Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x86) Wersja:18-10-2015 Uruchomiony przez PC (2015-10-19 14:16:16) Uruchomiony z C:\Users\PC\Downloads Microsoft Windows 7 Ultimate Service Pack 1 (X86) (2013-09-03 11:25:10) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2913023827-3410463325-4151107135-500 - Administrator - Disabled) Anna (S-1-5-21-2913023827-3410463325-4151107135-1004 - Administrator - Enabled) => C:\Users\Anna Gość (S-1-5-21-2913023827-3410463325-4151107135-501 - Limited - Enabled) => C:\Users\Gość HomeGroupUser$ (S-1-5-21-2913023827-3410463325-4151107135-1002 - Limited - Enabled) PC (S-1-5-21-2913023827-3410463325-4151107135-1000 - Administrator - Enabled) => C:\Users\PC ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Microsoft Security Essentials (Disabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A} AS: Microsoft Security Essentials (Disabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-2913023827-3410463325-4151107135-1000\...\uTorrent) (Version: 3.4.4.40911 - BitTorrent Inc.) Adobe Flash Player 19 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 19.0.0.226 - Adobe Systems Incorporated) Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated) Adobe Reader XI (11.0.13) - Polish (HKLM\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated) Advanced RAR Repair v1.2 (HKLM\...\Advanced RAR Repair v1.2) (Version: - ) Aktualizacja produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0415-0000-0000000FF1CE}_ENTERPRISE_{04E205D6-88B1-4652-B162-42DF2C3B1228}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0415-0000-0000000FF1CE}_ENTERPRISE_{442ECBCF-94A7-48CC-8CD9-D31FFFD5FA86}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0415-0000-0000000FF1CE}_ENTERPRISE_{128A36ED-21BE-4547-9FFE-5B85AEC735DD}) (Version: - Microsoft) Aktualizacje NVIDIA 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden Ashampoo Burning Studio FREE v.1.14.5 (HKLM\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.14.5 - Ashampoo GmbH & Co. KG) CCleaner (HKLM\...\CCleaner) (Version: 5.10 - Piriform) Chicken Invaders: Ultimate Omelette v4.13 (HKLM\...\Chicken Invaders: Ultimate Omelette_is1) (Version: - InterAction studios) CWK (Czasowy Wyłącznik Komputera) (HKLM\...\CWK) (Version: 2.52.3.43 - Damian Pasternak) Daum PotPlayer 1.5.39659.0 Public Beta PL (HKLM\...\Daum PotPlayer_is1) (Version: 1.5.39659.0 - Daum Communications) EaseUS Partition Recovery 5.6.1 (HKLM\...\EaseUS Partition Recovery_is1) (Version: - EaseUS) FastStone Capture 5.3 (HKLM\...\FastStone Capture) (Version: 5.3 - FastStone Soft) FlashGet3.7 (HKLM\...\FlashGet3.7) (Version: 3.7.0.1220 - hxxp://www.FlashGet.com) foobar2000 v1.3 beta 7 (HKLM\...\foobar2000) (Version: 1.3 beta 7 - Peter Pawlowski) GDR 3128 for SQL Server 2012 (KB2793634) (HKLM\...\KB2793634) (Version: 11.1.3128.0 - Microsoft Corporation) GDR 3153 for SQL Server 2012 (KB2977326) (HKLM\...\KB2977326) (Version: 11.1.3153.0 - Microsoft Corporation) GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden Google Chrome (HKLM\...\Google Chrome) (Version: 46.0.2490.71 - Google Inc.) Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (Version: 1.3.28.15 - Google Inc.) Hidden HD Tune Pro 5.50 (HKLM\...\HD Tune Pro_is1) (Version: - EFD Software) HDD Regenerator (HKLM\...\{2445981B-A23B-4A0E-AD15-3D391BDAEC3E}) (Version: 1.71.0012 - Abstradrome) HDD Regenerator (HKLM\...\{CC5DA723-D428-40D1-B82B-21EB64B1273C}) (Version: 20.11.0011 - Abstradrome) Heroes of Might & Magic III - HD Edition (HKLM\...