Additional scan result of Farbar Recovery Scan Tool (x86) Version:26-08-2014 Ran by Bartaz at 2014-08-29 11:55:13 Running from C:\Users\Bartaz\Desktop\Potrzeba Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.32126 - BitTorrent Inc.) Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742) (Version: 8.1.2 - Adobe Systems, Inc) Hidden Adobe Flash Player 14 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 14.0.0.179 - Adobe Systems Incorporated) Adobe Reader 8 - Polish (HKLM\...\{AC76BA86-7AD7-1045-7B44-A81200000003}) (Version: 8.1.2 - Adobe Systems Incorporated) Apple Application Support (HKLM\...\{EE6097DD-05F4-4178-9719-D3170BF098E8}) (Version: 1.4.1 - Apple Inc.) Archiwizator WinRAR (HKLM\...\WinRAR archiver) (Version: - ) AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4592 - AVG Technologies) AVG 2014 (Version: 14.0.4015 - AVG Technologies) Hidden AVG 2014 (Version: 14.0.4592 - AVG Technologies) Hidden AVG PC Tuneup 2011 (HKLM\...\{50316C0A-CC2A-460A-9EA5-F486E54AC17D}_is1) (Version: 10.0.0.25 - AVG) Broadcom Gigabit NetLink Controller (HKLM\...\{9AF0B106-56F1-461B-A270-95BC1682E282}) (Version: 11.21.01 - Broadcom Corporation) Business Contact Manager z dodatkiem SP1 dla programu Outlook 2007 (HKLM\...\Business Contact Manager) (Version: 3.0.7311.0 - Microsoft Corporation) Business Contact Manager z dodatkiem SP1 dla programu Outlook 2007 (Version: 3.0.7311.0 - Microsoft Corporation) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (Version: - ) Hidden Cisco Network Magic (Version: 5.5.09195.0 - Pure Networks) Hidden Data Access Objects (DAO) 3.5 (HKLM\...\Data Access Objects (DAO) 3.5) (Version: - ) DirectVobSub 2.40.4209 (HKLM\...\vsfilter_is1) (Version: 2.40.4209 - MPC-HC Team) DivX Plus DirectShow Filters (HKLM\...\DivX Plus DirectShow Filters) (Version: - DivX, Inc.) DivX Setup (HKLM\...\DivX Setup) (Version: 2.6.1.8 - DivX, LLC) DivX Version Checker (HKLM\...\{3FC7CBBC4C1E11DCA1A752EA55D89593}) (Version: 7.1.0.9 - DivX, Inc.) Dolby Control Center (HKLM\...\{87725CEF-1BC6-47C5-B2CD-96DD6D392EE3}) (Version: 2.0.1102 - Dolby) EasyCapture (HKLM\...\EasyCapture3.5) (Version: V3.5.08.1231 - Lenovo) Energy Management (HKLM\...\{AE1E24C2-E720-42D5-B8E1-48F71A97B4DB}) (Version: 3.1.7.4 - Lenovo) Facebook Video Calling 3.1.0.521 (HKLM\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) ffdshow v1.1.4399 [2012-03-22] (HKLM\...\ffdshow_is1) (Version: 1.1.4399.0 - ) FoxTab FLV Player (HKCU\...\FoxTab FLV Player) (Version: - ) <==== ATTENTION GIMP 2.6.11 (HKLM\...\WinGimp-2.0_is1) (Version: 2.6.11 - The GIMP Team) Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden Grand Theft Auto IV (Version: 1.0.0011.131 - Rockstar Games Inc.) Hidden Intel(R) Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation) Java 7 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle) Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden K-Lite Codec Pack 8.6.0 (Full) (HKLM\...\KLiteCodecPack_is1) (Version: 8.6.0 - ) KMP Service (HKLM\...\4F6D5E84-5826-4394-9F40-3A9A19165651_is1) (Version: - KMP) LAME v3.99.3 (for Windows) (HKLM\...\LAME_is1) (Version: - ) Lenovo Bluetooth with Enhanced Data Rate Software 6.1.0.5100 (HKLM\...\{03D1988F-469F-4843-8E6E-E5FE9D17889D}) (Version: 6.1.0.5100 - Lenovo.) Lenovo Desktop Navigator (HKLM\...\InstallShield_{08D1EEC8-D5D2-41FD-9A15-6499231ADF5F}) (Version: 0.1.0.10 - Lenovo) Lenovo Desktop Navigator (Version: 0.1.0.10 - Lenovo) Hidden Lenovo EasyCamera (HKLM\...\{FE7AD27A-62B1-44F6-B69C-25D1ECA94F5D}) (Version: 5.4.1.4 - Silicon Motion) Lenovo OneKey Recovery (HKLM\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 6.0.2102 - CyberLink Corp.) Lenovo OneKey Recovery (Version: 6.0.2102 - CyberLink Corp.) Hidden Lenovo ReadyComm 4.0 (HKLM\...