Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-01-2015 01 Ran by Manikowscy at 2015-01-17 21:27:05 Running from C:\Users\Manikowscy\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-3202145650-2513813934-557568994-1000\...\uTorrent) (Version: 3.4.1.30740 - BitTorrent Inc.) 64 Bit HP CIO Components Installer (Version: 1.2.0 - Hewlett-Packard) Hidden Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.3.183.10 - Adobe Systems Incorporated) Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated) Adobe Reader X MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.0.0 - Adobe Systems Incorporated) AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 1.04.01 - ASUSTeK Computer Inc.) ALLMediaServer (HKLM-x32\...\{FE77909E-B782-4554-A92A-4D887CEF0ACC}_is1) (Version: 0.95 - ALLCinema Ltd.) ALLPlayer V5.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLCinema Ltd.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Applian FLV and Media Player 3.1.1.12 (HKLM-x32\...\Applian FLV and Media Player) (Version: 3.1.1.12 - Applian Technologies) ASUS Secure Delete (HKLM\...\{761C6783-D3BC-48AB-8E7C-61CE918A8436}) (Version: 1.00.0011 - ASUS) ASUS WebStorage (HKLM-x32\...\ASUS WebStorage) (Version: 3.0.108.222 - eCareme Technologies, Inc.) AutoCAD 2012 - Polski (HKLM\...\AutoCAD 2012 - Polski) (Version: 18.2.51.0 - Autodesk) AutoCAD 2012 - Polski (Version: 18.2.51.0 - Autodesk) Hidden AutoCAD 2012 Language Pack - Polski (Version: 18.2.51.0 - Autodesk) Hidden AutoCAD Mechanical 2012 (HKLM\...\AutoCAD Mechanical 2012) (Version: 16.0.49.0 - Autodesk) AutoCAD Mechanical 2012 (Version: 16.0.49.0 - Autodesk) Hidden AutoCAD Mechanical 2012 Language Pack - Polski (Version: 16.0.49.0 - Autodesk) Hidden Autodesk Inventor Fusion 2012 (HKLM\...\Autodesk Inventor Fusion 2012) (Version: 1.0.0.79 - Autodesk, Inc.) Autodesk Inventor Fusion 2012 (Version: 1.0.0.79 - Autodesk, Inc.) Hidden Autodesk Inventor Fusion 2012 Language Pack (Version: 1.0.0.79 - Autodesk, Inc.) Hidden Autodesk Inventor Fusion plug-in for AutoCAD 2012 (HKLM\...\Dodatek Autodesk Inventor Fusion dla programu AutoCAD 2012) (Version: 0.0.1.138 - Autodesk) Autodesk Material Library 2012 (HKLM-x32\...\{8F0837C2-EE09-4903-88F3-1976FE7FFF4E}) (Version: 2.5.0.8 - Autodesk) Autodesk Material Library Base Resolution Image Library 2012 (HKLM-x32\...\{65420DC9-306E-4371-905F-F4DC3B418E52}) (Version: 2.5.0.8 - Autodesk) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software) Bing Bar (HKLM-x32\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation) BITZER Software 5.3.2 (HKLM-x32\...\BITZER Software_is1) (Version: - ) Brother MFL-Pro Suite DCP-195C (HKLM-x32\...\{6BF66AED-3EA4-4106-B240-5CE96C9B76B0}) (Version: 2.0.0.0 - Brother Industries, Ltd.) ChomikBox (HKLM-x32\...\{26050F54-3928-4D9C-849A-C48A9E831E6F}) (Version: 2.0.5.0 - Chomikuj.pl) ConceptDraw 7 Professional (HKLM-x32\...\{FBCDE9B9-8AD3-4EC9-91AB-63CD7F189224}) (Version: 7.5.0 - CS Odessa) CoolPack (HKLM-x32\...\CoolPack_is1) (Version: - ) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Dodatek Autodesk Inventor Fusion dla programu AutoCAD 2012 (Version: 0.0.1.138 - Autodesk) Hidden Dodatek Autodesk Inventor Fusion Language Pack dla programu AutoCAD 2012 (Version: 0.0.1.138 - Autodesk) Hidden Dropbox (HKU\S-1-5-21-3202145650-2513813934-557568994-1000\...\Dropbox) (Version: 3.0.3 - Dropbox, Inc.) FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production) FARO LS 1.1.501.0 (64bit) (HKLM-x32\...\{8A470330-70B2-49AD-86AF-79885EF9898A}) (Version: 5.1.0.30630 - FARO Scanner Production) Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych (HKLM-x32\...\{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}) (Version: 15.4.5722.2 - Microsoft Corporation) Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden GIMP 2.8.6 (HKLM\...\GIMP-2_is1) (Version: 2.8.6 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.99 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Gothic (HKLM-x32\...\{DB858BBA-104E-40DD-BDC0-A12391F67C2E}) (Version: 1.08 - Piranha Bytes) Gothic 3 Zmierzch Bogów Edycja Rozszerzona (HKLM-x32\...\{6890095D-D7FE-465A-9B1D-BE605B1F5FD9_CDP}_is1) (Version: - Nordic Games GmbH) Gothic II Złota Edycja (HKLM-x32\...\{B4FD3F41-E90C-4A3E-AADF-F2FB64CF2E42}) (Version: 2.6 - JoWood) Gothic III (HKLM-x32\...\{02B244A2-7F6A-42E8-A36F-8C385D7A1625}) (Version: 1.00.0000 - JoWooD Productions Software AG) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.4.1441 - Intel Corporation) Intel(R) Network Connections 17.1.55.0 (HKLM\...\PROSetDX) (Version: 17.1.55.0 - Intel) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation) Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation) Java 7 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417045FF}) (Version: 7.0.450 - Oracle) Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle) Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Mathcad 14 (HKLM-x32\...