hdd.txt

Re: Uciążliwe przekierowywanie na reklamy - part 2.

Proszę bardzo:


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-04-2015
Ran by asus1 at 2015-04-12 20:53:14
Running from C:\Users\asus1\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: McAfee Anti-Virus i Anti-Spyware (Disabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus i Anti-Spyware (Disabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee Firewall (Disabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}

==================== Installed Programs ======================

(Only the adware programs with " hidden " flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat 5.0 CE (HKLM-x32\...\Adobe Acrobat 5.0) (Version: 5.0 - Adobe Systems, Inc.)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Reader X MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.0.0 - Adobe Systems Incorporated)
Apple Mobile Device Support (HKLM\...\{5ED7462B-EF58-4757-B609-53755021EC34}) (Version: 8.1.0.18 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
ASUS InstantOn (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 3.0.5 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.9 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.1.9 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 2.1.7 - ASUS)
ASUS Screen Saver (HKLM\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 1.0.1 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 2.1.3 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 2.01.0005 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.1.5 - ASUS)
ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4126.52 - CyberLink Corp.)
ASUSDVD (x32 Version: 10.0.4126.52 - CyberLink Corp.) Hidden
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.12.309 - ASUSTEK)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0025 - ASUS)
Azteca (x32 Version: 2.2.0.97 - WildTangent) Hidden
Battlefield Heroes (HKU\S-1-5-21-3579267798-1702203098-2117417363-1002\...\{8DC910CD-8EE3-4ffc-A4EB-9B02701059C4}) (Version: - EA Digital illusions)
Bejeweled 3 (x32 Version: 2.2.0.97 - WildTangent) Hidden
BitComet 1.37 64-bit (HKLM-x32\...\BitComet_x64) (Version: 1.37 - CometNetwork)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Cut the Rope (x32 Version: 3.0.2.38 - WildTangent) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DiscountMan (HKLM-x32\...\{37476589-E48E-439E-A706-56189E2ED4C4}) (Version: - DiscountMan) & lt; ==== ATTENTION
FL Studio 10 (HKLM-x32\...\FL Studio 10) (Version: - Image-Line)
Fotogaléria (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galeria fotografii (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.118 - Google Inc.)
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3308 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
iTunes (HKLM\...\{7B8D4E8A-EA2B-4A71-BFEB-A4AAAB87C5D0}) (Version: 12.1.0.71 - Apple Inc.)
LUXONIX Purity (HKLM-x32\...\LUXONIX_Purity) (Version: 1.2.4 - LUXONIX)
McAfee LiveSafe - Internet Security (HKLM-x32\...\MSC) (Version: 13.6.1248 - McAfee, Inc.)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-3579267798-1702203098-2117417363-1002\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
MyBitCast 2.0 (HKLM-x32\...\MyBitCast) (Version: 2.0 - ASUS)
Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version: - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: - Native Instruments)
NVIDIA HD Audio Driver 1.3.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.18.0 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Sterownik graficzny 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation)
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
Obsługa programów Apple (32-bitowa) (HKLM-x32\...\{2FE00055-C4F3-4F7A-AEDD-E198D54CF12F}) (Version: 3.1.1 - Apple Inc.)
Obsługa programów Apple (64-bitowa) (HKLM\...\{28791292-D18D-42FA-AE66-3D3D20AA8618}) (Version: 3.1.1 - Apple Inc.)
Panel sterowania NVIDIA 331.65 (Version: 331.65 - NVIDIA Corporation) Hidden
Peggle (x32 Version: 2.2.0.95 - WildTangent) Hidden
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Podstawowe programy Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.990 - Even Balance, Inc.)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.224 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.7.1025.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6937 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.9200.27030 - Realtek Semiconductor Corp.)
reFX Nexus VSTi RTAS v2.2.0 (HKLM-x32\...\reFX Nexus_is1) (Version: - )
RightaOfferApp (HKLM-x32\...\{60EACF28-3304-CDE7-8F98-5992F85D389C}) (Version: - )
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype(TM) 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.106 - Skype Technologies S.A.)
Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden
Testy Bplus 5.1.3.81 (HKLM-x32\...\{81999787-A518-4218-86D5-C5D25E6808F5}_is1) (Version: 5.1.3.81 - Grupa IMAGE sp. z o.o.)
Unity Web Player (HKU\S-1-5-21-3579267798-1702203098-2117417363-1002\...\UnityWebPlayer) (Version: 4.5.5f1 - Unity Technologies ApS)
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
Warlords Battlecry II (HKLM-x32\...\{AF13F447-044B-425D-8409-4BDF9263C81C}) (Version: 1.03 - )
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.0.0 - WildTangent)
WildTangent Games App (x32 Version: 4.0.10.5 - WildTangent) Hidden
Windows Driver Package - ASUS (ATP) Mouse (01/10/2013 1.0.0.170) (HKLM\...\4A9DE1E9EBC800B7F01739D4DE7363EF6751BDF5) (Version: 01/10/2013 1.0.0.170 - ASUS)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.1 - ASUS)
WinRAR 5.10 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3579267798-1702203098-2117417363-1002_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 - & gt; C:\Users\asus1\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-3579267798-1702203098-2117417363-1002_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 - & gt; C:\Users\asus1\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-3579267798-1702203098-2117417363-1002_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 - & gt; C:\Users\asus1\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3579267798-1702203098-2117417363-1002_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 - & gt; C:\Users\asus1\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3579267798-1702203098-2117417363-1002_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 - & gt; C:\Users\asus1\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3579267798-1702203098-2117417363-1002_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 - & gt; C:\Users\asus1\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points =========================