\Heroes of Might & Magic III - HD Edition_is1) (Version: 1.0 - Релиз от R.G. Steamgames) Heroes of Might and Magic III - Złota Edycja (HKLM\...\Heroes of Might and Magic III - Złota Edycja_is1) (Version: - ) Heroes of Might and Magic V - Dzikie Hordy (HKLM\...\{ACC75323-DB4A-4f7f-9AF3-1D1DEFF2D1B5}_is1) (Version: - Ubisoft) Heroes of Might and Magic V - Tribes of the East (HKLM\...\{ACC75323-DB4A-4F7F-9AF3-1D1DEFF2D1B5}) (Version: - ) Heroes of Might and Magic(TM) III Armageddon's Blade (HKLM\...\Heroes of Might and Magic(TM) III Armageddon's Blade) (Version: - ) ImgBurn (HKLM\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!) Java 8 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation) Kaspersky Security Scan (HKLM\...\InstallWIX_{D1282694-0693-41A8-ABC1-6D1FFC1F65C4}) (Version: 12.0.1.881 - Kaspersky Lab) Kaspersky Security Scan (Version: 12.0.1.881 - Kaspersky Lab) Hidden Malwarebytes Anti-Malware wersja 2.2.0.1024 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes) Medal of Honor Warfighter (HKLM\...\Medal of Honor Warfighter_is1) (Version: Medal of Honor Warfighter - ) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation) Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{D441BD04-E548-4F8E-97A4-1B66135BAAA8}) (Version: 10.1.2731.0 - Microsoft Corporation) Microsoft SQL Server 2012 (HKLM\...\Microsoft SQL Server SQLServer2012) (Version: - Microsoft Corporation) Microsoft SQL Server 2012 Native Client (HKLM\...\{544ACD54-9FAA-4A60-A1E7-B2EC3AA75D24}) (Version: 11.1.3000.0 - Microsoft Corporation) Microsoft SQL Server 2012 Setup (English) (HKLM\...\{0EEF6911-8360-4DA9-A09F-0802A626AAEF}) (Version: 11.1.3153.0 - Microsoft Corporation) Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{E7654811-38F9-4225-9688-827FDA716582}) (Version: 11.1.3000.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft VSS Writer for SQL Server 2012 (HKLM\...\{2EB88B38-A700-411C-B45E-33A5EB81B936}) (Version: 11.1.3000.0 - Microsoft Corporation) Mozilla Firefox 41.0.2 (x86 pl) (HKLM\...\Mozilla Firefox 41.0.2 (x86 pl)) (Version: 41.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 41.0.2.5765 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) nLite 1.4.9.3 (HKLM\...\nLite_is1) (Version: 1.4.9.3 - Dino Nuhagic (nuhi)) Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - ) NVIDIA GeForce Experience 1.8.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.1 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation) NVIDIA Sterownik graficzny 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation) NVIDIA Virtual Audio 1.2.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.19 - NVIDIA Corporation) Ontrack EasyRecovery Professional (HKLM\...\{668CC71A-C2AD-4D56-866D-CF300BD1D5BE}_is1) (Version: 11.0.2.0 - Kroll Ontrack Inc.) Pakiet zgodności dla systemu Office 2007 (HKLM\...\{90120000-0020-0415-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Panel sterowania NVIDIA 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden Pdf995 (HKLM\...\Pdf995) (Version: 14.2s - ) Portlock Windows Update Manager (HKLM\...\{FA2C5B46-0839-493E-8CFE-41AD32201AA4}) (Version: 5.35.1520 - Portlock Software) Potplayer (HKLM\...\PotPlayer) (Version: - Daum Kakao Corp.) QF9700 driver (HKLM\...\{F19DCE25-9F52-42A0-B3BE-2484FA5B7020}) (Version: 1.00.0000 - Corechip) Ralink RT2870 Wireless LAN Card (HKLM\...\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}) (Version: 1.5.26.0 - Ralink) Recovery Toolbox for Word 2.0 (HKLM\...