Additional scan result of Farbar Recovery Scan Tool (x64) Version:09-08-2015 Ran by Basia (2015-08-10 14:22:16) Running from C:\Users\Basia\Desktop Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-839301723-480738766-881836232-500 - Administrator - Disabled) Basia (S-1-5-21-839301723-480738766-881836232-1000 - Administrator - Enabled) => C:\Users\Basia Gość (S-1-5-21-839301723-480738766-881836232-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-839301723-480738766-881836232-1002 - Limited - Enabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.3.183.10 - Adobe Systems Incorporated) Adobe Flash Player 11 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 11.6.602.171 - Adobe Systems Incorporated) Adobe Reader X (10.1.12) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AA1000000001}) (Version: 10.1.12 - Adobe Systems Incorporated) ALPlayer (HKLM-x32\...\ALPlayer_is1) (Version: v2.0 - ESTsoft Corp.) ALTools Update (HKLM-x32\...\ALUpdate_is1) (Version: - ESTsoft Corp.) Angry Birds Space (HKLM-x32\...\{3F2A323E-60C4-41E8-8CCB-9715D1D750C3}) (Version: 1.0.0 - Rovio) Atheros Client Installation Program (HKLM-x32\...\{D3694B69-6F8C-42D3-8A0A-EB2AB528C02C}) (Version: 7.0 - Atheros) Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.36 - Atheros Communications Inc.) ATI Catalyst Install Manager (HKLM\...\{2AFF247F-63BB-BD03-569F-668E1C73290E}) (Version: 3.0.800.0 - ATI Technologies, Inc.) AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.1.0.411 - AVG Technologies) ccc-core-static (x32 Version: 2010.1202.1302.23285 - Nazwa firmy) Hidden CCleaner (HKLM\...\CCleaner) (Version: 3.11 - Piriform) Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.46.0.50 - Conexant) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.1.0236 - DT Soft Ltd) Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 6.0.1.5 - Lenovo) Energy Management (x32 Version: 6.0.1.5 - Lenovo) Hidden Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych (HKLM-x32\...\{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}) (Version: 15.4.5722.2 - Microsoft Corporation) Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden GG (HKU\S-1-5-21-839301723-480738766-881836232-1000\...\GG) (Version: 12 - GG Network S.A.) Google Chrome (HKU\S-1-5-21-839301723-480738766-881836232-1000\...\Google Chrome) (Version: 44.0.2403.130 - Google Inc.) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation) Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden K-Lite Codec Pack 10.8.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.8.0 - ) Lenovo Bluetooth with Enhanced Data Rate Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.6300 - Broadcom Corporation) Lenovo DirectShare (HKLM-x32\...\InstallShield_{B2164CCB-C002-4B80-8550-7535D80DF237}) (Version: 1.0.1.38 - Nazwa firmy) Lenovo DirectShare (x32 Version: 1.0.1.38 - ArcSoft) Hidden Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ECC-B6BD-9C31E51D0333}) (Version: 1.10.1119.1 - Lenovo EasyCamera) Lenovo EE Boot Optimizer (HKLM\...\Lenovo EE Boot Optimizer) (Version: 0.0.1.5 - Lenovo) Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.1628 - CyberLink Corp.) Lenovo OneKey Recovery (Version: 7.0.1628 - CyberLink Corp.) Hidden Lenovo YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.1.3603 - CyberLink Corp.) Lenovo YouCam (x32 Version: 3.1.3603 - CyberLink Corp.) Hidden Lexmark (HKLM-x32\...\{D2C5E510-BE6D-42CC-9F61-E4F939078474}) (Version: 1.0.0.0 - ) Lexmark 4900 Series (HKLM\...\Lexmark 4900 Series) (Version: - Lexmark International, Inc.) Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office 2010 Service Pack 1 (SP1) (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{047B0968-E622-4FAA-9B4B-121FA109EDDE}) (Version: - Microsoft) Microsoft Office Standard 2010 (HKLM-x32\...\Office14.STANDARD) (Version: 14.0.6029.1000 - Microsoft Corporation) Microsoft Office Starter 2010 - Polski (HKLM-x32\...\{90140011-0066-0415-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0415-0000-0000000FF1CE}) (Version: 14.0.6029.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Moduł Szybka instalacja pakietu Microsoft Office 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation) Moduł Szybka instalacja pakietu Microsoft Office 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Nokia Connectivity Cable Driver (HKLM-x32\...\{4216D328-0FE8-48B8-85B8-BD300E6F080F}) (Version: 7.1.36.0 - Nokia) Nokia Flashing Cable Driver (HKLM-x32\...\{2A0A6470-FD0F-4F45-9B11-85F3167DB943}) (Version: 8.23.0.0 - Nokia) OpenFM (HKU\S-1-5-21-839301723-480738766-881836232-1000\...\OpenFM) (Version: 2 - GG Network S.A.) Pakiet sterowników systemu Windows - Lenovo (ACPIVPC) System (12/02/2010 6.1.0.1) (HKLM\...\EA12B1FB53CE4E387C31A85236C41EF559B5E392) (Version: 12/02/2010 6.1.0.1 - Lenovo) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.) PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.2.10 - Prolific Technology INC) Poczta usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Podręcznik użytkownika (x32 Version: 1.0.0.6 - Lenovo) Hidden Podstawowe programy Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation) Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.7108 - CyberLink Corp.) Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7600.10001 - Realtek Semiconductor Corp.) Skype™ 7.7 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.7.103 - Skype Technologies S.A.) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.2.1.0 - Synaptics Incorporated) UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.6 - Lenovo) VeriFace (HKLM-x32\...\VeriFace) (Version: 4.0.0.1224 - Lenovo) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) WinRAR 4.01 (32-bitowy) (HKLM-x32\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-839301723-480738766-881836232-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Basia\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File CustomCLSID: HKU\S-1-5-21-839301723-480738766-881836232-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Basia\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll No File CustomCLSID: HKU\S-1-5-21-839301723-480738766-881836232-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Basia\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File CustomCLSID: HKU\S-1-5-21-839301723-480738766-881836232-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Basia\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-839301723-480738766-881836232-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Basia\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File CustomCLSID: HKU\S-1-5-21-839301723-480738766-881836232-1000_Classes\CLSID\{A3127F67-AC1F-957E-C392-56DB48216F76}\InprocServer32 -> C:\windows\system32\ole32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-839301723-480738766-881836232-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Basia\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File CustomCLSID: HKU\S-1-5-21-839301723-480738766-881836232-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Basia\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File CustomCLSID: