Addition_20-11-2014_23-43-55.txt

lenovo y510p - Wykrycie infekcji

Witam, Chciałem skorzystać z możliwości pobrania płyty cd w formacie mp3, po kliknięciu odnośnika, przenosząc się do strony internetowej, z której pobrana miała być zawartość, program Malware Anti-Malware wysłał komunikat (przesyłam w załączniku). Wcześniej korzystając z tego typu stron nie pokazywał się komunikat o zablokowaniu, mimo iż także posiadałem program Malware Anti-Malware. Dołączam także logi z prośbą o sprawdzenie (FRST, Addition). Czy jest to strona śledząca i można zlokalizować IP?


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-11-2014
Ran by micpod at 2014-11-20 23:43:38
Running from C:\Users\micpod\Downloads\FRST-OlderVersion
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with " hidden " flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

uTorrent (HKU\S-1-5-21-3985225984-1873662328-3552526534-1002\...\uTorrent) (Version: 3.4.2.34727 - BitTorrent Inc.)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.189 - Adobe Systems Incorporated)
AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.55.1355, 14.07.2014 - AIMP DevTeam)
Aktualizacje NVIDIA 16.13.65 (Version: 16.13.65 - NVIDIA Corporation) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)
ChomikBox (HKLM-x32\...\{C7B52FAF-58D8-438C-B810-F78C3C927504}) (Version: 2.0.8.0 - Chomikuj.pl)
Classic Shell (HKLM\...\{840C85B7-D3D6-4143-9AF9-DAE80FD54CFC}) (Version: 4.1.0 - IvoSoft)
CyberLink PhotoDirector 3 (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.4107 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.)
CyberLink PowerDirector 10 (Version: 10.0.0.2810 - Nazwa firmy) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 8.0.2.14 - Lenovo)
Energy Management (x32 Version: 8.0.2.14 - Lenovo) Hidden
Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.3.0.8 - Genesys Logic)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{0EC7F9CC-4741-45AE-9F55-6E9343F726F5}) (Version: 1.1.0.36960 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.20.1447 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3277 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{302600C1-6BDF-4FD1-1309-148929CC1385}) (Version: 3.1.1309.0390 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
K-Lite Codec Pack 10.8.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.8.0 - )
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10249 - Realtek Semiconductor Corp.)
Lenovo Experience Improvement (HKLM\...\LenovoExperienceImprovement) (Version: 1.0.4.0 - Lenovo)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.2105 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.0.0.2105 - CyberLink Corp.) Hidden
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5630.52 - CyberLink Corp.)
Lenovo PowerDVD10 (x32 Version: 10.0.5630.52 - CyberLink Corp.) Hidden
Lenovo VeriFace (HKLM\...\Lenovo VeriFace) (Version: 5.0.13.5261 - Lenovo)
Malwarebytes Anti-Malware wersja 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.1.2.4000 - Maxthon International Limited)
Microsoft Office 365 - pl-pl (HKLM\...\O365HomePremRetail - pl-pl) (Version: 15.0.4667.1002 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Middle Earth Shadow of Mordor (HKLM-x32\...\Middle Earth Shadow of Mordor_is1) (Version: - )
NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - )
NBA 2K13 (HKLM-x32\...\{D96B6543-A0C0-4351-AF96-73DEF1DD6820}) (Version: 1.0.0 - 2K Sports)
NVIDIA GeForce Experience 2.1.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.4 - NVIDIA Corporation)
NVIDIA Oprogramowanie systemu PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
NVIDIA Sterownik graficzny 344.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 344.75 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4667.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4667.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4667.1002 - Microsoft Corporation) Hidden
Onekey Theater (HKLM-x32\...\{91CC5BAE-A098-40D3-A43B-C0DC7CE263FE}) (Version: 3.0.1.2 - Lenovo)
Pakiet sterowników systemu Windows - Lenovo (ACPIVPC) System (02/17/2013 9.52.0.776) (HKLM\...\35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E) (Version: 02/17/2013 9.52.0.776 - Lenovo)
Pakiet sterowników systemu Windows - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
Panel sterowania NVIDIA 344.75 (Version: 344.75 - NVIDIA Corporation) Hidden
Podręcznik użytkownika (x32 Version: 1.0.0.15 - Lenovo) Hidden
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.10525 - CyberLink Corp.)
Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7030 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 3.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.65 - NVIDIA Corporation) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.10.12 - Synaptics Incorporated)
USB Vibration Joystick (BM) (HKLM-x32\...\{61A994FF-D39B-4937-9DB9-87EC4FF1BB88}) (Version: 1.00.0000 - ShanWan)
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.15 - Lenovo)
WinRAR 5.11 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points =========================