\Recovery Toolbox for Word_is1) (Version: - Recovery Toolbox, Inc.) Recuva (HKLM\...\Recuva) (Version: 1.50 - Piriform) Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group) Service Pack 1 for SQL Server 2012 (KB2674319) (HKLM\...\KB2674319) (Version: 11.1.3000.0 - Microsoft Corporation) SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden Sony PC Companion 2.10.251 (HKLM\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.251 - Sony) SQL Server 2012 Common Files (Version: 11.1.3000.0 - Microsoft Corporation) Hidden SQL Server 2012 Database Engine Services (Version: 11.1.3000.0 - Microsoft Corporation) Hidden SQL Server 2012 Database Engine Shared (Version: 11.1.3000.0 - Microsoft Corporation) Hidden SQL Server Browser for SQL Server 2012 (HKLM\...\{4B9E6EB0-0EED-4E74-9479-F982C3254F71}) (Version: 11.1.3000.0 - Microsoft Corporation) Sql Server Customer Experience Improvement Program (Version: 11.1.3000.0 - Microsoft Corporation) Hidden StrongRecovery (HKLM\...\StrongRecovery) (Version: - ) TeamViewer 10 (HKLM\...\TeamViewer) (Version: 10.0.47484 - TeamViewer) TmNationsForever (HKLM\...\TmNationsForever_is1) (Version: - Nadeo) Tropico 3 (HKLM\...\{6CA1CD8C-2D65-491E-9467-00A3ACA4A0A9}) (Version: 1.00.0000 - Kalypso) TuneUp Utilities Language Pack (pl-PL) (Version: 13.0.2020.84 - TuneUp Software) Hidden Undelete 360 (HKLM\...\Undelete 360_is1) (Version: - File Recovery Ltd.) Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) WinImage (HKU\S-1-5-21-2913023827-3410463325-4151107135-1000\...\WinImage) (Version: - ) WinRAR 5.21 (32-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) WinZip 19.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240EC}) (Version: 19.5.11532 - WinZip Computing, S.L. ) Zebra Setup Utilities (Version: 1.1.9.1137 - Zebra Technologies) Hidden ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-2913023827-3410463325-4151107135-1000_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader.dll () ==================== Punkty Przywracania systemu ========================= 19-10-2015 13:34:02 Revo Uninstaller's restore point - DAEMON Tools Lite ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:04 - 2009-06-10 23:39 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {02FBD38B-F7AD-4403-AEA5-562948EAA75C} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => C:\Windows\system32\compattelrunner.exe [2015-09-18] (Microsoft Corporation) Task: {13B581F3-1020-46EE-9094-EBB596A9F3DA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {2665875F-185E-4B61-836B-83AEC16183C7} - System32\Tasks\{6C23FE6E-5D92-4926-94BC-26339D00988D} => C:\Users\PC\Downloads\Heroes.of.Might.&.Magic.III.Armageddon's.Blade.PL-WeKs\SETUP.EXE Task: {2EBDEA21-FAAD-4CB3-9DFC-6E9B5272C60F} - System32\Tasks\{DB9EBA44-E440-4A02-8545-38489BDED90D} => pcalua.exe -a C:\Users\PC\Downloads\Heroes.of.Might.&.Magic.III.Armageddon's.Blade.PL-WeKs\SETUP.EXE -d C:\Users\PC\Downloads\Heroes.of.Might.&.Magic.III.Armageddon's.Blade.PL-WeKs Task: {3A70DF2E-5108-427F-8499-E70BA230E5F7} - System32\Tasks\{60B8C9D5-E300-4338-8D50-9AD3265BE391} => I:\setup.exe Task: {584EA3EC-FDA1-423C-8CB6-8CE7D437D64C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {646308A6-9937-4B12-896D-78DB4CA5E23C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-09-16] (Piriform Ltd) Task: {68F6D6B5-8087-4E1B-A451-09B544A4BAD3} - \Program aktualizacji online firmy Adobe. -> Brak pliku <==== UWAGA Task: {76F8FE06-BFA7-42C9-BFB4-AD11A65E2E6C} - System32\Tasks\{3149326C-4702-4B69-8B71-D4C9B2F02A21} => E:\Games\Sniper