Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-09-2013 01 Ran by oem at 2013-09-03 17:14:41 Running from C:\Users\oem\Desktop Boot Mode: Normal ========================================================== ==================== Installed Programs ======================= µTorrent (HKCU Version: 3.3.1.30017) 7-Zip 9.20 (x64 edition) (Version: 9.20.00.0) Acronis Disk Director Home (x32 Version: 11.0.216) Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.94) Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.94) Adobe Reader XI (11.0.03) - Polish (x32 Version: 11.0.03) Aktualizacje NVIDIA 1.11.3 (Version: 1.11.3) BurnAware Free 6.4 (x32) COMODO Internet Security Premium (Version: 6.2.23257.2860) COMODO Programs Manager (Version: 1.3_build_30) Defraggler (Version: 2.15) eaner (Version: 4.04) FastStone Image Viewer 4.8 (x32 Version: 4.8) HD Tune 2.55 (x32) Intel(R) Control Center (x32 Version: 1.2.1.1008) Intel(R) Management Engine Components (x32 Version: 8.1.0.1281) Intel(R) Rapid Storage Technology (x32 Version: 11.1.0.1006) Intel(R) USB 3.0 eXtensible Host Controller Driver (x32 Version: 1.0.5.235) Intel® Trusted Connect Service Client (Version: 1.24.738.1) Java 7 Update 25 (64-bit) (Version: 7.0.250) KMP Service (x32) Malwarebytes Anti-Malware wersja 1.75.0.1300 (x32 Version: 1.75.0.1300) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319) Microsoft .NET Framework 4 Extended (Version: 4.0.30319) Microsoft Office Professional Edition 2003 (x32 Version: 11.0.8173.0) Microsoft Silverlight (Version: 5.1.20513.0) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) NapiProjekt (2.1.1.2314) (x32) NVIDIA Install Application (Version: 2.1002.108.688) NVIDIA Oprogramowanie systemu PhysX 9.12.0604 (Version: 9.12.0604) NVIDIA PhysX (x32 Version: 9.12.0604) NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.1106) NVIDIA Sterownik 3D Vision 311.06 (Version: 311.06) NVIDIA Sterownik dźwięku HD 1.3.18.0 (Version: 1.3.18.0) NVIDIA Sterownik graficzny 311.06 (Version: 311.06) NVIDIA Sterownik kontrolera 3D Vision 306.97 (Version: 306.97) NVIDIA Update Components (Version: 1.11.3) ON_OFF Charge B12.1025.1 (x32 Version: 1.00.0001) Opera 12.16 (Version: 12.16.1860) Pakiet zgodności dla systemu Office 2007 (x32 Version: 12.0.6514.5001) Panel sterowania NVIDIA 311.06 (Version: 311.06) PC Camera (6029 CIF) (x32 Version: 1.0.0.0) Realtek Ethernet Controller Driver (x32 Version: 7.49.927.2011) Realtek High Definition Audio Driver (x32 Version: 6.0.1.6662) Samsung ML-2010 Series (x32) Samsung ML-2010 Series SmartPanel (x32) Skype™ 6.7 (x32 Version: 6.7.102) TeamViewer 8 (x32 Version: 8.0.19617) The KMPlayer (remove only) (x32 Version: 3.6.0.87) Unlocker 1.9.2 (Version: 1.9.2) ==================== Restore Points ========================= 14-08-2013 04:38:58 Windows Update 14-08-2013 20:09:33 Windows Update 14-08-2013 20:24:07 Installed SpyHunter 14-08-2013 20:27:17 Installed SpyHunter 14-08-2013 20:29:55 Installed SpyHunter 20-08-2013 18:17:06 Removed SpyHunter 25-08-2013 07:56:46 Windows Update 26-08-2013 15:12:43 Windows Update 02-09-2013 17:35:17 Zaplanowany punkt kontrolny ==================== Hosts content: ========================== 2009-07-14 04:34 - 2013-08-11 22:06 - 00449438 ____N C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com 127.0.0.1 www.0scan.com 127.0.0.1 0scan.com 127.0.0.1 1000gratisproben.com 127.0.0.1 www.1000gratisproben.com 127.0.0.1 1001namen.com 127.0.0.1 www.1001namen.com 127.0.0.1 100888290cs.com 127.0.0.1 www.100888290cs.com 127.0.0.1 www.100sexlinks.com 127.0.0.1 100sexlinks.com 127.0.0.1 10sek.com 127.0.0.1 www.10sek.com 127.0.0.1 www.1-2005-search.com 127.0.0.1 1-2005-search.com 127.0.0.1 123fporn.info 127.0.0.1 www.123fporn.info 127.0.0.1 123haustiereundmehr.com 127.0.0.1 www.123haustiereundmehr.com 127.0.0.1 123moviedownload.com There are 1000 more lines. ==================== Scheduled Tasks (whitelisted) ============= Task: {044A6734-E90E-4F8F-B357-B2DC8AB3B5EC} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => start w32time task_started Task: {0A7BF530-DED2-4F16-836A-C2024058BDF0} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-07-08] (COMODO) Task: {49FC4BB5-8421-4D90-B81A-58708803BE01} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-07-08] (COMODO) Task: {76886B4E-F096-415C-B7CE-914589C2F422} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-07-08] (COMODO) Task: {7DA78E42-D21B-46E8-9D48-E13D159C20A0} - System32\Tasks\COMODO\COMODO Welcome {CEB54B45-2B5E-4FF5-9223-6735CD80FE69} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [2013-07-08] (COMODO) Task: {A5FC8E70-3D0E-4697-B935-377FB873C392} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-07-22] (Piriform Ltd) Task: {E5E10389-9E8D-4E6B-A1A2-48E2C8DBDD66} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-07-08] (COMODO) ==================== Loaded Modules (whitelisted) ============= 2013-07-25 10:09 - 2013-02-26 00:32 - 15053264 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2013-07-25 09:52 - 2010-11-03 12:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2013-07-25 09:52 - 2012-06-08 10:18 - 03615888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll 2013-08-01 21:51 - 2013-08-01 21:51 - 21230944 _____ (Opera Software) C:\Program Files\Opera x64\Opera.dll 2013-08-01 21:51 - 2013-08-01 21:51 - 01022464 _____ () C:\Program Files\Opera x64\gstreamer\gstreamer.dll 2013-08-01 21:51 - 2013-08-01 21:51 - 00108544 _____ () C:\Program Files\Opera x64\gstreamer\plugins\gstaudioconvert.dll 2013-08-01 21:51 - 2013-08-01 21:51 - 00106496 _____ () C:\Program Files\Opera x64\gstreamer\plugins\gstaudioresample.dll 2013-08-01 21:51 - 2013-08-01 21:51 - 00062464 _____ () C:\Program Files\Opera x64\gstreamer\plugins\gstautodetect.dll 2013-08-01 21:51 - 2013-08-01 21:51 - 00108032 _____ () C:\Program Files\Opera x64\gstreamer\plugins\gstcoreplugins.dll 2013-08-01 21:51 - 2013-08-01 21:51 - 00073216 _____ () C:\Program Files\Opera x64\gstreamer\plugins\gstdecodebin2.dll 2013-08-01 21:51 - 2013-08-01 21:51 - 00074752 _____ () C:\Program Files\Opera x64\gstreamer\plugins\gstdirectsound.dll 2013-08-01 21:51 - 2013-08-01 21:51 - 00201216 _____ () C:\Program Files\Opera x64\gstreamer\plugins\gstffmpegcolorspace.dll 2013-08-01 21:51 - 2013-08-01 21:51 - 00340480 _____ () C:\Program Files\Opera x64\gstreamer\plugins\gstoggdec.dll 2013-08-01 21:51 - 2013-08-01 21:51 - 00045056 _____ () C:\Program Files\Opera x64\gstreamer\plugins\gstwaveform.dll 2013-08-01 21:51 - 2013-08-01 21:51 - 00077312 _____ () C:\Program Files\Opera x64\gstreamer\plugins\gstwavparse.dll 2013-08-01 21:51 - 2013-08-01 21:51 - 00115712 _____ () C:\Program Files\Opera x64\gstreamer\plugins\gstwebmdec.dll 2009-07-14 02:18 - 2009-07-14 03:38 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\imaadp32.acm 2009-07-14 02:18 - 2009-07-14 03:38 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\msg711.acm 2009-07-14 02:18 - 2009-07-14 03:38 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\msgsm32.acm 2009-07-14 02:18 - 2009-07-14 03:38 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\msadp32.acm 2009-07-14 02:22 - 2009-07-14 03:38 - 00081408 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\System32\l3codeca.acm 2013-08-02 16:58 - 2013-08-02 16:58 - 22225800 _____ () C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll 2013-06-18 16:15 - 2013-06-18 16:15 - 05033176 _____ (Terra Informatica Software, Inc.) C:\Program Files\COMODO\COMODO Internet Security\cmdhtml.dll 2010-11-21 05:24 - 2010-11-21 05:24 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\Cabinet.dll 2013-08-02 16:55 - 2012-06-03 00:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2013-07-25 10:10 - 2013-01-18 17:00 - 04155680 _____ (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvUI.dll 2013-07-25 10:10 - 2013-02-26 00:32 - 00778528 _____ (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Common\easyDaemonAPIU64.DLL 2013-07-25 10:10 - 2013-02-26 00:32 - 03584288 _____ (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll 2013-07-25 10:10 - 2013-02-26 00:32 - 00981280 _____ (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Common\NVUPDTR.DLL ==================== Faulty Device Manager Devices ============= Name: PC Camera Description: PC Camera Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (09/03/2013 05:11:55 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/03/2013 05:04:00 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/02/2013 07:28:45 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"1". Nie można odnaleźć zestawu zależnego Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (09/02/2013 07:28:41 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"1". Nie można odnaleźć zestawu zależnego Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (09/02/2013 07:28:37 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"1". Nie można odnaleźć zestawu zależnego Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (09/02/2013 07:28:21 