Additional scan result of Farbar Recovery Scan Tool (x86) Version:23-08-2015 Ran by HYPER (2015-08-23 17:20:58) Running from C:\Users\HYPER\Desktop Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3231952852-421943317-2037577364-500 - Administrator - Disabled) => C:\Users\Administrator Gość (S-1-5-21-3231952852-421943317-2037577364-501 - Limited - Enabled) => C:\Users\Gość HomeGroupUser$ (S-1-5-21-3231952852-421943317-2037577364-1006 - Limited - Enabled) HYPER (S-1-5-21-3231952852-421943317-2037577364-1000 - Administrator - Enabled) => C:\Users\HYPER sunset (S-1-5-21-3231952852-421943317-2037577364-1010 - Administrator - Enabled) => C:\Users\sunset UpdatusUser (S-1-5-21-3231952852-421943317-2037577364-1008 - Limited - Enabled) => C:\Users\UpdatusUser ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 3DMark05 (HKLM\...\{2DF7B278-D3B6-40A4-B25C-0E7149F439EA}) (Version: 1.2.0 - ) Active@ ISO Burner (HKLM\...\{7694E0B1-2332-448B-9235-929F84B41E3F}) (Version: 2.5.1 - LSoft Technologies) Adobe AIR (HKLM\...\Adobe AIR) (Version: 1.5.3.9120 - Adobe Systems Inc.) Adobe Community Help (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated) Adobe Flash Player 18 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 18.0.0.232 - Adobe Systems Incorporated) Adobe Flash Player 18 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated) Adobe Media Player (HKLM\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated) Adobe Photoshop CS5 (HKLM\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated) Adobe Shockwave Player 12.0 (HKLM\...\Adobe Shockwave Player) (Version: 12.0.6.147 - Adobe Systems, Inc.) Aktualizacje NVIDIA 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation) Apple Application Support (HKLM\...\{EE6097DD-05F4-4178-9719-D3170BF098E8}) (Version: 1.4.1 - Apple Inc.) Apple Software Update (HKLM\...\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}) (Version: 2.1.1.116 - Apple Inc.) Archiwizator WinRAR (HKLM\...\WinRAR archiver) (Version: - ) AVG PC TuneUp 2014 (pl-PL) (Version: 14.0.1001.205 - AVG) Hidden Battlefield 3™ (HKLM\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts) Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (Version: - ) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (Version: - ) Hidden Call of Duty: Modern Warfare 3 - Multiplayer (HKLM\...\Steam App 42690) (Version: - Infinity Ward - Sledgehammer Games) CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform) Colin McRae Rally 2 (HKLM\...\{19B72AA9-985A-11D4-9C8A-00D0B75D1498}) (Version: - ) Counter-Strike (HKLM\...\Steam App 10) (Version: - Valve) Counter-Strike(TM) (HKLM\...\{DF5A03CC-D5AA-43D8-B948-D9903F2AF94A}) (Version: 1.0.0.0 - Valve) Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve) Creative Live! Cam Vista IM Driver (1.11.02.00) (HKLM\...\Creative VF0260) (Version: - ) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.45.4.0316 - DT Soft Ltd) Dedicated Server (HKLM\...\Steam App 5) (Version: - Valve) DiRT 3 (HKLM\...\GFWL_{434D0FA0-1558-4D8E-AC3D-BD1000008200}) (Version: 1.0.0000.130 - Codemasters) DiRT 3 (Version: 1.0.0000.130 - Codemasters) Hidden DiRT 3 (Version: 1.0.0001.130 - Codemasters) Hidden EA SPORTS Game Face Browser Plugin 1.8.0.0 (HKU\S-1-5-21-3231952852-421943317-2037577364-1000\...\EA SPORTS Game Face Browser Plugin) (Version: 1.8.0.0 - Electronic Arts) ESET NOD32 Antivirus (HKLM\...\{3D7D43C8-EBE6-4582-82E6-B0BC7C162744}) (Version: 8.0.312.4 - ESET, spol s r. o.) Euro Truck Simulator 2 wersja 1.5.2.1s (HKLM\...\Euro Truck Simulator 2_is1) (Version: 1.5.2.1s - SCS Software) F1 2011 (HKLM\...\GFWL_{434D0FA1-3E0C-4D03-A5D4-5E1000008100}) (Version: 1.0.0000.129 - Codemasters) F1 2011 (Version: 1.0.0000.129 - Codemasters) Hidden Far Cry 3 (HKLM\...\{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}) (Version: 1.02 - Ubisoft) FIFA 12 (HKLM\...\{EA8ADAA9-6671-4839-A51E-0C6792B78F3E}) (Version: 1.6.0.0 - Electronic Arts) FIFA 12 DEMO (HKLM\...\{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}) (Version: 1.0.0.0 - Electronic Arts) FIFA 13 (HKLM\...\{A29E18C2-7AB1-4b6b-848C-5D5E2C85F0C0}) (Version: 1.0.0.0 - Electronic Arts) FIFA 14 (HKLM\...\{AA7A2800-1E75-4240-855B-03AFF8E5171E}) (Version: 1.0.0.7 - Electronic Arts) FL Studio 10 (HKLM\...\FL Studio 10) (Version: - Image-Line) floaters v2.1 (HKLM\...\{9A42E862-190F-4F05-ABFB-CC7D6718426D}) (Version: 2.1.0 - SpantoSoft) Free YouTube to MP3 Converter version 3.12.32.327 (HKLM\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.32.327 - DVDVideoSoft Ltd.) GameRanger (HKU\S-1-5-21-3231952852-421943317-2037577364-1000\...\GameRanger) (Version: - GameRanger Technologies) GG (HKU\S-1-5-21-3231952852-421943317-2037577364-1000\...\GG) (Version: 12 - GG Network S.A.) Google Chrome (HKU\S-1-5-21-3231952852-421943317-2037577364-1000\...\Google Chrome) (Version: 44.0.2403.157 - Google Inc.) Google Earth Plug-in (HKLM\...