Additional scan result of Farbar Recovery Scan Tool (x86) Version: 15-02-2015 Ran by Impet at 2015-02-16 12:40:33 Running from C:\Users\Impet\Downloads Boot Mode: Safe Mode (with Networking) ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A} AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-2718385464-555550638-2521923949-1000\...\uTorrent) (Version: 3.4.2.37754 - BitTorrent Inc.) Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.246 - Adobe Systems Incorporated) Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.296 - Adobe Systems Incorporated) Adobe Reader X (10.1.13) - Polish (HKLM\...\{AC76BA86-7AD7-1045-7B44-AA1000000001}) (Version: 10.1.13 - Adobe Systems Incorporated) Aktualizacja produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0415-0000-0000000FF1CE}_HOMESTUDENTR_{04E205D6-88B1-4652-B162-42DF2C3B1228}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0415-0000-0000000FF1CE}_HOMESTUDENTR_{442ECBCF-94A7-48CC-8CD9-D31FFFD5FA86}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0415-0000-0000000FF1CE}_HOMESTUDENTR_{128A36ED-21BE-4547-9FFE-5B85AEC735DD}) (Version: - Microsoft) ALLConverter PRO 1.3 (HKLM\...\{9370105C-71BB-4FF9-A85B-36D79B95457A}_is1) (Version: - ALLCinema, Inc.) ALLMediaServer (HKLM\...\{FE77909E-B782-4554-A92A-4D887CEF0ACC}_is1) (Version: 0.95 - ALLCinema Ltd.) Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 5.60.350.6 - Broadcom Corporation) CCleaner (HKLM\...\CCleaner) (Version: 4.10 - Piriform) CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.3.4746 - CDBurnerXP) Cisco EAP-FAST Module (HKLM\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (HKLM\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.) Cisco PEAP Module (HKLM\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd) Defraggler (HKLM\...\Defraggler) (Version: 2.17 - Piriform) FLV and Media Player 4.2.1.1 (HKLM\...\FLV and Media Player) (Version: 4.2.1.1 - Applian Technologies) FotoMix version 9.0.2 (HKLM\...\{10A0255E-0B73-4397-AB4E-E3667EDA70E4}_is1) (Version: 9.0.2 - Digital Photo Software) Foxtab (HKLM\...\Foxtab) (Version: - Foxtab) <==== ATTENTION Free YouTube Download version 3.2.20.1230 (HKLM\...\Free YouTube Download_is1) (Version: 3.2.20.1230 - DVDVideoSoft Ltd.) Game Booster 3 (HKLM\...\Game Booster_is1) (Version: 3.4 - IObit) Gameforge Live 2.0.5 (HKLM\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.5 - Gameforge) GoHD (HKLM\...\GoHD) (Version: 1.36.01.22 - InstallMoon) <==== ATTENTION Google Chrome (HKLM\...\Google Chrome) (Version: 35.0.1916.114 - Google Inc.) Google Update Helper (Version: 1.3.24.7 - Google Inc.) Hidden Gothic (HKLM\...\Gothic) (Version: - ) Heroes of Might and Magic 3 Complete (HKLM\...\Heroes of Might and Magic 3 Complete_is1) (Version: - GOG.com) HP Quick Launch Buttons (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.14.1 - Hewlett-Packard Company) HP Wireless Assistant (HKLM\...\{340F521E-3576-4E1A-B75C-EB0ACF751379}) (Version: 3.00 J1 - Hewlett-Packard) Infineon TPM Professional Package (HKLM\...\{1FF63657-E14D-4F15-AE90-5779F4FE0712}) (Version: 3.6.000 - Infineon Technologies AG) Intel(R) Graphics Media Accelerator Driver (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2555 - Intel Corporation) Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{302600C1-6BDF-4FD1-1311-148929CC1385}) (Version: 3.1.1311.0402 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation) Java 8 Update 25 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation) K-Lite Codec Pack 10.4.5 Basic (HKLM\...\KLiteCodecPack_is1) (Version: 10.4.5 - ) Kung Fu Panda(TM) (HKLM\...\InstallShield_{48ADB3C0-18FB-4922-B172-7C8C4B99409C}) (Version: 1.00.0000 - Activision) Kung Fu Panda(TM) (Version: 1.00.0000 - Activision) Hidden LG United Mobile Drivers (HKLM\...