Additional scan result of Farbar Recovery Scan Tool (x64) Version:16-06-2016 01 Ran by Piotr (2016-06-18 09:35:53) Running from G:\Pobrane\Bezpieczeństwo Windows 7 Ultimate Service Pack 1 (X64) (2015-07-09 12:53:46) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-665930927-4129261431-4220860388-500 - Administrator - Disabled) Guest (S-1-5-21-665930927-4129261431-4220860388-501 - Limited - Disabled) Piotr (S-1-5-21-665930927-4129261431-4220860388-1000 - Administrator - Enabled) => C:\Users\Piotr ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.18.0 - Mirillis) Ad Muncher v4.94.34121 (Free) (HKLM-x32\...\Ad Muncher) (Version: - ) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 15.016.20045 - Adobe Systems Incorporated) Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.42.34 - Adobe Systems Incorporated) Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated) Adobe Flash Player 22 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated) AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 2.02.00 - ASUSTeK Computer Inc.) AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.60.1495, 03.06.2015 - AIMP DevTeam) Aktualizacje NVIDIA 2.4.5.44 (Version: 2.4.5.44 - NVIDIA Corporation) Hidden Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Ashampoo Burning Studio FREE v.1.14.5 (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.14.5 - Ashampoo GmbH & Co. KG) Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.10.0 - Asmedia Technology) ASUS Xonar DG Audio Driver (HKLM\...\C-Media Oxygen HD Audio Driver) (Version: - ) Audacity 2.1.1 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.2.2262 - AVAST Software) Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts) Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts) Battlefield: Bad Company™ 2 (HKLM-x32\...\{3AC8457C-0385-4BEA-A959-E095F05D6D67}) (Version: 1.0.1.0 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB) CCleaner (HKLM\...\CCleaner) (Version: 5.11 - Piriform) Freemake Video Converter wersja 4.1.9 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.9 - Ellora Assets Corporation) GoldWave v6.19 (HKLM\...\GoldWave v6.19) (Version: 6.19 - GoldWave Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.) Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden HP Deskjet 2510 series — podstawowe oprogramowanie urządzenia (HKLM\...\{F0DD70C6-B53F-42B5-8A67-62863E6E5EEF}) (Version: 28.0.1313.0 - Hewlett-Packard Co.) HP Deskjet 2510 series Setup Guide (HKLM-x32\...\{216C7F38-4BBC-4E9A-8392-C9FA21B54386}) (Version: 27.0.0 - Hewlett Packard) HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.16.0.001 - HTC Corporation) HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.54.2 - HTC) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation) Intel(R) Network Connections 18.1.59.0 (HKLM\...\PROSetDX) (Version: 18.1.59.0 - Intel) Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version: - Intel Corporation) IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC) IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan) KeePass Password Safe 2.33 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.33 - Dominik Reichl) K-Lite Mega Codec Pack 11.2.7 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.2.7 - ) Medal of Honor™ Warfighter (HKLM-x32\...\{1040143F-FEFB-4B90-8E51-E47D40E14C4E}) (Version: 1.0.0.3 - Electronic Arts) Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation) Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110415-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.5614.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) MiVue Manager (HKLM-x32\...\{F9E03BA4-CB0E-4937-B1B0-851FFF5909E1}) (Version: 1.0.30.4 - Navman) Mozilla Firefox 40.0.3 (x86 pl) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 pl)) (Version: 40.0.3 - Mozilla) Mozilla Firefox 47.0 (x86 pl) (HKU\S-1-5-21-665930927-4129261431-4220860388-1000\...\Mozilla Firefox 47.0 (x86 pl)) (Version: 47.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) NVIDIA GeForce Experience 2.4.5.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.44 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) NVIDIA Sterownik graficzny 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.30 - NVIDIA Corporation) Obsługa programów Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Opera 12.18 (HKLM\...\Opera 12.18.1873) (Version: 12.18.1873 - Opera Software ASA) Origin (HKLM-x32\...