Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-11-2014 Ran by pc at 2014-11-13 17:25:56 Running from C:\Users\pc\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-846750890-3381048881-3130427261-1001\...\uTorrent) (Version: 3.4.2.35141 - BitTorrent Inc.) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.5.0.600 - Adobe Systems Incorporated) Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.223 - Adobe Systems Incorporated) Alice: Madness Returns (HKLM-x32\...\Alice: Madness Returns_is1) (Version: - ) Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden AMD Catalyst Install Manager (HKLM\...\{79AE0BD1-A930-B07C-C96D-E11FA9BB586F}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.) AMD Quick Stream (HKLM\...\{E9EED4AE-682B-4501-9574-D09A21717599}_is1) (Version: 3.3.26.0 - AppEx Networks) Anki (HKLM-x32\...\Anki) (Version: - ) ANNO 1404 (HKLM-x32\...\{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}) (Version: 1.00.0000 - Ubisoft) Anno 1404 (x32 Version: 1.00.0000 - Ubisoft) Hidden Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Arcanum (HKLM-x32\...\{08E9C35A-A0AE-43FA-AEA1-E4F58A87FBD1}) (Version: 1.0.6.4 - Troika Games LLC) ArtMoney SE v7.42.1 (HKLM-x32\...\ArtMoney SE_is1) (Version: 7.42.1 - System SoftLab) Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team) Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform) Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine) ChomikBox (HKLM-x32\...\{26050F54-3928-4D9C-849A-C48A9E831E6F}) (Version: 2.0.5.0 - Chomikuj.pl) Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Cinesamples Drums of War 2 (HKLM-x32\...\{D86767A7-95D3-46A6-8744-663802ABFECA}}_is1) (Version: - ) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd) East West EWQLSO Gold Edition (HKLM-x32\...\East West EWQLSO Gold Edition) (Version: - ) East West Stormdrum Kompakt (HKLM-x32\...\East West Stormdrum Kompakt) (Version: - ) East West Symphonic Choirs (HKLM-x32\...\East West Symphonic Choirs) (Version: - ) ELAN 4.7.3 (HKLM-x32\...\ELAN 4.7.3) (Version: 4.7.3.0 - MPI - The Language Archive) Empress of the Deep - The Darkest Secret (x32 Version: 2.2.0.98 - WildTangent) Hidden eSupport UndeletePlus 3.0.5.304 (HKLM-x32\...\eSupport UndeletePlus_is1) (Version: - Copyright © 2013 eSupport.com • All Rights Reserved) Europa Universalis IV (HKLM-x32\...\Europa Universalis IV_is1) (Version: - Paradox Interactive) Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) Floris Mod Pack 2.54 (HKLM-x32\...\Floris Mod Pack_is1) (Version: - ) Free YouTube Download version 3.2.48.1015 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.48.1015 - DVDVideoSoft Ltd.) GG (HKU\S-1-5-21-846750890-3381048881-3130427261-1001\...\GG) (Version: 12 - GG Network S.A.) GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team) Goat Simulator (HKLM-x32\...\R29hdFNpbXVsYXRvcg==_is1) (Version: 1 - ) GROM (HKLM-x32\...\GROM) (Version: - ) GTA San Andreas (HKLM-x32\...\{E0303B6A-C675-4102-95DA-C013625BFA99}) (Version: 1.00.00001 - Rockstar Games) Guitar Pro 5.0 (HKLM-x32\...\Guitar Pro 5_is1) (Version: - Arobas Music) Half-Life 2 (HKU\S-1-5-21-846750890-3381048881-3130427261-1001\...\Half-Life 2) (Version: - ) Hidden & Dangerous 2 (HKLM-x32\...\InstallShield_{83437081-8186-4F63-BD39-4BE8A691E055}) (Version: 1.01.0000 - Illusion Softworks) Hidden & Dangerous 2 (x32 Version: 1.01.0000 - Illusion Softworks) Hidden Hidden & Dangerous 2 Patch (HKLM-x32\...\Hidden & Dangerous 2 Patch) (Version: - ) Island Tribe (x32 Version: 2.2.0.98 - WildTangent) Hidden iTunes (HKLM\...\{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}) (Version: 11.1.3.8 - Apple Inc.) Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217040FF}) (Version: 7.0.600 - Oracle) Jewel Quest Solitaire 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden KMSnano 25 (HKLM\...\KMSnano 25_is1) (Version: KMSnano 25 - ) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden Legacy of Kain Defiance (HKLM-x32\...\Legacy of Kain Defiance_is1) (Version: - GOG.com) Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden Malwarebytes Anti-Malware version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation) Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Office Word Viewer 2003 (HKLM-x32\...