Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014 Ran by Serwer at 2014-04-05 16:29:27 Running from D:\Users\Serwer\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: Advanced SystemCare Ultimate (Disabled - Up to date) {1C304DC4-1D72-5DB9-B33A-43B638ECFD30} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== 7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov) Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.19.1 - Mirillis) Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated) Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated) Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.) Advanced SystemCare Ultimate 7 (HKLM-x32\...\Advanced SystemCare Ultimate_is1) (Version: 7.0.1 - IObit) AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.55.1324, 15.11.2013 - AIMP DevTeam) Aktualizacje NVIDIA 9.3.21 (Version: 9.3.21 - NVIDIA Corporation) Hidden ALLPlayer V5.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLCinema Ltd.) ASUS Xonar DS Audio Driver (HKLM\...\C-Media Oxygen HD Audio Driver) (Version: - ) Auslogics DiskDefrag (HKLM-x32\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 4.5.1.0 - Auslogics Labs Pty Ltd) Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB) Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: - ) Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.4.0.0 - Canon Inc.) Canon MG3100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3100_series) (Version: - ) Canon MP Navigator EX 5.0 (HKLM-x32\...\MP Navigator EX 5.0) (Version: - ) Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: - ) Canon Solution Menu EX (HKLM-x32\...\CanonSolutionMenuEX) (Version: - ) CCleaner (HKLM\...\CCleaner) (Version: 4.12 - Piriform) Colin McRae Rally 2005 (HKLM-x32\...\{15CEC2E1-16AF-11D9-88E4-0004769F25D1}) (Version: 1.1 - Codemasters) Craften Terminal 3.4.5 (HKLM-x32\...\{4e7c3936-7c06-4ef0-928b-c5d92f372578}_is1) (Version: 3.4.5 - Craften.de) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd) Driver Booster (HKLM-x32\...\Driver Booster_is1) (Version: 1.3 - IObit) Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - ) Free Sound Recorder v9.4.1 (HKLM-x32\...\Free Sound Recorder_is1) (Version: - Copyright(C) 2005-2012 FreeSoundRecorder Technologies, Inc.) Gadu-Gadu 6.1 (HKLM-x32\...\Gadu-Gadu) (Version: - ) GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden GG (HKCU\...\GG) (Version: 11 - GG Network S.A.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.) Google Update Helper (x32 Version: 1.3.23.9 - Google Inc.) Hidden Gothic 3 - Quest Pack 4 PL (HKLM-x32\...\Gothic 3 - Quest Pack 4 PL) (Version: 4.2.1.75 - RobeN & G3 Community) Gothic III (HKLM-x32\...\{02B244A2-7F6A-42E8-A36F-8C385D7A1625}) (Version: 1.00.0000 - JoWooD Productions Software AG) IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 3.0.4.1099 - IObit) Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.510 - Oracle) Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.58 - LogMeIn, Inc.) LogMeIn Hamachi (x32 Version: 2.2.0.58 - LogMeIn, Inc.) Hidden Mega Browse (HKLM\...\Mega Browse) (Version: 2014.03.11.162559 - Mega Browse) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden Microsoft .NET Framework 4 Client Profile PLK Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden Microsoft .NET Framework 4 Extended PLK Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden Microsoft Access MUI (Polish) 2013 (x32 Version: 15.0.4433.1507 - Microsoft Corporation) Hidden Microsoft DCF MUI (Polish) 2013 (x32 Version: 15.0.4433.1507 - Microsoft Corporation) Hidden Microsoft Excel MUI (Polish) 2013 (x32 Version: 15.0.4433.1507 - Microsoft Corporation) Hidden Microsoft Groove MUI (Polish) 2013 (x32 Version: 15.0.4433.1507 - Microsoft Corporation) Hidden Microsoft InfoPath MUI (Polish) 2013 (x32 Version: 15.0.4433.1507 - Microsoft Corporation) Hidden Microsoft Lync MUI (Polish) 2013 (x32 Version: 15.0.4433.1507 - Microsoft Corporation) Hidden Microsoft Office 64-bit Components 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft Office Korrekturhilfen 2013 - Deutsch (x32 Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft Office OSM MUI (Polish) 2013 (x32 Version: 15.0.4433.1507 - Microsoft Corporation) Hidden Microsoft Office OSM UX MUI (Polish) 2013 (x32 Version: 15.0.4433.1507 - Microsoft Corporation) Hidden Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUSR) (Version: 15.0.4420.1017 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (x32 Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft Office Proofing (Polish) 