Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-09-2013 Ran by Prezes at 2013-09-01 14:07:21 Running from C:\Users\Prezes\Desktop Boot Mode: Normal ========================================================== ==================== Installed Programs ======================= µTorrent (x32 Version: 3.0.0) 7-Zip 9.20 (x32) Adobe AIR (x32 Version: 3.8.0.870) Adobe Anchor Service CS3 (x32 Version: 1.0) Adobe Asset Services CS3 (x32 Version: 3) Adobe Bridge CS3 (x32 Version: 2) Adobe Bridge Start Meeting (x32 Version: 1.0) Adobe Camera Raw 4.0 (x32 Version: 4.0) Adobe CMaps (x32 Version: 1.0) Adobe Color - Photoshop Specific (x32 Version: 1.0) Adobe Color Common Settings (x32 Version: 1.0) Adobe Color EU Recommended Settings (x32 Version: 1.0) Adobe Color JA Extra Settings (x32 Version: 1.0) Adobe Color NA Extra Settings (x32 Version: 1.0) Adobe Default Language CS3 (x32 Version: 1.0) Adobe Device Central CS3 (x32 Version: 1.0) Adobe ExtendScript Toolkit 2 (x32 Version: 2.0) Adobe Flash CS3 (x32 Version: 9.0) Adobe Flash CS3 Professional (x32 Version: 9.0.0) Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.94) Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.94) Adobe Fonts All (x32 Version: 1.0) Adobe Help Viewer CS3 (x32 Version: 1) Adobe Linguistics CS3 (x32 Version: 3.0.0) Adobe PDF Library Files (x32 Version: 8.0) Adobe Photoshop CS3 (x32 Version: 10) Adobe Photoshop CS3 (x32 Version: 10.0) Adobe Reader XI (11.0.03) (x32 Version: 11.0.03) Adobe Setup (x32 Version: 1.0) Adobe Shockwave Player 12.0 (x32 Version: 12.0.3.133) Adobe Stock Photos CS3 (x32 Version: 1.5) Adobe Type Support (x32 Version: 1.0) Adobe Update Manager CS3 (x32 Version: 5.1.0) Adobe Version Cue CS3 Client (x32 Version: 3) Adobe WinSoft Linguistics Plugin (x32 Version: 1.0) Adobe XMP Panels CS3 (x32 Version: 1.0) Aladdin DiagnostiX 1.10 (x32) AllePomocnik v1.3.6 (x32) Analysis Lotto version 3.6 (x32) Apple Software Update (x32 Version: 2.1.3.127) Applian FLV Player (x32 Version: 2.0.24) Asystent v.4.8.2.0 (27.06.2011) (x32) Audacity 2.0.3 (x32 Version: 2.0.3) avast! Free Antivirus (x32 Version: 8.0.1489.0) CodeBlocks (HKCU Version: 12.11) Colorific (x32) D3DX10 (x32 Version: 15.4.2368.0902) DAEMON Tools Lite (x32 Version: 4.45.4.0314) EasyUploader v2.6.4 (x32 Version: 2.6.4) Eraser 6.0.10.2620 (Version: 6.0.2620) ESP 2.0 Decryptor (x32 Version: 1.0.2) EVEREST Home Edition v2.20 (x32 Version: 2.20) EXIF Date Changer v2.52 (x32) Exifer (x32) Faktura TAX CARE 1.0.20 (x32) FakturaVAT.net edycja z dnia 2011-10-31 godz 16:00:00 (x32) FastStone Capture 5.3 (x32 Version: 5.3) FFmpeg v0.6.2 for Audacity (x32) FileZilla Client 3.5.3 (x32 Version: 3.5.3) FlexLoader (x32 Version: 1.0.2) FlexLoader (x32 Version: 1.0.2.1) Free Audio CD to MP3 Converter version 1.3.12.1228 (x32 Version: 1.3.12.1228) Full Video Converter 9 (x32) Gadu-Gadu 10 (x32) Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922) GIMP 2.6.11 (x32 Version: 2.6.11) Google Chrome (x32 Version: 29.0.1547.62) Google Update Helper (x32 Version: 1.3.21.153) Hardlock Device Drivers (x32) Hardlock Server (x32) High-Definition Video Playback 10 (x32 Version: 7.0.11400.29.0) Inkscape 0.48.2 (x32 Version: 0.48.2) Java 7 Update 25 (64-bit) (Version: 7.0.250) Java 7 Update 25 (x32 Version: 7.0.250) Java Auto Updater (x32 Version: 2.1.9.5) LAME v3.99.3 (for Windows) (x32) LookDisk version 4.9a (x32 Version: 4.9a) Mega Lottery Picker