Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-09-2013 Ran by Niiesmiertelny at 2015-01-08 21:37:59 Running from D:\Programy\Kasowanie blednych lokow wirusówOTL FRST Boot Mode: Normal ========================================================== ==================== Installed Programs ====================== AbiWord 2.8.6 (x32 Version: 2.8.6) Adobe Flash Player 15 ActiveX (x32 Version: 15.0.0.246) Adobe Flash Player 15 Plugin (x32 Version: 15.0.0.246) Adobe Reader XI (11.0.10) (x32 Version: 11.0.10) Adobe Refresh Manager (x32 Version: 1.8.0) Aktualizacje NVIDIA 10.11.15 (Version: 10.11.15) ALLMediaServer (x32 Version: 0.92) ALLPlayer V5.X (x32) avast! Free Antivirus (x32 Version: 9.0.2021) BitTorrent (x32 Version: 7.7.0.27987) Bridge Building Game (x32) Bridge Project, версия 1.4 (x32 Version: 1.4) Camtasia Studio 7 (x32 Version: 7.1.1) CCleaner (Version: 4.10) Cheat Engine 6.3 (x32) Commandos2, Men of Courage (x32 Version: 1.00.0000) Commandos3 - Destination Berlin (x32 Version: 1.42.0000) Core Temp version 0.99.8 (Version: 0.99.8) CPUID HWMonitor 1.17 DAEMON Tools Lite (x32 Version: 4.46.1.0328) Euro Truck Simulator 2 v1.15.1.1s (20 DLC) (x32 Version: 1.15.1.1s) GeForce Experience NvStream Client Components (Version: 1.6.28) GG (HKCU Version: 12) HP Deskjet 3520 series — badanie mające na celu poprawę produktów (Version: 28.0.1315.0) HP Deskjet 3520 series — podstawowe oprogramowanie urządzenia (Version: 28.0.1315.0) HP Deskjet 3520 series Pomoc (x32 Version: 27.0.0) HP Deskjet 3520 series Setup Guide (x32 Version: 27.0.0) HP Photo Creations (x32 Version: 1.0.0.7702) HP Update (x32 Version: 5.003.003.001) Java 7 Update 51 (64-bit) (Version: 7.0.510) Java 7 Update 60 (x32 Version: 7.0.600) Java Auto Updater (x32 Version: 2.1.60.19) Logitech Webcam Software (x32 Version: 2.0) Microsoft .NET Framework 4.5.1 (PLK) (Version: 4.5.50938) Microsoft .NET Framework 4.5.1 (Polski) (Version: 4.5.50938) Microsoft .NET Framework 4.5.1 (Version: 4.5.50938) Microsoft Office Access MUI (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office Enterprise 2007 (x32 Version: 12.0.4518.1014) Microsoft Office Excel MUI (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office Groove MUI (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office InfoPath MUI (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office Office 64-bit Components 2007 (Version: 12.0.4518.1014) Microsoft Office OneNote MUI (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office Outlook MUI (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office PowerPoint MUI (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office Proof (English) 2007 (x32 Version: 12.0.4518.1014) Microsoft Office Proof (German) 2007 (x32 Version: 12.0.4518.1014) Microsoft Office Proof (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office Proofing (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office Publisher MUI (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office Shared 64-bit MUI (Polish) 2007 (Version: 12.0.4518.1020) Microsoft Office Shared MUI (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Office Word MUI (Polish) 2007 (x32 Version: 12.0.4518.1020) Microsoft Silverlight (x32 Version: 4.0.60310.0) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) Mobile Partner (x32 Version: 23.002.08.03.54) Mozilla Firefox 34.0.5 (x86 pl) (x32 Version: 34.0.5) Mozilla Maintenance Service (x32 Version: 29.0.1) MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0) neroxml (x32 Version: 1.0.0) NVIDIA Drivers (Version: 1.3) NVIDIA GAME System Software 2.8.1 (x32 Version: 2.8.1) NVIDIA GeForce Experience 1.8.1 (Version: 1.8.1) NVIDIA Install Application (Version: 2.1002.142.992) NVIDIA LED Visualizer 1.0 (Version: 1.0) NVIDIA Network Service (Version: 1.0) NVIDIA Oprogramowanie systemu PhysX 9.13.0725 (Version: 9.13.0725) NVIDIA PhysX (x32 Version: 9.13.0725) NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15) NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3182) NVIDIA Sterownik 3D Vision 331.82 (Version: 331.82) NVIDIA Sterownik dźwięku HD 1.3.26.4 (Version: 1.3.26.4) NVIDIA Sterownik graficzny 331.82 (Version: 331.82) NVIDIA Update Core (Version: 10.11.15) NVIDIA Virtual Audio 1.2.19 (Version: 1.2.19) OpenFM (HKCU Version: 2) Panel sterowania NVIDIA 331.82 (Version: 331.82) Pazera Free MP4 to AVI Converter 1.8 (x32 Version: 1.8) SHIELD Streaming (Version: 1.6.85) Shopper-Pro (x32) Skype Click to Call (x32 Version: 7.3.16540.9015) Skype™ 6.21 (x32 Version: 6.21.104) SUPERAntiSpyware (Version: 6.0.1164) Unity Web Player (HKCU Version: ) USB 2.0 1.3M UVC WebCam VLC media player (x32 Version: 2.1.5) Winamp (x32 Version: 5.61 ) Windows Driver Package - Broadcom Bluetooth (06/15/2009 6.2.0.9000) (Version: 06/15/2009 