Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x86) Wersja:01-03-2016 Uruchomiony przez omyl (2016-03-02 09:47:02) Uruchomiony z C:\Documents and Settings\omyl\Pulpit\fix Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) (2012-04-03 15:35:00) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-527237240-1303643608-839522115-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Administrator Gość (S-1-5-21-527237240-1303643608-839522115-501 - Limited - Disabled) omyl (S-1-5-21-527237240-1303643608-839522115-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\omyl Pomocnik (S-1-5-21-527237240-1303643608-839522115-1000 - Limited - Disabled) SUPPORT_388945a0 (S-1-5-21-527237240-1303643608-839522115-1002 - Limited - Disabled) UpdatusUser (S-1-5-21-527237240-1303643608-839522115-1005 - Limited - Enabled) => %SystemDrive%\Documents and Settings\UpdatusUser ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Kaspersky PURE 2.0 (Disabled - Out of date) {2C4D4BC6-0793-4956-A9F9-E252435469C0} AV: ESET NOD32 Antivirus 4.0 (Enabled - Up to date) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0} FW: Kaspersky PURE 2.0 (Disabled) {2C4D4BC6-0793-4956-A9F9-E252435469C0} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-527237240-1303643608-839522115-1003\...\uTorrent) (Version: 3.4.5.41712 - BitTorrent Inc.) A New Beginning (HKLM\...\A New Beginning) (Version: 1.0 - Lace Mamba Global) Adobe Flash Player 20 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 20.0.0.306 - Adobe Systems Incorporated) Adobe Flash Player 20 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 20.0.0.306 - Adobe Systems Incorporated) Adobe Reader XI (11.0.08) - Polish (HKLM\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated) Aktualizacja dla systemu Windows XP (KB898461) (HKLM\...\KB898461) (Version: 1 - Microsoft Corporation) Aktualizacje NVIDIA 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation) ALLPlayer V5.X (HKLM\...\ALLPlayer_is1) (Version: - ALLCinema Ltd.) ASIO4ALL (HKLM\...\ASIO4ALL) (Version: 2.10 - Michael Tippach) CCleaner (HKLM\...\CCleaner) (Version: 4.10 - Piriform) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.45.4.0315 - DT Soft Ltd) DiRT 3 (HKLM\...\GFWL_{434D0FA0-1558-4D8E-AC3D-BD1000008200}) (Version: 1.0.0000.130 - Codemasters) DiRT 3 (Version: 1.0.0000.130 - Codemasters) Hidden Dishonored (HKLM\...\Dishonored_is1) (Version: Dishonored - ) DivX Setup (HKLM\...\DivX Setup) (Version: 2.6.1.8 - DivX, LLC) e-pity 6.4 za rok 2014 (HKLM\...\{80D8170E-5590-218-B9ED-E24E4C99A18C}_is1) (Version: - e-file sp. z o.o.) ESET NOD32 Antivirus (HKLM\...\{644CEC11-C3D3-4F8D-A935-74F1EEF38209}) (Version: 4.0.437.0 - Eset spol s r. o.) Firebird SQL Server - MAGIX Edition (HKLM\...\Firebird SQL Server UK) (Version: 2.0.1.13 - MAGIX AG) FL Studio 10 (HKLM\...\FL Studio 10) (Version: - Image-Line) Gadu-Gadu 10 (HKLM\...\Gadu-Gadu 10) (Version: - GG Network S.A.) GameRanger (HKU\S-1-5-21-527237240-1303643608-839522115-1003\...\GameRanger) (Version: - GameRanger Technologies) Gears of War (HKLM\...\InstallShield_{1170D24F-42B7-40CF-AA1B-6395CE562354}) (Version: 1.00.0000 - Microsoft Game Studios) Gears of War (Version: 1.00.0000 - Microsoft Game Studios) Hidden Google Chrome (HKU\S-1-5-21-527237240-1303643608-839522115-1003\...\Google Chrome) (Version: 48.0.2564.116 - Google Inc.) Grand Theft Auto IV (Version: 1.0.0011.131 - Rockstar Games Inc.) Hidden Grand Theft Auto IV (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden High Definition Audio Driver Package - KB888111 (HKLM\...\KB888111WXPSP2) (Version: 20040219.000000 - Microsoft Corporation) HP Deskjet 1050 J410 series Podstawowe oprogramowanie urządzenia (HKLM\...\{C3CB6DBD-26C8-4EE9-A7DA-E04A7D1225F2}) (Version: 22.50.231.0 - Hewlett-Packard Co.) HP Deskjet 1050 J410 series Pomoc (HKLM\...\{5C90D8CF-F12A-41C6-9007-3B651A1F0D78}) (Version: 140.0.66.66 - Hewlett Packard) HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.3781 - HP Photo Creations Powered by RocketLife) HP Update (HKLM\...\{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}) (Version: 5.002.006.003 - Hewlett-Packard) Java 7 Update 67 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle) JavaFX 2.1.0 (HKLM\...