\{76C66170-C538-4E77-B54D-48E136B5B533}) (Version: 4.0.0.26 - Lenovo Group Limited) Lenovo System Repair - Windows Update Monitor (HKLM\...\{717E0AD5-91EB-459F-AB8B-1B5219BAF7CE}) (Version: 1.3.0.2127 - Lenovo) Ligos Indeo® Codecs (HKLM\...\{AD7FC27B-519A-48CB-B996-71A1B367F751}) (Version: - ) LiveUpdate (Symantec Corporation) (HKLM\...\PsuedoLiveUpdate) (Version: 3.4.1.232 - Symantec Corporation) MediaShow (HKLM\...\InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}) (Version: 4.1.2325.9497 - CyberLink Corp.) MediaShow (Version: 4.1.2325.9497 - CyberLink Corp.) Hidden Microsoft .NET Framework 3.5 Language Pack SP1 - plk (Version: 3.5.30729 - Microsoft Corporation) Hidden Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation) Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30320 - Microsoft Corporation) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320 - Microsoft Corporation) Hidden Microsoft .NET Framework 4 Client Profile PLK Language Pack (Version: 4.0.30320 - Microsoft Corporation) Hidden Microsoft Office Access MUI (Polish) 2007 (Version: 12.0.4518.1020 - Microsoft Corporation) Hidden Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft Office Enterprise 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden Microsoft Office Excel MUI (Polish) 2007 (Version: 12.0.4518.1020 - Microsoft Corporation) Hidden Microsoft Office Groove MUI (Polish) 2007 (Version: 12.0.4518.1020 - Microsoft Corporation) Hidden Microsoft Office InfoPath MUI (Polish) 2007 (Version: 12.0.4518.1020 - Microsoft Corporation) Hidden Microsoft Office OneNote MUI (Polish) 2007 (Version: 12.0.4518.1020 - Microsoft Corporation) Hidden Microsoft Office Outlook MUI (Polish) 2007 (Version: 12.0.4518.1020 - Microsoft Corporation) Hidden Microsoft Office PowerPoint MUI (Polish) 2007 (Version: 12.0.4518.1020 - Microsoft Corporation) Hidden Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden Microsoft Office Proof (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden Microsoft Office Proof (Polish) 2007 (Version: 12.0.4518.1020 - Microsoft Corporation) Hidden Microsoft Office Proofing (Polish) 2007 (Version: 12.0.4518.1020 - Microsoft Corporation) Hidden Microsoft Office Publisher MUI (Polish) 2007 (Version: 12.0.4518.1020 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (Polish) 2007 (Version: 12.0.4518.1020 - Microsoft Corporation) Hidden Microsoft Office Word MUI (Polish) 2007 (Version: 12.0.4518.1020 - Microsoft Corporation) Hidden Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20125.0 - Microsoft Corporation) Microsoft SQL Server 2005 (HKLM\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation) Microsoft SQL Server 2005 Express Edition (MSSMLBIZ) (Version: 9.1.2047.00 - Microsoft Corporation) Hidden Microsoft SQL Server Native Client (HKLM\...\{50A0893D-47D8-48E0-A7E8-44BCD7E4422E}) (Version: 9.00.2047.00 - Microsoft Corporation) Microsoft SQL Server Setup Support Files (English) (HKLM\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.2047.00 - Microsoft Corporation) Microsoft SQL Server VSS Writer (HKLM\...\{C0D2F614-5CE5-4DCB-8678-E5C9AF7044F8}) (Version: 9.00.2047.00 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Mozilla Firefox 31.0 (x86 pl) (HKLM\...\Mozilla Firefox 31.0 (x86 pl)) (Version: 31.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) NapiProjekt (2.2.0.2399) (HKLM\...\NapiProjekt_is1) (Version: - ) Network Magic (HKLM\...\Network MagicUninstall) (Version: 5.5.9195.0 - Cisco Systems, Inc.) Norton Internet Security (Symantec Corporation) (HKLM\...\SymSetup.