24-03-2015 18:28:54 Zaplanowany punkt kontrolny
31-03-2015 18:42:21 Zaplanowany punkt kontrolny
04-04-2015 10:09:41 Windows Update
11-04-2015 19:11:55 Zaplanowany punkt kontrolny

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {1CD1EED6-F8E4-42B7-BB3E-FB956D29AADC} - System32\Tasks\ASUS Touchpad Launcher (x64) = & gt; C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2013-04-16] (AsusTek)
Task: {1F4C4876-E3B9-48E0-A4FE-7AB481213AEC} - System32\Tasks\SimpleFiles Installer Starter = & gt; C:\Users\asus1\AppData\Local\Temp\SimpleFilesJwFaZ1Pe0W.exe & lt; ==== ATTENTION
Task: {201E76A4-5DB7-4E12-8910-7331470ADC84} - System32\Tasks\AsusVibeSchedule = & gt; C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [2013-01-04] ()
Task: {35EEDD34-A750-40C4-A089-945AD6F0BFDD} - System32\Tasks\Apple\AppleSoftwareUpdate = & gt; C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {4AF223BE-67A7-4B33-9075-812E76ADED45} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB = & gt; C:\WINDOWS\system32\MRT.exe [2015-03-11] (Microsoft Corporation)
Task: {5E446FC2-D06D-4E1F-8C17-2FE568615F4D} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser = & gt; C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {712AC4EF-66BB-4390-8FAF-6471C836B419} - System32\Tasks\ASUS InstantOn Config = & gt; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe [2012-10-24] (ASUS)
Task: {7249F128-2717-41A9-88A7-04E3643D3D41} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig = & gt; C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {7311DC1F-D213-4337-AB4A-A618F9A5C79A} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent = & gt; C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {7CFBB1A9-6CFE-4944-9744-FFE52F3B54C6} - System32\Tasks\ASUS USB Charger Plus = & gt; C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-09-18] (ASUSTek Computer Inc.)
Task: {957B2064-E686-44D5-AAE5-09C824030C65} - System32\Tasks\ASUS P4G = & gt; C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-08-24] (ASUS)
Task: {C07E5162-4EA3-4D91-9D17-0E946E58BFA0} - System32\Tasks\Adobe Flash Player Updater = & gt; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-04] (Adobe Systems Incorporated)
Task: {C0F6D7DB-3D8C-47B4-824C-DB5AB4B607B8} - System32\Tasks\ASUS Splendid ColorU = & gt; C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe [2013-02-26] (ASUSTeK Computer Inc.)
Task: {CABB733C-3BE4-4D44-9684-6C86DF49D47F} - System32\Tasks\{B3FC6347-FB26-4343-94A1-E83B9596D51D} = & gt; pcalua.exe -a C:\Users\asus1\AppData\Roaming\webssearches\UninstallManager.exe -c -ptid=irs & lt; ==== ATTENTION
Task: {D2888F5C-9D5A-4A2F-AF51-B6E2547DDD98} - System32\Tasks\ASUS Splendid ACMON = & gt; C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2012-11-28] (ASUS)
Task: {D399F62B-BBEE-4438-8BF2-F0A3AA44A6C0} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess = & gt; C:\Windows\system32\GWX\GWX.exe [2015-03-24] (Microsoft Corporation)
Task: {E1A4363B-7C89-46DB-AA38-2E9EAF55F7E4} - System32\Tasks\ASUS Live Update = & gt; C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-08-22] (ASUSTeK Computer Inc.)
Task: {EE2A70AE-02BF-44E5-9223-4E3D34624364} - System32\Tasks\GoogleUpdateTaskMachineUA = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-20] (Google Inc.)
Task: {FB49DA79-492F-4037-8CF9-8338F995A8B6} - System32\Tasks\GoogleUpdateTaskMachineCore = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-20] (Google Inc.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job = & gt; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) ==============

