Additional scan result of Farbar Recovery Scan Tool (x64) Version:17-02-2016 Ran by Marcin (2016-02-19 16:32:26) Running from C:\Users\Marcin\Desktop\frst Windows 7 Ultimate Service Pack 1 (X64) (2015-11-02 17:27:08) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1159297443-1827356356-1939997709-500 - Administrator - Disabled) Guest (S-1-5-21-1159297443-1827356356-1939997709-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1159297443-1827356356-1939997709-1002 - Limited - Enabled) Marcin (S-1-5-21-1159297443-1827356356-1939997709-1001 - Administrator - Enabled) => C:\Users\Marcin ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: ESET NOD32 Antivirus 9.0.318.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: ESET NOD32 Antivirus 9.0.318.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-1159297443-1827356356-1939997709-1001\...\uTorrent) (Version: 3.4.5.41202 - BitTorrent Inc.) 4K YouTube to MP3 2.10 (HKLM-x32\...\4K YouTube to MP3_is1) (Version: 2.10.9.1525 - Open Media LLC) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 15.010.20059 - Adobe Systems Incorporated) Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.1.102.64 - Adobe Systems Incorporated) Adobe Flash Player 20 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated) Armored Warfare MyCom (HKU\S-1-5-21-1159297443-1827356356-1939997709-1001\...\Armored Warfare MyCom) (Version: 1.65 - My.com B.V.) ASUS FancyStart (HKLM-x32\...\{2B81872B-A054-48DA-BE3B-FA5C164C303A}) (Version: 1.0.8 - ASUSTeK Computer Inc.) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0001 - ASUS) Battlefield 2: Deluxe Edition (HKLM-x32\...\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}) (Version: - ) CodeBlocks (HKU\S-1-5-21-1159297443-1827356356-1939997709-1001\...\CodeBlocks) (Version: 13.12 - The Code::Blocks Team) Core Temp version 0.99.8 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 0.99.8 - Arthur Liberman) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0112 - Disc Soft Ltd) Drakensang (HKLM-x32\...\Drakensang_is1) (Version: - dtp) Driver Booster 3.0 (HKLM-x32\...\Driver Booster_is1) (Version: 3.0 - IObit) ESET NOD32 Antivirus (HKLM\...\{60853F5E-E6F5-4A34-BBCD-C09D49BB5E64}) (Version: 9.0.318.0 - ESET, spol. s r.o.) ETDWare PS/2-x64 7.0.5.9_WHQL (HKLM\...\Elantech) (Version: - ) Farming Simulator 2013 (HKLM-x32\...\FarmingSimulator2013INT_is1) (Version: 1.0 - GIANTS Software) Gameforge Live 2.0.8 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.8 - Gameforge) GameSpy Arcade (HKLM-x32\...\GameSpy Arcade) (Version: - ) Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios) GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team) Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google) ipla 2.8.6 (HKLM-x32\...\ipla) (Version: 2.8.6 - Cyfrowy Polsat S.A.) LastChaosPoland (HKLM-x32\...\{A56028FC-1F40-4369-9941-7AAAC6ACE924}) (Version: 1.00.000 - BarunsonGames CO., LTD.) Live for Speed (HKLM-x32\...\Live for Speed) (Version: 0.6j - Jimbo) Metin2 (HKLM-x32\...\Metin2_PL_is1) (Version: - Gameforge 4D GmbH) Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) MPC-HC 1.7.9 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.9 - MPC-HC Team) Mu (HKLM-x32\...\{F57CEB84-3D22-4657-8EDA-F8CD5217B83E}) (Version: 0.68 - ) My.com Game Center (HKU\S-1-5-21-1159297443-1827356356-1939997709-1001\...\MyComGames) (Version: 3.161 - My.com B.V.) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) NB Probe (HKLM-x32\...\{6324A1EF-CEF4-43E3-8BCD-9EF3F67317FD}) (Version: - ) Need for Speed™ Most Wanted (HKLM-x32\...\{A48B9CD8-C2BA-4EC9-0081-7260D238C7CF}) (Version: - ) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.7 - Notepad++ Team) Opera Stable 35.0.2066.68 (HKLM-x32\...\Opera 35.0.2066.68) (Version: 35.0.2066.68 - Opera Software) PDFtoMusic (HKLM-x32\...\PDFtoMusic) (Version: 1.5.1 - Myriad SARL) Plantronics® GameCom 780/788 Software for Dolby® Headphone (HKLM-x32\...\{EB3C9064-9140-4279-9E51-965119402151}) (Version: 3.20.0001 - Plantronics) PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Syberia (HKLM-x32\...\Steam App 46500) (Version: - Anuman) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH) Tibia (HKLM-x32\...