Additional scan result of Farbar Recovery Scan Tool (x86) Version: 18-10-2014 01 Ran by Nowa Era at 2014-10-19 14:09:57 Running from C:\Users\Nowa Era\Desktop\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.34309 - BitTorrent Inc.) Adobe Acrobat 5.0 (HKLM\...\Adobe Acrobat 5.0) (Version: 5.0 - Adobe Systems, Inc.) Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.152 - Adobe Systems Incorporated) Adobe Flash Player 15 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated) Adobe Reader XI (11.0.09) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated) Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.1.151 - Adobe Systems, Inc.) Aeria Ignite (HKLM\...\Aeria Ignite 1.13.3296) (Version: 1.13.3296 - Aeria Games & Entertainment) Aeria Ignite (Version: 1.13.3296 - Aeria Games & Entertainment) Hidden Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.10 - Atheros Communications Inc.) Auslogics Disk Defrag (HKLM\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: version 3.1 - Auslogics Software Pty Ltd) Avanquest update (HKLM\...\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}) (Version: 1.31 - Avanquest Software) AVS Media Player 4.1.6.80 (HKLM\...\AVS Media Player_is1) (Version: - Online Media Technologies Ltd.) AVS Update Manager 1.0 (HKLM\...\AVS Update Manager_is1) (Version: - Online Media Technologies Ltd.) AVS Video Converter 8 (HKLM\...\AVS4YOU Video Converter 7_is1) (Version: - Online Media Technologies Ltd.) AVS4YOU Software Navigator 1.4 (HKLM\...\AVS4YOU Software Navigator_is1) (Version: - Online Media Technologies Ltd.) BabylonObjectInstaller (HKLM\...\{83AA2913-C123-4146-85BD-AD8F93971D39}) (Version: 2.0.0.3 - Babylon Ltd) <==== ATTENTION Bandisoft MPEG-1 Decoder (HKLM\...\BandiMPEG1) (Version: - ) Batman: Arkham Asylum Demo (HKLM\...\{57EF5EE1-E32B-4EDE-9D50-3A82126800EE}) (Version: 1.0.0.0 - Eidos Interactive Limited) Borderlands (HKLM\...\{1F61E0B1-1AB8-F15E-07C4-46D100A1D3F7}) (Version: 1.0 - ) Bundled software uninstaller (HKLM\...\bi_uninstaller) (Version: - ) <==== ATTENTION CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform) Deinstalator Strony V9 (HKLM\...\V9Software) (Version: - ELEX Technology) <==== ATTENTION F.E.A.R. Perseus Mandate (HKLM\...\{6376AA06-5703-B0BD-45CB-3718F77F9CC8}) (Version: 1.0 - ) Facebook Video Calling 1.2.0.159 (HKLM\...\{7CAC6A44-C3DE-4153-ACA6-7524602C789E}) (Version: 1.2.159 - Skype Limited) Facebook Video Calling 1.2.0.287 (HKLM\...\{B92C5909-1D37-4C51-8397-A28BB28E5DC3}) (Version: 1.2.287 - Skype Limited) FLV Player (remove only) (HKLM\...\FLVM Player) (Version: - ) Glary Utilities 5.10 (HKLM\...\Glary Utilities 5) (Version: 5.10.0.17 - Glarysoft Ltd) Google Chrome (HKLM\...\Google Chrome) (Version: 35.0.1916.114 - Google Inc.) Google Update Helper (Version: 1.3.25.0 - Google Inc.) Hidden GTA San Andreas (HKLM\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games) HiJackThis (HKLM\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro) Java 7 Update 71 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.710 - Oracle) Java Auto Updater (Version: 2.1.71.14 - Oracle, Inc.) Hidden Java(TM) 6 Update 27 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216024FF}) (Version: 6.0.270 - Oracle) K-Lite Codec Pack 7.2.0 (Standard) (HKLM\...\KLiteCodecPack_is1) (Version: 7.2.0 - ) LogMeIn Hamachi (HKLM\...\LogMeIn Hamachi) (Version: 2.2.0.173 - LogMeIn, Inc.) LogMeIn Hamachi (Version: 2.2.0.173 - LogMeIn, Inc.) Hidden Microsoft Games for Windows - LIVE (HKLM\...\{F112F66E-25CA-42DD-983C-6118EB38F606}) (Version: 3.0.89.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM\...