Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-03-2015 01 Ran by faf at 2015-03-06 07:13:46 Running from C:\ Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 18 Wheels of Steel: Extreme Trucker (HKLM-x32\...\18 Wheels of Steel - Extreme Trucker/PL-Polish_is1) (Version: - City Interactive) 18 Wheels of Steel: Pedal to the Metal (HKLM-x32\...\18 Wheels of Steel - Pedal to the Metal/PL-Polish_is1) (Version: - City Interactive) ABC z Reksiem (HKLM-x32\...\{B37A722C-08C4-4E83-BA7B-E5B186F0B894}) (Version: 1.0.0 - AidemMedia) Adobe Acrobat 5.0 CE (HKLM-x32\...\Adobe Acrobat 5.0) (Version: 5.0 - Adobe Systems, Inc.) Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated) Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated) Aerosoft's - Aerosoft Launcher (HKLM-x32\...\{EE11CFFC-898C-4875-8A63-8B732A9AD43B}) (Version: 1.1.0.1 - Aerosoft) Agrar Symulator 2011 Złota Edycja (HKLM-x32\...\{67C8CE24-8B36-4314-832B-0EB258767866}) (Version: 1.0.0 - Techland) Alcor Micro USB Card Reader (HKLM-x32\...\InstallShield_{F4BF5F6B-F695-4762-AEB2-D095A4C34D89}) (Version: 1.5.17.25482 - Alcor Micro Corp.) Alcor Micro USB Card Reader (x32 Version: 1.5.17.25482 - Alcor Micro Corp.) Hidden Angry Birds Breakfast 1 (HKLM-x32\...\{DE5BE262-C5E7-49B2-A673-56A3E2522F06}) (Version: 1.0.16 - Rovio Entertainment Ltd.) Application Verifier x64 External Package (Version: 8.59.29722 - Microsoft) Hidden ASUS FancyStart (HKLM-x32\...\{2B81872B-A054-48DA-BE3B-FA5C164C303A}) (Version: 1.0.8 - ASUSTeK Computer Inc.) ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.20 - ASUS) ASUS MultiFrame (HKLM-x32\...\{9D48531D-2135-49FC-BC29-ACCDA5396A76}) (Version: 1.0.0019 - ASUS) ASUS Power4Gear Hybrid (HKLM\...\{91EFE3A1-585E-4F66-B5F6-F118F56C4C47}) (Version: 1.1.33 - ASUS) ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0007 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0028 - ASUS) ASUS USB2.0 UVC VGA WebCam (HKLM\...\ASUS USB2.0 UVC VGA WebCam) (Version: 5.8.53120.202 - Sonix) ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.19 - asus) Atak na zamek (HKLM-x32\...\{DEDD4955-2517-48B1-87E6-0FBC0161D551}) (Version: - ) ATI AVIVO64 Codecs (Version: 10.12.0.00122 - ATI Technologies Inc.) Hidden ATI Catalyst Install Manager (HKLM\...\{D0528577-31BF-2ABC-D7FC-E443EBF8B40A}) (Version: 3.0.758.0 - ATI Technologies, Inc.) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0001 - ASUS) Battle Nations (HKLM-x32\...\Steam App 251670) (Version: - Z2) Battlestations: Pacific (HKLM-x32\...\{BBAB6D5D-1DD4-4D46-B5D9-121DCAB17DEC}) (Version: 1.00.0000 - Nazwa firmy) Bolek i Lolek - j. angielski dla dzieci cz.1 (HKLM-x32\...\{63608909-EE21-4CFE-89E7-B098A54AD837}) (Version: 1.0.0 - AidemMedia) Bolek i Lolek - Zwariowana Olimpiada (HKLM-x32\...\{FEC6E546-0DA2-49A1-AFED-D52ECD3EEFD6}) (Version: 1.0.0 - AidemMedia) Bridge! (HKLM-x32\...\{22EDD164-65D5-41DD-961E-08C7CDA4D471}) (Version: 1.16 - aerosoft) Bujdy na resorach (HKLM-x32\...\{D3134B42-9761-4186-9051-08D531E1CB25}) (Version: 1.00.0000 - Disney Interactive Studios) CamStudio Lossless Codec (HKLM-x32\...\camcodec) (Version: - ) Castle Attack 2 v1.00 (HKLM-x32\...\Castle Attack 2) (Version: - ) ccc-core-static (x32 Version: 2010.0122.858.16002 - ATI) Hidden Code of Honor 2 (HKLM-x32\...\Code of Honor 2/PL-Polish_is1) (Version: - City Interactive) Codename Panzers Cold War (HKLM\...\Codename Panzers Cold War_is1) (Version: - ) Conspiracy : Weapons of mass destruction (HKLM-x32\...\{5B648419-8FA0-467B-9D04-53320BDE7AB3}) (Version: 1.00.0000 - Oxygen) Content Transfer (HKLM-x32\...\{CFADE4AF-C0CF-4A04-A776-741318F1658F}) (Version: 1.3.0.23190 - Sony Corporation) ControlDeck (HKLM-x32\...\{5B65EF64-1DFA-414A-8C94-7BB726158E21}) (Version: 1.0.5 - ASUS) Crash Time 5 – Undercover (HKLM-x32\...\Crash Time 5 – Undercover 1.0.0) (Version: 1.0.0 - Techland) Crash Time 5 – Undercover (x32 Version: 1.0.0 - Techland) Hidden Crash Time II (HKLM-x32\...\Crash Time II/PL-Polish_is1) (Version: - City Interactive) Crash Time III (HKLM-x32\...\Crash Time III/PL-Polish_is1) (Version: - City Interactive) DRIV3R (HKLM-x32\...\{01DBF423-E27B-45DA-B7F3-F9D4DB39B1C9}) (Version: 1.00.000 - Atari) Driver: Parallel Lines (HKLM-x32\...\{31CB0D80-1866-462A-9455-88614410971F}) (Version: 1.00.0000 - Ubisoft) Enigma: Rising Tide (HKLM-x32\...\Enigma: Rising Tide) (Version: - ) EnigmaSAPI (HKLM-x32\...\{94DB450B-7A9C-4496-BE2C-52F3D237FDFE}) (Version: 1.0.0.0 - TesserAction Games) ESR (HKLM-x32\...\ESR/PL-Polish_is1) (Version: - City Interactive) ETDWare PS/2-x64 7.0.5.10_WHQL (HKLM\...\Elantech) (Version: 7.0.5.10 - ELAN Microelectronics Corp.) Far Cry (HKLM-x32\...\FarCry_is1) (Version: - Cenega Poland Sp. z o. o.) Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.5 - ASUS) FlatOut (HKLM-x32\...\{8D264CE2-4261-4ECC-95FD-263286A9F8E8}_is1) (Version: 1 - Techland) FlatOut 2 (HKLM-x32\...\{4148B05E-FF62-4FD0-9FD4-689048F7A611}_is1) (Version: 2 - Techland) FlightGear v2.12.1 (HKLM\...\FlightGear_is1) (Version: - The FlightGear Team) Frontline: Fields of Thunder - demo (HKLM-x32\...\{DF847BEB-C08B-4E5B-8069-DDC025A38A28}) (Version: 1.00 - CDV) GameSpy Arcade (HKLM-x32\...\GameSpy Arcade) (Version: - ) Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Gore - Ultimate soldier (HKLM-x32\...\Gore - Ultimate soldier) (Version: - ) GPGNet (HKLM-x32\...\{C194D333-B84A-4BB7-B35E-060732D98DC4}) (Version: 1.0.0 - Gas Powered Games) Gregion 3.1 (HKLM-x32\...\Gregion 3.1) (Version: - Gregion) Gregion 3.1 (x32 Version: 3.1 - Gregion) Hidden GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games) GTR 2 (HKLM-x32\...\{061B823E-CE21-44DB-B9A2-4B106DBEA53B}) (Version: 1.1.0.0 - SimBin) Heroes Over Europe (HKLM-x32\...\{0101386E-6E51-4544-A66E-26FA06FF1776}) (Version: 1.02 - Ubisoft) Hitman - Krwawa Forsa (HKLM-x32\...\{4ABCCAA5-468D-4668-9C19-78F0D775F4C9}) (Version: 1.00.0000 - Eidos) Hotelowe Imperium (HKLM-x32\...\{87A8C9C6-4B93-4E40-ADBD-01FFD0996D9B}_is1) (Version: - nowe-media.eu) IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6259.0 - IDT) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation) InterActual Player (HKLM-x32\...\InterActual Player) (Version: - ) Java 8 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418025F0}) (Version: 8.0.250 - Oracle Corporation) Java(TM) 6 Update 32 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216032FF}) (Version: 6.0.320 - Oracle) Jet Storm: Modern Dogfights (HKLM-x32\...\jet_storm_pl) (Version: - ) K_Series_ScreenSaver_EN (HKLM-x32\...\K_Series_ScreenSaver_EN) (Version: - ) Kajko i Kokosz - Cudowny Lek v. 1.017 (HKLM-x32\...\Kajko2PL_is1) (Version: - Mirage Interactive) Kits Configuration Installer (x32 Version: 8.59.25584 - Microsoft) Hidden League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden LEGO® Batman™ 2: DC Super Heroes DEMO (HKLM-x32\...