Elite 3\bin\SniperElite3.exe Task: {8E854AAE-501B-4548-B657-4275393B608F} - System32\Tasks\{A5BE56F5-8B19-4ADC-AA5E-9D1063750064} => C:\Users\PC\Desktop\remonter\MM\ZESTAW.EXE Task: {92245BE1-E1FD-4D47-ADCE-94D7C5D2B2B2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-19] (Adobe Systems Incorporated) Task: {95A37D52-CA98-4A35-BA36-7793EF57CAAE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-09-14] (Adobe Systems Incorporated) Task: {98D55D60-7D3F-41A0-B4E4-CF218677369E} - System32\Tasks\{A0D0837F-3C88-4EB8-A2E2-75E3CB2A1310} => C:\Users\PC\Desktop\remonter\MM\ZESTAW.EXE Task: {A9A51297-B147-44BB-AEA8-01ECEBD1C953} - System32\Tasks\{73F5670A-7425-466E-B395-151BF88A9478} => J:\arch p taciak\ROK_2012\31122012\DGCS\MMAGAZYN\M_M.EXE Task: {D9D44C77-5B29-485D-BE3E-F9751C82925F} - System32\Tasks\{AC8F5641-AE23-4693-A585-885987C34EE8} => D:\Program Files\Heroes of Might and Magic III - Zlota Edycja\Heroes3.exe Task: {DC68DA66-265A-494D-AEE5-CDE1CA8F283C} - System32\Tasks\{CE2033F0-DF40-4AE5-80CC-6C879B34C04C} => C:\Users\PC\Downloads\Heroes.of.Might.&.Magic.III.Armageddon's.Blade.PL-WeKs\SETUP.EXE Task: {DFFB4A29-6612-4F05-92BE-48E45E4A0BD7} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe Task: {FFA86C91-5950-43B1-AA1A-C4599D39058E} - System32\Tasks\{0FEDCC29-3A79-4B6B-B3F4-04DB5944C136} => I:\setup.exe (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe ==================== Załadowane moduły (filtrowane) ============== 2015-09-22 13:46 - 2014-07-02 21:42 - 00107992 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll 2014-10-23 17:43 - 2014-10-23 17:43 - 00036864 _____ () C:\Windows\System32\pdf995mon.dll 2013-05-08 14:17 - 2013-05-08 14:17 - 00082144 _____ () C:\Program Files\HDD Regenerator\hrsrv.exe 2014-09-01 11:38 - 2014-09-01 11:38 - 00076888 _____ () C:\Windows\system32\PnkBstrA.exe ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData\TEMP:1AAB2E68 AlternateDataStreams: C:\ProgramData\TEMP:B755D674 ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2913023827-3410463325-4151107135-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\PC\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: HDD Regenerator => "C:\Program Files\HDD Regenerator\Shell.exe" /1 ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{49D18EF7-7DD0-4577-86C6-CE7FE65BF0DA}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [TCP Query User{0C8AEB09-A1AB-41EC-AD6B-E25335E5577D}C:\program files\o22y inc\medal of honor warfighter\mohw.exe] => (Allow) C:\program files\o22y inc\medal of honor warfighter\mohw.exe FirewallRules: [UDP Query User{B7EFC2AF-877F-46EF-BBA2-6B623AB7D4A8}C:\program files\o22y inc\medal of honor warfighter\mohw.exe] => (Allow) C:\program files\o22y inc\medal of honor warfighter\mohw.exe FirewallRules: [{AB4C9DE0-39CE-46B6-B448-AB3D45A87B0F}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{E05C9D5E-3D19-44CD-BC2A-74D30A400CD9}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{DF4EFA6F-C8CE-485D-B6FB-E077F8BE1E0C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{110796CE-14C2-4407-8D11-1133DC48C371}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{5B0CC832-3DDE-40A5-BFD2-4A3B3633234C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{4439DC98-09AE-4909-A1A2-2F18B7998A3A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{F82F1FDA-DFD7-45F4-A566-A3656BC7F4BC}] => (Allow) C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{186134A4-955F-4E87-9039-7AF0A666AF98}] => (Allow) C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [Daum