\{2E660A2A-A55F-43CD-9F73-CAD7382EEB78}) (Version: 3.0.19.0 - Microsoft Corporation) Microsoft Office Access MUI (Polish) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Excel MUI (Polish) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Groove MUI (Polish) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office InfoPath MUI (Polish) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office OneNote MUI (Polish) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Outlook MUI (Polish) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office PowerPoint MUI (Polish) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Professional Plus 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Polish) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Proofing (Polish) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Publisher MUI (Polish) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (Polish) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Word MUI (Polish) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.60831.0 - Microsoft Corporation) Microsoft Virtual PC 2007 SP1 (HKLM\...\{AD483998-2E9A-4405-83FF-6E503AF49CBB}) (Version: 6.0.192.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - x86 8.0.59193 False (Version: 8.0.59193 - Microsoft Corporation) Hidden Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{052bac4a-6f79-46d4-a024-1ce1b4f73cd4}) (Version: 8.0.58299 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 False (Version: 9.0.21022 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.0 False (Version: 9.0.21022 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 False (Version: 9.0.21022.218 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 False (Version: 9.0.30411 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 False (Version: 9.0.30729 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 False (Version: 9.0.30729 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 False (Version: 9.0.30729.4148 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.5570 False (Version: 9.0.30729.5570 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт) Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Microsoft XNA Framework Redistributable 3.1 (HKLM\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation) MSVC80_x86_v2 (Version: 1.0.3.0 - Nokia) Hidden MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Need for Speed™ SHIFT (HKLM\...\{BBF0A67B-5DBA-452F-9D2E-6F168BC226E4}) (Version: 1.0.0.0 - Electronic Arts) Nero 8 (HKLM\...\{D6D5CB84-0E6E-4E69-B300-C690B6911045}) (Version: 8.3.38 - Nero AG) neroxml (Version: 1.0.0 - Nero AG) Hidden Nokia Connectivity Cable Driver (HKLM\...\{4216D328-0FE8-48B8-85B8-BD300E6F080F}) (Version: 7.1.36.0 - Nokia) Nokia Ovi Player (HKLM\...\{1226B9A5-FBFD-4120-9AED-08CABCDAF3AB}) (Version: 2.1.11020 - Nokia Ovi Player) Nokia PC Suite (Version: 7.1.60.0 - Nokia) Hidden Nokia_Multimedia_Common_Components_2_5 (HKLM\...\{E4423F16-0E98-4855-BFF4-3EF016C55D67}) (Version: 2.7.16 - Nokia) NVIDIA PhysX (HKLM\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation) NVIDIA PhysX (Legacy) (HKLM\...\{6F9D5A0B-202C-4161-BC7F-0664EA39E7E7}) (Version: 9.12.1031 - NVIDIA Corporation) NVIDIA Stereoscopic 3D Driver (HKLM\...\NVIDIAStereo) (Version: 7.17.11.9646 - NVIDIA Corporation) ON_OFF Charge B10.0422.2 (HKLM\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE) OpenAL (HKLM\...\OpenAL) (Version: - ) OpenOffice.org 3.3 (HKLM\...\{EB87675F-5281-4767-A54B-31931794C23D}) (Version: 3.3.9567 - OpenOffice.org) PC Connectivity Solution (HKLM\...\{D4AEC53C-1720-41D9-B6D7-6A60DE62D444}) (Version: 10.50.2.0 - Nokia) PC Tools Registry Mechanic 11.0 (HKLM\...\Registry Mechanic_is1) (Version: 11.0 - PC Tools) Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.) Pirate Storm (HKCU\...\Pokki_17dd240efdb0c50e8a5015de26b6d100f1b1072c) (Version: 1.1.4.53328 - Pokki) PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.) RAR Password Cracker 4.12 (HKLM\...