Additional scan result of Farbar Recovery Scan Tool (x86) Version: 15-02-2015 Ran by hp at 2015-02-17 13:50:48 Running from C:\Users\hp\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 32 Bit HP CIO Components Installer (Version: 1.0.0 - Hewlett-Packard) Hidden Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated) Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated) Adobe Reader X (10.1.12) - Polish (HKLM\...\{AC76BA86-7AD7-1045-7B44-AA1000000001}) (Version: 10.1.12 - Adobe Systems Incorporated) Adobe Shockwave Player (HKLM\...\{1BDC9633-895B-4842-BCB6-8FA1EC2A3C5A}) (Version: 10.2.0.023 - Adobe Systems, Inc.) AIO_Scan (Version: 90.0.222.000 - Hewlett-Packard) Hidden Aktualizacja produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0415-0000-0000000FF1CE}_HOMESTUDENTR_{04E205D6-88B1-4652-B162-42DF2C3B1228}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0415-0000-0000000FF1CE}_HOMESTUDENTR_{442ECBCF-94A7-48CC-8CD9-D31FFFD5FA86}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0415-0000-0000000FF1CE}_HOMESTUDENTR_{128A36ED-21BE-4547-9FFE-5B85AEC735DD}) (Version: - Microsoft) Aktualizacje NVIDIA 1.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.3.5 - NVIDIA Corporation) CodeBlocks (HKU\S-1-5-21-3814680480-1097625461-4125634967-1000\...\CodeBlocks) (Version: 10.05 - The Code::Blocks Team) CyberLink DVD Suite (HKLM\...\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 5.5.1519 - CyberLink Corp.) CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.1616 - CyberLink Corp.) DigitalPersona Personal 3.0.1 (HKLM\...\{AE72E414-0935-4AC8-B7D6-12E3039BEC13}) (Version: 3.0.1 - DigitalPersona, Inc.) foobar2000 v1.1.10 (HKLM\...\foobar2000) (Version: 1.1.10 - Peter Pawlowski) Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.) Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden Hewlett-Packard Active Check for Health Check (Version: 1.1.15.2 - Hewlett-Packard) Hidden Hewlett-Packard Asset Agent for Health Check (Version: 2.0.63.2 - HP) Hidden HP Customer Experience Enhancements (HKLM\...\{B16DA0F8-26BC-4FFC-9363-1D9F3E6C3E21}) (Version: 5.7.0.2630 - Hewlett-Packard) HP Doc Viewer (HKLM\...\{082702D5-5DD8-4600-BCE5-48B15174687F}) (Version: 1.03.0001 - Hewlett-Packard) HP Easy Setup - Frontend (HKLM\...\{51E5C397-0AA0-48DD-9CB6-7259AFFDFB0A}) (Version: 5.7.0.2630 - Hewlett-Packard) HP Help and Support (HKLM\...\{28C3E5E6-5ACA-408D-9A46-089C5334EC97}) (Version: 2.0.7.0 - Hewlett-Packard) HP Integrated Module with Bluetooth wireless technology 6.0.1.6200 (HKLM\...\{03D1988F-469F-4843-8E6E-E5FE9D17889D}) (Version: 6.0.1.6200 - HP) HP Photosmart All-In-One Driver Software 9.0.A Corporate Edition (HKLM\...\{88908767-B7AD-4b0d-ACBC-FBCCF2761D31}) (Version: 9.0 - HP) HP Quick Launch Buttons 6.40 D1 (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.40 D1 - Hewlett-Packard) HP QuickPlay 3.7 (HKLM\...\{45D707E9-F3C4-11D9-A373-0050BAE317E1}) (Version: - ) HP QuickTouch 1.00 D2 (HKLM\...\{30DAA715-5032-40F9-A0AE-95C9AEBB3E3F}) (Version: 1.0.9 - Hewlett-Packard) HP Update (HKLM\...\{C8FD5BC1-92EF-4C15-92A9-F9AC7F61985F}) (Version: 4.000.010.008 - Hewlett-Packard) HP User Guides 0102 (HKLM\...\{F48098CD-2D66-4861-85EC-DC1D4D09D5F9}) (Version: 1.01.0000 - Hewlett-Packard) HP Wireless Assistant (HKLM\...\{A5CE7175-080D-49AC-B5A3-E7E3502428F5}) (Version: 3.00 I2 - Hewlett-Packard) HPNetworkAssistant (Version: 1.1.70 - Hewlett-Packard.) Hidden HQCinema Pro 2.1V11.02 (HKLM\...\HQCinema Pro 2.1V11.02) (Version: 1.36.01.22 - HQ CinemaV11.02) IDT Audio (HKLM\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.5893.0 - IDT) Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation) Java 7 Update 71 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217040FF}) (Version: 7.0.710 - Oracle) Java(TM) 6 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216031FF}) (Version: 6.0.310 - Oracle) Java(TM) 6 Update 5 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0160050}) (Version: 1.6.0.50 - Sun Microsystems, Inc.) JMicron JMB38X Flash Media Controller (HKLM\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.00.10.04 - JMicron Technology Corp.) LabelPrint (HKLM\...