10-11-2014 18:03:31 Zainstalowany program DirectX
16-11-2014 09:22:25 Windows Update
19-11-2014 14:07:29 Windows Update
20-11-2014 22:29:24 Installed USB Vibration Joystick (BM)

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {16461C5B-911D-4F70-9AE8-5ACCC21382C4} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon = & gt; C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: {169D7D1A-0467-490F-84D0-3BBBE1BAE24D} - System32\Tasks\GoogleUpdateTaskMachineUA = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-26] (Google Inc.)
Task: {1DFC4E3B-12C1-4C51-B02D-EA9445FA50DF} - System32\Tasks\CCleanerSkipUAC = & gt; C:\Program Files\CCleaner\CCleaner.exe [2014-10-23] (Piriform Ltd)
Task: {21F32D8E-D42D-4FD7-B54A-3FA3B4AE45FE} - System32\Tasks\Adobe Flash Player Updater = & gt; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-10-14] (Adobe Systems Incorporated)
Task: {372896FC-0262-4758-8090-24F9ECDFAA0F} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d = & gt; C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: {3C92672E-3C77-4CCA-BE0C-C921575C6024} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB = & gt; C:\windows\system32\MRT.exe [2014-11-16] (Microsoft Corporation)
Task: {595D919E-E031-4A89-8847-BC372B04563C} - System32\Tasks\Synaptics TouchPad Enhancements = & gt; C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-09-17] (Synaptics Incorporated)
Task: {5CC065B8-8CFE-4194-B6AD-3EFF7C240E18} - System32\Tasks\PDVDServ Task = & gt; C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE [2013-03-08] (CyberLink Corp.)
Task: {5E967F75-7CFE-46A2-B9A5-BFF8E5A339FA} - System32\Tasks\Lenovo\Experience Improvement = & gt; C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [2013-06-03] (Lenovo)
Task: {8359DCC3-E9AE-4A9C-8E44-76D52B6CB2F8} - System32\Tasks\OFFICE2013ACT = & gt; C:\ProgramData\Office2013\OFFICEICON.vbs [2013-06-03] ()
Task: {99DA66E7-7DAC-488A-868E-41806454443C} - System32\Tasks\Maxthon Update = & gt; C:\Program Files (x86)\Maxthon\Bin\mxup.exe [2013-08-01] (Maxthon International ltd.)
Task: {9FC99B69-779F-4DEF-B7DA-83831E4E14E6} - System32\Tasks\GoogleUpdateTaskMachineCore = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-26] (Google Inc.)
Task: {A0776EC2-1711-48EC-905E-429074877F74} - System32\Tasks\Microsoft\Office\Office Automatic Updates = & gt; C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2014-10-07] (Microsoft Corporation)
Task: {E1E5EA5F-0A00-48F6-9AEE-DDA33F3FCAB1} - System32\Tasks\UMonitor Task = & gt; C:\WINDOWS\SysWOW64\UMonit64.exe [2013-10-25] ()
Task: {F39AD1B8-E2A1-483F-A961-7197E82337D1} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance = & gt; C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2014-10-22] (Microsoft Corporation)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job = & gt; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-10-14 09:50 - 2014-11-13 01:20 - 00013120 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2014-10-14 09:54 - 2014-11-12 22:56 - 00118080 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-10-24 21:33 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2014-03-25 05:49 - 2012-04-25 03:43 - 00390632 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2014-03-25 05:52 - 2014-03-25 05:52 - 00068368 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
2014-03-25 05:52 - 2014-03-25 05:52 - 00669288 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfDataStorageInterface.dll
2014-03-25 05:36 - 2013-10-25 10:23 - 00053248 _____ () C:\WINDOWS\SysWOW64\UMonit64.exe
2014-10-23 20:19 - 2014-10-23 20:19 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll
2014-10-29 18:14 - 2014-10-22 05:04 - 01042760 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\libglesv2.dll
2014-10-29 18:14 - 2014-10-22 05:04 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\libegl.dll
2014-10-14 09:50 - 2014-11-13 01:20 - 00010952 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2014-10-29 18:14 - 2014-10-22 05:04 - 08910664 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\pdf.dll
2014-10-29 18:14 - 2014-10-22 05:04 - 01681224 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\ffmpegsumo.dll
2014-03-25 05:29 - 2013-08-08 13:25 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-10-29 18:14 - 2014-10-22 05:05 - 14902600 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The " AlternateShell " will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc = & gt; " " = " "
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc = & gt; " " = " "