\Origin) (Version: 9.7.2.53208 - Electronic Arts, Inc.) Panel sterowania NVIDIA 353.30 (Version: 353.30 - NVIDIA Corporation) Hidden Perixx Gaming mouse version 1.0.6 (HKLM-x32\...\{2F606408-495F-4772-A3A7-BE0A31C4B261}_is1) (Version: 1.0.6 - ) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) QuickTime 7 (HKLM-x32\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.) Rainlendar2 (remove only) (HKLM-x32\...\Rainlendar2) (Version: - ) ROCCAT Isku Keyboard Driver (HKLM-x32\...\{4ABAF918-A6BD-43D8-AE0B-5292034B14CB}) (Version: - Roccat GmbH) SafeZone Stable 1.48.2066.101 (x32 Version: 1.48.2066.101 - Avast Software) Hidden SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.4.5.44 - NVIDIA Corporation) Hidden Skype™ 7.25 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.25.103 - Skype Technologies S.A.) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH) TS Notifier (HKLM-x32\...\{1A15C8C3-DDCA-47BF-9078-799D356462ED}) (Version: 1.5.5003 - Andreas Gebert) VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden Vegas Pro 13.0 (64-bit) (HKLM\...\{3814DB30-091D-11E4-BDE0-F04DA23A5C58}) (Version: 13.0.373 - Sony) WinRAR 5.21 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) WinSCP 5.7.5 (HKLM-x32\...\winscp3_is1) (Version: 5.7.5 - Martin Prikryl) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {18F76087-DF9D-45E3-972C-F7A777C6CDFC} - System32\Tasks\CCleanerSkipUAC => F:\CCleaner\CCleaner.exe [2015-10-19] (Piriform Ltd) Task: {4AA62AE9-D7BE-4A09-ADA0-FF68E82B64C2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {4EC401F2-7E63-4903-A1A1-666DDD83CB89} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-02] (AVAST Software) Task: {52AC6DD4-4BB8-47FF-9BFA-D2DBA00E34F6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {5DE46C0D-BFBE-4416-91A4-532CCD5234E0} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-05-10] (AVAST Software) Task: {62C61781-3A7D-4E5F-93BA-6DB131047609} - System32\Tasks\Core Temp Autostart Piotr => F:\CoreTemp\Core Temp.exe [2013-10-08] () Task: {9D515E27-3683-4633-BF14-FA8C465B8E41} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe [2013-07-25] () Task: {CA657A2A-58A0-4B13-95F0-E1E73F51C1AB} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_22_0_0_192_pepper.exe [2016-06-16] (Adobe Systems Incorporated) Task: {D1910AFF-7119-4EE2-907B-9A09BAF30419} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated) Task: {E4858E89-C28E-4CE4-8443-12C91D5D9CFF} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.) Task: {E9F2EA03-813A-41D1-866A-010A5B35023C} - System32\Tasks\SafeZone scheduled Autoupdate 1458751526 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-04-15] (Avast Software) Task: {FF46E0E4-261E-4DA3-89C9-8088E48BA099} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-16] (Adobe Systems Incorporated) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_22_0_0_192_pepper.exe Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Shortcuts ============================= (The entries could be listed to be restored or removed.) ==================== Loaded Modules (Whitelisted) ============== 2016-01-27 18:08 - 2015-06-17 07:48 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-07-10 00:26 - 2015-07-10 00:26 - 00920736 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe 2013-11-03 11:24 - 2013-10-08 14:23 - 00890016 _____ () F:\CoreTemp\Core Temp.exe 2015-07-10 00:42 - 2008-07-11 16:04 - 00200704 ____N () C:\Windows\SysWOW64\HsMgr.exe 2015-07-10 00:42 - 2008-07-11 16:03 - 00282112 ____N () C:\Windows\system\HsMgr64.exe 2013-10-17 15:27 - 2013-10-17 15:27 - 00166912 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe 2015-07-11 01:01 - 2015-10-29 01:14 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe 2014-03-16 18:42 - 2014-03-16 18:42 - 04411488 _____ () F:\Rainlendar2\Rainlendar2.exe 2012-05-16 20:12 - 2012-05-16 20:12 - 00179200 _____ () F:\Rainlendar2\lua52.dll 2014-03-14 11:24 - 2014-03-14 11:24 - 00324608 _____ () F:\Rainlendar2\libical.dll 2014-03-16 18:42 - 2014-03-16 18:42 - 00082528 _____ () F:\Rainlendar2\plugins\iCalendarPlugin.dll 2014-03-14 11:24 - 2014-03-14 11:24 - 00080384 _____ () F:\Rainlendar2\libicalss.dll 2012-06-17 14:21 - 2012-06-17 14:21 - 00015360 _____ () F:\Rainlendar2\lfs.dll 2015-07-14 15:23 - 2015-07-14 15:23 - 00821240 _____ () F:\HTC\HTC Sync\adb.exe 2016-01-27 18:08 - 2015-06-17 10:10 - 00721552 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\gamecaster64.dll 2016-01-27 18:08 - 2015-06-17 10:10 - 00854160 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\twitchsdk64.dll 