\{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.20.2719 - CyberLink Corp.) Last.fm 1.5.4.27091 (HKLM\...\LastFM_is1) (Version: - Last.fm) LG United Mobile Drivers (HKLM\...\{5DB849D6-9392-4FB7-9ABB-87ED433152E5}) (Version: 3.8.1 - LG Electronics) Litthe Cars in The Great Race 1.0 (HKLM\...\Litthe Cars in The Great Race) (Version: - ) Medieval II Total War (HKLM\...\{C0698BDA-0D29-40EE-8570-A31106DF9AB1}) (Version: 1.00.0000 - SEGA) Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Games for Windows - LIVE (HKLM\...\{B45FABE7-D101-4D99-A671-E16DA40AF7F0}) (Version: 3.0.86.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM\...\{B578C85A-A84C-4230-A177-C5B2AF565B8C}) (Version: 3.0.17.0 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.31211.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 Design Tools ENU (HKLM\...\{2E5C075E-11AB-4BDD-918C-7B9A68953FF8}) (Version: 3.5.5386.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 ENU (HKLM\...\{BCC899FE-2DAA-460C-A5FB-60291E73D9C3}) (Version: 3.5.5386.0 - Microsoft Corporation) Microsoft Visual Basic 2008 Express Edition - ENU (HKLM\...\Microsoft Visual Basic 2008 Express Edition - ENU) (Version: - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Windows SDK for Visual Studio 2008 Express Tools for .NET Framework (HKLM\...\{B4C0A315-07FB-39F9-85CD-8CE20C019350}) (Version: 3.5.21022 - Microsoft) Microsoft Windows SDK for Visual Studio 2008 Express Tools for Win32 (HKLM\...\{07FCBED5-94C3-4F94-B9D3-360FA27C7B06}) (Version: 6.1.5288.17011 - Microsoft Corporation) Mozilla Firefox 35.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 35.0.1 (x86 en-US)) (Version: 35.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Nero - Burning Rom (HKLM\...\{A4D7B764-4140-11D4-88EB-0050DA3579C0}) (Version: 5.5.9 - ahead software gmbh) NVIDIA Oprogramowanie systemu PhysX 9.10.0514 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.10.0514 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.2.23.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.2.23.3 - NVIDIA Corporation) NVIDIA Sterownik graficzny 275.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 275.33 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 275.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 275.33 - NVIDIA Corporation) Oblivion (HKLM\...\{35CB6715-41F8-4F99-8881-6FC75BF054B0}) (Version: 1.00.0000 - Bethesda Softworks) Origin (HKLM\...\Origin) (Version: 8.1.2.444 - Electronic Arts, Inc.) Pakiet językowy programu Microsoft .NET Framework 3.5 z dodatkiem SP1 — PLK (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - plk) (Version: - Microsoft Corporation) Panel sterowania NVIDIA 275.33 (Version: 275.33 - NVIDIA Corporation) Hidden Pasek narzędzi AOL 5.0 (HKLM\...\AOL Toolbar) (Version: 5.2.69.1 - AOL LLC) PDF Converter Packages (HKU\S-1-5-21-3814680480-1097625461-4125634967-1000\...\PDF Converter Packages) (Version: - ) <==== ATTENTION PDF Creator (HKLM\...\PDF Creator) (Version: - ) PhotoNow! (HKLM\...\{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.4518 - CyberLink Corp.) Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Power2Go (HKLM\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.3919 - CyberLink Corp.) PowerDirector (HKLM\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 6.5.2719 - CyberLink Corp.) PowerDirector (Version: 6.5.2719 - CyberLink Corp.) Hidden PowerISO (HKLM\...\PowerISO) (Version: 4.9 - Power Software Ltd) ProtectSmart Hard Drive Protection (HKLM\...\{DD876490-252F-4EEF-B205-2E8F5A6E523B}) (Version: 3.10 A7 - Hewlett-Packard) ps_aio_corporate (Version: 90.0.222.000 - Hewlett-Packard) Hidden PS_AIO_Software_min (Version: 90.0.222.000 - Hewlett-Packard) Hidden Scan (Version: 9.0.0.0 - Hewlett-Packard) Hidden Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 10.2.4.0 - Synaptics) Techland Szachy 98 (HKLM\...