Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-11-2013 Ran by miko at 2013-11-20 22:12:42 Running from C:\Users\miko\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: avast! Antivirus (Enabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C} AS: avast! Antivirus (Enabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== Update for Microsoft Office 2007 (KB2508958) (x32) µTorrent (x32 Version: 3.2.3.28705) Abaqus FLEXnet License Server (x32 Version: 6.9.0.0) ACDSee 7.0 PowerPack (x32 Version: 7.0.102) Adobe AIR (x32 Version: 3.7.0.1860) Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117) Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117) Adobe Media Player (x32 Version: 0.0.0) Adobe Media Player (x32 Version: 1.1) Adobe Reader X (10.1.8) (x32 Version: 10.1.8) Aktualizacje NVIDIA 1.5.20 (Version: 1.5.20) ALTools Update (x32 Version: v11.4.28.1) ALZip 8.51 (x32 Version: v8.51) Apple Application Support (x32 Version: 2.1.5) Apple Software Update (x32 Version: 2.1.3.127) appsmaker AppBooster (x32) ArchiCAD 13 POL Archiwizator WinRAR (x32) ATK Hotkey (x32 Version: 1.0.0050) Audials (x32 Version: 10.2.19305.500) AutoCAD 2011 - Polski (Version: 18.1.208.0) AutoCAD 2011 - Polski (Version: 18.1.49.0) AutoCAD 2011 - Polski Version 3 (Version: 1) AutoCAD 2011 Language Pack - Polski (Version: 18.1.49.0) Autodesk Material Library 2011 (x32 Version: 2.0.0.49) Autodesk Material Library 2011 Base Image library (x32 Version: 2.0.0.49) avast! Free Antivirus (x32 Version: 8.0.1489.0) Bentley InRoads Group XM Edition (V8.9) (x32 Version: 08.09.03.06) Bentley MicroStation V8 XM Edition 08.09.03.68 (x32 Version: 08.09.03068) calibre (x32 Version: 1.11.0) CCleaner (Version: 4.06) Convert XLS to PDF For Excel 3.50 (x32) CPUID CPU-Z 1.58 CPUID HWMonitor 1.18 D3DX10 (x32 Version: 15.4.2368.0902) DC++ 0.750 (x32 Version: 0.750) Ditto (x32) Dodatek Zapisywanie jako PDF lub XPS firmy Microsoft dla programów pakietu Microsoft Office 2007 (x32 Version: 12.0.4518.1020) Driver Detective (x32 Version: 7) Driver Sweeper wersja 3.2.0 (x32 Version: 3.2.0) Dropbox (HKCU Version: 2.0.22) Dziobas Rar Player 0.009.39 (x32) Emsisoft Anti-Malware 5.0 (x32 Version: 5.0) Evernote v. 4.5.3 (x32 Version: 4.5.3.6131) FARO LS 1.1.406.58 (x32 Version: 4.6.58.2) Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych (x32 Version: 15.4.5722.2) Foxit Reader (x32 Version: 3.1.4.1125) Fraps (x32) Free PS Convert driver 8.15 (x32) Free Registry Defrag (x32) Futuremark SystemInfo (x32 Version: 3.17.0.1) Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922) GAPrzepustowosc (x32) Garmin ANT Agent (Version: 2.3.4) Garmin Communicator Plugin (x32 Version: 4.0.4) Garmin Communicator Plugin x64 (Version: 4.0.4) Garmin USB Drivers (x32 Version: 2.3.1.0) GASygnalizacja (x32) Google Chrome (x32 Version: 31.0.1650.57) Google Earth (x32 Version: 7.1.1.1888) Google Talk Plugin (x32 Version: 4.9.1.16010) Google Toolbar for Internet Explorer (x32 Version: 1.0.0) Google Toolbar for Internet Explorer (x32 Version: 7.5.4601.54) Google Update Helper (x32 Version: 1.3.21.165) GPL Ghostscript (Version: 9.07) Haali Media Splitter (x32) Image Resizer Powertoy Clone for Windows (64 bit) (Version: 2.1) ipla 2.3.3 (x32 Version: 2.3.3) IrfanView (remove only) (x32 Version: 4.35) Java 7 Update 45 (x32 Version: 7.0.450) Java Auto Updater (x32 Version: 2.1.9.8) Java(TM) 6 Update 31 (x32 