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


========================= Accounts: ==========================

Administrator (S-1-5-21-3985225984-1873662328-3552526534-500 - Administrator - Disabled)
Gość (S-1-5-21-3985225984-1873662328-3552526534-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3985225984-1873662328-3552526534-1004 - Limited - Enabled)
micpod (S-1-5-21-3985225984-1873662328-3552526534-1002 - Administrator - Enabled) = & gt; C:\Users\micpod

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/20/2014 01:46:35 AM) (Source: Microsoft Office 15) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {85A1FB28-3301-4F2F-BAC2-B8A192D95BF5}

Error: (11/20/2014 01:46:35 AM) (Source: Microsoft Office 15) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {85A1FB28-3301-4F2F-BAC2-B8A192D95BF5}

Error: (11/20/2014 01:46:14 AM) (Source: Microsoft Office 15) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {66202AFF-5228-4B6A-94FB-706745AA0172}

Error: (11/20/2014 01:46:14 AM) (Source: Microsoft Office 15) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {66202AFF-5228-4B6A-94FB-706745AA0172}

Error: (11/20/2014 00:36:18 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program Explorer.EXE w wersji 6.3.9600.17284 przestał współpracować z systemem Windows i został zamknięty. Aby sprawdzić, czy jest dostępnych więcej informacji na temat tego problemu, sprawdź historię problemu w aplecie Centrum akcji w Panelu sterowania.

Identyfikator procesu: dbc

Godzina rozpoczęcia: 01d0041d59511f5e

Godzina zakończenia: 0

Ścieżka aplikacji: C:\windows\Explorer.EXE

Identyfikator raportu: d33e516c-7044-11e4-826a-28d2446a28d0

Pełna nazwa pakietu powodującego błąd:

Identyfikator aplikacji względem pakietu powodującego błąd:

Error: (11/19/2014 03:48:45 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcCan continue stopping. [1008]

Error: (11/19/2014 00:13:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: chrome.exe, wersja: 38.0.2125.111, sygnatura czasowa: 0x5447163b
Nazwa modułu powodującego błąd: KERNELBASE.dll, wersja: 6.3.9600.17278, sygnatura czasowa: 0x53eeb460
Kod wyjątku: 0xe0434352
Przesunięcie błędu: 0x00012f71
Identyfikator procesu powodującego błąd: 0xffc
Godzina uruchomienia aplikacji powodującej błąd: 0xchrome.exe0
Ścieżka aplikacji powodującej błąd: chrome.exe1
Ścieżka modułu powodującego błąd: chrome.exe2
Identyfikator raportu: chrome.exe3
Pełna nazwa pakietu powodującego błąd: chrome.exe4
Identyfikator aplikacji względem pakietu powodującego błąd: chrome.exe5

Error: (11/14/2014 05:21:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: chrome.exe, wersja: 38.0.2125.111, sygnatura czasowa: 0x5447163b
Nazwa modułu powodującego błąd: KERNELBASE.dll, wersja: 6.3.9600.17278, sygnatura czasowa: 0x53eeb460
Kod wyjątku: 0xe0434352
Przesunięcie błędu: 0x00012f71
Identyfikator procesu powodującego błąd: 0x14d4
Godzina uruchomienia aplikacji powodującej błąd: 0xchrome.exe0
Ścieżka aplikacji powodującej błąd: chrome.exe1
Ścieżka modułu powodującego błąd: chrome.exe2
Identyfikator raportu: chrome.exe3
Pełna nazwa pakietu powodującego błąd: chrome.exe4
Identyfikator aplikacji względem pakietu powodującego błąd: chrome.exe5