PotPlayer(PotPlayerMini.exe)] => (Allow) C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe FirewallRules: [{3EC535B6-8015-426C-8107-F8787861953F}] => (Allow) C:\Program Files\Daum\PotPlayer\PotPlayerMini.exe FirewallRules: [{2EB09F4C-3DF8-4CB9-A524-24683044C5EB}] => (Allow) C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{E9E3FE17-C5CD-46AA-928C-DE0AB018033C}C:\program files\tmnationsforever\tmforever.exe] => (Allow) C:\program files\tmnationsforever\tmforever.exe FirewallRules: [UDP Query User{D95BE3E9-473B-4F46-B3D7-EB2421A1B8C1}C:\program files\tmnationsforever\tmforever.exe] => (Allow) C:\program files\tmnationsforever\tmforever.exe FirewallRules: [{3430CFF6-43E4-4CAD-B252-8F4DD6329595}] => (Allow) E:\Program Files\Kalypso\Tropico 3\tropico3.exe FirewallRules: [{DB5A37CC-1009-46CB-A469-839F1CEB8F55}] => (Allow) E:\Program Files\Kalypso\Tropico 3\tropico3.exe FirewallRules: [{BF923042-AF40-4B88-9704-55ACB8D48152}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe FirewallRules: [{67176F0D-B89C-4774-B4A0-29683A51F464}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe FirewallRules: [{E7E73E43-1479-41BD-8538-B0ED1F4B7482}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe FirewallRules: [{19EEB1BE-C677-4608-A4F5-881FCECBDF70}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe FirewallRules: [TCP Query User{9AFBD03A-F7E8-4CA3-B6DE-FACD9BB97A38}C:\program files\flashget network\flashget 3\flashget3.exe] => (Allow) C:\program files\flashget network\flashget 3\flashget3.exe FirewallRules: [UDP Query User{891102A5-8FBD-491E-99F5-FA5B2716DE50}C:\program files\flashget network\flashget 3\flashget3.exe] => (Allow) C:\program files\flashget network\flashget 3\flashget3.exe FirewallRules: [TCP Query User{ED470F32-7B48-44FB-B860-96CFB231AE0D}C:\program files\flashget network\flashget 3\flashget3.exe] => (Allow) C:\program files\flashget network\flashget 3\flashget3.exe FirewallRules: [UDP Query User{D90A5430-6740-4107-BB44-14CED7CA14F5}C:\program files\flashget network\flashget 3\flashget3.exe] => (Allow) C:\program files\flashget network\flashget 3\flashget3.exe FirewallRules: [{9E8132C0-3813-4018-BB01-1DA509741A35}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{ACD4FAE1-D1E7-4AC8-99D5-4CAC08DE289E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{B75622AC-0130-4EB7-A74F-742731720CD0}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe StandardProfile\AuthorizedApplications: [C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe] => Enabled:Flashget3 ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (10/19/2015 01:38:40 PM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcNvVAD initialization failed [6] Error: (10/19/2015 01:38:40 PM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0] Error: (10/19/2015 01:34:00 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Odmowa dostępu. . To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym. Operacja: Zbieranie danych modułu zapisującego Kontekst: Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220} Nazwa modułu zapisującego: System Writer Identyfikator wystąpienia modułu zapisującego: {2871a392-d792-488e-ae0f-7f1721e30d34} Error: (10/19/2015 01:02:45 PM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcNvVAD initialization failed [6] Error: (10/19/2015 01:02:45 PM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0] Error: (10/19/2015 11:27:38 AM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcNvVAD initialization failed [6] Error: (10/19/2015 