Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-02-2015 Ran by Emil at 2015-02-07 19:17:19 Running from C:\Users\Emil\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MZ72ZM5O Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Microsoft Security Essentials (Enabled - Up to date) {4F35CFC4-45A3-FC37-EF17-759A02E39AB1} AV: ESET Smart Security 7.0 (Disabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289} AS: Microsoft Security Essentials (Enabled - Up to date) {F4542E20-6399-F3B9-D5A7-4EE87964D00C} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: ESET Smart Security 7.0 (Disabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834} FW: Zapora osobista ESET (Disabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9130 - Adobe Systems Inc.) Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated) Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated) Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated) Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.9.149 - Adobe Systems, Inc.) Advertising Center (x32 Version: 0.0.0.2 - Nero AG) Hidden Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.27 - Atheros Communications Inc.) Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 5.0 - Atheros) ATI Catalyst Install Manager (HKLM\...\{5792CD64-61B4-C448-0D22-3C51DD73AB2A}) (Version: 3.0.765.0 - ATI Technologies, Inc.) ccc-core-static (x32 Version: 2010.0315.1050.17562 - Nazwa firmy) Hidden CCleaner (HKLM\...\CCleaner) (Version: 4.13 - Piriform) Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.111.0.64 - Conexant) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Galeria fotografii (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden Internet Manager (HKLM-x32\...\Internet Manager) (Version: 22.001.18.11.49 - Huawei Technologies Co.,Ltd) Java 7 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417025FF}) (Version: 7.0.250 - Oracle) Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle) Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation) Java(TM) 6 Update 17 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216017FF}) (Version: 6.0.170 - Sun Microsystems, Inc.) Junk Mail filter update (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden K-Lite Codec Pack 10.2.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.2.0 - ) LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - ) LibreOffice 4.2.4.2 (HKLM-x32\...\{6B4977CB-5B9F-4B24-8310-3BA527A8AF22}) (Version: 4.2.4.2 - The Document Foundation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.6.305.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Nero BackItUp (HKLM-x32\...\{0420F95C-11FF-4E02-B967-6CC22B188F9F}) (Version: 5.2.21001 - Nero AG) Nero BackItUp and Burn (HKLM-x32\...\{E08CC458-41FB-4BB5-9B08-2C83DB55A5B9}) (Version: 1.2.0030 - Nero AG) Nero BurnRights (HKLM-x32\...\{397516AE-7DFE-4F90-84E0-BD616D559434}) (Version: 3.6.26001 - Nero AG) Nero Express (HKLM-x32\...\{6C3CF7AC-5AB0-42D9-93C0-68166A57AFB6}) (Version: 9.6.16000 - Nero AG) Nero RescueAgent (HKLM-x32\...\{51E2F9B3-A972-4F58-B4EF-4D9676D9F5D1}) (Version: 2.6.25002 - Nero AG) NVIDIA PhysX (HKLM-x32\...\{DEA314C4-0929-4250-BC92-98E4C105F28D}) (Version: 9.10.0129 - NVIDIA Corporation) PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation) PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation) Poczta usługi Windows Live (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden Podstawowe programy Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation) Podstawowe programy Windows Live (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden Program TOSHIBA HDD/SSD Alert (HKLM-x32\...\InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}) (Version: 3.1.64.6 - TOSHIBA Corporation) Program TOSHIBA HDD/SSD Alert (Version: 3.1.64.6 - TOSHIBA Corporation) Hidden Program TOSHIBA HDD/SSD Alert (x32 Version: 3.1.64.6 - TOSHIBA Corporation) Hidden QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.) RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden RealPlayer (HKLM-x32\...\RealPlayer 12.0) (Version: - RealNetworks) Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30111 - Realtek Semiconductor Corp.) RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group) SAMSUNG Mobile Modem Driver Set (HKLM\...\SAMSUNG Mobile Modem) (Version: - ) Samsung Mobile phone USB driver Drive Software (HKLM\...\Samsung Mobile phone USB driver Drive) (Version: - ) SAMSUNG Mobile USB Modem 1.0 Software (HKLM\...\SAMSUNG Mobile USB Modem 1.0) (Version: - ) SAMSUNG Mobile USB Modem Software (HKLM\...\SAMSUNG Mobile USB Modem) (Version: - ) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.8.1 - Synaptics Incorporated) Toshiba Assist (HKLM-x32\...\{1B87C40B-A60B-4EF3-9A68-706CF4B69978}) (Version: 3.00.11 - TOSHIBA CORPORATION) TOSHIBA Bulletin Board (HKLM-x32\...\InstallShield_{C14518AF-1A0F-4D39-8011-69BAA01CD380}) (Version: 1.6.07.64 - TOSHIBA Corporation) TOSHIBA ConfigFree (HKLM-x32\...\{607BE7BF-7C28-4ADB-A4A0-385962B901C3}) (Version: 8.0.28 - TOSHIBA Corporation) TOSHIBA Disc Creator (HKLM\...\{5DA0E02F-970B-424B-BF41-513A5018E4C0}) (Version: 2.1.0.2 for x64 - TOSHIBA Corporation) TOSHIBA Face Recognition (HKLM-x32\...\InstallShield_{F67FA545-D8E5-4209-86B1-AEE045D1003F}) (Version: 3.1.3.64 - TOSHIBA Corporation) TOSHIBA Hardware Setup (HKLM-x32\...\{8E9CEA3B-EBD1-439C-A01D-830CB39613C6}) (Version: 2.00.06 - TOSHIBA Corporation) Toshiba Manuals (HKLM-x32\...\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}) (Version: 10.01 - TOSHIBA) TOSHIBA Media Controller (HKLM-x32\...\{983CD6FE-8320-4B80-A8F6-0D0366E0AA22}) (Version: 1.0.80.3.64 - TOSHIBA CORPORATION) TOSHIBA Media Controller Plug-in (HKLM-x32\...\{F26FDF57-483E-42C8-A9C9-EEE1EDB256E0}) (Version: 1.0.4.9 - TOSHIBA CORPORATION) TOSHIBA Online Product Information (HKLM-x32\...\{2290A680-4083-410A-ADCC-7092C67FC052}) (Version: 2.09.0001 - TOSHIBA) TOSHIBA Recovery Media Creator (HKLM\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 2.1.0.4 x64 - TOSHIBA Corporation) TOSHIBA Recovery Media Creator Reminder (HKLM-x32\...\InstallShield_{773970F1-5EBA-4474-ADEE-1EA3B0A59492}) (Version: 1.00.0019 - TOSHIBA) TOSHIBA ReelTime (HKLM-x32\...\InstallShield_{A0E99122-25C1-4CA4-9063-499A2A814EB6}) (Version: 1.6.06.64 - TOSHIBA Corporation) TOSHIBA Service Station (HKLM-x32\...\{AC6569FA-6919-442A-8552-073BE69E247A}) (Version: 2.1.40 - TOSHIBA) TOSHIBA Supervisor Password (HKLM-x32\...\{073B89C3-BA88-41B5-965F-B35A88EAE838}) (Version: 2.00.03 - TOSHIBA Corporation) TOSHIBA TEMPRO (HKLM-x32\...\{F082CB11-4794-4259-99A1-D91BA762AD15}) (Version: 3.35 - Toshiba Europe GmbH) TOSHIBA Value Added Package (HKLM-x32\...\InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}) (Version: 1.3.3.64 - TOSHIBA Corporation) TOSHIBA Web Camera Application (HKLM-x32\...\{5E6F6CF3-BACC-4144-868C-E14622C658F3}) (Version: 1.1.1.15 - TOSHIBA Corporation) TRORMCLauncher (HKLM-x32\...\InstallShield_{E65C7D8E-186D-484B-BEA8-DEF0331CE600}) (Version: - ) TRORMCLauncher (Version: 1.0.0.9 - TOSHIBA) Hidden Unity Web Player (HKU\S-1-5-21-2913347843-1076875873-1493724754-1000\...\UnityWebPlayer) (Version: 4.5.5f1 - Unity Technologies ApS) VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden Windows Live Sync (HKLM-x32\...\{2E522ED6-01E2-4207-82D5-B3BFB31B8BD4}) (Version: 14.0.8089.726 - Microsoft Corporation) WinRAR 5.01 (32-bitowy) (HKLM-x32\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team) Zune (HKLM\...