Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-12-2014 Ran by Nowik at 2014-12-14 18:28:16 Running from C:\Users\Nowik\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 7-Zip 9.20 (HKLM-x32\...\{23170F69-40C1-2701-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.356 - Adobe Systems Incorporated) Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated) AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.55.1350, 16.06.2014 - AIMP DevTeam) Aktualizacje NVIDIA 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation) Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Atheros Communications Inc.) Avast Free Antivirus (HKLM-x32\...\avast) (Version: 10.0.2208 - AVAST Software) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB) BitTorrent (HKU\S-1-5-21-1751098283-2581091257-1606318300-1002\...\BitTorrent) (Version: 7.9.2.35704 - BitTorrent Inc.) CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform) ChomikBox (HKLM-x32\...\{26050F54-3928-4D9C-849A-C48A9E831E6F}) (Version: 2.0.5.0 - Chomikuj.pl) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd) Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.16 - Dolby Laboratories Inc) EA Sports FIFA World (HKLM-x32\...\{8F9AC744-EEF6-43DB-A4B6-FA1A18F1C640}) (Version: 9.2.0.56703 - Electronic Arts, Inc.) Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 8.0.2.4 - Lenovo) Energy Management (x32 Version: 8.0.2.4 - Lenovo) Hidden Euro Truck Simulator 2 v1.14.2s (18 DLC) (HKLM-x32\...\Euro Truck Simulator 2 v1.14.2s (18 DLC)1.14.2s) (Version: 1.14.2s - Friends in War) Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.) Google Update Helper (x32 Version: 1.3.23.0 - BonanzaDeals) Hidden <==== ATTENTION GTA III version 1.1 (HKLM-x32\...\GTA III_is1) (Version: 1.1 - ) Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.4.1001 - Intel Corporation) Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation) Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0333}) (Version: 1.12.824.1 - Vimicro) Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.0710 - CyberLink Corp.) Lenovo OneKey Recovery (Version: 8.0.0.0710 - CyberLink Corp.) Hidden Lenovo pointing device (HKLM\...\Elantech) (Version: 11.4.3.3 - ELAN Microelectronic Corp.) Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4310.52 - CyberLink Corp.) Lenovo PowerDVD10 (x32 Version: 10.0.4310.52 - CyberLink Corp.) Hidden Lenovo Solution Center (HKLM\...\{1E939186-B443-4262-A278-3C82949EA7AC}) (Version: 1.1.009.00 - Lenovo Group Limited) Lenovo YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.1.3127 - CyberLink Corp.) Lenovo YouCam (x32 Version: 4.1.3127 - CyberLink Corp.) Hidden Manager polaczen (HKLM-x32\...\{C6443124-DB4E-4465-A6DC-09C8E2AB57BC}) (Version: 4.2.102 - OrangeBusinessServices) Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Minecraft1.7.2 (HKLM-x32\...\Minecraft1.7.2) (Version: - ) Mozilla Firefox 34.0.5 (x86 pl) (HKLM-x32\...\Mozilla Firefox 34.0.5 (x86 pl)) (Version: 34.0.5 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0a2 - Mozilla) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Need For Speed™ World (HKLM-x32\...\{3AF1B16A-7DC9-4C80-BAEC-70B088A7C5B8}) (Version: 1.0.0.0 - Electronic Arts) NVIDIA Oprogramowanie systemu PhysX 9.12.0613 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0613 - NVIDIA Corporation) NVIDIA Sterownik graficzny 327.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.62 - NVIDIA Corporation) Orange Free (HKLM-x32\...\{BEWINTERNET-PL-IEW}.UninstallSuite) (Version: - ) Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.) Panel sterowania NVIDIA 327.62 (Version: 327.62 - NVIDIA Corporation) Hidden Plants vs. Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.) Podręcznik użytkownika (x32 Version: 1.0.0.9 - Lenovo) Hidden Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.9109 - CyberLink Corp.) Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.206 - Nazwa firmy) Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros) Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.39030 - Realtek Semiconductor Corp.) Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.) SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH) The Sims 2: Ultimate Collection (HKLM-x32\...