{C1C185CA-C531-49F5-A6FA-B838405A049D}) (Version: 15.5.0.23 - Symantec Corporation) Nowe Gadu-Gadu (HKLM\...\Nowe Gadu-Gadu) (Version: - GG Network S.A.) NVIDIA Install Application (Version: 2.1002.109.706 - NVIDIA Corporation) Hidden NVIDIA Oprogramowanie systemu PhysX 9.12.0604 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0604 - NVIDIA Corporation) NVIDIA PhysX (Version: 9.12.0604 - NVIDIA Corporation) Hidden NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.0783 - NVIDIA Corporation) Hidden NVIDIA Sterownik 3D Vision 307.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 307.83 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.18.0 - NVIDIA Corporation) NVIDIA Sterownik graficzny 307.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 307.83 - NVIDIA Corporation) NVIDIA Update Components (Version: 1.10.8 - NVIDIA Corporation) Hidden Onekey Theater (HKLM\...\InstallShield_{9B304612-421E-4CC3-84A1-5BAAC1CBE409}) (Version: 0.0.0.11C - Lenovo Group Limited) Onekey Theater (Version: 0.0.0.11C - Lenovo Group Limited) Hidden OpenSource Flash Video Splitter 1.0.0.5 (HKLM\...\OpenSource Flash Video Splitter) (Version: 1.0.0.5 - ) Pakiet językowy programu Microsoft .NET Framework 3.5 z dodatkiem SP1 — PLK (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - plk) (Version: - Microsoft Corporation) Pakiet sterowników systemu Windows - ENE (enecir) HIDClass (11/19/2008 2.7.0.2) (HKLM\...\4EFD6E835D0DD6220DB8126E6447DF7E798781BE) (Version: 11/19/2008 2.7.0.2 - ENE) Panel sterowania NVIDIA 307.83 (Version: 307.83 - NVIDIA Corporation) Hidden PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.0.2 - Frank Heindörfer, Philip Chinery) Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile PLK Language Pack) (Version: 4.0.30320 - Microsoft Corporation) Pure Networks Platform (Version: 11.2.09195.1 - Pure Networks) Hidden QuickTime (HKLM\...\{57752979-A1C9-4C02-856B-FBB27AC4E02C}) (Version: 7.69.80.9 - Apple Inc.) Real Alternative 1.8.4 (HKLM\...\RealAlt_is1) (Version: 1.8.4 - ) Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5767 - Realtek Semiconductor Corp.) Realtek USB 2.0 Card Reader (HKLM\...\{DC24971E-1946-445D-8A82-CE685433FA7D}) (Version: 6.0.6000.20109 - Realtek Semiconductor Corp.) Składniki łączności pakietu Microsoft Office Small Business (HKLM\...\{A939D341-5A04-4E0A-BB55-3E65B386432D}) (Version: 2.0.7024.0 - Microsoft Corporation) SlideBar Driver (HKLM\...\InstallShield_{AEEAE03F-DEB4-461B-ACC2-FFA7BFAA7178}) (Version: 0.0.0.7C - Lenovo Group Limited) SlideBar Driver (Version: 0.0.0.7C - Lenovo Group Limited) Hidden Sparkle 1.08 (HKLM\...\Sparkle_is1) (Version: - MythPeople) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 12.0.1.0 - Synaptics) The KMPlayer (remove only) (HKLM\...\The KMPlayer) (Version: 3.8.0.123 - PandoraTV) Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2468871) (Version: 1 - Microsoft Corporation) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2533523) (Version: 1 - Microsoft Corporation) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2600217) (Version: 1 - Microsoft Corporation) Utility Common Driver (Version: 0.0.1.1C - TOSHIBA) Hidden VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden VeriFace (HKLM\...\VeriFace) (Version: 3.5.0.1218 - Lenovo) Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) Winamp (remove only) (HKLM\...