Error: (11/14/2014 05:20:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: chrome.exe, wersja: 38.0.2125.111, sygnatura czasowa: 0x5447163b
Nazwa modułu powodującego błąd: KERNELBASE.dll, wersja: 6.3.9600.17278, sygnatura czasowa: 0x53eeb460
Kod wyjątku: 0xe0434352
Przesunięcie błędu: 0x00012f71
Identyfikator procesu powodującego błąd: 0x106c
Godzina uruchomienia aplikacji powodującej błąd: 0xchrome.exe0
Ścieżka aplikacji powodującej błąd: chrome.exe1
Ścieżka modułu powodującego błąd: chrome.exe2
Identyfikator raportu: chrome.exe3
Pełna nazwa pakietu powodującego błąd: chrome.exe4
Identyfikator aplikacji względem pakietu powodującego błąd: chrome.exe5

Error: (11/12/2014 00:49:36 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcCan continue stopping. [1008]


System errors:
=============
Error: (11/20/2014 05:47:37 PM) (Source: DCOM) (EventID: 10010) (User: devildriverfff)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (11/20/2014 05:47:07 PM) (Source: DCOM) (EventID: 10010) (User: devildriverfff)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (11/19/2014 03:07:59 PM) (Source: DCOM) (EventID: 10010) (User: devildriverfff)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (11/18/2014 01:13:59 PM) (Source: DCOM) (EventID: 10010) (User: devildriverfff)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (11/18/2014 01:13:29 PM) (Source: DCOM) (EventID: 10010) (User: devildriverfff)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (11/18/2014 09:17:15 AM) (Source: DCOM) (EventID: 10010) (User: devildriverfff)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (11/18/2014 09:16:44 AM) (Source: DCOM) (EventID: 10010) (User: devildriverfff)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (11/17/2014 02:27:26 PM) (Source: DCOM) (EventID: 10010) (User: devildriverfff)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (11/17/2014 02:26:56 PM) (Source: DCOM) (EventID: 10010) (User: devildriverfff)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (11/16/2014 03:15:13 PM) (Source: DCOM) (EventID: 10010) (User: devildriverfff)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}


Microsoft Office Sessions:
=========================
Error: (11/20/2014 01:46:35 AM) (Source: Microsoft Office 15) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {85A1FB28-3301-4F2F-BAC2-B8A192D95BF5}

Error: (11/20/2014 01:46:35 AM) (Source: Microsoft Office 15) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {85A1FB28-3301-4F2F-BAC2-B8A192D95BF5}

Error: (11/20/2014 01:46:14 AM) (Source: Microsoft Office 15) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {66202AFF-5228-4B6A-94FB-706745AA0172}

Error: (11/20/2014 01:46:14 AM) (Source: Microsoft Office 15) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {66202AFF-5228-4B6A-94FB-706745AA0172}

Error: (11/20/2014 00:36:18 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Explorer.EXE6.3.9600.17284dbc01d0041d59511f5e0C:\windows\Explorer.EXEd33e516c-7044-11e4-826a-28d2446a28d0

Error: (11/19/2014 03:48:45 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcCan continue stopping. [1008]

Error: (11/19/2014 00:13:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: chrome.exe38.0.2125.1115447163bKERNELBASE.dll6.3.9600.1727853eeb460e043435200012f71ffc01d0038548e73d2eC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\windows\SYSTEM32\KERNELBASE.dll87e7df24-6f78-11e4-8269-28d2446a28d0

Error: (11/14/2014 05:21:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: chrome.exe38.0.2125.1115447163bKERNELBASE.dll6.3.9600.1727853eeb460e043435200012f7114d401d00027097c6fe5C:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\windows\SYSTEM32\KERNELBASE.dll47722efc-6c1a-11e4-8269-28d2446a28d0

Error: (11/14/2014 05:20:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: chrome.exe38.0.2125.1115447163bKERNELBASE.dll6.3.9600.1727853eeb460e043435200012f71106c01d00026dc3555c3C:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\windows\SYSTEM32\KERNELBASE.dll1ae50365-6c1a-11e4-8269-28d2446a28d0

Error: (11/12/2014 00:49:36 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcCan continue stopping. [1008]


CodeIntegrity Errors:
===================================
Date: 2014-11-14 17:09:11.304
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-11-14 17:09:11.210
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-11-14 17:09:11.007
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-11-14 17:09:10.913
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-11-14 17:09:10.710
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-11-14 17:09:10.601
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-11-14 17:09:10.398
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-11-14 17:09:10.304
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-11-14 17:09:10.101
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-11-14 17:09:09.991
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


Download file - link to post