\{57BB4801-61C8-4E74-9672-2160728A461E}) (Version: 7.1.5.1557 - Google) Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (Version: 1.3.28.1 - Google Inc.) Hidden Grand Theft Auto IV (HKLM\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games) Grand Theft Auto IV (Version: 1.0.0011.131 - Rockstar Games Inc.) Hidden Grand Theft Auto IV (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden Half-Life Dedicated Server Update Tool (HKLM\...\Half-Life Dedicated Server Update Tool) (Version: - ) HLTooLz (HKLM\...\ST6UNST #1) (Version: - ) Intel(R) Network Connections 14.4.1.0 (HKLM\...\PROSetDX) (Version: 14.4.1.0 - Intel) Java 8 Update 60 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation) Kozacy - Powrót na wojnę (HKLM\...\InstallShield_{5BFDB060-06A4-11D0-9C4F-00A0C705475F}) (Version: 1.00.0000 - CDV) Kozacy - Powrót na wojnę (Version: 1.00.0000 - CDV) Hidden League of Legends (HKLM\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (Version: 3.0.1 - Riot Games) Hidden Łatka polonizacyjna GTA IV v1.0 (HKLM\...\Łatka polonizacyjna GTA IV v1.0) (Version: 1.0 - GTAPOLSKA.PL) Machinery HDR Effects (HKLM\...\{C4D5D480-D427-492B-A329-D0C4240E5881}) (Version: 2.8.30 - Maszyneria) McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.149.2 - McAfee, Inc.) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation) Microsoft Games for Windows Marketplace (HKLM\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation) Microsoft Office Word Viewer 2003 (HKLM\...\{90850415-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Mozilla Firefox 40.0.2 (x86 pl) (HKLM\...\Mozilla Firefox 40.0.2 (x86 pl)) (Version: 40.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 40.0.2.5702 - Mozilla) MSVC80_x86_v2 (Version: 1.0.3.0 - Nokia) Hidden MSVC90_x86 (Version: 1.0.1.2 - Nokia) Hidden MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Na Fali (HKLM\...\{5F40279D-83BA-4E52-8A3B-2F9F2D66DD06}) (Version: 1.00.000 - Ubisoft) NEF Codec (HKLM\...\{A89768CF-CD21-44FD-A723-16D5A8557415}) (Version: 1.00.0000 - Nikon) Nero 7 Premium (HKLM\...\{91C0B95B-B83A-4828-A775-BBE2DD421045}) (Version: 7.02.9752 - Nero AG) Nero Backup Drivers (HKLM\...\{F8EF9B71-53E7-41F5-8E54-47B4C979CB38}) (Version: 1.0.11100.8.0 - Nero AG) Nokia Connectivity Cable Driver (HKLM\...\{A57025CC-5F2E-4D01-B387-06DB10500D43}) (Version: 7.1.78.0 - Nokia) NVIDIA Oprogramowanie systemu PhysX 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 310.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 310.70 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.18.0 - NVIDIA Corporation) NVIDIA Sterownik graficzny 310.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 310.70 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 310.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 310.70 - NVIDIA Corporation) OpenFM (HKU\S-1-5-21-3231952852-421943317-2037577364-1000\...\OpenFM) (Version: 2 - GG Network S.A.) OpenOffice.org 3.4.1 (HKLM\...\{18192D3F-5537-4560-AD89-D695F72AF91D}) (Version: 3.41.9593 - Apache Software Foundation) Origin (HKLM\...\Origin) (Version: 9.0.13.2142 - Electronic Arts, Inc.) Panel sterowania NVIDIA 310.70 (Version: 310.70 - NVIDIA Corporation) Hidden PC Connectivity Solution (HKLM\...\{644F4910-E812-49AD-93EC-86828CB81A0D}) (Version: 12.0.27.0 - Nokia) PDF Settings CS5 (Version: 10.0 - Adobe Systems Incorporated) Hidden PHP 5.3.8 (HKLM\...\{363973DB-33E3-4AA9-83DB-21401F78EFB9}) (Version: 5.3.8 - The PHP Group) PlayReady PC Runtime x86 (HKLM\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation) Pokki Download Helper (HKU\S-1-5-21-3231952852-421943317-2037577364-1000\...\PokkiDownloadHelper) (Version: 1.3.1.282 - Pokki) PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.) QuickTime (HKLM\...\{57752979-A1C9-4C02-856B-FBB27AC4E02C}) (Version: 7.69.80.9 - Apple Inc.) RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden RealPlayer (HKLM\...\RealPlayer 12.0) (Version: - RealNetworks) Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7245 - Realtek Semiconductor Corp.) RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden Rockstar Games Social Club (HKLM\...\{08B3869E-D282-424C-9AFC-870E04A4BA14}) (Version: 1.00.0000 - Rockstar Games) Samsung Auto Backup (HKLM\...\{821D6F49-1B20-4809-8C73-286CFC52B1B1}) (Version: 4.1.371.0 - Clarus) Samsung SecretZone (HKLM\...\{66491E5A-7899-4863-A2E9-057E10BCB578}) (Version: 2.0 - Clarus) Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.6.8442 - Skype Technologies S.A.) Sound Blaster Plugin for Microsoft Media Center (HKLM\...\Sound Blaster for Media Center) (Version: 3.10 - Creative Technology Limited) Steam (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve) Super Meat Boy (HKLM\...\Steam App 40800) (Version: - Team Meat) swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Symulator Samochodu 1.46 (HKLM\...\Symulator Samochodu_is1) (Version: 1.46 - Techland & astragon Software GmbH) TeamViewer 7 (HKLM\...\TeamViewer 7) (Version: 7.0.12979 - TeamViewer) Trials Evolution Gold Edition (HKLM\...\InstallShield_{07D857B8-C956-401D-BC8F-EDA8459AF037}) (Version: 1.0.0.1 - Ubisoft) Trials Evolution Gold Edition (Version: 1.0.0.1 - Ubisoft) Hidden Trine 2 (HKLM\...