\Tibia_is1) (Version: 10.82 - CipSoft GmbH) Tricky Truck 2.41 (HKLM-x32\...\Tricky Truck 2.41) (Version: - ) WinRAR 5.21 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) World of Tanks (HKU\S-1-5-21-1159297443-1827356356-1939997709-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net) XAMPP (HKLM-x32\...\xampp) (Version: 5.6.14-4 - Bitnami) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-1159297443-1827356356-1939997709-1001_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Marcin\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-1159297443-1827356356-1939997709-1001_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Marcin\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1159297443-1827356356-1939997709-1001_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Marcin\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1159297443-1827356356-1939997709-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Marcin\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll (Google Inc.) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {13B1B64F-EA53-41D0-8FD8-FBA1327B460F} - System32\Tasks\{747B1655-DA30-4669-9A6D-BEDF2C9B22E5} => D:\Gierki\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe [2015-12-09] () Task: {4A27EEBE-3062-47BD-8723-E3C7581CBD46} - System32\Tasks\{D4B056B0-C70E-4B4B-8D6F-D78F3B1CC924} => D:\Gierki\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe [2015-12-09] () Task: {54B80A76-F222-4EDC-A336-BCEE073031C7} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1159297443-1827356356-1939997709-1001Core => C:\Users\Marcin\AppData\Local\Google\Update\GoogleUpdate.exe [2015-11-02] (Google Inc.) Task: {5C21F936-ED4F-4D96-8988-CD7834B9C24A} - System32\Tasks\Opera scheduled Autoupdate 1453669946 => C:\Program Files (x86)\Opera\launcher.exe [2016-02-15] (Opera Software) Task: {6833C7FE-6C0C-494A-AFB9-20E53415D2C7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated) Task: {720A6028-FAF2-4BAF-A6B4-98B99F2C708B} - System32\Tasks\Driver Booster SkipUAC (Marcin) => D:\Progamy\Driver Booster\DriverBooster.exe [2015-10-22] (IObit) Task: {7744B5B3-595A-42F9-869B-507B6C57EDCB} - System32\Tasks\{50135A36-B65B-4AA4-9E3B-59F747AC67F7} => D:\Gierki\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe [2015-12-09] () Task: {8F4B9313-82D8-475E-A943-8E17B5EEA850} - System32\Tasks\Driver Booster Scheduler => D:\Progamy\Driver Booster\Scheduler.exe [2015-10-16] (IObit) Task: {943E46C8-D5FB-40F3-A8AC-7043EAB50CEB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1159297443-1827356356-1939997709-1001UA => C:\Users\Marcin\AppData\Local\Google\Update\GoogleUpdate.exe [2015-11-02] (Google Inc.) Task: {AB6EF8CF-2272-4EA8-8576-22F0705A9A98} - System32\Tasks\{02783582-BAF6-433A-9902-C60989DDAF82} => D:\Gierki\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe [2015-12-09] () Task: {FE110A64-5A6C-4E09-8A08-A5034F822B4A} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_267_pepper.exe [2016-01-02] (Adobe Systems Incorporated) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_267_pepper.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1159297443-1827356356-1939997709-1001Core.job => C:\Users\Marcin\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1159297443-1827356356-1939997709-1001UA.job => C:\Users\Marcin\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Shortcuts ============================= (The entries could be listed to be restored or removed.) ==================== Loaded Modules (Whitelisted) ============== 2015-11-02 21:43 - 2007-08-03 12:24 - 00125496 _____ () C:\Program Files (x86)\ASUS\NB Probe\SPM\spmgr.exe 2015-11-02 20:06 - 2014-01-21 16:40 - 00817440 ____N () C:\Program Files\Plantronics\GameCom 780 & 788\GameCom780.exe 2015-11-02 21:43 - 2007-09-14 10:00 - 00147456 _____ () C:\Program Files (x86)\ASUS\NB Probe\SPM\spdiskex.dll 2015-11-02 21:43 - 2003-11-28 02:11 - 00135168 _____ () C:\Program Files (x86)\ASUS\NB Probe\SPM\spos.dll 2015-11-02 21:43 - 2005-08-29 15:24 - 00081920 _____ () C:\Program Files (x86)\ASUS\NB Probe\SPM\spnbacpi.dll 2015-11-02 21:43 - 2003-09-09 16:08 - 00049152 _____ () C:\Program Files (x86)\ASUS\NB Probe\SPM\spdmi.dll 2015-11-02 21:43 - 2006-04-04 10:24 - 00036864 _____ () C:\Program Files (x86)\ASUS\NB Probe\SPM\ghadmi.dll 2015-11-02 21:43 - 2005-04-07 19:25 - 00077824 _____ () C:\Program Files (x86)\ASUS\NB Probe\SPM\spmemory.dll 2015-11-02 20:06 - 2014-01-21 16:40 - 00149792 ____N () C:\Program Files\Plantronics\GameCom 780 & 788\VmixPLGC.