\Zune) (Version: 04.08.2345.00 - Microsoft Corporation) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) ==================== Restore Points ========================= 03-02-2015 10:41:14 Zaplanowany punkt kontrolny 03-02-2015 12:53:01 Usunięte The Sims 3 03-02-2015 13:07:21 Windows Update 03-02-2015 13:17:25 Windows Update 03-02-2015 14:33:33 Windows Update 04-02-2015 19:23:06 Windows Update 07-02-2015 17:49:29 Installed Should I Remove It 07-02-2015 17:51:07 Revo Uninstaller's restore point - Should I Remove It 07-02-2015 17:51:27 Removed Should I Remove It ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {002F8F28-6B1F-4C57-8244-0D2F4D647897} - System32\Tasks\{115FCFCD-7B6F-4A60-903F-B517B82749BD} => C:\Program Files (x86)\EA GAMES\The Sims 2 Młodzieżowy styl Akcesoria\TSBin\Sims2SP6.exe Task: {0DAEA0F6-E2A0-4E0E-91D3-8BD0AFFD2229} - System32\Tasks\Driver Booster SkipUAC (Emil) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe Task: {1115E172-B12B-47CB-B23C-D2A349726E99} - System32\Tasks\{09BB4EF8-FC8F-44A1-87F4-CC821708B577} => C:\Program Files (x86)\EA GAMES\The Sims 2\TSBin\Sims2.exe Task: {17489698-C53A-4EF4-8DA3-B9CA1B793F06} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-06] (Adobe Systems Incorporated) Task: {1F428DAF-36C7-41D9-A6CB-4C592F766918} - System32\Tasks\{90634328-3BB1-4CE9-BCD1-83CCC1ED3F08} => C:\Program Files (x86)\EA GAMES\The Sims 2 Młodzieżowy styl Akcesoria\TSBin\Sims2Launcher.exe Task: {268FF348-529F-4B8D-95FE-5B6FA7EFFBA2} - System32\Tasks\{8AF8E1BE-398D-4528-80FE-48F5155E8911} => C:\Users\Emil\Desktop\BESTplayer.exe Task: {29F69A50-76BF-4B9D-A3FA-F4F7D99E38EA} - System32\Tasks\{26C676D0-379B-46A6-9C3C-C3784E6252E2} => pcalua.exe -a C:\Users\Emil\Downloads\SantaSetup(dobreprogramy.pl).exe -d C:\Users\Emil\Desktop Task: {2BBA6055-1E32-4715-8982-4E391684CF33} - System32\Tasks\{45219DBC-31B4-4787-8A03-CD953964473F} => C:\Users\Emil\Desktop\BESTplayer.exe Task: {333690EF-1DAC-496D-9571-89F828E83A8D} - System32\Tasks\{768C7AAF-D78C-4C7A-AD23-429ACF69E65D} => pcalua.exe -a "C:\Users\Emil\Super Mario Bros PC Installer.exe" -d C:\Users\Emil Task: {41F37969-82AB-4D58-B3C8-452362221E81} - System32\Tasks\{51942E76-5A64-4C81-8211-F37E1564F694} => pcalua.exe -a C:\Downloads\Tripex3.exe -d C:\Downloads Task: {488D50DE-5950-426A-AF1D-D8BBD89C8435} - System32\Tasks\ConfigFree Startup Programs => C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe [2010-02-22] (TOSHIBA CORPORATION) Task: {523040CC-167C-4128-9363-EFF71953059D} - System32\Tasks\{19A08215-2A77-431A-87CA-CA118BA3093B} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\The Sims 2\eauninstall.exe" -d "C:\Program Files (x86)\EA GAMES\The Sims 2" Task: {545DF0B2-6A46-4FBF-9A12-B50E13FE8F13} - System32\Tasks\{BE96B593-73C1-462D-A6E6-44BCBD62D942} => C:\Program Files (x86)\EA GAMES\The Sims 2 Nocne życie\TSBin\Sims2EP2.exe Task: {579A8865-445E-4F83-A349-1D7DFB1FBA65} - System32\Tasks\{45945960-DFB6-4E6A-95F4-FC99ADA44A5F} => C:\Program Files (x86)\Ares\Ares.exe Task: {58DEBA88-D19B-4BA2-BFDC-0682D91BB385} - System32\Tasks\{411D9465-C8BA-420B-B426-88DA3DCE0BD2} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\The Sims 2 University\TSBin\TS2UPD.exe" -d "C:\Program Files (x86)\EA GAMES\The Sims 2 University\TSBin" Task: {671D0EB8-2EA0-4A3B-B1D5-3607381B40B5} - System32\Tasks\{F43C5ED9-92E7-415D-BAA6-B14D1EC97D28} => C:\Users\Emil\Desktop\BESTplayer.exe Task: {68B78D3A-C3EC-4CC4-B989-90021A98440F} - System32\Tasks\{676CDB73-628E-44DF-B4E5-3FBBF2DE93FD} => C:\Program Files (x86)\EA GAMES\The Sims 2 Młodzieżowy styl Akcesoria\TSBin\Sims2SP6.exe Task: {68B86A6E-2E4E-4ED3-AFA1-96CFF6226578} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2913347843-1076875873-1493724754-1000UA => C:\Users\Emil\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-09] (Facebook Inc.) Task: {6C003686-DB50-49D3-8449-A1C4E8C9A1C9} - System32\Tasks\{7CA3EA84-B964-4AE1-8C93-F653E724462F} => H:\AutoRun.exe