Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-05-2014 Ran by WIECZORECZKI at 2014-05-02 13:39:13 Running from C:\Users\WIECZORECZKI\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: McAfee Anti-Virus i Anti-Spyware (Enabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892} AS: McAfee Anti-Virus i Anti-Spyware (Enabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: McAfee Firewall (Enabled) {959DA8E2-3527-57D1-4915-924367AD4FE9} ==================== Installed Programs ====================== 64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 4.0.0.1390 - Adobe Systems Incorporated) Adobe AIR (x32 Version: 4.0.0.1390 - Adobe Systems Incorporated) Hidden Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated) Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated) Adobe Reader XI (11.0.06) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated) AF9035HB Driver v10.4.26.1 (HKLM-x32\...\AF9035HB DriverInstaller_10.4.26.1) (Version: - ) AGEIA PhysX v8.01.18 (HKLM-x32\...\{A5B5A16D-277A-476B-8F62-1029A2F23072}) (Version: 8.01.18 - AGEIA Technologies, Inc.) Assassin's Creed Revelations 1.03 (HKLM-x32\...\{33A22B2D-55BA-4508-B767-BF2E9C21A73F}) (Version: 1.03 - Ubisoft) Asystent rejestracji usługi Windows Live (HKLM-x32\...\{51958BA7-21E4-4A8B-9098-CD8375BD17B2}) (Version: 5.000.818.5 - Microsoft Corporation) Broadcom 802.11 Wireless Driver (HKLM-x32\...\{8991E763-21F5-4DEA-A938-5D9D77DCB488}) (Version: 1.0.0.0 - ) BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden Centrum obsługi urządzeń z systemem Windows Mobile (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation) Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.111.0.62 - Conexant) Copy (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.0.2626 - CyberLink Corp.) CyberLink YouCam (x32 Version: 3.0.2626 - CyberLink Corp.) Hidden Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden DeviceDiscovery (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden DJ_AIO_06_K209a-z_SW_Min (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden e-Deklaracje Desktop (HKLM-x32\...\e-Deklaracje.A1909296681C7ACEFE45687D3A64758C8659BF46.1) (Version: 6.0.1 - Ministerstwo Finansow) e-Deklaracje Desktop (x32 Version: 6.0.1 - Ministerstwo Finansow) Hidden Energy Management (HKLM-x32\...\{0CE226F3-EB27-4ECD-BBF5-F088716779FD}) (Version: 5.4.1.9 - Lenovo) FormatFactory 3.1.1 (HKLM-x32\...\FormatFactory) (Version: 3.1.1 - Free Time) Francais Translator (HKLM-x32\...\FT) (Version: - ) Galeria fotografii usługi Windows Live (x32 Version: 14.0.8081.709 - Microsoft Corporation) Hidden GIMP 2.6.11 (HKLM-x32\...\WinGimp-2.0_is1) (Version: 2.6.11 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 34.0.1847.131 - Google Inc.) Google Drive (HKLM-x32\...\{E87022D3-C8C9-4C76-8E27-BC7F18F9B8FB}) (Version: 1.14.6059.644 - Google, Inc.) Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Google Update Helper (x32 Version: 1.3.23.9 - Google Inc.) Hidden GPBaseService2 (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP) HP Deskjet Ink Advant K209a-z All-in-One Driver Software 14.0 Rel. 6 (HKLM\...\{6051912A-F7B8-445C-A99D-81AA4C118836}) (Version: 14.0 - HP) HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP) HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP) HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP) HP Update (HKLM-x32\...\{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}) (Version: 5.003.001.001 - Hewlett-Packard) HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden HPProductAssistant (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.5.6.1001 - Intel Corporation) Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.550 - Oracle) Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden Junk Mail filter update (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden K209a-z (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden K-Lite Codec Pack 10.0.