\{1111706F-666A-4037-7777-210328764D10}) (Version: 2.1.0 - Oracle Corporation) League of Legends (HKLM\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games) LG United Mobile Drivers (HKLM\...\{55031CEF-CE75-4A5C-8DEA-60577820529B}) (Version: 3.10.1.0 - LG Electronics) MAGIX Music Maker 15 Premium Download version 15.0.1.5 (UK) (HKLM\...\MAGIX Music Maker 15 Premium Download version UK) (Version: 15.0.1.5 - MAGIX AG) MAGIX Screenshare 4.3.6.1987 (UK) (HKLM\...\MAGIX Screenshare UK) (Version: 4.3.6.1987 - MAGIX AG) Marvell Miniport Driver (HKLM\...\{C950420B-4182-49EA-850A-A6A2ABF06C6B}) (Version: 10.15.5.3 - Marvell) Media Player (HKU\S-1-5-21-527237240-1303643608-839522115-1003\...\Media Player) (Version: - ) <==== UWAGA Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation) Microsoft Games for Windows - LIVE (HKLM\...\{F97E3841-CA9D-4964-9D64-26066241D26F}) (Version: 3.3.24.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM\...\{8FB1B528-E260-451E-9B55-E9152F94B80B}) (Version: 3.2.3.0 - Microsoft Corporation) Microsoft Office 2010 Service Pack 1 (SP1) (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{047B0968-E622-4FAA-9B4B-121FA109EDDE}) (Version: - Microsoft) Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft Office Home and Student 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.6029.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.0.61118.0 - Microsoft Corporation) Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version: - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Mozilla Firefox 42.0 (x86 pl) (HKLM\...\Mozilla Firefox 42.0 (x86 pl)) (Version: 42.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 42.0.0.5780 - Mozilla) NapiProjekt (2.2.0.2399) (HKLM\...\NapiProjekt_is1) (Version: - ) Nexon Game Manager (HKLM\...\{289AC7E0-0AEE-4a7b-913C-709D9803D23E}) (Version: - ) NVIDIA nView 136.28 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 136.28 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.12.0604 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0604 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.18.0 - NVIDIA Corporation) NVIDIA Sterownik graficzny 306.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 306.81 - NVIDIA Corporation) NWZ-B160 WALKMAN Guide (HKLM\...\{B1A8A5D7-0613-4373-BB0C-2AA428C935BD}) (Version: 2.1.0.24141 - Sony Corporation) Opera Stable 29.0.1795.47 (HKLM\...\Opera 29.0.1795.47) (Version: 29.0.1795.47 - Opera Software ASA) Pakiet zgodności dla systemu Office 2007 (HKLM\...\{90120000-0020-0415-0000-0000000FF1CE}) (Version: 12.0.6514.5001 - Microsoft Corporation) Panel sterowania NVIDIA 306.81 (Version: 306.81 - NVIDIA Corporation) Hidden Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.) PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.992 - Even Balance, Inc.) Rapture3D 2.4.8 Game (HKLM\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: - Blue Ripple Sound) Real Alternative 2.0.2 (HKLM\...\RealAlt_is1) (Version: 2.0.2 - ) RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden RealPlayer (HKLM\...\RealPlayer 15.0) (Version: 15.0.4 - RealNetworks) Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.6602 - Realtek Semiconductor Corp.) RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden Rockstar Games Social Club (HKLM\...\Rockstar Games Social Club) (Version: 1.0.0.0 - Rockstar Games) Skype™ 7.2 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.2.103 - Skype Technologies S.A.) Spolszczenie do The Walking Dead Sezon II (HKLM\...\Spolszczenie do The Walking Dead Sezon II) (Version: 1.4 - GrajPoPolsku) System Requirements Lab CYRI (HKLM\...\{943A8D28-80D6-41DC-AE94-81FEB42041BF}) (Version: 4.5.1.0 - Husdawg, LLC) Text-To-Speech-Runtime (HKLM\...\{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}) (Version: 1.0.0.0 - Magix Development GmbH) The Walking Dead - Season 2 (HKLM\...\The Walking Dead - Season 2_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91) The Walking Dead Episode 3 (c) TellTale Games version 1 (HKLM\...\The Walking Dead Episode 3 (c) TellTale Games_is1) (Version: 1 - ) This War of Mine (HKLM\...