filedrop\filedrop.exe FirewallRules: [{96B3FA5B-A5E1-4F1D-BC0C-EC0209B47B28}] => (Block) C:\program files (x86)\filedrop\filedrop.exe FirewallRules: [{EE7C6175-AA04-4B00-96B8-34C3556FD2F1}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{B0C99AB0-522D-47EF-BB49-3DB54C9612F9}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{CC5E1DEF-06EA-437B-8D56-1060CABF9204}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{EBEE9AA4-8A28-4238-AD09-6F1BB7C74495}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{12ADBC19-2186-49E2-A1B3-05FDDDDBCAF0}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{EAA51D65-87EB-4C8A-A806-A8FC54437E0F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{3B1C455B-123D-4464-A347-102BE42772D9}] => (Allow) C:\Program Files\HP\HP Deskjet 3540 series\Bin\DeviceSetup.exe FirewallRules: [{7E154FFA-6F8A-4EC7-96D2-AF098797802B}] => (Allow) LPort=5357 FirewallRules: [{05783188-59B8-436A-813B-77DBB12161D9}] => (Allow) C:\Program Files\HP\HP Deskjet 3540 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{7C7CC86C-EDFF-4B3B-980D-874A6212E0A8}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{553E780B-4691-484C-95A8-26EAB6034B88}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{AC4B2E52-5918-4255-93B0-9758AD8673E8}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{7BB7D0DF-E88C-4842-A6A1-F0D82A498588}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{BAC924F4-BD72-4345-967C-8A573C972A56}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{D16212C1-7CBF-4CD6-8BA4-FAC6FCD8AE09}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{AD71A4EF-5504-4D57-9AEA-955009051023}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{2D3DFD4F-0903-4C31-A114-23AF84D927F9}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{4EFCD5CF-CE78-4F52-ABF0-761C85EF31D9}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{6FA52049-F02F-49A7-9A64-CF0CA6B1C098}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{D9EF9E1F-4BA7-4D23-9D8F-294B3058E461}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{DFE31CB7-61F5-4641-9A08-25FAA0558944}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{4DF23B83-14DB-4174-9DE5-7B817F4CC47D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{286F7FAD-0491-41FA-AC7A-CDC5DBD6D6C6}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{A7335D32-E0AB-43E6-86EB-71719EC6DA47}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{58E2035E-64AA-4633-8FE4-E7E7BFB25CFE}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{E4A927F6-8768-4119-AEA5-CC88C0059885}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe] => Enabled:Flashget3 ==================== Faulty Device Manager Devices ============= Name: esgiguard Description: esgiguard Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: esgiguard Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (11/25/2015 03:54:57 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: ) Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile C:\Program Files (x86)\BlueStacks\HD-CreateSymlink.exe because this image is a 64bit assembly; try using 64bit ngen instead. Error: (11/19/2015 10:59:07 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: ctfhost.exe, wersja: 6.1.7600.16385, sygnatura czasowa: 0x561598f1 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000000000000000 Identyfikator procesu powodującego błąd: 0x14d4 Godzina uruchomienia aplikacji powodującej błąd: 0xctfhost.exe0 Ścieżka aplikacji powodującej błąd: ctfhost.exe1 Ścieżka modułu powodującego błąd: ctfhost.exe2 Identyfikator raportu: ctfhost.exe3 Error: (11/18/2015 12:24:57 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: ctfhost.exe, wersja: 6.1.7600.16385, sygnatura czasowa: 0x561598f1 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000000000000000 Identyfikator procesu powodującego błąd: 0x1804 Godzina uruchomienia aplikacji powodującej błąd: 0xctfhost.exe0 Ścieżka aplikacji powodującej błąd: ctfhost.exe1 Ścieżka modułu powodującego błąd: ctfhost.exe2 Identyfikator raportu: ctfhost.exe3 Error: (11/16/2015 05:48:49 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: ctfhost.exe, wersja: 6.1.7600.16385, sygnatura czasowa: 0x561598f1 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000000000000000 Identyfikator procesu powodującego błąd: 0xb04 Godzina uruchomienia aplikacji powodującej błąd: 0xctfhost.exe0 Ścieżka aplikacji powodującej błąd: ctfhost.exe1 Ścieżka modułu powodującego błąd: ctfhost.exe2 Identyfikator raportu: ctfhost.exe3 Error: (11/15/2015 04:00:51 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: ctfhost.exe, wersja: 6.1.7600.16385, sygnatura czasowa: 0x561598f1 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000000000000000 Identyfikator procesu powodującego błąd: 0x534 Godzina uruchomienia aplikacji powodującej błąd: 0xctfhost.exe0 Ścieżka aplikacji powodującej błąd: ctfhost.exe1 Ścieżka modułu powodującego błąd: ctfhost.exe2 Identyfikator raportu: ctfhost.exe3 Error: (11/14/2015 07:42:58 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: ctfhost.exe, wersja: 6.1.7600.16385, sygnatura czasowa: 0x561598f1 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000000000000000 Identyfikator procesu powodującego błąd: 0x134 Godzina uruchomienia aplikacji powodującej błąd: 0xctfhost.exe0 Ścieżka aplikacji powodującej błąd: ctfhost.exe1 Ścieżka modułu powodującego błąd: ctfhost.exe2 Identyfikator raportu: ctfhost.exe3 Error: (11/14/2015 10:19:22 