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1159297443-1827356356-1939997709-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Marcin\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupreg: DAEMON Tools Lite Automount => "D:\Progamy\DAEMON Tools Lite\DTAgent.exe" -autorun MSCONFIG\startupreg: Google Update => "C:\Users\Marcin\AppData\Local\Google\Update\GoogleUpdate.exe" /c MSCONFIG\startupreg: LogMeIn Hamachi Ui => "D:\Progamy\Hamachi\hamachi-2-ui.exe" --auto-start ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{561F0C48-0CAD-4728-BD01-0FBED115BC20}] => (Allow) D:\Gierki\Steam\Steam.exe FirewallRules: [{A74D1352-D834-4D6E-9AAA-6461D15DF0B7}] => (Allow) D:\Gierki\Steam\Steam.exe FirewallRules: [{4E6EABE9-68C3-414E-9DCA-D1EED698AC54}] => (Allow) D:\Gierki\Steam\bin\steamwebhelper.exe FirewallRules: [{98263563-DD10-43A0-8779-E1677A91429E}] => (Allow) D:\Gierki\Steam\bin\steamwebhelper.exe FirewallRules: [TCP Query User{9E27FE7C-8055-47E5-88A1-3824484C4B59}C:\users\marcin\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\marcin\appdata\roaming\utorrent\utorrent.exe FirewallRules: [UDP Query User{70F032FE-FA4E-425A-B723-3A54A6987341}C:\users\marcin\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\marcin\appdata\roaming\utorrent\utorrent.exe FirewallRules: [{570E5D66-E4D7-42D2-BDDA-21C9463ED1B4}] => (Allow) D:\Progamy\NapiProjekt\napisy.exe FirewallRules: [{30E5C034-CE27-4033-A140-233974361211}] => (Allow) D:\Progamy\NapiProjekt\napisy.exe FirewallRules: [{92824288-EA84-48B2-B0BD-7C62BACB2C25}] => (Allow) D:\Gierki\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{07464F39-AB5C-4310-93B7-9B3E9901EBA6}] => (Allow) D:\Gierki\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{87171118-89ED-4597-A870-523A33257173}] => (Allow) D:\Gierki\Farming Simulator 2013\FarmingSimulator2013.exe FirewallRules: [{0148F46F-B029-4FCC-9AAD-001B84458600}] => (Allow) D:\Gierki\Farming Simulator 2013\FarmingSimulator2013.exe FirewallRules: [{99270B31-28DC-4B59-81F9-87B237261394}] => (Allow) D:\Gierki\Farming Simulator 2013\FarmingSimulator2013Game.exe FirewallRules: [{4332AC2F-1DA7-42E6-B55F-4104EF6E1822}] => (Allow) D:\Gierki\Farming Simulator 2013\FarmingSimulator2013Game.exe FirewallRules: [{A010A594-75A2-4C0E-B8B7-8F19E4D182FF}] => (Allow) D:\Gierki\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{D9535721-A37E-46FD-A27A-B2F68009F537}] => (Allow) D:\Gierki\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [TCP Query User{F90C0F8B-2CB5-4D55-B3C6-40DB81FC6D39}D:\progamy\xampp\apache\bin\httpd.exe] => (Allow) D:\progamy\xampp\apache\bin\httpd.exe FirewallRules: [UDP Query User{4C2E3452-33B0-436E-8443-959B989EB107}D:\progamy\xampp\apache\bin\httpd.exe] => (Allow) D:\progamy\xampp\apache\bin\httpd.exe FirewallRules: [TCP Query User{356AFB51-CBF1-4C23-8110-3845BD40A167}C:\users\marcin\appdata\roaming\utorrent\updates\3.4.5_41372.exe] => (Allow) C:\users\marcin\appdata\roaming\utorrent\updates\3.4.5_41372.exe FirewallRules: [UDP Query User{A5FC2C03-E1FD-4A6A-9818-A5E19F9952A6}C:\users\marcin\appdata\roaming\utorrent\updates\3.4.5_41372.exe] => (Allow) C:\users\marcin\appdata\roaming\utorrent\updates\3.4.5_41372.exe FirewallRules: [{5A5675B1-5E53-4078-BB98-73249DD03BC9}] => (Block) C:\users\marcin\appdata\roaming\utorrent\updates\3.4.5_41372.exe FirewallRules: [{93BC7719-A438-4A94-9C75-EA0A967E4DC7}] => (Block) C:\users\marcin\appdata\roaming\utorrent\updates\3.4.5_41372.exe FirewallRules: [{13479713-3BBE-44B3-B0BA-5CDCBB1FECD7}] => (Allow) D:\Gierki\Steam\steamapps\common\Syberia\Game.exe FirewallRules: [{D309237D-EED2-4856-9910-4D7DE6AB386E}] => (Allow) D:\Gierki\Steam\steamapps\common\Syberia\Game.exe FirewallRules: [{4DB5E150-853D-4E02-818A-256EDEF71D40}] => (Allow) D:\World of Tanks\WoTLauncher.exe FirewallRules: [{6A01B007-7F35-4E9B-959F-7E5571EB4E94}] => (Allow) D:\World of Tanks\WoTLauncher.exe FirewallRules: [{4F60FC3B-8ABC-41EB-BBDD-79F7688CD66A}] => (Allow) D:\World of Tanks\worldoftanks.exe FirewallRules: [{1C9F8274-4969-4752-832B-9E9D598990E6}] => (Allow) D:\World of Tanks\worldoftanks.exe FirewallRules: [{5519E68F-5D7D-4FBF-B46D-99692C2BA32C}] => (Allow) D:\Gierki\GameforgeLive\gfl_client.exe FirewallRules: [{878AE1DC-BDFB-4C0C-BC0E-64FE5B06FB49}] => (Allow) C:\Program Files (x86)\LuckyBrowse\app\LuckyBrowse.exe FirewallRules: [{20C11C6A-FC50-44E4-B2EF-1ECF6C832C33}] => (Allow) C:\Program Files (x86)\LuckyBrowse\app\LuckyBrowse.exe FirewallRules: [{096FEAD4-F190-4B48-BF3A-CAD18B3A909C}] => (Allow) D:\Gierki\bf2\BF2.exe FirewallRules: [{99440207-8C19-4627-B2DB-3F61C7885DAD}] => (Allow) D:\Gierki\bf2\BF2.exe FirewallRules: [TCP Query User{12DACE91-1494-4A7D-97EB-AD51DD6BE0CC}C:\users\marcin\appdata\roaming\utorrent\updates\3.4.5_41712.exe] => (Allow) C:\users\marcin\appdata\roaming\utorrent\updates\3.4.5_41712.exe FirewallRules: [UDP Query User{FF6D49B7-4F5D-4152-AD0C-9D36B0D59965}C:\users\marcin\appdata\roaming\utorrent\updates\3.4.5_41712.exe] => (Allow) C:\users\marcin\appdata\roaming\utorrent\updates\3.4.5_41712.exe FirewallRules: [TCP Query User{CEAC47C1-1497-4525-B4CB-566845E64990}C:\users\marcin\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\marcin\appdata\local\mycomgames\mycomgames.exe FirewallRules: [UDP Query User{C4EBB03C-F620-494F-92F7-C4D8C99F2B19}C:\users\marcin\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\marcin\appdata\local\mycomgames\mycomgames.exe FirewallRules: [TCP Query User{785FBAF1-679C-4934-9933-08EC98CA6C96}D:\gierki\armoredwarfare\armored warfare mycom\bin64\armoredwarfare.exe] => (Allow) D:\gierki\armoredwarfare\armored warfare mycom\bin64\armoredwarfare.exe FirewallRules: [UDP Query User{B8414B76-E660-494E-AD32-F4251BCBDCCA}D:\gierki\armoredwarfare\armored warfare mycom\bin64\armoredwarfare.exe] => (Allow) D:\gierki\armoredwarfare\armored warfare mycom\bin64\armoredwarfare.exe ==================== Restore Points ========================= 13-02-2016 03:00:11 Windows Update 16-02-2016 17:34:53 Windows Update 18-02-2016 19:57:40 Installed ESET NOD32 Antivirus ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (02/18/2016 05:06:09 PM) (Source: MsiInstaller) (EventID: 1024) (User: Marcin-PC) Description: Product: Adobe Acrobat Reader DC - Polish - Update '{AC76BA86-7AD7-0000-2550-AC0F0A4E5B00}' could not be installed. Error code 1625. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127 Error: (02/07/2016 01:47:03 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: DIAG.EXE, version: 4.60.0.1702, time stamp: 0x4314b4e4 Faulting module name: ~de89e1.tmp, version: 4.60.0.1702, time stamp: 0x4314b59c Exception code: 0xc0000005 Fault offset: 0x00035b33 Faulting process id: 0x6d4 Faulting application start time: 0xDIAG.EXE0 Faulting application path: DIAG.EXE1 Faulting module path: DIAG.EXE2 Report Id: DIAG.EXE3 Error: (02/07/2016 01:45:45 AM) (Source: ) (EventID: 0) (User: ) Description: 7 Error: (02/07/2016 01:45:45 AM) (Source: ) (EventID: 0) (User: ) Description: 6 Error: (02/07/2016 01:45:42 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: speed.exe, version: 0.0.0.0, time stamp: 0x4366eceb Faulting module name: speed.exe, version: 0.0.0.0, time stamp: 0x4366eceb Exception code: 0xc0000005 Fault offset: 0x0025b5bc Faulting process id: 0x384 Faulting application start time: 0xspeed.exe0 Faulting application path: speed.exe1 Faulting module path: speed.exe2 Report Id: speed.exe3 Error: (02/04/2016 07:08:54 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Activation context generation failed for "Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.30729.6161"1". Dependent Assembly Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.30729.6161" could not be found. Please use sxstrace.exe for detailed diagnosis. Error: (02/04/2016 07:08:54 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Activation context generation failed for "Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.30729.6161"1". Dependent