Additional scan result of Farbar Recovery Scan Tool (x86) Version:12-06-2014 02 Ran by MaGdusia at 2014-06-15 15:31:15 Running from D:\Tomek\Instalki Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: AVG Internet Security 2011 (Enabled - Up to date) {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0} AS: AVG Internet Security 2011 (Enabled - Up to date) {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: AVG Firewall (Enabled) {621CC794-9486-F902-D092-0484E8EA828B} ==================== Installed Programs ====================== 7-Zip 9.20 (HKLM\...\7-Zip) (Version: - ) ABBYY FineReader 6.0 Sprint (HKLM\...\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}) (Version: 6.00.1395.4512 - ABBYY Software House) Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.4.0.2540 - Adobe Systems Incorporated) Adobe AIR (Version: 3.4.0.2540 - Adobe Systems Incorporated) Hidden Adobe Flash Player 14 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated) Adobe Reader X (10.1.9) - Polish (HKLM\...\{AC76BA86-7AD7-1045-7B44-AA1000000001}) (Version: 10.1.9 - Adobe Systems Incorporated) Agere Systems HDA Modem (HKLM\...\Agere Systems Soft Modem) (Version: - Agere Systems) ASUS CopyProtect (HKLM\...\{6B77A7F6-DD63-4F13-A6FF-83137A5AC354}) (Version: 1.0.0007 - ASUS) ASUS Data Security Manager (HKLM\...\{1C8521E5-5A7B-4A4E-A9CD-AD53116EAEE0}) (Version: 1.00.0006 - ASUS) ASUS LifeFrame3 (HKLM\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.9 - ASUS) ASUS Live Update (HKLM\...\{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}) (Version: 2.5.6 - ASUS) ASUS Power4Gear eXtreme (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.0.19 - ASUS) ASUS SmartLogon (HKLM\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0005 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0021 - ASUS) ASUS Virtual Camera (HKLM\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.11 - ASUS) Asus_Camera_ScreenSaver (HKLM\...\Asus_Camera_ScreenSaver) (Version: 2.0.0008 - ASUS) ATK Generic Function Service (HKLM\...\{D3D54F3E-C5C3-443D-978F-87A72E5616E8}) (Version: 1.00.0008 - ATK) ATK Hotkey (HKLM\...\{7C05592D-424B-46CB-B505-E0013E8E75C9}) (Version: 1.0.0038 - ASUS) ATK Media (HKLM\...\{139B0FFA-187E-4BA1-BCA6-6B56B2B6AB8C}) (Version: - ) ATKOSD2 (HKLM\...\{3B05F2FB-745B-4012-ADF2-439F36B2E70B}) (Version: 7.0.0001 - ASUS) AVG 2011 (HKLM\...\AVG) (Version: 10.0.1432 - AVG Technologies) AVG 2011 (Version: 10.0.1432 - AVG Technologies) Hidden AVG 2011 (Version: 10.0.3955 - AVG Technologies) Hidden BitTorrent (HKLM\...\BitTorrent) (Version: 7.1.0 - ) CCleaner (HKLM\...\CCleaner) (Version: 4.08 - Piriform) CyberLink Power2Go (HKLM\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.1924 - CyberLink Corp.) CyberLink Power2Go (Version: 6.0.1924 - CyberLink Corp.) Hidden Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{CA75CBF9-B078-47CB-ABA3-74EFD4FC9A43}) (Version: - Microsoft) Dolby Control Center (HKLM\...\{DE66EFAD-B9CC-4FD4-9157-6C18E5100161}) (Version: 1.1.0503 - Dolby) e-pity 2012 wersja 4.0 (HKLM\...\{089EC62B-72C9-490C-94BD-BA6B833A0EB2}}_is1) (Version: 4.0 - e-file sp. z o.o.) Epson Easy Photo Print 2 (HKLM\...\{87C2248A-C7DD-49ED-9BCD-B312A9D0819E}) (Version: 2.1.0.0 - SEIKO EPSON CORPORATION) Epson Event Manager (HKLM\...\{48F22622-1CC2-4A83-9C1E-644DD96F832D}) (Version: 2.20.00 - SEIKO EPSON Corporation) EPSON Scan (HKLM\...\EPSON Scanner) (Version: - ) Epson Stylus SX110_TX110 Manual (HKLM\...\Epson Stylus SX110_TX110 User’s Guide) (Version: - ) EPSON SX110 Series Printer Uninstall (HKLM\...\EPSON SX110 Series) (Version: - SEIKO EPSON Corporation) Express Gate (HKLM\...\{2862A3C1-0CD9-4D8B-A28C-8C337D4DD5EB}) (Version: 0.8.3.0 - devicevm) ffdshow v1.2.4422 [2012-04-09] (HKLM\...