\{5DB849D6-9392-4FB7-9ABB-87ED433152E5}) (Version: 3.8.1 - LG Electronics) Logitech SetPoint 6.65 (HKLM\...\sp6) (Version: 6.65.62 - Logitech) LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.100 - LSI Corporation) MadOnion.com/3DMark2001 SE (HKLM\...\{91B323B5-A79C-4D23-BD6D-046C565F9BCF}) (Version: - ) Malwarebytes Anti-Malware wersja 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation) Metin2 (HKLM\...\Metin2_is1) (Version: - Gameforge 4D GmbH) Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.7.205.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) NapiProjekt 2.0.0 (build 2151) (HKLM\...\NapiProjekt_is1) (Version: - ) Need for Speed™ Most Wanted (HKLM\...\{ADE91A13-434D-4229-00BC-182BAD607303}) (Version: - ) Nowe Gadu-Gadu (HKLM\...\Nowe Gadu-Gadu) (Version: - GG Network S.A.) Odkurzacz (HKLM\...\Odkurzacz 13.0_is1) (Version: 13.0.0.900 - FranmoSoftware - Maciej Opaliński) OpenOffice.org 3.4.1 (HKLM\...\{18192D3F-5537-4560-AD89-D695F72AF91D}) (Version: 3.41.9593 - Apache Software Foundation) Opera Stable 27.0.1689.69 (HKLM\...\Opera 27.0.1689.69) (Version: 27.0.1689.69 - Opera Software ASA) Oprogramowanie Logitech Unifying 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech) Painkiller Czarna Edycja (HKLM\...\{785DB544-E757-44F8-8930-B10A7465407A}) (Version: 1.0 - DreamCatcher) Pakiet językowy programu Microsoft .NET Framework 3.5 z dodatkiem SP1 — PLK (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - plk) (Version: - Microsoft Corporation) PLAY ONLINE (HKLM\...\PLAY ONLINE) (Version: 21.005.11.05.264 - Huawei Technologies Co.,Ltd) QLBCASL (Version: 6.40.17.2 - Hewlett-Packard) Hidden Redtube Video Downloader 3.31 (HKLM\...\Redtube Video Downloader_is1) (Version: - DownloadToolz, Inc.) Registry First Aid Platinum wersja v9.1.0 (HKLM\...\Registry First Aid Platinum_is1) (Version: v9.1.0 - ) Samsung Kies (HKLM\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.14044_16 - Samsung Electronics Co., Ltd.) Samsung Kies (Version: 2.6.3.14044_16 - Samsung Electronics Co., Ltd.) Hidden SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.) SoundMAX (HKLM\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 6.10.1.7255 - Analog Devices) SpellForce (HKLM\...\{85DAE0C8-B3BB-11D8-88E4-0004769F25D1}) (Version: 1.52.000 - ) Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited) Tomb Raider - The Last Revelation (HKLM\...\Tomb Raider - The Last Revelation) (Version: - ) Tomb Raider 1 + 2 + 3 (HKLM\...\Tomb Raider 1 + 2 + 3_is1) (Version: - GOG.com) Tomb Raider Chronicles (HKLM\...\Tomb Raider Chronicles) (Version: - ) Unity Web Player (HKU\S-1-5-21-2718385464-555550638-2521923949-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS) Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) VibrateGameDeviceDriver (HKLM\...\{DBB7F606-0C13-4182-AD7F-427A4773580E}) (Version: 4.09.0902 - VibrateGameDeviceDriver) Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) WIDCOMM Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.2700 - Broadcom Corporation) Windows Essentials Codec Pack 5.0 (HKLM\...\Windows Essentials Codec Pack) (Version: 5.0 - Windows Essentials Codec Pack) WinRAR 4.20 (32-bitowy) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH) Yet Another Cleaner! (HKLM\...\iSafe) (Version: - ELEX DO BRASIL PARTICIPAÇÕES LTDA) <==== ATTENTION ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-2718385464-555550638-2521923949-1000_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\Impet\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS) CustomCLSID: HKU\S-1-5-21-2718385464-555550638-2521923949-1000_Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}\localserver32 -> C:\Users\Impet\AppData\Local\Temp\C5ddb316d.exe No File ==================== Restore Points ========================= 15-02-2015 02:05:03 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 