2015-09-08 17:06 - 2016-03-29 07:32 - 00075264 _____ () C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe 2016-05-10 23:40 - 2016-05-10 23:40 - 00259472 _____ () C:\Program Files\AVAST Software\Avast\AvastNM.exe 2016-05-10 23:40 - 2016-05-10 23:40 - 00123344 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2016-05-10 23:40 - 2016-05-10 23:40 - 00135816 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2016-06-17 15:02 - 2016-06-17 15:02 - 02934784 _____ () C:\Program Files\AVAST Software\Avast\defs\16061700\algo.dll 2016-05-10 23:40 - 2016-05-10 23:40 - 00309912 _____ () C:\Program Files\AVAST Software\Avast\browser_pass.dll 2016-06-18 09:15 - 2016-06-18 09:15 - 02935808 _____ () C:\Program Files\AVAST Software\Avast\defs\16061800\algo.dll 2016-05-10 23:40 - 2016-05-10 23:40 - 00479680 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2015-07-10 00:26 - 2016-06-18 09:15 - 00032256 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll 2015-07-10 00:26 - 2010-06-29 11:58 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll 2015-07-14 15:22 - 2015-07-14 15:22 - 00030720 _____ () F:\HTC\DbAccess.dll 2015-07-14 15:22 - 2015-07-14 15:22 - 00607016 _____ () F:\HTC\sqlite3.dll 2015-07-14 15:23 - 2015-07-14 15:23 - 00059392 _____ () F:\HTC\NAdvLog.dll 2015-07-14 15:22 - 2015-07-14 15:22 - 00035864 _____ () F:\HTC\NFileCacheDBAccess.dll 2015-07-14 15:23 - 2015-07-14 15:23 - 00079888 _____ () F:\HTC\ninstallerhelper.dll 2015-07-14 15:24 - 2015-07-14 15:24 - 00129016 _____ () F:\HTC\zlib1.dll 2015-07-14 15:26 - 2015-07-14 15:26 - 00223240 _____ () F:\HTC\DevConnMon.dll 2016-01-27 18:08 - 2015-06-17 10:10 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2015-07-10 01:07 - 2012-06-06 10:56 - 00143360 ____N () C:\Program Files\ASUS Xonar DGX Audio\Customapp\VmixP8.dll 2015-12-12 13:23 - 2015-12-12 13:23 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2015-07-10 10:16 - 2013-09-13 19:50 - 00042496 _____ () C:\Program Files (x86)\Perixx Gaming mouse\KBGetKey.dll 2015-12-28 17:37 - 2010-11-04 12:48 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Isku Keyboard\hiddriver.dll 2015-07-10 00:34 - 2013-08-09 16:13 - 00043520 ____N () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\HookKey32.dll 2015-07-10 00:33 - 2013-08-09 15:13 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\pngio.dll 2015-07-10 00:33 - 2011-07-12 19:14 - 00147456 _____ () C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll 2015-07-10 00:33 - 2010-10-05 08:22 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll 2015-07-10 00:33 - 2012-10-08 17:07 - 00972288 _____ () C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll 2015-07-10 00:33 - 2012-07-20 09:39 - 01047040 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Probe_II\ProbeII.dll 2015-07-10 00:33 - 2013-04-15 14:19 - 00883712 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll 2015-07-10 00:33 - 2012-05-28 21:27 - 01622528 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll 2015-07-10 00:33 - 2011-09-19 20:18 - 01243136 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll 2015-07-10 00:33 - 2011-07-21 09:06 - 00846848 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll 2015-07-10 00:33 - 2012-08-29 18:09 - 00875520 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll 2015-07-10 00:26 - 2010-08-23 11:17 - 00662016 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMLib.dll 2015-07-10 00:33 - 2010-10-05 08:22 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll 2015-07-10 00:33 - 2009-08-12 20:15 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\pngio.dll 2016-05-10 23:41 - 2016-04-15 13:45 - 62334968 _____ () C:\Program Files\AVAST Software\SZBrowser\1.48.2066.101\SZBrowser.dll 2016-05-10 23:41 - 2016-04-15 13:45 - 02074104 _____ () C:\Program Files\AVAST Software\SZBrowser\1.48.2066.101\libglesv2.dll 2016-05-10 23:41 - 2016-04-15 13:45 - 00081400 _____ () C:\Program Files\AVAST Software\SZBrowser\1.48.2066.101\libegl.