2013 (x32 Version: 15.0.4433.1507 - Microsoft Corporation) Hidden Microsoft Office Proofing Tools 2013 - English (x32 Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft Office Shared 64-bit MUI (Polish) 2013 (Version: 15.0.4433.1507 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (Polish) 2013 (x32 Version: 15.0.4433.1507 - Microsoft Corporation) Hidden Microsoft OneNote MUI (Polish) 2013 (x32 Version: 15.0.4433.1507 - Microsoft Corporation) Hidden Microsoft Outlook MUI (Polish) 2013 (x32 Version: 15.0.4433.1507 - Microsoft Corporation) Hidden Microsoft PowerPoint MUI (Polish) 2013 (x32 Version: 15.0.4433.1507 - Microsoft Corporation) Hidden Microsoft Publisher MUI (Polish) 2013 (x32 Version: 15.0.4433.1507 - Microsoft Corporation) Hidden Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Word MUI (Polish) 2013 (x32 Version: 15.0.4433.1507 - Microsoft Corporation) Hidden Mozilla Firefox 28.0 (x86 pl) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 pl)) (Version: 28.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla) Narzędzia sprawdzające pakietu Microsoft Office 2013 — polski (x32 Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Nexon Game Manager (HKLM-x32\...\{289AC7E0-0AEE-4a7b-913C-709D9803D23E}) (Version: - ) NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.57.35 - NVIDIA Corporation) NVIDIA ForceWare Network Access Manager (HKLM-x32\...\{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}) (Version: 1.00.7325.0 - NVIDIA Corporation) NVIDIA GeForce Experience 1.7.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.7.1 - NVIDIA Corporation) NVIDIA Install Application (Version: 2.1002.145.1024 - NVIDIA Corporation) Hidden NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden NVIDIA Oprogramowanie systemu PhysX 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation) NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden NVIDIA ShadowPlay 9.3.21 (Version: 9.3.21 - NVIDIA Corporation) Hidden NVIDIA Sterownik dźwięku HD 1.3.26.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.26.4 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 331.58 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 331.58 - NVIDIA Corporation) NVIDIA Update Components (Version: 9.3.21 - NVIDIA Corporation) Hidden NVIDIA Virtual Audio 1.2.9 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.9 - NVIDIA Corporation) Origin (HKLM-x32\...\Origin) (Version: 9.3.10.4710 - Electronic Arts, Inc.) Panel sterowania NVIDIA 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden Platform (x32 Version: 1.36 - VIA Technologies, Inc.) Hidden Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Rejestracja użytkownika drukarki Canon MG3100 series (HKLM-x32\...\Rejestracja użytkownika drukarki Canon MG3100 series) (Version: - ) RelevantKnowledge (HKLM-x32\...\{d08d9f98-1c78-4704-87e6-368b0023d831}) (Version: 1.3.336.320 - TMRG, Inc.) <==== ATTENTION Screenshot Captor 4.8 (HKLM-x32\...\ScreenshotCaptor_is1) (Version: - ) SHIELD Streaming (Version: 1.6.53 - NVIDIA Corporation) Hidden SiteFinder (HKLM-x32\...\SiteFinder) (Version: 1.0.0.0 - SiteFinder) <==== ATTENTION Skype™ 6.13 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.13.104 - Skype Technologies S.A.) Smart Defrag 3 (HKLM-x32\...\Smart Defrag 3_is1) (Version: 3.1 - IObit) Smart Technology Programming Software 7.0.27.13 (HKLM\...\{BD90BC1C-115D-47E1-B85C-07AE182C3AB8}) (Version: 7.0.27.13 - Mad Catz) SupTab (HKLM-x32\...\SupTab) (Version: 1.1.1.0 - ) <==== ATTENTION Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.0 - IObit) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.13 - TeamSpeak Systems GmbH) Tibia (HKLM-x32\...\Tibia_is1) (Version: 10.22 - CipSoft GmbH) Tibia MULTI-ip changer (HKLM-x32\...\TMIPC) (Version: - Asprate) TL-WN721N/TL-WN722N Driver (HKLM-x32\...\{38A1E3ED-D913-41D2-9953-A93D5ACE3ADF}) (Version: 1.0.0 - TP-LINK) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871) (Version: 1 - Microsoft Corporation) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523) (Version: 1 - Microsoft Corporation) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2600217) (Version: 1 - Microsoft Corporation) Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2836939) (Version: 1 - Microsoft Corporation) Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2836939v3) (Version: 3 - Microsoft Corporation) Update for Microsoft .NET Framework 4 Extended (KB2468871) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2468871) (Version: 1 - Microsoft Corporation) Update for Microsoft .NET