\RAR Password Cracker) (Version: - dnSoft Research Group) REACTOR (HKLM\...\{901DC58A-5C1B-4315-BA40-5AD3D3A463B9}) (Version: 1.00.0000 - ijji) SBK(tm) Generations (HKLM\...\{3FDC48B2-98EC-4099-99C2-20F4FB9C9093}) (Version: 1.00.0000 - Milestone srl) SBK(tm) Generations (Version: 1.00.0000 - Milestone srl) Hidden Sid Meier's Civilization 4 Complete (HKLM\...\{30D1F3D2-54CF-481D-A005-F94B0E98FEEC}) (Version: 1.74 - Firaxis Games) Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.4.11328 - Skype Technologies S.A.) SMART Common Files (HKLM\...\{ED2455F7-6AA6-4D3C-85E9-A72297DD7051}) (Version: 11.1.34.1 - SMART Technologies ULC) SMART Ink (HKLM\...\{4A1F2472-6164-43FA-9D2F-B35E71A8DF32}) (Version: 1.1.233.0 - SMART Technologies ULC) SMART Notebook (HKLM\...\{AFE024C7-7CA7-4C8E-90EE-D877C7CD96A3}) (Version: 11.0.705.1 - SMART Technologies ULC) SMART Polish Language Pack (HKLM\...\{B009E70F-71B7-43EA-A4A2-EED4D65751AB}) (Version: 11.0.50.1 - SMART Technologies ULC) SMART Product Drivers (HKLM\...\{E3189F44-F7BD-4F96-B756-A0AEFAF61D3A}) (Version: 11.0.510.2 - SMART Technologies ULC) Softonic-Polska Toolbar (HKLM\...\Softonic-Polska Toolbar) (Version: 6.8.5.1 - Softonic-Polska) <==== ATTENTION Sony Ericsson PC Suite 6.011.00 (HKLM\...\{2FFE93F0-BB72-4E52-8761-354D1AAA9387}) (Version: 6.011.00 - Sony Ericsson) SPORE™ (HKLM\...\{9DF0196F-B6B8-4C3A-8790-DE42AA530101}) (Version: 1.00.0000 - Electronic Arts) swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Symulator Jazdy 2 v.1.0 (HKLM\...\{1C36647E-F5BD-43E9-BA64-5F274B7F7051}_is1) (Version: - ) The Sims™ 3 (HKLM\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.26.89 - Electronic Arts) Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: - ) TuneUp Utilities 2013 (HKLM\...\TuneUp Utilities 2013) (Version: 13.0.4000.189 - TuneUp Software) TuneUp Utilities 2013 (Version: 13.0.4000.189 - TuneUp Software) Hidden TuneUp Utilities Language Pack (pl-PL) (Version: 13.0.4000.189 - TuneUp Software) Hidden Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS) VCRedistSetup (Version: 1.0.0 - Nero AG) Hidden VideoLAN VLC media player 1.1.7 (HKLM\...\VLC media player) (Version: 1.1.7 - VideoLAN Team) Windows Media Encoder 7.1 (HKLM\...\Windows Media Encoder 7) (Version: - ) Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp) WinRAR 5.10 beta 1 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.1 - win.rar GmbH) WinZip 18.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240E0}) (Version: 18.0.11023 - WinZip Computing, S.L. ) Your Uninstaller! 2010 (HKLM\...\YU2010_is1) (Version: 7.0 - URSoft, Inc.) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-1495774856-1328017135-2697362928-1019_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\Nowa Era\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS) ==================== Restore Points ========================= 13-10-2014 19:16:17 Removed GTA San Andreas 17-10-2014 16:21:16 Before uninstalling IMVU Avatar Chat Software 17-10-2014 16:39:11 Before uninstalling Internet Explorer Toolbar 4.6 by SweetPacks 17-10-2014 16:39:33 Removed Internet Explorer Toolbar 4.6 by SweetPacks 17-10-2014 16:42:48 Before uninstalling Mp3Tube Toolbar 17-10-2014 16:45:11 Before uninstalling Mobogenie 17-10-2014 16:48:01 Before uninstalling Softonic toolbar on IE and Chrome 17-10-2014 16:51:06 Before uninstalling MX vs ATV - Reflex 17-10-2014 17:06:58 Before uninstalling Delta Chrome Toolbar 17-10-2014 17:07:21 Removed Delta Chrome Toolbar 17-10-2014 17:10:20 Before uninstalling League of Legends 18-10-2014 12:37:35 Installed Java 7 Update 71 18-10-2014 13:14:11 Removed Need for Speed™ SHIFT ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:04 - 2014-10-19 12:55 - 00000035 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {0892613E-5B5A-4905-8763-D4B5906623D6} - System32\Tasks\RMSmartUpdate => C:\Program Files\PC Tools Registry Mechanic\update.exe [2012-02-03] (PC Tools) Task: {1956C6F6-67E9-46B0-A7DB-5FF2CF29EF94} - System32\Tasks\RMSchedule => C:\Program Files\PC Tools Registry Mechanic\RegMech.exe [2012-02-03] (PC Tools) Task: {39E6DDDF-2A6C-45A2-975D-A15661F56B22} - System32\Tasks\AdobeFlashPlayerUpdate 2 => C:\Windows\system32\FlashPlayerUpdateService.exe [2013-05-28] (Adobe Systems Incorporated) Task: {611FB884-9C6C-47CA-B681-0AB9948C2419} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1495774856-1328017135-2697362928-1020 Task: {664ED7DC-9245-4B06-BE6D-85BEB7C71AE8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-28] (Adobe Systems Incorporated) Task: {6B0CF4F2-362E-42F7-BD26-25A99AF0C2B4} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-09-26] (Oracle Corporation) Task: {72CC8D8D-4EC2-4A58-ACD3-6FA17DD1361E} - System32\Tasks\Usługa aktualizacji oprogramowania InstallShield => C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2006-03-20] (Macrovision Corporation) Task: {72E79A4B-75C1-48C0-9016-184C078E8505} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1495774856-1328017135-2697362928-1003 Task: {84195284-B3A3-46C5-B5A0-A138004EE7D4} - System32\Tasks\Microsoft\Windows\TabletPC\InputPersonalization => C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe [2009-07-14] (Microsoft Corporation) Task: {A01AFA24-BCAA-4D79-9DC1-0CA7A087D94B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-09-26] (Piriform Ltd) Task: {A8811452-F264-4B17-A99A-B9DF13DDAF71} - System32\Tasks\GlaryInitialize 5 => C:\Program Files\Glary Utilities 5\Initialize.exe [2014-10-13] (Glarysoft Ltd) Task: {C7681491-0640-4092-95F0-BAB2C6DD8FD1} - System32\Tasks\AdobeFlashPlayerUpdate => C:\Windows\system32\FlashPlayerUpdateService.exe [2013-05-28] (Adobe Systems Incorporated) Task: {D0F9F501-17CA-4183-9D41-830E7C1D6235} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup Task: {DE28C4CF-FECD-472C-9CEB-5C1E0764AA10} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files\TuneUp Utilities 2013\OneClick.exe [2013-12-10] (TuneUp Software) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GlaryInitialize 5.job => C:\Program Files\Glary Utilities 5\Initialize.exe Task: C:\Windows\Tasks\RMSchedule.job => C:\Program Files\PC Tools Registry Mechanic\RegMech.exe ==================== Loaded Modules (whitelisted) ============= 2011-05-07 20:40 - 2007-08-21 13:32 - 00098304 _____ () C:\Windows\System32\redmonnt.dll 2011-04-09 14:08 - 2011-04-09 14:08 - 00010240 _____ () C:\Windows\system32\srvany.exe 2011-04-09 14:08 - 2014-02-16 14:04 - 00159744 _____ () C:\Windows\KMService.exe 2012-10-28 14:39 - 2009-04-30 12:23 - 00090112 _____ () C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe 2013-02-24 11:38 - 2014-02-22 15:23 - 00066872 _____ () C:\Windows\system32\PnkBstrA.exe 2013-12-10 21:46 - 2013-12-10 21:46 - 00500024 _____ () C:\Program Files\TuneUp Utilities 2013\avgreplibx.dll 2014-09-25 20:44 - 2014-09-25 20:44 - 00047104 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll 2014-06-06 21:15 - 2014-05-14 01:40 - 00716616 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.114\libglesv2.dll 2014-06-06 21:15 - 2014-05-14 01:40 - 00126280 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.114\libegl.dll 2014-06-06 21:15 - 2014-05-14 01:40 - 04217672 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.114\pdf.dll 2014-06-06 21:15 - 2014-05-14 01:40 - 00414536 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll 2014-06-06 21:15 - 2014-05-14 01:40 - 01732424 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.114\ffmpegsumo.