\ffdshow_is1) (Version: 1.2.4422.0 - ) Gadu-Gadu 10 (HKLM\...\Gadu-Gadu 10) (Version: - GG Network S.A.) Google Update Helper (Version: 1.3.23.0 - DealPly Technologies Ltd) Hidden <==== ATTENTION HTC BMP USB Driver (HKLM\...\{31A559C1-9E4D-423B-9DD3-34A6C5398752}) (Version: 1.0.5375 - HTC) HTC Driver Installer (HKLM\...\{6D6664A9-3342-4948-9B7E-034EFE366F0F}) (Version: 3.0.0.023 - HTC Corporation) Inkscape 0.48.4 (HKLM\...\Inkscape) (Version: 0.48.4 - ) ITECIR (HKLM\...\{40580068-9B10-40B5-9548-536CE88AB23C}) (Version: 1.00.0000 - ITE) K-Lite Codec Pack 6.2.0 (Basic) (HKLM\...\KLiteCodecPack_is1) (Version: 6.2.0 - ) LightScribe System Software 1.14.17.1 (HKLM\...\{0E7DBD52-B097-4F2B-A7C7-F105B0D20FDB}) (Version: 1.14.17.1 - LightScribe) Microsoft .NET Framework 3.5 Language Pack SP1 - plk (Version: 3.5.30729 - Microsoft Corporation) Hidden Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation) Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (PLK) (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft Office Access MUI (Polish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Excel MUI (Polish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Groove MUI (Polish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office InfoPath MUI (Polish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office OneNote MUI (Polish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Outlook MUI (Polish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office PowerPoint MUI (Polish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Polish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proofing (Polish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Publisher MUI (Polish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (Polish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Word MUI (Polish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Mozilla Firefox 12.0 (x86 pl) (HKLM\...\Mozilla Firefox 12.0 (x86 pl)) (Version: 12.0 - Mozilla) Mozilla Firefox 29.0.1 (x86 pl) (HKCU\...\Mozilla Firefox 29.0.1 (x86 pl)) (Version: 29.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 12.0 - Mozilla) MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2721691) (HKLM\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) NapiProjekt (2.0.0.2151) (HKLM\...\NapiProjekt_is1) (Version: - ) NB Probe (HKLM\...\{6324A1EF-CEF4-43E3-8BCD-9EF3F67317FD}) (Version: - ) NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - ) Pakiet językowy programu Microsoft .NET Framework 3.5 z dodatkiem SP1 — PLK (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - plk) (Version: - Microsoft Corporation) PhotoScape (HKLM\...\PhotoScape) (Version: - ) PLAY ONLINE (HKLM\...\PLAY ONLINE) (Version: 21.005.11.10.264 - Huawei Technologies Co.,Ltd) PlayReady PC Runtime x86 (HKLM\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation) Pro/ENGINEER Release Wildfire 4.0 Datecode C000 (HKLM\...\Pro/ENGINEER Release Wildfire 4.0 Datecode C000) (Version: Wildfire 4.0 - PTC) QuickTime (HKLM\...\{0E64B098-8018-4256-BA23-C316A43AD9B0}) (Version: 7.72.80.56 - Apple Inc.) Realtek 8169, 8168, 8101E and 8102E Ethernet Network Card Driver for Windows Vista (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0000 - Realtek) Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5643 - Realtek Semiconductor Corp.) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (Version: - Microsoft) Hidden Skype™ 6.11 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 10.1.6.0 - Synaptics) Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation) Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version: - Microsoft) Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version: - Microsoft) Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version: - Microsoft) Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{39767ECA-1731-45DB-AB5B-6BF40E151D66}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUS_{C70D2038-A2C4-4A99-87DE-5272BB44F0CE}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version: - Microsoft) Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft) Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version: - Microsoft) Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{90140000-001A-0415-0000-0000000FF1CE}_Office14.PROPLUS_{70D90D6A-7373-40DD-BF09-9F0B9C55FA36}) (Version: - Microsoft) Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version: - Microsoft) Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM\...\{90140000-0018-0415-0000-0000000FF1CE}_Office14.PROPLUS_{1B21CC3B-3FE0-4386-B29E-6EF68C45FD9E}) (Version: - Microsoft) Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version: - Microsoft) Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version: - Microsoft) Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version: - Microsoft) Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B9B89E01-5B6B-4F73-BC34-B2C0D8ACB4CD}) (Version: - Microsoft) USB2.0 1.3M UVC WebCam (HKLM\...\USB2.0 1.3M UVC WebCam) (Version: - ) WIDCOMM Bluetooth Software (HKLM\...\{03D1988F-469F-4843-8E6E-E5FE9D17889D}) (Version: 5.2.0.500 - Broadcom Corporation) WinFlash (HKLM\...\{DE10AB76-4756-4913-BE25-55D1C1051F9A}) (Version: - ) Wireless Console 2 (HKLM\...\{83F73CB1-7705-49D1-9852-84D839CA2A45}) (Version: 2.0.10 - ATK) ==================== Restore Points ========================= 19-05-2014 17:19:29 Zaplanowany punkt kontrolny 22-05-2014 15:25:26 Zaplanowany punkt kontrolny 23-05-2014 16:59:20 Zaplanowany punkt kontrolny 04-06-2014 14:27:10 Zaplanowany punkt kontrolny 10-06-2014 14:34:51 Zaplanowany punkt kontrolny 13-06-2014 19:44:58 Windows Update 13-06-2014 20:10:41 Windows Update 15-06-2014 11:02:21 Windows Update ==================== Hosts content: ========================== 2006-11-02 12:23 - 2006-09-18 23:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ::1 localhost ==================== Scheduled Tasks (whitelisted) ============= Task: {1A551E20-AD99-47DF-8E77-40C68C9980A3} - System32\Tasks\Dealply => C:\Users\MaGdusia\AppData\Roaming\Dealply\UPDATE~1\UPDATE~1.EXE <==== ATTENTION Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM Task: {299EC6CC-3498-47AB-BBEE-67B300908112} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation) Task: {4CA741AF-D64E-4141-88D6-169D152C48F3} - System32\Tasks\ROC_REG_JAN_DELETE => C:\ProgramData\AVG January 2013 Campaign\ROC.exe [2013-01-17] () Task: {65891920-BD68-4E2D-818D-E7A15AB38924} - System32\Tasks\e-pity2012_styczen => C:\Program Files\e-file\e-pity2012\signxml.exe [2013-01-22] (e-file sp. z o.o.) Task: {6B287B77-84AE-4A62-BA75-2D2B295B2928} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files\ASUS\SmartLogon\sensorsrv.exe [2008-06-18] (ASUS) Task: {6B332051-1480-4ED7-A777-113D18FF9D80} - System32\Tasks\e-pity2012_kwiecien => C:\Program Files\e-file\e-pity2012\signxml.exe [2013-01-22] (e-file sp. z o.o.) Task: {83EF2F14-9187-4BD2-A808-B194A85F87F0} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS.exe Task: {9292DCB0-B9DA-41B5-AEE6-833C672CD57C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-13] (Adobe Systems Incorporated) Task: {A728AE6B-5AB8-4223-AD3E-E6341441A01C} - System32\Tasks\Microsoft\Windows\PLA\System\ConvertLogEntries => Rundll32.exe %windir%\system32\pla.dll,PlaConvertLogEntries Task: {A8A726CC-D9CD-439D-A644-42A7788E7DE5} - System32\Tasks\AutoKMSDaily => C:\Windows\AutoKMS.exe Task: {AE88086D-F5F8-4A76-B65D-9158CEB29E65} - System32\Tasks\ASUS Live Update => C:\Program Files\ASUS\ASUS Live Update\ALU.exe [2007-11-30] () Task: {CC50F141-0F3D-4066-83E0-E3A2A08CEF80} - System32\Tasks\Launch HTC Sync Loader => C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] () Task: {F5B97063-21DA-4019-88A1-1E3EAE80EDE2} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\AutoKMS.job => C:\Windows\AutoKMS.exe Task: C:\Windows\Tasks\AutoKMSDaily.job => C:\Windows\AutoKMS.exe Task: C:\Windows\Tasks\Dealply.job => C:\Users\MaGdusia\AppData\Roaming\Dealply\UPDATE~1\UPDATE~1.EXE <==== ATTENTION Task: C:\Windows\Tasks\ROC_REG_JAN_DELETE.job => C:\ProgramData\AVG January 2013 Campaign\ROC.exe ==================== Loaded Modules (whitelisted) ============= 2008-09-07 09:39 - 2007-06-15 19:28 - 00147456 _____ () C:\Program Files\ASUS\ASUS Data Security Manager\OverlayIconShlExt.dll 2008-09-07 09:39 - 2007-06-02 02:08 - 00143360 _____ () C:\Program Files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll 2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2008-04-10 20:25 - 2008-04-10 20:25 - 00126976 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll 2008-09-07 09:39 - 2007-08-08 11:52 - 00331776 _____ () C:\Program Files\ASUS\ASUS Data Security Manager\AdsmendecExt.dll 2008-09-07 09:39 - 2007-05-18 11:31 - 00073728 _____ () C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe 2007-10-03 06:53 - 2007-10-03 06:53 - 00094208 _____ () C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe 2008-09-07 09:06 - 2007-08-08 09:08 - 00094208 _____ () C:\Program Files\ATKGFNEX\GFNEXSrv.exe 2008-09-07 09:40 - 2007-11-30 20:20 - 00051768 _____ () C:\Program Files\ASUS\ASUS Live Update\ALU.exe 2007-11-05 04:48 - 2007-11-05 04:48 - 00106496 _____ () C:\Program Files\ASUS\ATK Hotkey\MsgTranAgt.exe 2004-05-28 03:13 - 2004-05-28 03:13 - 00057344 _____ () C:\Program Files\ASUS\ATK Hotkey\CMSSC.dll 2008-09-07 09:19 - 2007-07-06 01:53 - 01040384 _____ () C:\Program Files\Wireless Console 2\wcourier.exe 2007-07-10 07:48 - 2007-07-10 07:48 - 00009216 _____ () C:\Program Files\ASUS\Splendid\GLCDdll.dll 2011-03-14 17:27 - 2011-03-14 17:27 - 00271712 _____ () C:\ProgramData\DatacardService\HWDeviceService.exe 2012-04-13 11:12 - 2012-04-13 11:12 - 00088576 _____ () C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe 2007-08-15 20:20 - 2007-08-15 20:20 - 00106496 _____ () C:\Program Files\ASUS\ATK Hotkey\KBFiltr.exe 2008-01-23 19:51 - 2008-01-23 19:51 - 00151552 _____ () C:\Program Files\ASUS\ATK Hotkey\WDC.exe 2008-01-12 07:40 - 2008-01-12 07:40 - 00098304 _____ () C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe 2007-11-13 00:41 - 2007-11-13 00:41 - 00106496 _____ () C:\Program Files\ASUS\ATK Hotkey\MsgTran.dll 2008-09-07 09:39 - 2008-02-01 23:29 - 00061440 _____ () C:\Program Files\ASUS\ATK Media\DMedia.exe 2008-09-07 09:39 - 2008-02-01 23:29 - 00049152 _____ () C:\Program Files\ASUS\ATK Media\ATKMETHOD.dll 2012-05-17 12:22 - 2008-12-03 14:05 - 00135168 ____N () C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\ScanEngine.dll 2012-05-17 12:22 - 2008-11-26 10:56 - 00057344 ____N () C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\Satwain.dll 2007-07-12 22:55 - 2007-07-12 22:55 - 01581056 _____ () C:\Program Files\Common Files\LightScribe\QtCore4.dll 2007-08-14 22:59 - 2007-08-14 22:59 - 06365184 _____ () C:\Program Files\Common Files\LightScribe\QtGui4.dll 2007-07-12 22:55 - 2007-07-12 22:55 - 00131072 _____ () C:\Program Files\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll 2012-12-28 19:59 - 2012-12-28 19:57 - 00246112 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\ouc.exe 2012-12-28 19:59 - 2012-12-28 19:57 - 00011362 