\{04450C18-F039-4B81-A621-70C3B0F523D5}) (Version: 1.0.0.0 - Electronic Arts) Unity Web Player (HKU\S-1-5-21-1751098283-2581091257-1606318300-1002\...\UnityWebPlayer) (Version: 4.5.1f3 - Unity Technologies ApS) UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.9 - Lenovo) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN) WinRAR 4.20 (32-bitowy) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-1751098283-2581091257-1606318300-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation) ==================== Restore Points ========================= 06-12-2014 20:12:02 Zaplanowany punkt kontrolny 08-12-2014 12:18:18 Instalator modułów systemu Windows 11-12-2014 20:06:46 Removed Dolby Advanced Audio v2 ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {05A575BF-9295-43A0-A191-6E8FF2B32290} - \AmiUpdXp No Task File <==== ATTENTION Task: {0B389969-2192-4527-96EF-001FA46D4D6B} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-11] (Adobe Systems Incorporated) Task: {2ADD2D82-2BA1-4D4E-AC87-83667000FA32} - System32\Tasks\MirageAgent => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27] (CyberLink) Task: {338CE08B-37B8-4182-A0F8-15DB86DBE9A9} - System32\Tasks\{425E6285-AE1A-42C3-95E1-5E323E7BF4B9} => pcalua.exe -a "C:\Program Files (x86)\BonanzaDeals\uninst.exe" -c /uninstall Task: {3C330496-10FD-480F-81FD-92438255636E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-12-11] (Microsoft Corporation) Task: {3E9AF3E2-34A1-4903-963C-E00E3C8F49B5} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2012-08-08] () Task: {4B8D59CF-3D70-4768-B1BF-026152371C48} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-08] (Google Inc.) Task: {6069882B-6FFD-4ED6-9BE4-A827C0D2991A} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2012-08-08] () Task: {61876FFE-B62A-470B-9104-9B5C5543A052} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\lsc.exe [2012-08-08] () Task: {72B397E6-C481-4D2F-9CBE-93C1BF35020C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-08] (Google Inc.) Task: {766089DE-D4D8-4999-9804-AD1C1BC0D91E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-10-29] (Piriform Ltd) Task: {775C716D-F3CB-48BA-A1E7-D91DF1FF146F} - System32\Tasks\LaunchSignup => C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe <==== ATTENTION Task: {8F41DC2E-BE73-4049-B453-4D887A4C7E99} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1751098283-2581091257-1606318300-1002UA => C:\Users\Nowik\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-04-09] (Facebook Inc.) Task: {A6DB00D2-794D-473C-A22C-5D21F2EA862F} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc Task: {AF250ECA-8918-4FEB-90ED-B5A9925FD9CB} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2012-08-08] (Lenovo) Task: {D13150D9-BA13-422E-9EAF-BC53448F2A25} - System32\Tasks\OFFICE2010ACT => C:\ProgramData\Microsoft\Windows\OFFICEICON.vbs [2012-03-08] () Task: {E4EF3610-E845-4398-8A21-F9D648BD63F6} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-12-01] (AVAST Software) Task: {F73D2DA5-8A17-430D-8DBE-F8737787D882} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1751098283-2581091257-1606318300-1002Core => C:\Users\Nowik\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-04-09] (Facebook Inc.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1751098283-2581091257-1606318300-1002Core.job => C:\Users\Nowik\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1751098283-2581091257-1606318300-1002UA.job => C:\Users\Nowik\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2013-12-26 19:42 - 2013-12-26 19:42 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll 2012-12-13 12:31 - 2012-12-13 12:31 - 00195536 _____ () C:\Program Files (x86)\OrangeBusinessServices\Manager polaczen\{ad30a369-08e3-414c-9d2c-7f47dbe748da}\BEWConfigSrv.exe 2010-01-30 01:40 - 2010-01-30 01:40 - 04254560 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2014-10-23 20:19 - 2014-10-23 20:19 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll 2014-12-14 12:42 - 2014-12-14 12:42 - 02908160 _____ () C:\Program Files\AVAST Software\Avast\defs\14121400\algo.dll 