Task: {6E11B38C-5634-4B04-972A-1600BA41F31A} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe Task: {7470B7E3-3402-4820-B318-4A86B8B9F2FB} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-2913347843-1076875873-1493724754-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2010-11-05] (RealNetworks, Inc.) Task: {7EF06A6C-099C-490F-9253-34B7A3D8CD7B} - System32\Tasks\{C458054B-2E6C-4CD1-9382-F8883BC9CF7E} => C:\Users\Emil\Desktop\BESTplayer.exe Task: {8153C4EB-993E-4676-84E6-304DAB105EA8} - System32\Tasks\{23FFFDBC-AAD4-458B-AB7A-C70231587CE3} => pcalua.exe -a D:\sims2.exe -d "C:\Program Files (x86)\Mozilla Firefox" Task: {86118B8C-55BF-464B-983E-A45C00E64F12} - System32\Tasks\{6A597318-1404-4E22-930E-0594E1207F3D} => pcalua.exe -a C:\Users\Emil\Shockwave_Installer_Full.exe -d C:\Users\Emil Task: {8F692C89-ED20-4540-9597-6B1D44609D09} - System32\Tasks\{8BA87D9C-68F4-4060-BDCB-42C1063F3531} => C:\Program Files (x86)\EA GAMES\The Sims 2 Nocne życie\TSBin\Sims2EP2.exe Task: {95FEA1D0-BFCF-4B45-96D5-22781D86EBEC} - System32\Tasks\{28B5E4F8-C94C-4B8E-B6E8-49442AA2403F} => pcalua.exe -a D:\Nokia_PC_Suite_pol_web.exe -d D:\ Task: {96EBAD8E-99CB-44B9-B1C0-47EDE12E192A} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2913347843-1076875873-1493724754-1000Core => C:\Users\Emil\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-09] (Facebook Inc.) Task: {97922AE6-5BFD-4EAF-BB13-211FBA4B25A6} - System32\Tasks\{8E17136E-98EF-4EC1-9D66-7393C8F91B70} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\The Sims 2 Nocne życie\TSBin\TS2UPD.exe" -d "C:\Program Files (x86)\EA GAMES\The Sims 2 Nocne życie\TSBin" Task: {9ACBD98A-6140-4F11-A0D4-7B9207DC8A86} - System32\Tasks\{82AD628E-CB87-4A6A-B219-3A6504ADC7D5} => C:\Users\Emil\Desktop\BESTplayer.exe Task: {9C0E040D-C8C3-4887-BF05-4A636FB3C89C} - System32\Tasks\{9E1EA7A7-A25A-4DFC-8F69-DABE5925BB89} => C:\Program Files (x86)\EA GAMES\The Sims 2\TSBin\Sims2.exe Task: {9E92CE60-AFF7-4A67-A3A9-7986B2AFC430} - System32\Tasks\{FF7571AA-F486-4757-B1B4-AEDE59748A00} => C:\Users\Emil\Desktop\BESTplayer.exe Task: {A030DBFD-7EE0-4B73-ACD9-139080717132} - System32\Tasks\{C743EBCE-A852-4B18-BD9E-164D8580B1D6} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\The Sims 2\CSBin\PackageInstaller.exe" -d "C:\Users\Emil\Desktop\gruth Stairs by ulmille" -c "C:\Users\Emil\Desktop\gruth Stairs by ulmille\gruth_stairs2_marino-walnut_recolour_ulmille.package" Task: {A3DF5CA4-9AB4-474E-B7BD-63FE5BF9E9F3} - System32\Tasks\{8C8C8F84-8A06-4FE5-A7FD-DA57B0B7BB0F} => pcalua.exe -a H:\Sims2EP2_uninst.exe -d H:\ Task: {A84E76B2-185A-4575-98A2-D0D4B7F4765D} - System32\Tasks\{CBB77647-A7B6-4CA9-BAC5-83411A751F4C} => C:\Users\Emil\Desktop\BESTplayer.exe Task: {ADECA8F9-F60C-41E3-AD4B-DDA9E7A75A85} - System32\Tasks\SBWUpdateTask_Logon_1242b301-000000000000 => C:\Program Files (x86)\Common Files\SpeedBit\SBUpdate\SBUpdate.exe [2013-07-08] (Speedbit Ltd.) Task: {B5576E42-6ECD-49C5-A1E3-0CF488852DFC} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-2913347843-1076875873-1493724754-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2010-11-05] (RealNetworks, Inc.) Task: {B7368EFC-067D-4E3F-8071-30D6EA24E047} - System32\Tasks\{6FC7A672-FBAE-4988-8B7C-6B63863A0705} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\The Sims 2 Nocne życie\TSBin\eauninstall.exe" -d "C:\Program Files (x86)\EA GAMES\The Sims 2 Nocne życie\TSBin" Task: {B85CDBF4-1992-47A1-B3F5-7D7CAFB1A192} - System32\Tasks\{204439BB-14B5-4709-9161-5766F745D497} => C:\Program Files (x86)\EA GAMES\The Sims 2 University\Sims2EP1_loader.exe Task: {C0F0355C-527B-408D-BC80-BEC34CF2EAC5} - System32\Tasks\{CA96046C-3125-4916-8C14-FF171EABDF1D} => pcalua.exe -a H:\Setup.exe -d H:\ Task: {C5C5E3CD-010B-4A62-97D4-3B60BB7EE5FA} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc Task: {C6954210-4999-4C9A-8242-E9EEED2A3AA5} - System32\Tasks\{BF918AA8-EE0C-4B4A-A2DD-C7F0F62C873F} => H:\AutoRun.exe Task: {CB808AC7-74C5-4189-B5FD-F0BF155BC2C5} - System32\Tasks\{795B1B5B-B2BC-49CB-947A-E2382A8FBD6F} => pcalua.exe -a H:\Sims2EP2_uninst.exe -d H:\ Task: {D7527FE1-E9AA-4B1E-8210-C52A3FBE7DB0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-04-17] (Piriform Ltd) Task: {D8B75DA3-11A0-4216-B2BA-85CCE5865572} - System32\Tasks\{265E76A7-F32B-4D5D-81AA-38AD46955F1E} => pcalua.exe -a "H:\Support\The Sims 2 Nightlife_uninst.exe" -d H:\Support Task: {DB29B515-7CF7-4B18-9576-CA46EE6C02A8} - System32\Tasks\{C5C26BD0-4953-444E-8150-77B3D551461A} => C:\Program Files (x86)\EA GAMES\The Sims 2 Młodzieżowy styl Akcesoria\TSBin\Sims2Launcher.exe Task: {DC563FAA-8BA9-4CE5-A6D6-44AF8DA8859F} - System32\Tasks\{7E7F1CF1-DBA6-401A-9446-34908400A0A3} => pcalua.exe -a D:\Nokia_PC_Suite_pol_web.exe -d "C:\Program Files (x86)\Mozilla Firefox" Task: {DE8AB7FB-0E76-47DF-83E4-A263446DE4D5} - System32\Tasks\{903C4496-ADD5-4477-B3D3-54A1D67E5039} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\The Sims 2 Zwierzaki\TSBin\TS2UPD0.exe" -d "C:\Program Files (x86)\EA GAMES\The Sims 2 Zwierzaki\TSBin" Task: {DFC01E5E-FFCF-4CC9-8CCC-14AA6AD6A960} - System32\Tasks\SBWUpdateTask_Time_1242b301-000000000000 => C:\Program Files (x86)\Common Files\SpeedBit\SBUpdate\SBUpdate.exe [2013-07-08] (Speedbit Ltd.) Task: {F030603D-8A48-4153-9CA6-B09E67D2B317} - System32\Tasks\{11348AB6-E9DE-440F-AA8E-2F67928D1729} => H:\AutoRun.exe Task: {F4891075-69B9-48D4-BBD5-409BCBCF263E} - System32\Tasks\{35E54E69-AA63-4DBC-BA85-0BB0C20E2693} => C:\Users\Emil\Desktop\BESTplayer.exe Task: {FECE2713-29AC-480D-86E7-070D43460987} - System32\Tasks\{55935961-46CC-454D-9A6E-FC63BCBA1235} => pcalua.exe -a H:\eauninstall.exe -d H:\ Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2913347843-1076875873-1493724754-1000Core.job => C:\Users\Emil\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2913347843-1076875873-1493724754-1000UA.job => C:\Users\Emil\AppData\Local\Facebook\Update\FacebookUpdate.exe ==================== Loaded Modules (whitelisted) ============== 2011-03-14 16:27 - 2011-03-14 16:27 - 00346976 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe 2015-01-29 16:53 - 2011-06-17 12:04 - 00224096 _____ () C:\ProgramData\Internet Manager\OnlineUpdate\ouc.exe 2015-01-29 16:53 - 2009-01-10 11:32 - 00011362 _____ () C:\ProgramData\Internet Manager\OnlineUpdate\mingwm10.dll 2015-01-29 16:53 - 2009-06-22 19:42 - 00043008 _____ () C:\ProgramData\Internet Manager\OnlineUpdate\libgcc_s_dw2-1.dll 2015-01-29 16:53 - 2010-05-05 09:47 - 02415104 _____ () C:\ProgramData\Internet Manager\OnlineUpdate\QtCore4.dll 2015-01-29 16:53 - 2010-02-10 15:10 - 01148416 _____ () C:\ProgramData\Internet Manager\OnlineUpdate\QtNetwork4.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver" ==================== EXE Association (whitelisted) =============== (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== Other Registry Areas ===================== (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2913347843-1076875873-1493724754-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Emil\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\Services: FLEXnet Licensing Service => 3 MSCONFIG\startupreg: 00TCrdMain => %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: egui => "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice MSCONFIG\startupreg: InstallerLauncher => "C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe" /run:"C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\Installer.exe" MSCONFIG\startupreg: NBAgent => "c:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe" /WinStart