2015-01-20 23:35 - 2015-01-20 23:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-11-09 13:50 - 2014-11-09 14:09 - 00076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2013-12-10 09:13 - 2013-12-10 09:13 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2014-11-07 15:58 - 2013-10-23 10:20 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-03-27 12:36 - 2013-03-27 12:36 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-03-27 12:33 - 2013-03-27 12:33 - 00086016 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2013-10-01 14:02 - 2013-10-01 14:02 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2013-03-27 12:39 - 2013-03-27 12:39 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
2015-01-28 19:27 - 2015-01-28 19:27 - 01065336 _____ () C:\ProgramData\{f3ffd8e4-6169-7851-f3ff-fd8e46166391}\Download Sylenth 1.20 (All Skins & SoundBanks) FULL Torrent - KickassTorrents.exe
2012-08-24 18:26 - 2012-08-24 18:26 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2013-07-26 07:52 - 2012-06-25 11:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2013-12-10 09:13 - 2013-12-10 09:13 - 00013088 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2015-04-03 10:19 - 2015-03-30 23:07 - 01174856 _____ () C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\libglesv2.dll
2015-04-03 10:19 - 2015-03-30 23:07 - 00080200 _____ () C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\libegl.dll
2015-04-03 10:19 - 2015-03-30 23:07 - 09279304 _____ () C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\pdf.dll
2015-04-03 10:20 - 2015-03-30 23:07 - 14974280 _____ () C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The " AlternateShell " will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS = & gt; " " = " Service "
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc = & gt; " " = " Service "
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc = & gt; " " = " Service "
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS = & gt; " " = " Service "
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc = & gt; " " = " Service "
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire = & gt; " " = " Driver "
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek = & gt; " " = " Driver "
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys = & gt; " " = " Driver "
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk = & gt; " " = " Driver "
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys = & gt; " " = " Driver "
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp = & gt; " " = " Driver "

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3579267798-1702203098-2117417363-1002\Control Panel\Desktop\\Wallpaper - & gt; C:\Users\asus1\Desktop\tapety_na_pulpit_mega-tapety.info (542).jpg
DNS Servers: 192.168.43.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: Adobe ARM = & gt; " C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe "
MSCONFIG\startupreg: Adobe Reader Speed Launcher = & gt; " C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe "
MSCONFIG\startupreg: ASUSPRP = & gt; " C:\Program Files (x86)\ASUS\APRP\APRP.EXE "
MSCONFIG\startupreg: ASUSWebStorage = & gt; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe /S
MSCONFIG\startupreg: DisableS3S4 = & gt; c:\windows\temp\DisableS3S464\sethigh.cmd
MSCONFIG\startupreg: HotKeysCmds = & gt; " C:\WINDOWS\system32\hkcmd.exe "
MSCONFIG\startupreg: IgfxTray = & gt; " C:\WINDOWS\system32\igfxtray.exe "
MSCONFIG\startupreg: mcpltui_exe = & gt; " C:\Program Files\McAfee.com\Agent\mcagent.exe " /runkey
MSCONFIG\startupreg: RemoteControl10 = & gt; " C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe "
MSCONFIG\startupreg: RtHDVBg = & gt; " C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe " /MAXX3
MSCONFIG\startupreg: RTHDVCPL = & gt; " C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe " -s
HKU\S-1-5-21-3579267798-1702203098-2117417363-1002\...\StartupApproved\Run: = & gt; " Skype "

==================== Accounts: =============================

Administrator (S-1-5-21-3579267798-1702203098-2117417363-500 - Administrator - Disabled) = & gt; C:\Users\Administrator
asus1 (S-1-5-21-3579267798-1702203098-2117417363-1002 - Administrator - Enabled) = & gt; C:\Users\asus1
Gość (S-1-5-21-3579267798-1702203098-2117417363-501 - Limited - Disabled)
UpdatusUser (S-1-5-21-3579267798-1702203098-2117417363-1001 - Limited - Enabled) = & gt; C:\Users\UpdatusUser