\Techland Szachy 98) (Version: - ) TELL ME MORE (HKLM\...\TMM80) (Version: - ) TheSettlersOnline (HKU\S-1-5-21-3814680480-1097625461-4125634967-1000\...\TheSettlersOnline) (Version: - TheSettlersOnline) Toolbox (Version: 90.0.146.000 - Hewlett-Packard) Hidden Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Validity Sensors software (HKLM\...\{567E8236-C414-4888-8211-3D61608D57AE}) (Version: 2.7.34 - Validity Sensors, Inc.) VC Runtimes MSI (Version: 9.0.21022 - Microsoft) Hidden WinRAR 4.01 (32-bitowy) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH) Word Proser 1.10.0.9 (HKLM\...\WordProser_1.10.0.9) (Version: 1.10.0.9 - Word Proser) <==== ATTENTION ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-3814680480-1097625461-4125634967-1000_Classes\CLSID\{320F0FDB-BE0A-4648-9D18-4A2C3448C007}\InprocServer32 -> C:\Users\hp\AppData\Local\Google\Update\1.3.21.79\psuser.dll No File CustomCLSID: HKU\S-1-5-21-3814680480-1097625461-4125634967-1000_Classes\CLSID\{41BE5DC3-212A-44A3-8811-4A54E9D2884A}\InprocServer32 -> C:\Users\hp\AppData\LocalLow\uTorrentBar\prxtbuTo2.dll (ClientConnect Ltd.) CustomCLSID: HKU\S-1-5-21-3814680480-1097625461-4125634967-1000_Classes\CLSID\{66E8DCC7-97D2-4A89-8E08-D0610FF0878C}\InprocServer32 -> C:\Users\hp\AppData\Local\Conduit\Community Alerts\Alert.dll No File CustomCLSID: HKU\S-1-5-21-3814680480-1097625461-4125634967-1000_Classes\CLSID\{A97B89CD-B65C-49DD-AF46-2B772C627456}\InprocServer32 -> C:\Users\hp\AppData\LocalLow\uTorrentBar\prxtbuTo2.dll (ClientConnect Ltd.) CustomCLSID: HKU\S-1-5-21-3814680480-1097625461-4125634967-1000_Classes\CLSID\{B6BB720C-25CB-11E0-B4E5-23EBDED72085}\InprocServer32 -> C:\Users\hp\AppData\Local\ASKTOO~1\DOWNLO~1\NEROOE~1.DLL No File CustomCLSID: HKU\S-1-5-21-3814680480-1097625461-4125634967-1001_Classes\CLSID\{320F0FDB-BE0A-4648-9D18-4A2C3448C007}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.79\psuser.dll No File CustomCLSID: HKU\S-1-5-21-3814680480-1097625461-4125634967-1001_Classes\CLSID\{41BE5DC3-212A-44A3-8811-4A54E9D2884A}\InprocServer32 -> C:\Users\UpdatusUser\AppData\LocalLow\uTorrentBar\prxtbuTo2.dll No File CustomCLSID: HKU\S-1-5-21-3814680480-1097625461-4125634967-1001_Classes\CLSID\{66E8DCC7-97D2-4A89-8E08-D0610FF0878C}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Conduit\Community Alerts\Alert.dll No File CustomCLSID: HKU\S-1-5-21-3814680480-1097625461-4125634967-1001_Classes\CLSID\{A97B89CD-B65C-49DD-AF46-2B772C627456}\InprocServer32 -> C:\Users\UpdatusUser\AppData\LocalLow\uTorrentBar\prxtbuTo2.dll No File CustomCLSID: HKU\S-1-5-21-3814680480-1097625461-4125634967-1001_Classes\CLSID\{B6BB720C-25CB-11E0-B4E5-23EBDED72085}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\ASKTOO~1\DOWNLO~1\NEROOE~1.DLL No File ==================== Restore Points ========================= ATTENTION: System Restore is disabled. ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2006-11-02 11:23 - 2015-02-15 13:07 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {1C44BD21-E076-4B4D-B0D5-68BBFAE15C84} - System32\Tasks\TheSettlersOnline WW2 => Chrome.exe --app=http://www.thesettlersonline.pl/?pid=TSO_PL_05_0316_09_000_02_0514_00 --app-window-size=1280,720 Task: {626D5690-68C0-49EA-B2E6-8AD9B518E021} - System32\Tasks\TheSettlersOnline WW1 => Chrome.exe --app=http://www.thesettlersonline.pl/?pid=TSO_PL_05_0316_09_000_02_0514_00 --app-window-size=1280,720 Task: {6348439E-79E2-4646-B65F-1B2DA4583463} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2008-01-04] (Google Inc.) Task: {6C5E579E-B95B-4C4F-BFDE-6538CAAA9962} - System32\Tasks\TheSettlersOnline W1 => Chrome.exe --app=http://www.thesettlersonline.pl/?pid=TSO_PL_05_0316_09_000_02_0514_00 --app-window-size=1280,720 Task: {979224CD-4AD5-4D9B-A2AB-EE28446158FC} - System32\Tasks\TheSettlersOnline D1 => Chrome.exe --app=http://www.thesettlersonline.pl/?pid=TSO_PL_05_0316_09_000_02_0514_00 --app-window-size=1280,720 Task: {B65B314E-E45F-4D1B-8A39-8C4CD64B66E2} - System32\Tasks\TheSettlersOnline