HKU\S-1-5-21-839301723-480738766-881836232-1000_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\Basia\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll (GG Network S.A.) CustomCLSID: HKU\S-1-5-21-839301723-480738766-881836232-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Basia\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-839301723-480738766-881836232-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Basia\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File ==================== Restore Points ========================= 05-07-2015 13:45:43 Zaplanowany punkt kontrolny 12-07-2015 17:31:31 Zaplanowany punkt kontrolny 21-07-2015 12:56:36 Zaplanowany punkt kontrolny 29-07-2015 11:59:48 Zaplanowany punkt kontrolny 06-08-2015 14:00:47 Zaplanowany punkt kontrolny 10-08-2015 13:17:34 Removed AVG 2015 10-08-2015 13:19:24 Removed AVG 2015 ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {1CD8CC95-C385-4833-B8D7-0CBBB6C4308D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-839301723-480738766-881836232-1000Core => C:\Users\Basia\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-25] (Google Inc.) Task: {3887CA22-A07F-4CCA-869D-A5F01C5FDDA2} - System32\Tasks\ESTsoft RunAsStdUser 692457Task => C:\Program Files (x86)\ESTsoft\ALPlayer\ALPlayer.exe [2010-11-01] (ESTsoft corp.) Task: {5A1EFF2A-E718-4E4E-BEBB-E50150B3ECA6} - System32\Tasks\{984682B4-808E-40CB-945E-F3E4397570E4} => Chrome.exe http://ui.skype.com/ui/0/6.0.0.126/pl/abandoninstall?page=tsProgressBar Task: {5AE10761-E516-4DCB-9C67-B7D207C07A6A} - System32\Tasks\{17969053-0FC9-4910-8678-9EE7BAA7565E} => pcalua.exe -a C:\Users\Basia\Desktop\NetFx64.exe -d C:\Users\Basia\Desktop Task: {9B780D67-1A55-47F4-9EC5-6D758E1A291E} - System32\Tasks\{4FF9891D-86D3-4EDF-8C7F-AC681DEEFCD9} => C:\Users\Basia\Downloads\Microsoft Office PowerPoint 2007 PL Portable\Microsoft Office PowerPoint 2007\Microsoft Office PowerPoint 2007.exe Task: {AD7A7D6A-9661-4AE6-812B-3D22ED4C69D3} - System32\Tasks\Installation App Launcher => C:\Program Files (x86)\Lexmark 4900 Series\lxdramon.exe Task: {ADA6D513-3961-420D-B0DB-B8C56CD75B08} - System32\Tasks\{BB379210-2C98-4176-A04E-A691FACF6C42} => Chrome.exe http://ui.skype.com/ui/0/6.0.0.126/pl/abandoninstall?page=tsProgressBar Task: {B00C42B7-448C-45A0-B9F9-0B4F7BEC5A00} - System32\Tasks\Games\UpdateCheck_S-1-5-21-839301723-480738766-881836232-1000 Task: {B1A32F16-992A-4259-9690-4B4708DF92DB} - System32\Tasks\{74176E02-0A23-4046-992F-D8538F0BCC01} => C:\Users\Basia\Downloads\Microsoft Office PowerPoint 2007 PL Portable\Microsoft Office PowerPoint 2007\Microsoft Office PowerPoint 2007.exe Task: {B89700AB-0684-4AFF-815D-80AB21521E55} - System32\Tasks\{DC6005DA-A433-464A-A36F-9BAC90CFB3C1} => pcalua.exe -a C:\Users\Basia\Downloads\NetFx64.exe -d C:\Users\Basia\Downloads Task: {CB8B0768-0045-459E-9644-43796FCE3C08} - System32\Tasks\MirageAgent => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2010-12-05] (CyberLink) Task: {F170496E-FD84-4D09-A0D0-C12BC2195057} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-839301723-480738766-881836232-1000UA => C:\Users\Basia\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-25] (Google Inc.) Task: {F9782B98-3D64-40AD-A260-554404BEFD43} - System32\Tasks\{5D0ED78D-FF84-4814-A1F7-7B1C0F6A22EA} => Iexplore.exe http://www.skype.com/go/downloading?source=lightinstaller&ver=5.3.0.120.259&LastError=12002 Task: {FC41DC3D-FEBB-46C6-9B0C-5F3027478FAD} - System32\Tasks\{F109852A-BA8E-4B71-B982-6AF701C52ADE} => pcalua.exe -a "C:\Program Files (x86)\Lenovo\VeriFace\Uninstall.exe" -d "C:\Program Files (x86)\Lenovo\VeriFace" (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-839301723-480738766-881836232-1000Core.job => C:\Users\Basia\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-839301723-480738766-881836232-1000UA.job => C:\Users\Basia\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (Whitelisted) ============== 2015-05-06 17:24 - 2015-05-06 17:24 - 00620056 ____N () C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe 2013-03-15 15:58 - 2009-10-16 12:02 - 00186880 _____ () C:\windows\system32\spool\PRTPROCS\x64\lxdrdrpp.dll 2011-02-28 01:28 - 2011-02-28 01:28 - 01508192 _____ () C:\windows\system32\IcnOvrly.dll 2008-12-20 05:20 - 2011-02-28 01:39 - 00054088 _____ () C:\Program Files (x86)\Lenovo\Energy Management\HookLib.dll 2008-12-20 05:20 - 2011-02-28 01:39 - 00054088 _____ () C:\Program Files (x86)\Lenovo\Energy Management\kbdhook.dll 2013-03-15 16:04 - 2008-09-10 12:24 - 00676520 _____ () C:\Program Files (x86)\Lexmark 4900 Series\lxdrmon.exe 2010-07-29 21:39 - 2010-07-29 21:39 - 00173856 _____ () C:\Program Files\Lenovo\Bluetooth Software\btkeyind.dll 2013-03-15 16:04 - 2008-09-10 11:44 - 00380928 _____ () C:\Program Files (x86)\Lexmark 4900 Series\lxdrscw.dll 2013-03-15 16:04 - 2008-05-16 16:54 - 00188416 _____ () C:\Program Files (x86)\Lexmark 4900 Series\lxdrdatr.dll 2013-03-15 16:04 - 2008-09-10 11:44 - 01036288 _____ () C:\Program Files (x86)\Lexmark 4900 Series\lxdrDRS.dll 2013-03-15 16:04 - 2008-09-10 11:44 - 00081920 _____ () C:\Program Files (x86)\Lexmark 4900 Series\lxdrcaps.dll 2013-03-15 16:04 - 2008-09-10 11:34 - 00069632 _____ () C:\Program Files (x86)\Lexmark 4900 Series\lxdrcnv4.dll 2015-08-05 15:18 - 2015-07-31 08:19 - 01405768 _____ () C:\Users\Basia\AppData\Local\Google\Chrome\Application\44.0.2403.130\libglesv2.dll 2015-08-05 15:18 - 2015-07-31 08:19 - 00081224 _____ () C:\Users\Basia\AppData\Local\Google\Chrome\Application\44.0.2403.130\libegl.dll 2013-07-11 10:24 - 2013-07-11 10:24 - 00169472 _____ () C:\windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\d14d5fc7c6dfd8dc029e546321141691\IsdiInterop.ni.dll 2011-02-28 01:05 - 2010-11-06 01:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll 2015-06-17 16:01 - 2015-06-17 16:01 - 03715648 _____ () C:\Users\Basia\AppData\Local\GG\Application\xulrunner\mozjs.dll 2015-06-17 16:01 - 2015-06-17 16:01 - 00122432 _____ () C:\Users\Basia\AppData\Local\GG\Application\ggdrive\ZLIB1.dll 2015-06-17 16:01 - 2015-06-17 16:01 - 16361120 _____ () C:\Users\Basia\AppData\Local\GG\Application\FMSBWChecker\Adobe AIR\Versions\1.0\Resources\NPSWF32.dll 2015-08-05 15:18 - 2015-07-31 08:19 - 16308040 _____ () C:\Users\Basia\AppData\Local\Google\Chrome\Application\44.0.2403.130\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot => "AlternateShell"="" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-839301723-480738766-881836232-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Basia\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 8.8.8.8 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupreg: GG => "C:\Users\Basia\AppData\Local\GG\Application\gghub.exe" MSCONFIG\startupreg: VeriFaceManager => C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{07C309E9-EF33-433A-B9C2-DBD43AA20167}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe FirewallRules: [{1FE09B60-CC6C-4837-9A3E-3A8C09824BA9}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe FirewallRules: [{1B7B8C1A-6B9B-494C-910D-0EDFB6D0A524}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{35A32CC1-8144-4714-93EE-535FDE4BFE94}] => (Allow) LPort=2869 