\{C2A58219-DA75-4A46-B3C9-B24EA13F07C5}) (Version: 1.0.0.0 - Warner Bros. Interactive Entertainment) LEGO® Star Wars™: The Complete Saga (HKLM-x32\...\InstallShield_{D596980D-17BE-4425-B8F0-5640719AADE9}) (Version: 1.00.0000 - LucasArts) LEGO® Star Wars™: The Complete Saga (x32 Version: 1.00.0000 - LucasArts) Hidden LEGO®Star Wars™ III The Clone Wars™ (HKLM-x32\...\{208432AC-ED50-4FAE-A37F-5AA83ACF3066}) (Version: 1.00.0000 - LucasArts) Liczę z Reksiem (HKLM-x32\...\{1EB6FAD0-53BC-4A6C-B4AD-4D667D3CE3C2}) (Version: 1.0.0 - AidemMedia) Lowrider Extreme (HKLM-x32\...\{109D28DA-E555-4896-BF22-E312F764562C}_is1) (Version: - Play sp. z o. o.) Manager polaczen (HKLM-x32\...\{23D624DA-73E3-4633-A34F-01413EFB2E3D}) (Version: 4.1.102 - OrangeBusinessServices) Marine Park Empire 1 (HKLM-x32\...\{15B61D9A-2CE3-4BBD-9008-DB6090120184}_is1) (Version: - techland) Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation) Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Games for Windows - LIVE (HKLM-x32\...\{4AA3D64E-9EC3-4B0F-AB91-5885AC55641F}) (Version: 2.0.675.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{FD052FB9-FE90-4438-B355-15EDC89D8FB1}) (Version: 2.0.673.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual J# 2.0 Redistributable Package (HKLM-x32\...\Microsoft Visual J# 2.0 Redistributable Package) (Version: - Microsoft Corporation) Mozilla Firefox 35.0.1 (x86 pl) (HKLM-x32\...\Mozilla Firefox 35.0.1 (x86 pl)) (Version: 35.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 34.0.5 - Mozilla) MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation) My Program version 1.5 (HKLM-x32\...\My Program_is1) (Version: 1.5 - ) Najemnicy (HKLM-x32\...\Armed Forces Corp/PL-Polish_is1) (Version: - City Interactive) Need for Speed(TM) Hot Pursuit (HKLM-x32\...\{83A606F5-BF6F-42ED-9F33-B9F74297CDED}) (Version: 1.0.0.0 - Electronic Arts) Need for Speed™ Most Wanted (HKLM-x32\...\{A48B9CD8-C2BA-4EC9-0081-7260D238C7CF}) (Version: - ) Need For Speed™ World (HKLM-x32\...\{7B2CC3DF-64FA-44AE-8F57-B0F915147E4F}_is1) (Version: 1.0.0.1599 - Electronic Arts) Next Car Game Free Technology Demo (HKLM-x32\...\Next Car Game Free Technology Demo) (Version: - Bugbear Entertainment) NVIDIA GAME System Software 2.8.1 (HKLM-x32\...\{4F0C7CCF-5666-474B-B02E-AC514A95EC93}) (Version: 2.8.1 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation) NWZ-E360 WALKMAN Guide (HKLM-x32\...\{653A0F15-C146-46E8-8309-92A97ACEBEF6}) (Version: 2.1.0.14010 - Sony Corporation) Odlotowa Farma 3 (HKLM-x32\...\{B118FE95-CB81-4C61-8523-EB9B01AE4067}_is1) (Version: - nowe-media.eu) Open It! (HKLM-x32\...\OpenIt Open It!) (Version: 1.1.1 - OpenIt) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Origin (HKLM-x32\...\Origin) (Version: 9.1.10.2728 - Electronic Arts, Inc.) Pacific Liberation Force 1.0 (HKLM-x32\...\Pacific Liberation Force) (Version: 1.0 - Team6 game studios) Pacific Storm (HKLM-x32\...\{7B33A30A-FE01-4BA1-858F-ACB80EABBD25}_is1) (Version: - ) Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.) Panzer Elite Action – Dunes of War Singleplayer Demo (HKLM-x32\...\{BD56B185-A07D-4B90-B786-84A9E0095283}) (Version: 1.44.07 - JoWooD) PDF Creator (HKLM\...\PDF Creator) (Version: - ) PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 0.9.5 - Frank Heindörfer, Philip Chinery) Project IGI2 - Covert Strike (HKLM-x32\...\{AF9DF4B7-5BDE-42F5-94EF-53311B55566B}) (Version: 1.2 - ) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) RTL Winter Sports 2009 (HKLM-x32\...\RTL Winter Sports 2009/PL-Polish_is1) (Version: - City Interactive) Sąsiedzi z Piekła Rodem 1 i 2 (HKLM-x32\...\{6AAF923E-077E-4543-BA1C-42A75BB03677}) (Version: 1.0 - ) Scooby-Doo!(TM) Pierwsze Strachy DEMO (HKLM-x32\...\{FE226068-F15B-40AE-BEC1-472BBB39DFD7}) (Version: 1.00 - WB Games) SDK Debuggers (x32 Version: 8.59.29746 - Microsoft Corporation) Hidden Ship Simulator 2008 Demo (HKLM-x32\...\ShipSim2008Demo) (Version: - ) Ship Simulator Extremes Demo (HKLM-x32\...\ShipSimExtremesDemo) (Version: - ) Sid Meier's Civilization V (HKLM-x32\...\steam app 8930) (Version: - 2K Games, Inc.) Sid Meier's Railroad Tycoon (HKLM-x32\...\Sid Meier's Railroad Tycoon) (Version: 1.0 - 2K Games) SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.86.0859 - Electronic Arts) Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.) Sniper: Ghost Warrior (HKLM-x32\...\Sniper - Ghost Warrior/PL-Polish_is1) (Version: - City Interactive) Star Gunner (HKLM-x32\...\StarGunner_is1) (Version: 1.0 - Media Contact LLC) Star Rage (HKLM-x32\...\StarRage_is1) (Version: 1.0 - Media Contact LLC) Star Wars Battlefront II (HKLM-x32\...\{3D374523-CFDE-461A-827E-2A102E2AB365}) (Version: 1.0 - LucasArts) Starmageddon 2 (HKLM-x32\...\Project Freedom/PL-Polish_is1) (Version: - City Interactive) Starship Troopers (HKLM-x32\...\{6FF64EF3-1940-4DE3-BFB8-CA7CF29F6AC2}) (Version: 1.00.000 - ) Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation) Stronghold 2 Deluxe (HKLM-x32\...\{417FE195-C31B-4A41-A057-E7404188B32E}) (Version: 1.00.000 - ) Supreme Commander - W obliczu wroga (HKLM-x32\...\{31D95937-B237-405D-920C-A3EF4E482395}) (Version: 1.00.0000 - Gas Powered Games) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Symulator Autobusu (HKLM-x32\...\Symulator Autobusu) (Version: 1 - Techland) Symulator Czołgu (HKLM-x32\...\{5DB8E8EE-07F4-419D-8A76-3365D54B6695}_is1) (Version: 2 - Techland) Symulator Misji na Marsa (HKLM-x32\...\{648CF280-9CB7-4F70-A159-EF38ED674BF9}_is1) (Version: 1.0 - Techland) Symulator Pojazdów Specjalnych (HKLM-x32\...\{8590B5B5-14E5-433C-90EA-07B448F220FF}_is1) (Version: 1.46 - Techland) Symulator Robót Górniczych (HKLM-x32\...\{22E726C2-DFEF-4B9E-BA74-4B01F9C3357F}_is1) (Version: 1105 - Techland) Symulator stoczni 2013 (HKLM-x32\...\{86B76274-C300-4969-8268-2F51E4F9E8E3}_is1) (Version: 1.0 - astragon Software GmbH) Symulator Śmieciarki (HKLM-x32\...\Symulator Śmieciarki) (Version: - Techland) Symulator transportu rzecznego (HKLM-x32\...\{9F2DE2C2-3AD1-4EAF-86F4-F5913AB2AE38}_is1) (Version: 1.22 - astragon) Symulator wyburzania budynków (HKLM-x32\...\Symulator wyburzania budynków/PL-Polish_is1) (Version: - City Interactive) Szkoła podstawowa klasa 4 - Wczoraj i dziś (HKLM-x32\...\Szkoła podstawowa klasa 4 - Wczoraj i dziś) (Version: - ) Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve) TerraWars Demo (HKLM-x32\...\{CEE71479-228F-4B3B-B635-4EE15F54ECB0}) (Version: 0.06.0726 - Ladyluck Digital Media) The Sims™ 2 (HKLM-x32\...\{2C82E097-694E-44ea-A947-2750679469CF}) (Version: - Electronic Arts) ToCA Race Driver 2 (HKLM-x32\...\{3B8D7840-BBED-11D8-88E4-0004769F25D1}) (Version: 1.2 - ) Tom Clancy's EndWar (HKLM-x32\...