Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-12-2014 Ran by User-PC at 2014-12-13 11:05:50 Running from K:\Temp\Wazne\FRST Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Norton Internet Security (Enabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB} AS: Norton Internet Security (Enabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Norton Internet Security (Enabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-2705356706-2563623633-1834157682-1001\...\uTorrent) (Version: 3.4.2.32126 - BitTorrent Inc.) 4500_G510nz_Help (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden 4500G510nz (x32 Version: 140.0.001.000 - Hewlett-Packard) Hidden 4500G510nz_Software_Min (x32 Version: 140.0.001.000 - Hewlett-Packard) Hidden 64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated) Akamai NetSession Interface (HKU\S-1-5-21-2705356706-2563623633-1834157682-1001\...\Akamai) (Version: - Akamai Technologies, Inc) Aktualizacje NVIDIA 16.13.69 (Version: 16.13.69 - NVIDIA Corporation) Hidden Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts) Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.4.2.23028 - Electronic Arts) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.00 - Piriform) Classic Shell (HKLM\...\{2368907C-E8F6-4750-A023-254C3E2B5E8D}) (Version: 4.0.4 - IvoSoft) CyberGhost 5 (HKLM\...\CyberGhost 5_is1) (Version: - CyberGhost S.R.L.) Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment) DocProc (x32 Version: 140.0.185.000 - Hewlett-Packard) Hidden eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden Fax (x32 Version: 140.0.307.000 - Hewlett-Packard) Hidden foobar2000 v1.3.1 (HKLM-x32\...\foobar2000) (Version: 1.3.1 - Peter Pawlowski) GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP) HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP) HP Officejet 4500 G510n-z 14.0 Rel. 6 (HKLM\...\{6B9B2E57-D988-4258-8A2C-6F3657A600BD}) (Version: 14.0 - HP) HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.13.1706 - Intel Corporation) Intel(R) Network Connections 18.5.54.0 (HKLM\...\PROSetDX) (Version: 18.5.54.0 - Intel) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3379 - Intel Corporation) Intel(R) Smart Connect Technology (HKLM\...\{5697D39B-AD89-489F-BA68-C9B0DB3FB047}) (Version: 4.2.40.2357 - Intel Corporation) iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.) Java 8 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418025F0}) (Version: 8.0.250 - Oracle Corporation) Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation) Java 8 Update 5 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418005FF}) (Version: 8.0.50 - Oracle Corporation) Java SE Development Kit 8 Update 5 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180050}) (Version: 8.0.50 - Oracle Corporation) JDownloader (HKLM-x32\...\JDownloader) (Version: - AppWork UG (haftungsbeschränkt)) Logitech Gaming Software 8.51 (HKLM\...\Logitech Gaming Software) (Version: 8.51.5 - Logitech Inc.) Logitech SetPoint 6.65 (HKLM\...\sp6) (Version: 6.65.62 - Logitech) MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden marvell 91xx driver (HKLM-x32\...\MagniDriver) (Version: 1.2.0.1019 - Marvell) Marvell Storage Utility V4 (HKLM-x32\...\mvMSU) (Version: 4.1.0.2010 - Marvell) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office Language Pack 2013 - Polish/Polski (HKLM\...\Office15.OMUI.pl-pl) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Office Professional Plus 2013 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 15.0.4667.1002 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.31010.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Middle-earth: Shadow of Mordor (HKLM-x32\...\Steam App 241930) (Version: - Monolith Productions, Inc.) Mozilla Firefox 34.0 (x86 pl) (HKLM-x32\...\Mozilla Firefox 34.0 (x86 pl)) (Version: 34.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla) Mozilla Thunderbird 24.3.0 (x86 pl) (HKLM-x32\...