6.2.0.9000) Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) (Version: 07/30/2009 6.2.0.9405) Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (Version: 07/28/2009 6.2.0.9800) Windows Movie Maker 6.1 (x32) WinRAR 4.20 (64-bitowy) (Version: 4.20.0) World of Tanks (x32) YouTube Downloader (x32 Version: 1.0.0.2) YouTube Downloader (x32 Version: 1.0000) ==================== Restore Points ========================= ==================== Hosts content: ========================== 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {1CBAB653-446C-4C33-82AE-49617E70E3BD} - System32\Tasks\HPCustParticipation HP Deskjet 3520 series => C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.) Task: {2A0039D4-9DC9-4D6A-B170-2BD366B61A5A} - System32\Tasks\Installer_sense => C:\Users\Niiesmiertelny\AppData\Local\Installer\Installsense_7912\ins_postInst.exe [2015-01-08] () Task: {442C58A0-A590-48AA-9BEF-D372A446C40A} - System32\Tasks\{0E437703-A890-4DF1-9FB5-FD6D9FB82329} => Firefox.exe http://ui.skype.com/ui/0/7.0.59.100/pl/abandoninstall?page=tsMain Task: {54BCFE45-2E7C-41CA-A603-A140C6B9FB1A} - System32\Tasks\{8995D2B1-DC7B-4543-BEF8-8AFD0586814D} => Firefox.exe http://ui.skype.com/ui/0/6.18.0.106/pl/abandoninstall?source=lightinstaller&page=tsInstall Task: {5B147C41-A47A-4D66-8832-9612BD6F45C1} - System32\Tasks\Trojan Killer => C:\Program Files\GridinSoft Trojan Killer\trojankiller.exe Task: {5B6E3AA8-14C1-428E-A4DA-709A9F28B8B1} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask => C:\Windows\system32\Wat\WatAdminSvc.exe [2012-09-27] (Microsoft Corporation) Task: {753BFED2-9242-4213-B150-288A92E06516} - System32\Tasks\ShopperProJSUpd => C:\Program Files (x86)\ShopperPro\updater.exe [2015-01-06] (Goobzo) Task: {967476A7-71C3-4770-AFE3-7505BAF9D11E} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-23] (Microsoft Corporation) Task: {999E3238-035E-413D-88A5-EE5F002D17E2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated) Task: {9C4CA337-254B-4FA0-84AD-5A2A707CAC5D} - System32\Tasks\SPBIW_UpdateTask_Time_313732363537393832392d3437415a556c2a3223346c41 => C:\ProgramData\ShopperPro\spbihe.js spbiu.exe//B "C:\ProgramData\ShopperPro\spbihe.js" spbiu.exe /invoke /f:check_services /l:0 Task: {A149C45F-5B30-46BE-A92F-0423568133BF} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-08-07] (AVAST Software) Task: {B7F7FB1C-9BD5-4066-927B-1D6C849AE8AF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-10] (Adobe Systems Incorporated) Task: {C51A485C-2A49-4FB3-BB2C-697CDF4C7796} - System32\Tasks\Installer_iwebar => C:\Users\Niiesmiertelny\AppData\Local\Installer\Installiwebar_12661\ins_postInst.exe [2015-01-08] () Task: {CCC2C849-CE8F-4463-B3F8-E4957ABF7285} - System32\Tasks\ShopperPro => C:\Program Files (x86)\ShopperPro\ShopperPro.exe [2015-01-06] (Goobzo LTD) Task: {DA9B1035-CCE1-45D8-BD51-4BEBC1B8F7BF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd) Task: {EB983D28-8B18-492B-9278-E871994F6FAC} - System32\Tasks\SPDriver => C:\Program Files (x86)\ShopperPro\JSDriver\1463.0.0.0\jsdrv.exe [2015-01-06] () Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ==================== Loaded Modules (whitelisted) ============= 2009-07-14 01:22 - 2009-07-14 02:38 - 00081408 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\System32\l3codeca.acm 2014-11-02 11:33 - 2014-03-20 15:18 - 01683456 _____ (GG Network S.A.) C:\Users\Niiesmiertelny\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll 2014-08-07 16:53 - 2014-08-07 16:53 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2014-08-07 16:53 - 2014-08-07 16:53 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll 2009-07-14 01:07 - 2009-07-14 02:14 - 00064000 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\SysWOW64\l3codeca.acm 2014-12-09 18:23 - 2014-12-09 18:23 - 03758192 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll 2014-12-10 18:30 - 2014-12-10 18:30 - 16841392 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll ==================== Alternate Data Streams (whitelisted) ========= AlternateDataStreams: C:\ProgramData\TEMP:05E9FFE5 AlternateDataStreams: C:\ProgramData\TEMP:373E1720 AlternateDataStreams: C:\ProgramData\TEMP:4CF8D17E AlternateDataStreams: C:\ProgramData\TEMP:56E2E879 AlternateDataStreams: C:\ProgramData\TEMP:DBC416F8 ==================== Safe Mode (whitelisted) =================== ==================== Faulty Device Manager Devices ============= Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Name: Atheros AR9285 Wireless Network Adapter Description: Atheros AR9285 Wireless Network Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Atheros Communications Inc. Service: athr Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (01/08/2015 09:33:47 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "1". Błąd w pliku manifestu lub w pliku zasad "2" w wierszu 