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"1". Nie można odnaleźć zestawu zależnego Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (09/02/2013 05:47:01 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/02/2013 07:45:47 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/01/2013 08:47:18 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/01/2013 08:06:01 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 System errors: ============= Error: (09/03/2013 05:12:08 PM) (Source: Service Control Manager) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi nvsvc. Error: (09/03/2013 05:11:38 PM) (Source: Service Control Manager) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi MBAMService. Error: (09/03/2013 05:11:08 PM) (Source: Service Control Manager) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi nvsvc. Error: (09/03/2013 05:10:38 PM) (Source: Service Control Manager) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi MBAMService. Error: (09/03/2013 05:10:03 PM) (Source: Service Control Manager) (User: ) Description: Nie można uruchomić usługi Klient zasad grupy z powodu następującego błędu: %%1053 Error: (09/03/2013 05:10:03 PM) (Source: Service Control Manager) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Klient zasad grupy. Error: (09/03/2013 05:02:09 PM) (Source: Service Control Manager) (User: ) Description: Nie można uruchomić usługi Klient zasad grupy z powodu następującego błędu: %%1053 Error: (09/03/2013 05:02:09 PM) (Source: Service Control Manager) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Klient zasad grupy. Error: (09/02/2013 05:45:10 PM) (Source: Service Control Manager) (User: ) Description: Nie można uruchomić usługi Klient zasad grupy z powodu następującego błędu: %%1053 Error: (09/02/2013 05:45:10 PM) (Source: Service Control Manager) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Klient zasad grupy. Microsoft Office Sessions: ========================= Error: (09/03/2013 05:11:55 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/03/2013 05:04:00 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/02/2013 07:28:45 PM) (Source: SideBySide)(User: ) Description: Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"C:\Program Files (x86)\Common Files\Acronis\DiskDirector\WinPE\Files\mmsBundle.dll Error: (09/02/2013 07:28:41 PM) (Source: SideBySide)(User: ) Description: Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"C:\Program Files (x86)\Common Files\Acronis\DiskDirector\WinPE\Files\ManagementConsole.exe Error: (09/02/2013 07:28:37 PM) (Source: SideBySide)(User: ) Description: Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"C:\Program Files (x86)\Common Files\Acronis\DiskDirector\WinPE\Files\RecoveryExpert.exe Error: (09/02/2013 07:28:21 PM) (Source: SideBySide)(User: ) Description: Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"C:\Program Files (x86)\Common Files\Acronis\DiskDirector\WinPE\Files\systeminfo.exe Error: (09/02/2013 05:47:01 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/02/2013 07:45:47 AM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/01/2013 08:47:18 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/01/2013 08:06:01 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 ==================== Memory info =========================== Percentage of memory in use: 24% Total physical RAM: 8138.12 MB Available physical RAM: 6180.45 MB Total Pagefile: 16274.42 MB Available Pagefile: 14188.73 MB Total Virtual: 8192 MB Available Virtual: 8191.82 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:111.69 GB) (Free:74.69 GB) NTFS Drive e: () (Fixed) (Total:20.4 GB) (Free:5.73 GB) NTFS Drive f: () (Fixed) (Total:37.28 GB) (Free:10.49 GB) NTFS Drive g: () (Fixed) (Total:123.74 GB) (Free:17.88 GB) NTFS Drive h: () (Fixed) (Total:4.91 GB) (Free:1.25 GB) NTFS Drive i: () (Fixed) (Total:0.03 GB) (Free:0.01 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 112 GB) (Disk ID: AE771FBE) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=112 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Size: 149 GB) (Disk ID: 3D97DC8F) Partition 1: (Active) - (Size=20 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=124 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=5 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (Size: 75 GB) (Disk ID: 30A530A5) Partition 1: (Not Active) - (Size=75 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=26 MB) - (Type=07 NTFS) ==================== End Of Log ============================