\Winamp) (Version: - ) Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp) Xvid Video Codec (HKLM\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-1768184581-2917878914-1899908149-1004_Classes\CLSID\{010833F3-751A-402F-9FCC-C365B6A12E41}\localserver32 -> C:\Users\Bartaz\Desktop\BESTplayer.exe No File CustomCLSID: HKU\S-1-5-21-1768184581-2917878914-1899908149-1004_Classes\CLSID\{035FBE31-3755-450A-A775-5E6BBD43D344}\InprocServer32 -> C:\Users\Bartaz\AppData\Local\Google\Update\1.3.21.135\psuser.dll No File CustomCLSID: HKU\S-1-5-21-1768184581-2917878914-1899908149-1004_Classes\CLSID\{095A2EEC-F7FE-42E8-96FB-C20E53081908}\InprocServer32 -> C:\Users\Bartaz\AppData\Local\Google\Update\1.3.21.99\psuser.dll No File CustomCLSID: HKU\S-1-5-21-1768184581-2917878914-1899908149-1004_Classes\CLSID\{1FD1FE74-9E3C-4C1C-AEEB-AAB592AD770F}\localserver32 -> C:\Users\Bartaz\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.) CustomCLSID: HKU\S-1-5-21-1768184581-2917878914-1899908149-1004_Classes\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InprocServer32 -> C:\Users\Bartaz\AppData\Local\{0b3a81c9-c8c0-bd15-d3d3-27dd0c816f0b}\n. No File CustomCLSID: HKU\S-1-5-21-1768184581-2917878914-1899908149-1004_Classes\CLSID\{5E71E4F3-E8C7-4906-9626-973E418762B6}\InprocServer32 -> C:\Users\Bartaz\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll (Facebook Inc.) CustomCLSID: HKU\S-1-5-21-1768184581-2917878914-1899908149-1004_Classes\CLSID\{62A0D750-DED9-448C-B693-406B34BB0892}\InprocServer32 -> C:\Users\Bartaz\AppData\Local\Google\Update\1.3.21.145\psuser.dll No File CustomCLSID: HKU\S-1-5-21-1768184581-2917878914-1899908149-1004_Classes\CLSID\{634059C0-D264-4B2C-AE80-F73E48D33E5B}\InprocServer32 -> C:\Users\Bartaz\AppData\Local\Google\Update\1.3.21.123\psuser.dll No File CustomCLSID: HKU\S-1-5-21-1768184581-2917878914-1899908149-1004_Classes\CLSID\{8B9F5BF4-0407-4BB2-9FED-4C0372DABD00}\localserver32 -> C:\Users\Bartaz\AppData\Local\Facebook\Video\Skype\FacebookVideoCallingProxy.exe (Skype Limited) CustomCLSID: HKU\S-1-5-21-1768184581-2917878914-1899908149-1004_Classes\CLSID\{91EFB276-CEFE-48EC-BB3A-57795A7B4008}\InprocServer32 -> C:\Users\Bartaz\AppData\Local\Google\Update\1.3.21.149\psuser.dll No File CustomCLSID: HKU\S-1-5-21-1768184581-2917878914-1899908149-1004_Classes\CLSID\{C5A2122B-A05B-4FD8-AE49-91990AE10998}\InprocServer32 -> C:\Users\Bartaz\AppData\Local\Google\Update\1.3.21.115\psuser.dll No File CustomCLSID: HKU\S-1-5-21-1768184581-2917878914-1899908149-1004_Classes\CLSID\{CBE9C57E-FFA9-4123-8354-AD360D6DD3CC}\InprocServer32 -> C:\Users\Bartaz\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited) CustomCLSID: HKU\S-1-5-21-1768184581-2917878914-1899908149-1004_Classes\CLSID\{FB994D36-B312-46CE-A40B-CF63980641F9}\InprocServer32 -> C:\Users\Bartaz\AppData\Local\Google\Update\1.3.21.111\psuser.dll No File ==================== Restore Points ========================= Could not list Restore Points. Check "winmgmt" service or repair WMI. ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2006-11-02 12:23 - 2006-09-18 23:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ::1 localhost ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {07168AA8-9349-415D-855B-62B542703DBD} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1768184581-2917878914-1899908149-1004Core => C:\Users\Bartaz\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-07-24] (Facebook Inc.) Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM Task: {22363FAB-EF55-4E0E-AADF-D8E9449F53A5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-26] (Adobe Systems Incorporated) Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation) Task: {50B9CBE9-75ED-4D99-8BAB-19EA7879104C} - System32\Tasks\AVG\PC Tuneup 2011\Integrator\Start On Bartaz Logon => C:\Program Files\AVG\AVG PC Tuneup 2011\BoostSpeed.exe [2011-01-20] (AVG) Task: {64F3CB5B-B1FC-453F-AD27-610E15928739} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-04-06] (Google Inc.) Task: {7FB9FECC-B984-49FE-8400-71DC97D3216E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-04-06] (Google Inc.) Task: {B51F2F40-C70E-41B3-AC9D-5E31C0CC4135} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation) Task: {B5A17ACA-D1EC-45B9-BB97-C67FC20B1CD0} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1768184581-2917878914-1899908149-1004UA => C:\Users\Bartaz\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-07-24] (Facebook Inc.) Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] () (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1768184581-2917878914-1899908149-1004Core.job => C:\Users\Bartaz\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1768184581-2917878914-1899908149-1004UA.job => C:\Users\Bartaz\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2010-11-08 20:57 - 2001-10-28 18:42 - 00116224 _____ () C:\Windows\System32\pdfcmnnt.dll 2009-03-05 18:39 - 2008-11-25 08:42 - 00244904 _____ () C:\Program Files\Cyberlink\Shared files\RichVideo.exe 2009-03-05 18:42 - 2008-01-04 05:23 - 00167936 _____ () C:\Program Files\Lenovo\OneKey App\System Repair\LenovoAPI.dll 2013-10-19 18:13 - 2012-10-22 11:21 - 01277952 _____ () C:\Program Files\PANDORA.TV\PanService\avformat-53.dll 2013-10-19 18:13 - 2012-07-09 17:57 - 02090496 _____ () C:\Program Files\PANDORA.TV\PanService\avcodec-53.dll 2013-10-19 18:13 - 2011-12-06 16:19 - 00133632 _____ () C:\Program Files\PANDORA.TV\PanService\avutil-51.dll 2013-10-19 18:13 - 2012-03-23 10:07 - 00224768 _____ () C:\Program Files\PANDORA.TV\PanService\libupnp.dll 2009-04-30 11:38 - 2009-04-30 11:38 - 01404928 _____ () C:\Windows\system32\IcnOvrly.dll 2009-04-30 11:38 - 2009-04-30 11:38 - 00507904 _____ () C:\Windows\system32\SimpleExt.dll 2008-08-26 21:48 - 2008-08-26 21:48 - 00126976 _____ () C:\Program Files\Lenovo\Bluetooth Software\btkeyind.dll 2011-08-14 20:04 - 2010-12-01 01:26 - 00350024 _____ () C:\Program Files\AVG\AVG PC Tuneup 2011\madExcept_.bpl 2011-08-14 20:04 - 2010-12-01 01:26 - 00184136 _____ () C:\Program Files\AVG\AVG PC Tuneup 2011\madBasic_.bpl 2011-08-14 20:04 - 2010-12-01 01:26 - 00050504 _____ () C:\Program Files\AVG\AVG PC Tuneup 2011\madDisAsm_.bpl 2009-04-30 11:38 - 2009-04-30 11:38 - 00487424 _____ () C:\Program Files\Lenovo\VeriFace\ChooseLang.dll 2009-04-30 11:47 - 2008-12-19 20:20 - 00063304 _____ () C:\Program Files\Lenovo\Energy Management\kbdhook.dll 2009-04-30 11:47 - 2008-12-19 20:20 - 00051016 _____ () C:\Program Files\Lenovo\Energy Management\HookLib.dll 2010-10-10 15:17 - 2008-12-23 14:41 - 00339968 _____ () C:\Program Files\Lenovo\OnekeyDM\OnekeyDM.exe 2009-07-13 17:37 - 2009-07-13 17:37 - 00152112 _____ () C:\Program Files\Common Files\Pure Networks Shared\Platform\CAntiVirusCOM.dll 2009-07-13 17:37 - 2009-07-13 17:37 - 00098304 _____ () C:\Program Files\Common Files\Pure Networks Shared\Platform\CFireWallCOM.dll 2013-08-29 02:23 - 2013-08-29 02:23 - 01861968 _____ () C:\Program Files\DivX\DivX Update\DivXUpdate.exe 2013-08-29 02:25 - 2013-08-29 02:25 - 00100688 _____ () C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll 2009-04-30 11:29 - 2009-04-30 11:28 - 00262144 _____ () C:\Windows\system32\SBarHook.dll 2014-07-30 02:10 - 2014-07-30 02:10 - 03800688 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll 2014-08-26 10:39 - 2014-08-26 10:39 - 17048240 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_179.dll 2012-09-06 21:25 - 2013-09-30 17:56 - 06314496 _____ () C:\Program Files\NapiProjekt\napisy.exe 2012-09-06 21:25 - 2008-06-22 11:58 - 00134656 _____ () C:\Program Files\NapiProjekt\chsdet.