Framework 4 Extended (KB2533523) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2533523) (Version: 1 - Microsoft Corporation) Update for Microsoft .NET Framework 4 Extended (KB2600217) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2600217) (Version: 1 - Microsoft Corporation) Update for Microsoft .NET Framework 4 Extended (KB2836939) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2836939) (Version: 1 - Microsoft Corporation) Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2836939v3) (Version: 3 - Microsoft Corporation) VIA Platforma Menedżera urządzeń (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.36 - VIA Technologies, Inc.) WapSter AQQ (HKLM-x32\...\AQQ) (Version: 2.4.6.10 - Creative Team S.A.) WarRock (HKLM-x32\...\Warrock EU) (Version: - ) WinRAR 5.00 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH) World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net) ==================== Restore Points ========================= 04-04-2014 19:01:30 Usunięte Colin McRae Rally 2005 ==================== Hosts content: ========================== 2009-07-14 04:34 - 2014-04-05 15:27 - 00000027 ____A D:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (whitelisted) ============= Task: {0B425652-4831-418F-A0FA-E99A2094B220} - System32\Tasks\SmartDefrag3_Update => D:\Program Files (x86)\IObit\Smart Defrag 3\AutoUpdate.exe [2014-03-10] (IObit) Task: {109EF915-9E3B-4E9F-8BDF-220577DAFDDB} - System32\Tasks\Opera D5 => D:\Program Files (x86)\Opera\launcher.exe Task: {205EFFD5-7F11-4105-BF56-3C6D038470E9} - System32\Tasks\ASC7U_SkipUac_Serwer => D:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ASC.exe [2013-12-10] (IObit) Task: {233A8312-5FB6-47A7-9773-0781FD564030} - System32\Tasks\Opera D7 => D:\Program Files (x86)\Opera\launcher.exe Task: {28809F9D-7721-4B6A-BC4A-0E4AB63FA047} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => D:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation) Task: {4D42AD55-22EC-4D31-A412-BCBB5B99B817} - System32\Tasks\Opera D6 => D:\Program Files (x86)\Opera\launcher.exe Task: {5BE81E23-3498-4667-85BC-140C8BA4CA07} - System32\Tasks\SmartDefrag3_Startup => D:\Program Files (x86)\IObit\Smart Defrag 3\SmartDefrag.exe [2014-03-10] (IObit) Task: {63C38881-BF38-4F42-98EC-DE181A41D921} - System32\Tasks\GoogleUpdateTaskMachineUA => D:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-11] (Google Inc.) Task: {6D6BBDD3-660C-435D-B00C-A15B3972155D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => D:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation) Task: {71D1C94C-4722-4271-BEBC-8C5F1C36D0C6} - System32\Tasks\Driver Booster Scan => D:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2014-03-12] (IObit) Task: {96729FB0-3A86-4095-9733-9E841A88D7F3} - System32\Tasks\ASC7_PerformanceMonitor => D:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\Monitor.exe [2013-11-29] (IObit) Task: {B311C540-572A-4468-9B0A-789D1FF67BD9} - System32\Tasks\GoogleUpdateTaskMachineCore => D:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-11] (Google Inc.) Task: {B5F97515-3E1E-420A-811A-3242D3CC9706} - System32\Tasks\Driver Booster Update => D:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2014-03-13] (IObit) Task: {C78DAA0D-B091-40EB-9BDB-AE191B049662} - System32\Tasks\Opera D3 => D:\Program Files (x86)\Opera\launcher.exe Task: {C8D589A9-6A3C-4BD8-BE6D-3BFE04114489} - System32\Tasks\Adobe Flash Player Updater => D:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-11] (Adobe Systems Incorporated) Task: {CB2E090E-9401-4AB4-9993-19E6B0AF642C} - System32\Tasks\Driver Booster SkipUAC (Serwer) => D:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2014-03-14] (IObit) Task: {EAD15D03-66B4-4287-B4AC-BC97EE61BBEB} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => D:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe Task: {F1941EE9-1DE4-46FD-A6E0-1236D6FFC93F} - System32\Tasks\Opera D4 => D:\Program Files (x86)\Opera\launcher.exe Task: {FF4B04D4-BDC3-4DFA-A8B0-DFAF358044D8} - System32\Tasks\CCleanerSkipUAC => D:\Program Files\CCleaner\CCleaner.exe [2014-03-18] (Piriform Ltd) Task: D:\Windows\Tasks\Adobe Flash Player Updater.job => D:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: D:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => D:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: D:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => D:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2013-07-14 00:37 - 2014-03-04 15:05 - 00116056 _____ () D:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2014-03-11 