Version: 6.0.310) JDownloader 0.9 (x32 Version: 0.9) Junk Mail filter update (x32 Version: 15.4.3502.0922) Kalkulator parametrów geotechnicznych gruntów metodą B - v. 1.0 (x32) Kingdoms of Amalur: Reckoning (x32 Version: 1.0.0.0) K-Lite Codec Pack 5.5.1 (Standard) (x32 Version: 5.5.1) Komputerowy Słownik Niemiecko-Polski 0.8.1 (x32) Komunikator WTW 0.9.0.3202 (Version: 0.9.0.3202) KS-Szybki start (x32 Version: 1.0.2) Latency Optimizer FREE VERSION (x32 Version: 3.1.20) League of Legends (x32 Version: 1.0020) League of Legends (x32 Version: 1.3) LEd Beta 0.53 (x32) LiveVDO plugin 1.3 (x32 Version: 1.3) LOLReplay (x32 Version: 0.8.0.1) Mathcad 15 F000 (x32 Version: 15.0.0.0) Mathcad 2000 Professional (x32) Mathcad PDSi viewable support (x32 Version: 9.0.0) Mesh Runtime (x32 Version: 15.4.5722.2) Microsoft .NET Framework 1.1 (x32 Version: 1.1.4322) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319) Microsoft .NET Framework 4 Client Profile PLK Language Pack (Version: 4.0.30319) Microsoft Application Error Reporting (Version: 12.0.6015.5000) Microsoft HPC MPI Redistributable Pack (Version: 2.1.1765.0) Microsoft Office Access MUI (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office Enterprise 2007 (x32 Version: 12.0.4518.1014) Microsoft Office Excel MUI (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office Groove MUI (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office InfoPath MUI (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office Live Add-in 1.3 (x32 Version: 2.0.2313.0) Microsoft Office Office 64-bit Components 2007 (Version: 12.0.4518.1014) Microsoft Office OneNote MUI (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office Outlook MUI (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office PowerPoint MUI (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office Proof (English) 2007 (x32 Version: 12.0.4518.1014) Microsoft Office Proof (German) 2007 (x32 Version: 12.0.4518.1014) Microsoft Office Proof (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office Proofing (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office Publisher MUI (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office Shared 64-bit MUI (Polish) 2007 (Version: 12.0.4518.1020) Microsoft Office Shared MUI (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office Word MUI (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Silverlight (Version: 5.1.20913.0) Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.50727.42) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000) Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) Morgan Stream Switcher (x32) MouseConnect Tool (x32) Mozilla Firefox 25.0.1 (x86 pl) (HKCU Version: 25.0.1) Mozilla Firefox 4.0 (x86 pl) (x32 Version: 4.0) MSVC80_x64_v2 (Version: 1.0.3.0) MSVC80_x86_v2 (x32 Version: 1.0.3.0) MSVCRT (x32 Version: 15.4.2862.0708) MSVCRT_amd64 (x32 Version: 15.4.2862.0708) MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0) MSXML 4.0 SP2 Parser and SDK (x32 Version: 4.20.9818.0) NapiProjekt 1.0.6.9 (x32) Nokia Connectivity Cable Driver (x32 Version: 7.1.36.0) Norma Pro - wersja edukacyjna (x32) NVIDIA 3D Vision Controller Driver (x32 Version: 280.19) NVIDIA Display Control Panel (Version: 6.14.12.5896) NVIDIA Install Application (Version: 2.1002.46.235) NVIDIA Oprogramowanie systemu PhysX 9.11.0621 (Version: 9.11.0621) NVIDIA PhysX (x32 