\Trine 2_is1) (Version: - ) Ubisoft Game Launcher (HKLM\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT) Unity Web Player (HKU\S-1-5-21-3231952852-421943317-2037577364-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS) Uplay (HKLM\...\Uplay) (Version: 2.0 - Ubisoft) Ventrilo (HKLM\...\{789289CA-F73A-4A16-A331-54D498CE069F}) (Version: 2.1.4 - Flagship Industries, Inc.) Virtua Tennis 4™ (HKLM\...\GFWL_{53450FA2-E900-456E-9715-501000008200}) (Version: 1.0.0000.130 - SEGA) Virtua Tennis 4™ (Version: 1.0.0000.130 - SEGA) Hidden Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) Windows Live ID Sign-in Assistant (HKLM\...\{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}) (Version: 6.500.3165.0 - Microsoft Corporation) Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp) Windows Movie Maker 2.6 (HKLM\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{00B7E0AB-817A-44AD-A04B-D1148D524136}\InprocServer32 -> F:\bin\IA\Core\MSSOAP30\msxml4.dll No File CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\HYPER\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{1c492e6a-2803-5ed7-83e1-1b1d4d41eb39}\InprocServer32 -> D:\231312\datapack\orbit\npuplaypc.dll (Ubisoft) CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\HYPER\AppData\Local\Google\Update\1.3.28.1\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{22848257-6a2d-4d2a-8d56-c886d25b8b58}\InprocServer32 -> C:\Users\HYPER\AppData\Local\Pokki\Download Helper\npPokkiDownloadHelper.1.2.0.78.dll (Pokki) CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\HYPER\AppData\Local\Google\Update\1.3.28.1\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\HYPER\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS) CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{50D5107A-D278-4871-8989-F4CEAAF59CFC}\InprocServer32 -> no filepath CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Users\HYPER\AppData\Local\Google\Update\1.3.28.1\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{5C65F4B0-3651-4514-B207-D10CB699B14B}\localserver32 -> C:\Users\HYPER\AppData\Local\Google\Chrome\Application\44.0.2403.157\delegate_execute.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\HYPER\AppData\Local\Google\Update\1.3.28.1\psuser.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{5F63E8CB-8F57-490A-97FE-62BC2F2A5EA4}\InprocServer32 -> no filepath CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{66B6B493-6055-4572-8FC1-A0FA86D63545}\InprocServer32 -> no filepath CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{7C6E29BC-8B8B-4C3D-859E-AF6CD158BE0F}\InprocServer32 -> F:\bin\IA\Core\MSSOAP30\msxml4.dll No File CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{88D969C0-F192-11D4-A65F-0040963251E5}\InprocServer32 -> F:\bin\IA\Core\MSSOAP30\msxml4.dll No File CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{88D969C1-F192-11D4-A65F-0040963251E5}\InprocServer32 -> F:\bin\IA\Core\MSSOAP30\msxml4.dll No File CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{88D969C2-F192-11D4-A65F-0040963251E5}\InprocServer32 -> F:\bin\IA\Core\MSSOAP30\msxml4.dll No File CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{88D969C3-F192-11D4-A65F-0040963251E5}\InprocServer32 -> F:\bin\IA\Core\MSSOAP30\msxml4.dll No File CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{88D969C4-F192-11D4-A65F-0040963251E5}\InprocServer32 -> F:\bin\IA\Core\MSSOAP30\msxml4.dll No File CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{88D969C5-F192-11D4-A65F-0040963251E5}\InprocServer32 -> F:\bin\IA\Core\MSSOAP30\msxml4.dll No File CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{88D969C6-F192-11D4-A65F-0040963251E5}\InprocServer32 -> F:\bin\IA\Core\MSSOAP30\msxml4.dll No File CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{88D969C8-F192-11D4-A65F-0040963251E5}\InprocServer32 -> F:\bin\IA\Core\MSSOAP30\msxml4.dll No File CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{88D969C9-F192-11D4-A65F-0040963251E5}\InprocServer32 -> F:\bin\IA\Core\MSSOAP30\msxml4.dll No File CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{88D969CA-F192-11D4-A65F-0040963251E5}\InprocServer32 -> F:\bin\IA\Core\MSSOAP30\msxml4.dll No File CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{88D969D6-F192-11D4-A65F-0040963251E5}\InprocServer32 -> F:\bin\IA\Core\MSSOAP30\msxml4.dll No File CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{8D083C4F-F8B1-42ED-851B-51017CF4C161}\InprocServer32 -> no filepath CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{BCDE0395-E52F-467C-8E3D-C4579291692E}\InprocServer32 -> no filepath CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\HYPER\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\HYPER\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{cbd32acd-3033-5dc4-af3e-a32955785032}\InprocServer32 -> C:\Users\HYPER\AppData\Roaming\Electronic Arts\Game Face\npGameFacePlugin.dll (Electronic Arts) CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\HYPER\AppData\Local\Google\Update\1.3.28.1\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\HYPER\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll (GG Network S.A.) CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\HYPER\AppData\Local\Google\Update\1.3.28.1\psuser.