18:26 - 2014-04-03 00:11 - 00350496 _____ () D:\Program Files (x86)\Mega Browse\updateMegaBrowse.exe 2014-03-11 21:54 - 2014-04-02 23:38 - 00350496 _____ () D:\Program Files (x86)\Mega Browse\bin\utilMegaBrowse.exe 2013-10-22 15:41 - 2010-01-21 01:53 - 00496232 _____ () D:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe 2013-10-22 15:41 - 2010-01-21 01:52 - 00076392 _____ () D:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nv_common.dll 2013-10-22 15:41 - 2010-01-21 01:53 - 00731752 _____ () D:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\SpecialCase.dll 2013-10-22 15:41 - 2010-01-21 01:53 - 00209000 _____ () D:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe 2014-03-25 16:30 - 2014-03-25 16:30 - 00287008 _____ () D:\Program Files (x86)\Mega Browse\bin\FilterApp_C64.exe 2014-03-19 18:02 - 2014-04-04 22:16 - 00094496 _____ () D:\Program Files (x86)\Mega Browse\bin\XTLSApp.exe 2014-03-11 21:19 - 2013-01-15 19:47 - 00517440 _____ () D:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\sqlite3.dll 2014-03-11 21:19 - 2013-11-14 17:02 - 00218944 _____ () D:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\Antivirus\bdfltlib.dll 2014-03-11 21:19 - 2013-11-14 17:07 - 00225600 _____ () D:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\Antivirus\smartscn.dll 2014-04-03 18:44 - 2012-09-05 18:55 - 00892288 _____ () D:\Program Files (x86)\IObit\Smart Defrag 3\webres.dll 2014-03-11 21:19 - 2013-01-15 19:48 - 00348992 _____ () D:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\madExcept_.bpl 2014-03-11 21:19 - 2013-01-15 19:48 - 00183616 _____ () D:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\madBasic_.bpl 2014-03-11 21:19 - 2013-01-15 19:48 - 00051008 _____ () D:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\madDisAsm_.bpl 2014-03-11 21:19 - 2013-01-15 19:47 - 00893248 _____ () D:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\webres.dll 2014-04-03 23:15 - 2014-04-03 23:15 - 03642480 _____ () D:\Program Files (x86)\Mozilla Firefox\mozjs.dll 2014-03-11 23:35 - 2014-03-11 23:35 - 16276872 _____ () D:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll 2013-10-23 14:15 - 2013-10-23 14:15 - 00230376 _____ () D:\Program Files (x86)\TeamSpeak 3 Client\soundbackends\directsound_win32.dll 2013-10-23 14:15 - 2013-10-23 14:15 - 00237032 _____ () D:\Program Files (x86)\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win32.dll 2013-10-23 14:15 - 2013-10-23 14:15 - 00431080 _____ () D:\Program Files (x86)\TeamSpeak 3 Client\plugins\clientquery_plugin.dll 2013-10-23 14:15 - 2013-10-23 14:15 - 00555496 _____ () D:\Program Files (x86)\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll ==================== Alternate Data Streams (whitelisted) ========= AlternateDataStreams: D:\ProgramData\TEMP:4AE6BD6E AlternateDataStreams: D:\ProgramData\TEMP:6BE50C2B ==================== Safe Mode (whitelisted) =================== HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" ==================== Disabled items from MSCONFIG ============== ==================== Faulty Device Manager Devices ============= Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (04/05/2014 03:26:18 PM) (Source: NvStreamSvc) (User: ) Description: NvStreamSvcNvVAD initialization failed [6] Error: (04/05/2014 03:26:18 PM) (Source: NvStreamSvc) (User: ) Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0] Error: (04/05/2014 02:26:56 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1". Nie można odnaleźć zestawu zależnego Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (04/05/2014 02:26:56 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1". Nie można odnaleźć zestawu zależnego Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (04/05/2014 02:26:45 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1". Nie można odnaleźć zestawu zależnego Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (04/05/2014 02:26:45 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1". Nie można odnaleźć zestawu zależnego Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (04/05/2014 02:26:44 PM) (Source: NvStreamSvc) (User: ) Description: NvStreamSvcNvVAD initialization failed [6] Error: (04/05/2014 02:26:44 PM) (Source: NvStreamSvc) (User: ) Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0] Error: (04/05/2014 01:20:53 PM) (Source: Application Hang) (User: ) Description: Program WarRock.exe w wersji 2.0.0.2 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: b90 Godzina rozpoczęcia: 01cf50c0f1b44794 Godzina