\{E666A69B-A76D-43D5-AF28-4B2150A6EDE2}) (Version: 14.0.3.0 - PTC) Mathcad 14 Help (HKLM-x32\...\{205ACCD7-5342-4694-91F3-3A99E4FD5AA6}) (Version: 14 - Mathsoft) Mathcad 14 Resource Center (HKLM-x32\...\{EBD38AE9-D52D-448D-9DB4-4D5F66E1DAFC}) (Version: 14 - Mathsoft) MATLAB R2013b (HKLM\...\Matlab R2013b) (Version: 8.2 - The MathWorks, Inc.) McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.141.11 - McAfee, Inc.) Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Mozilla Firefox 35.0 (x86 pl) (HKLM-x32\...\Mozilla Firefox 35.0 (x86 pl)) (Version: 35.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla) MPC-HC 1.6.4.6052 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.6.4.6052 - MPC-HC Team) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) NVIDIA Oprogramowanie systemu PhysX 9.12.0213 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0213 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 296.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 296.27 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.12.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.12.0 - NVIDIA Corporation) NVIDIA Sterownik graficzny 296.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 296.27 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 296.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 296.16 - NVIDIA Corporation) Oblivion (HKLM-x32\...\{35CB6715-41F8-4F99-8881-6FC75BF054B0}) (Version: 1.00.0000 - Bethesda Softworks) Obsługa programów Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM-x32\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation) Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia (HKLM-x32\...\{C2FD7DB5-FE30-49B6-8A2F-C5652E053C31}) (Version: 15.4.5722.2 - Microsoft Corporation) Panel sterowania NVIDIA 296.27 (Version: 296.27 - NVIDIA Corporation) Hidden PaperPort Image Printer 64-bit (HKLM\...\{ABA4FAF1-6389-45F9-92CE-3914A4E5C471}) (Version: 1.00.0000 - Nuance Communications, Inc.) PDF-XChange Viewer (HKLM\...\{9ED333F8-3E6C-4A38-BAFA-728454121CDA}) (Version: 2.5.212.0 - Tracker Software Products (Canada) Ltd.) Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden Poczta usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.) Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7100.30103 - Realtek Semiconductor Corp.) Revo Uninstaller Pro 3.0.7 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.7 - VS Revo Group, Ltd.) ScanSoft PaperPort 11 (HKLM-x32\...\{5C4ED859-875F-4299-AA2C-E0E393BDCD21}) (Version: 11.2.0000 - Nuance Communications, Inc.) Secure Download Manager (HKLM-x32\...\{E040B65B-8683-4228-8C33-D44A141E40EA}) (Version: 3.1.60 - Kivuto Solutions Inc.) Selection Software 7.10 (HKLM-x32\...\{77097B1F-DB01-4AAD-BE1F-42A33A7883E1}) (Version: 7.10 - Emerson Climate Technologies GmbH) Selection Software 7.6 (HKLM-x32\...\{01F0D742-88FC-420E-B0CA-A78E095A910E}) (Version: 7.6 - Emerson Climate Technologies GmbH) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) SketchUp Import for AutoCAD 2014 (HKLM-x32\...\{644E9589-F73A-49A4-AC61-A953B9DE5669}) (Version: 1.1.0 - Autodesk) Solkane 7 (HKLM-x32\...\{198CEC10-2AA2-4EF1-891B-45557E4574B3}) (Version: 7.00.0000 - Solvay Fluor) Usługa Autodesk Content Service (HKLM-x32\...\{086F9A69-CD39-4893-A9FB-D3A0634CE3F7}) (Version: 2.0.90 - Autodesk) VIA Platform Device Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.) VT Angielski Kurs podstawowy mp3 (HKLM-x32\...\vt30angmp3_is1) (Version: - ) Wiedźmin (HKLM-x32\...\{F138762F-5A1F-4CF0-A5E1-1588EF6088A4}) (Version: 1.00.0000 - CD Projekt Red) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz (HKLM-x32\...\{6E29C4F7-C2C2-4B18-A15C-E09B92065F15}) (Version: 15.4.5722.2 - Microsoft Corporation) WinRAR 5.00 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH) WinZip 17.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DD}) (Version: 17.5.10562 - WinZip Computing, S.L. ) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-3202145650-2513813934-557568994-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Manikowscy\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3202145650-2513813934-557568994-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe No File CustomCLSID: HKU\S-1-5-21-3202145650-2513813934-557568994-1000_Classes\CLSID\{6D7AE628-FF41-4CD3-91DD-34825BB1A251}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Polski\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3202145650-2513813934-557568994-1000_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe /Automation No File CustomCLSID: HKU\S-1-5-21-3202145650-2513813934-557568994-1000_Classes\CLSID\{B77E471C-FBF3-4CB5-880F-D7528AD4B349}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Polski\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3202145650-2513813934-557568994-1000_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe /Automation No File CustomCLSID: HKU\S-1-5-21-3202145650-2513813934-557568994-1000_Classes\CLSID\{C92FB640-AD4D-498A-9979-A51A2540C977}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Polski\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3202145650-2513813934-557568994-1000_Classes\CLSID\{D70E31AD-2614-49F2-B0FC-ACA781D81F3E}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Polski\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3202145650-2513813934-557568994-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Polski\acadficn.