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.0.5 - ) Lenovo Bluetooth with Enhanced Data Rate Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.1.100 - Broadcom Corporation) Lenovo DirectShare (HKLM-x32\...\InstallShield_{B2164CCB-C002-4B80-8550-7535D80DF237}) (Version: 1.0.1.38 - Nazwa firmy) Lenovo DirectShare (x32 Version: 1.0.1.38 - ArcSoft) Hidden Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 2.10.0415.1 - Vimicro) Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.1230 - CyberLink Corp.) Lenovo OneKey Recovery (Version: 7.0.1230 - CyberLink Corp.) Hidden Lenovo ReadyComm 5 (HKLM-x32\...\{17542DBF-E17C-4562-BC4D-FA3EF3076C45}) (Version: 5.1.1.20 - Lenovo) Lenovo ReadyComm 5.0 Service (HKLM-x32\...\{76C66170-C538-4E77-B54D-48E136B5B533}) (Version: 5.0.0.1 - Lenovo Group Limited) Mad Riders (HKLM-x32\...\Mad Riders) (Version: 101 - Techland) MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden McAfee Total Protection (HKLM-x32\...\MSC) (Version: 12.8.944 - McAfee, Inc.) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (PLK) (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden Microsoft Choice Guard (x32 Version: 2.0.48.0 - Microsoft Corporation) Hidden Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Starter 2010 - Polski (HKLM-x32\...\{90140011-0066-0415-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0415-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM-x32\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation) Microsoft Sync Framework Services Native v1.0 (x86) (HKLM-x32\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Moduł Szybka instalacja pakietu Microsoft Office 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation) Moduł Szybka instalacja pakietu Microsoft Office 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Moorhuhn 2 V1.1 (HKLM-x32\...\Moorhuhn 2 V1.1) (Version: - ) MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden MSVCRT (x32 Version: 14.0.1468.721 - Microsoft) Hidden MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Narzędzie do przekazywania usługi Windows Live (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation) NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.61.39 - NVIDIA Corporation) Onekey Theater (HKLM-x32\...\{DFB19121-0609-49C1-92B1-546E5A940FE8}) (Version: 2.0.1.8 - Lenovo) Pakiet sterowników systemu Windows - Lenovo (ACPIVPC) System (10/19/2009 5.4.0.1) (HKLM\...\0A4175B489A1B4A6E07E11B063A6263480C51D71) (Version: 10/19/2009 5.4.0.1 - Lenovo) Poczta usługi Windows Live (x32 Version: 14.0.8089.0726 - Microsoft Corporation) Hidden Podstawowe programy Windows Live (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation) Podstawowe programy Windows Live (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.4809d4 - CyberLink Corp.) Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.18.322.2010 - Realtek) Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30116 - Realtek Semiconductor Corp.) Scan (x32 Version: 140.0.80.000 - Hewlett-Packard) Hidden Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee) SmartWebPrinting (x32 Version: 140.0.186.000 - Hewlett-Packard) Hidden SolutionCenter (x32 Version: 140.0.213.000 - Hewlett-Packard) Hidden Sony Ericsson Update Engine (HKLM-x32\...\Update Engine) (Version: 2.13.2.16 - Sony Ericsson Communications AB) Status (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.15.0 - Synaptics Incorporated) System Requirements Lab CYRI (HKLM-x32\...