\{7C3D8108-8D99-427F-A1C2-D8E0D25A469C}) (Version: 1.00.0000 - Ubisoft) Tom Clancy's Rainbow Six (HKLM-x32\...\Tom Clancy's Rainbow Six) (Version: - ) Tom Clancy's Splinter Cell Chaos Theory (HKLM-x32\...\{7271AAA4-467B-4BD9-9D86-8965E563E788}) (Version: 1.0.5 - Ubisoft) Tom Clancy's Splinter Cell Double Agent (HKLM-x32\...\{621B43DA-82F8-486B-A2F8-08C8E81D7AC2}_is1) (Version: 1.02 - Ubisoft) Transformers(TM) - The Game (x32 Version: 1.00.0000 - Activision) Hidden TRS2006 (HKLM-x32\...\{96166C8A-8F66-484F-94DC-323665A2DE56}) (Version: 2.6.3092 - Auran) Tuber (HKLM-x32\...\Tuber_is1) (Version: - ) Turniej Robotów (HKLM-x32\...\Turniej Robotów_is1) (Version: - ) Unity Web Player (x64) (All users) (HKLM\...\UnityWebPlayer) (Version: 4.6.0f3 - Unity Technologies ApS) Universe Sandbox (HKLM-x32\...\Universe Sandbox) (Version: - ) Unturned (HKLM-x32\...\Steam App 304930) (Version: - Nelson Sexton) V-9.1HD (HKLM-x32\...\V-9.1HD) (Version: 1.34.7.29 - V-9.1HD) <==== ATTENTION Wesoła Szkoła 2 (HKLM-x32\...\Wesoła Szkoła 2_is1) (Version: - Next Generation Interactive) Wesoła Szkoła 3 (HKLM-x32\...\Wesoła Szkoła 3_is1) (Version: - Next Generation Interactive) Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation) Windows Software Development Kit (HKLM-x32\...\{363a2c1e-637f-45ce-933b-5a5463efd945}) (Version: 8.59.29750 - Microsoft Corporation) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.29.0 - ASUS) Wings of Honour - Battles of the Red Baron (HKLM-x32\...\woh2_pl) (Version: - ) WinRAR 4.11 (32-bitowy) (HKLM-x32\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH) Wireless Console 3 (HKLM-x32\...\{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}) (Version: 3.0.15 - ASUS) World of Guns: Gun Disassembly (HKLM-x32\...\Steam App 262410) (Version: - Noble Empire Corp.) WPT Redistributables (x32 Version: 8.59.29750 - Microsoft) Hidden WPTx64 (x32 Version: 8.59.29722 - Microsoft) Hidden XIII (HKLM-x32\...\InstallShield_{EEF5BD4A-F430-44C5-A7A2-40A9701C7716}) (Version: 1.00.0000 - Cenega) XIII (x32 Version: 1.00.0000 - Cenega) Hidden Załoga G (HKLM-x32\...\{DE5ECBF6-8A4A-4855-98D0-D6576145EBFF}) (Version: 1.00.0000 - Disney Interactive Studios) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) ==================== Restore Points ========================= 06-03-2015 01:09:03 Removed Java 7 Update 60 06-03-2015 04:43:43 Removed Java(TM) 6 Update 32 ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {0514E1BB-4283-475F-A734-F4EBF03A01F6} - System32\Tasks\{8DDED7D3-4F12-4BDC-A9B8-CD3D88B52E2A} => E:\autorun.exe Task: {06029EE3-0B08-4331-903D-4110AB97AD67} - System32\Tasks\{13E3320E-5E99-49D7-B744-F661A946EA56} => C:\Users\as\Desktop\RailRoads.exe Task: {0711C557-5416-4068-9885-F5936C24B6AA} - System32\Tasks\{AFB5D6BD-5582-47C6-8806-4B801A72589A} => pcalua.exe -a E:\1\Setup.exe -d E:\1 Task: {07DDC780-CDF1-43D6-B24D-BA3CED4502AC} - System32\Tasks\{5ACB43A9-9A68-44A8-944F-8C0703D051A7} => D:\Zip Zoom Racer\launcher.exe Task: {10E84168-8514-4FAA-A2B8-2264A1616AA0} - System32\Tasks\{C01FCF43-8230-49CC-8351-AB73DDFF9F30} => pcalua.exe -a C:\Users\faf\AppData\Roaming\istartsurf\UninstallManager.exe -c -ptid=smt Task: {15FF4723-DD3A-422C-8027-2FF67374A517} - System32\Tasks\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-5 => C:\Program Files (x86)\V-9.1HD\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-5.exe <==== ATTENTION Task: {161DCB25-D9FC-44AB-B42D-3CA4AB36ABA6} - System32\Tasks\{D197A53C-D747-4C41-9122-A81946BEEE1E} => D:\RD2.exe Task: {16B9961E-C208-4451-AE8E-9B5E7F7B1D95} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION Task: {1785C334-F9E8-4ECB-9DEF-19A2959F977A} - System32\Tasks\BitGuard => Sc.exe start BitGuard <==== ATTENTION Task: {1BE9E2CA-C361-41FF-9201-905F8B4BD792} - System32\Tasks\{7307B437-DBDD-4273-8852-B68854EFABBC} => Firefox.exe http://ui.skype.com/ui/0/7.1.0.105/pl/abandoninstall?page=tsProgressBar Task: {1D667BA0-EE14-4876-BD61-97CABFBC09FA} - System32\Tasks\{565E926C-DF8F-454A-BB73-B81B559F7FE2} => D:\outfront.exe Task: {24DEA923-6795-4C7B-B212-B7C17A37BE1A} - System32\Tasks\{DE690074-E5E7-4841-A542-30E2EF7260DA} => pcalua.exe -a D:\HardwareSetup.exe -d D: Task: {25162CA9-E78F-4841-9026-67AEBF9679AD} - System32\Tasks\{30066ECD-66D2-48A2-9CCB-89961CAA0309} => C:\Program Files (x86)\Cenega\Outfront\outfront.exe Task: {27002AE9-5DFB-4840-83BC-C3AE012B7402} - System32\Tasks\{ECFD5303-4935-4960-B5B7-58860BCD783A} => Iexplore.exe http://www.skype.com/go/downloading?source=lightinstaller&ver=6.14.0.104&LastError=302 Task: {272A6173-5BD2-4062-A521-DAC984305363} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-07] (Adobe Systems Incorporated) Task: {2E71A95A-1CBE-4C90-B340-59C3B966D6A6} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe Task: {2F667C8E-A1C2-43C5-8C92-B141EB710F7D} - System32\Tasks\{77DA200C-6236-4461-B9EE-4B178D19909A} => C:\Program Files (x86)\JoWooD\Panzer Elite Action – Dunes of War Singleplayer Demo\pea.exe Task: {2FC7F822-9E34-4A4F-A988-585008F92A61} - System32\Tasks\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-6 => C:\Program Files (x86)\V-9.1HD\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-6.exe <==== ATTENTION Task: {32405DCB-E791-4C62-B369-4E11FFEF7E13} - System32\Tasks\{B4CB70F5-D5BD-49B9-956C-A6CA2B265D8D} => C:\Program Files (x86)\Oxygen\Conspiracy , Weapons of mass destruction\cwmd.exe [2005-04-29] (Kuju Entertainment Ltd) Task: {333040EC-8724-429A-8D5B-F17FE28120C1} - System32\Tasks\{9894DF97-0E47-4BD2-A8B5-DEF754A320BB} => pcalua.exe -a E:\setup.exe -d E:\ Task: {3780E172-D7B2-4F08-939A-E5B4B77877AA} - System32\Tasks\{2D194A4A-A868-4F93-9388-7A555CD9913F} => C:\BrickForce\BfLauncher.exe Task: {3C10AF2F-CBA2-4477-BFBB-45BB5CEADC16} - System32\Tasks\{4B8E9FA4-8172-46B7-AFD1-2BA91A387F86} => pcalua.exe -a E:\Setupnow.exe -d E:\ Task: {43066817-9B22-4D49-9283-6A86196ABA93} - System32\Tasks\{10757F15-FA3A-420E-B059-88294A5BDE58} => C:\Users\as\Desktop\LEGO® Batman™ 2 Demo\LEGOBatman2Demo.exe Task: {474BE34B-EBCD-48A4-A589-48254390F35D} - System32\Tasks\{F8E31256-AC99-4AEA-BC3B-C81730D37AC6} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\The Sims 2\Support\The Sims 2_code.exe" -d "C:\Program Files (x86)\EA GAMES\The Sims 2\Support" Task: {490FDB46-19C2-426A-B188-467F73593049} - System32\Tasks\{8EB4E3F1-C593-4CBD-A937-0D78DD8D7B7F} => pcalua.exe -a C:\Windows\snuninst.exe -d C:\Windows Task: {4A06082B-C4D5-4685-95BB-8296AA99D676} - System32\Tasks\{CB57D96C-F342-47BE-8B56-E904FFE92068} => C:\Program Files (x86)\B2B Games\Hugo Creator - Rodzina\Hugo Creator Family.exe Task: {4C72399E-3D84-4034-B922-7552E8381EB0} - System32\Tasks\{96B975F4-CDFC-4B43-96A2-FAF301637379} => C:\Program Files (x86)\Play\Jeżyk\Jezyk.exe Task: {540B3699-4F4C-4FF6-9B7C-FB96AC05D4CF} - System32\Tasks\{5455FDE2-B0B4-4AE5-A0C4-91CA8A4A8495} => C:\Program Files (x86)\B2B Games\Hugo Creator - Rodzina\Hugo Creator Family.exe Task: {5C014063-0E7D-4FED-B044-4B6A6AA2A71B} - System32\Tasks\DefaultCheck => c:\Users\All Users\dtdata\R002.exe [2015-01-24] () <==== ATTENTION Task: {654D008C-E665-47AC-AD58-D9509F95F513} - System32\Tasks\{7BD39BDB-EF62-4AF2-9C7E-E66E06E1802F} => C:\Program Files (x86)\B2B Games\Hugo Creator - Na Safari\Hugo Creator Safari.exe Task: {67438034-623C-4D35-B43E-37D0E18C0087} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2010-02-27] (ATK) Task: {69B48A5D-D199-4B9A-8399-E83FBA3AECA0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: {6D186E74-2C85-4C50-9913-2BA3648D9ECE} - System32\Tasks\{794EF496-3DEE-4135-9818-A32B1D19DF7C} => pcalua.exe -a F:\Setup.exe -d F:\ Task: {6E693582-6149-4A6E-8940-BD1EEB46C219} - System32\Tasks\ASUSControlDeck => C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe [2009-11-24] () Task: {6E71ED94-0874-4F81-BBF1-6B3E861E25C5} - System32\Tasks\Yahoo! Search => C:\Users\faf\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.19.2\dsrlte.exe [2015-01-24] (Pay By Ads LTD) <==== ATTENTION Task: {71701C21-AE17-40DC-94F4-9E89D91F0C29} - System32\Tasks\{1F248A31-557F-4551-9DA1-EBFC0A189FE6} => C:\Program Files (x86)\Cenega\Outfront\outfront.exe Task: {73D7DCF5-D274-462C-A8A2-8E8DD501F331} - System32\Tasks\WC3 => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2010-01-05] () Task: {78596795-A66E-4A2E-A4BD-09F21E501630} - System32\Tasks\{6B5CAF91-671F-4F41-A9BA-43F5EC7C44A8} => C:\Program Files (x86)\B2B Games\Hugo Creator - Rodzina\Hugo Creator Family.exe Task: {7B257B26-F027-42BD-A7AB-A3B81FDD54BA} - System32\Tasks\{7E49307F-D051-42F0-852F-53AC725998FC} => C:\Program Files (x86)\Atari\DRIV3R\Driv3r.exe Task: {7B822133-D412-4451-8226-07DBD515393D} - System32\Tasks\{95A8140A-B7DF-4AB3-B244-A41AAD4F8AAA} => pcalua.exe -a E:\autorun.exe -d E:\ Task: {7ECEC814-635F-474B-82BF-BFD5934FF4B4} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION Task: {7FF9E954-59C2-4236-A10B-4943D9011960} - System32\Tasks\{DC5C061B-8CCD-4F05-9AE9-BC26819119F8} => E:\autorun.exe Task: {810BF08F-E153-4716-B664-62DB7A86B86F} - System32\Tasks\{4612E135-0A0C-4713-B051-52B0D586D553} => pcalua.exe -a "D:\Zip Zoom Racer\PhysX_driver.exe" -d "D:\Zip Zoom Racer" Task: {81792CD7-4DEC-4E66-8636-3779A36356E9} - System32\Tasks\Games\UpdateCheck_S-1-5-21-554914868-1295861038-1199024560-1002 Task: {8568A1EC-1053-4CD8-A09B-C27E91BBEA15} - System32\Tasks\BonanzaDealsLiveUpdateTaskMachineUA => C:\Program Files (x86)\BonanzaDealsLive\Update\BonanzaDealsLive.exe <==== ATTENTION Task: {85DA1371-1FED-45F0-9B8E-D9EE0658BFCA} - System32\Tasks\{871D8787-987B-41A1-80AE-896F295F1895} => C:\Program Files (x86)\Atari\DRIV3R\Driv3r.exe Task: {89FC9A52-D6F4-4B78-B1BC-1EF349FEBC11} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: {8DECFDF9-4C24-442B-825D-C42F1D7C8A2E} - System32\Tasks\{F6BDF8E4-FA55-4732-9101-7AA3772563AF} => D:\RailRoads.exe Task: {8FD2F7AC-D86F-440A-A9A0-8A8FFC7E7251} - System32\Tasks\{C3164E8C-0A4C-4547-8142-7C85CDA78D27} => C:\Program Files (x86)\Titanic - symulator podwodnych operacji\Titanic.exe Task: {93F5C217-AB94-4E4B-99A0-20C7A049656B} - System32\Tasks\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-2 => C:\Program Files (x86)\V-9.1HD\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-2.exe <==== ATTENTION Task: {972B9A63-5BD4-463F-8860-7134A4969819} - System32\Tasks\{697D2470-33F0-46E1-926E-C4AE3A953E19} => C:\Program Files (x86)\Techland\Symulator Śmieciarki\GarbageTruckSimulator.exe Task: {97F44397-4D5C-47D3-8687-E5DCD40F1225} - System32\Tasks\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-1 => C:\Program Files (x86)\V-9.1HD\V-9.1HD-codedownloader.exe <==== ATTENTION Task: {9D5A5A7B-703E-4371-9BA4-AD5470235FFC} - System32\Tasks\Math Problem Solver Optimize => C:\Users\faf\AppData\Local\Math Problem Solver\Optimize.exe [2014-01-20] () <==== ATTENTION Task: {9E92B22A-B879-47A4-8CEB-92B5347B3012} - System32\Tasks\{5673EDB2-92CF-47F4-A6B7-BA2B497AF102} => pcalua.exe -a E:\setup.exe -d E:\ Task: {9F16BFE3-C7AF-4A42-ABF9-34162A3AF4FD} - System32\Tasks\{4103253E-7B95-47B5-A579-92941F2EFCFC} => C:\Program Files (x86)\Play\Zip Zoom Racer\launcher.exe Task: {9F39F7CD-EB0F-492F-B708-680AEB62125E} - System32\Tasks\{767A88C4-FCB1-4C49-AFEF-886890B46FE5} => pcalua.exe -a E:\Setup.exe -d E:\ Task: {A0F1B1B0-FBDF-4FDB-A506-7A6A4438CDB9} - System32\Tasks\{8FD71E94-3102-44BA-BDB7-39F87F53FE3F} => C:\Program Files (x86)\B2B Games\Hugo Creator - Rodzina\Hugo Creator Family.exe Task: {A5040445-8984-48B9-B76A-CAC2B9BB1788} - System32\Tasks\{210409E9-645A-4046-A6AC-2B88FE7E2F8A} => D:\Zip Zoom Racer\launcher.exe Task: {A77164F2-6D21-4456-8472-BE0C520F3350} - System32\Tasks\{AA479ACF-459C-4832-A6FE-C2C660AE857A} => C:\ToxSickLabs\Bridge\Bridge.exe [2012-03-05] () Task: {A7E4FDED-D0F7-40CB-AF66-28B576E0AC7D} - System32\Tasks\{DFB2E1C3-C915-46AB-A7B3-AC94F4CD571C} => C:\ToxSickLabs\Bridge\Bridge.exe [2012-03-05] () Task: {A8890A2C-3BF8-4F0A-A364-47E1E273AB25} - System32\Tasks\BonanzaDealsLiveUpdateTaskMachineCore => C:\Program Files (x86)\BonanzaDealsLive\Update\BonanzaDealsLive.exe <==== ATTENTION Task: {AC034702-BE6B-45FF-B032-73724A1263C7} - System32\Tasks\{E7D301FF-20E4-4F09-B636-625492AEB500} => C:\Program Files (x86)\B2B Games\Hugo Creator - Na Safari\Hugo Creator Safari.exe Task: {AD0A7FDF-64EB-4344-A829-6AD8B8AA7605} - System32\Tasks\{ECED30C5-23A7-40F7-AFEA-4684F92C99D9} => D:\FlightGear\bin\Win64\fgrun.exe Task: {AF45F368-6D23-443C-99D1-AB3E512B1FC0} - System32\Tasks\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-7 => C:\Program Files (x86)\V-9.1HD\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-7.exe <==== ATTENTION Task: {AF50D2B6-9DB2-4417-B4A7-4228B1820B6B} - System32\Tasks\{5B262146-9ABA-4C66-8B67-6D08298125DE} => C:\Program Files (x86)\JoWooD\Panzer Elite Action – Dunes of War Singleplayer Demo\pea.exe Task: {B3911D6D-6716-40D8-8F0A-AAC98338C92A} - System32\Tasks\{77E25801-C47E-408A-978C-DA5805B44235} => pcalua.exe -a C:\WINDOWS\ISUN0415.EXE -c -f"C:\Program Files (x86)\Common Files\Adobe\Acrobat 5.0 CE\NT\Uninst.isu" -c"C:\Program Files (x86)\Common Files\Adobe\Acrobat 5.0 CE\NT\Uninst.dll" Task: {B4F08183-C64D-4AA8-A962-D927E9C5E7F8} - System32\Tasks\Norton Product InstallerIdle => C:\Windows\SysWOW64\Macromed\Shockwave 10\SymInstallStub.exe [2013-05-24] (Symantec Corporation) Task: {B788AE3D-CE92-4A69-8395-CF7FF83C7D71} - System32\Tasks\{D737A89C-8C71-4F68-A8D2-11DA24C432FB} => D:\RD2.exe Task: {BC695C45-AC9D-4508-BB8B-395F1A568E05} - System32\Tasks\BonanzaDealsUpdate => C:\Program <==== ATTENTION Task: {BEFF7E1C-FFB9-4B3C-94C4-8BBCE2B87199} - System32\Tasks\{C3521DB6-FFDD-4B79-BEAB-8C160AB99551} => C:\Program Files (x86)\Rockstar Games\GTA San Andreas\gta_sa.exe [2005-08-05] () Task: {BF4C4470-38FF-4477-8296-E5EA24DF2333} - System32\Tasks\{5ABCBF80-557A-43D6-807D-EDC5A16C3060} => E:\1\Setup.exe Task: {C27E81FB-3BB9-49AA-8EDF-6AA3C39A8D8A} - System32\Tasks\{3A1C938A-ADDB-4156-907B-38B1B473B527} => D:\FlightGear\bin\Win64\fgrun.exe Task: {C4DF8925-9992-44D0-9891-78FB1DCF0EE9} - System32\Tasks\{3FC678F4-14FE-47AE-9509-D39A03616ABC} => pcalua.exe -a C:\Users\as\Desktop\ATI\SUPPORT\6-4_xp-2k_dd_31959\makensisw.exe -d C:\Users\as\Desktop\ATI\SUPPORT\6-4_xp-2k_dd_31959 Task: {C51436FC-643F-4D3B-A8C0-44FF9C297E7D} - System32\Tasks\{C40CDB90-8229-4B4B-9ECB-A82A6CFE3494} => C:\Program Files (x86)\JoWooD\Panzer Elite Action – Dunes of War Singleplayer Demo\pea.exe Task: {C5F3FEB8-52A8-4E71-8FA4-9199EB40EFB3} - System32\Tasks\{197E124D-F962-4F63-9D0C-3538FA7FC06D} => C:\Program Files (x86)\JoWooD\Panzer Elite Action – Dunes of War Singleplayer Demo\pea.exe Task: {C63F3A3E-8B98-4321-BAAD-24EEFF54CDF3} - System32\Tasks\{9FF561E8-F7B4-4B5F-84E3-7AFF1F0F0CD9} => E:\autorun.exe Task: {C6DDB8C1-A0A4-4C29-B2F4-A12E716FC935} - System32\Tasks\{7FCD1D2C-741E-498D-827E-3503D718DD6A} => D:\AngryBirdsBreakfast1.exe [2013-06-11] () Task: {C82F10C1-1AF4-41A3-8304-959388B0B7AD} - System32\Tasks\{F598D91E-85F7-4517-8BA7-DEEC496AC1A0} => D:\RailRoads.exe Task: {C90196AF-B785-4865-AB36-981927DBC6E6} - System32\Tasks\{605CB7FD-A5E7-438F-8E14-C065CE28DDB0} => C:\Program Files (x86)\Cenega\Outfront\outfront.exe Task: {C9D403E1-C46C-4D76-B9E8-065A114C3ACD} - System32\Tasks\Math Problem Solver CPU => C:\Users\faf\AppData\Local\Math Problem Solver\cpu\Solve.exe [2014-01-23] () <==== ATTENTION Task: {CE2F886B-4C45-4666-93DC-67D465219526} - System32\Tasks\{81DB7555-A6D5-4A7B-A8A3-D935711AE66A} => C:\Program Files (x86)\B2B Games\Hugo Creator - Na Safari\Hugo Creator Safari.exe Task: {CF414DA9-1EDB-4A87-B06C-E1066D167A6C} - System32\Tasks\{11A7D0F7-6E0E-4127-8BCA-6D5C760BAC57} => pcalua.exe -a C:\Users\faf\Desktop\MinecraftZyczu.exe -d C:\Users\faf\Desktop Task: {D0A529A7-86EF-492C-948F-7102F98077E7} - System32\Tasks\DefaultReg => c:\Users\All Users\dtdata\R001.exe [2015-01-24] () <==== ATTENTION Task: {D18DAC1E-39B5-4FD9-8605-E9B7BA79DFC0} - System32\Tasks\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-3 => C:\Program Files (x86)\V-9.1HD\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-3.exe <==== ATTENTION Task: {D24EA8AE-AA66-4B52-BC07-10A1DC084B92} - System32\Tasks\{BB175075-9E8A-48E8-8014-EAE5AF24D80F} => C:\Program Files (x86)\Play\Zip Zoom Racer\launcher.exe Task: {D901A003-BBAB-4B08-9D51-711568001EDD} - System32\Tasks\{D56E2EAC-52E0-458F-B136-78208C93D3F5} => C:\Program Files (x86)\Play\Zip Zoom Racer\launcher.exe Task: {E214DECE-8D29-4C55-B32D-B25C6FB0AEA7} - System32\Tasks\{3C2479D6-7C15-48D7-B6F3-A3B49C5F384E} => C:\Program Files (x86)\Empire Interactive\Starship Troopers\STGame.exe Task: {E3DF7D00-18AF-4FA0-8BD5-F42E7E13AA7C} - System32\Tasks\{37026E29-3C56-46FD-B729-51A2D0B6E74C} => D:\Zip Zoom Racer\launcher.exe Task: {E44B9F54-A151-4FF3-9A23-A82F4B1A6110} - System32\Tasks\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-5_user => C:\Program Files (x86)\V-9.1HD\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-5.exe <==== ATTENTION Task: {E607FAF1-16FD-4487-8744-1D6442BA7B20} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2009-05-18] (ASUS) Task: {E74DF98E-8AB4-4368-AF33-7FEFDEE8440C} - System32\Tasks\{9B383E3C-1AD4-4578-9DA2-137356AF5E63} => pcalua.exe -a E:\autorun.exe -d E:\ Task: {EBB3D859-E213-4929-93DB-23BAB8598E99} - System32\Tasks\{78ABB6BC-36E7-481E-B714-019DFDCF4E76} => C:\Program Files (x86)\Wiktor Wiewior 3D\Wiktor Tajemnica Krzywej Wiezy\Tajemnica Krzywej Wiezy.exe Task: {EBCB255E-9A46-42DD-BD58-DADFF23EA36E} - System32\Tasks\Math Problem Solver GPU => C:\Users\faf\AppData\Local\Math Problem Solver\gpu\dummysleep.exe [2014-05-11] () <==== ATTENTION Task: {EE8E2E45-B562-4308-B1AA-237193979974} - System32\Tasks\{32C1351C-EF61-490C-A1B9-13F0E7A8A0CF} => D:\outfront.exe Task: {EFFC24ED-7F37-49B1-9B74-77E434C42D29} - System32\Tasks\Yahoo! Search Updater => C:\Users\faf\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.19.2\dsrsetup.exe [2015-01-24] (Pay By Ads LTD) <==== ATTENTION Task: {F0EC06FD-D865-41AC-8C42-F9FF02108780} - System32\Tasks\{8A0FF44B-D795-4750-A78E-FEA0E329732A} => pcalua.exe -a E:\setup.exe -d E:\ Task: {F367E1F3-03BA-4EEB-90A8-8D1631DD68A6} - System32\Tasks\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-11 => C:\Program Files (x86)\V-9.1HD\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-11.exe <==== ATTENTION Task: {F4A7C470-F910-4328-A8C2-A3C2B928377F} - System32\Tasks\{4FF48FAC-5133-4E32-AE50-BE5C1034B807} => D:\Program Files\Driv3r.exe Task: {F5A1836E-4BB3-4F81-B6E4-E6FD454A889B} - System32\Tasks\{D88F4B6F-F91A-4C1F-A8DC-F07C56738E5C} => D:\RailRoads.exe Task: {F76DB89D-8F64-422C-AFEE-425E6D5377DE} - System32\Tasks\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-4 => C:\Program Files (x86)\V-9.1HD\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-4.exe <==== ATTENTION Task: {FB46B300-4072-4FFD-B882-2BF22D441DD1} - System32\Tasks\{86BB28D4-3642-4AC4-B861-9534B5F6DBE8} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe [2005-11-01] () Task: {FBD5E5B8-82E0-4031-99D3-1561AEEFE9A0} - System32\Tasks\{C9DE3DAC-D60C-4E00-800F-7E8B07A1A55F} => C:\Program Files (x86)\Cenega\Outfront\outfront.exe Task: {FE660247-E575-46CE-ABD2-A75A0C008995} - System32\Tasks\{7E4CD950-1319-4B29-8BC5-894CDDAA00E5} => pcalua.exe -a "C:\Program Files (x86)\Red Storm Entertainment\Tom Clancy's Rainbow Six\mplaynow.exe" -d "C:\Program Files (x86)\Red Storm Entertainment\Tom Clancy's Rainbow Six" Task: C:\Windows\Tasks\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-1.job => C:\Program Files (x86)\V-9.1HD\V-9.1HD-codedownloader.exe\/kEZvHhN /BvqwMKRRV=task /EqZChA='V-9.1HD' /YzTCtuIG=61776 /VDSXnF='001257' /LejFzdG='0' /XrkzYxIf='0' /osWuGH=8527B439A7CE42DF9CE91A9DA6554CAAIE /OkoFNyzJ=bebafce784120c7a6c5e73ab7d2b6a81 /DvczpVO=1_34_07_29 /hnwNxgK=1.34.7.29 /iZZHwkypp=1406795016 /OpWSK=http://stats.infogenservice.com /qbPPTed=http://errors.infogenservice.com /wXMVR=http://js.infogenservice.com /UPKRaF=ie /iKfie='V-9.1HD' /jWvMqDc=http://js.clientdemocloud.com /nyxGvI /jxGtXLdNm='{asw:[32768, 8388609, 4096]}' /DTZZpo='http://update.infogenservice.com/ie_code_agent_updates/{CAMP_ID}/update.jso <==== ATTENTION Task: C:\Windows\Tasks\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-11.job => C:\Program Files (x86)\V-9.1HD\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-11.exe <==== ATTENTION