Version: 9.11.0621) NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.8562) NVIDIA Sterownik 3D Vision 285.62 (Version: 285.62) NVIDIA Sterownik graficzny 285.62 (Version: 285.62) NVIDIA Sterownik kontrolera 3D Vision 285.62 (Version: 285.62) NVIDIA Update Components (Version: 1.5.20) OpenAL (x32) OpenDCL Runtime (x32 Version: 7.0.0012) Origin (x32 Version: 8.5.0.4550) Paint.NET v3.5.10 (Version: 3.60.0) Pakiet sterowników systemu Windows - Dynastream Innovations (libusb0) LibUsbDevices (07/07/2009 1.12.2) (Version: 07/07/2009 1.12.2) Pakiet sterowników systemu Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0) Pakiet sterowników systemu Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (Version: 02/06/2007 3.1) Pando Media Booster (x32 Version: 2.6.0.1) Panel sterowania NVIDIA 285.62 (Version: 285.62) PC Connectivity Solution (x32 Version: 10.50.2.0) PDF Blender (x32) PDF To JPG 2.0 (x32) PDFCreator (x32 Version: 1.2.0) pdfforge Toolbar v7.2 (x32 Version: 7.2) PDFRead 1.8.2 (x32) Picasa 3 (x32 Version: 3.9) PlayReady PC Runtime x86 (x32 Version: 1.3.0) Poczta usługi Windows Live (x32 Version: 15.4.3502.0922) Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922) Podstawowe programy Windows Live (x32 Version: 15.4.3555.0308) Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319) Pomocnik Messenger (x32 Version: 15.4.3502.0922) Power4 Gear (x32) PowerCinema NE for Everio (x32) PowerDirector Express (x32) PowerProducer (x32) Premium Booster (Vista) Premium Booster (x32 Version: 3.8.0.9900) Premium Booster's Scheduler Profesor Pedro Słownictwo 6.0 (x32) PunkBuster Services (x32 Version: 0.986) Python 2.5 numpy-1.0.3 (x32) Python 2.5 pywin32-212 (x32) Python 2.5.1 (x32 Version: 2.5.1150) Quake II (x32) Quicksys RegDefrag 2.4 (x32) QuickTime (x32 Version: 7.71.80.42) Rainmeter (x32 Version: 2.3.3 r1522) Realtek High Definition Audio Driver (x32 Version: 6.0.1.6043) RICOH R5C83x/84x Flash Media Controller Driver Ver.3.55.03 (x32 Version: 3.55.03) screenSHU - the fastest screen capture ever. (x32) Secure Download Manager (x32 Version: 3.1.0) Skaner on-line mks_vir (x32) Skype™ 5.10 (x32 Version: 5.10.116) Soldis PROJEKTANT (x32) SopCast 3.2.9 (x32 Version: 3.2.9) Splash Lite (x32 Version: 1.7.1) Spybot - Search & Destroy (x32 Version: 1.6.2) Steam (x32 Version: 1.0.0.0) STK02N 2.3 (x32 Version: 2.3) System Requirements Lab (x32) System Requirements Lab CYRI (x32 Version: 6.0.7.0) TeamSpeak 3 Client (x32) TimeOff 1.3 (x32) Titan Poker (HKCU) Torchlight 2 (x32 Version: 1.9.2.1) UltimateDefrag V1 FREE Public Domain Version (x32 Version: 1.72) Update for 2007 Microsoft Office System (KB967642) (x32) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3) USB 2.0 1.3M UVC WebCam UsbFix By El Desaparecido (x32) Visual Basic for Applications (R) Core - English (x32 Version: 6.4.99.69) Visual Basic for Applications (R) Core (x32 Version: 6.4.99.69) vShare Plugin (x32) vShare.tv plugin 1.3 (x32 Version: 1.3) Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (Version: 04/19/2012 2.3.1.0) Windows Live Communications Platform (x32 Version: 15.4.3502.0922) Windows Live ID Sign-in Assistant (Version: 7.250.4232.0) Windows Live Installer (x32 Version: 15.4.3502.0922) Windows Live Language Selector (Version: 15.4.3555.0308) Windows Live Mail (x32 Version: 15.4.3502.0922) Windows Live Mesh (x32 Version: 