version .5 (x32) Microsoft Application Error Reporting (Version: 12.0.6015.5000) Microsoft Primary Interoperability Assemblies 2005 (x32 Version: 8.0.50727.42) Microsoft Silverlight (x32 Version: 4.1.10329.0) Microsoft SQL Server 2005 (x32) Microsoft SQL Server 2005 Backward compatibility (Version: 8.05.2309) Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000) Microsoft SQL Server 2005 Express Edition (INSERTGT) (x32 Version: 9.4.5000.00) Microsoft SQL Server Native Client (Version: 9.00.5000.00) Microsoft SQL Server Setup Support Files (English) (x32 Version: 9.00.5000.00) Microsoft SQL Server VSS Writer (Version: 9.00.5000.00) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.50727.42) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (x32 Version: 10.0.30319) Motorola Driver Installation 4.5.0 (Version: 4.5.0) Motorola Phone Tools (x32 Version: 5.0.5 1/18/2008) Motorola Phone Tools (x32 Version: 5.00) Mozilla Firefox 23.0.1 (x86 pl) (x32 Version: 23.0.1) Mozilla Thunderbird 17.0.8 (x86 pl) (x32 Version: 17.0.8) MSVCRT (x32 Version: 15.4.2862.0708) MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0) Nero 10 Menu TemplatePack Basic (x32 Version: 10.0.10600.6.0) Nero 10 Movie ThemePack Basic (x32 Version: 10.0.10600.6.0) Nero BackItUp 10 (x32 Version: 5.4.11800.21.100) Nero BackItUp 10 Help (CHM) (x32 Version: 1.0.10700) Nero Burning ROM 10 (x32 Version: 10.0.11100.10.100) Nero BurningROM 10 Help (CHM) (x32 Version: 1.0.10700) Nero BurnRights 10 (x32 Version: 4.0.11000.12.100) Nero BurnRights 10 Help (CHM) (x32 Version: 1.0.10600) Nero Control Center 10 (x32 Version: 10.0.12000.1.4) Nero ControlCenter 10 Help (CHM) (x32 Version: 1.0.10700) Nero Core Components 10 (x32 Version: 2.0.13700.0.1) Nero CoverDesigner 10 (x32 Version: 5.0.10900.11.100) Nero CoverDesigner 10 Help (CHM) (x32 Version: 1.0.10600) Nero DiscSpeed 10 (x32 Version: 6.0.10800.7.100) Nero DiscSpeed 10 Help (CHM) (x32 Version: 1.0.10600) Nero Dolby Files 10 (x32 Version: 2.0.11000.0.10) Nero Express 10 (x32 Version: 10.0.11000.10.100) Nero Express 10 Help (CHM) (x32 Version: 1.0.10700) Nero InfoTool 10 (x32 Version: 7.0.10800.8.100) Nero InfoTool 10 Help (CHM) (x32 Version: 1.0.10600) Nero MediaHub 10 (x32 Version: 1.0.13400.11.100) Nero MediaHub 10 Help (CHM) (x32 Version: 1.0.10700) Nero Multimedia Suite 10 (x32 Version: 10.0.13200) Nero Recode 10 (x32 Version: 4.6.10900.4.100) Nero Recode 10 Help (CHM) (x32 Version: 1.0.10600) Nero RescueAgent 10 (x32 Version: 3.0.10900.9.100) Nero RescueAgent 10 Help (CHM) (x32 Version: 1.0.10700) Nero SoundTrax 10 (x32 Version: 4.6.10600.2.100) Nero SoundTrax 10 Help (CHM) (x32 Version: 1.0.10600) Nero StartSmart 10 (x32 Version: 10.0.11200.12.100) Nero StartSmart 10 Help (CHM) (x32 Version: 1.0.10700) Nero Update (x32 Version: 1.0.0017) Nero Vision 10 (x32 Version: 7.0.11100.8.100) Nero Vision 10 Help (CHM) (x32 Version: 1.0.10600) Nero WaveEditor 10 (x32 Version: 5.6.10600.2.100) Nero WaveEditor 10 Help (CHM) (x32 Version: 1.0.10600) NetWorkingWizard_ICM (x32 Version: 1.02.025) Notepad++ (x32 Version: 6.3) Nowe Gadu-Gadu (x32) Obfusc Php 2.2.0 (x32) Obsługa programów Apple (x32 Version: 2.3.4) OpenOffice.org 3.4.1 (x32 Version: 3.41.9593) OverDisk (remove only) (x32) Panda USB Vaccine 1.0.1.4 (x32) PDF Settings (x32 Version: 1.0) Picasa 3 (x32 Version: 3.8) PLAY ONLINE (x32 Version: 11.302.09.06.264) Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922) Podstawowe