Task: C:\Windows\Tasks\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-2.job => C:\Program Files (x86)\V-9.1HD\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-2.exeć/guOKa /EqZChA='V-9.1HD' /YzTCtuIG=61776 /VDSXnF='001257' /LejFzdG='0' /XrkzYxIf='0' /osWuGH=8527B439A7CE42DF9CE91A9DA6554CAAIE /OkoFNyzJ=bebafce784120c7a6c5e73ab7d2b6a81 /DvczpVO=1_34_07_29 /iZZHwkypp=1406795016 /OpWSK=http://stats.infogenservice.com /qbPPTed=http://errors.infogenservice.com /DQLEbHJ=11111111-1111-1111-1111-110611171176 /UPKRaF=ie /hEZIg /nyxGvI /DTZZpo='http://update.infogenservice.com/ie_enable_agent_updates/{CAMP_ID}/update.jso <==== ATTENTION Task: C:\Windows\Tasks\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-3.job => C:\Program Files (x86)\V-9.1HD\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-3.exe <==== ATTENTION Task: C:\Windows\Tasks\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-4.job => C:\Program Files (x86)\V-9.1HD\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-4.exeg/nkzjZcFBn /EqZChA='V-9.1HD' /qlxcGC C:\Program Files (x86)\V-9.1HD\7b13006e-bee7-4c26-8be2-4a2fbdaa1726.xpi' /YzTCtuIG=61776 /VDSXnF='001257' /LejFzdG='0' /XrkzYxIf='0' /osWuGH=8527B439A7CE42DF9CE91A9DA6554CAAIE /OkoFNyzJ=bebafce784120c7a6c5e73ab7d2b6a81 /DvczpVO=1_34_07_29 /hnwNxgK=1.34.7.29 /iZZHwkypp=1406795016 /OpWSK=http://stats.infogenservice.com /qbPPTed=http://errors.infogenservice.com /lEFIz=300 /ACasbnEEB=EXONUDC1159428@DGG30572216.com /sGYakn=0.95 /jruisSKQ=aEXONUDC1159428DGG30572216com61776 /iQmEO=https://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/61776.rdf /xeGpzIbV='V-9.1HD' /KArjqOk='Turn YouTube videos to High Definition by default' /tDukbcU='V-9.1HD' /UPKRaF=ie /jxGtXLdNm='{asw:[32768, 8388609, 4096]}' /nyxGvI /qzTsqQUe /frIJMnIz /DTZZpo='http://update.infogenservice.com/ff_agent_updates/{CAMP_ID}/update.jso <==== ATTENTION Task: C:\Windows\Tasks\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-5.job => C:\Program Files (x86)\V-9.1HD\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-5.exe/wUHEfDgmy /EqZChA='V-9.1HD' /YzTCtuIG=61776 /VDSXnF='001257' /LejFzdG='0' /XrkzYxIf='0' /osWuGH=8527B439A7CE42DF9CE91A9DA6554CAAIE /OkoFNyzJ=bebafce784120c7a6c5e73ab7d2b6a81 /DvczpVO=1_34_07_29 /iZZHwkypp=1406795016 /OpWSK=http://stats.infogenservice.com /qbPPTed=http://errors.infogenservice.com /kCBrMXX=http://ipgeoapi.com/ /ncezkrVqY=http://update.infogenservice.com /YlrnqCpg=2 /lZGIdx=http://logs.infogenservice.com /DTZZpo='http://update.infogenservice.com/updater_agent_updates/{CAMP_ID}/update.jso <==== ATTENTION Task: C:\Windows\Tasks\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-5_user.job => C:\Program Files (x86)\V-9.1HD\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-5.exe&/wUHEfDgmy /EqZChA='V-9.1HD' /YzTCtuIG=61776 /VDSXnF='001257' /LejFzdG='0' /XrkzYxIf='0' /osWuGH=8527B439A7CE42DF9CE91A9DA6554CAAIE /OkoFNyzJ=bebafce784120c7a6c5e73ab7d2b6a81 /DvczpVO=1_34_07_29 /iZZHwkypp=1406795016 /OpWSK=http://stats.infogenservice.com /qbPPTed=http://errors.infogenservice.com /kCBrMXX=http://ipgeoapi.com/ /ncezkrVqY=http://update.infogenservice.com /YlrnqCpg=2 /lZGIdx=http://logs.infogenservice.com /DTZZpo='http://update.infogenservice.com/updater_agent_updates/{CAMP_ID}/update.jso <==== ATTENTION Task: C:\Windows\Tasks\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-6.job => C:\Program Files (x86)\V-9.1HD\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-6.exeŐ/EqZChA='V-9.1HD' /YzTCtuIG=61776 /VDSXnF='001257' /LejFzdG='0' /XrkzYxIf='0' /osWuGH=8527B439A7CE42DF9CE91A9DA6554CAAIE /OkoFNyzJ=bebafce784120c7a6c5e73ab7d2b6a81 /DvczpVO=1_34_07_29 /hnwNxgK=1.34.7.29 /iZZHwkypp=1406795016 /OpWSK=http://stats.infogenservice.com /qbPPTed=http://errors.infogenservice.com /wXMVR=http://js.infogenservice.com /UPKRaF=ie /zXKiCY /iKfie=V-9.1HD /FSSyh10d59adb-8372-41a0-8936-1f022c02dcba.dll /NhzuFa02f4ac4-05d2-4a05-91f2-c72949dc34d5.dll /fFlkIFAm7b13006e-bee7-4c26-8be2-4a2fbdaa1726-64.exe /nRYEKX='nova' /jWvMqDc=http://js.clientdemocloud.com /jxGtXLdNm='{asw:[32768, 8388609, 4096]}' /DTZZpo='http://update.infogenservice.com/novarun/{CAMP_ID}/update.jso <==== ATTENTION Task: C:\Windows\Tasks\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-7.job => C:\Program Files (x86)\V-9.1HD\7b13006e-bee7-4c26-8be2-4a2fbdaa1726-7.exeď/htPKlQl /EqZChA='V-9.1HD' /YzTCtuIG=61776 /VDSXnF='001257' /LejFzdG='0' /XrkzYxIf='0' /osWuGH=8527B439A7CE42DF9CE91A9DA6554CAAIE /OkoFNyzJ=bebafce784120c7a6c5e73ab7d2b6a81 /DvczpVO=1_34_07_29 /hnwNxgK=1.34.7.29 /iZZHwkypp=1406795016 /OpWSK=http://stats.infogenservice.com /qbPPTed=http://errors.infogenservice.com /wXMVR=http://js.infogenservice.com /UPKRaF=ie /zXKiCY /iKfie=V-9.1HD /FSSyh10d59adb-8372-41a0-8936-1f022c02dcba.dll /NhzuFa02f4ac4-05d2-4a05-91f2-c72949dc34d5.dll /fFlkIFAm7b13006e-bee7-4c26-8be2-4a2fbdaa1726-64.exe /nRYEKX='nova' /jWvMqDc=http://js.clientdemocloud.com /jxGtXLdNm='{asw:[32768, 8388609, 4096]}' /BvqwMKRRV=task /DTZZpo='http://update.infogenservice.com/novacode/{CAMP_ID}/update.jso <==== ATTENTION Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\BonanzaDealsLiveUpdateTaskMachineCore.job => C:\Program Files (x86)\BonanzaDealsLive\Update\BonanzaDealsLive.exe <==== ATTENTION Task: C:\Windows\Tasks\BonanzaDealsLiveUpdateTaskMachineUA.job => C:\Program Files (x86)\BonanzaDealsLive\Update\BonanzaDealsLive.exe <==== ATTENTION Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d007fdfbb5812b.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\Norton Product InstallerIdle.job => C:\Windows\SysWOW64\Macromed\Shockwave 10\SymInstallStub.exe ==================== Loaded Modules (whitelisted) ============== 2013-09-01 17:37 - 2011-10-04 21:43 - 00087552 _____ () C:\Windows\System32\custmon64i.dll 2011-09-14 15:37 - 2005-03-11 23:07 - 00087040 _____ () C:\Windows\System32\pdfcmnnt.dll 2014-07-24 21:25 - 2014-07-24 21:25 - 00172544 _____ () C:\Program Files (x86)\D52E2FDD-4553-4F81-BE20-F1405B80CAA4\cnfygfszki64.exe 2014-07-24 21:25 - 2014-07-24 21:25 - 00110080 _____ () C:\Program Files (x86)\D52E2FDD-4553-4F81-BE20-F1405B80CAA4\nfapi.dll 2014-07-24 21:25 - 2014-07-24 21:25 - 00456192 _____ () C:\Program Files (x86)\D52E2FDD-4553-4F81-BE20-F1405B80CAA4\ProtocolFilters.dll 2012-06-06 16:17 - 2012-06-06 16:17 - 00173008 _____ () C:\Program Files (x86)\OrangeBusinessServices\Manager polaczen\{ad30a369-08e3-414c-9d2c-7f47dbe748da}\BEWConfigSrv.exe 2013-07-28 17:32 - 2013-07-28 17:32 - 00107520 _____ () C:\Users\adam\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe 2014-07-30 09:26 - 2014-07-30 09:26 - 00709120 _____ () C:\Program Files\005\hzunyanhtn64.exe 2014-10-30 00:18 - 2015-03-01 14:09 - 00123680 _____ () C:\ProgramData\9770d137-0554-4a98-9776-1cfcef3857da\maintainer.exe 