\{5FD7B6B3-08C7-4FEE-9C37-A2134C699885}}_is1) (Version: 1 - 11 bit studios) Ubisoft Game Launcher (HKLM\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT) VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN) WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray (HKLM\...\KB952011) (Version: 1.0 - Microsoft Corporation) Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation) Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - ) Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.175805 - Microsoft Corporation) WinRAR 4.11 (32-bitowy) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH) Worms Armageddon - New Edition (HKLM\...\Worms Armageddon - New Edition) (Version: 3.6.28.0 - Team17) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-527237240-1303643608-839522115-1003_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-527237240-1303643608-839522115-1003_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.29.5\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-527237240-1303643608-839522115-1003_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.29.5\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-527237240-1303643608-839522115-1003_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.29.5\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-527237240-1303643608-839522115-1003_Classes\CLSID\{5C65F4B0-3651-4514-B207-D10CB699B14B}\localserver32 -> C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\48.0.2564.116\delegate_execute.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-527237240-1303643608-839522115-1003_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.29.5\psuser.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-527237240-1303643608-839522115-1003_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-527237240-1303643608-839522115-1003_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-527237240-1303643608-839522115-1003_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.29.1\psuser.dll = (dane wartości zawierają 12 znaków więcej). CustomCLSID: HKU\S-1-5-21-527237240-1303643608-839522115-1003_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.29.5\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-527237240-1303643608-839522115-1003_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.29.5\psuser.dll (Google Inc.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\Component Balance.job => C:\WINDOWS\system32\rundll32.exe C:\Documents and Settings\omyl\Local Settings\Application Data\Component Balance\{C4CAF846-9C6B-F4A2-79FC-4B62CAC98E7B}\ComponentBalance.dll <==== UWAGA Task: C:\WINDOWS\Tasks\Component Balance2.job => C:\WINDOWS\system32\rundll32.exe C:\Documents and Settings\omyl\Local Settings\Application Data\Component Balance\{C4CAF846-9C6B-F4A2-79FC-4B62CAC98E7B}\pxe.dll <==== UWAGA Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-527237240-1303643608-839522115-1003Core.job => C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\Opera scheduled Autoupdate 1410108814.job => C:\Program Files\Opera\launcher.exe Task: C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-527237240-1303643608-839522115-1003.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{41B19D70-5B44-45E2-B037-169D31D013A1}.job => C:\WINDOWS\system32\msfeedssync.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Documents and Settings\omyl\Dane aplikacji\Microsoft\Internet Explorer\Quick Launch\Uruchom przeglądarkę Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www%2dsearching.com/?prd=set_epc&s=G31zamobl18842,fc0b9244-670d-4364-9c66-8111a11ad719, ShortcutWithArgument: C:\Documents and Settings\All Users\Menu Start\Programy\MAGIX\MAGIX Music Maker 15 Premium Download version\Service and Support\register online.lnk -> C:\Program Files\MAGIX\MusicMaker15Premium_Download_version\explore.exe () -> hxxp://www.magix.com/user/register/product_registration/login_screen.php3?VARPROGRAM=mm15dlx_e-version&VARCHARGE=15.0.1.5&VARREGISTER=onlineregister&VARLAND=UK ==================== Załadowane moduły (filtrowane) ============== 2016-03-01 18:53 - 2016-01-29 09:56 - 00310152 _____ () C:\Program Files\Baidu\BaiduAn\4.0.0.8029\BDMFrameWork.dll 2016-03-01 18:53 - 2016-01-29 09:56 - 00265096 _____ () C:\Program Files\Baidu\BaiduAn\4.0.0.8029\BDXPc.dll 2012-05-08 10:50 - 2012-09-23 15:28 - 00357184 _____ () C:\Program Files\NVIDIA Corporation\nview\nvshell.dll 