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\mingwm10.dll 2012-12-28 19:59 - 2012-12-28 19:57 - 00043008 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\libgcc_s_dw2-1.dll 2012-12-28 19:59 - 2012-12-28 19:57 - 02415104 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\QtCore4.dll 2012-12-28 19:59 - 2012-12-28 19:57 - 01148416 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\QtNetwork4.dll 2012-12-28 19:59 - 2012-12-28 19:57 - 00384512 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\QueryStrategy.dll 2012-12-28 19:59 - 2012-12-28 19:57 - 00398336 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\QtXml4.dll 2008-09-07 09:41 - 2007-08-03 21:24 - 00125496 _____ () C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe 2008-09-07 09:41 - 2007-09-14 19:00 - 00147456 _____ () C:\Program Files\ASUS\NB Probe\SPM\spdiskex.dll 2008-09-07 09:41 - 2003-11-28 11:11 - 00135168 _____ () C:\Program Files\ASUS\NB Probe\SPM\spos.dll 2008-09-07 09:41 - 2005-08-30 00:24 - 00081920 _____ () C:\Program Files\ASUS\NB Probe\SPM\spnbacpi.dll 2008-09-07 09:41 - 2003-09-10 01:08 - 00049152 _____ () C:\Program Files\ASUS\NB Probe\SPM\spdmi.dll 2008-09-07 09:41 - 2006-04-04 19:24 - 00036864 _____ () C:\Program Files\ASUS\NB Probe\SPM\ghadmi.dll 2008-09-07 09:41 - 2005-04-08 04:25 - 00077824 _____ () C:\Program Files\ASUS\NB Probe\SPM\spmemory.dll 2011-02-10 07:55 - 2011-02-10 07:55 - 01148256 _____ () C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe 2014-05-14 16:21 - 2014-05-14 16:22 - 03839088 _____ () D:\Program Files\Mozilla Firefox\mozjs.dll 2014-06-13 21:47 - 2014-06-13 21:47 - 17024688 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_125.dll ==================== Alternate Data Streams (whitelisted) ========= ==================== Safe Mode (whitelisted) =================== ==================== EXE Association (whitelisted) ============= ==================== MSCONFIG/TASK MANAGER disabled items ========= MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: ASUS Camera ScreenSaver => C:\Windows\AsScrProlog.exe MSCONFIG\startupreg: CLMLServer => "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe" MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: ehTray.exe => C:\Windows\ehome\ehTray.exe MSCONFIG\startupreg: EPSON SX110 Series => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIFBE.EXE /FU "C:\Windows\TEMP\E_SAEE6.tmp" /EF "HKCU" MSCONFIG\startupreg: P2Go_Menu => "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0" MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\QTTask.exe" -atboottime MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (06/15/2014 03:32:27 PM) (Source: ESENT) (EventID: 447) (User: ) Description: Windows (4092) Windows: Wykryto niewłaściwe łącze strony (błąd -338) w B-drzewie (ID obiektu: 14, PgnoRoot: 259) bazy danych C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb (259 => 345, Windows0). Error: (06/15/2014 03:32:26 PM) (Source: ESENT) (EventID: 447) (User: ) Description: Windows (4092) Windows: Wykryto niewłaściwe łącze strony (błąd -338) w B-drzewie (ID obiektu: 14, PgnoRoot: 259) bazy danych C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb (259 => 345, Windows0). Error: (06/15/2014 03:32:25 PM) (Source: ESENT) (EventID: 447) (User: ) Description: Windows (4092) Windows: Wykryto niewłaściwe łącze strony (błąd -338) w B-drzewie (ID obiektu: 14, PgnoRoot: 259) bazy danych C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb (259 => 345, Windows0). Error: (06/15/2014 03:32:24 PM) (Source: ESENT) (EventID: 447) (User: ) Description: Windows (4092) Windows: Wykryto niewłaściwe łącze strony (błąd -338) w B-drzewie (ID obiektu: 14, PgnoRoot: 259) bazy danych