15.4.3502.0922) Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922) Windows Live MIME IFilter (Version: 15.4.3502.0922) Windows Live Movie Maker (x32 Version: 15.4.3502.0922) Windows Live Photo Common (x32 Version: 15.4.3502.0922) Windows Live Photo Gallery (x32 Version: 15.4.3502.0922) Windows Live PIMT Platform (x32 Version: 15.4.3508.1109) Windows Live Remote Client (Version: 15.4.5722.2) Windows Live Remote Client Resources (Version: 15.4.5722.2) Windows Live Remote Service (Version: 15.4.5722.2) Windows Live Remote Service Resources (Version: 15.4.5722.2) Windows Live SOXE (x32 Version: 15.4.3502.0922) Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922) Windows Live Sync (x32 Version: 14.0.8089.726) Windows Live UX Platform (x32 Version: 15.4.3502.0922) Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109) Windows Live Writer (x32 Version: 15.4.3502.0922) Windows Live Writer Resources (x32 Version: 15.4.3502.0922) Windows Media Player Firefox Plugin (x32 Version: 1.0.0.8) Windows XP Mode (Version: 1.3.7600.16422) Wise Disk Cleaner 5.93 (x32) Wolfenstein - Enemy Territory (x32) wxPython 2.8.4.0 (unicode) for Python 2.5 (x32 Version: 2.8.4.0-unicode) XviD MPEG-4 Codec (x32) YTD Video Downloader 3.9.2 (x32) ==================== Restore Points ========================= 07-11-2013 21:30:10 Zaplanowany punkt kontrolny 16-11-2013 16:00:45 Zaplanowany punkt kontrolny 19-11-2013 11:34:48 Installed calibre ==================== Hosts content: ========================== 2009-07-14 03:34 - 2011-04-28 23:59 - 00433294 ____R C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com 127.0.0.1 www.0scan.com 127.0.0.1 0scan.com 127.0.0.1 1000gratisproben.com 127.0.0.1 www.1000gratisproben.com 127.0.0.1 1001namen.com 127.0.0.1 www.1001namen.com 127.0.0.1 100888290cs.com 127.0.0.1 www.100888290cs.com 127.0.0.1 www.100sexlinks.com 127.0.0.1 100sexlinks.com 127.0.0.1 10sek.com 127.0.0.1 www.10sek.com 127.0.0.1 www.1-2005-search.com 127.0.0.1 1-2005-search.com 127.0.0.1 123fporn.info 127.0.0.1 www.123fporn.info 127.0.0.1 123haustiereundmehr.com 127.0.0.1 www.123haustiereundmehr.com 127.0.0.1 123moviedownload.com There are 1000 more lines. ==================== Scheduled Tasks (whitelisted) ============= Task: {16E45F88-778F-4B3B-9909-EFFAA73017FC} - System32\Tasks\{42AD87EA-6A74-4D44-9061-66F86C2F3791} => G:\Gry\Kotor 2\launcher.exe Task: {1EDDBB60-0FF1-4DF6-B470-AFC7CA7BB10B} - System32\Tasks\CCleanerSkipUAC => C:\PROGRAMY\administracyjne\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd) Task: {2565B7CB-CC6A-40D1-8B22-16EF8F68ABDF} - System32\Tasks\{01103CFE-2AD5-4972-AC1F-E4F01BB72F73} => C:\INSTALKI\ir08090306en.exe Task: {28F4DE51-1675-439D-B588-E997987AFD3E} - System32\Tasks\avast! Emergency Update => C:\PROGRAMY\internet\avast\AvastEmUpdate.exe [2013-05-09] (AVAST Software) Task: {44E8E909-99C6-4CAB-9BEF-A2C6E087534D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-03-08] (Google Inc.) Task: {48B4D9F7-6A11-4397-9E16-3F6E44764871} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance => C:\PROGRAMY\administracyjne\TuneUp\OneClick.exe Task: {5D7FDCCE-2B94-43F3-8C65-CD9227AB60B5} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated) Task: {776A2CBC-3F67-4184-B131-80D881AF07D4} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3066218492-791253382-2608533103-1000UA => C:\Users\miko\AppData\Local\Google\Update\GoogleUpdate.exe [2010-03-29] (Google