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3202145650-2513813934-557568994-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Manikowscy\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3202145650-2513813934-557568994-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Manikowscy\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3202145650-2513813934-557568994-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Manikowscy\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3202145650-2513813934-557568994-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Manikowscy\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.) ==================== Restore Points ========================= 02-01-2015 20:18:54 ComboFix created restore point 06-01-2015 13:26:10 Windows Update 09-01-2015 19:53:55 Windows Update 12-01-2015 22:20:30 Installed Selection Software 7.10 13-01-2015 02:53:16 Installed Selection Software 7.6 13-01-2015 12:07:24 Windows Update 15-01-2015 03:00:23 Windows Update 17-01-2015 21:14:07 SPTD setup V1.86 ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:34 - 2015-01-02 19:54 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {0251E8FB-B227-43CA-9384-943A2830ADD9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-02] (Google Inc.) Task: {0280BE88-7E21-41F6-910A-DD117BCFD382} - System32\Tasks\Secure Delete => C:\Program Files\ASUS\ASUS Secure Delete\ADDEL.exe [2012-03-14] () Task: {14440BDE-D079-4399-9D59-5D9CB0B53B2A} - System32\Tasks\{D572B549-5A43-42DA-AE82-7F99A7B76F86} => pcalua.exe -a I:\Update\TWEE_Upgrade-Unregistered.exe -d I:\Update Task: {1F6C8985-0262-4BDF-A459-D90B490B3E44} - System32\Tasks\MATLAB R2013b Startup Accelerator => C:\Program Files\MATLAB\R2013b\bin\win64\MATLABStartupAccelerator.exe [2013-08-05] () Task: {2855940A-A5D1-493F-ABBC-AD099B2B06A3} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-01-02] (AVAST Software) Task: {8A7F0C9A-6DA6-4A5F-B21D-44406F8C8480} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-02] (Google Inc.) Task: {C84760EE-AAA3-4302-8A8D-64794EC65AE0} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc Task: {E46BFB2F-E1E1-438D-A3E9-99506D83934B} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\MATLAB R2013b Startup Accelerator.job => C:\Program Files\MATLAB\R2013b\bin\win64\MATLABStartupAccelerator.exe ==================== Loaded Modules (whitelisted) ============= 2012-10-30 12:17 - 2012-06-01 10:42 - 00920736 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe 2015-01-02 17:31 - 2015-01-02 17:31 - 00388208 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxDDU.dll 2015-01-02 17:31 - 2015-01-02 17:31 - 05851328 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxRT.dll 2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2012-03-14 19:59 - 2012-03-14 19:59 - 00556976 _____ () C:\Program Files\ASUS\ASUS Secure Delete\ADDEL.exe 2015-01-17 20:45 - 2015-01-17 20:45 - 02911744 _____ () C:\Program Files\AVAST Software\Avast\defs\15011701\algo.dll 2015-01-02 17:31 - 2015-01-02 17:31 - 04495336 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\x86\VBoxRT-x86.dll 2012-10-30 12:17 - 2015-01-17 21:16 - 00023552 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll 2012-10-30 12:17 - 2010-06-29 03:58 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll 2011-07-29 14:59 - 2011-07-29 14:59 - 02293248 _____ () C:\Program Files (x86)\ChomikBox\QtCore4.dll 2011-03-30 07:16 - 2011-03-30 07:16 - 08173568 _____ () C:\Program Files (x86)\ChomikBox\QtGui4.dll 2011-03-30 06:59 - 2011-03-30 06:59 - 00971776 _____ () C:\Program Files (x86)\ChomikBox\QtNetwork4.dll 2011-03-30 06:57 - 2011-03-30 06:57 - 00339968 _____ () C:\Program Files (x86)\ChomikBox\QtXml4.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00699392 _____ () C:\Program Files (x86)\ChomikBox\libgstreamer-0.10.dll 2011-12-02 14:14 - 2011-12-02 14:14 - 01396736 _____ () C:\Program Files (x86)\ChomikBox\libxml2-2.dll 2011-12-02 14:14 - 2011-12-02 14:14 - 00085504 _____ () C:\Program Files (x86)\ChomikBox\z.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00053760 _____ () C:\Program Files (x86)\ChomikBox\libgstinterfaces-0.10.dll 2011-03-30 10:49 - 2011-03-30 10:49 - 00028672 _____ () C:\Program Files (x86)\ChomikBox\imageformats\qico4.dll 2011-03-30 10:48 - 2011-03-30 10:48 - 00026624 _____ () C:\Program Files (x86)\ChomikBox\imageformats\qgif4.dll 2011-03-30 10:48 - 2011-03-30 10:48 - 00196608 _____ () C:\Program Files (x86)\ChomikBox\imageformats\qjpeg4.dll 2011-03-30 10:48 - 2011-03-30 10:48 - 00220672 _____ () C:\Program Files (x86)\ChomikBox\imageformats\qmng4.dll 2011-03-30 10:49 - 2011-03-30 10:49 - 00284672 _____ () C:\Program Files (x86)\ChomikBox\imageformats\qtiff4.