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\ProgramData\Temp:0B4227B4 ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\atashost => ""="Service" ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) MSCONFIG\Services: StarWindServiceAE => 2 MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" MSCONFIG\startupreg: ALLUpdate => "C:\Program Files\ALLPlayer\ALLUpdate.exe" "sleep" MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun MSCONFIG\startupreg: DivXUpdate => "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW MSCONFIG\startupreg: Google Update => "C:\Users\Bartaz\AppData\Local\Google\Update\GoogleUpdate.exe" /c MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\QTTask.exe" -atboottime MSCONFIG\startupreg: ReadyComm => C:\Program Files\Lenovo\ReadyComm\ReadyComm.exe -TrayMode MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun MSCONFIG\startupreg: Skytel => C:\Program Files\Realtek\Audio\HDA\Skytel.exe MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: WMPNSCFG => C:\Program Files\Windows Media Player\WMPNSCFG.exe ==================== Faulty Device Manager Devices ============= Could not list Devices. Check "winmgmt" service or repair WMI. ==================== Event log errors: ========================= Application errors: ================== Error: (08/29/2014 11:37:02 AM) (Source: MsiInstaller) (EventID: 10005) (User: ZARZĄDZANIE NT) Description: SA_Error1709: StandardAction(0xC00706AD): Produkt: AVG 2014 — Błąd 27046. CA_Error27046: SetWfpCallbacksAction(0xC007001C): Instalacja sterownika nie powiodła się Error: (08/29/2014 11:25:01 AM) (Source: WinMgmt) (EventID: 28) (User: ) Description: 0x8007007e Error: (08/29/2014 01:10:03 AM) (Source: WinMgmt) (EventID: 28) (User: ) Description: 0x8007007e Error: (08/29/2014 01:02:21 AM) (Source: MsiInstaller) (EventID: 10005) (User: ZARZĄDZANIE NT) Description: SA_Error1709: StandardAction(0xC00706AD): Produkt: AVG 2014 — Błąd 27046. CA_Error27046: SetWfpCallbacksAction(0xC007001C): Instalacja sterownika nie powiodła się Error: (08/29/2014 01:01:22 AM) (Source: MsiInstaller) (EventID: 11311) (User: ZARZĄDZANIE NT) Description: SA_Error1709: StandardAction(0xC00706AD): Produkt: AVG 2014 — Błąd 1311. SA_Error1311: StandardAction(0xC007051F): Nie znaleziono pliku źródłowego(archiwum): C:\ProgramData\AVG2014\SetupBackup\lng_esx.cab. Sprawdź, czy plik istnieje i czy masz do niego dostęp. Error: (08/29/2014 01:01:20 AM) (Source: MsiInstaller) (EventID: 11311) (User: ZARZĄDZANIE NT) Description: SA_Error1709: StandardAction(0xC00706AD): Produkt: AVG 2014 — Błąd 1311. SA_Error1311: StandardAction(0xC007051F): Nie znaleziono pliku źródłowego(archiwum): C:\ProgramData\AVG2014\SetupBackup\lng_ztx.cab. Sprawdź, czy plik istnieje i czy masz do niego dostęp. Error: (08/29/2014 01:01:19 AM) (Source: MsiInstaller) (EventID: 11311) (User: ZARZĄDZANIE NT) Description: SA_Error1709: StandardAction(0xC00706AD): Produkt: AVG 2014 — Błąd 1311. SA_Error1311: StandardAction(0xC007051F): Nie znaleziono pliku źródłowego(archiwum): C:\ProgramData\AVG2014\SetupBackup\lng_zhx.cab. Sprawdź, czy plik istnieje i czy masz do niego dostęp. Error: (08/29/2014 01:01:18 AM) (Source: MsiInstaller) (EventID: 11311) (User: ZARZĄDZANIE NT) Description: SA_Error1709: StandardAction(0xC00706AD): Produkt: AVG 2014 — Błąd 1311. SA_Error1311: StandardAction(0xC007051F): Nie znaleziono pliku źródłowego(archiwum): C:\ProgramData\AVG2014\SetupBackup\lng_trx.cab. Sprawdź, czy plik istnieje i czy masz do niego dostęp. Error: (08/29/2014 01:01:16 AM) (Source: MsiInstaller) (EventID: 11311) (User: ZARZĄDZANIE NT) Description: SA_Error1709: StandardAction(0xC00706AD): Produkt: AVG 2014 — Błąd 1311. SA_Error1311: StandardAction(0xC007051F): Nie znaleziono