\{E5F05232-96B6-4552-A480-785A60A94B21}) (Version: 5.0.6.0 - Husdawg, LLC) Toolbox (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden TrayApp (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT) VeriFace (HKLM-x32\...\VeriFace) (Version: 3.6.1.0226 - Lenovo) WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden Windows Driver Package - Broadcom Bluetooth (06/15/2009 6.2.0.9000) (HKLM\...\6B8550A319DDC8B17F35F4A89988705E4592349B) (Version: 06/15/2009 6.2.0.9000 - Broadcom) Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) (HKLM\...\6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1) (Version: 07/30/2009 6.2.0.9405 - Broadcom) Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom) Windows Live Communications Platform (x32 Version: 14.0.8064.206 - Microsoft Corporation) Hidden Windows Live Messenger (x32 Version: 14.0.8089.0726 - Microsoft Corporation) Hidden Windows Live Movie Maker (x32 Version: 14.0.8091.0730 - Microsoft Corporation) Hidden Windows Live Sync (HKLM-x32\...\{2E522ED6-01E2-4207-82D5-B3BFB31B8BD4}) (Version: 14.0.8089.726 - Microsoft Corporation) Windows Live Writer (x32 Version: 14.0.8089.0726 - Microsoft Corporation) Hidden WinRAR 5.01 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) Wtyczka e-Deklaracje (HKLM-x32\...\{81BF6353-3C5B-4E6E-A566-7E162A00BF72}_is1) (Version: - Ministerstwo Finansów) ==================== Restore Points ========================= 12-03-2014 21:37:20 Windows Update 17-03-2014 22:11:18 McAfee Vulnerability Scanner 17-03-2014 22:15:43 Windows Update 26-03-2014 14:04:11 Zaplanowany punkt kontrolny 04-04-2014 19:44:23 Zaplanowany punkt kontrolny 09-04-2014 18:03:33 Windows Update 21-04-2014 11:30:23 Installed Java 7 Update 55 22-04-2014 14:20:55 Windows Update ==================== Hosts content: ========================== 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {1667B1D9-00E7-4A1B-802E-752B7C7A631B} - System32\Tasks\711bd280-00bb-4a68-b469-95176701eb0f-4 => C:\Program Files (x86)\FreeHD-Sport TV V9.0\711bd280-00bb-4a68-b469-95176701eb0f-4.exe Task: {846548C0-B959-4D7E-A54C-9A8AA9EA273C} - System32\Tasks\711bd280-00bb-4a68-b469-95176701eb0f-1 => C:\Program Files (x86)\FreeHD-Sport TV V9.0\FreeHD-Sport TV V9.0-codedownloader.exe Task: {B9DBF98B-80C3-42BE-AC41-81550A564E91} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-18] (Adobe Systems Incorporated) Task: {D2830AB4-D501-4249-BBC3-8F4031813943} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-17] (Google Inc.) Task: {D2E09864-2EBE-4D69-B406-6841E2E14DA3} - System32\Tasks\GoogleUpdateTaskMachineUA1cf2780901c7baf => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-17] (Google Inc.) Task: {D76C88BC-987B-4DC4-AD9B-8AB5F9AF02CE} - System32\Tasks\McQcTask => c:\PROGRA~2\mcafee\mqc\QcConsol.exe Task: {DF5FBBCB-C339-4AA1-B4D8-8863B1A33BB9} - System32\Tasks\711bd280-00bb-4a68-b469-95176701eb0f-3 => C:\Program Files (x86)\FreeHD-Sport TV V9.0\711bd280-00bb-4a68-b469-95176701eb0f-3.exe Task: {E9C75F2B-63CC-475C-BCBD-3272422F510D} - System32\Tasks\McDefragTask => c:\PROGRA~2\mcafee\mqc\QcConsol.exe Task: {F811DF53-895A-4F28-952C-EFD73C9B99D4} - System32\Tasks\{FB1EB8AF-ABC6-478B-97C6-3F3B8652C20A} => Chrome.exe http://ui.skype.com/ui/0/6.3.59.105/pl/abandoninstall?page=tsBing Task: C:\windows\Tasks\711bd280-00bb-4a68-b469-95176701eb0f-1.job => C:\Program Files (x86)\FreeHD-Sport TV V9.0\FreeHD-Sport TV V9.0-codedownloader.exe Task: C:\windows\Tasks\711bd280-00bb-4a68-b469-95176701eb0f-3.job => C:\Program Files (x86)\FreeHD-Sport TV V9.0\711bd280-00bb-4a68-b469-95176701eb0f-3.exe Task: C:\windows\Tasks\711bd280-00bb-4a68-b469-95176701eb0f-4.job => C:\Program Files (x86)\FreeHD-Sport TV V9.0\711bd280-00bb-4a68-b469-95176701eb0f-4.exe Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA1cf2780901c7baf.