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00013824 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstacmmp3dec.dll 2011-12-02 14:14 - 2011-12-02 14:14 - 00041984 _____ () C:\Program Files (x86)\ChomikBox\libgstriff-0.10.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00133120 _____ () C:\Program Files (x86)\ChomikBox\libgsttag-0.10.dll 2011-12-02 14:14 - 2011-12-02 14:14 - 00253440 _____ () C:\Program Files (x86)\ChomikBox\libgstbase-0.10.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00109568 _____ () C:\Program Files (x86)\ChomikBox\libgstaudio-0.10.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00038400 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstaiff.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00018944 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstalaw.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00015360 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstapetag.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00098304 _____ () C:\Program Files (x86)\ChomikBox\libgstpbutils-0.10.dll 2011-12-02 14:14 - 2011-12-02 14:14 - 00038912 _____ () C:\Program Files (x86)\ChomikBox\libgstvideo-0.10.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00008192 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstapp.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00039936 _____ () C:\Program Files (x86)\ChomikBox\libgstapp-0.10.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00095232 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstasf.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00070656 _____ () C:\Program Files (x86)\ChomikBox\libgstrtp-0.10.dll 2011-12-02 14:14 - 2011-12-02 14:14 - 00025088 _____ () C:\Program Files (x86)\ChomikBox\libgstsdp-0.10.dll 2011-12-02 14:14 - 2011-12-02 14:14 - 00070144 _____ () C:\Program Files (x86)\ChomikBox\libgstrtsp-0.10.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00064000 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstasfmux.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00078336 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstaudioconvert.dll 2011-12-02 14:14 - 2011-12-02 14:14 - 00563712 _____ () C:\Program Files (x86)\ChomikBox\liborc-0.4-0.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00020480 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstaudiorate.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00052224 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstaudioresample.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00018944 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstauparse.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00029184 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstautodetect.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00022528 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstcdxaparse.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00212992 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstcoreelements.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00011776 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstcoreindexers.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00032768 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstdecodebin.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00086016 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstdecodebin2.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00228864 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstdirectsound.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00026624 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstequalizer.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00126976 _____ () C:\Program Files (x86)\ChomikBox\libgstcontroller-0.10.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00180736 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstffmpeg-lgpl.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00111104 _____ () C:\Program Files (x86)\ChomikBox\avutil-lgpl-50.dll 2011-12-02 14:14 - 2011-12-02 14:14 - 00881664 _____ () C:\Program Files (x86)\ChomikBox\avformat-lgpl-52.dll 2011-12-02 14:14 - 2011-12-02 14:14 - 05038592 _____ () C:\Program Files (x86)\ChomikBox\avcodec-lgpl-52.dll 2011-12-02 14:14 - 2011-12-02 14:14 - 00018944 _____ () C:\Program Files (x86)\ChomikBox\avcore-lgpl-0.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00067584 _____ () C:\Program Files (x86)\ChomikBox\libbz2.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00069120 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstflac.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00331264 _____ () C:\Program Files (x86)\ChomikBox\libFLAC-8.