2014-12-01 20:40 - 2014-12-01 20:40 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2014-10-13 19:10 - 2011-02-23 10:11 - 00040960 _____ () C:\Program Files (x86)\OrangeBS\BEWInternet-PL-IEW\Launcher\WatchClient.dll 2014-10-13 19:10 - 2011-02-23 10:11 - 00548864 _____ () C:\Program Files (x86)\OrangeBS\BEWInternet-PL-IEW\Launcher\Plugins\PluginLnhHotspotLocator.dll 2014-10-13 19:10 - 2009-08-31 15:23 - 00294912 _____ () C:\Program Files (x86)\OrangeBS\BEWInternet-PL-IEW\Launcher\Sqlite3.dll 2014-10-13 19:10 - 2011-02-23 10:11 - 00712704 _____ () C:\Program Files (x86)\OrangeBS\BEWInternet-PL-IEW\Launcher\Plugins\PluginLnhPromptManager2.dll 2012-09-13 21:48 - 2012-06-25 09:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2014-10-13 19:10 - 2009-08-31 15:23 - 00294912 _____ () C:\Program Files (x86)\OrangeBS\BEWInternet-PL-IEW\connectivity\Sqlite3.dll 2014-04-21 18:07 - 2014-12-11 15:33 - 03758192 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) HKLM\...\StartupApproved\Run: => "BtvStack" HKLM\...\StartupApproved\Run: => "BtTray" HKLM\...\StartupApproved\Run: => "cAudioFilterAgent" HKLM\...\StartupApproved\Run: => "SmartAudio" HKLM\...\StartupApproved\Run: => "Autodesk Sync" HKLM\...\StartupApproved\Run32: => "Start_BusinessEverywhere_{ad30a369-08e3-414c-9d2c-7f47dbe748da}" HKLM\...\StartupApproved\Run32: => "YouCam Tray" HKLM\...\StartupApproved\Run32: => "Start_SMSNotifier_{ad30a369-08e3-414c-9d2c-7f47dbe748da}" HKLM\...\StartupApproved\Run32: => "Start_Update_{ad30a369-08e3-414c-9d2c-7f47dbe748da}" HKLM\...\StartupApproved\Run32: => "RemoteControl10" HKLM\...\StartupApproved\Run32: => "332BigDog" HKLM\...\StartupApproved\Run32: => "YouCam Mirage" HKLM\...\StartupApproved\Run32: => "ETDCtrl" HKLM\...\StartupApproved\Run32: => "fst_pl_102" HKLM\...\StartupApproved\Run32: => "upfst_pl_102.exe" HKLM\...\StartupApproved\Run32: => "BlueStacks Agent" HKLM\...\StartupApproved\Run32: => "BCSSync" HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui" HKLM\...\StartupApproved\Run32: => "BEWINTERNET-PL-IEWSessionManager" HKLM\...\StartupApproved\Run32: => "BEWINTERNET-PL-IEWSMSNotify" HKLM\...\StartupApproved\Run32: => "CardDetectorHUAWEI177" HKU\S-1-5-21-1751098283-2581091257-1606318300-1002\...\StartupApproved\Run: => "DAEMON Tools Lite" HKU\S-1-5-21-1751098283-2581091257-1606318300-1002\...\StartupApproved\Run: => "ChomikBox" HKU\S-1-5-21-1751098283-2581091257-1606318300-1002\...\StartupApproved\Run: => "BitTorrent" HKU\S-1-5-21-1751098283-2581091257-1606318300-1002\...\StartupApproved\Run: => "Facebook Update" HKU\S-1-5-21-1751098283-2581091257-1606318300-1002\...\StartupApproved\Run: => "EADM" HKU\S-1-5-21-1751098283-2581091257-1606318300-1002\...\StartupApproved\Run: => "Akamai NetSession Interface" ========================= Accounts: ========================== Administrator (S-1-5-21-1751098283-2581091257-1606318300-500 - Administrator - Disabled) => C:\Users\Administrator Gość (S-1-5-21-1751098283-2581091257-1606318300-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1751098283-2581091257-1606318300-1062 - Limited - Enabled) Nowik (S-1-5-21-1751098283-2581091257-1606318300-1002 - Administrator - Enabled) => C:\Users\Nowik UpdatusUser (S-1-5-21-1751098283-2581091257-1606318300-1001 - Limited - Enabled) => C:\Users\UpdatusUser ==================== Faulty Device Manager Devices ============= Name: Qualcomm Atheros AR3012 Bluetooth 4.0 + HS Description: Qualcomm Atheros AR3012 Bluetooth 4.0 + HS Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974} Manufacturer: Qualcomm Atheros Communications Service: BTHUSB Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (12/14/2014 06:26:46 PM) (Source: MsiInstaller) (EventID: 11316) (User: ZARZĄDZANIE NT) Description: Product: Google Update Helper -- Error 1316. Określone konto już istnieje. Error: (12/14/2014 05:26:01 PM) (Source: MsiInstaller) (EventID: 11316) (User: ZARZĄDZANIE NT) Description: Product: Google Update Helper -- Error 1316. Określone konto już istnieje. Error: (12/14/2014 01:23:35 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: deskboard.exe, wersja: 1.1.2.0, sygnatura czasowa: 0x4d642fff Nazwa modułu powodującego błąd: MFC71.DLL, wersja: 7.10.3077.0, sygnatura czasowa: 0x3e77fdfd Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00005b89 Identyfikator procesu powodującego błąd: 0x13b0 Godzina uruchomienia aplikacji powodującej błąd: 0xdeskboard.exe0 Ścieżka aplikacji powodującej błąd: deskboard.exe1 Ścieżka modułu powodującego błąd: deskboard.exe2 Identyfikator raportu: deskboard.exe3 Pełna nazwa pakietu powodującego błąd: deskboard.