\{90850415-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Mount&Blade Warband (HKLM-x32\...\Mount&Blade Warband) (Version: - ) MPC-HC 1.7.5 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.5 - MPC-HC Team) MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden Narzędzia sprawdzające pakietu Microsoft Office 2013 — polski (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Native Instruments Action Strings (HKLM-x32\...\Native Instruments Action Strings) (Version: - Native Instruments) Native Instruments Kontakt 5 (HKLM-x32\...\Native Instruments Kontakt 5) (Version: - Native Instruments) Need for Speed Most Wanted [ RE ] (HKLM-x32\...\{E3941C80-67B4-48AD-ADA2-255DAFA091BF}) (Version: 1.3 - RelenTech) Nero 12 Essentials Toshiba (HKLM-x32\...\{2EF76291-8647-46F0-89D8-0AA8B72A5420}) (Version: 12.0.00600 - Nero AG) nGlide 1.02 (HKLM-x32\...\nGlide) (Version: 1.02 - Zeus Software) Obsługa programów Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.) Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.) Papers, Please (HKLM-x32\...\GOGPACKPAPERSPLEASE_is1) (Version: 2.0.0.4 - GOG.com) Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden PlanetSide 2 (HKU\S-1-5-21-846750890-3381048881-3130427261-1001\...\SOE-PlanetSide 2 PSG) (Version: 1.0.3.183 - Sony Online Entertainment) Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden Plants vs. Zombies (HKLM-x32\...\Plants vs. Zombies) (Version: - PopCap Games) Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden Premium Sound HD (HKLM\...\{94F03B8E-CB73-4653-AFE9-79112C01FED2}) (Version: 1.12.5000 - SRS Labs, Inc.) Prerequisite installer (x32 Version: 12.0.0002 - Nero AG) Hidden rayman2 (HKLM-x32\...\rayman2) (Version: - ) Realtek Bluetooth Filter Driver Package (HKLM-x32\...\InstallShield_{0CC0980D-811D-43B8-A455-8D150EB5BC0D}) (Version: 12.24.2012.0829 - REALTEK Semiconductor Corp) Realtek Bluetooth Filter Driver Package (x32 Version: 12.24.2012.0829 - REALTEK Semiconductor Corp) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.3.730.2012 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6738 - Realtek Semiconductor Corp.) Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.30136 - Realtek Semiconductor Corp.) Realtek WLAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4fed-B2B9-173001290E16}) (Version: 2.00.0020 - REALTEK Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.50 - Piriform) Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft) Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee) Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.) Speccy (HKLM\...\Speccy) (Version: 1.25 - Piriform) SPORE™ (HKLM-x32\...\{9DF0196F-B6B8-4C3A-8790-DE42AA530101}) (Version: 1.00.0000 - Electronic Arts) Star Wars Empire at War (HKLM-x32\...\{99AE7207-8612-4DBA-A8F8-BAE5C633390D}) (Version: 1.0 - LucasArts) Star Wars Empire at War Forces of Corruption (HKLM-x32\...\{6592FDEC-2C1A-413A-9985-25FEC2F0848D}) (Version: 1.0 - LucasArts) Star Wars JK II Jedi Outcast (HKLM-x32\...\{576E71DA-3000-48F6-9B21-B9A70D47DFCF}) (Version: - ) Star Wars®: Knights of the Old Republic (TM) (HKLM-x32\...\{2A9A40C7-6670-4D5F-8F41-D12E2E08B48B}) (Version: - ) Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation) Steinberg Cubase 5 (HKLM-x32\...\{4A19D6AC-ADE0-4A07-80FF-9C9812C45557}) (Version: 5.1.0 - Steinberg Media Technologies GmbH) Steinberg Drum Loop Expansion 01 (HKLM-x32\...\{490BF87E-1F75-4453-BF55-9F540543A3CA}) (Version: 1.0.0.1 - Steinberg Media Technologies GmbH) Steinberg Groove Agent ONE Content (HKLM-x32\...\{BD86F1AC-B594-46E4-85DC-1258AC9E2232}) (Version: 1.0.0.003 - Steinberg Media Technologies GmbH) Steinberg HALionOne (HKLM-x32\...\{E70E7159-93B1-470D-9FBD-D8E9EF34B538}) (Version: 1.1.0.457 - Steinberg Media Technologies GmbH) Steinberg HALionOne Additional Content Set 01 (HKLM-x32\...\{F3AFD063-8BAD-485E-B641-E7F5A2C5AE71}) (Version: 1.0.0.001 - Steinberg Media Technologies GmbH) Steinberg HALionOne Expression Set (HKLM-x32\...\{E22AD5D3-EB60-4A8F-835C-6C10E369DCE2}) (Version: 1.0.1.0 - Steinberg Media Technologies GmbH) Steinberg HALionOne GM Drum Set (HKLM-x32\...\{AC997F93-0757-4ED4-A701-F40C2D654D09}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH) Steinberg HALionOne GM Set (HKLM-x32\...