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00023552 _____ () C:\Program Files (x86)\ChomikBox\libogg-0.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00015872 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgsticydemux.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00032256 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstid3demux.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00035840 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstinterleave.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00019456 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstlevel.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00047616 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstmpegaudioparse.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00151040 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstmpegdemux.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00030208 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstmpegpsmux.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00059904 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstmpegstream.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00039424 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstmpegtsmux.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00023552 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstneonhttpsrc.dll 2011-12-02 14:14 - 2011-12-02 14:14 - 00125952 _____ () C:\Program Files (x86)\ChomikBox\libneon-27.dll 2011-12-02 14:14 - 2011-12-02 14:14 - 00167424 _____ () C:\Program Files (x86)\ChomikBox\libexpat-1.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00604160 _____ () C:\Program Files (x86)\ChomikBox\libgcrypt-11.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00035328 _____ () C:\Program Files (x86)\ChomikBox\libgpg-error-0.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00718336 _____ () C:\Program Files (x86)\ChomikBox\libgnutls-26.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00077312 _____ () C:\Program Files (x86)\ChomikBox\libtasn1-3.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00014336 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstnetsim.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00132608 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstogg.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00197632 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstplaybin.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00149504 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstqtdemux.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00114688 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstqtmux.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00035840 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstrawparse.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00030208 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstreal.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00035328 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstreplaygain.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00017920 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstspeed.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00012288 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgststereo.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00022016 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgsttta.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00061952 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgsttypefindfunctions.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00034304 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstvolume.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00053760 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstvorbis.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00162304 _____ () C:\Program Files (x86)\ChomikBox\libvorbis-0.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 01520128 _____ () C:\Program Files (x86)\ChomikBox\libvorbisenc-2.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00019968 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstwasapi.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00015360 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstwaveenc.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00015872 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstwaveformsink.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00050688 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstwavpack.dll 2011-12-02 14:14 - 2011-12-02 14:14 - 00196608 _____ () C:\Program Files (x86)\ChomikBox\libwavpack-1.dll 2011-12-02 14:15 - 2011-12-02 14:15 - 00042496 _____ () C:\Program Files (x86)\ChomikBox\gplugins\libgstwavparse.dll 2012-02-22 16:25 - 2012-02-22 16:25 - 00025088 _____ () C:\Program Files (x86)\ChomikBox\tsplugins\integration\chomikbox_win7.tsp 2015-01-02 17:31 - 2015-01-02 17:31 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2014-10-22 01:22 - 2014-10-22 01:22 - 00750080 _____ () C:\Users\Manikowscy\AppData\Roaming\Dropbox\bin\libGLESv2.dll 2015-01-17 21:17 - 2015-01-17 21:17 - 00043008 _____ () c:\Users\Manikowscy\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpwdr8a1.dll 2014-10-22 01:22 - 2014-10-22 01:22 - 00047616 _____ () C:\Users\Manikowscy\AppData\Roaming\Dropbox\bin\libEGL.dll 2014-10-22 01:22 - 2014-10-22 01:22 - 00863744 _____ () C:\Users\Manikowscy\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll 2014-10-22 01:22 - 2014-10-22 01:22 - 00200704 _____ () C:\Users\Manikowscy\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll 2015-01-15 02:40 - 2015-01-15 02:40 - 03925104 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll 2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2013-10-17 12:03 - 2012-03-06 13:27 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2014-12-12 21:05 - 2014-12-12 21:05 - 16843952 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup MSCONFIG\startupfolder: C:^Users^Manikowscy^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.1.lnk => C:\Windows\pss\OpenOffice.org 3.4.1.lnk.Startup MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" MSCONFIG\startupreg: AlcoholAutomount => "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount MSCONFIG\startupreg: ALLUpdate => "C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe" "sleep" MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" MSCONFIG\startupreg: BrMfcWnd => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN MSCONFIG\startupreg: ChomikBox => C:\Program Files (x86)\ChomikBox\chomikbox.exe MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: HDAudDeck => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r MSCONFIG\startupreg: IMSS => "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" MSCONFIG\startupreg: mobilegeni daemon => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime ========================= Accounts: ========================== Administrator (S-1-5-21-3202145650-2513813934-557568994-500 - Administrator - Disabled) Gość (S-1-5-21-3202145650-2513813934-557568994-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3202145650-2513813934-557568994-1002 - Limited - Enabled) Manikowscy (S-1-5-21-3202145650-2513813934-557568994-1000 - Administrator - Enabled) => C:\Users\Manikowscy ==================== Faulty Device Manager Devices ============= Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (01/17/2015 09:16:18 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/17/2015 09:16:14 PM) (Source: Autodesk Content Service) (EventID: 0) (User: ) Description: Nie można uruchomić usługi. Connect.Exceptions.IndexingServiceException: IndexingServiceErrCodes:129:UnexpectedDatabase w Connect.MetaStore.MetaStorage.Initialize() w Connect.IVault.IVault.OnStart(String[] args) w System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (01/17/2015 09:14:06 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Odmowa dostępu. . To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym. Operacja: Zbieranie danych modułu zapisującego Kontekst: Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220} Nazwa modułu zapisującego: System Writer Identyfikator wystąpienia modułu zapisującego: {898edb78-0df3-4774-aab7-31bd986827dd} Error: (01/17/2015 08:46:12 PM) (Source: Autodesk Content Service) (EventID: 0) (User: ) Description: Nie można uruchomić usługi. Connect.Exceptions.IndexingServiceException: IndexingServiceErrCodes:129:UnexpectedDatabase w Connect.MetaStore.MetaStorage.Initialize() w Connect.IVault.IVault.OnStart(String[] args) w System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (01/17/2015 08:46:06 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/17/2015 03:40:06 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: plugin-container.exe, wersja: 35.0.0.5486, sygnatura czasowa: 0x54af7153 Nazwa modułu powodującego błąd: mozalloc.dll, wersja: 35.0.0.5486, sygnatura czasowa: 0x54af69d4 Kod wyjątku: 0x80000003 Przesunięcie błędu: 0x00001425 Identyfikator procesu powodującego błąd: 0x1294 Godzina uruchomienia aplikacji powodującej błąd: 0xplugin-container.exe0 Ścieżka aplikacji powodującej błąd: plugin-container.exe1 Ścieżka modułu powodującego błąd: plugin-container.exe2 Identyfikator raportu: plugin-container.exe3 Error: (01/16/2015 10:11:41 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/16/2015 10:11:11 AM) (Source: Autodesk Content Service) (EventID: 0) (User: ) Description: Nie można uruchomić usługi. Connect.Exceptions.IndexingServiceException: IndexingServiceErrCodes:129:UnexpectedDatabase w Connect.MetaStore.MetaStorage.Initialize() w Connect.IVault.IVault.OnStart(String[] args) w System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (01/15/2015 10:33:21 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1”. Błąd w pliku manifestu lub w pliku zasad „C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2” w wierszu