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PAexec => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PAexec => ""="Service" ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-665930927-4129261431-4220860388-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Piotr\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 194.168.4.100 - 194.168.8.100 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{FF600800-EC81-41F1-9256-D2082D465A2B}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe FirewallRules: [{3754F075-7443-4D70-B26C-8C3348CA7152}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe FirewallRules: [{D2CD0517-436B-43BA-A2C8-4B4FED626990}] => (Allow) C:\Program Files\Opera x64\pluginwrapper\opera_plugin_wrapper.exe FirewallRules: [{347DCFD3-09D5-4A9D-8410-14C408B0107A}] => (Allow) C:\Program Files\Opera x64\pluginwrapper\opera_plugin_wrapper.exe FirewallRules: [{93E9DC45-FBEB-4F5B-B542-E841CB3B0492}] => (Allow) C:\Program Files\Opera x64\pluginwrapper\opera_plugin_wrapper_32.exe FirewallRules: [{6F2B36AC-3170-4A19-A71F-0CF044A7A8B1}] => (Allow) C:\Program Files\Opera x64\pluginwrapper\opera_plugin_wrapper_32.exe FirewallRules: [{E3DFA3E4-30BA-49F2-A5C8-8B06B79C4F69}] => (Allow) C:\Program Files\Opera x64\opera.exe FirewallRules: [{1228DE68-D9B3-459D-89A3-70924CF8546A}] => (Allow) C:\Program Files\Opera x64\opera.exe FirewallRules: [{94273D3E-94E0-46B9-98C3-4AD1352B3125}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe FirewallRules: [{11729D6A-484F-4E47-BFC3-9C4654F4D9EE}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe FirewallRules: [TCP Query User{71F99728-A731-4B7E-B230-B167338289C5}F:\aimp3\aimp3.exe] => (Block) F:\aimp3\aimp3.exe FirewallRules: [UDP Query User{447CC975-A911-4FDB-A954-C4735E49F6A1}F:\aimp3\aimp3.exe] => (Block) F:\aimp3\aimp3.exe FirewallRules: [{A73365FC-E56D-4A47-BAE1-5438569DF70E}] => (Allow) C:\Program Files\HP\HP Deskjet 2510 series\Bin\USBSetup.exe FirewallRules: [{5ECA7273-4E12-4038-B0BD-368BE6D101B3}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe FirewallRules: [{EE07C0AA-8690-4C0C-9DB4-6E5A8D3F3092}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe FirewallRules: [{309EE8C5-8719-4442-9067-F0A7531677A7}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe FirewallRules: [{DEBDD225-86BD-425C-B28F-959DF633CBE3}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe FirewallRules: [{13E43271-5E75-4B03-BAB7-91A9A4429891}] => (Allow) F:\HTC\HTCSyncManager.exe FirewallRules: [TCP Query User{8ADADBC9-E2D5-4BF9-B3F6-DB51FD9025A4}F:\totalcmd\totalcmd64.exe] => (Allow) F:\totalcmd\totalcmd64.exe FirewallRules: [UDP Query User{34CF15CB-FBF9-4451-A03F-6558205AC9F1}F:\totalcmd\totalcmd64.exe] => (Allow) F:\totalcmd\totalcmd64.exe FirewallRules: [{E24B262D-9244-433C-A282-CFA77B4265FD}] => (Allow) F:\Firefox\firefox.exe FirewallRules: [{C5886B62-1D02-440B-9300-81DD78CF666B}] => (Allow) F:\Firefox\firefox.exe FirewallRules: [{3E76F97C-3F44-422F-A914-C4640027E575}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{8E8E8F3F-3ED9-4A1C-99AC-3B270B22BC71}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{3067AA84-D6B3-4961-A7FA-C20B8A74BFDE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{D9F59655-2A80-478A-8C81-0BEDE6D602E9}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{A4EAE5FC-5FBB-4320-9F02-F4760DAF41B8}] => (Allow) D:\Program Files (x86)\Origin Games\Medal of Honor Warfighter\MOHW.exe FirewallRules: [{7292A011-4FD1-4DDD-AFB6-B676097C22D7}] => (Allow) D:\Program Files (x86)\Origin Games\Medal of Honor Warfighter\MOHW.exe FirewallRules: [{A62727F0-E329-4F18-81D4-8992F0533EDE}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield Bad Company 2\BFBC2Game.exe FirewallRules: [{EBB25496-40A4-4596-B4A5-59D71051D52E}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield Bad Company 2\BFBC2Game.exe FirewallRules: [{BBAA3C69-63F7-4D6A-93E1-91D4034A6BC3}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe FirewallRules: [{51308138-D9AD-44EE-84FC-B568586A50B3}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe FirewallRules: [{C56FC736-C9A9-4491-ABEC-5C9B7977EBDA}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe FirewallRules: [{2C4D2E32-DD8E-425D-B149-A53F21E4533E}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe FirewallRules: [{9949C029-37AD-4E86-BB9B-1804D12E5D79}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe FirewallRules: [{85012073-E4D1-4379-B108-7598AA6A06D7}] => (Allow) F:\Skype\Phone\Skype.exe FirewallRules: [{FF2E7488-40C9-40F7-AC2E-74EC529F736A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{D0EECFAC-74DA-4D61-810D-5CCF8B660849}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{31B2BF5B-A7D7-45F8-BB89-DBAF45A3A04A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{0DD7E6B1-EF4B-40D3-BD04-C71CF7927090}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{6CFBFA55-138A-4D1F-8FC4-E70B253969C4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{C5A37474-FFAD-4E93-B0D8-56F9BDBAAE6E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{C6C0880A-1EE2-4248-9AFC-D84120F79B98}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{A106820F-2656-4924-8053-360E72C53DB0}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{43169EDD-F484-4E3F-98B5-461ECEA716FC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Restore