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: deskboard.exe5 Error: (12/14/2014 01:23:31 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: deskboard.exe, wersja: 1.1.2.0, sygnatura czasowa: 0x4d642fff Nazwa modułu powodującego błąd: MFC71.DLL, wersja: 7.10.3077.0, sygnatura czasowa: 0x3e77fdfd Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0001aeee Identyfikator procesu powodującego błąd: 0x13b0 Godzina uruchomienia aplikacji powodującej błąd: 0xdeskboard.exe0 Ścieżka aplikacji powodującej błąd: deskboard.exe1 Ścieżka modułu powodującego błąd: deskboard.exe2 Identyfikator raportu: deskboard.exe3 Pełna nazwa pakietu powodującego błąd: deskboard.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: deskboard.exe5 Error: (12/14/2014 00:26:00 PM) (Source: MsiInstaller) (EventID: 11316) (User: ZARZĄDZANIE NT) Description: Product: Google Update Helper -- Error 1316. Określone konto już istnieje. Error: (12/14/2014 11:26:01 AM) (Source: MsiInstaller) (EventID: 11316) (User: ZARZĄDZANIE NT) Description: Product: Google Update Helper -- Error 1316. Określone konto już istnieje. Error: (12/14/2014 10:26:00 AM) (Source: MsiInstaller) (EventID: 11316) (User: ZARZĄDZANIE NT) Description: Product: Google Update Helper -- Error 1316. Określone konto już istnieje. Error: (12/14/2014 09:55:26 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: deskboard.exe, wersja: 1.1.2.0, sygnatura czasowa: 0x4d642fff Nazwa modułu powodującego błąd: MFC71.DLL, wersja: 7.10.3077.0, sygnatura czasowa: 0x3e77fdfd Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00005b89 Identyfikator procesu powodującego błąd: 0x124c Godzina uruchomienia aplikacji powodującej błąd: 0xdeskboard.exe0 Ścieżka aplikacji powodującej błąd: deskboard.exe1 Ścieżka modułu powodującego błąd: deskboard.exe2 Identyfikator raportu: deskboard.exe3 Pełna nazwa pakietu powodującego błąd: deskboard.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: deskboard.exe5 Error: (12/14/2014 09:55:23 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: deskboard.exe, wersja: 1.1.2.0, sygnatura czasowa: 0x4d642fff Nazwa modułu powodującego błąd: MFC71.DLL, wersja: 7.10.3077.0, sygnatura czasowa: 0x3e77fdfd Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0001aeee Identyfikator procesu powodującego błąd: 0x124c Godzina uruchomienia aplikacji powodującej błąd: 0xdeskboard.exe0 Ścieżka aplikacji powodującej błąd: deskboard.exe1 Ścieżka modułu powodującego błąd: deskboard.exe2 Identyfikator raportu: deskboard.exe3 Pełna nazwa pakietu powodującego błąd: deskboard.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: deskboard.exe5 Error: (12/14/2014 09:26:00 AM) (Source: MsiInstaller) (EventID: 11316) (User: ZARZĄDZANIE NT) Description: Product: Google Update Helper -- Error 1316. Określone konto już istnieje. System errors: ============= Error: (12/14/2014 06:17:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi NVIDIA Update Service Daemon z powodu następującego błędu: %%1069 Error: (12/14/2014 06:17:59 PM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Usługa nvUpdatusService nie może zalogować się jako .\UpdatusUser za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu: %%1326 Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC). Error: (12/14/2014 06:15:15 PM) (Source: volmgr) (EventID: 46) (User: ) Description: Inicjowanie zrzutu awaryjnego nie powiodło się! Error: (12/14/2014 05:50:34 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Usługa Intel(R) Management and Security Application User Notification Service zawiesiła się podczas uruchamiania. Error: (12/14/2014 05:48:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi NVIDIA Update Service Daemon z powodu następującego błędu: %%1069 Error: (12/14/2014 05:48:22 PM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Usługa nvUpdatusService nie może zalogować się jako .