\Mozilla Thunderbird 24.3.0 (x86 pl)) (Version: 24.3.0 - Mozilla) Mozilla Thunderbird 24.6.0 (x86 pl) (HKU\S-1-5-21-2705356706-2563623633-1834157682-1001\...\Mozilla Thunderbird 24.6.0 (x86 pl)) (Version: 24.6.0 - Mozilla) Narzędzia sprawdzające pakietu Microsoft Office 2013 — polski (HKLM\...\{90150000-001F-0415-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Nero 2015 (HKLM-x32\...\{763EF8DC-4CC0-47CA-BE1C-BDE731462250}) (Version: 16.0.02900 - Nero AG) Nero Info (HKLM-x32\...\{B791E0AB-87A9-41A4-8D98-D13C2E37D928}) (Version: 16.0.1003 - Nero AG) Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden Norton Internet Security (HKLM-x32\...\NIS) (Version: 21.6.0.32 - Symantec Corporation) NVIDIA GeForce Experience 2.1.4.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.4.1 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.32.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.32.1 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 344.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 344.75 - NVIDIA Corporation) NVIDIA Wirtualny dźwięk Miracast 344.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 344.75 - NVIDIA Corporation) Obsługa programów Apple (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.) OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP) Office 15 Click-to-Run Extensibility Component (Version: 15.0.4667.1002 - Microsoft Corporation) Hidden Office 15 Click-to-Run Licensing Component (Version: 15.0.4667.1002 - Microsoft Corporation) Hidden Office 15 Click-to-Run Localization Component (Version: 15.0.4667.1002 - Microsoft Corporation) Hidden Oprogramowanie Logitech Unifying 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech) Origin (HKLM-x32\...\Origin) (Version: 9.4.5.195 - Electronic Arts, Inc.) PerfectDisk Professional Business (HKLM\...\{682B22AB-EAAA-4B1C-83AF-B26E7D4ED01E}) (Version: 13.0.783 - Raxco Software Inc.) Prerequisite installer (x32 Version: 16.0.0000 - Nero AG) Hidden PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7058 - Realtek Semiconductor Corp.) ROCCAT Kave XTD (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392016206}) (Version: - Roccat GmbH) ROG CrystalDiskMark (HKLM-x32\...\{A4E566E9-D704-4DB4-8FBB-0CCA4A4C07E5}) (Version: 3.0.2 - ASUSTeK Computer Inc.) ROG HybriDisk (HKLM-x32\...\ROG HybriDisk) (Version: 1.06.06 - FNet Co., Ltd.) ROG RAMDisk (HKLM-x32\...\{DE8C1883-4F14-40DF-8C8C-376157ADF5A3}) (Version: 2.01.03 - ASUSTeK Computer Inc.) Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.3.0 - Samsung Electronics) Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0100-0415-1000-0000000FF1CE}_Office15.OMUI.pl-pl_{513D7A84-24BD-4C9C-BA54-03E1AC58B3DD}) (Version: - Microsoft) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden SHIELD Streaming (Version: 3.1.2000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 16.13.69 - NVIDIA Corporation) Hidden Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP) Skype™ 6.21 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.) Smart Technology Programming Software 7.0.27.13 (HKLM\...\{BD90BC1C-115D-47E1-B85C-07AE182C3AB8}) (Version: 7.0.27.13 - Mad Catz) SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation) TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - ) The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version: - Ubisoft) Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden Ultra Defragmenter (HKLM-x32\...\UltraDefrag) (Version: 6.0.2 - UltraDefrag Development Team) Uplay (HKLM-x32\...