11:27:38 AM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0] Error: (10/15/2015 11:52:06 AM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcNvVAD initialization failed [6] Error: (10/15/2015 11:52:06 AM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0] Error: (10/15/2015 10:35:14 AM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcNvVAD initialization failed [6] Dziennik System: ============= Error: (10/19/2015 02:12:15 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla Start nie powiodło się i wystąpił następujący błąd: %%5. Error: (10/19/2015 01:48:09 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla FailureCommand nie powiodło się i wystąpił następujący błąd: %%5. Error: (10/19/2015 01:48:04 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla Start nie powiodło się i wystąpił następujący błąd: %%5. Error: (10/19/2015 01:42:06 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa HP Network Devices Support zakończyła działanie; wystąpił następujący błąd: %%126 Error: (10/19/2015 01:40:05 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa SQL Server (ILUO) niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (10/19/2015 01:36:48 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} Error: (10/19/2015 01:13:18 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: ) Description: Produkt %ZARZĄDZANIE NT60 napotkał błąd podczas próby aktualizacji podpisów. Nowa wersja podpisu: Poprzednia wersja podpisu: 1.207.3553.0 Źródło aktualizacji: %ZARZĄDZANIE NT59 Etap aktualizacji: 4.8.0204.00 Ścieżka źródła: 4.8.0204.01 Typ podpisu: %ZARZĄDZANIE NT602 Typ aktualizacji: %ZARZĄDZANIE NT604 Użytkownik: ZARZĄDZANIE NT\SYSTEM Bieżąca wersja aparatu: %ZARZĄDZANIE NT605 Poprzednia wersja aparatu: %ZARZĄDZANIE NT606 Kod błędu: %ZARZĄDZANIE NT607 Opis błędu: %ZARZĄDZANIE NT608 Error: (10/19/2015 01:13:18 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: ) Description: Produkt %ZARZĄDZANIE NT60 napotkał błąd podczas próby aktualizacji podpisów. Nowa wersja podpisu: Poprzednia wersja podpisu: 1.207.3553.0 Źródło aktualizacji: %ZARZĄDZANIE NT59 Etap aktualizacji: 4.8.0204.00 Ścieżka źródła: 4.8.0204.01 Typ podpisu: %ZARZĄDZANIE NT602 Typ aktualizacji: %ZARZĄDZANIE NT604 Użytkownik: ZARZĄDZANIE NT\SYSTEM Bieżąca wersja aparatu: %ZARZĄDZANIE NT605 Poprzednia wersja aparatu: %ZARZĄDZANIE NT606 Kod błędu: %ZARZĄDZANIE NT607 Opis błędu: %ZARZĄDZANIE NT608 Error: (10/19/2015 01:12:07 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla FailureCommand nie powiodło się i wystąpił następujący błąd: %%5. Error: (10/19/2015 01:12:05 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla Start nie powiodło się i wystąpił następujący błąd: %%5. ==================== Statystyki pamięci =========================== Procesor: AMD Athlon(tm) 5000 Dual-Core Processor Procent pamięci w użyciu: 52% Całkowita pamięć fizyczna: 2047.55 MB Dostępna pamięć fizyczna: 973.46 MB Całkowita pamięć wirtualna: 4095.11 MB Dostępna pamięć wirtualna: 2787.92 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:175.78 GB) (Free:3.56 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano odczytując BCD)] Drive d: () (Fixed) (Total:146.48 GB) (Free:30.87 GB) NTFS Drive e: () (Fixed) (Total:143.49 GB) (Free:7.39 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 08A408A3) Partition 1: (Active) - (Size=175.8 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=290 GB) - (Type=OF Extended) ==================== Koniec Addition.txt ============================