3. Nieprawidłowa składnia XML. Error: (01/08/2015 09:33:46 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "1". Błąd w pliku manifestu lub w pliku zasad "2" w wierszu 3. Nieprawidłowa składnia XML. Error: (01/08/2015 09:33:37 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "1". Błąd w pliku manifestu lub w pliku zasad "2" w wierszu 3. Nieprawidłowa składnia XML. Error: (01/08/2015 09:33:32 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "1". Błąd w pliku manifestu lub w pliku zasad "2" w wierszu 3. Nieprawidłowa składnia XML. Error: (01/08/2015 09:33:31 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "1". Błąd w pliku manifestu lub w pliku zasad "2" w wierszu 3. Nieprawidłowa składnia XML. Error: (01/08/2015 09:33:31 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "1". Błąd w pliku manifestu lub w pliku zasad "2" w wierszu 3. Nieprawidłowa składnia XML. Error: (01/08/2015 09:33:25 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "1". Błąd w pliku manifestu lub w pliku zasad "2" w wierszu 3. Nieprawidłowa składnia XML. Error: (01/08/2015 09:33:12 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "1". Błąd w pliku manifestu lub w pliku zasad "2" w wierszu 3. Nieprawidłowa składnia XML. Error: (01/08/2015 09:32:24 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "1". Błąd w pliku manifestu lub w pliku zasad "2" w wierszu 3. Nieprawidłowa składnia XML. Error: (01/08/2015 09:31:21 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "1". Błąd w pliku manifestu lub w pliku zasad "2" w wierszu 3. Nieprawidłowa składnia XML. System errors: ============= Error: (01/08/2015 09:04:21 PM) (Source: Service Control Manager) (User: ) Description: Usługa Host urządzenia UPnP zależy od usługi Odnajdywanie SSDP, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (01/08/2015 09:04:20 PM) (Source: Service Control Manager) (User: ) Description: Usługa Host urządzenia UPnP zależy od usługi Odnajdywanie SSDP, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (01/08/2015 09:04:20 PM) (Source: DCOM) (User: ) Description: 1068upnphost{204810B9-73B2-11D4-BF42-00B0D0118B56} Error: (01/08/2015 09:04:17 PM) (Source: Service Control Manager) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: iSafeKrnlMon Error: (01/08/2015 09:04:01 PM) (Source: Service Control Manager) (User: ) Description: Nie można uruchomić usługi lirsgt z powodu następującego błędu: %%577 Error: (01/08/2015 09:03:37 PM) (Source: Service Control Manager) (User: ) Description: Nie można uruchomić usługi atksgt z powodu następującego błędu: %%577 Error: (01/08/2015 09:03:23 PM) (Source: Service Control Manager) (User: ) Description: Nie można uruchomić usługi AddonsHelper z powodu następującego błędu: %%2 Error: (01/08/2015 09:01:07 PM) (Source: Service Control Manager) (User: ) Description: Nie można uruchomić usługi Host usługi diagnostyki z powodu następującego błędu: %%1053 Error: (01/08/2015 09:01:07 PM) (Source: Service Control Manager) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Host usługi diagnostyki. Error: (01/08/2015 09:01:07 PM) (Source: Service Control Manager) (User: ) Description: Nie można uruchomić usługi Host usługi diagnostyki z powodu następującego błędu: %%1053 Microsoft Office Sessions: ========================= CodeIntegrity Errors: =================================== Date: 2015-01-08 21:04:01.760 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-01-08 21:04:01.277 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-01-08 21:03:37.286 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-01-08 21:03:36.850 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-01-08 19:55:36.793 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-01-08 19:55:36.413 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-01-08 19:55:33.085 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-01-08 19:55:32.617 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-01-06 18:47:43.171 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-01-06 18:47:42.797 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Percentage of memory in use: 51% Total physical RAM: 4095.27 MB Available physical RAM: 1977.27 MB Total Pagefile: 8188.72 MB Available Pagefile: 5911.43 MB Total Virtual: 8192 MB Available Virtual: 8191.82 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:58.59 GB) (Free:11.96 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive d: () (Fixed) (Total:137.27 GB) (Free:26.55 GB) NTFS Drive e: () (Fixed) (Total:134.95 GB) (Free:50.1 GB) NTFS Drive f: () (Fixed) (Total:134.95 GB) (Free:9.9 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 97646C29) Partition 1: (Active) - (Size=59 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=407 GB) - (Type=OF Extended) ==================== End Of Log ============================