FirewallRules: [{8A1FF648-947D-497F-AD3A-E6FB09406877}] => (Allow) LPort=1900 FirewallRules: [{56018B10-CE78-48BE-A288-217E16C3AEF8}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{9D5A85CB-C61A-412C-97A8-0F13D1CFA35B}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe FirewallRules: [TCP Query User{411C503B-2801-47E2-B81E-56C604F9E573}D:\gadu-gadu 10\gg.exe] => (Allow) D:\gadu-gadu 10\gg.exe FirewallRules: [UDP Query User{CF66E67B-7B4D-4D6E-B658-76B0B20386EB}D:\gadu-gadu 10\gg.exe] => (Allow) D:\gadu-gadu 10\gg.exe FirewallRules: [{DB3EC467-4990-4580-8FD9-BB1B4436C944}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{5D181CC2-7325-45FE-AA95-489E5AAA807E}D:\gadu-gadu 10\gg.exe] => (Allow) D:\gadu-gadu 10\gg.exe FirewallRules: [UDP Query User{8E9D1492-3779-46A8-9065-A8A4BA7B754A}D:\gadu-gadu 10\gg.exe] => (Allow) D:\gadu-gadu 10\gg.exe FirewallRules: [{9BBAAE9F-BDB5-49AD-B342-1B993237C6FD}] => (Allow) C:\windows\system32\lxdrcoms.exe FirewallRules: [{0FD07E3B-5FF4-420C-987C-1D88A02F33A8}] => (Allow) C:\windows\system32\spool\DRIVERS\x64\3\lxdrpswx.exe FirewallRules: [{582710BA-E526-4ABA-8ED9-DD25430E213F}] => (Allow) C:\windows\system32\spool\DRIVERS\x64\3\lxdrtime.exe FirewallRules: [{571F9975-39AC-41D8-9223-CC8464C1DF13}] => (Allow) C:\windows\SysWOW64\lxdrcoms.exe FirewallRules: [{DB2CEB51-5613-41A0-9A29-1FFADBE8E12B}] => (Allow) C:\windows\system32\lxdrcoms.exe FirewallRules: [{54037549-0BE4-4629-BBBE-ECA8515FDE9B}] => (Allow) C:\windows\system32\spool\DRIVERS\x64\3\lxdrpswx.exe FirewallRules: [{0D2BFC91-EAE8-4DA3-BF8E-25DE9C369808}] => (Allow) C:\windows\system32\spool\DRIVERS\x64\3\lxdrtime.exe FirewallRules: [{B6339E2F-EAFC-4A44-BAC1-2AFA09561BA4}] => (Allow) C:\windows\SysWOW64\lxdrcoms.exe FirewallRules: [{60A33ADF-929B-40C5-8FF2-E3D9D9CF18EC}] => (Allow) C:\Program Files (x86)\Abbyy FineReader 6.0 Sprint\Scan\ScanMan6.exe FirewallRules: [{81969D27-00FA-49ED-A6AA-278FB25685B6}] => (Allow) C:\Program Files (x86)\Abbyy FineReader 6.0 Sprint\Scan\ScanMan6.exe FirewallRules: [{46E4D91C-75F1-4278-B885-992815FBF37F}] => (Allow) C:\Program Files (x86) (x86)\Lexmark 4900 Series\lxdramon.exe FirewallRules: [{3F0A9713-35E3-4FB7-9F27-F41E480EFAE9}] => (Allow) C:\Program Files (x86) (x86)\Lexmark 4900 Series\lxdramon.exe FirewallRules: [{D97BA1D5-0C38-41AA-A3B3-113CF263E522}] => (Allow) C:\Program Files (x86) (x86)\Lexmark 4900 Series\frun.exe FirewallRules: [{213795EF-A726-492C-8775-7E0FA00D8167}] => (Allow) C:\Program Files (x86) (x86)\Lexmark 4900 Series\frun.exe FirewallRules: [{2504D484-91E5-4491-9F65-88A55B8DF737}] => (Allow) C:\windows\system32\lxdrcoms.exe FirewallRules: [{9620D599-C01C-4A0D-ABC0-119FB7B5DE37}] => (Allow) C:\windows\system32\spool\DRIVERS\x64\3\lxdrpswx.exe FirewallRules: [{E19E4219-357C-4767-955B-EC2DFF9B4339}] => (Allow) C:\windows\system32\spool\DRIVERS\x64\3\lxdrtime.exe FirewallRules: [{8E742525-AED5-4D4F-8194-C74F5776E368}] => (Allow) C:\windows\SysWOW64\lxdrcoms.exe FirewallRules: [{1046EF29-107E-48ED-A814-9B8A79CEA00C}] => (Allow) C:\Windows\SysWOW64\msiexec.exe FirewallRules: [{A154D45B-9351-4A74-BC5E-7B82F438C3F3}] => (Allow) C:\Windows\SysWOW64\msiexec.exe FirewallRules: [{D8F6522F-BC88-4403-8972-B36C5E7FFF0E}] => (Allow) C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe FirewallRules: [{F3DC0B2B-A14F-4E44-B508-09115EF3D86C}] => (Allow) C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe FirewallRules: [{CE049B84-82B3-4091-8F57-63D5B9D3E477}] => (Allow) C:\Windows\System32\lxdrcoms.exe FirewallRules: [{4CF0A964-D34A-42D9-AD22-B5DD2A479E19}] => (Allow) C:\Windows\System32\lxdrcoms.exe FirewallRules: [{D91AB6E3-141B-4281-B618-0714208DC59B}] => (Allow) C:\Windows\SysWOW64\lxdrcoms.exe FirewallRules: [{63CDF147-63AE-4A6F-8930-AEAB6F567A97}] => (Allow) C:\Windows\SysWOW64\lxdrcoms.exe FirewallRules: [{9F8C245A-8ABA-42FF-8CC5-31379B2C5B90}] => (Allow) C:\Windows\System32\lxdrcoms.exe FirewallRules: [{0D26AE01-DA44-4F91-9627-9447F953C5F2}] => (Allow) C:\Windows\System32\lxdrcoms.exe FirewallRules: [{42F1AD5B-B261-4890-9A76-C4D57EFF2B0F}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\lxdrpswx.exe FirewallRules: [{CC998FAC-B582-4E85-8486-1B839CAC6105}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\lxdrpswx.exe FirewallRules: [{8B38F4A8-86D1-41FF-8614-1CCF51DFB9FF}] => (Allow) C:\Program Files (x86)\Lexmark 4900 Series\lxdramon.exe FirewallRules: [{215B1165-93B6-45E4-8E28-990C1D654ABC}] => (Allow) C:\Program Files (x86)\Lexmark 4900 Series\lxdramon.exe FirewallRules: [{E7A9B53E-E792-4F0D-B597-81259FB03FE9}] => (Allow) C:\Program Files (x86)\Lexmark 4900 Series\frun.exe FirewallRules: [{0118DCA7-45EF-4B5D-8737-76E65DC9DC2F}] => (Allow) C:\Program Files (x86)\Lexmark 4900 Series\frun.exe FirewallRules: [{6DDC279F-D5F5-4971-940F-BB17A299FF35}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe FirewallRules: [{4E8DF183-799B-41DA-B5E1-1EC6EFE03DAD}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe FirewallRules: [{90333C43-E26B-4633-8B78-01D46741BF32}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe FirewallRules: [{0BA5D8EA-1D32-4424-A9FE-AAAFBAB858EE}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe FirewallRules: [{180D2F8F-13F8-40FE-A295-5CAF7A8E3971}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe FirewallRules: [{F456EE64-3C10-4A3F-98DE-333021E0001B}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe FirewallRules: [{D5C48C1C-8E30-4622-A9A0-EEDDB3DC6257}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe FirewallRules: [{59D89E58-34D4-46B6-B4FC-ADC1AC992146}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe FirewallRules: [{CD54650C-8A78-4772-8358-355F99605394}] => (Allow) C:\Users\Basia\AppData\Local\Google\Chrome\Application\chrome.exe FirewallRules: [TCP Query User{7D36B085-57E6-47AF-A75B-E988C252B9AF}C:\users\basia\appdata\local\openfm\application\uninstall.exe] => (Block) C:\users\basia\appdata\local\openfm\application\uninstall.exe FirewallRules: [UDP Query User{44A53EF3-ADA9-45E0-8B24-EA31FF958555}C:\users\basia\appdata\local\openfm\application\uninstall.exe] => (Block) C:\users\basia\appdata\local\openfm\application\uninstall.exe FirewallRules: [TCP Query User{1AFA006F-75A1-4FE5-B44A-F663F70E370B}C:\program files (x86)\lenovo\youcam\ycmmirage.exe] => (Block) C:\program files (x86)\lenovo\youcam\ycmmirage.exe FirewallRules: [UDP Query User{71B78C5E-3ED5-4CD7-803C-D3B8A313EA10}C:\program files (x86)\lenovo\youcam\ycmmirage.exe] => (Block) C:\program files (x86)\lenovo\youcam\ycmmirage.exe ==================== Faulty Device Manager Devices ============= Name: Zewnętrzne urządzenie Bluetooth Description: Zewnętrzne urządzenie Bluetooth Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Zewnętrzne urządzenie Bluetooth Description: Zewnętrzne urządzenie Bluetooth Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (08/10/2015 01:41:27 PM) (Source: .NET Runtime) (EventID: 1022) (User: ) Description: .NET Runtime version 4.0.30319.1008 - Wystąpił błąd podczas inicjacji infrastruktury dołączania interfejsu API profilowania. Ten proces nie zezwoli na dołączenie profilera. HRESULT: 