02:16:02 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 02:36:11 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 02:47:00 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 03:07:15 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 03:18:23 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 03:38:26 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 03:50:33 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 04:09:30 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 04:30:01 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 04:41:27 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 05:01:19 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 05:14:48 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 05:33:00 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 05:53:23 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 06:15:43 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 06:44:48 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 07:05:09 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 07:18:18 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 07:36:45 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 07:56:07 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 07:57:12 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 08:17:59 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 08:38:52 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 08:56:14 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 09:22:55 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 09:32:42 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 12:15:50 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 12:32:27 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 15-02-2015 12:48:35 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2006-11-02 11:23 - 2015-01-25 10:31 - 00450597 ____R C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com 127.0.0.1 www.0scan.com 127.0.0.1 0scan.com 127.0.0.1 1000gratisproben.com 127.0.0.1 www.1000gratisproben.com 127.0.0.1 1001namen.com 127.0.0.1 www.1001namen.com 127.0.0.1 100888290cs.com 127.0.0.1 www.100888290cs.com 127.0.0.1 www.100sexlinks.com 127.0.0.1 100sexlinks.com 127.0.0.1 10sek.com 127.0.0.1 www.10sek.com 127.0.0.1 www.1-2005-search.com 127.0.0.1 1-2005-search.com 127.0.0.1 123fporn.info 127.0.0.1 www.123fporn.info 127.0.0.1 123haustiereundmehr.com 127.0.0.1 www.123haustiereundmehr.com There are 1000 more lines. ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {1A708F3E-9787-4D5A-8FAD-7355F03EEA48} - System32\Tasks\LaunchSignup => C:\Program Files\MyPC Backup\Signup Wizard.exe <==== ATTENTION Task: {2A30F025-3EFD-4FF2-8F71-54551DF30603} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd) Task: {34D9FE2C-8013-459F-B32C-2992351AA9F2} - \APSnotifierPP3 No Task File <==== ATTENTION Task: {36411703-C654-4D48-9041-192AE2AAE588} - \APSnotifierPP1 No Task File <==== ATTENTION Task: {4A13C7D1-510E-495C-9E5C-82E023E2E4F8} - \APSnotifierPP2 No Task File <==== ATTENTION Task: {4CB98BFD-06A1-43CD-98FA-F5160B03CC08} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-30] (Google Inc.) Task: {593C0D26-550A-404F-9776-810F540A73BF} - \FoxTab No Task File <==== ATTENTION Task: {5979FABD-6484-466D-B04D-A6C18E94F60C} - \PennyBee No Task File <==== ATTENTION Task: {5B64CF11-F1EC-4949-BEF5-1A3A1A5BB385} - System32\Tasks\DriverNavigator Scheduled Scan => C:\Program Files\Easeware\DriverNavigator\DriverNavigator.exe Task: {70FCB955-9024-4E6C-9052-71E82D82BE5A} - \ff3d7e85-f9b3-4215-b161-aaee7cbb9da8-7 No Task File <==== ATTENTION Task: {7F082137-43C5-44F7-B6C4-48507A032456} - \ff3d7e85-f9b3-4215-b161-aaee7cbb9da8-4 No Task File <==== ATTENTION Task: {875D4B25-B24B-4AC9-995A-1804B9E462A3} - \ff3d7e85-f9b3-4215-b161-aaee7cbb9da8-11 