MSCONFIG\startupreg: SmartAudio => C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t MSCONFIG\startupreg: SmartFaceVWatcher => %ProgramFiles%\Toshiba\SmartFaceV\SmartFaceVWatcher.exe MSCONFIG\startupreg: SmoothView => %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe MSCONFIG\startupreg: TOSHIBA Online Product Information => C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe MSCONFIG\startupreg: Toshiba Registration => C:\Program Files\Toshiba\Registration\ToshibaReminder.exe MSCONFIG\startupreg: Toshiba TEMPRO => C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe MSCONFIG\startupreg: ToshibaServiceStation => C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe /hide:60 MSCONFIG\startupreg: TosNC => %ProgramFiles%\Toshiba\BulletinBoard\TosNcCore.exe MSCONFIG\startupreg: TosReelTimeMonitor => %ProgramFiles%\TOSHIBA\ReelTime\TosReelTimeMonitor.exe MSCONFIG\startupreg: TosSENotify => C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe MSCONFIG\startupreg: TosVolRegulator => C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe MSCONFIG\startupreg: TPwrMain => %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE MSCONFIG\startupreg: TWebCamera => "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun MSCONFIG\startupreg: Zune Launcher => "C:\Program Files\Zune\ZuneLauncher.exe" ==================== Accounts: ============================= Administrator (S-1-5-21-2913347843-1076875873-1493724754-500 - Administrator - Disabled) Emil (S-1-5-21-2913347843-1076875873-1493724754-1000 - Administrator - Enabled) => C:\Users\Emil Gość (S-1-5-21-2913347843-1076875873-1493724754-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2913347843-1076875873-1493724754-1002 - Limited - Enabled) ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (02/05/2015 01:10:37 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT) Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu. Error: (02/05/2015 01:10:37 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (02/05/2015 01:10:37 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (02/04/2015 11:36:22 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT) Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu. Error: (02/04/2015 11:36:22 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (02/04/2015 11:36:22 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (02/04/2015 11:34:14 AM) (Source: RasClient) (EventID: 20227) (User: ) Description: Identyfikator CoId={2D1DA7FA-531C-4F0D-8E12-BF08B05760A2}: Użytkownik Emil-TOSH\Emil wybrał numer w celu nawiązania połączenia o nazwie T-Mobile PL, jednak jego nawiązanie nie powiodło się. Kod błędu zwrócony w wyniku niepowodzenia: 633. Error: (02/04/2015 11:34:09 AM) (Source: RasClient) (EventID: 20227) (User: ) Description: Identyfikator CoId={12486FC9-75E2-471F-ADBA-5E6B863EC1D9}: Użytkownik Emil-TOSH\Emil wybrał numer w celu nawiązania połączenia o nazwie T-Mobile PL, jednak jego nawiązanie nie powiodło się. Kod błędu zwrócony w wyniku niepowodzenia: 633. Error: (02/04/2015 11:23:13 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT) Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu. Error: (02/04/2015 11:23:13 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. System errors: ============= Error: (02/07/2015 05:22:57 PM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT) Description: Odebrano następujący alert krytyczny: 20. Error: (02/07/2015 05:01:14 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: StarOpen Error: (02/07/2015 05:01:14 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Notebook Performance Tuning Service (TEMPRO). Error: (02/07/2015 05:00:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Internet Manager. OUC z powodu następującego błędu: %%1053 Error: (02/07/2015 05:00:42 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Internet Manager. OUC. Error: (02/07/2015 05:00:27 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Automatyczne konfigurowanie bezprzewodowej sieci WAN zakończyła działanie; wystąpił następujący błąd: %%5 Error: (02/07/2015 05:00:11 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Ładowanie sterownika \SystemRoot\SysWow64\Drivers\StarOpen.SYS zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika. Error: (02/07/2015 04:42:05 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: StarOpen Error: (02/07/2015 04:41:56 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Notebook Performance Tuning Service (TEMPRO). Error: (02/07/2015 04:41:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Internet Manager. OUC z powodu następującego błędu: %%1053 Microsoft Office Sessions: ========================= Error: (02/05/2015 01:10:37 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT) Description: WmiApRplWmiApRpl8F20300004D070000 Error: (02/05/2015 01:10:37 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Performance1637070000000000000000000009030000 Error: (02/05/2015 01:10:37 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Performance1637070000000000000000000009030000 Error: (02/04/2015 11:36:22 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT) Description: WmiApRplWmiApRpl8F20300004D070000 Error: (02/04/2015 11:36:22 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Performance1637070000000000000000000009030000 Error: (02/04/2015 11:36:22 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Performance1637070000000000000000000009030000 Error: (02/04/2015 11:34:14 AM) (Source: RasClient) (EventID: 20227) (User: ) Description: {2D1DA7FA-531C-4F0D-8E12-BF08B05760A2}Emil-TOSH\EmilT-Mobile PL633 Error: (02/04/2015 11:34:09 AM) (Source: RasClient) (EventID: 20227) (User: ) Description: {12486FC9-75E2-471F-ADBA-5E6B863EC1D9}Emil-TOSH\EmilT-Mobile PL633 Error: (02/04/2015 11:23:13 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT) Description: WmiApRplWmiApRpl8F20300004D070000 Error: (02/04/2015 11:23:13 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Performance1637070000000000000000000009030000 CodeIntegrity Errors: =================================== Date: 2013-08-11 11:07:21.355 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-08-11 11:07:21.350 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-08-11 11:07:21.344 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-08-11 11:07:21.286 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-08-11 11:07:21.281 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-08-11 11:07:21.276 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-08-09 15:11:32.932 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-08-09 15:11:32.916 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-08-09 15:11:32.916 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system. Date: 2013-08-09 15:11:32.885 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: AMD Athlon(tm) II P320 Dual-Core Processor Percentage of memory in use: 51% Total physical RAM: 2810.9 MB Available physical RAM: 1371.65 MB Total Pagefile: 5619.98 MB Available Pagefile: 3922.22 MB Total Virtual: 8192 MB Available Virtual: 8191.81 MB ==================== Drives ================================ Drive c: (WINDOWS) (Fixed) (Total:148.81 GB) (Free:112.36 GB) NTFS Drive d: (Data) (Fixed) (Total:148.88 GB) (Free:91.1 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: C6C3330A) Partition 1: (Active) - (Size=400 MB) - (Type=27) Partition 2: (Not Active) - (Size=148.8 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=148.9 GB) - (Type=07 NTFS) ==================== End Of Log ============================