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-3231952852-421943317-2037577364-1000_Classes\CLSID\{F64A6DA6-E8AF-4B7B-BCA8-847AE765D538}\InprocServer32 -> no filepath ==================== Restore Points ========================= 21-08-2015 17:39:48 Usunięto: Steam 21-08-2015 17:41:23 Usunięto: Steam 23-08-2015 14:34:27 Zainstalowany program DirectX ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2015-07-01 01:25 - 2015-07-24 19:08 - 00000030 ____A C:\Windows\system32\Drivers\etc\hosts 0.0.0.1 mssplus.mcafee.com ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0036753C-94FE-4AF3-BC45-104FFFAAAD5C} - System32\Tasks\{4217C297-3434-4966-A369-A454A50F833C} => pcalua.exe -a C:\Users\HYPER\Downloads\SpeedTouch330_for_Vista\setup.exe -d C:\Users\HYPER\Downloads\SpeedTouch330_for_Vista Task: {061D0D13-6891-4B2A-A69A-1499DE0ED71A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd) Task: {127F706E-1694-4795-8576-17569100662F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3231952852-421943317-2037577364-1000UA => C:\Users\HYPER\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-30] (Google Inc.) Task: {2DD996C7-597A-4067-A6C7-76F29425334B} - System32\Tasks\GoogleUpdateTaskMachineUA1d0bf66a78c7755 => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-30] (Google Inc.) Task: {47587548-983F-49BA-9820-1DAC50D92B7D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-30] (Google Inc.) Task: {518DF902-BC39-4427-910E-5A5F63DA304C} - System32\Tasks\{873FD3E3-2010-4DAD-98CD-FBFD7D657252} => pcalua.exe -a C:\Users\HYPER\AppData\Roaming\OCS\SM\SearchAnonymizer.exe -c uninstall Task: {625F4E61-4187-48A6-97B9-BDD42092A418} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3231952852-421943317-2037577364-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe Task: {6B658548-A6B6-4975-B2FB-F8768801A50A} - System32\Tasks\AVG-Secure-Search-Update_0414c_rmv => C:\Program Files\AVG SafeGuard toolbar\AVG-Secure-Search-Update_0414c.exe Task: {6E588845-42D0-4383-A440-15C50B2A3A79} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3231952852-421943317-2037577364-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe Task: {758E4004-CE37-42C2-91AD-13E34ECB094E} - System32\Tasks\{834DD0A7-B12A-43DD-BEE7-4E987C74F9B0} => pcalua.exe -a C:\Users\HYPER\Desktop\CEP11-Multilanguage.exe -d C:\Users\HYPER\Desktop Task: {797EA43D-E81E-4BD9-B8D5-E9702809FCD3} - System32\Tasks\{E796106C-619E-4363-B324-916092D913B0} => pcalua.exe -a C:\Users\HYPER\Downloads\mobiola_webcam_3_0_11_wl_s60v3\1.mobiola_webcam_3_0_11_wl_s60v3.exe -d C:\Users\HYPER\Downloads\mobiola_webcam_3_0_11_wl_s60v3 Task: {7BD85F91-02FC-4267-B748-94FEB01E060B} - System32\Tasks\{CEC13CC7-D7A3-40F8-A1A9-8EF81E4DF169} => pcalua.exe -a "D:\Program Files\VirtualDJ\UNWISE.EXE" -c D:\Program Files\VirtualDJ\INSTALL.LOG Task: {8A3540B0-5B17-466D-BD05-4B54C4219D78} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3231952852-421943317-2037577364-1000Core => C:\Users\HYPER\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-30] (Google Inc.) Task: {8D03D8E2-2C86-4AB1-B052-D74AFA902E06} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3231952852-421943317-2037577364-1000Core1d0bf3cca65655e => C:\Users\HYPER\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-30] (Google Inc.) Task: {8FF8D252-3710-4F75-B46C-BE6B4633F047} - System32\Tasks\{1482D5CA-E347-4326-9660-99CEC68A7E22} => pcalua.exe -a C:\ProgramData\Installations\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}\Nokia_PC_Suite_ALL.exe Task: {9952C1F3-A9D7-4864-BBB5-54A61CF5D99A} - System32\Tasks\{5A5B63D2-D9A6-42FB-B577-E592D30F9510} => pcalua.exe -a C:\Users\HYPER\Downloads\VentriloMIX0.5.exe -d C:\Users\HYPER\Downloads Task: {A8C225B4-C65C-45E4-836E-5187155835CC} - System32\Tasks\AVG-Secure-Search-Update_0414c_rel => C:\Program Files\AVG SafeGuard toolbar\AVG-Secure-Search-Update_0414c.exe Task: {B8C48D02-79DA-4880-B3E2-DDF50FB28E7E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3231952852-421943317-2037577364-1000UA1d0bf3ccb0c701f => C:\Users\HYPER\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-30] (Google Inc.) Task: {C9F739DE-233F-46AF-8164-3715D0C375DC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-30] (Google Inc.) Task: {D560DD86-07D4-49AB-A337-0FC8C18F1EB1} - System32\Tasks\{8D14CD8D-4FA0-468E-A427-84C91D8733D4} => pcalua.exe -a C:\Users\HYPER\Desktop\Metin2_20080908.exe -d C:\Users\HYPER\Desktop Task: {D5824429-6624-4EC1-B91E-E562CEFCF73F} - System32\Tasks\{168D8961-1610-4E97-BC47-359B2F87803E} => C:\Program Files\Skype\\Phone\Skype.exe Task: {D6B6726B-7A9F-499D-9F88-6E2BFF96F00D} - System32\Tasks\{17684039-AB34-4638-AC57-87CA575A5CE6} => Firefox.exe http://ui.skype.com/ui/0/6.3.0.105/pl/abandoninstall?page=tsProgressBar Task: {E33E66A3-8C6E-42F9-B920-AACAE87F4E3A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12] (Adobe Systems Incorporated) Task: {E453EF6D-AA72-4A6A-A762-85C74DB4693B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe Task: {EA28BEB5-7052-48C9-B50C-0277E1F6D8DA} - System32\Tasks\{04786A47-039A-4FEA-B4C0-30B5E80C2E7B} => pcalua.exe -a "C:\Program Files\Origin\EAProxyInstaller.exe" -d "C:\Program Files\Origin" Task: {F08A072E-6852-4BB9-B438-91C728CCFE82} - System32\Tasks\{C1A0D331-0725-4BA5-9A2C-F986D5B58989} => pcalua.exe -a C:\Users\HYPER\AppData\Local\temp\WinampPluginSetup_2.1.0.9.exe -d "C:\Program Files\Last.fm" -c /SILENT /DIR="C:\PROGRA~1\Winamp\plugins\" Task: {F25F2C47-3B8E-4845-9BD2-12C038EC146B} - System32\Tasks\{6D715756-040C-440F-A303-8E2082CC14AF} => pcalua.exe -a "C:\Program Files\Gene6 FTP Server\Uninstall\unins000.exe" -d "C:\Program Files\Gene6 FTP Server\Uninstall" (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\AVG-Secure-Search-Update_0414c_rel.job => C:\Program Files\AVG SafeGuard toolbar\AVG-Secure-Search-Update_0414c.exe Task: C:\Windows\Tasks\AVG-Secure-Search-Update_0414c_rmv.job => C:\Program Files\AVG SafeGuard toolbar\AVG-Secure-Search-Update_0414c.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0bf66a78c7755.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3231952852-421943317-2037577364-1000Core.job => C:\Users\HYPER\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3231952852-421943317-2037577364-1000Core1d0bf3cca65655e.job => C:\Users\HYPER\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3231952852-421943317-2037577364-1000UA.job => C:\Users\HYPER\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3231952852-421943317-2037577364-1000UA1d0bf3ccb0c701f.job => C:\Users\HYPER\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (Whitelisted) ============== 2011-09-26 15:06 - 2012-12-01 06:38 - 00079208 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll 2010-12-28 01:18 - 2010-03-13 02:29 - 00114688 _____ () C:\Program Files\Clarus\Samsung SecretZone\MSSvc.exe 2010-12-28 01:18 - 2010-03-13 02:29 - 00299008 _____ () C:\Program Files\Clarus\Samsung SecretZone\MSMgrSDK.dll 2010-12-28 01:18 - 2010-03-13 02:26 - 00110592 _____ () C:\Program Files\Clarus\Samsung SecretZone\MSUtilSdk.dll 2010-12-28 01:18 - 2010-03-13 02:26 - 00528384 _____ () C:\Program Files\Clarus\Samsung SecretZone\MSMgrSDK.EN 2011-12-19 19:40 - 2013-11-17 18:23 - 00076888 _____ () C:\Windows\system32\PnkBstrA.exe 2015-04-21 16:17 - 2015-04-21 16:17 - 03715648 _____ () C:\Users\HYPER\AppData\Local\GG\Application\xulrunner\mozjs.dll 2015-04-21 16:17 - 2015-04-21 16:17 - 00122432 _____ () C:\Users\HYPER\AppData\Local\GG\Application\ggdrive\ZLIB1.dll 2015-04-21 16:17 - 2015-04-21 16:17 - 16361120 _____ () C:\Users\HYPER\AppData\Local\GG\Application\FMSBWChecker\Adobe AIR\Versions\1.0\Resources\NPSWF32.dll 2015-08-22 13:03 - 2015-08-18 07:23 - 01405768 _____ () C:\Users\HYPER\AppData\Local\Google\Chrome\Application\44.0.2403.157\libglesv2.dll 2015-08-22 13:03 - 2015-08-18 07:23 - 00081224 _____ () C:\Users\HYPER\AppData\Local\Google\Chrome\Application\44.0.2403.157\libegl.dll 2015-08-22 13:03 - 2015-08-18 07:23 - 16393032 _____ () C:\Users\HYPER\AppData\Local\Google\Chrome\Application\44.0.2403.157\PepperFlash\pepflashplayer.dll 2015-08-12 14:21 - 2015-08-12 14:21 - 17482952 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_18_0_0_232.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Windows\$NtUninstallKB65468$:SummaryInformation AlternateDataStreams: C:\ProgramData\TEMP:9D1B94FD AlternateDataStreams: C:\ProgramData\TEMP:D1B5B4F1 AlternateDataStreams: C:\ProgramData\TEMP:DFC5A2B2 ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\78385933.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\78385933.sys => ""="Driver" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) HKU\S-1-5-21-3231952852-421943317-2037577364-1000\Software\Classes\.exe: exefile => <===== ATTENTION HKU\S-1-5-21-3231952852-421943317-2037577364-1000\Software\Classes\exefile: <===== ATTENTION ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-3231952852-421943317-2037577364-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\HYPER\AppData\Roaming\Mozilla\Firefox\Tapeta pulpitu.bmp DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\Services: AxAutoMntSrv => 2 MSCONFIG\Services: McComponentHostService => 3 MSCONFIG\Services: npggsvc => 3 MSCONFIG\Services: Origin Client Service => 3 MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup MSCONFIG\startupfolder: C:^Users^HYPER^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Samsung Auto Backup Guage.lnk => C:\Windows\pss\Samsung Auto Backup Guage.lnk.Startup MSCONFIG\startupfolder: C:^Users^HYPER^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Samsung Auto Backup Real-Time Daemon.lnk => C:\Windows\pss\Samsung Auto Backup Real-Time Daemon.lnk.Startup MSCONFIG\startupfolder: C:^Users^HYPER^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Samsung Auto Backup Scheduler.lnk => C:\Windows\pss\Samsung Auto Backup Scheduler.lnk.Startup MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" MSCONFIG\startupreg: AdobeCS5ServiceManager => "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin MSCONFIG\startupreg: AlcoholAutomount => "C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount MSCONFIG\startupreg: AVG-Secure-Search-Update_0214c => C:\Users\sunset\AppData\Roaming\AVG 0214c Campaign\AVG-Secure-Search-Update-0214c.exe /PROMPT /mid=22fe57513d654551af4a297c33122e76-ad1491be2ce6c122f6b66faa90e70c2decf7d34c /CMPID=0214c MSCONFIG\startupreg: BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} => "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" MSCONFIG\startupreg: cbadedaacecdebfagfdgfdgdfg => "C:\ProgramData\cbadedaacecdebfagfdgfdgdfg.exe" MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Programy\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: GG => "C:\Users\HYPER\AppData\Local\GG\Application\gghub.exe" MSCONFIG\startupreg: Google Update => "C:\Users\HYPER\AppData\Local\Google\Update\GoogleUpdate.exe" /c MSCONFIG\startupreg: GoogleChromeAutoLaunch_20D691642033B965C810D6910117B0B6 => "C:\Users\HYPER\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window MSCONFIG\startupreg: IPLA! => C:\Program Files\ipla\ipla.exe /autorun MSCONFIG\startupreg: Live Update 5 => C:\Program Files\MSI\Live Update 5\LU5.exe /reminder MSCONFIG\startupreg: NeroFilterCheck => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe MSCONFIG\startupreg: qefiklixubib => c:\users\hyper\qefiklixubib.exe MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\QTTask.exe" -atboottime MSCONFIG\startupreg: RGSC => D:\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent MSCONFIG\startupreg: Skype => "C:\Users\sunset\AppData\Local\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: Steam => "c:\steam\steam.exe" -silent MSCONFIG\startupreg: SwitchBoard => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe MSCONFIG\startupreg: tiqxemumteaj => C:\Users\HYPER\tiqxemumteaj.exe MSCONFIG\startupreg: TkBellExe => "C:\Program Files\Real\RealPlayer\update\realsched.exe" -osboot ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{43349470-456D-49E0-AAD5-3261784E78BB}] => (Allow) C:\Windows\System32\PnkBstrA.exe FirewallRules: [{EA00E6FE-DE56-4FFD-AC03-AA2689ECDD73}] => (Allow) C:\Windows\System32\PnkBstrA.exe FirewallRules: [{7EA3265A-FDD1-4DFB-BB6D-079E23A7AE69}] => (Allow) C:\Windows\System32\PnkBstrB.exe FirewallRules: [{8A0117B8-DB78-42D0-9CAF-7D62293E4EFC}] => (Allow) C:\Windows\System32\PnkBstrB.exe FirewallRules: [{1771E719-29A4-4054-A052-574A2DE09B41}] => (Allow) C:\Windows\System32\PnkBstrA.exe FirewallRules: [{8DDD08BE-E002-4E3D-A2A7-1C5E5A3A1182}] => (Allow) C:\Windows\System32\PnkBstrA.exe FirewallRules: [{B2FC7C98-6EDA-47BF-B7C8-0AA2F60E33E4}] => (Allow) C:\Windows\System32\PnkBstrB.exe FirewallRules: [{F115782C-B6A2-454A-B219-8F3A9A12EC3D}] => (Allow) C:\Windows\System32\PnkBstrB.exe FirewallRules: [{B161BEDE-8F8B-4D9F-91BC-0F837009A269}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [{E0520D3A-9D36-4450-928E-8FDE4B2DE110}] => (Allow) D:\drt3\dirt3_game.exe FirewallRules: [{7EBDB695-6C17-4852-A329-981447E7A9F8}] => (Allow) D:\drt3\dirt3_game.exe FirewallRules: [{FD8D60C3-CB68-4504-B212-691BB35FCE4C}] => (Allow) C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe FirewallRules: [{94BD0CDD-15BB-4E78-B2EC-10130A169BD0}] => (Allow) C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe FirewallRules: [{931EBAB9-11D3-4F37-A873-800DE684E450}] => (Allow) D:\Nowy folder\F1_2011.exe FirewallRules: [{F212D5A5-23AA-44A4-A5C8-44C5F05E043C}] => (Allow) D:\Nowy folder\F1_2011.exe FirewallRules: [{77D995AA-F451-47DE-B671-D9296905890F}] => (Allow) C:\Program Files\TeamViewer\Version7\TeamViewer.exe FirewallRules: [{1FC9AEC1-44EF-4E60-80B1-87CB9614028B}] => (Allow) C:\Program Files\TeamViewer\Version7\TeamViewer.exe FirewallRules: [{5C0895AA-511A-4BFA-A4CF-AE5889B6F994}] => (Allow) C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe FirewallRules: [{394BA5F2-2BEA-4A01-9C71-3392E9A9027C}] => (Allow) C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe FirewallRules: [{FC501235-E036-457D-9412-73DB63CCBBEF}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{018F4C20-1192-4E6E-AB22-BA50C6D25BD6}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{443FF47C-46D2-434F-8842-9BEF8F3F23DA}] => (Allow) D:\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe FirewallRules: [{B0E24B87-4B65-4C93-A9FE-40266969740A}] => (Allow) D:\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe FirewallRules: [{86E6C5F7-E3A4-4FE4-83E5-F8C0E39C7055}] => (Allow) D:\gaa\Grand Theft Auto IV\LaunchGTAIV.exe FirewallRules: [{FC9D9C63-D2B8-42AD-A796-81E78A267B23}] => (Allow) D:\gaa\Grand Theft Auto IV\LaunchGTAIV.exe FirewallRules: [{7F2421A2-FF43-4DC0-9C04-E8F5685FE4CE}] => (Allow) D:\231312\datapack\trialsFMX.exe FirewallRules: [{068FD2B5-577E-4164-BD46-B4E19628B38C}] => (Allow) D:\231312\datapack\trialsFMX.exe FirewallRules: [{01AFA4A6-EC98-40A2-9278-925FF090ABF7}] => (Allow) D:\231312\Trials_launcher.exe FirewallRules: [{D99D23F4-88D1-4DC8-BEBD-4209FA8668FB}] => (Allow) D:\231312\Trials_launcher.exe FirewallRules: [{FD873473-2007-446B-8C0E-984B80FDCA2E}] => (Allow) LPort=57327 FirewallRules: [{8DB5F642-0F0F-4FD7-80F3-389DBC6100DE}] => (Allow) LPort=57327 FirewallRules: [{5EB6B7AE-7D82-46E1-B62C-1E287ACD5650}] => (Allow) LPort=57327 FirewallRules: [{3FFAAFF9-6C78-4C98-AF7F-1DA4E3885107}] => (Allow) LPort=57327 FirewallRules: [{5058BF77-EDAC-4605-8C95-957029893603}] => (Allow) C:\Steam\Steam.exe FirewallRules: [{E1032ED8-1080-4673-B662-A5ADEA818D92}] => (Allow) C:\Steam\Steam.exe FirewallRules: [{40184E03-1D12-4127-B399-20BFE2AB5911}] => (Allow) C:\Steam\bin\steamwebhelper.exe FirewallRules: [{851A1932-11F9-4255-8686-FF3D69504171}] => (Allow) C:\Steam\bin\steamwebhelper.exe FirewallRules: [{E47B829E-37FE-4982-851B-6BC628C23404}] => (Allow) C:\Steam\steamapps\common\Half-Life\hl.exe FirewallRules: [{124C0574-4B52-4A50-93A0-0527D55333D5}] => (Allow) C:\Steam\steamapps\common\Half-Life\hl.exe FirewallRules: [{60E1980F-5E40-497D-83FF-771A509B2C95}] => (Allow) C:\Steam\steamapps\common\Super Meat Boy\SuperMeatBoy.exe FirewallRules: [{726D383A-A407-40CE-AD89-D33CA9858877}] => (Allow) C:\Steam\steamapps\common\Super Meat Boy\SuperMeatBoy.exe FirewallRules: [{E6304AB7-846B-4F4C-85EB-2C66DC13E329}] => (Allow) C:\Program Files\Mozilla Firefox 4.0 Beta 10\firefox.exe FirewallRules: [{67EF2162-8187-4784-8F01-62D1995BDF9F}] => (Allow) C:\Program Files\Mozilla Firefox 4.0 Beta 10\firefox.exe FirewallRules: [TCP Query User{95EBDCBA-5B78-4500-9F45-7C403601F90B}C:\games\counter-strike 1.6 zcp\hl.exe] => (Block) C:\games\counter-strike 1.6 zcp\hl.exe FirewallRules: [UDP Query User{8FE877A0-E814-42EF-BB0E-BC1C63FE1AF0}C:\games\counter-strike 1.6 zcp\hl.exe] => (Block) C:\games\counter-strike 1.6 zcp\hl.exe FirewallRules: [{3168EBDC-0A7D-4379-B3B6-240AD3FFFC36}] => (Allow) C:\Users\HYPER\AppData\Local\Google\Chrome\Application\chrome.exe FirewallRules: [{1A671C11-B852-49FE-BA94-541664057B98}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{EE7C241A-1CDE-41EC-B6E7-E5894F7DE7FD}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe StandardProfile\AuthorizedApplications: [C:\Program Files\xchat\xchat.exe] => Enabled:XChat IRC Client StandardProfile\AuthorizedApplications: [Client Server Runtime Process] => C:\Users\HYPER\AppData\Roaming\System32\csrss.exe StandardProfile\AuthorizedApplications: [Host-process Windows (Rundll32.exe)] => C:\Users\HYPER\AppData\Roaming\System32\csrss.exe StandardProfile\AuthorizedApplications: [Service Host Process for Windows] => C:\Users\HYPER\AppData\Roaming\System32\svchost.exe ==================== Faulty Device Manager Devices ============= Name: WAN Miniport (Network Monitor) Description: WAN Miniport (Network Monitor) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: NdisWan Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: WAN Miniport (IP) Description: WAN Miniport (IP) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: NdisWan Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: WAN Miniport (IPv6) Description: WAN Miniport (IPv6) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: NdisWan Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Karta Microsoft ISATAP Description: Karta Microsoft ISATAP Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: WAN Miniport (SSTP) Description: WAN Miniport (SSTP) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: RasSstp Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: WAN Miniport (IKEv2) Description: WAN Miniport (IKEv2) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: RasAgileVpn Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Miniport WAN (L2TP) Description: Miniport WAN (L2TP) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: Rasl2tp Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (08/23/2015 02:44:16 PM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: Nie można zainicjować indeksu. Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/23/2015 02:44:16 PM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: Nie można zainicjować aplikacji. Kontekst: aplikacja Windows Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/23/2015 02:44:16 PM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: Nie można zainicjować obiektu programu zbierającego. Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/23/2015 02:44:16 PM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Nie można zainicjować dodatku typu plug-in w . Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Nie można odnaleźć elementu. (HRESULT : 0x80070490) (0x80070490) Error: (08/23/2015 02:44:14 PM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Nie można zainicjować dodatku typu plug-in w . Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/23/2015 02:44:14 PM) (Source: Windows Search Service) (EventID: 9002) (User: ) Description: Usługa Windows Search nie może załadować informacji z magazynu właściwości. Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Baza danych indeksów zawartości jest uszkodzona. (HRESULT : 0xc0041800) (0xc0041800) Error: (08/23/2015 02:44:14 PM) (Source: Windows Search Service) (EventID: 7042) (User: ) Description: Usługa Windows Search jest zatrzymywana, ponieważ wystąpił problem z indeksatorem: The catalog is corrupt. Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/23/2015 02:44:14 PM) (Source: Windows Search Service) (EventID: 7040) (User: ) Description: Usługa wyszukiwania wykryła uszkodzone pliki danych w indeksie {id=4700}. Usługa podejmie próbę automatycznego rozwiązania tego problemu przez odbudowanie indeksu. Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/23/2015 02:44:14 PM) (Source: Windows Search Service) (EventID: 9000) (User: ) Description: Usługa Windows Search nie może otworzyć magazynu właściwości aparatu Jet. Szczegóły: 0x%08x (0xc0041800 - Baza danych indeksów zawartości jest uszkodzona. (HRESULT : 0xc0041800)) Error: (08/23/2015 02:44:14 PM) (Source: ESENT) (EventID: 455) (User: ) Description: Windows (2628) Windows: Wystąpił błąd -1811 podczas otwierania pliku dziennika C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS00092.log. System errors: ============= Error: (08/23/2015 05:18:02 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi NVIDIA Update Service Daemon z powodu następującego błędu: %%1069 Error: (08/23/2015 05:18:02 PM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Usługa nvUpdatusService nie może zalogować się jako .\UpdatusUser za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu: %%1330 Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC). Error: (08/23/2015 05:16:34 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Grupowanie sieci równorzędnej zależy od usługi Protokół rozpoznawania nazw równorzędnych, której nie można uruchomić z powodu następującego błędu: %%-2140993535 Error: (08/23/2015 05:16:34 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Protokół rozpoznawania nazw równorzędnych zakończyła działanie; wystąpił następujący błąd: %%-2140993535 Error: (08/23/2015 05:16:34 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Grupowanie sieci równorzędnej zależy od usługi Protokół rozpoznawania nazw równorzędnych, której nie można uruchomić z powodu następującego błędu: %%-2140993535 Error: (08/23/2015 05:16:34 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Protokół rozpoznawania nazw równorzędnych zakończyła działanie; wystąpił następujący błąd: %%-2140993535 Error: (08/23/2015 05:16:34 PM) (Source: PNRPSvc) (EventID: 102) (User: ) Description: 0x80630801 Error: (08/23/2015 05:16:34 PM) (Source: PNRPSvc) (EventID: 102) (User: ) Description: 0x80630801 Error: (08/23/2015 05:16:23 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Protokół rozpoznawania nazw równorzędnych zakończyła działanie; wystąpił następujący błąd: %%-2140993535 Error: (08/23/2015 05:16:23 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Grupowanie sieci równorzędnej zależy od usługi Protokół rozpoznawania nazw równorzędnych, której nie można uruchomić z powodu następującego błędu: %%-2140993535 Microsoft Office: ========================= Error: (08/23/2015 02:44:16 PM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/23/2015 02:44:16 PM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: Kontekst: aplikacja Windows Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/23/2015 02:44:16 PM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/23/2015 02:44:16 PM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Nie można odnaleźć elementu. (HRESULT : 0x80070490) (0x80070490) Search.TripoliIndexer Error: (08/23/2015 02:44:14 PM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Search.JetPropStore Error: (08/23/2015 02:44:14 PM) (Source: Windows Search Service) (EventID: 9002) (User: ) Description: Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Baza danych indeksów zawartości jest uszkodzona. (HRESULT : 0xc0041800) (0xc0041800) Error: (08/23/2015 02:44:14 PM) (Source: Windows Search Service) (EventID: 7042) (User: ) Description: Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) The catalog is corrupt Error: (08/23/2015 02:44:14 PM) (Source: Windows Search Service) (EventID: 7040) (User: ) Description: Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) 4700 Error: (08/23/2015 02:44:14 PM) (Source: Windows Search Service) (EventID: 9000) (User: ) Description: Szczegóły: 0x%08x (0xc0041800 - Baza danych indeksów zawartości jest uszkodzona. (HRESULT : 0xc0041800)) Error: (08/23/2015 02:44:14 PM) (Source: ESENT) (EventID: 455) (User: ) Description: Windows2628Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS00092.log-1811 ==================== Memory info =========================== Processor: Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz Percentage of memory in use: 45% Total physical RAM: 3062.12 MB Available physical RAM: 1661.18 MB Total Virtual: 6122.51 MB Available Virtual: 4499.46 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:97.56 GB) (Free:6.9 GB) NTFS Drive d: () (Fixed) (Total:146.48 GB) (Free:37.25 GB) NTFS Drive e: () (Fixed) (Total:221.62 GB) (Free:14.95 GB) NTFS Drive g: (Kozacy) (CDROM) (Total:0.46 GB) (Free:0 GB) CDFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 78AD6B81) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=97.6 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=146.5 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=221.6 GB) - (Type=07 NTFS) ==================== End of log ============================