Points ========================= 10-06-2016 10:00:07 Kopia zapasowa systemu Windows 14-06-2016 17:19:16 ASU_MSI_TRAN 14-06-2016 17:22:34 Windows Update 15-06-2016 23:55:17 Windows Update 18-06-2016 09:15:54 ASU_MSI_TRAN ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (06/18/2016 09:22:05 AM) (Source: Windows Search Service) (EventID: 1019) (User: ) Description: Usługa wyszukiwania systemu Windows nie może przetworzyć listy lokalizacji dołączonych i wykluczonych. Błąd: <30, 0x80040d07, „iehistory://{S-1-5-21-665930927-4129261431-4220860388-1000}/”>. Error: (06/18/2016 09:15:30 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/17/2016 03:02:17 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/16/2016 05:06:26 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/16/2016 05:51:35 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/15/2016 04:47:29 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/15/2016 05:05:57 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/14/2016 05:18:55 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/13/2016 04:45:24 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/12/2016 12:18:13 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 System errors: ============= Error: (05/31/2016 09:22:11 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 21:21:15 na ‎2016-‎05-‎31 było nieoczekiwane. Error: (05/22/2016 01:03:25 AM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: Usługa Klient zasad grupy nie została poprawnie zamknięta po odebraniu kodu sterującego przed zamknięciem. Error: (05/15/2016 02:38:42 AM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: Usługa Klient zasad grupy nie została poprawnie zamknięta po odebraniu kodu sterującego przed zamknięciem. Error: (05/02/2016 10:24:12 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 22:21:36 na ‎2016-‎05-‎02 było nieoczekiwane. Error: (05/02/2016 10:20:39 PM) (Source: nvlddmkm) (EventID: 13) (User: ) Description: \Device\Video7Graphics Exception: ESR 0x404000=0x80000002 Error: (05/02/2016 10:20:39 PM) (Source: nvlddmkm) (EventID: 13) (User: ) Description: \Device\Video7Graphics Exception: ESR 0x4041b0=0x0 Error: (05/02/2016 10:20:39 PM) (Source: nvlddmkm) (EventID: 13) (User: ) Description: \Device\Video7Graphics Exception: Class 0x0 Subchannel 0x0 Mismatch Error: (04/24/2016 02:51:19 AM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: Usługa Klient zasad grupy nie została poprawnie zamknięta po odebraniu kodu sterującego przed zamknięciem. Error: (04/14/2016 04:44:24 PM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1000) (User: ZARZĄDZANIE NT) Description: Inicjacja klienta CBS nie powiodła się. Ostatni błąd: 0x8007045b Error: (04/04/2016 12:12:01 AM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: Usługa Klient zasad grupy nie została poprawnie zamknięta po odebraniu kodu sterującego przed zamknięciem. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i7-4820K CPU @ 3.70GHz Percentage of memory in use: 19% Total physical RAM: 16325.15 MB Available physical RAM: 13207.5 MB Total Virtual: 32648.49 MB Available Virtual: 28816 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:200 GB) (Free:133.8 GB) NTFS ==>[drive with boot components (obtained from BCD)] Drive d: () (Fixed) (Total:265.76 GB) (Free:139.42 GB) NTFS Drive e: () (Fixed) (Total:244.04 GB) (Free:203.77 GB) NTFS Drive f: () (Fixed) (Total:292.97 GB) (Free:288.08 GB) NTFS Drive g: () (Fixed) (Total:394.4 GB) (Free:99.7 GB) NTFS Drive h: () (Fixed) (Total:232.88 GB) (Free:196.07 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 1640E5F3) Partition 1: (Active) - (Size=200 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=265.8 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 9DAA9819) Partition 1: (Not Active) - (Size=244 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=293 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=394.4 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (Size: 232.9 GB) (Disk ID: 206D206D) Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS) ==================== End of Addition.txt ============================