\Uplay) (Version: 4.2 - Ubisoft) VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN) WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) ==================== Restore Points ========================= 26-11-2014 19:13:41 Windows Update 05-12-2014 17:08:56 Scheduled Checkpoint 09-12-2014 23:03:10 Windows Update 12-12-2014 17:10:25 Removed Java 7 Update 67 ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2013-08-22 13:25 - 2014-12-13 09:09 - 00001503 _RASH C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost 85.25.79.92 www.google-analytics.com. 85.25.79.92 google-analytics.com. 85.25.79.92 connect.facebook.net. 195.162.69.252 www.google-analytics.com. 195.162.69.252 google-analytics.com. 195.162.69.252 connect.facebook.net. 85.25.107.101 www.google-analytics.com. 85.25.107.101 google-analytics.com. 85.25.107.101 connect.facebook.net. ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {18B5FF31-D1B2-4AE3-A7A6-EACB94FE1F23} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-11-21] (Piriform Ltd) Task: {28864AA7-A36C-4283-B303-322AF2F97495} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2014-07-21] (Nero AG) Task: {48020F97-6304-499F-98DB-E749AA83181D} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2014-10-07] (Microsoft Corporation) Task: {48112C7C-0ADD-4203-9C6E-9FE9FD7F459A} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\WSCStub.exe [2014-09-21] (Symantec Corporation) Task: {490E75EC-A39F-40BB-AAB8-1AB4FF07B786} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-13] (Adobe Systems Incorporated) Task: {6BA89DCA-2163-4ACC-A09A-3FDC4E6ECF3B} - System32\Tasks\Norton Identity Safe\Norton Error Analyzer => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.6.0.27\SymErr.exe Task: {8684B116-0ED0-419F-BF39-BD08C7ED34D7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\Root\Office15\msoia.exe [2014-10-07] (Microsoft Corporation) Task: {8A4E7231-8C00-4158-A528-1D2303D6296C} - System32\Tasks\{78303051-A97D-46F8-A129-565C8D318CCE} => pcalua.exe -a C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_15_0_0_246_Plugin.exe -c -maintain plugin Task: {8CFABC9C-2374-4B00-A860-F69F59B98FCF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\Root\Office15\msoia.exe [2014-10-07] (Microsoft Corporation) Task: {8DE82086-91D1-4C4B-8FFC-87EC8673FA3F} - System32\Tasks\ASUS\RamDisk => C:\Program Files (x86)\ASUS\ROG RAMDisk\loadImage.exe [2013-09-26] () Task: {A9A447EF-87CC-4839-891E-8A6617CCA163} - System32\Tasks\Norton Identity Safe\Norton Error Processor => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.6.0.27\SymErr.exe Task: {C47A7B77-16DA-4993-BDFF-C6F803E13425} - System32\Tasks\{E05BB42C-77A2-4EC7-8E51-A988B525AED3} => pcalua.exe -a "C:\Temp\Logitech\Windows 8\unifying210.exe" -d "C:\Temp\Logitech\Windows 8" Task: {CDBAA962-0451-483D-A30D-F811205AA738} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-12-09] (Microsoft Corporation) Task: {D8DADFC1-A02E-4E76-A77E-A14E8B6A543F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {E65F0BE3-13FA-41FE-8B2B-E03CC9AB023F} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation) Task: {ED5F2344-6A2B-4366-937B-273A6F95AABD} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ==================== Loaded Modules (whitelisted) ============= 2014-11-21 17:18 - 2014-11-12 21:56 - 00118080 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2014-02-22 09:42 - 2013-07-04 03:32 - 00936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe 2014-11-18 18:01 - 2014-09-23 13:36 - 08897696 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\1033\GrooveIntlResource.dll 2014-12-06 13:36 - 2014-12-06 13:36 - 02736640 _____ () C:\ProgramData\Microsoft\Secure\Icons\SecureIconsProvider.dll 2014-12-06 13:36 - 2014-12-06 13:36 - 02246144 _____ () C:\ProgramData\Microsoft\Secure\Icons\IconsCacheHelper.dll 2014-06-02 17:05 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll 2013-06-27 10:05 - 2013-06-27 10:05 - 00196584 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe 2013-06-27 10:05 - 2013-06-27 10:05 - 00054760 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll 2013-06-27 10:05 - 2013-06-27 10:05 - 00034792 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTNetMon.dll 2014-02-22 15:36 - 2014-11-10 19:28 