\UpdatusUser za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu: %%1326 Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC). Error: (12/14/2014 05:45:40 PM) (Source: volmgr) (EventID: 46) (User: ) Description: Inicjowanie zrzutu awaryjnego nie powiodło się! Error: (12/14/2014 05:45:57 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 17:02:50 na ‎2014-‎12-‎14 było nieoczekiwane. Error: (12/14/2014 06:43:12 AM) (Source: DCOM) (EventID: 10010) (User: Daniel) Description: {1B1F472E-3221-4826-97DB-2C2324D389AE} Error: (12/14/2014 06:42:42 AM) (Source: DCOM) (EventID: 10010) (User: Daniel) Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Microsoft Office Sessions: ========================= Error: (12/14/2014 06:26:46 PM) (Source: MsiInstaller) (EventID: 11316) (User: ZARZĄDZANIE NT) Description: Product: Google Update Helper -- Error 1316. Określone konto już istnieje. (NULL)(NULL)(NULL)(NULL)(NULL) Error: (12/14/2014 05:26:01 PM) (Source: MsiInstaller) (EventID: 11316) (User: ZARZĄDZANIE NT) Description: Product: Google Update Helper -- Error 1316. Określone konto już istnieje. (NULL)(NULL)(NULL)(NULL)(NULL) Error: (12/14/2014 01:23:35 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: deskboard.exe1.1.2.04d642fffMFC71.DLL7.10.3077.03e77fdfdc000000500005b8913b001d0177bc0ef8685C:\Program Files (x86)\OrangeBS\BEWInternet-PL-IEW\Deskboard\deskboard.exeC:\WINDOWS\SYSTEM32\MFC71.DLL05bc078a-838c-11e4-beca-b888e381fda9 Error: (12/14/2014 01:23:31 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: deskboard.exe1.1.2.04d642fffMFC71.DLL7.10.3077.03e77fdfdc00000050001aeee13b001d0177bc0ef8685C:\Program Files (x86)\OrangeBS\BEWInternet-PL-IEW\Deskboard\deskboard.exeC:\WINDOWS\SYSTEM32\MFC71.DLL03c0b9af-838c-11e4-beca-b888e381fda9 Error: (12/14/2014 00:26:00 PM) (Source: MsiInstaller) (EventID: 11316) (User: ZARZĄDZANIE NT) Description: Product: Google Update Helper -- Error 1316. Określone konto już istnieje. (NULL)(NULL)(NULL)(NULL)(NULL) Error: (12/14/2014 11:26:01 AM) (Source: MsiInstaller) (EventID: 11316) (User: ZARZĄDZANIE NT) Description: Product: Google Update Helper -- Error 1316. Określone konto już istnieje. (NULL)(NULL)(NULL)(NULL)(NULL) Error: (12/14/2014 10:26:00 AM) (Source: MsiInstaller) (EventID: 11316) (User: ZARZĄDZANIE NT) Description: Product: Google Update Helper -- Error 1316. Określone konto już istnieje. (NULL)(NULL)(NULL)(NULL)(NULL) Error: (12/14/2014 09:55:26 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: deskboard.exe1.1.2.04d642fffMFC71.DLL7.10.3077.03e77fdfdc000000500005b89124c01d0170c7e6388c8C:\Program Files (x86)\OrangeBS\BEWInternet-PL-IEW\Deskboard\deskboard.exeC:\WINDOWS\SYSTEM32\MFC71.DLLf1ac437f-836e-11e4-beca-b888e381fda9 Error: (12/14/2014 09:55:23 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: deskboard.exe1.1.2.04d642fffMFC71.DLL7.10.3077.03e77fdfdc00000050001aeee124c01d0170c7e6388c8C:\Program Files (x86)\OrangeBS\BEWInternet-PL-IEW\Deskboard\deskboard.exeC:\WINDOWS\SYSTEM32\MFC71.DLLeff7ef55-836e-11e4-beca-b888e381fda9 Error: (12/14/2014 09:26:00 AM) (Source: MsiInstaller) (EventID: 11316) (User: ZARZĄDZANIE NT) Description: Product: Google Update Helper -- Error 1316. Określone konto już istnieje. (NULL)(NULL)(NULL)(NULL)(NULL) ==================== Memory info =========================== Processor: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz Percentage of memory in use: 25% Total physical RAM: 8057.77 MB Available physical RAM: 5982.21 MB Total Pagefile: 16249.77 MB Available Pagefile: 14211.36 MB Total Virtual: 131072 MB Available Virtual: 131071.79 MB ==================== Drives ================================ Drive c: (Windows8_OS) (Fixed) (Total:883.4 GB) (Free:603.65 GB) NTFS ==>[System with boot components (obtained from reading drive)] Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.36 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 93058B9D) Partition: GPT Partition Type. ==================== End Of Log ============================