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: ctfhost.exe, wersja: 6.1.7600.16385, sygnatura czasowa: 0x561598f1 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000000000000000 Identyfikator procesu powodującego błąd: 0xe50 Godzina uruchomienia aplikacji powodującej błąd: 0xctfhost.exe0 Ścieżka aplikacji powodującej błąd: ctfhost.exe1 Ścieżka modułu powodującego błąd: ctfhost.exe2 Identyfikator raportu: ctfhost.exe3 Error: (11/13/2015 09:02:26 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: ctfhost.exe, wersja: 6.1.7600.16385, sygnatura czasowa: 0x561598f1 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000000000000000 Identyfikator procesu powodującego błąd: 0xab4 Godzina uruchomienia aplikacji powodującej błąd: 0xctfhost.exe0 Ścieżka aplikacji powodującej błąd: ctfhost.exe1 Ścieżka modułu powodującego błąd: ctfhost.exe2 Identyfikator raportu: ctfhost.exe3 Error: (11/13/2015 06:57:34 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: ctfhost.exe, wersja: 6.1.7600.16385, sygnatura czasowa: 0x561598f1 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000000000000000 Identyfikator procesu powodującego błąd: 0x598 Godzina uruchomienia aplikacji powodującej błąd: 0xctfhost.exe0 Ścieżka aplikacji powodującej błąd: ctfhost.exe1 Ścieżka modułu powodującego błąd: ctfhost.exe2 Identyfikator raportu: ctfhost.exe3 Error: (11/12/2015 06:37:30 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: ctfhost.exe, wersja: 6.1.7600.16385, sygnatura czasowa: 0x561598f1 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000000000000000 Identyfikator procesu powodującego błąd: 0x1220 Godzina uruchomienia aplikacji powodującej błąd: 0xctfhost.exe0 Ścieżka aplikacji powodującej błąd: ctfhost.exe1 Ścieżka modułu powodującego błąd: ctfhost.exe2 Identyfikator raportu: ctfhost.exe3 System errors: ============= Error: (12/17/2015 10:40:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa WdMan Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (12/17/2015 10:40:29 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa vToolbarUpdater40.2.4 niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (12/17/2015 10:40:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa SpyHunter 4 Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (12/17/2015 10:38:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi esgiguard z powodu następującego błędu: %%1275 Error: (12/17/2015 10:38:53 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Ładowanie sterownika \??\C:\Program Files (x86)\Enigma Software Group\SpyHunter\esgi zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika. Error: (12/17/2015 09:50:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi esgiguard z powodu następującego błędu: %%1275 Error: (12/17/2015 09:50:42 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Ładowanie sterownika \??\C:\Program Files (x86)\Enigma Software Group\SpyHunter\esgi zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika. Error: (11/23/2015 02:23:33 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Bitdefender Virus Shield niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (11/23/2015 02:23:21 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF} Error: (11/18/2015 12:30:53 PM) (Source: Disk) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\Harddisk2\DR3. CodeIntegrity: =================================== Date: 2015-12-17 22:38:53.804 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-12-17 22:38:53.704 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-12-17 21:50:42.878 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-12-17 21:50:42.768 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-03-11 20:52:05.079 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\LHidFilt.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-03-11 20:52:04.929 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\LHidFilt.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-03-11 20:51:36.224 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\LHidFilt.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-03-11 20:51:36.100 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\LHidFilt.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-03-08 12:01:44.899 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\LHidFilt.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-03-08 12:01:44.755 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\LHidFilt.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Processor: Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz Percentage of memory in use: 41% Total physical RAM: 8190.49 MB Available physical RAM: 4801.23 MB Total Virtual: 16379.19 MB Available Virtual: 11701.15 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:111.79 GB) (Free:13.73 GB) NTFS ==>[system with boot components (obtained from drive)] Drive e: () (Fixed) (Total:115.7 GB) (Free:42.6 GB) NTFS ==>[system with boot components (obtained from drive)] Drive f: () (Fixed) (Total:117.19 GB) (Free:37.16 GB) NTFS Drive g: (Femap 11.0.0 64b) (CDROM) (Total:2.15 GB) (Free:0 GB) CDFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 505C6F9E) Partition 1: (Active) - (Size=115.7 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=117.2 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: ECC98E23) Partition 1: (Active) - (Size=111.8 GB) - (Type=07 NTFS) ==================== End of Addition.txt ============================