C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Składnik 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (01/15/2015 03:17:18 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 System errors: ============= Error: (01/17/2015 09:16:35 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla Type nie powiodło się i wystąpił następujący błąd: %%5. Error: (01/17/2015 09:16:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi atksgt z powodu następującego błędu: %%1275 Error: (01/17/2015 09:16:11 PM) (Source: Application Popup) (EventID: 875) (User: ) Description: Sterownik atksgt.sys został zablokowany dla ładowania. Error: (01/17/2015 08:46:21 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla Type nie powiodło się i wystąpił następujący błąd: %%5. Error: (01/17/2015 08:45:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi atksgt z powodu następującego błędu: %%1275 Error: (01/17/2015 08:45:03 PM) (Source: Application Popup) (EventID: 875) (User: ) Description: Sterownik atksgt.sys został zablokowany dla ładowania. Error: (01/17/2015 08:42:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Usługa udostępniania w sieci programu Windows Media Player niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (01/17/2015 08:42:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Windows Search niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (01/17/2015 08:42:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Bufor wydruku niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 60000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (01/17/2015 08:42:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Windows Live ID Sign-in Assistant niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Microsoft Office Sessions: ========================= Error: (01/17/2015 09:16:18 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/17/2015 09:16:14 PM) (Source: Autodesk Content Service) (EventID: 0) (User: ) Description: Nie można uruchomić usługi. Connect.Exceptions.IndexingServiceException: IndexingServiceErrCodes:129:UnexpectedDatabase w Connect.MetaStore.MetaStorage.Initialize() w Connect.IVault.IVault.OnStart(String[] args) w System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (01/17/2015 09:14:06 PM) (Source: VSS) (EventID: 8194) (User: ) Description: 0x80070005, Odmowa dostępu. Operacja: Zbieranie danych modułu zapisującego Kontekst: Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220} Nazwa modułu zapisującego: System Writer Identyfikator wystąpienia modułu zapisującego: {898edb78-0df3-4774-aab7-31bd986827dd} Error: (01/17/2015 08:46:12 PM) (Source: Autodesk Content Service) (EventID: 0) (User: ) Description: Nie można uruchomić usługi. Connect.Exceptions.IndexingServiceException: IndexingServiceErrCodes:129:UnexpectedDatabase w Connect.MetaStore.MetaStorage.Initialize() w Connect.IVault.IVault.OnStart(String[] args) w System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (01/17/2015 08:46:06 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/17/2015 03:40:06 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: plugin-container.exe35.0.0.548654af7153mozalloc.dll35.0.0.548654af69d48000000300001425129401d031c670376862C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dllba0686ea-9e56-11e4-9050-60a44c23fbb0 Error: (01/16/2015 10:11:41 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/16/2015 10:11:11 AM) (Source: Autodesk Content Service) (EventID: 0) (User: ) Description: Nie można uruchomić usługi. Connect.Exceptions.IndexingServiceException: IndexingServiceErrCodes:129:UnexpectedDatabase w Connect.MetaStore.MetaStorage.Initialize() w Connect.IVault.IVault.OnStart(String[] args) w System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (01/15/2015 10:33:21 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Manikowscy\Downloads\SoftonicDownloader_dla_winzip.exe Error: (01/15/2015 03:17:18 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 CodeIntegrity Errors: =================================== Date: 2015-01-02 19:52:23.600 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-01-02 19:52:23.505 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz Percentage of memory in use: 30% Total physical RAM: 8128.88 MB Available physical RAM: 5647.62 MB Total Pagefile: 16255.93 MB Available Pagefile: 13574.67 MB Total Virtual: 8192 MB Available Virtual: 8191.81 MB ==================== Drives ================================ Drive c: (Win7) (Fixed) (Total:372.6 GB) (Free:232.44 GB) NTFS ==>[System with boot components (obtained from reading drive)] Drive d: (DATA) (Fixed) (Total:545.81 GB) (Free:419.91 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 402C6A50) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=13 GB) - (Type=1B) Partition 3: (Not Active) - (Size=372.6 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=545.8 GB) - (Type=07 NTFS) ==================== End Of Log ============================