0x80004005. Identyfikator procesu (liczba dziesiętna): 3448. Identyfikator komunikatu: [0x2509]. Error: (08/10/2015 01:28:12 PM) (Source: .NET Runtime) (EventID: 1022) (User: ) Description: .NET Runtime version 4.0.30319.1008 - Wystąpił błąd podczas inicjacji infrastruktury dołączania interfejsu API profilowania. Ten proces nie zezwoli na dołączenie profilera. HRESULT: 0x80004005. Identyfikator procesu (liczba dziesiętna): 3176. Identyfikator komunikatu: [0x2509]. Error: (08/10/2015 01:21:44 PM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: Nie można zainicjować indeksu. Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/10/2015 01:21:44 PM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: Nie można zainicjować aplikacji. Kontekst: aplikacja Windows Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/10/2015 01:21:44 PM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: Nie można zainicjować obiektu programu zbierającego. Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/10/2015 01:21:44 PM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Nie można zainicjować dodatku typu plug-in w . Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Nie można odnaleźć elementu. (HRESULT : 0x80070490) (0x80070490) Error: (08/10/2015 01:21:41 PM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Nie można zainicjować dodatku typu plug-in w . Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/10/2015 01:21:41 PM) (Source: Windows Search Service) (EventID: 9002) (User: ) Description: Usługa Windows Search nie może załadować informacji z magazynu właściwości. Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Baza danych indeksów zawartości jest uszkodzona. (HRESULT : 0xc0041800) (0xc0041800) Error: (08/10/2015 01:21:41 PM) (Source: Windows Search Service) (EventID: 7042) (User: ) Description: Usługa Windows Search jest zatrzymywana, ponieważ wystąpił problem z indeksatorem: The catalog is corrupt. Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/10/2015 01:21:41 PM) (Source: Windows Search Service) (EventID: 7040) (User: ) Description: Usługa wyszukiwania wykryła uszkodzone pliki danych w indeksie {id=4700}. Usługa podejmie próbę automatycznego rozwiązania tego problemu przez odbudowanie indeksu. Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) System errors: ============= Error: (08/10/2015 01:54:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi lxdrCATSCustConnectService z powodu następującego błędu: %%1053 Error: (08/10/2015 01:54:54 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą lxdrCATSCustConnectService. Error: (08/10/2015 01:21:44 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Windows Search niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (08/10/2015 01:21:44 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: Usługa Windows Search zakończyła działanie; wystąpił specyficzny dla niej błąd %%-1073473535. Error: (08/10/2015 01:21:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi lxdrCATSCustConnectService z powodu następującego błędu: %%1053 Error: (08/10/2015 01:21:16 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą lxdrCATSCustConnectService. Error: (08/10/2015 12:58:17 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: Usługa AVGIDSAgent zakończyła działanie; wystąpił specyficzny dla niej błąd %%-536753636. Error: (08/10/2015 12:58:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi lxdrCATSCustConnectService z powodu następującego błędu: %%1053 Error: (08/10/2015 12:58:16 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą lxdrCATSCustConnectService. Error: (08/10/2015 12:40:35 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: Usługa AVGIDSAgent zakończyła działanie; wystąpił specyficzny dla niej błąd %%-536753636. Microsoft Office: ========================= Error: (08/10/2015 01:41:27 PM) (Source: .NET Runtime) (EventID: 1022) (User: ) Description: .NET Runtime version 4.0.30319.1008 - Wystąpił błąd podczas inicjacji infrastruktury dołączania interfejsu API profilowania. Ten proces nie zezwoli na dołączenie profilera. HRESULT: 0x80004005. Identyfikator procesu (liczba dziesiętna): 3448. Identyfikator komunikatu: [0x2509]. Error: (08/10/2015 01:28:12 PM) (Source: .NET Runtime) (EventID: 1022) (User: ) Description: .NET Runtime version 4.0.30319.1008 - Wystąpił błąd podczas inicjacji infrastruktury dołączania interfejsu API profilowania. Ten proces nie zezwoli na dołączenie profilera. HRESULT: 0x80004005. Identyfikator procesu (liczba dziesiętna): 3176. Identyfikator komunikatu: [0x2509]. Error: (08/10/2015 01:21:44 PM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/10/2015 01:21:44 PM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: Kontekst: aplikacja Windows Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/10/2015 01:21:44 PM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/10/2015 01:21:44 PM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Nie można odnaleźć elementu. (HRESULT : 0x80070490) (0x80070490) Search.TripoliIndexer Error: (08/10/2015 01:21:41 PM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Search.JetPropStore Error: (08/10/2015 01:21:41 PM) (Source: Windows Search Service) (EventID: 9002) (User: ) Description: Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Baza danych indeksów zawartości jest uszkodzona. (HRESULT : 0xc0041800) (0xc0041800) Error: (08/10/2015 01:21:41 PM) (Source: Windows Search Service) (EventID: 7042) (User: ) Description: Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) The catalog is corrupt Error: (08/10/2015 01:21:41 PM) (Source: Windows Search Service) (EventID: 7040) (User: ) Description: Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) 4700 CodeIntegrity: =================================== Date: 2013-01-24 09:04:47.955 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-01-24 09:04:47.955 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-01-24 09:04:47.955 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-01-24 09:04:47.924 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-01-24 09:04:47.924 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-01-24 09:04:47.909 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-01-08 18:05:03.492 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-01-08 18:05:03.489 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-01-08 18:05:03.485 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-01-08 18:05:03.463 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i3-2310M CPU @ 2.10GHz Percentage of memory in use: 43% Total physical RAM: 4077.86 MB Available physical RAM: 2288.75 MB Total Virtual: 8153.9 MB Available Virtual: 6179.47 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:552.22 GB) (Free:461.34 GB) NTFS Drive d: (LENOVO) (Fixed) (Total:29 GB) (Free:26.77 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 58E6A4FE) Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=552.2 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=29 GB) - (Type=OF Extended) Partition 4: (Not Active) - (Size=14.8 GB) - (Type=12) ==================== End of log ============================