programy Windows Live (x32 Version: 15.4.3538.0513) progeCAD 2013 Professional English (x32 Version: 13.0.6.18) Programmer's Notepad (x32 Version: 2.3.4.2350) Python 3.2.2 (64-bit) (Version: 3.2.2150) QuickTime (x32 Version: 7.74.80.86) Replace Text (x32 Version: 2.2) RocketDock 1.3.5 (x32) rosoft .NET Framework 4 Client Profile (Version: 4.0.30320) Samsung Kies (x32 Version: 2.0.3.11082_152) SAMSUNG USB Driver for Mobile Phones (Version: 1.5.5.0) Save Flash 4.3 (x32 Version: 4.3) Screaming Frog SEO Spider (x32 Version: 0.01) Sello (x32 Version: 1.7.2.1) Sentinel Runtime (x32 Version: 6.0.1.22095) Skype Click to Call (x32 Version: 5.10.9560) Skype™ 6.6 (x32 Version: 6.6.106) Smart Data Recovery v3.0 (x32 Version: 3.0) SoftSpire vCardConverter (x32) Sothink SWF Decompiler (x32 Version: 7.1) Sothink SWF Editor version 1.1 (x32 Version: 1.1) SpeedTouch 330 (x32) Stefan (x32 Version: 0.9.1.2474) STP Viewer 2.3 (x32) swMSM (x32 Version: 12.0.0.1) Thunderbird-Tray (x32 Version: 1.2) TL-WN881ND Driver (x32 Version: 1.0.0) Total Commander (Remove or Repair) (x32 Version: 7.56a) TP-LINK Wireless Configuration Utility (x32 Version: 1.0.0) True Internet Color (x32) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1) UsbFix By TeamXscript (x32) VisualLightBox (x32) wersja 3.5 z 24-05-2011 (x32) Win7codecs (x32 Version: 3.4.6) Windows Live Communications Platform (x32 Version: 15.4.3502.0922) Windows Live ID Sign-in Assistant (Version: 7.250.4232.0) Windows Live Installer (x32 Version: 15.4.3502.0922) Windows Live Language Selector (Version: 15.4.3538.0513) Windows Live Movie Maker (x32 Version: 15.4.3502.0922) Windows Live Photo Common (x32 Version: 15.4.3502.0922) Windows Live Photo Gallery (x32 Version: 15.4.3502.0922) Windows Live PIMT Platform (x32 Version: 15.4.3508.1109) Windows Live SOXE (x32 Version: 15.4.3502.0922) Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922) Windows Live UX Platform (x32 Version: 15.4.3502.0922) Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109) Windows Media Player Firefox Plugin (x32 Version: 1.0.0.8) WinRAR 4.00 (64-bitowy) (Version: 4.00.0) XAMPP 1.8.1 (x32) XnView 1.98 (x32 Version: 1.98) ==================== Restore Points ========================= 28-08-2013 09:24:36 Windows Update 28-08-2013 10:13:05 Windows Update 28-08-2013 11:08:37 Zainstalowano: OpenOffice.org 3.4.1 28-08-2013 11:24:29 Installed Java 7 Update 25 28-08-2013 11:27:57 Installed QuickTime ==================== Hosts content: ========================== 2009-07-14 04:34 - 2011-10-29 13:50 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (whitelisted) ============= Task: {04947307-C0C8-41DA-8C96-5E19BA7AC16D} - System32\Tasks\{D8390D49-40DF-4A49-96E2-F16BF942076B} => F:\Speed_Touch_330_Vista\SpeedTouch330_for_Vista\setup.exe No File Task: {0BC24F36-2148-4F54-8650-AA05EFA77EBF} - System32\Tasks\{829FEFAA-B2D9-418C-BEC3-3C48EF60DB5C} => C:\Program Files (x86)\INTERIAPL\Stefan\Stefan.exe [2009-06-15] (INTERIA.PL S.A.) Task: {0C9F353E-BF4C-4DAC-8C7C-131391F06D8E} - System32\Tasks\{5A449679-FBA2-4ED4-9C16-1E6376A827AA} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-06-21] (Skype Technologies S.A.) Task: {231D1BE2-90F8-4841-AE63-9F1233BA9D05} - System32\Tasks\{E81E6E44-0EAD-4FB4-A8D4-AFADFEE3E4AC} => G:\Audio\Setup\Setup.exe No File Task: {2921ED85-63C3-4F12-B86E-88D6D7370C0F} - System32\Tasks\{B0ED3885-B7D2-4F99-ABB2-FCD70AF2A435} => G:\Setup.exe