C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb (259 => 345, Windows0). Error: (06/15/2014 03:32:23 PM) (Source: ESENT) (EventID: 447) (User: ) Description: Windows (4092) Windows: Wykryto niewłaściwe łącze strony (błąd -338) w B-drzewie (ID obiektu: 14, PgnoRoot: 259) bazy danych C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb (259 => 345, Windows0). Error: (06/15/2014 03:32:21 PM) (Source: ESENT) (EventID: 447) (User: ) Description: Windows (4092) Windows: Wykryto niewłaściwe łącze strony (błąd -338) w B-drzewie (ID obiektu: 14, PgnoRoot: 259) bazy danych C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb (259 => 345, Windows0). Error: (06/15/2014 03:32:19 PM) (Source: ESENT) (EventID: 447) (User: ) Description: Windows (4092) Windows: Wykryto niewłaściwe łącze strony (błąd -338) w B-drzewie (ID obiektu: 14, PgnoRoot: 259) bazy danych C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb (259 => 345, Windows0). Error: (06/15/2014 03:32:18 PM) (Source: ESENT) (EventID: 447) (User: ) Description: Windows (4092) Windows: Wykryto niewłaściwe łącze strony (błąd -338) w B-drzewie (ID obiektu: 14, PgnoRoot: 259) bazy danych C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb (259 => 345, Windows0). Error: (06/15/2014 03:32:16 PM) (Source: ESENT) (EventID: 447) (User: ) Description: Windows (4092) Windows: Wykryto niewłaściwe łącze strony (błąd -338) w B-drzewie (ID obiektu: 14, PgnoRoot: 259) bazy danych C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb (259 => 345, Windows0). Error: (06/15/2014 03:32:15 PM) (Source: ESENT) (EventID: 447) (User: ) Description: Windows (4092) Windows: Wykryto niewłaściwe łącze strony (błąd -338) w B-drzewie (ID obiektu: 14, PgnoRoot: 259) bazy danych C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb (259 => 345, Windows0). System errors: ============= Error: (06/15/2014 02:07:34 PM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1001) (User: ZARZĄDZANIE NT) Description: 0x80070032 Error: (06/15/2014 02:05:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: PLAY ONLINE. OUC%%1053 Error: (06/15/2014 02:05:20 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: 30000PLAY ONLINE. OUC Error: (06/15/2014 02:05:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Klient zasad grupy%%1053 Error: (06/15/2014 02:05:20 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: 30000Klient zasad grupy Error: (06/15/2014 01:15:50 PM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1001) (User: ZARZĄDZANIE NT) Description: 0x80070032 Error: (06/15/2014 01:13:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: PLAY ONLINE. OUC%%1053 Error: (06/15/2014 01:13:23 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: 30000PLAY ONLINE. OUC Error: (06/15/2014 01:00:58 PM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1001) (User: ZARZĄDZANIE NT) Description: 0x80070032 Error: (06/15/2014 00:58:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: PLAY ONLINE. OUC%%1053 Microsoft Office Sessions: ========================= Error: (06/15/2014 03:32:28 PM) (Source: ESENT) (EventID: 447) (User: ) Description: Windows4092Windows: -33814259C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb2593451933013781 Error: (06/15/2014 03:32:27 PM) (Source: ESENT) (EventID: 447) (User: ) Description: Windows4092Windows: -33814259C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb2593451933013781 Error: (06/15/2014 03:32:26 PM) (Source: ESENT) (EventID: 447) (User: ) Description: Windows4092Windows: -33814259C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb2593451933013781 Error: (06/15/2014 03:32:25 PM) (Source: ESENT) (EventID: 447) (User: ) Description: Windows4092Windows: -33814259C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb2593451933013781 Error: (06/15/2014 03:32:24 PM) (Source: ESENT) (EventID: 447) (User: ) Description: Windows4092Windows: -33814259C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb2593451933013781 Error: (06/15/2014 03:32:23 PM) (Source: ESENT) (EventID: 447) (User: ) Description: Windows4092Windows: -33814259C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb2593451933013781 Error: (06/15/2014 03:32:21 PM) (Source: ESENT) (EventID: 447) (User: ) Description: Windows4092Windows: -33814259C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb2593451933013781 Error: (06/15/2014 03:32:19 PM) (Source: ESENT) (EventID: 447) (User: ) Description: Windows4092Windows: -33814259C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb2593451933013781 Error: (06/15/2014 03:32:18 PM) (Source: ESENT) (EventID: 447) (User: ) Description: Windows4092Windows: -33814259C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb2593451933013781 Error: (06/15/2014 03:32:16 PM) (Source: ESENT) (EventID: 447) (User: ) Description: Windows4092Windows: -33814259C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb2593451933013781 CodeIntegrity Errors: =================================== Date: 2014-06-15 15:30:36.156 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\AVGIDSEH.sys because the set of per-page image hashes could not be found on the system. Date: 2014-06-15 15:30:35.912 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\AVGIDSEH.sys because the set of per-page image hashes could not be found on the system. Date: 2014-06-15 15:30:35.705 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\AVGIDSEH.sys because the set of per-page image hashes could not be found on the system. Date: 2014-06-15 15:30:35.519 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\AVGIDSEH.sys because the set of per-page image hashes could not be found on the system. Date: 2014-06-15 15:30:35.227 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\AVGIDSDriver.sys because the set of per-page image hashes could not be found on the system. Date: 2014-06-15 15:30:34.981 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\AVGIDSDriver.sys because the set of per-page image hashes could not be found on the system. Date: 2014-06-15 15:30:34.714 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\AVGIDSDriver.sys because the set of per-page image hashes could not be found on the system. Date: 2014-06-15 15:30:34.507 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\AVGIDSDriver.sys because the set of per-page image hashes could not be found on the system. Date: 2014-06-15 15:06:10.340 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\AVGIDSEH.sys because the set of per-page image hashes could not be found on the system. Date: 2014-06-15 15:06:10.133 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\AVGIDSEH.sys because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Percentage of memory in use: 64% Total physical RAM: 2046.35 MB Available physical RAM: 734.02 MB Total Pagefile: 4333.96 MB Available Pagefile: 2471.79 MB Total Virtual: 2047.88 MB Available Virtual: 1889.16 MB ==================== Drives ================================ Drive c: (VistaOS) (Fixed) (Total:116.44 GB) (Free:67.31 GB) NTFS ==>[System with boot components (obtained from reading drive)] Drive d: (DATA) (Fixed) (Total:106.68 GB) (Free:9.38 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 233 GB) (Disk ID: 6860E0C3) Partition 1: (Not Active) - (Size=10 GB) - (Type=1C) Partition 2: (Active) - (Size=116 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=107 GB) - (Type=OF Extended) ==================== End Of Log ============================