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\windows\Tasks\McDefragTask.job => C:\windows\system32\defrag.exe Task: C:\windows\Tasks\McQcTask.job => c:\PROGRA~2\mcafee\mqc\QcConsol.exe ==================== Loaded Modules (whitelisted) ============= 2010-07-07 04:17 - 2009-12-19 04:52 - 00201120 _____ () C:\Program Files (x86)\Lenovo\Onekey Theater\ActiveDetect64.dll 2010-07-07 04:17 - 2009-12-19 04:53 - 00156576 _____ () C:\Program Files (x86)\Lenovo\Onekey Theater\WindowsApiHookDll64.dll 2010-07-07 04:19 - 2010-07-07 04:19 - 01502720 _____ () C:\windows\system32\IcnOvrly.dll 2010-07-07 04:32 - 2009-07-15 17:55 - 00054088 _____ () C:\Program Files (x86)\Lenovo\Energy Management\kbdhook.dll 2010-07-07 04:32 - 2009-07-15 17:55 - 00054088 _____ () C:\Program Files (x86)\Lenovo\Energy Management\HookLib.dll 2010-07-07 04:17 - 2009-12-19 04:52 - 00100256 _____ () C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe 2010-07-07 04:17 - 2009-12-19 04:50 - 00161696 _____ () C:\Program Files (x86)\Lenovo\Onekey Theater\ActiveDetect32.dll 2010-07-07 04:17 - 2009-12-19 04:51 - 00133024 _____ () C:\Program Files (x86)\Lenovo\Onekey Theater\WindowsApiHookDll32.dll 2010-07-07 04:19 - 2010-07-07 04:19 - 00492896 _____ () C:\Program Files (x86)\Lenovo\VeriFace\ChooseLang.dll 2010-07-07 03:44 - 2009-12-23 19:32 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll 2014-04-30 10:46 - 2014-04-24 02:33 - 00065352 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\chrome_elf.dll 2014-04-30 10:46 - 2014-04-24 02:33 - 00674632 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\libglesv2.dll 2014-04-30 10:46 - 2014-04-24 02:33 - 00093000 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\libegl.dll 2014-04-30 10:46 - 2014-04-24 02:33 - 04081480 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\pdf.dll 2014-04-30 10:46 - 2014-04-24 02:33 - 00390472 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\ppGoogleNaClPluginChrome.dll 2014-04-30 10:46 - 2014-04-24 02:33 - 01647432 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\ffmpegsumo.dll ==================== Alternate Data Streams (whitelisted) ========= AlternateDataStreams: C:\ProgramData\Temp:BC359956 ==================== Safe Mode (whitelisted) =================== HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver" ==================== Disabled items from MSCONFIG ============== MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\windows\pss\Bluetooth.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup MSCONFIG\startupfolder: C:^Users^WIECZORECZKI^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3.lnk => C:\windows\pss\OpenOffice.org 3.3.lnk.Startup MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" MSCONFIG\startupreg: PC Suite Tray => "C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: UpdateP2GShortCut => "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0" MSCONFIG\startupreg: UpdatePDRShortCut => "C:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerDirector" UpdateWithCreateOnce "Software\CyberLink\PowerDirector\7.0" ==================== Faulty Device Manager Devices ============= Name: McAfee Inc. mfewfpk Description: McAfee Inc. mfewfpk Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: mfewfpk Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Broadcom BCM2070 Bluetooth 2.1+EDR USB Device Description: Broadcom BCM2070 Bluetooth 2.1+EDR USB Device Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974} Manufacturer: Broadcom Service: BTHUSB Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (05/02/2014 01:12:13 PM) (Source: Microsoft-Windows-Defrag) (User: ) Description: Wolumin (C:) nie został zdefragmentowany, ponieważ wykryto błąd: Dla tego woluminu jest ustawiony bit zanieczyszczenia. (0x89000015) Error: (04/30/2014 05:43:18 PM) (Source: Chrome) (User: ZARZĄDZANIE NT) Description: Chrome has encountered a fatal error. ver=34.0.1847.131;lang=;id=;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\18233e5e-03e4-4175-a57d-d8ecfb641115.dmp Error: (04/26/2014 00:01:03 PM) (Source: Application Error) (User: ) Description: Nazwa aplikacji powodującej błąd: LogonUI.exe, wersja: 6.1.7601.17514, sygnatura czasowa: 0x4ce79f70 Nazwa modułu powodującego błąd: ImageReog.dll_unloaded, wersja: 0.0.0.0, sygnatura czasowa: 0x4ab5cc8c Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000000180006b20 Identyfikator procesu powodującego błąd: 0x2fc Godzina uruchomienia aplikacji powodującej błąd: 0xLogonUI.exe0 Ścieżka aplikacji powodującej błąd: LogonUI.exe1 Ścieżka modułu powodującego błąd: LogonUI.exe2 Identyfikator raportu: LogonUI.exe3 Error: (04/22/2014 09:42:35 PM) (Source: CVHSVC) (User: ) Description: Tylko informacje. (Patch task for {90140011-0066-0415-0000-0000000FF1CE}): DownloadLatest Failed: Obecnie nie ma aktywnych połączeń sieciowych. Usługa inteligentnego transferu w tle (BITS) ponowni próbę po podłączeniu karty. Error: (04/10/2014 00:07:24 AM) (Source: Application Error) (User: ) Description: Nazwa aplikacji powodującej błąd: McSvHost.exe, wersja: 3.8.703.0, sygnatura czasowa: 0x51f7deae Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000000219930522 Identyfikator procesu powodującego błąd: 0x6f4 Godzina uruchomienia aplikacji powodującej błąd: 0xMcSvHost.exe0 Ścieżka aplikacji powodującej błąd: McSvHost.exe1 Ścieżka modułu powodującego błąd: McSvHost.exe2 Identyfikator raportu: McSvHost.exe3 Error: (04/04/2014 09:42:52 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"1". Błąd w pliku manifestu lub w pliku zasad "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"2" w wierszu WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"3. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1". Definicja to WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (04/04/2014 08:30:01 PM) (Source: Winlogon) (User: ) Description: Proces usługi logowania systemu Windows został nieoczekiwanie zakończony. Error: (04/01/2014 09:03:37 PM) (Source: Application Error) (User: ) Description: Nazwa aplikacji powodującej błąd: Explorer.EXE, wersja: 6.1.7601.17567, sygnatura czasowa: 0x4d672ee4 Nazwa modułu powodującego błąd: McPvNs.dll_unloaded, wersja: 0.0.0.0, sygnatura czasowa: 0x522de439 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000007fee6064050 Identyfikator procesu powodującego błąd: 0x1030 Godzina uruchomienia aplikacji powodującej błąd: 0xExplorer.EXE0 Ścieżka aplikacji powodującej błąd: Explorer.EXE1 Ścieżka modułu powodującego błąd: Explorer.EXE2 Identyfikator raportu: Explorer.EXE3 Error: (04/01/2014 00:31:27 PM) (Source: Application Error) (User: ) Description: Nazwa aplikacji powodującej błąd: Explorer.EXE, wersja: 6.1.7601.17567, sygnatura czasowa: 0x4d672ee4 Nazwa modułu powodującego błąd: McPvNs.dll_unloaded, wersja: 0.0.0.0, sygnatura czasowa: 0x522de439 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000007feeb7a4050 Identyfikator procesu powodującego błąd: 0x7d0 Godzina uruchomienia aplikacji powodującej błąd: 0xExplorer.EXE0 Ścieżka aplikacji powodującej błąd: Explorer.EXE1 Ścieżka modułu powodującego błąd: Explorer.EXE2 Identyfikator raportu: Explorer.EXE3 Error: (03/24/2014 02:18:12 PM) (Source: Application Error) (User: ) Description: Nazwa aplikacji powodującej błąd: Explorer.EXE, wersja: 6.1.7601.17567, sygnatura czasowa: 0x4d672ee4 Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.18247, sygnatura czasowa: 0x521eaf24 Kod wyjątku: 0xc0000420 Przesunięcie błędu: 0x00000000000c4102 Identyfikator procesu powodującego błąd: 0x448 Godzina uruchomienia aplikacji powodującej błąd: 0xExplorer.EXE0 Ścieżka aplikacji powodującej błąd: Explorer.EXE1 Ścieżka modułu powodującego błąd: Explorer.EXE2 Identyfikator raportu: Explorer.EXE3 System errors: ============= Error: (05/02/2014 01:10:04 PM) (Source: Service Control Manager) (User: ) Description: Nie można uruchomić usługi McAfee Platform Services z powodu następującego błędu: %%1053 Error: (05/02/2014 01:10:04 PM) (Source: Service Control Manager) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą McAfee Platform Services. Error: (05/02/2014 01:10:01 PM) (Source: Service Control Manager) (User: ) Description: Nie można uruchomić usługi McAfee Platform Services z powodu następującego błędu: %%1053 Error: (05/02/2014 01:10:01 PM) (Source: Service Control Manager) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą McAfee Platform Services. Error: (05/02/2014 01:10:01 PM) (Source: DCOM) (User: ) Description: 1053mcpltsvc{20966775-18A4-4299-B8E3-772C336B52A7} Error: (05/02/2014 01:09:30 PM) (Source: Ntfs) (User: ) Description: Struktura systemu plików na dysku jest uszkodzona i nie nadaje się do użytku. Uruchom narzędzie chkdsk na woluminie \Device\HarddiskVolume2. Error: (05/02/2014 01:09:30 PM) (Source: Ntfs) (User: ) Description: Struktura systemu plików na dysku jest uszkodzona i nie nadaje się do użytku. Uruchom narzędzie chkdsk na woluminie \Device\HarddiskVolume2. Error: (05/02/2014 01:09:30 PM) (Source: Ntfs) (User: ) Description: Struktura systemu plików na dysku jest uszkodzona i nie nadaje się do użytku. Uruchom narzędzie chkdsk na woluminie \Device\HarddiskVolume2. Error: (05/02/2014 01:09:30 PM) (Source: Ntfs) (User: ) Description: Struktura systemu plików na dysku jest uszkodzona i nie nadaje się do użytku. Uruchom narzędzie chkdsk na woluminie \Device\HarddiskVolume2. Error: (05/02/2014 11:25:00 AM) (Source: Service Control Manager) (User: ) Description: Nie można uruchomić usługi ReadyComm.DirectRouter z powodu następującego błędu: %%2 Microsoft Office Sessions: ========================= Error: (05/02/2014 01:12:13 PM) (Source: Microsoft-Windows-Defrag)(User: ) Description: (C:)Dla tego woluminu jest ustawiony bit zanieczyszczenia. (0x89000015) Error: (04/30/2014 05:43:18 PM) (Source: Chrome)(User: ZARZĄDZANIE NT) Description: Chrome has encountered a fatal error. ver=34.0.1847.131;lang=;id=;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\18233e5e-03e4-4175-a57d-d8ecfb641115.dmp Error: (04/26/2014 00:01:03 PM) (Source: Application Error)(User: ) Description: LogonUI.exe6.1.7601.175144ce79f70ImageReog.dll_unloaded0.0.0.04ab5cc8cc00000050000000180006b202fc01cf61366037812cC:\windows\system32\LogonUI.exeImageReog.dllacd019eb-cd29-11e3-a272-fb6a4c5d55e7 Error: (04/22/2014 09:42:35 PM) (Source: CVHSVC)(User: ) Description: (Patch task for {90140011-0066-0415-0000-0000000FF1CE}): DownloadLatest Failed: Obecnie nie ma aktywnych połączeń sieciowych. Usługa inteligentnego transferu w tle (BITS) ponowni próbę po podłączeniu karty. Error: (04/10/2014 00:07:24 AM) (Source: Application Error)(User: ) Description: McSvHost.exe3.8.703.051f7deaeunknown0.0.0.000000000c000000500000002199305226f401cf542e31ffb924C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exeunknown5403dcdc-c033-11e3-b2ad-9b13a1a8c89e