zakończenia: 496 Ścieżka aplikacji: D:\Warrock EU\System\WarRock.exe Identyfikator raportu: 4e72adf5-bcb4-11e3-9ec7-bcaec582f204 Error: (04/05/2014 01:18:50 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1". Nie można odnaleźć zestawu zależnego Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. System errors: ============= Error: (04/05/2014 03:26:55 PM) (Source: Service Control Manager) (User: ) Description: Usługa LiveUpdate niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (04/05/2014 03:21:26 PM) (Source: Service Control Manager) (User: ) Description: Usługa PEVSystemStart jest oznaczona jako usługa interakcyjna. System jest jednak skonfigurowany tak, aby nie zezwalać na usługi interakcyjne, dlatego ta usługa może nie działać właściwie. Error: (04/05/2014 02:44:00 PM) (Source: Application Popup) (User: ) Description: Ładowanie sterownika \??\D:\ComboFix\catchme.sys zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika. Error: (04/05/2014 02:37:00 PM) (Source: Service Control Manager) (User: ) Description: Usługa PEVSystemStart jest oznaczona jako usługa interakcyjna. System jest jednak skonfigurowany tak, aby nie zezwalać na usługi interakcyjne, dlatego ta usługa może nie działać właściwie. Error: (04/05/2014 02:30:12 PM) (Source: Service Control Manager) (User: ) Description: Usługa Wpm Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (04/05/2014 02:27:24 PM) (Source: Service Control Manager) (User: ) Description: Usługa LiveUpdate niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (04/05/2014 02:26:07 PM) (Source: EventLog) (User: ) Description: Poprzednie zamknięcie systemu przy 14:25:22 na ‎2014-‎04-‎05 było nieoczekiwane. Error: (04/05/2014 01:18:49 PM) (Source: Service Control Manager) (User: ) Description: Usługa LiveUpdate niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (04/05/2014 00:06:15 PM) (Source: DCOM) (User: ) Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF} Error: (04/05/2014 00:04:40 PM) (Source: Service Control Manager) (User: ) Description: Usługa LiveUpdate niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Microsoft Office Sessions: ========================= Error: (04/05/2014 03:26:18 PM) (Source: NvStreamSvc)(User: ) Description: NvStreamSvcNvVAD initialization failed [6] Error: (04/05/2014 03:26:18 PM) (Source: NvStreamSvc)(User: ) Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0] Error: (04/05/2014 02:26:56 PM) (Source: SideBySide)(User: ) Description: Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"D:\Program Files (x86)\Canon\Solution Menu EX\MFC80U.DLL Error: (04/05/2014 02:26:56 PM) (Source: SideBySide)(User: ) Description: Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"D:\Program Files (x86)\Canon\Solution Menu EX\MFC80U.DLL Error: (04/05/2014 02:26:45 PM) (Source: SideBySide)(User: ) Description: Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"D:\Program Files (x86)\Canon\Solution Menu EX\MFC80U.DLL Error: (04/05/2014 02:26:45 PM) (Source: SideBySide)(User: ) Description: Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"D:\Program Files (x86)\Canon\Solution Menu EX\MFC80U.DLL Error: (04/05/2014 02:26:44 PM) (Source: NvStreamSvc)(User: ) Description: NvStreamSvcNvVAD initialization failed [6] Error: (04/05/2014 02:26:44 PM) (Source: NvStreamSvc)(User: ) Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0] Error: (04/05/2014 01:20:53 PM) (Source: Application Hang)(User: ) Description: WarRock.exe2.0.0.2b9001cf50c0f1b44794496D:\Warrock EU\System\WarRock.exe4e72adf5-bcb4-11e3-9ec7-bcaec582f204 Error: (04/05/2014 01:18:50 PM) (Source: SideBySide)(User: ) Description: Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"D:\Program Files (x86)\Canon\Solution Menu EX\MFC80U.DLL CodeIntegrity Errors: =================================== Date: 2014-04-05 14:44:00.838 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-04-05 14:44:00.698 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Percentage of memory in use: 54% Total physical RAM: 4095.23 MB Available physical RAM: 1870.66 MB Total Pagefile: 8188.63 MB Available Pagefile: 5739.23 MB Total Virtual: 8192 MB Available Virtual: 8191.82 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:488.28 GB) (Free:465.71 GB) NTFS Drive d: () (Fixed) (Total:443.13 GB) (Free:130.09 GB) NTFS Drive h: (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.04 GB) NTFS ==>[System with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: D0268E21) Partition: GPT Partition Type. ==================== End Of Log ============================