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2014-11-21 17:18 - 2014-11-12 21:56 - 00061128 _____ () C:\Program Files\NVIDIA Corporation\Display\nvSmartMaxApp64.exe 2014-11-21 17:18 - 2014-11-12 21:56 - 00061128 _____ () C:\Program Files\NVIDIA Corporation\Display\nvSmartMaxApp.exe 2013-12-21 00:02 - 2013-12-21 00:02 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2014-11-21 21:31 - 2013-06-21 11:01 - 00109848 _____ () C:\Windows\SYSTEM32\AcpiServiceVnA64.dll 2014-11-21 21:31 - 2013-08-20 17:37 - 00605496 _____ () C:\Windows\SYSTEM32\audioLibVc.dll 2012-04-09 01:47 - 2012-04-09 01:47 - 01219432 _____ () C:\Program Files (x86)\Marvell\storage\tray\MarvellTray.exe 2014-02-06 00:52 - 2014-02-06 00:52 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2014-10-11 12:05 - 2014-10-11 12:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2014-02-22 09:42 - 2014-12-13 10:51 - 00034304 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll 2014-02-22 09:42 - 2013-07-04 03:32 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll 2011-11-22 02:48 - 2011-11-22 02:48 - 00073782 _____ () C:\Program Files (x86)\Marvell\storage\Apache2\bin\zlib1.dll 2014-11-21 17:18 - 2014-11-12 21:56 - 00106824 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll 2014-02-22 12:16 - 2013-08-08 13:23 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) HKLM\...\StartupApproved\StartupFolder: => "ISCTSystray.lnk" HKLM\...\StartupApproved\StartupFolder: => "HP Digital Imaging Monitor.lnk" HKLM\...\StartupApproved\Run: => "Launch LCore" HKLM\...\StartupApproved\Run32: => "ROG HybriDisk" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "UpdReg" HKLM\...\StartupApproved\Run32: => "iTunesHelper" HKLM\...\StartupApproved\Run32: => "HP Software Update" HKU\S-1-5-21-2705356706-2563623633-1834157682-1001\...\StartupApproved\StartupFolder: => "Logitech . Rejestracja produktu.lnk" HKU\S-1-5-21-2705356706-2563623633-1834157682-1001\...\StartupApproved\StartupFolder: => "Torpedo.lnk" HKU\S-1-5-21-2705356706-2563623633-1834157682-1001\...\StartupApproved\Run: => "SearchProtection" HKU\S-1-5-21-2705356706-2563623633-1834157682-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-2705356706-2563623633-1834157682-1001\...\StartupApproved\Run: => "YTPack" HKU\S-1-5-21-2705356706-2563623633-1834157682-1001\...\StartupApproved\Run: => "Ujmedia" ========================= Accounts: ========================== Administrator (S-1-5-21-2705356706-2563623633-1834157682-500 - Administrator - Disabled) Guest (S-1-5-21-2705356706-2563623633-1834157682-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2705356706-2563623633-1834157682-1003 - Limited - Enabled) User-PC (S-1-5-21-2705356706-2563623633-1834157682-1001 - Administrator - Enabled) => C:\Users\User-PC ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (12/13/2014 10:51:48 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: DllHost.exe, wersja: 6.3.9600.16384, sygnatura czasowa: 0x5215dfc6 Nazwa modułu powodującego błąd: mfmp4srcsnk.dll, wersja: 12.0.9600.17334, sygnatura czasowa: 0x5407ae99 Kod wyjątku: 0xc0000094 Przesunięcie błędu: 0x0000000000096125 Identyfikator procesu powodującego błąd: 0x1590 Godzina uruchomienia aplikacji powodującej błąd: 0xDllHost.exe0 Ścieżka aplikacji powodującej błąd: DllHost.exe1 Ścieżka modułu powodującego błąd: DllHost.exe2 Identyfikator raportu: DllHost.exe3 Pełna nazwa pakietu powodującego błąd: DllHost.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: DllHost.exe5 Error: (12/13/2014 10:51:47 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: DllHost.exe, wersja: 6.3.9600.16384, sygnatura czasowa: 0x5215dfc6 Nazwa modułu powodującego błąd: mfmp4srcsnk.dll, wersja: 12.0.9600.17334, sygnatura czasowa: 0x5407ae99 Kod wyjątku: 0xc0000094 Przesunięcie błędu: 0x0000000000096125 Identyfikator procesu powodującego błąd: 0xa90 Godzina uruchomienia aplikacji powodującej błąd: 0xDllHost.exe0 Ścieżka aplikacji powodującej błąd: DllHost.exe1 Ścieżka modułu powodującego błąd: DllHost.exe2 Identyfikator raportu: DllHost.exe3 Pełna nazwa pakietu powodującego błąd: DllHost.