\{F057965A-D974-4C64-ADB1-4381CD4B8956}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH) Steinberg HALionOne Pro Set (HKLM-x32\...\{D82CDA0D-C182-42C8-8FF2-5649C98D6003}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH) Steinberg HALionOne Studio Drum Set (HKLM-x32\...\{865D9ED1-EAC2-436D-AFA7-0B750EB5AAAB}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH) Steinberg HALionOne Studio Set (HKLM-x32\...\{D23CBFDA-C46B-4920-BA70-FC7878A3F05A}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH) Steinberg LoopMash Content (HKLM-x32\...\{4D454CF8-12FD-464D-B57B-B46FE27B78BB}) (Version: 1.0.0.005 - Steinberg Media Technologies GmbH) Steinberg REVerence Content 01 (HKLM-x32\...\{532B917B-8235-4FA5-BE36-643A8BB053A5}) (Version: 1.0.0.006 - Steinberg Media Technologies GmbH) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.8.21 - Synaptics Incorporated) Testy 2013 e-kierowca (HKLM-x32\...\Testy 2013 e-kierowca) (Version: - ) TOSHIBA Desktop Assist (HKLM\...\{95CCACF0-010D-45F0-82BF-858643D8BC02}) (Version: 1.00.08.6402 - Toshiba Corporation) TOSHIBA eco Utility (HKLM\...\{5944B9D4-3C2A-48DE-931E-26B31714A2F7}) (Version: 2.0.0.6415 - Toshiba Corporation) TOSHIBA Function Key (HKLM\...\{16562A90-71BC-41A0-B890-D91B0C267120}) (Version: 1.00.6626.6406 - Toshiba Corporation) TOSHIBA Manuals (HKLM-x32\...\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}) (Version: 10.10 - TOSHIBA) Toshiba Password Utility (HKLM-x32\...\InstallShield_{78931270-BC9E-441A-A52B-73ECD4ACFAB5}) (Version: 2.00.972 - Toshiba Corporation) TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 1.8.17.640104 - Toshiba Corporation) TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 2.2.1.54043006 - Toshiba Corporation) TOSHIBA Service Station (HKLM\...\{B8C8422F-01F1-4791-B084-047AAFF9BFCC}) (Version: 2.4.4 - TOSHIBA) TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 1.00.0015 - Toshiba Corporation) TOSHIBA System Settings (HKLM-x32\...\{05A55927-DB9B-4E26-BA44-828EBFF829F0}) (Version: 1.00.0002.32002 - Toshiba Corporation) Toshiba TEMPRO (HKLM-x32\...\{F76F5214-83A8-4030-80C9-1EF57391D72A}) (Version: 4.2.2 - Toshiba Europe GmbH) TOSHIBA VIDEO PLAYER (HKLM\...\{FF07604E-C860-40E9-A230-E37FA41F103A}) (Version: 5.1.0.12-A - Toshiba Corporation) Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH) TruePianos 1.5.0 (HKLM\...\TruePianos_is1) (Version: - 4Front Technologies) TruePianos: Amber Module 1.4.0 (HKLM-x32\...\TruePianos: Amber Module_is1) (Version: - 4Front Technologies) TruePianos: Diamond Module 1.4.0 (HKLM-x32\...\TruePianos: Diamond Module_is1) (Version: - 4Front Technologies) TruePianos: Emerald Module 1.4.0 (HKLM-x32\...\TruePianos: Emerald Module_is1) (Version: - 4Front Technologies) TruePianos: Sapphire Module 1.4.0 (HKLM-x32\...\TruePianos: Sapphire Module_is1) (Version: - 4Front Technologies) TuneUp Utilities 2014 (en-US) (x32 Version: 14.0.1000.88 - TuneUp Software) Hidden TuneUp Utilities 2014 (HKLM-x32\...\TuneUp Utilities 2014) (Version: 14.0.1000.88 - TuneUp Software) TuneUp Utilities 2014 (x32 Version: 14.0.1000.88 - TuneUp Software) Hidden Universe Sandbox (HKLM-x32\...\Universe Sandbox) (Version: - ) Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden Usenet.nl (HKLM-x32\...\Usenet.nl_is1) (Version: - ) Vegas Pro 13.0 (64-bit) (HKLM\...\{3814DB30-091D-11E4-BDE0-F04DA23A5C58}) (Version: 13.0.373 - Sony) Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.98 - WildTangent) Hidden War Thunder Launcher 1.0.1.269 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - 2013 Gaijin Entertainment Corporation) Welcome App (Start-up experience) (x32 Version: 12.0.14000 - Nero AG) Hidden WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.3.0 - WildTangent) WildTangent Games App (Toshiba Games) (x32 Version: 4.0.9.7 - WildTangent) Hidden WinAVI Video Converter (HKLM-x32\...\WinAVI Video Converter) (Version: 11.6.1.4734 - ZJMedia Digital Technology Ltd.) Windows Driver Package - Realtek Semiconductor Corp. RtkBtFilter Bluetooth (08/01/2012 2.3.15.3) (HKLM\...\0615DA1B98C5D42231898BD407324D28BA5B20D8) (Version: 08/01/2012 2.3.15.3 - Realtek Semiconductor Corp.) WinRAR 5.00 (32-bitowy) (HKLM-x32\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH) WordBuilder (HKLM-x32\...