No File Task: {32B74A46-1C4B-45BA-888B-D2088A8307FA} - System32\Tasks\Mozilla Thunderbird => C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe [2013-08-28] (Mozilla Corporation) Task: {32D4A359-2EA3-401E-BD2E-8D720BFE1B67} - System32\Tasks\{DDEC0D6A-7926-4DB4-862A-8D464C8769BA} => C:\Program Files (x86)\INTERIAPL\Stefan\Stefan.exe [2009-06-15] (INTERIA.PL S.A.) Task: {33630FB8-B307-4039-8EA8-88BF8C0936A3} - System32\Tasks\{FA6ED1EE-DD7C-426A-8A7F-DD4010F079C2} => C:\Program Files (x86)\INTERIAPL\Stefan\Stefan.exe [2009-06-15] (INTERIA.PL S.A.) Task: {41987AFD-C92F-4C6E-83DD-4A847B9C2396} - System32\Tasks\{53871341-3D1F-4721-8224-CA0D06CD73E7} => F:\Speed_Touch_330_Vista\SpeedTouch330_for_Vista\setup.exe No File Task: {4D3DE514-8A16-4FEA-B362-60E71115C1A9} - System32\Tasks\DealPly => C:\Users\Prezes\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.EXE No File Task: {4EDF1F04-A86C-4FFA-9648-F17FE285FB72} - System32\Tasks\{8D3649A4-D7FD-473A-8A9A-A7600B6679CC} => G:\Setup.exe No File Task: {511834CD-FFB0-4714-9417-F4CD04FE8FDF} - System32\Tasks\{A6038BA3-F7BB-4656-81F5-29F93B873CF7} => G:\Setup.exe No File Task: {53DF09FA-169E-4313-9C83-140C8FEB1114} - System32\Tasks\{43294F93-EB52-46CF-B91A-BD151A004DA6} => G:\NeostradaTP\Neostrada.exe No File Task: {6140831E-C169-4E91-AA09-1F6619883279} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-21] (Adobe Systems Incorporated) Task: {62533C0E-12D8-477E-972C-3D40FCD2765B} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task Task: {6302BB23-0AC9-4A38-B241-58EE77B37246} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-02-24] (Google Inc.) Task: {649A3A75-9B33-4AB6-91C9-E21002E3BBD4} - System32\Tasks\{7CD16F16-274C-4A7F-B8C2-CF6715EADF77} => G:\NeostradaTP\Neostrada.exe No File Task: {6B217C6A-EAE7-48BB-BF10-00729645362A} - System32\Tasks\PandaUSBVaccine => C:\Program Files (x86)\Panda USB Vaccine\RunInteractiveWin.exe [2009-09-23] () Task: {7085AD77-2333-483E-AF62-9C236D8F0389} - System32\Tasks\{B2A7721B-399F-458E-A36D-3A205F9B59D1} => C:\Program Files (x86)\INTERIAPL\Stefan\Stefan.exe [2009-06-15] (INTERIA.PL S.A.) Task: {72330A67-8683-4827-B3E1-41F41A5CE33E} - System32\Tasks\{52B12261-3627-4F19-93C1-FE9A1EDB0AF5} => C:\Program Files (x86)\INTERIAPL\Stefan\Stefan.exe [2009-06-15] (INTERIA.PL S.A.) Task: {72DD6931-9C06-4BDB-A44A-2BACED695BA8} - System32\Tasks\{3491B374-C398-445B-9768-12BD96A691DC} => E:\setup.EXE No File Task: {7B71A60E-A389-4A20-9B18-F482514331D6} - System32\Tasks\{6EA7ECD3-1281-40A9-9F84-27D7270B5306} => G:\Setup.exe No File Task: {85DC4F49-C57D-43D6-9111-9B58EB79A067} - System32\Tasks\{C6E3FF48-E9CB-4123-A79A-CB724D721397} => G:\NeostradaTP\Neostrada.exe No File Task: {8F9B247D-33D7-42F0-A6AA-6A11A9F0005F} - System32\Tasks\{87378348-0E28-4763-9504-CA02C0A76398} => C:\Program Files (x86)\INTERIAPL\Stefan\Stefan.exe [2009-06-15] (INTERIA.PL S.A.) Task: {98DF1DD9-1E70-4093-9069-3588F99841A1} - System32\Tasks\ROC_JAN2013_TB_rmv => C:\Program Files (x86)\AVG Secure Search\PostInstall\ROC.exe No File Task: {ABD4E342-9C38-4AD6-AD2E-8F1D6C59B9FC} - System32\Tasks\{E16A3B1C-BC42-49C7-A7F5-210BCB1ACC70} => G:\Setup.exe No File Task: {AE3F2619-8D53-4ABF-8695-D5458044968D} - System32\Tasks\{8E60CB29-E263-4949-90D3-CCE94DF12E92} => C:\Users\Prezes\Desktop\Adobe_Photoshop_patch\Adobe_Photoshop_patch.exe No File Task: {B345EE48-0754-47B1-A127-639EE0F6077C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {BAE25FC0-EA49-4D6F-88CD-4EFE8C3FC2C2} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-05-09] (AVAST Software) Task: {C81F8D37-C72F-4694-B590-817043BFBDCC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-02-24] (Google Inc.) Task: {D667A028-0082-4B23-B302-100EA8498709} - System32\Tasks\{BB390EF9-AD5F-4037-A81D-990BD071FEB3} => G:\Setup.exe No File Task: {DC0900FB-6C09-45B3-B2D2-879BD48B764D} - System32\Tasks\{71A3C505-268C-4113-A9F0-BB8A636936E2} => C:\Program Files (x86)\INTERIAPL\Stefan\Stefan.exe [2009-06-15] (INTERIA.PL S.A.) Task: {E7E7CE2C-ADC1-4A23-8F9F-0E7885F85FFD} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation) Task: {EEFB4031-E843-41E8-98CF-0DBD8864C2C1} - System32\Tasks\{E806837B-2DE8-4982-8B88-C7610BCE1FCC} => C:\Program Files (x86)\INTERIAPL\Stefan\Stefan.exe [2009-06-15] (INTERIA.PL S.A.) Task: {F084BC42-4227-43B2-8C40-31F972ACF47C} - System32\Tasks\{02CCBB14-76A9-4682-A3F9-75FAE9A6AD93} => C:\Program Files (x86)\INTERIAPL\Stefan\Stefan.exe [2009-06-15] (INTERIA.PL S.A.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\ROC_JAN2013_TB_rmv.job => C:\Program Files (x86)\AVG Secure Search\PostInstall\ROC.exe ==================== Loaded Modules (whitelisted) ============= 2013-06-01 14:02 - 2013-05-09 10:58 - 00133840 _____ (AVAST Software) C:\Program Files\AVAST Software\Avast\ashShA64.dll 2010-01-02 16:42 - 2010-01-02 16:42 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll 2009-07-14 02:08 - 2009-07-14 03:40 - 00748032 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll 2009-07-14 01:53 - 2009-07-14 03:40 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\dfscli.dll 2010-11-21 05:24 - 2010-11-21 05:24 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll 2011-07-01 10:56 - 2011-03-13 14:04 - 00164864 _____ (Alexander Roshal) C:\Program Files\WinRAR\rarext.dll 2012-05-22 08:12 - 2012-05-22 08:12 - 00252344 _____ (The Eraser Project) C:\PROGRA~1\Eraser\ERASER~3.DLL 2011-10-09 10:23 - 2011-10-09 10:23 - 05104968 _____ (Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_044aad0bab1eb146\mfc90u.dll 2011-10-09 10:22 - 2011-10-09 10:22 - 00176456 _____ (Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.DLL 2009-07-14 02:07 - 2009-07-14 03:41 - 00432640 _____ (Microsoft Corporation) C:\Windows\system32\xwizards.dll 2009-07-14 02:11 - 2009-07-14 03:41 - 00712192 _____ (Microsoft Corporation) C:\Windows\system32\WLanConn.dll 2009-07-14 02:07 - 2009-07-14 03:41 - 00238592 _____ (Microsoft Corporation) C:\Windows\system32\ndfapi.dll 2009-07-14 01:35 - 2009-07-14 03:40 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\FunDisc.dll 2010-11-21 05:24 - 2010-11-21 05:24 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fdproxy.dll 2009-07-14 02:08 - 2009-07-14 03:40 - 00101376 _____ (Microsoft Corporation) C:\Windows\System32\fdwcn.dll 2009-07-14 02:08 - 2009-07-14 03:41 - 00120832 _____ (Microsoft Corporation) C:\Windows\System32\wcnapi.dll 2009-07-14 01:35 - 2009-07-14 03:40 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\fdWNet.dll 2012-06-18 17:24 - 2012-06-18 17:24 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_05.dll 2009-07-13 23:59 - 2009-08-18 02:26 - 02921984 _____ (ATI Technologies Inc. ) C:\Windows\system32\atidxx64.dll 2011-10-08 10:09 - 2011-03-30 00:32 - 09992528 _____ (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll 2011-10-09 14:11 - 2011-10-09 14:11 - 15568384 _____ (Microsoft Corporation) C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\8f7abb6f7384aad8fc43659820726eab\mscorlib.ni.dll 2009-07-13 22:37 - 2009-06-10 22:39 - 00085312 _____ (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll 2010-11-21 05:24 - 2010-11-21 05:24 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\Cabinet.dll 2011-10-08 10:09 - 2011-03-30 00:32 - 01576272 _____ (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll 2012-05-22 08:12 - 2012-05-22 08:12 - 00109496 _____ (The Eraser Project) C:\Program Files\Eraser\Eraser.Manager.dll 2011-10-09 14:12 - 2011-10-09 14:12 - 10618880 _____ (Microsoft Corporation) C:\Windows\assembly\NativeImages_v2.0.50727_64\System\3e6eefab37b44e147db80a3c34f0ac05\System.ni.dll 2011-10-09 14:13 - 2011-10-09 14:13 - 02311168 _____ (Microsoft Corporation) C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\ad884485b63f08acfaf791d2dfaadd32\System.Drawing.ni.dll 2011-10-09 14:14 - 2011-10-09 14:14 - 17379840 _____ (Microsoft Corporation) C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\0737590c91350bf9ce7416cbbf789bc7\System.Windows.Forms.ni.dll 2011-10-09 16:05 - 2011-10-09 16:05 - 02131968 _____ (Microsoft Corporation) C:\Windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualBas#\4b85c3384fdda12490074283615d4723\Microsoft.VisualBasic.ni.dll 2012-05-22 08:12 - 2012-05-22 08:12 - 00061880 _____ (The Eraser Project) C:\Program Files\Eraser\Eraser.Util.dll 2010-11-21 05:23 - 2010-11-21 05:23 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\Netapi32.dll 2012-05-22 08:12 - 2012-05-22 08:12 - 00099768 _____ (The Eraser Project) C:\Program Files\Eraser\Plugins\Eraser.DefaultPlugins.dll 2011-10-09 16:05 - 2011-10-09 16:05 - 03315200 _____ (Microsoft Corporation) C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\5f7c48b31971fee1af48dd20c7dd7033\System.Core.ni.dll 2012-05-22 08:12 - 2012-05-22 08:12 - 00284088 _____ (The Eraser Project) C:\Program Files\Eraser\pl\Eraser.resources.dll 2011-10-08 10:09 - 2010-11-13 04:03 - 00425984 _____ (Microsoft Corporation) C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_pl_b77a5c561934e089\System.Windows.Forms.resources.dll 2012-05-22 08:12 - 2012-05-22 08:12 - 00014264 _____ (DELMATIC) C:\Program Files\Eraser\BevelLine.dll 2011-10-09 14:13 - 2011-10-09 14:13 - 06948864 _____ (Microsoft Corporation) C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\318b11a6b944c9ef2998d374c9d5bda8\System.Xml.ni.dll 2012-05-22 08:12 - 2012-05-22 08:12 - 00022456 _____ (The Eraser Project) C:\Program Files\Eraser\Plugins\pl\Eraser.DefaultPlugins.resources.dll 2011-10-08 10:09 - 2010-11-13 04:03 - 00311296 _____ (Microsoft Corporation) C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pl_b77a5c561934e089\mscorlib.resources.dll 2012-05-22 08:12 - 2012-05-22 08:12 - 00030136 _____ (The Eraser Project) C:\Program Files\Eraser\pl\Eraser.Manager.resources.dll 2013-06-01 14:02 - 2013-05-09 10:58 - 00302224 _____ (AVAST Software) C:\Program Files\AVAST Software\Avast\snxhk64.dll 2009-07-14 02:08 - 2009-07-14 03:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\NetworkItemFactory.dll 2009-07-14 02:08 - 2009-07-14 03:40 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\dtsh.dll 2009-07-14 02:17 - 2009-07-14 03:40 - 00024576 _____ (Microsoft Corporation) C:\Windows\System32\drprov.dll 2010-11-21 05:24 - 2010-11-21 05:24 - 00129536 _____ (Microsoft Corporation) C:\Windows\System32\ntlanman.dll 2010-11-21 05:24 - 2010-11-21 05:24 - 00100864 _____ (Microsoft Corporation) C:\Windows\System32\davclnt.dll ==================== Alternate Data Streams (whitelisted) ========== AlternateDataStreams: C:\ProgramData\TEMP:8927A071 AlternateDataStreams: C:\ProgramData\TEMP:E8BE05FA ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (09/01/2013 11:31:29 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/01/2013 09:04:05 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/31/2013 10:05:39 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/31/2013 00:28:58 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/30/2013 10:05:06 PM) (Source: Application Hang) (User: ) Description: Program thunderbird.exe w wersji 17.0.8.4961 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 880 Godzina rozpoczęcia: 01cea5534aec80b0 Godzina zakończenia: 870 Ścieżka aplikacji: C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe Identyfikator raportu: Error: (08/30/2013 09:37:09 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/29/2013 10:52:10 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/29/2013 10:09:05 AM) (Source: Application Error) (User: ) Description: Nazwa aplikacji powodującej błąd: EasyUploader.exe, wersja: 2.6.4.0, sygnatura czasowa: 0x4e7288bd Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0078ad10 Identyfikator procesu powodującego błąd: 0x2028 Godzina uruchomienia aplikacji powodującej błąd: 0xEasyUploader.exe0 Ścieżka aplikacji powodującej błąd: EasyUploader.exe1 Ścieżka modułu powodującego błąd: EasyUploader.exe2 Identyfikator raportu: EasyUploader.exe3 Error: (08/29/2013 09:01:48 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/28/2013 01:27:58 PM) (Source: Microsoft-Windows-CAPI2) (User: ) Description: Przetwarzanie wywołania OnIdentity() w obiekcie System Writer przez Usługi kryptograficzne nie powiodło się. Details: TraverseDir : Unable to FindFirstFile. System Error: Odmowa dostępu. . System errors: ============= Error: (09/01/2013 11:30:48 AM) (Source: Service Control Manager) (User: ) Description: Nie można uruchomić usługi PfModNT z powodu następującego błędu: %%2 Error: (09/01/2013 11:30:47 AM) (Source: Service Control Manager) (User: ) Description: Nie można uruchomić usługi Guardant Emulator Driver z powodu następującego błędu: %%1275 Error: (09/01/2013 11:30:47 AM) (Source: Application Popup) (User: ) Description: Ładowanie sterownika \??\C:\Windows\system32\Drivers\NSHE.SYS zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika. Error: (09/01/2013 11:27:23 AM) (Source: atikmdag) (User: ) Description: Display is not active Error: (09/01/2013 11:27:23 AM) (Source: atikmdag) (User: ) Description: CPLIB :: General - Invalid Parameter Error: (09/01/2013 09:03:30 AM) (Source: Service Control Manager) (User: ) Description: Nie można uruchomić usługi PfModNT z powodu następującego błędu: %%2 Error: (09/01/2013 09:03:30 AM) (Source: Service Control Manager) (User: ) Description: Nie można uruchomić usługi Guardant Emulator Driver z powodu następującego błędu: %%1275 Error: (09/01/2013 09:03:30 AM) (Source: Application Popup) (User: ) Description: Ładowanie sterownika \??