2012-01-07 20:11 - 2014-04-26 11:59 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2015-01-24 13:18 - 2015-01-12 13:55 - 00091304 _____ () C:\Users\faf\AppData\Roaming\Compatibility Verifier\compatibilitychecksvc.exe 2014-07-28 17:17 - 2014-07-29 21:25 - 00098816 _____ () C:\Program Files (x86)\SupTab\WindowsSupportDll64.dll 2010-01-11 18:27 - 2010-01-11 18:27 - 00017920 _____ () C:\Program Files\P4G\DevMng.dll 2010-02-04 01:14 - 2010-02-04 01:14 - 00033792 _____ () C:\Program Files\P4G\OvrClk.dll 2010-01-05 01:43 - 2010-01-05 01:43 - 01597440 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe 2009-11-24 21:45 - 2009-11-24 21:45 - 00053888 _____ () C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe 2014-07-28 17:17 - 2014-07-29 21:25 - 00724480 _____ () C:\Program Files (x86)\SupTab\HpUI.exe 2014-07-16 11:16 - 2014-07-16 11:16 - 00064000 _____ () C:\Program Files (x86)\SupTab\Loader32.exe 2014-07-16 10:55 - 2014-07-16 10:55 - 00073216 _____ () C:\Program Files (x86)\SupTab\Loader64.exe 2012-06-06 16:17 - 2012-06-06 16:17 - 03363808 _____ () C:\Program Files (x86)\OrangeBusinessServices\Manager polaczen\{ad30a369-08e3-414c-9d2c-7f47dbe748da}\BusinessEverywhere.exe 2012-06-06 16:17 - 2012-06-06 16:17 - 00966600 _____ () C:\Program Files (x86)\OrangeBusinessServices\Manager polaczen\{ad30a369-08e3-414c-9d2c-7f47dbe748da}\UpdteApp.exe 2012-06-06 16:17 - 2012-06-06 16:17 - 01359824 _____ () C:\Program Files (x86)\OrangeBusinessServices\Manager polaczen\{ad30a369-08e3-414c-9d2c-7f47dbe748da}\SMSNotifier.exe 2014-07-28 17:17 - 2014-07-29 21:25 - 00086016 _____ () C:\Program Files (x86)\SupTab\WindowsSupportDll32.dll 2012-06-06 16:13 - 2012-06-06 16:13 - 00093184 _____ () C:\Program Files (x86)\OrangeBusinessServices\Manager polaczen\{ad30a369-08e3-414c-9d2c-7f47dbe748da}\GIS.dll 2012-06-06 16:13 - 2012-06-06 16:13 - 00182784 _____ () C:\Program Files (x86)\OrangeBusinessServices\Manager polaczen\{ad30a369-08e3-414c-9d2c-7f47dbe748da}\ProxyDetection.dll 2011-09-14 15:37 - 2007-11-28 17:59 - 03702784 _____ () C:\Program Files (x86)\PDFCreator\GS8.61\gs8.61\Bin\gsdll32.dll 2015-01-24 13:18 - 2015-01-19 17:22 - 51542184 _____ () C:\Users\faf\AppData\Roaming\Compatibility Verifier\compatibilitycheck.exe ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\ProgramData\TEMP:DBC416F8 ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver" ==================== EXE Association (whitelisted) =============== (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-554914868-1295861038-1199024560-1004\Control Panel\Desktop\\Wallpaper -> C:\Users\faf\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: Media is not connected to internet. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupreg: Adobe Reader Speed Launcher => "D:\Splinter Cell Double Agent\Reader\Reader_sl.exe" MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\Windows\AsScrPro.exe ==================== Accounts: ============================= Administrator (S-1-5-21-554914868-1295861038-1199024560-500 - Administrator - Enabled) faf (S-1-5-21-554914868-1295861038-1199024560-1004 - Administrator - Enabled) => %SystemDrive%\Users\faf Gość (S-1-5-21-554914868-1295861038-1199024560-501 - Limited - Enabled) ==================== Faulty Device Manager Devices ============= Name: ASMMAP64 Description: ASMMAP64 Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: ASMMAP64 Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (03/06/2015 07:12:45 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: ZARZĄDZANIE NT) Description: System Windows nie może załadować pliku rejestru klas. SZCZEGÓŁY — Nie można odnaleźć określonego pliku. Error: (03/06/2015 07:12:45 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: ZARZĄDZANIE NT) Description: System Windows nie może załadować pliku rejestru klas. SZCZEGÓŁY — Nie można odnaleźć określonego pliku. Error: (03/06/2015 07:07:37 AM) (Source: MsiInstaller) (EventID: 11706) (User: as-Komputer) Description: Product: ASUS FancyStart -- Error 1706. An installation package for the product ASUS FancyStart cannot be found. Try the installation again using a valid copy of the installation package 'FancyStart.msi'. Error: (03/06/2015 07:06:12 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: ZARZĄDZANIE NT) Description: System Windows nie może załadować pliku rejestru klas. SZCZEGÓŁY — Nie można odnaleźć określonego pliku. Error: (03/06/2015 07:05:42 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: ZARZĄDZANIE NT) Description: System Windows nie może załadować pliku rejestru klas. SZCZEGÓŁY — Nie można odnaleźć określonego pliku. Error: (03/06/2015 07:05:41 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: ZARZĄDZANIE NT) Description: System Windows nie może załadować pliku rejestru klas. SZCZEGÓŁY — Nie można odnaleźć określonego pliku. Error: (03/06/2015 06:41:21 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: ZARZĄDZANIE NT) Description: System Windows nie może załadować pliku rejestru klas. SZCZEGÓŁY — Nie można odnaleźć określonego pliku. Error: (03/06/2015 04:43:43 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury ConvertStringSidToSid(S-1-5-21-554914868-1295861038-1199024560-501.bak). hr = 0x80070539, Struktura identyfikatora zabezpieczenia jest nieprawidłowa. . Operacja: Zdarzenie OnIdentify Zbieranie danych modułu zapisującego Kontekst: Kontekst wykonywania: Shadow Copy Optimization Writer Identyfikator klasy modułu zapisującego: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f} Nazwa modułu zapisującego: Shadow Copy Optimization Writer Identyfikator wystąpienia modułu zapisującego: {17cab7af-8b1e-489b-845d-7cdc42e20d80} Error: (03/06/2015 01:09:03 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury ConvertStringSidToSid(S-1-5-21-554914868-1295861038-1199024560-501.bak). hr = 0x80070539, Struktura identyfikatora zabezpieczenia jest nieprawidłowa. . Operacja: Zdarzenie OnIdentify Zbieranie danych modułu zapisującego Kontekst: Kontekst wykonywania: Shadow Copy Optimization Writer Identyfikator klasy modułu zapisującego: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f} Nazwa modułu zapisującego: Shadow Copy Optimization Writer Identyfikator wystąpienia modułu zapisującego: {73079e98-ddfe-43d1-bcc7-85cc8672c617} Error: (03/06/2015 01:08:41 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: ZARZĄDZANIE NT) Description: System Windows nie może załadować pliku rejestru klas. SZCZEGÓŁY — Nie można odnaleźć określonego pliku. System errors: ============= Error: (03/06/2015 07:07:40 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Usługa Google Update (gupdate) z powodu następującego błędu: %%2 Error: (03/06/2015 07:07:40 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi globalUpdate Update Service (globalUpdate) z powodu następującego błędu: %%2 Error: (03/06/2015 07:07:36 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi UsÅ‚uga BonanzaDealsLive (bonanzadealslive) z powodu następującego błędu: %%2 Error: (03/06/2015 07:05:35 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi DefaultTabSearch z powodu następującego błędu: %%2 Error: (03/06/2015 07:05:35 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa ATKGFNEX Service zależy od usługi ASMMAP64, której nie można uruchomić z powodu następującego błędu: %%2 Error: (03/06/2015 07:05:35 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi ASMMAP64 z powodu następującego błędu: %%2 Error: (03/06/2015 07:03:17 AM) (Source: ACPI) (EventID: 10) (User: ) Description: ACPI: System ACPI BIOS próbuje zapisać dane w niedozwolonym regionie działania PCI (0x4). Skontaktuj się z dostawcą systemu w celu uzyskania pomocy technicznej. Error: (03/06/2015 07:03:17 AM) (Source: ACPI) (EventID: 10) (User: ) Description: ACPI: System ACPI BIOS próbuje zapisać dane w niedozwolonym regionie działania PCI (0x4). Skontaktuj się z dostawcą systemu w celu uzyskania pomocy technicznej. Error: (03/06/2015 06:39:34 AM) (Source: ACPI) (EventID: 10) (User: ) Description: ACPI: System ACPI BIOS próbuje zapisać dane w niedozwolonym regionie działania PCI (0x4). Skontaktuj się z dostawcą systemu w celu uzyskania pomocy technicznej. Error: (03/06/2015 06:39:34 AM) (Source: ACPI) (EventID: 10) (User: ) Description: ACPI: System ACPI BIOS próbuje zapisać dane w niedozwolonym regionie działania PCI (0x4). Skontaktuj się z dostawcą systemu w celu uzyskania pomocy technicznej. Microsoft Office Sessions: ========================= Error: (03/06/2015 07:12:45 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: ZARZĄDZANIE NT) Description: Nie można odnaleźć określonego pliku. Error: (03/06/2015 07:12:45 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: ZARZĄDZANIE NT) Description: Nie można odnaleźć określonego pliku. Error: (03/06/2015 07:07:37 AM) (Source: MsiInstaller) (EventID: 11706) (User: as-Komputer) Description: Product: ASUS FancyStart -- Error 1706. An installation package for the product ASUS FancyStart cannot be found. Try the installation again using a valid copy of the installation package 'FancyStart.msi'.(NULL)(NULL)(NULL)(NULL)(NULL) Error: (03/06/2015 07:06:12 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: ZARZĄDZANIE NT) Description: Nie można odnaleźć określonego pliku. Error: (03/06/2015 07:05:42 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: ZARZĄDZANIE NT) Description: Nie można odnaleźć określonego pliku. Error: (03/06/2015 07:05:41 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: ZARZĄDZANIE NT) Description: Nie można odnaleźć określonego pliku. Error: (03/06/2015 06:41:21 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: ZARZĄDZANIE NT) Description: Nie można odnaleźć określonego pliku. Error: (03/06/2015 04:43:43 AM) (Source: VSS) (EventID: 8193) (User: ) Description: ConvertStringSidToSid(S-1-5-21-554914868-1295861038-1199024560-501.bak)0x80070539, Struktura identyfikatora zabezpieczenia jest nieprawidłowa. Operacja: Zdarzenie OnIdentify Zbieranie danych modułu zapisującego Kontekst: Kontekst wykonywania: Shadow Copy Optimization Writer Identyfikator klasy modułu zapisującego: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f} Nazwa modułu zapisującego: Shadow Copy Optimization Writer Identyfikator wystąpienia modułu zapisującego: {17cab7af-8b1e-489b-845d-7cdc42e20d80} Error: (03/06/2015 01:09:03 AM) (Source: VSS) (EventID: 8193) (User: ) Description: ConvertStringSidToSid(S-1-5-21-554914868-1295861038-1199024560-501.bak)0x80070539, Struktura identyfikatora zabezpieczenia jest nieprawidłowa. Operacja: Zdarzenie OnIdentify Zbieranie danych modułu zapisującego Kontekst: Kontekst wykonywania: Shadow Copy Optimization Writer Identyfikator klasy modułu zapisującego: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f} Nazwa modułu zapisującego: Shadow Copy Optimization Writer Identyfikator wystąpienia modułu zapisującego: {73079e98-ddfe-43d1-bcc7-85cc8672c617} Error: (03/06/2015 01:08:41 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: ZARZĄDZANIE NT) Description: Nie można odnaleźć określonego pliku. CodeIntegrity Errors: =================================== Date: 2012-07-26 13:15:57.380 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\as\AppData\Local\Temp\ATICDSDr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-07-26 13:15:57.365 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\as\AppData\Local\Temp\ATICDSDr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-07-26 13:15:57.209 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\as\AppData\Local\Temp\{9B94B~1\atiicdxx.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-07-26 13:15:57.178 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\as\AppData\Local\Temp\{9B94B~1\atiicdxx.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-07-26 13:15:45.285 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\as\AppData\Local\Temp\ATICDSDr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-07-26 13:15:45.253 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\as\AppData\Local\Temp\ATICDSDr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-07-26 13:15:45.207 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\as\AppData\Local\Temp\{9B94B~1\atiicdxx.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-07-26 13:15:45.191 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\as\AppData\Local\Temp\{9B94B~1\atiicdxx.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2011-09-10 18:10:22.775 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\as\AppData\Local\Temp\ATICDSDr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2011-09-10 18:10:22.728 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\as\AppData\Local\Temp\ATICDSDr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i3 CPU M 350 @ 2.27GHz Percentage of memory in use: 47% Total physical RAM: 2988.54 MB Available physical RAM: 1581.34 MB Total Pagefile: 5975.27 MB Available Pagefile: 4447.49 MB Total Virtual: 8192 MB Available Virtual: 8191.83 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:149.04 GB) (Free:30.46 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive d: (DATA) (Fixed) (Total:434.43 GB) (Free:89.83 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 596.2 GB) (Disk ID: BD852079) Partition 1: (Not Active) - (Size=12.7 GB) - (Type=1C) Partition 2: (Active) - (Size=149 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=434.4 GB) - (Type=OF Extended) ==================== End Of Log ============================