No Task File <==== ATTENTION Task: {8D855CDA-E8A5-4EC7-B610-386B531FA535} - \globalUpdateUpdateTaskMachineUA No Task File <==== ATTENTION Task: {92BDC7BF-99D9-47CB-9BD6-7F0694762DB4} - \ff3d7e85-f9b3-4215-b161-aaee7cbb9da8-6 No Task File <==== ATTENTION Task: {95096C59-CDC8-4BD6-B2F8-F71EF6CFB100} - \SaveSense No Task File <==== ATTENTION Task: {A0FC6584-FBF1-4DD2-8B6B-96C7A41BD594} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-30] (Google Inc.) Task: {A25C9D79-033B-4259-94B4-0D35B396343C} - System32\Tasks\DriverEasy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe Task: {A58EAFA9-E7D6-42B6-B81F-8F3B6928C0A9} - \ff3d7e85-f9b3-4215-b161-aaee7cbb9da8-5_user No Task File <==== ATTENTION Task: {A8E17F0A-9199-4D48-90B5-94F5F145D5D9} - System32\Tasks\Opera scheduled Autoupdate 1415384041 => C:\Program Files\Opera\launcher.exe [2015-02-10] (Opera Software) Task: {BD210550-ECA6-4528-BC10-54F285E49300} - \globalUpdateUpdateTaskMachineCore No Task File <==== ATTENTION Task: {C6D19E5A-8191-4128-B397-35A397D68D6A} - \ff3d7e85-f9b3-4215-b161-aaee7cbb9da8-3 No Task File <==== ATTENTION Task: {CFD2A597-5420-415A-B5CB-A126CA13B825} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-27] (Adobe Systems Incorporated) Task: {D1C78C56-CB08-4748-8B53-50D112C9596C} - \SW-Booster-S-792098896 No Task File <==== ATTENTION Task: {D965D7DA-38AB-4EB6-B339-7F6AB0BB3B39} - \ff3d7e85-f9b3-4215-b161-aaee7cbb9da8-5 No Task File <==== ATTENTION Task: {E084C2F8-EAFF-4DEE-A341-B87216CCBC65} - \ff3d7e85-f9b3-4215-b161-aaee7cbb9da8-1 No Task File <==== ATTENTION Task: {E5DDF60A-96A0-46C5-8FF0-7A92873C29D7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated) Task: {EEAD3576-B61E-4D01-9BDA-99B12189E489} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files\IObit\Game Booster 3\AutoUpdate.exe [2015-01-28] () Task: {F5509F13-60DE-4A71-B262-356CE7A84504} - \ff3d7e85-f9b3-4215-b161-aaee7cbb9da8-2 No Task File <==== ATTENTION (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\APSnotifierPP1.job => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: C:\Windows\Tasks\APSnotifierPP2.job => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: C:\Windows\Tasks\APSnotifierPP3.job => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: C:\Windows\Tasks\DriverEasy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe Task: C:\Windows\Tasks\DriverNavigator Scheduled Scan.job => C:\Program Files\Easeware\DriverNavigator\DriverNavigator.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============== 2015-02-11 15:52 - 2015-02-10 08:58 - 00552056 _____ () C:\Program Files\Opera\27.0.1689.69\opera_crashreporter.exe 2015-02-11 15:52 - 2015-02-10 08:58 - 09510520 _____ () C:\Program Files\Opera\27.0.1689.69\pdf.dll 2015-01-27 21:05 - 2015-01-27 21:05 - 16844976 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_296.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2" ==================== EXE Association (whitelisted) =============== (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2718385464-555550638-2521923949-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Impet\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta z Galerii fotografii systemu Windows.jpg DNS Servers: 192.168.1.1 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: AEADIFilters => 2 MSCONFIG\Services: AgereModemAudio => 2 MSCONFIG\Services: btwdins => 2 MSCONFIG\Services: hpsrv => 2 MSCONFIG\Services: HWDeviceService.exe => 2 MSCONFIG\Services: IePluginService => 2 MSCONFIG\Services: IFXSpMgtSrv => 2 MSCONFIG\Services: IFXTCS => 2 MSCONFIG\Services: MozillaMaintenance => 3 MSCONFIG\Services: PersonalSecureDriveService => 2 MSCONFIG\Services: PLAY ONLINE. RunOuc => 2 MSCONFIG\Services: savesenselive => 2 MSCONFIG\Services: savesenselivem => 3 MSCONFIG\Services: SBSDWSCService => 2 MSCONFIG\Services: Update RightSurf => 2 MSCONFIG\Services: Util RightSurf => 2 MSCONFIG\Services: Wpm => 2 MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\Windows\pss\Bluetooth.lnk.CommonStartup MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: ALLUpdate => "C:\Program Files\ALLPlayer\ALLUpdate.exe" "sleep" MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe MSCONFIG\startupreg: IAStorIcon => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe MSCONFIG\startupreg: IFXSPMGT => "C:\Program Files\Infineon\Security Platform Software\ifxspmgt.exe" /NotifyLogon MSCONFIG\startupreg: mobilegeni daemon => C:\Program Files\Mobogenie\DaemonProcess.exe MSCONFIG\startupreg: NextLive => C:\Windows\system32\rundll32.exe "C:\Users\Impet\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe MSCONFIG\startupreg: uTorrent => "C:\Users\Impet\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED ==================== Accounts: ============================= Administrator (S-1-5-21-2718385464-555550638-2521923949-500 - Administrator - Disabled) Gość (S-1-5-21-2718385464-555550638-2521923949-501 - Limited - Disabled) Impet (S-1-5-21-2718385464-555550638-2521923949-1000 - Administrator - Enabled) => C:\Users\Impet ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (02/16/2015 00:30:28 PM) (Source: System Restore) (EventID: 8193) (User: ) Description: Nie można utworzyć punktu przywracania na woluminie (Proces = C:\Program Files\RFA 9\reg1aid32.exe Files\RFA 9\reg1aid32.exe"; Opis = Registry First Aid backup; Hr = 0x8007043c). Error: (02/16/2015 10:39:05 AM) (Source: EventSystem) (EventID: 4609) (User: ) Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c Error: (02/15/2015 09:12:42 PM) (Source: CouponarificService) (EventID: 1) (User: ) Description: CouponarificServiceSvcInit, failed to connect to driver, status: -1 failed with 1 Error: (02/15/2015 01:25:13 PM) (Source: EventSystem) (EventID: 4609) (User: ) Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c Error: (02/15/2015 01:19:47 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Aplikacja powodująca błąd iSafeSvc.exe, wersja 4.0.0.1, sygnatura czasowa 0x53477040, moduł powodujący błąd unknown, wersja 0.0.0.0, sygnatura czasowa 0x00000000, kod wyjątku 0xc0000005, przesunięcie błędu 0xb9cb9787, identyfikator procesu 0x4b0, godzina rozpoczęcia aplikacji 0xiSafeSvc.exe0. Error: (02/15/2015 00:32:11 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Aplikacja powodująca błąd bugreport.exe, wersja 4.7.36.12181, sygnatura czasowa 0x539fafa3, moduł powodujący błąd bugreport.exe, wersja 4.7.36.12181, sygnatura czasowa 0x539fafa3, kod wyjątku 0xc0000005, przesunięcie błędu 0x00011b54, identyfikator procesu 0x5b8, godzina rozpoczęcia aplikacji 0xbugreport.exe0. Error: (02/15/2015 00:13:32 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Aplikacja powodująca błąd plugin-container.exe, wersja 35.0.1.5500, sygnatura czasowa 0x54c1f9f3, moduł powodujący błąd mozalloc.dll, wersja 35.0.1.5500, sygnatura czasowa 0x54c1f224, kod wyjątku 0x80000003, przesunięcie błędu 0x00001425, identyfikator procesu 0x1544, godzina rozpoczęcia aplikacji 0xplugin-container.exe0. Error: (02/15/2015 00:13:15 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: Impet-PC) Description: 0C:\Program Files\Mozilla Firefox\firefox.exeFirefox0111732040 Error: (02/15/2015 00:12:45 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: Impet-PC) Description: 0C:\Program Files\Mozilla Firefox\firefox.exeFirefox0111732040 Error: (02/15/2015 11:21:54 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Aplikacja powodująca błąd bugreport.exe, wersja 4.7.36.12181, sygnatura czasowa 0x539fafa3, moduł powodujący błąd MSVCR110.dll, wersja 11.0.51106.1, sygnatura czasowa 0x5098858e, kod wyjątku 0x40000015, przesunięcie błędu 