Error: (04/04/2014 09:42:52 PM) (Source: SideBySide)(User: ) Description: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1"c:\program files (x86)\windows live\photo gallery\MovieMaker.Exec:\program files (x86)\windows live\photo gallery\WLMFDS.DLL8 Error: (04/04/2014 08:30:01 PM) (Source: Winlogon)(User: ) Description: Error: (04/01/2014 09:03:37 PM) (Source: Application Error)(User: ) Description: Explorer.EXE6.1.7601.175674d672ee4McPvNs.dll_unloaded0.0.0.0522de439c0000005000007fee6064050103001cf4d9590f50ef6C:\windows\Explorer.EXEMcPvNs.dll53c1e067-b9d0-11e3-834e-baa43926fbe7 Error: (04/01/2014 00:31:27 PM) (Source: Application Error)(User: ) Description: Explorer.EXE6.1.7601.175674d672ee4McPvNs.dll_unloaded0.0.0.0522de439c0000005000007feeb7a40507d001cf4d17636252d2C:\windows\Explorer.EXEMcPvNs.dllc759d8d5-b988-11e3-834e-baa43926fbe7 Error: (03/24/2014 02:18:12 PM) (Source: Application Error)(User: ) Description: Explorer.EXE6.1.7601.175674d672ee4ntdll.dll6.1.7601.18247521eaf24c000042000000000000c410244801cf47582bc8fe13C:\windows\Explorer.EXEC:\windows\SYSTEM32\ntdll.dll5daa2da5-b34e-11e3-a9a6-80ba0429d8e7 CodeIntegrity Errors: =================================== Date: 2013-10-08 17:37:53.627 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\PROGRA~2\McAfee\SITEAD~1\x64\saHook.dll because the set of per-page image hashes could not be found on the system. Date: 2013-10-08 17:37:53.577 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Lenovo\Onekey Theater\ActiveDetect64.dll because the set of per-page image hashes could not be found on the system. Date: 2013-10-08 17:37:15.641 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\PROGRA~2\McAfee\SITEAD~1\x64\saHook.dll because the set of per-page image hashes could not be found on the system. Date: 2013-10-08 17:37:15.626 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Lenovo\Onekey Theater\ActiveDetect64.dll because the set of per-page image hashes could not be found on the system. Date: 2013-10-08 17:35:41.587 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\PROGRA~2\McAfee\SITEAD~1\x64\saHook.dll because the set of per-page image hashes could not be found on the system. Date: 2013-10-08 17:35:41.575 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Lenovo\Onekey Theater\ActiveDetect64.dll because the set of per-page image hashes could not be found on the system. Date: 2013-10-08 17:32:22.579 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\PROGRA~2\McAfee\SITEAD~1\x64\saHook.dll because the set of per-page image hashes could not be found on the system. Date: 2013-10-08 17:32:22.571 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Lenovo\Onekey Theater\ActiveDetect64.dll because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Percentage of memory in use: 54% Total physical RAM: 3958.85 MB Available physical RAM: 1814.14 MB Total Pagefile: 7915.88 MB Available Pagefile: 5381.81 MB Total Virtual: 8192 MB Available Virtual: 8191.85 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:421.81 GB) (Free:312.92 GB) NTFS Drive d: (LENOVO) (Fixed) (Total:29 GB) (Free:8.96 GB) NTFS Drive g: () (Removable) (Total:3.74 GB) (Free:2.08 GB) FAT32 ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: C22BCB40) Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=422 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=29 GB) - (Type=OF Extended) Partition 4: (Not Active) - (Size=15 GB) - (Type=12) ======================================================== Disk: 1 (Size: 4 GB) (Disk ID: BB20A953) Partition 1: (Not Active) - (Size=4 GB) - (Type=0B) ==================== End Of Log ============================