\C:\Windows\system32\Drivers\NSHE.SYS zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika. Error: (09/01/2013 09:00:06 AM) (Source: atikmdag) (User: ) Description: Display is not active Error: (09/01/2013 09:00:06 AM) (Source: atikmdag) (User: ) Description: CPLIB :: General - Invalid Parameter Microsoft Office Sessions: ========================= Error: (09/01/2013 11:31:29 AM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/01/2013 09:04:05 AM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/31/2013 10:05:39 AM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/31/2013 00:28:58 AM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/30/2013 10:05:06 PM) (Source: Application Hang)(User: ) Description: thunderbird.exe17.0.8.496188001cea5534aec80b0870C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe Error: (08/30/2013 09:37:09 AM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/29/2013 10:52:10 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/29/2013 10:09:05 AM) (Source: Application Error)(User: ) Description: EasyUploader.exe2.6.4.04e7288bdunknown0.0.0.000000000c00000050078ad10202801cea48bcc3e82a2C:\Program Files (x86)\EasyUploader\EasyUploader.exeunknown4505c1b6-1082-11e3-8669-f46d04024a35 Error: (08/29/2013 09:01:48 AM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/28/2013 01:27:58 PM) (Source: Microsoft-Windows-CAPI2)(User: ) Description: Details: TraverseDir : Unable to FindFirstFile. System Error: Odmowa dostępu. CodeIntegrity Errors: =================================== Date: 2013-09-01 11:30:47.555 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nshe.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-09-01 11:30:47.294 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nshe.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-09-01 09:03:30.126 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nshe.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-09-01 09:03:29.866 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nshe.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-08-31 10:05:33.334 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nshe.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-08-31 10:05:33.302 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nshe.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-08-31 00:28:10.632 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nshe.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-08-31 00:28:10.601 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nshe.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-08-30 09:36:34.431 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nshe.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-08-30 09:36:34.139 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nshe.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Percentage of memory in use: 90% Total physical RAM: 1982.18 MB Available physical RAM: 186.85 MB Total Pagefile: 3964.36 MB Available Pagefile: 1269.03 MB Total Virtual: 8192 MB Available Virtual: 8191.81 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:120.47 GB) (Free:62.3 GB) NTFS Drive d: () (Fixed) (Total:70.01 GB) (Free:50.92 GB) NTFS ==>[System with boot components (obtained from reading drive)] Drive f: () (Fixed) (Total:200.1 GB) (Free:52.57 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 466 GB) (Disk ID: 3C7D3C7C) Partition 1: (Active) - (Size=70 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=396 GB) - (Type=OF Extended) ==================== End Of Log ============================