0x000a327c, identyfikator procesu 0x2548, godzina rozpoczęcia aplikacji 0xbugreport.exe0. System errors: ============= Error: (02/16/2015 10:50:28 AM) (Source: Microsoft Antimalware) (EventID: 2001) (User: ) Description: Produkt %ZARZĄDZANIE NT60 napotkał błąd podczas próby aktualizacji podpisów. Nowa wersja podpisu: Poprzednia wersja podpisu: 1.191.4960.0 Źródło aktualizacji: %ZARZĄDZANIE NT59 Etap aktualizacji: 4.7.0205.00 Ścieżka źródła: 4.7.0205.01 Typ podpisu: %ZARZĄDZANIE NT602 Typ aktualizacji: %ZARZĄDZANIE NT604 Użytkownik: ZARZĄDZANIE NT\SYSTEM Bieżąca wersja aparatu: %ZARZĄDZANIE NT605 Poprzednia wersja aparatu: %ZARZĄDZANIE NT606 Kod błędu: %ZARZĄDZANIE NT607 Opis błędu: %ZARZĄDZANIE NT608 Error: (02/16/2015 10:50:28 AM) (Source: DCOM) (EventID: 10005) (User: ) Description: 1084wuauserv{E60687F7-01A1-40AA-86AC-DB1CBF673334} Error: (02/16/2015 10:39:40 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: iSafeKrnl iSafeKrnlR3 MpFilter spldr Wanarpv6 {9edd0ea8-2819-47c2-8320-b007d5996f8a}Gt Error: (02/16/2015 10:39:40 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Microsoft Network Inspection SystemMicrosoft Malware Protection Driver%%31 Error: (02/16/2015 10:39:32 AM) (Source: DCOM) (EventID: 10005) (User: ) Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} Error: (02/16/2015 10:39:22 AM) (Source: DCOM) (EventID: 10005) (User: ) Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030} Error: (02/16/2015 10:39:07 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: ZARZĄDZANIE NT) Description: C:\Windows\System32\bcmihvsrv.dll21 Error: (02/16/2015 10:39:04 AM) (Source: DCOM) (EventID: 10005) (User: ) Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF} Error: (02/16/2015 10:38:55 AM) (Source: DCOM) (EventID: 10005) (User: ) Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC} Error: (02/16/2015 10:38:39 AM) (Source: Microsoft Antimalware) (EventID: 3002) (User: ) Description: Funkcja ochrony w czasie rzeczywistym produktu %%860 napotkała błąd i jej uruchomienie nie powiodło się. Funkcja: %%834 Kod błędu: 0x8007043c Opis błędu: Tej usługi nie można uruchomić w trybie awaryjnym Przyczyna: %%858 Microsoft Office Sessions: ========================= CodeIntegrity Errors: =================================== Date: 2015-02-16 12:40:17.950 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-16 12:40:17.700 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-16 12:40:17.482 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-16 12:40:17.245 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-16 12:40:16.840 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-16 12:40:16.606 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-16 12:40:16.380 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-16 12:40:16.084 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-16 12:40:15.694 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\iSafeKrnlBoot.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-16 12:40:15.476 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\iSafeKrnlBoot.sys because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: Intel(R) Core(TM)2 Duo CPU T5670 @ 1.80GHz Percentage of memory in use: 59% Total physical RAM: 1975.46 MB Available physical RAM: 790.38 MB Total Pagefile: 4194.15 MB Available Pagefile: 3268.88 MB Total Virtual: 2047.88 MB Available Virtual: 1914.97 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:51.39 GB) (Free:13.7 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive d: () (Fixed) (Total:97.66 GB) (Free:35.34 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 149.1 GB) (Disk ID: 5D5EE01B) Partition 1: (Active) - (Size=51.4 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=97.7 GB) - (Type=07 NTFS) ==================== End Of Log ============================