Inc.) Task: {77A23535-EB49-46B2-8403-D71737AF791F} - System32\Tasks\ESTsoft RunAsStdUser 26221194Task => C:\PROGRAMY\administracyjne\ALZip\ALZip.exe [2011-12-02] (ESTsoft Corp.) Task: {7A75AFD5-4F63-473D-AC90-4274874B81F2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09] (Adobe Systems Incorporated) Task: {7D2532FB-DDA8-42FB-94DC-04C0B3E433B5} - System32\Tasks\{6EBE55BD-0B23-446A-A84F-7DE04BC3B605} => Chrome.exe http://ui.skype.com/ui/0/5.3.0.120.217/pl/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;ienotdefaultbrowser2,google-chrome:notoffered;ienotdefaultbrowser2 Task: {80B701D4-FB08-4EFC-8FA8-5663AF494830} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3066218492-791253382-2608533103-1000Core => C:\Users\miko\AppData\Local\Google\Update\GoogleUpdate.exe [2010-03-29] (Google Inc.) Task: {95F30EA2-3B8C-4646-9DBA-32AB66D7F660} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation) Task: {C3ABD3E9-12CB-4126-AF4F-D9ED14FC24A4} - System32\Tasks\Google Updater and Installer => C:\Users\miko\AppData\Local\Google\Update\GoogleUpdate.exe [2010-03-29] (Google Inc.) Task: {C4F9F524-0805-4D5B-96C3-E706E7CF6B67} - System32\Tasks\{1F35DB94-E228-4B47-AAC5-EC71A5D407C3} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2012-07-13] (Skype Technologies S.A.) Task: {EE5CE199-CC49-4C6E-B8C9-1F4217FE3D47} - System32\Tasks\{9AFE2298-DA54-4F3E-9157-681E2FB24553} => G:\Gry\Kotor 2\launcher.exe Task: {FE96FC28-4AB3-49E2-A100-485CCD468410} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-03-08] (Google Inc.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3066218492-791253382-2608533103-1000Core.job => C:\Users\miko\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3066218492-791253382-2608533103-1000UA.job => C:\Users\miko\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2013-11-19 22:46 - 2013-11-19 19:36 - 02238976 _____ () C:\PROGRAMY\internet\avast\defs\13111900\algo.dll 2010-02-17 10:12 - 2009-08-16 12:52 - 00497058 _____ () C:\PROGRAMY\administracyjne\Ditto\sqlite3.dll 2010-02-17 10:12 - 2009-08-16 12:53 - 00045056 _____ () C:\PROGRAMY\administracyjne\Ditto\focus.dll 2010-02-17 10:12 - 2009-08-16 12:52 - 00059904 _____ () C:\PROGRAMY\administracyjne\Ditto\zlib1.dll 2012-02-02 18:26 - 2012-02-02 18:26 - 00043008 _____ () C:\PROGRAMY\internet\screenSHU\libgcc_s_dw2-1.dll 2011-12-02 01:30 - 2011-12-02 01:30 - 00979982 _____ () C:\PROGRAMY\internet\screenSHU\libstdc++-6.dll 2012-02-02 18:26 - 2012-02-02 18:26 - 00011362 _____ () C:\PROGRAMY\internet\screenSHU\mingwm10.dll 2013-11-16 00:48 - 2013-11-14 12:28 - 00702416 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\libglesv2.dll 2013-11-16 00:48 - 2013-11-14 12:28 - 00099792 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\libegl.dll 2013-11-16 00:48 - 2013-11-14 12:29 - 04055504 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\pdf.dll 2013-11-16 00:48 - 2013-11-14 12:29 - 00399312 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll 2013-11-16 00:48 - 2013-11-14 12:28 - 01619408 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ffmpegsumo.dll 2013-11-16 00:48 - 2013-11-14 12:29 - 13582800 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (whitelisted) ========= AlternateDataStreams: C:\ProgramData:$SS_DESCRIPTOR_LBP6VPVFLVGVVFB84LTSUTB92PFNPC7BPV4XFJDMNGTFB5V5NBJ5TBBJMT9Y0N96GMP3V0GRUEF39X8XHH0TCFUL44FTBX4MLSWPBXRTF6VEKLFEJK35PNX0WHNGT9LSVEVF1VTVVTVXVVD