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/12/2015 07:57:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: chrome.exe, wersja: 41.0.2272.118, sygnatura czasowa: 0x55199d5a
Nazwa modułu powodującego błąd: powrprof.dll, wersja: 6.3.9600.17415, sygnatura czasowa: 0x54503d36
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x00002950
Identyfikator procesu powodującego błąd: 0x51c
Godzina uruchomienia aplikacji powodującej błąd: 0xchrome.exe0
Ścieżka aplikacji powodującej błąd: chrome.exe1
Ścieżka modułu powodującego błąd: chrome.exe2
Identyfikator raportu: chrome.exe3
Pełna nazwa pakietu powodującego błąd: chrome.exe4
Identyfikator aplikacji względem pakietu powodującego błąd: chrome.exe5

Error: (04/12/2015 10:17:25 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m- & gt; NextScheduledSPRetry 33190281

Error: (04/12/2015 10:17:25 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m- & gt; NextScheduledEvent 33190281

Error: (04/12/2015 10:17:25 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/12/2015 01:04:41 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m- & gt; NextScheduledSPRetry 25828

Error: (04/12/2015 01:04:41 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m- & gt; NextScheduledEvent 25828

Error: (04/12/2015 01:04:41 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/12/2015 01:04:27 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m- & gt; NextScheduledSPRetry 11969

Error: (04/12/2015 01:04:27 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m- & gt; NextScheduledEvent 11969

Error: (04/12/2015 01:04:27 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (04/12/2015 07:11:18 PM) (Source: DCOM) (EventID: 10010) (User: asus)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (04/12/2015 07:10:48 PM) (Source: DCOM) (EventID: 10010) (User: asus)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (04/12/2015 02:29:34 PM) (Source: DCOM) (EventID: 10010) (User: asus)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (04/12/2015 02:29:04 PM) (Source: DCOM) (EventID: 10010) (User: asus)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (04/12/2015 00:12:23 PM) (Source: DCOM) (EventID: 10010) (User: asus)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (04/12/2015 00:11:52 PM) (Source: DCOM) (EventID: 10010) (User: asus)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (04/12/2015 10:19:05 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi NVIDIA Update Service Daemon z powodu następującego błędu:
%%1069

Error: (04/12/2015 10:19:05 AM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Usługa nvUpdatusService nie może zalogować się jako .\UpdatusUser za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu:
%%1326

Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC).

Error: (04/11/2015 11:44:52 PM) (Source: DCOM) (EventID: 10010) (User: ZARZĄDZANIE NT)
Description: {209500FC-6B45-4693-8871-6296C4843751}

Error: (04/11/2015 11:41:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi NVIDIA Update Service Daemon z powodu następującego błędu:
%%1069


Microsoft Office Sessions:
=========================
Error: (04/12/2015 07:57:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: chrome.exe41.0.2272.11855199d5apowrprof.dll6.3.9600.1741554503d36c00000050000295051c01d0750e8cd5e27eC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\WINDOWS\SYSTEM32\powrprof.dll559e9316-e13d-11e4-bec2-ac220b713f95

Error: (04/12/2015 10:17:25 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m- & gt; NextScheduledSPRetry 33190281

Error: (04/12/2015 10:17:25 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m- & gt; NextScheduledEvent 33190281

Error: (04/12/2015 10:17:25 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/12/2015 01:04:41 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m- & gt; NextScheduledSPRetry 25828

Error: (04/12/2015 01:04:41 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m- & gt; NextScheduledEvent 25828

Error: (04/12/2015 01:04:41 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/12/2015 01:04:27 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m- & gt; NextScheduledSPRetry 11969

Error: (04/12/2015 01:04:27 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m- & gt; NextScheduledEvent 11969

Error: (04/12/2015 01:04:27 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


CodeIntegrity Errors:
===================================
Date: 2015-02-12 05:39:29.576
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-02-12 05:39:29.438
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-02-12 05:39:29.288
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-02-12 05:39:29.158
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-02-12 05:39:29.002
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-02-12 05:39:28.886
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-02-12 05:39:28.481
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-02-12 05:39:28.339
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-02-12 05:39:28.208
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-02-12 05:39:28.080
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Pentium(R) CPU 2117U @ 1.80GHz
Percentage of memory in use: 49%
Total physical RAM: 3981.69 MB
Available physical RAM: 2009.84 MB
Total Pagefile: 4685.69 MB
Available Pagefile: 2557.41 MB
Total Virtual: 131072 MB
Available Virtual: 131071.83 MB

==================== Drives ================================

Drive c: (kosa) (Fixed) (Total:185.86 GB) (Free:126.31 GB) NTFS == & gt; [System with boot components (obtained from reading drive)]
Drive d: (Data) (Fixed) (Total:258.15 GB) (Free:258.01 GB) NTFS
Drive g: (BATTLECRY2PL) (CDROM) (Total:0.62 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 172907AF)

Partition: GPT Partition Type.

==================== End Of Log ============================


Download file - link to post