\{B7DAD844-34CD-456B-83CC-88065323DD69}) (Version: 1.1.21 - East West) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-846750890-3381048881-3130427261-1001_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\pc\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll (GG Network S.A.) ==================== Restore Points ========================= 25-10-2014 15:21:48 SPTD setup V1.86 29-10-2014 19:22:16 Windows Update 06-11-2014 18:09:34 Zaplanowany punkt kontrolny 12-11-2014 17:26:05 Windows Update ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2012-07-26 06:26 - 2012-07-26 06:26 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {04735ACE-2B2C-4AE7-981D-4DB98AF9329E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation) Task: {26BDD4DA-8C74-4930-ADE1-8E8EE95B5B48} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe [2012-07-27] (TOSHIBA Corporation) Task: {32AF34D6-5996-4CDF-A37A-9B769BE61E23} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-846750890-3381048881-3130427261-1001Core => C:\Users\pc\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-02-15] (Facebook Inc.) Task: {383CA6E4-FCA0-49AF-9037-20E0765B1E7C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd) Task: {3D172EA9-18A4-4E64-8384-0CC196BFC531} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\windows\system32\MRT.exe [2014-11-12] (Microsoft Corporation) Task: {4D3532C0-9CCA-4C2B-9C8D-2DF65F1B66FB} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-846750890-3381048881-3130427261-1001UA => C:\Users\pc\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-02-15] (Facebook Inc.) Task: {5C41F29F-DD97-44B2-81D7-62E3DF950E35} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation) Task: {6F1A1329-84E4-4E81-A418-CF225232527C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {71EAD208-BCB8-46BE-AC7D-2903114A1428} - System32\Tasks\Toshiba\CommonNotifier => C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe [2012-09-25] (Toshiba Europe GmbH) Task: {95B4FF02-D233-4616-A245-FA5D13604EE1} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe [2013-08-29] (TuneUp Software) Task: {D4BAD370-B74A-4201-9AC2-AA13F89E7492} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12] (Adobe Systems Incorporated) Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-846750890-3381048881-3130427261-1001Core.job => C:\Users\pc\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-846750890-3381048881-3130427261-1001UA.job => C:\Users\pc\AppData\Local\Facebook\Update\FacebookUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2011-10-13 23:38 - 2011-10-13 23:38 - 00156672 _____ () C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe 2013-08-29 12:08 - 2013-08-29 12:08 - 00757048 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\avgrepliba.dll 2012-09-04 23:19 - 2012-09-04 23:19 - 02611112 _____ () C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe 2012-07-19 03:38 - 2012-07-19 03:38 - 00020904 _____ () C:\Program Files\TOSHIBA\Hotkey\SmoothView.dll 2012-07-19 03:38 - 2012-07-19 03:38 - 00049064 _____ () C:\Program Files\TOSHIBA\Hotkey\Hotkey\FnZ.dll 2012-08-14 04:13 - 2012-08-14 04:13 - 00018344 _____ () C:\Program Files\TOSHIBA\Teco\TecoMUI.dll 2013-12-02 16:39 - 2013-12-02 16:39 - 00421888 _____ () C:\Program Files\putty.exe 2013-09-13 19:51 - 2013-09-13 19:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2013-09-13 19:51 - 2013-09-13 19:51 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) ========================= Accounts: ========================== Administrator (S-1-5-21-846750890-3381048881-3130427261-500 - Administrator - Disabled) Gość (S-1-5-21-846750890-3381048881-3130427261-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-846750890-3381048881-3130427261-1003 - Limited - Enabled) pc (S-1-5-21-846750890-3381048881-3130427261-1001 - Administrator - Enabled) => C:\Users\pc ==================== Faulty Device Manager Devices ============= Name: Teredo Tunneling Pseudo-Interface Description: Microsoft Teredo Tunneling Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (11/13/2014 05:20:44 PM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to poke open firewall Error: (11/13/2014 05:20:32 PM) (Source: Google Update) (EventID: 20) (User: komp) Description: Network Request Error. Error: 0x8004212e. Http status code: 302. Url=https://www.facebook.com/omaha/update.php Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x8004212e. Http status code 302. trying WinHTTP. Send request returned 0x80072efd. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=, direct connection. trying CUP:WinHTTP. Send request returned 0x8004212e. Http status code 302. trying WinHTTP. Send request returned 0x80072efd. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x8004212e. Http status code 302. trying WinHTTP. Send request returned 0x80072efd. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=, direct connection. trying CUP:WinHTTP. Send request returned 0x8004212e Error: (11/13/2014 05:09:16 PM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to poke open firewall Error: (11/13/2014 05:08:57 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: komp) Description: Package Microsoft.MicrosoftSolitaireCollection_1.0.0.0_x86__8wekyb3d8bbwe was terminated because it took too long to suspend. Error: (11/12/2014 06:37:37 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Activation context generation failed for "UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"1".Error in manifest or policy file "UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"2" on line UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"3. Component identity found in manifest does not match the identity of the component requested. Reference is UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0". Definition is UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0". Please use sxstrace.exe for detailed diagnosis. Error: (11/12/2014 02:36:03 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: komp) Description: Activation of application microsoft.windowsphotos_8wekyb3d8bbwe!Microsoft.WindowsLive.ModernPhotos failed with error: -2144927142 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (11/12/2014 02:36:03 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: The program UNKNOWN version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: 860 Start Time: 01cffe7d533fda01 Termination Time: 4294967295 Application Path: UNKNOWN Report Id: ab7bb548-6a70-11e4-bf1a-c0d962382821 Faulting package full name: microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe Faulting package-relative application ID: Microsoft.WindowsLive.ModernPhotos Error: (11/12/2014 02:34:43 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: komp) Description: App microsoft.windowsphotos_8wekyb3d8bbwe!Microsoft.WindowsLive.ModernPhotos did not launch within its allotted time. Error: (11/12/2014 02:10:45 PM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to poke open firewall Error: (11/11/2014 08:20:06 PM) (Source: Google Update) (EventID: 20) (User: komp) Description: Network Request Error. Error: 0x80072ee7. Http status code: 0. Url=https://www.facebook.com/omaha/update.php Trying config: source=FireFox, direct connection. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=FireFox, direct connection. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x80 System errors: ============= Error: (11/13/2014 05:19:44 PM) (Source: DCOM) (EventID: 10016) (User: komp) Description: właściwe dla aplikacjiLokalnyUruchom{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}komppcS-1-5-21-846750890-3381048881-3130427261-1001LocalHost (użycie LRPC)NiedostępnyNiedostępny Error: (11/13/2014 05:19:44 PM) (Source: DCOM) (EventID: 10016) (User: komp) Description: właściwe dla aplikacjiLokalnyUruchom{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}komppcS-1-5-21-846750890-3381048881-3130427261-1001LocalHost (użycie LRPC)NiedostępnyNiedostępny Error: (11/13/2014 05:19:44 PM) (Source: DCOM) (EventID: 10016) (User: komp) Description: właściwe dla aplikacjiLokalnyUruchom{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}komppcS-1-5-21-846750890-3381048881-3130427261-1001LocalHost (użycie LRPC)NiedostępnyNiedostępny Error: (11/13/2014 05:19:44 PM) (Source: DCOM) (EventID: 10016) (User: komp) Description: właściwe dla aplikacjiLokalnyUruchom{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}komppcS-1-5-21-846750890-3381048881-3130427261-1001LocalHost (użycie