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: DllHost.exe5 Error: (12/13/2014 10:51:44 AM) (Source: Apache Service) (EventID: 3299) (User: ) Description: The Apache service named reported the following error: >>> httpd.exe: Could not reliably determine the server's fully qualified domain name, using 169.254.123.149 for ServerName . Error: (12/13/2014 10:50:59 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: DllHost.exe, wersja: 6.3.9600.16384, sygnatura czasowa: 0x5215dfc6 Nazwa modułu powodującego błąd: mfmp4srcsnk.dll, wersja: 12.0.9600.17334, sygnatura czasowa: 0x5407ae99 Kod wyjątku: 0xc0000094 Przesunięcie błędu: 0x0000000000096125 Identyfikator procesu powodującego błąd: 0xf54 Godzina uruchomienia aplikacji powodującej błąd: 0xDllHost.exe0 Ścieżka aplikacji powodującej błąd: DllHost.exe1 Ścieżka modułu powodującego błąd: DllHost.exe2 Identyfikator raportu: DllHost.exe3 Pełna nazwa pakietu powodującego błąd: DllHost.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: DllHost.exe5 Error: (12/13/2014 10:47:47 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: DllHost.exe, wersja: 6.3.9600.16384, sygnatura czasowa: 0x5215dfc6 Nazwa modułu powodującego błąd: mfmp4srcsnk.dll, wersja: 12.0.9600.17334, sygnatura czasowa: 0x5407ae99 Kod wyjątku: 0xc0000094 Przesunięcie błędu: 0x0000000000096125 Identyfikator procesu powodującego błąd: 0x1e14 Godzina uruchomienia aplikacji powodującej błąd: 0xDllHost.exe0 Ścieżka aplikacji powodującej błąd: DllHost.exe1 Ścieżka modułu powodującego błąd: DllHost.exe2 Identyfikator raportu: DllHost.exe3 Pełna nazwa pakietu powodującego błąd: DllHost.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: DllHost.exe5 Error: (12/13/2014 10:45:08 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: DllHost.exe, wersja: 6.3.9600.16384, sygnatura czasowa: 0x5215dfc6 Nazwa modułu powodującego błąd: mfmp4srcsnk.dll, wersja: 12.0.9600.17334, sygnatura czasowa: 0x5407ae99 Kod wyjątku: 0xc0000094 Przesunięcie błędu: 0x0000000000096125 Identyfikator procesu powodującego błąd: 0x1c08 Godzina uruchomienia aplikacji powodującej błąd: 0xDllHost.exe0 Ścieżka aplikacji powodującej błąd: DllHost.exe1 Ścieżka modułu powodującego błąd: DllHost.exe2 Identyfikator raportu: DllHost.exe3 Pełna nazwa pakietu powodującego błąd: DllHost.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: DllHost.exe5 Error: (12/13/2014 10:45:02 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: DllHost.exe, wersja: 6.3.9600.16384, sygnatura czasowa: 0x5215dfc6 Nazwa modułu powodującego błąd: mfmp4srcsnk.dll, wersja: 12.0.9600.17334, sygnatura czasowa: 0x5407ae99 Kod wyjątku: 0xc0000094 Przesunięcie błędu: 0x0000000000096125 Identyfikator procesu powodującego błąd: 0x1f50 Godzina uruchomienia aplikacji powodującej błąd: 0xDllHost.exe0 Ścieżka aplikacji powodującej błąd: DllHost.exe1 Ścieżka modułu powodującego błąd: DllHost.exe2 Identyfikator raportu: DllHost.exe3 Pełna nazwa pakietu powodującego błąd: DllHost.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: DllHost.exe5 Error: (12/13/2014 10:44:57 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: DllHost.exe, wersja: 6.3.9600.16384, sygnatura czasowa: 0x5215dfc6 Nazwa modułu powodującego błąd: mfmp4srcsnk.dll, wersja: 12.0.9600.17334, sygnatura czasowa: 0x5407ae99 Kod wyjątku: 0xc0000094 Przesunięcie błędu: 0x0000000000096125 Identyfikator procesu powodującego błąd: 0x10d0 Godzina uruchomienia aplikacji powodującej błąd: 0xDllHost.exe0 Ścieżka aplikacji powodującej błąd: DllHost.exe1 Ścieżka modułu powodującego błąd: DllHost.exe2 Identyfikator raportu: DllHost.exe3 Pełna nazwa pakietu powodującego błąd: DllHost.