AlternateDataStreams: C:\ProgramData:gs5sys AlternateDataStreams: C:\Users\All Users:$SS_DESCRIPTOR_LBP6VPVFLVGVVFB84LTSUTB92PFNPC7BPV4XFJDMNGTFB5V5NBJ5TBBJMT9Y0N96GMP3V0GRUEF39X8XHH0TCFUL44FTBX4MLSWPBXRTF6VEKLFEJK35PNX0WHNGT9LSVEVF1VTVVTVXVVD AlternateDataStreams: C:\Users\All Users:gs5sys AlternateDataStreams: C:\Users\miko:gs5sys AlternateDataStreams: C:\ProgramData\Application Data:$SS_DESCRIPTOR_LBP6VPVFLVGVVFB84LTSUTB92PFNPC7BPV4XFJDMNGTFB5V5NBJ5TBBJMT9Y0N96GMP3V0GRUEF39X8XHH0TCFUL44FTBX4MLSWPBXRTF6VEKLFEJK35PNX0WHNGT9LSVEVF1VTVVTVXVVD AlternateDataStreams: C:\ProgramData\Application Data:gs5sys AlternateDataStreams: C:\ProgramData\Dane aplikacji:$SS_DESCRIPTOR_LBP6VPVFLVGVVFB84LTSUTB92PFNPC7BPV4XFJDMNGTFB5V5NBJ5TBBJMT9Y0N96GMP3V0GRUEF39X8XHH0TCFUL44FTBX4MLSWPBXRTF6VEKLFEJK35PNX0WHNGT9LSVEVF1VTVVTVXVVD AlternateDataStreams: C:\ProgramData\Dane aplikacji:gs5sys AlternateDataStreams: C:\ProgramData\TEMP:05EE1EEF AlternateDataStreams: C:\ProgramData\TEMP:5F7539FF AlternateDataStreams: C:\ProgramData\TEMP:D74B6CF5 AlternateDataStreams: C:\Users\miko\Cookies:gs5sys AlternateDataStreams: C:\Users\miko\Dane aplikacji:gs5sys AlternateDataStreams: C:\Users\miko\Szablony:gs5sys AlternateDataStreams: C:\Users\miko\Ustawienia lokalne:gs5sys AlternateDataStreams: C:\Users\miko\Desktop\desktop.ini:gs5sys AlternateDataStreams: C:\Users\miko\AppData\Local:gs5sys AlternateDataStreams: C:\Users\miko\AppData\Roaming:gs5sys AlternateDataStreams: C:\Users\miko\AppData\Local\Dane aplikacji:gs5sys AlternateDataStreams: C:\Users\miko\AppData\Local\Historia:gs5sys AlternateDataStreams: C:\Users\miko\Documents\desktop.ini:gs5sys AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys ==================== Safe Mode (whitelisted) =================== ==================== Faulty Device Manager Devices ============= Name: AU9SKWBE IDE Controller Description: AU9SKWBE IDE Controller Class Guid: {4D36E97B-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard mass storage controllers) Service: az03hk48 Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (11/20/2013 10:11:56 PM) (Source: Application Hang) (User: ) Description: Program m57g1hli.exe w wersji 2.1.19163.0 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 118c Godzina rozpoczęcia: 01cee63514680944 Godzina zakończenia: 89 Ścieżka aplikacji: C:\Users\miko\Desktop\gm\m57g1hli.exe Identyfikator raportu: 603fb57a-5228-11e3-a1b6-00221560e935 Error: (11/20/2013 09:46:09 PM) (Source: Application Error) (User: ) Description: Nazwa aplikacji powodującej błąd: OfficeLiveSignIn.exe, wersja: 2.0.2313.0, sygnatura czasowa: 0x491c0a79 Nazwa modułu powodującego błąd: OfficeLiveSignIn.exe, wersja: 2.0.2313.0, sygnatura czasowa: 0x491c0a79 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00003ce7 Identyfikator procesu powodującego błąd: 0x1384 Godzina uruchomienia aplikacji powodującej błąd: 0xOfficeLiveSignIn.exe0 Ścieżka aplikacji powodującej błąd: OfficeLiveSignIn.exe1 Ścieżka modułu powodującego błąd: OfficeLiveSignIn.exe2 Identyfikator raportu: OfficeLiveSignIn.exe3 Error: (11/20/2013 09:39:39 PM) (Source: Microsoft-Windows-LoadPerf) (User: ZARZĄDZANIE NT) Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu. Error: (11/20/2013 09:39:39 PM) (Source: Microsoft-Windows-LoadPerf) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (11/20/2013 09:39:39 PM) (Source: Microsoft-Windows-LoadPerf) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (11/20/2013 09:36:40 PM) (Source: Microsoft-Windows-LoadPerf) (User: ZARZĄDZANIE NT) Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu. Error: (11/20/2013 09:36:40 PM) (Source: Microsoft-Windows-LoadPerf) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (11/20/2013 09:36:40 PM) (Source: Microsoft-Windows-LoadPerf) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (11/20/2013 09:35:00 PM) (Source: Application Error) (User: ) Description: Nazwa aplikacji powodującej błąd: OfficeLiveSignIn.exe, wersja: 2.0.2313.0, sygnatura czasowa: 0x491c0a79 Nazwa modułu powodującego błąd: OfficeLiveSignIn.exe, wersja: 2.0.2313.0, sygnatura czasowa: 0x491c0a79 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00003ce7 Identyfikator procesu powodującego błąd: 0xd98 Godzina uruchomienia aplikacji powodującej błąd: 0xOfficeLiveSignIn.exe0 Ścieżka aplikacji powodującej błąd: OfficeLiveSignIn.exe1 Ścieżka modułu powodującego błąd: OfficeLiveSignIn.exe2 Identyfikator raportu: OfficeLiveSignIn.exe3 Error: (11/20/2013 09:34:21 PM) (Source: Application Error) (User: ) Description: Nazwa aplikacji powodującej błąd: OfficeLiveSignIn.exe, wersja: 2.0.2313.0, sygnatura czasowa: 0x491c0a79 Nazwa modułu powodującego błąd: OfficeLiveSignIn.exe, wersja: 2.0.2313.0, sygnatura czasowa: 0x491c0a79 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00003ce7 Identyfikator procesu powodującego błąd: 0x1310 Godzina uruchomienia aplikacji powodującej błąd: 0xOfficeLiveSignIn.exe0 Ścieżka aplikacji powodującej błąd: OfficeLiveSignIn.exe1 Ścieżka modułu powodującego błąd: OfficeLiveSignIn.exe2 Identyfikator raportu: OfficeLiveSignIn.exe3 System errors: ============= Error: (11/20/2013 10:13:23 PM) (Source: DCOM) (User: ) Description: localBenjamin Error: (11/20/2013 10:12:55 PM) (Source: DCOM) (User: ) Description: localBenjamin Error: (11/20/2013 10:12:28 PM) (Source: DCOM) (User: ) Description: localBenjamin Error: (11/20/2013 10:12:01 PM) (Source: DCOM) (User: ) Description: localBenjamin Error: (11/20/2013 10:11:33 PM) (Source: DCOM) (User: ) Description: localBenjamin Error: (11/20/2013 10:11:03 PM) (Source: DCOM) (User: ) Description: localBenjamin Error: (11/20/2013 10:10:16 PM) (Source: DCOM) (User: ) Description: localBenjamin Error: (11/20/2013 10:09:47 PM) (Source: DCOM) (User: ) Description: localBenjamin Error: (11/20/2013 10:09:15 PM) (Source: DCOM) (User: ) Description: localBenjamin Error: (11/20/2013 10:08:48 PM) (Source: DCOM) (User: ) Description: localBenjamin Microsoft Office Sessions: ========================= Error: (11/22/2012 07:10:15 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1866 seconds with 1380 seconds of active time. This session ended with a crash. Error: (11/22/2012 06:38:58 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 2093 seconds with 1560 seconds of active time. This session ended with a crash. Error: (04/08/2012 00:07:04 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 5 seconds with 0 seconds of active time. This session ended with a crash. Error: (02/22/2012 09:44:10 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 33 seconds with 0 seconds of active time. This session ended with a crash. Error: (02/22/2012 09:42:44 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 5 seconds with 0 seconds of active time. This session ended with a crash. Error: (02/22/2012 09:42:30 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 9755 seconds with 540 seconds of active time. This session ended with a crash. Error: (12/17/2011 06:03:58 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 8 seconds with 0 seconds of active time. This session ended with a crash. Error: (12/17/2011 06:03:34 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 41 seconds with 0 seconds of active time. This session ended with a crash. Error: (12/17/2011 05:55:09 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1 seconds with 0 seconds of active time. This session ended with a crash. Error: (12/17/2011 05:54:54 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1 seconds with 0 seconds of active time. This session ended with a crash. CodeIntegrity Errors: =================================== Date: 2013-11-20 11:09:34.502 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\Amfltx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-11-20 11:09:34.221 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\Amfltx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-11-19 10:18:44.658 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\Amfltx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-11-19 10:18:44.346 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\Amfltx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-11-18 10:57:44.705 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\Amfltx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-11-18 10:57:44.424 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\Amfltx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-11-17 19:37:34.455 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\Amfltx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-11-17 19:37:34.159 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\Amfltx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-11-17 14:17:54.752 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\Amfltx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-11-17 14:17:54.471 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\Amfltx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Percentage of memory in use: 60% Total physical RAM: 4095.24 MB Available physical RAM: 1599.73 MB Total Pagefile: 8190.48 MB Available Pagefile: 4843.78 MB Total Virtual: 8192 MB Available Virtual: 8191.78 MB ==================== Drives ================================ Drive c: (System) (Fixed) (Total:98.99 GB) (Free:11.4 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive d: (DATA) (Fixed) (Total:35 GB) (Free:14.44 GB) NTFS Drive e: () (Fixed) (Total:59.56 GB) (Free:33.53 GB) NTFS Drive f: (FILMY) (Fixed) (Total:39.82 GB) (Free:8.36 GB) NTFS Drive g: (GRY) (Fixed) (Total:40.04 GB) (Free:28.28 GB) NTFS Drive k: (FLASH DRIVE) (Removable) (Total:3.72 GB) (Free:3.33 GB) FAT32 ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: EC0468FA) Partition 1: (Active) - (Size=99 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=40 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=40 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=119 GB) - (Type=OF Extended) ======================================================== Disk: 1 (MBR Code: Windows XP) (Size: 4 GB) (Disk ID: C3072E18) Partition 1: (Not Active) - (Size=4 GB) - (Type=0C) ==================== End Of Log ============================