Assembly Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.30729.6161" could not be found. Please use sxstrace.exe for detailed diagnosis. Error: (02/04/2016 07:08:54 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Activation context generation failed for "Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.30729.6161"1". Dependent Assembly Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.30729.6161" could not be found. Please use sxstrace.exe for detailed diagnosis. Error: (02/01/2016 05:35:32 PM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: ) Description: The volume (C:) was not defragmented because an error was encountered: An attempt was made to load a program with an incorrect format. (0x8007000B) Error: (01/25/2016 10:02:06 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: BF2VoiceSetup.exe, version: 0.0.0.0, time stamp: 0x428ca89a Faulting module name: BF2VoiceSetup.exe, version: 0.0.0.0, time stamp: 0x428ca89a Exception code: 0xc0000005 Fault offset: 0x00008661 Faulting process id: 0x7c0 Faulting application start time: 0xBF2VoiceSetup.exe0 Faulting application path: BF2VoiceSetup.exe1 Faulting module path: BF2VoiceSetup.exe2 Report Id: BF2VoiceSetup.exe3 System errors: ============= Error: (02/19/2016 03:54:41 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {B8FB4AD7-EA4A-4B47-BFDC-BFC94160A8EA} Error: (02/19/2016 01:33:29 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (02/18/2016 07:58:31 PM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: The ESET Service service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly. Error: (02/18/2016 04:59:21 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {B8FB4AD7-EA4A-4B47-BFDC-BFC94160A8EA} Error: (02/18/2016 12:46:36 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (02/17/2016 03:46:23 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {B8FB4AD7-EA4A-4B47-BFDC-BFC94160A8EA} Error: (02/17/2016 12:01:30 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (02/15/2016 10:29:42 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (02/15/2016 01:40:26 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (02/14/2016 03:44:19 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} CodeIntegrity: =================================== Date: 2015-11-10 16:14:42.136 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\AtihdW76.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-10 16:14:42.136 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\AtihdW76.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-10 12:25:29.175 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\AtihdW76.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-10 12:25:29.175 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\AtihdW76.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-09 15:26:03.095 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\AtihdW76.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-09 15:26:03.095 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\AtihdW76.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-09 15:15:19.076 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\AtihdW76.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-09 15:15:19.076 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\AtihdW76.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-09 14:39:02.206 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\AtihdW76.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-09 14:39:02.206 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\AtihdW76.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i3 CPU M 350 @ 2.27GHz Percentage of memory in use: 33% Total physical RAM: 3948.54 MB Available physical RAM: 2626.98 MB Total Virtual: 7895.29 MB Available Virtual: 6564.01 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:100 GB) (Free:56.46 GB) NTFS Drive d: () (Fixed) (Total:365.66 GB) (Free:101.82 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 1D1091E3) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=100 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=365.7 GB) - (Type=07 NTFS) ==================== End of Addition.txt ============================