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: DllHost.exe5 Error: (12/13/2014 10:44:50 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: DllHost.exe, wersja: 6.3.9600.16384, sygnatura czasowa: 0x5215dfc6 Nazwa modułu powodującego błąd: mfmp4srcsnk.dll, wersja: 12.0.9600.17334, sygnatura czasowa: 0x5407ae99 Kod wyjątku: 0xc0000094 Przesunięcie błędu: 0x0000000000096125 Identyfikator procesu powodującego błąd: 0x1f28 Godzina uruchomienia aplikacji powodującej błąd: 0xDllHost.exe0 Ścieżka aplikacji powodującej błąd: DllHost.exe1 Ścieżka modułu powodującego błąd: DllHost.exe2 Identyfikator raportu: DllHost.exe3 Pełna nazwa pakietu powodującego błąd: DllHost.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: DllHost.exe5 Error: (12/13/2014 10:27:42 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: DllHost.exe, wersja: 6.3.9600.16384, sygnatura czasowa: 0x5215dfc6 Nazwa modułu powodującego błąd: mfmp4srcsnk.dll, wersja: 12.0.9600.17334, sygnatura czasowa: 0x5407ae99 Kod wyjątku: 0xc0000094 Przesunięcie błędu: 0x0000000000096125 Identyfikator procesu powodującego błąd: 0x1c98 Godzina uruchomienia aplikacji powodującej błąd: 0xDllHost.exe0 Ścieżka aplikacji powodującej błąd: DllHost.exe1 Ścieżka modułu powodującego błąd: DllHost.exe2 Identyfikator raportu: DllHost.exe3 Pełna nazwa pakietu powodującego błąd: DllHost.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: DllHost.exe5 System errors: ============= Error: (12/13/2014 10:51:03 AM) (Source: DCOM) (EventID: 10010) (User: PC) Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39} Error: (12/13/2014 10:51:03 AM) (Source: DCOM) (EventID: 10010) (User: PC) Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39} Error: (12/13/2014 10:37:48 AM) (Source: DCOM) (EventID: 10010) (User: PC) Description: {1B1F472E-3221-4826-97DB-2C2324D389AE} Error: (12/13/2014 10:37:18 AM) (Source: DCOM) (EventID: 10010) (User: PC) Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Error: (12/13/2014 10:28:13 AM) (Source: DCOM) (EventID: 10010) (User: PC) Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Error: (12/13/2014 10:27:43 AM) (Source: DCOM) (EventID: 10010) (User: PC) Description: {1B1F472E-3221-4826-97DB-2C2324D389AE} Error: (12/12/2014 05:02:16 PM) (Source: DCOM) (EventID: 10010) (User: PC) Description: {3EEF301F-B596-4C0B-BD92-013BEAFCE793} Error: (12/12/2014 05:01:42 PM) (Source: DCOM) (EventID: 10010) (User: PC) Description: {3EEF301F-B596-4C0B-BD92-013BEAFCE793} Microsoft Office Sessions: ========================= Error: (12/13/2014 10:51:48 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: DllHost.exe6.3.9600.163845215dfc6mfmp4srcsnk.dll12.0.9600.173345407ae99c00000940000000000096125159001d016c2cb3bd206C:\Windows\system32\DllHost.exeC:\Windows\System32\mfmp4srcsnk.dll0939ef9c-82b6-11e4-8450-ac220b4f6a1b Error: (12/13/2014 10:51:47 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: DllHost.exe6.3.9600.163845215dfc6mfmp4srcsnk.dll12.0.9600.173345407ae99c00000940000000000096125a9001d016c2c916ce68C:\Windows\system32\DllHost.exeC:\Windows\System32\mfmp4srcsnk.dll083aee94-82b6-11e4-8450-ac220b4f6a1b Error: (12/13/2014 10:51:44 AM) (Source: Apache Service) (EventID: 3299) (User: ) Description: The Apache service namedreported the following error: >>>httpd.exe: Could not reliably determine the server's fully qualified domain name, using 169.254.123.149 for ServerName Error: (12/13/2014 10:50:59 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: DllHost.exe6.3.9600.163845215dfc6mfmp4srcsnk.dll12.0.9600.173345407ae99c00000940000000000096125f5401d016c2ae262f9bC:\Windows\system32\DllHost.exeC:\Windows\System32\mfmp4srcsnk.dllec1957ee-82b5-11e4-844f-ac220b4f6a1b Error: (12/13/2014 10:47:47 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: DllHost.exe6.3.9600.163845215dfc6mfmp4srcsnk.dll12.0.9600.173345407ae99c000009400000000000961251e1401d016c23b87da72C:\Windows\system32\DllHost.exeC:\Windows\System32\mfmp4srcsnk.dll79392b29-82b5-11e4-844f-ac220b4f6a1b