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\Windows\$NtUninstallKB48234$:SummaryInformation ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot => "AlternateShell"="services32.exe" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\wxpdrivers => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\wxpdrivers => ""="Service" ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) ========================= Accounts: ========================== Administrator (S-1-5-21-1495774856-1328017135-2697362928-500 - Administrator - Disabled) bbbb (S-1-5-21-1495774856-1328017135-2697362928-1020 - Limited - Enabled) => C:\Users\bbbb Gość (S-1-5-21-1495774856-1328017135-2697362928-501 - Limited - Enabled) => C:\Users\Gość HomeGroupUser$ (S-1-5-21-1495774856-1328017135-2697362928-1002 - Limited - Enabled) Nowa Era (S-1-5-21-1495774856-1328017135-2697362928-1019 - Administrator - Enabled) => C:\Users\Nowa Era ==================== Faulty Device Manager Devices ============= Name: Symantec Iron Driver Description: Symantec Iron Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: SymIRON Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: BHDrvx86 Description: BHDrvx86 Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: BHDrvx86 Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Norton AntiVirus Settings Manager Description: Norton AntiVirus Settings Manager Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: ccSet_NAV Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: DAEMON Tools Virtual Bus Description: DAEMON Tools Virtual Bus Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: DT Soft Ltd Service: dtsoftbus01 Problem: : A driver (service) for this device has been disabled. An alternate driver may be providing this functionality (Code 32) Resolution: The start type for this driver is set to disabled in the registry. Uninstall the driver from Device Manager, and then scan for new hardware to install the driver again. If this does not work, you might have to change the device start type parameter in the registry. Name: IDSVix86 Description: IDSVix86 Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: IDSVix86 Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Event log errors: ========================= Application errors: ================== Error: (10/19/2014 01:52:13 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: TaskSchedulerCreator.exe, wersja: 1.0.0.0, sygnatura czasowa: 0x502b65a7 Nazwa modułu powodującego błąd: KERNELBASE.dll, wersja: 6.1.7601.17651, sygnatura czasowa: 0x4e2111c0 Kod wyjątku: 0xe0434f4d Przesunięcie błędu: 0x0000d36f Identyfikator procesu powodującego błąd: 0x%9 Godzina uruchomienia aplikacji powodującej błąd: 0xTaskSchedulerCreator.exe0 Ścieżka aplikacji powodującej błąd: TaskSchedulerCreator.exe1 Ścieżka modułu powodującego błąd: TaskSchedulerCreator.exe2 Identyfikator raportu: TaskSchedulerCreator.exe3 Error: (10/19/2014 01:12:02 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: FlashPlayerUpdateService.exe, wersja: 11.6.602.180, sygnatura czasowa: 0x51a4ab8c Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.17514, sygnatura czasowa: 0x4ce7b96e Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00034183 Identyfikator procesu powodującego błąd: 0x8a0 Godzina uruchomienia aplikacji powodującej błąd: 0xFlashPlayerUpdateService.exe0 Ścieżka aplikacji powodującej błąd: FlashPlayerUpdateService.exe1 Ścieżka modułu powodującego błąd: FlashPlayerUpdateService.exe2 Identyfikator raportu: FlashPlayerUpdateService.exe3 Error: (10/19/2014 00:35:05 PM) (Source: System Restore) (EventID: 8193) (User: ) Description: Nie można utworzyć punktu przywracania (Proces = C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe" -Embedding; Opis = Configured Microsoft Office Professional Plus 2010; Błąd = 0x8007043c). Error: (10/19/2014 00:35:01 PM) (Source: System Restore) (EventID: 8193) (User: ) Description: Nie można utworzyć punktu przywracania (Proces = C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe" -Embedding; Opis = Configured Microsoft Office Professional Plus 2010; Błąd = 0x8007043c). Error: (10/19/2014 00:25:30 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: tbhcn.exe, wersja: 1.0.0.9, sygnatura czasowa: 0x5121f458 Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.17514, sygnatura czasowa: 0x4ce7b96e Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00052d37 Identyfikator procesu powodującego błąd: 0x6c0 Godzina uruchomienia aplikacji powodującej błąd: 0xtbhcn.exe0 Ścieżka aplikacji powodującej błąd: tbhcn.exe1 Ścieżka modułu powodującego błąd: tbhcn.exe2 Identyfikator raportu: tbhcn.exe3 Error: (10/19/2014 00:25:16 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: tbhcn.exe, wersja: 1.0.0.9, sygnatura czasowa: 0x5121f458 Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.17514, sygnatura czasowa: 0x4ce7b96e Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00052d37 Identyfikator procesu powodującego błąd: 0xff4 Godzina uruchomienia aplikacji powodującej błąd: 0xtbhcn.exe0 Ścieżka aplikacji powodującej błąd: tbhcn.exe1 Ścieżka modułu powodującego błąd: tbhcn.exe2 Identyfikator raportu: tbhcn.exe3 Error: (10/19/2014 00:23:04 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000. Error: (10/19/2014 00:23:02 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Wystąpił błąd aktywacji licencji (slui.exe), kod błędu: 0x8007043C Error: (10/19/2014 00:12:01 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: FlashPlayerUpdateService.exe, wersja: 11.6.602.180, sygnatura czasowa: 0x51a4ab8c Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.17514, sygnatura czasowa: 0x4ce7b96e Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00034183 Identyfikator procesu powodującego błąd: 0xd0 Godzina uruchomienia aplikacji powodującej błąd: 0xFlashPlayerUpdateService.exe0 Ścieżka aplikacji powodującej błąd: FlashPlayerUpdateService.exe1 Ścieżka modułu powodującego błąd: FlashPlayerUpdateService.exe2 Identyfikator raportu: FlashPlayerUpdateService.exe3 Error: (10/19/2014 00:08:29 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: tbhcn.exe, wersja: 1.0.0.9, sygnatura czasowa: 0x5121f458 Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.17514, sygnatura czasowa: 0x4ce7b96e Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00052d37 Identyfikator procesu powodującego błąd: 0x1494 Godzina uruchomienia aplikacji powodującej błąd: 0xtbhcn.exe0 Ścieżka aplikacji powodującej błąd: tbhcn.exe1 Ścieżka modułu powodującego błąd: tbhcn.exe2 Identyfikator raportu: tbhcn.exe3 System errors: ============= Error: (10/19/2014 02:04:26 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {000C101C-0000-0000-C000-000000000046} Error: (10/19/2014 01:56:22 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Windows Defender zakończyła działanie; wystąpił następujący błąd: %%-2146762751 Error: (10/19/2014 01:55:12 PM) (Source: NetBT) (EventID: 4321) (User: ) Description: Nie można zarejestrować nazwy „IBOX-DESKTOP :0” w interfejsie o adresie IP 192.168.1.16. Komputer o adresie IP 169.254.21.80 nie zezwolił na przejęcie tej nazwy przez ten komputer. Error: (10/19/2014 01:55:12 PM) (Source: NetBT) (EventID: 4321) (User: ) Description: Nie można zarejestrować nazwy „IBOX-DESKTOP :20” w interfejsie o adresie IP 192.168.1.16. Komputer o adresie IP 169.254.21.80 nie zezwolił na przejęcie tej nazwy przez ten komputer. Error: (10/19/2014 01:55:12 PM) (Source: Server) (EventID: 2505) (User: ) Description: Serwer nie mógł utworzyć powiązania do transportu \Device\NetBT_Tcpip_{DC6ECE80-9ADC-4A52-8C7B-AA3A674B08C9}, ponieważ inny komputer w sieci ma tę samą nazwę. Nie można uruchomić serwera. Error: (10/19/2014 01:54:18 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: BHDrvx86 ccSet_NAV IDSVix86 sfdrv01 sfvfs02 