W2 => Chrome.exe --app=http://www.thesettlersonline.pl/?pid=TSO_PL_05_0316_09_000_02_0514_00 --app-window-size=1280,720 Task: {CAA4E589-7988-4C17-AC77-E229F916CBB0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-09] (Adobe Systems Incorporated) Task: {DA86C3D5-F2E8-4848-BA43-4525B7696C32} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2008-01-04] (Google Inc.) Task: {F1A6CFA9-6EF2-4E90-82B8-D97F838510EE} - System32\Tasks\HP Health Check => c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-04-15] (Hewlett-Packard) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============== 2012-11-04 07:55 - 2011-10-04 22:42 - 00086016 _____ () C:\Windows\System32\custmon32i.dll 2015-02-12 19:33 - 2015-02-09 16:47 - 03977360 _____ () C:\Program Files\rec_pl_12\rec_pl_12.exe 2008-01-16 17:51 - 2008-01-16 17:51 - 00126976 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll 2008-07-03 02:17 - 2008-04-23 22:51 - 00066856 _____ () C:\Program Files\HP\QuickPlay\Kernel\Common\MCEMediaStatus.dll 2015-01-29 18:13 - 2015-01-29 18:13 - 03925104 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll 2008-07-03 02:17 - 2008-04-23 22:51 - 00292232 _____ () C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe 2008-07-03 02:17 - 2008-04-23 22:51 - 00259472 _____ () C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapEngine.dll 2008-07-03 02:17 - 2008-04-23 22:51 - 00038184 _____ () C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvcps.dll 2008-07-03 02:17 - 2008-04-23 22:52 - 00112008 _____ () C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe 2008-07-03 03:06 - 2008-03-26 14:26 - 00341328 _____ () C:\Windows\SMINST\BLService.exe 2008-07-03 03:06 - 2006-09-13 12:54 - 00081920 _____ () C:\Windows\SMINST\STString.dll 2008-07-03 03:06 - 2007-11-14 14:46 - 00126976 _____ () C:\Windows\SMINST\STWmiM.dll 2008-07-03 03:02 - 2007-01-09 10:25 - 00272024 _____ () C:\Program Files\CyberLink\Shared Files\RichVideo.exe 2015-02-09 21:57 - 2015-02-09 21:57 - 16852144 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" ==================== EXE Association (whitelisted) =============== (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-3814680480-1097625461-4125634967-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Public\Pictures\Sample Pictures\Autumn Leaves.jpg HKU\S-1-5-21-3814680480-1097625461-4125634967-1001\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\Silhouette.jpg DNS Servers: 192.168.1.1 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== Accounts: ============================= Administrator (S-1-5-21-3814680480-1097625461-4125634967-500 - Administrator - Disabled) Gość (S-1-5-21-3814680480-1097625461-4125634967-501 - Limited - Disabled) hp (S-1-5-21-3814680480-1097625461-4125634967-1000 - Administrator - Enabled) => C:\Users\hp UpdatusUser (S-1-5-21-3814680480-1097625461-4125634967-1001 - Limited - Enabled) => C:\Users\UpdatusUser ==================== Faulty Device Manager Devices ============= Name: Karta Microsoft ISATAP Description: Karta Microsoft ISATAP Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver Name: Karta Microsoft ISATAP #4 Description: Karta Microsoft ISATAP Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver Name: Karta Microsoft ISATAP #7 Description: Karta Microsoft ISATAP Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver Name: isatap.{95E8EE92-7550-4684-8E47-80324CA7C40B} Description: Karta Microsoft ISATAP Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver Name: Karta Microsoft ISATAP #2 Description: Karta Microsoft ISATAP Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver Name: Description: Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Service: Problem: : Reinstall the drivers for this device. (Code 18) Resolution: The drivers for this device must be reinstalled. Click "Update Driver", which starts the Hardware Update wizard. Alternately, uninstall the driver, and then click "Scan for hardware changes" to reload the drivers. Name: Description: Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Service: Problem: : Reinstall the drivers for this device. (Code 18) Resolution: The drivers for this device must be reinstalled. Click "Update Driver", which starts the Hardware Update wizard. Alternately, uninstall the driver, and then click "Scan for hardware changes" to reload the drivers. Name: Description: Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Service: Problem: : Reinstall the drivers for this device. (Code 18) Resolution: The drivers for this device must be reinstalled. Click "Update Driver", which starts the Hardware Update wizard. Alternately, uninstall the driver, and then click "Scan for hardware changes" to reload the drivers. Name: Karta sieciowa Realtek RTL8168/8111 Family PCI-E Gigabit Ethernet NIC (NDIS 6.0) Description: Karta sieciowa Realtek RTL8168/8111 Family PCI-E Gigabit Ethernet NIC (NDIS 6.0) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Realtek Service: RTL8169 Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (02/17/2015 01:30:54 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/17/2015 09:15:26 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/17/2015 08:05:58 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Aplikacja powodująca błąd iexplore.exe, wersja 7.0.6001.18639, sygnatura czasowa 0x4db02c95, moduł powodujący błąd OLEAUT32.dll, wersja 6.0.6001.18565, sygnatura czasowa 0x4d0f78bd, kod wyjątku 0xc0000005, przesunięcie błędu 0x000041e6, identyfikator procesu 0x350, godzina rozpoczęcia aplikacji 0xiexplore.exe0. Error: (02/16/2015 11:45:09 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Aplikacja powodująca błąd QPSched.exe, wersja 5.0.0.2817, sygnatura czasowa 0x4806c4b4, moduł powodujący błąd QPSched.exe, wersja 5.0.0.2817, sygnatura czasowa 0x4806c4b4, kod wyjątku 0xc0000005, przesunięcie błędu 0x000075b3, identyfikator procesu 0xe68, godzina rozpoczęcia aplikacji 0xQPSched.exe0. Error: (02/16/2015 09:35:33 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/16/2015 09:05:25 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Aplikacja powodująca błąd SWHELP~1.EXE, wersja 10.2.0.23, sygnatura czasowa 0x46b827fc, moduł powodujący błąd SWHELP~1.EXE, wersja 10.2.0.23, sygnatura czasowa 0x46b827fc, kod wyjątku 0xc0000005, przesunięcie błędu 0x00025b30, identyfikator procesu 0x15a0, godzina rozpoczęcia aplikacji 0xSWHELP~1.EXE0. Error: (02/16/2015 08:50:20 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/16/2015 06:52:04 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/01/2008 00:04:02 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: ) Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabWymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej. Error: (01/01/2008 00:03:57 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: ) Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabWymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej. System errors: ============= Error: (01/01/2008 00:02:15 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 01:25:46 na 2008-01-01 było nieoczekiwane. Error: (01/01/2008 00:01:47 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 04:25:38 na 2008-01-01 było nieoczekiwane. Error: (01/01/2008 01:46:43 AM) (Source: VDS Dynamic Provider) (EventID: 10) (User: ) Description: Dostawca napotkał błąd podczas zapisywania powiadomień ze sterownika. Należy ponownie uruchomić Usługę dysków wirtualnych. hr=80042505 Error: (01/01/2008 00:04:43 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: QuickPlay Task Scheduler (QTS) Error: (01/01/2008 00:04:16 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Computer Backup (MyPC Backup)%%1053 Error: (01/01/2008 00:04:16 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: 30000Computer Backup (MyPC Backup) Error: (01/01/2008 00:04:16 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Parallel port driver%%1058 Error: (01/01/2008 00:02:42 AM) (Source: HTTP) (EventID: 15016) (User: ) Description: \Device\Http\ReqQueueKerberos Error: (01/01/2008 00:02:40 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 00:26:24 na 2008-01-01 było nieoczekiwane. Error: (01/01/2008 00:04:34 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: QuickPlay Task Scheduler (QTS) Microsoft Office Sessions: ========================= Error: (11/03/2012 01:44:22 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 149 seconds with 120 seconds of active time. This session ended with a crash. Error: (11/03/2012 01:40:00 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 3 seconds with 0 seconds of active time. This session ended with a crash. Error: (11/03/2012 01:39:44 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 8 seconds with 0 seconds of active time. This session ended with a crash. Error: (11/03/2012 01:36:06 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 9 seconds with 0 seconds of active time. This session ended with a crash. Error: (11/03/2012 01:35:52 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 6 seconds with 0 seconds of active time. This session ended with a crash. Error: (11/03/2012 01:35:39 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 354 seconds with 0 seconds of active time. This session ended with a crash. Error: (11/03/2012 01:11:43 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 38 seconds with 0 seconds of active time. This session ended with a crash. Error: (11/03/2012 01:10:26 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 668 seconds with 0 seconds of active time. This session ended with a crash. Error: (11/03/2012 00:22:22 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 416 seconds with 360 seconds of active time. This session ended with a crash. Error: (11/03/2012 00:15:16 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 16 seconds with 0 seconds of active time. This session ended with a crash. CodeIntegrity Errors: =================================== Date: 2015-02-17 13:50:28.029 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\WINDOWS\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-17 13:50:27.967 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\WINDOWS\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-17 13:50:27.905 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\WINDOWS\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-17 13:50:27.841 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\WINDOWS\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-17 13:50:27.736 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\WINDOWS\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-17 13:50:27.646 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\WINDOWS\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-17 13:50:27.557 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\WINDOWS\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-17 13:50:27.472 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\WINDOWS\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-17 09:16:48.442 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\WINDOWS\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-17 09:16:48.367 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\WINDOWS\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: Intel(R) Core(TM)2 Duo CPU T9400 @ 2.53GHz Percentage of memory in use: 55% Total physical RAM: 3038.27 MB Available physical RAM: 1337.39 MB Total Pagefile: 6281.41 MB Available Pagefile: 4519.03 MB Total Virtual: 2047.88 MB Available Virtual: 1907.11 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:289.97 GB) (Free:180.45 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive d: (HP_RECOVERY) (Fixed) (Total:8.12 GB) (Free:1.5 GB) NTFS ==>[System with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 298.1 GB) (Disk ID: 698ED561) Partition 1: (Active) - (Size=290 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=8.1 GB) - (Type=07 NTFS) ==================== End Of Log ============================