LRPC)NiedostępnyNiedostępny Error: (11/13/2014 05:19:43 PM) (Source: DCOM) (EventID: 10016) (User: komp) Description: właściwe dla aplikacjiLokalnyUruchom{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}komppcS-1-5-21-846750890-3381048881-3130427261-1001LocalHost (użycie LRPC)NiedostępnyNiedostępny Error: (11/13/2014 05:19:43 PM) (Source: DCOM) (EventID: 10016) (User: komp) Description: właściwe dla aplikacjiLokalnyUruchom{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}komppcS-1-5-21-846750890-3381048881-3130427261-1001LocalHost (użycie LRPC)NiedostępnyNiedostępny Error: (11/13/2014 05:19:09 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: ZARZĄDZANIE NT) Description: 0x8000002a26\??\C:\Users\pc\ntuser.dat Error: (11/13/2014 05:18:02 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\windows\system32\Rtlihvs.dll Error: (11/13/2014 05:18:02 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\windows\system32\Rtlihvs.dll Error: (11/13/2014 05:17:43 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\windows\system32\Rtlihvs.dll Microsoft Office Sessions: ========================= Error: (11/13/2014 05:20:44 PM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Failed to poke open firewall Error: (11/13/2014 05:20:32 PM) (Source: Google Update) (EventID: 20) (User: komp) Description: Network Request Error. Error: 0x8004212e. Http status code: 302. Url=https://www.facebook.com/omaha/update.php Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x8004212e. Http status code 302. trying WinHTTP. Send request returned 0x80072efd. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=, direct connection. trying CUP:WinHTTP. Send request returned 0x8004212e. Http status code 302. trying WinHTTP. Send request returned 0x80072efd. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x8004212e. Http status code 302. trying WinHTTP. Send request returned 0x80072efd. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=, direct connection. trying CUP:WinHTTP. Send request returned 0x8004212e Error: (11/13/2014 05:09:16 PM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Failed to poke open firewall Error: (11/13/2014 05:08:57 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: komp) Description: Microsoft.MicrosoftSolitaireCollection_1.0.0.0_x86__8wekyb3d8bbwe Error: (11/12/2014 06:37:37 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0"c:\program files (x86)\microsoft office\Office15\lync.exe.Manifestc:\program files (x86)\microsoft office\Office15\UccApi.DLL1 Error: (11/12/2014 02:36:03 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: komp) Description: microsoft.windowsphotos_8wekyb3d8bbwe!Microsoft.WindowsLive.ModernPhotos-2144927142 Error: (11/12/2014 02:36:03 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: UNKNOWN0.0.0.086001cffe7d533fda014294967295UNKNOWNab7bb548-6a70-11e4-bf1a-c0d962382821microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbweMicrosoft.WindowsLive.ModernPhotos Error: (11/12/2014 02:34:43 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: komp) Description: microsoft.windowsphotos_8wekyb3d8bbwe!Microsoft.WindowsLive.ModernPhotos Error: (11/12/2014 02:10:45 PM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Failed to poke open firewall Error: (11/11/2014 08:20:06 PM) (Source: Google Update) (EventID: 20) (User: komp) Description: Network Request Error. Error: 0x80072ee7. Http status code: 0. Url=https://www.facebook.com/omaha/update.php Trying config: source=FireFox, direct connection. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=FireFox, direct connection. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x80 ==================== Memory info =========================== Processor: AMD E2-1800 APU with Radeon(tm) HD Graphics Percentage of memory in use: 25% Total physical RAM: 7779.26 MB Available physical RAM: 5778.98 MB Total Pagefile: 15715.26 MB Available Pagefile: 13518.29 MB Total Virtual: 8192 MB Available Virtual: 8191.84 MB ==================== Drives ================================ Drive c: (TI31021800A) (Fixed) (Total:455.06 GB) (Free:201.39 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: 00000000) Partition: GPT Partition Type. ==================== End Of Log ============================