SymIRON Error: (10/19/2014 01:54:16 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Windows Image Acquisition (WIA) zależy od usługi Wykrywanie sprzętu powłoki, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (10/19/2014 01:54:16 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Akamai NetSession Interface. Error: (10/19/2014 01:54:15 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Autokonfiguracja sieci WLAN zakończyła działanie; wystąpił następujący błąd: %%5 Error: (10/19/2014 01:54:13 PM) (Source: Microsoft-Windows-Eventlog) (EventID: 20) (User: ZARZĄDZANIE NT) Description: Usługa rejestrowania zdarzeń napotkała błąd 5 podczas uzyskiwania lub przetwarzania konfiguracji dla kanału DebugChannel. Microsoft Office Sessions: ========================= Error: (10/19/2014 01:52:13 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: TaskSchedulerCreator.exe1.0.0.0502b65a7KERNELBASE.dll6.1.7601.176514e2111c0e0434f4d0000d36f Error: (10/19/2014 01:12:02 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: FlashPlayerUpdateService.exe11.6.602.18051a4ab8cntdll.dll6.1.7601.175144ce7b96ec0000005000341838a001cfeb8d80c2cca8C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exeC:\Windows\SYSTEM32\ntdll.dllbfb2c15d-5780-11e4-b1fb-001e741b774d Error: (10/19/2014 00:35:05 PM) (Source: System Restore) (EventID: 8193) (User: ) Description: C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe" -EmbeddingConfigured Microsoft Office Professional Plus 20100x8007043c Error: (10/19/2014 00:35:01 PM) (Source: System Restore) (EventID: 8193) (User: ) Description: C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe" -EmbeddingConfigured Microsoft Office Professional Plus 20100x8007043c Error: (10/19/2014 00:25:30 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: tbhcn.exe1.0.0.95121f458ntdll.dll6.1.7601.175144ce7b96ec000000500052d376c001cfeb86f0915c5cC:\ProgramData\GinyasBrowserCompanion\tbhcn.exeC:\Windows\SYSTEM32\ntdll.dll3fd7f423-577a-11e4-b34c-001e741b774d Error: (10/19/2014 00:25:16 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: tbhcn.exe1.0.0.95121f458ntdll.dll6.1.7601.175144ce7b96ec000000500052d37ff401cfeb86f0772d39C:\ProgramData\GinyasBrowserCompanion\tbhcn.exeC:\Windows\SYSTEM32\ntdll.dll3728aee3-577a-11e4-b34c-001e741b774d Error: (10/19/2014 00:23:04 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: 0x000000000x00000001 Error: (10/19/2014 00:23:02 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: 0x8007043C Error: (10/19/2014 00:12:01 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: FlashPlayerUpdateService.exe11.6.602.18051a4ab8cntdll.dll6.1.7601.175144ce7b96ec000000500034183d001cfeb851f1f5508C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exeC:\Windows\SYSTEM32\ntdll.dll5d5f7f2a-5778-11e4-8dfe-001e741b774d Error: (10/19/2014 00:08:29 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: tbhcn.exe1.0.0.95121f458ntdll.dll6.1.7601.175144ce7b96ec000000500052d37149401cfeb84870d1f1dC:\ProgramData\GinyasBrowserCompanion\tbhcn.exeC:\Windows\SYSTEM32\ntdll.dlldf00ab14-5777-11e4-8dfe-001e741b774d ==================== Memory info =========================== Processor: Intel(R) Celeron(R) CPU E3400 @ 2.60GHz Percentage of memory in use: 65% Total physical RAM: 2046.49 MB Available physical RAM: 710.61 MB Total Pagefile: 4092.98 MB Available Pagefile: 2900.32 MB Total Virtual: 2047.88 MB Available Virtual: 1907.89 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:123.86 GB) (Free:75.05 GB) NTFS Drive d: () (Fixed) (Total:341.8 GB) (Free:335.86 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: CF829D1E) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=123.9 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=341.8 GB) - (Type=07 NTFS) ==================== End Of Log ============================