Error: (12/13/2014 10:45:08 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: DllHost.exe6.3.9600.163845215dfc6mfmp4srcsnk.dll12.0.9600.173345407ae99c000009400000000000961251c0801d016c1db842ba6C:\Windows\system32\DllHost.exeC:\Windows\System32\mfmp4srcsnk.dll1a85b106-82b5-11e4-844f-ac220b4f6a1b Error: (12/13/2014 10:45:02 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: DllHost.exe6.3.9600.163845215dfc6mfmp4srcsnk.dll12.0.9600.173345407ae99c000009400000000000961251f5001d016c1d7fde68fC:\Windows\system32\DllHost.exeC:\Windows\System32\mfmp4srcsnk.dll16f5e023-82b5-11e4-844f-ac220b4f6a1b Error: (12/13/2014 10:44:57 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: DllHost.exe6.3.9600.163845215dfc6mfmp4srcsnk.dll12.0.9600.173345407ae99c0000094000000000009612510d001d016c1d3c22ca5C:\Windows\system32\DllHost.exeC:\Windows\System32\mfmp4srcsnk.dll141053fe-82b5-11e4-844f-ac220b4f6a1b Error: (12/13/2014 10:44:50 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: DllHost.exe6.3.9600.163845215dfc6mfmp4srcsnk.dll12.0.9600.173345407ae99c000009400000000000961251f2801d016c1cfefab11C:\Windows\system32\DllHost.exeC:\Windows\System32\mfmp4srcsnk.dll0fc09f12-82b5-11e4-844f-ac220b4f6a1b Error: (12/13/2014 10:27:42 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: DllHost.exe6.3.9600.163845215dfc6mfmp4srcsnk.dll12.0.9600.173345407ae99c000009400000000000961251c9801d016bf6d26edbdC:\Windows\system32\DllHost.exeC:\Windows\System32\mfmp4srcsnk.dllaaedb40a-82b2-11e4-844f-ac220b4f6a1b CodeIntegrity Errors: =================================== Date: 2014-06-23 18:46:49.933 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\LHidFilt.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-06-23 18:46:49.753 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\LHidFilt.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-06-23 18:46:49.546 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\LHidEqd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-06-23 18:46:49.498 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\LHidEqd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i7-4770K CPU @ 3.50GHz Percentage of memory in use: 10% Total physical RAM: 16255.76 MB Available physical RAM: 14574.62 MB Total Pagefile: 18687.76 MB Available Pagefile: 16668.55 MB Total Virtual: 131072 MB Available Virtual: 131071.8 MB ==================== Drives ================================ Drive c: (Windows 8.1 R) (Fixed) (Total:222.91 GB) (Free:50.54 GB) NTFS Drive d: (SSD1) (Fixed) (Total:238.47 GB) (Free:176.07 GB) NTFS Drive e: (SSD2) (Fixed) (Total:238.47 GB) (Free:238.32 GB) NTFS Drive f: (1Dysk_1) (Fixed) (Total:467.28 GB) (Free:225.15 GB) NTFS Drive g: (1Dysk_2) (Fixed) (Total:464.23 GB) (Free:457.05 GB) NTFS Drive h: (2Disk_1 ) (Fixed) (Total:231.3 GB) (Free:146.58 GB) NTFS Drive i: (2Disk_2) (Fixed) (Total:231.46 GB) (Free:189.22 GB) NTFS Drive j: (2Disk_3) (Fixed) (Total:230.47 GB) (Free:120.38 GB) NTFS Drive k: (2Disk_4) (Fixed) (Total:238.28 GB) (Free:96.41 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 223.4 GB) (Disk ID: 56A6AB45) Partition: GPT Partition Type. ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 1FD6A01C) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=42) ======================================================== Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: E87EB4B6) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=42) ======================================================== Disk: 3 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: AF1B6FFC) Partition 1: (Not Active) - (Size=238.5 GB) - (Type=07 NTFS) ======================================================== Disk: 4 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 227FBECA) Partition 1: (Active) - (Size=238.5 GB) - (Type=07 NTFS) ==================== End Of Log ============================