pliku źródłowego(archiwum): C:\ProgramData\AVG2014\SetupBackup\lng_rux.cab. Sprawdź, czy plik istnieje i czy masz do niego dostęp. Error: (08/29/2014 01:01:15 AM) (Source: MsiInstaller) (EventID: 11311) (User: ZARZĄDZANIE NT) Description: SA_Error1709: StandardAction(0xC00706AD): Produkt: AVG 2014 — Błąd 1311. SA_Error1311: StandardAction(0xC007051F): Nie znaleziono pliku źródłowego(archiwum): C:\ProgramData\AVG2014\SetupBackup\lng_msx.cab. Sprawdź, czy plik istnieje i czy masz do niego dostęp. System errors: ============= Error: (08/29/2014 11:27:51 AM) (Source: WMPNetworkSvc) (EventID: 14325) (User: ) Description: WMPNetworkSvc0x80070424 Error: (08/29/2014 11:26:56 AM) (Source: WMPNetworkSvc) (EventID: 14325) (User: ) Description: WMPNetworkSvc0x80070424 Error: (08/29/2014 11:26:15 AM) (Source: iaStor) (EventID: 9) (User: ) Description: Urządzenie \Device\Ide\iaStor0 nie odpowiedziało w ramach ustalonego limitu czasu. Error: (08/29/2014 11:25:53 AM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1001) (User: ZARZĄDZANIE NT) Description: 0x80070032 Error: (08/29/2014 01:12:09 AM) (Source: WMPNetworkSvc) (EventID: 14325) (User: ) Description: WMPNetworkSvc0x80070424 Error: (08/29/2014 01:12:02 AM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1001) (User: ZARZĄDZANIE NT) Description: 0x80070032 Error: (08/29/2014 01:10:41 AM) (Source: WMPNetworkSvc) (EventID: 14325) (User: ) Description: WMPNetworkSvc0x80070424 Error: (08/29/2014 00:52:57 AM) (Source: WMPNetworkSvc) (EventID: 14325) (User: ) Description: WMPNetworkSvc0x80070424 Error: (08/29/2014 00:51:40 AM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1001) (User: ZARZĄDZANIE NT) Description: 0x80070032 Error: (08/28/2014 00:09:46 PM) (Source: WMPNetworkSvc) (EventID: 14325) (User: ) Description: WMPNetworkSvc0x80070424 Microsoft Office Sessions: ========================= CodeIntegrity Errors: =================================== Date: 2014-08-29 11:54:21.430 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system. Date: 2014-08-29 11:54:21.053 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system. Date: 2014-08-29 11:54:20.529 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system. Date: 2014-08-29 11:54:20.055 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system. Date: 2014-08-29 11:54:19.482 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system. Date: 2014-08-29 11:54:19.073 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system. Date: 2014-08-29 11:54:18.624 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system. Date: 2014-08-29 11:54:18.244 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system. Date: 2014-08-29 11:46:35.436 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system. Date: 2014-08-29 11:46:34.901 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: Intel(R) Core(TM)2 Duo CPU T6400 @ 2.00GHz Percentage of memory in use: 67% Total physical RAM: 3057.68 MB Available physical RAM: 984.07 MB Total Pagefile: 6323.61 MB Available Pagefile: 4159.66 MB Total Virtual: 2047.88 MB Available Virtual: 1900.47 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:252.95 GB) (Free:139 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive d: (Lenovo) (Fixed) (Total:30.38 GB) (Free:25.24 GB) NTFS Drive o: () (Fixed) (Total:14.65 GB) (Free:6.17 GB) NTFS ==>[System with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 298.1 GB) (Disk ID: C3FFC3FF) Partition 1: (Active) - (Size=253 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=30.4 GB) - (Type=OF Extended) Partition 3: (Not Active) - (Size=14.8 GB) - (Type=07 NTFS) ==================== End Of Log ============================