2011-07-29 00:08 - 2011-07-29 00:08 - 01259376 _____ () C:\Program Files\DivX\DivX Update\DivXUpdate.exe 2011-07-29 00:09 - 2011-07-29 00:09 - 00096112 _____ () C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll 2016-03-01 18:53 - 2016-01-29 09:55 - 00277384 _____ () C:\Program Files\Baidu\BaiduAn\4.0.0.8029\BDMCommon.dll 2016-03-01 18:53 - 2016-01-29 09:56 - 00330632 _____ () C:\Program Files\Baidu\BaiduAn\4.0.0.8029\FTSOManager\BDMSOLiveAccDataMgr.dll 2016-03-01 18:53 - 2016-01-29 09:56 - 00052104 _____ () C:\Program Files\Baidu\BaiduAn\4.0.0.8029\FTSOManager\BDMNetMonMgrDll.dll 2016-03-01 18:53 - 2016-01-29 09:56 - 00220040 _____ () C:\Program Files\Baidu\BaiduAn\4.0.0.8029\BDMScriptVM.dll 2012-12-04 23:01 - 2016-01-03 13:18 - 00076888 _____ () C:\WINDOWS\system32\PnkBstrA.exe 2012-12-04 23:01 - 2016-01-03 13:18 - 00189248 _____ () C:\WINDOWS\system32\PnkBstrB.exe 2004-08-04 13:00 - 2008-04-14 21:50 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\Documents and Settings\omyl\Pulpit\20160123_000946.mp4:SummaryInformation AlternateDataStreams: C:\Documents and Settings\omyl\Pulpit\20160123_000946.mp4:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\nm => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\nm.sys => ""="Driver" ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\.DEFAULT\...\localhost -> localhost IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com IE trusted site: HKU\S-1-5-21-527237240-1303643608-839522115-1003\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-527237240-1303643608-839522115-1003\...\webcompanion.com -> hxxp://webcompanion.com ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2004-08-04 13:00 - 2004-08-04 13:00 - 00000742 ____N C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-527237240-1303643608-839522115-1003\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp DNS Servers: 217.144.192.3 - 217.144.192.33 Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\sessmgr.exe] => Disabled:@xpsp2res.dll,-22019 StandardProfile\AuthorizedApplications: [F:\EasySetupAssistant\wr720n\EasySetupAssistant.exe] => Enabled:TP-LINK Easy Setup Assistant StandardProfile\AuthorizedApplications: [C:\Program Files\uTorrent\uTorrent.exe] => Enabled:µTorrent StandardProfile\AuthorizedApplications: [C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe] => Enabled:Google Chrome StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE] => Enabled:Microsoft Office Outlook StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\GROOVE.EXE] => Enabled:Microsoft Office Groove StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE] => Enabled:Microsoft Office OneNote StandardProfile\AuthorizedApplications: [C:\Program Files\NapiProjekt\napisy.exe] => Enabled:NapiProjekt StandardProfile\AuthorizedApplications: [E:\Gry\Dishonored\Binaries\Win32\Dishonored.exe] => Enabled:Dishonored StandardProfile\AuthorizedApplications: [E:\Gry\League Of Legends\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.14\deploy\LoLPatcherUx.exe] => Enabled:LoL Patcher StandardProfile\AuthorizedApplications: [E:\Gry\League Of Legends\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.14\deploy\LoLPatcher.exe] => Enabled:LoL Patcher StandardProfile\AuthorizedApplications: [C:\Program Files\Skype\Phone\Skype.exe] => Enabled:Skype StandardProfile\AuthorizedApplications: [C:\Documents and Settings\omyl\Dane aplikacji\uTorrent\uTorrent.exe] => Enabled:µTorrent StandardProfile\AuthorizedApplications: [E:\Gry\Worms Armageddon - New Edition\WA.exe] => Enabled:Worms Armageddon StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\PnkBstrA.exe] => Enabled:PnkBstrA StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\PnkBstrB.exe] => Enabled:PnkBstrB StandardProfile\AuthorizedApplications: [E:\FILM\Call of Duty Modern Warfare 2\IWNetServer.exe] => Enabled:IWNetServer StandardProfile\AuthorizedApplications: [C:\Program Files\Mozilla Firefox\firefox.exe] => Enabled:'Firefox' (C:\Program Files\Mozilla Firefox) StandardProfile\GloballyOpenPorts: [1900:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22007 StandardProfile\GloballyOpenPorts: [2869:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22008 StandardProfile\GloballyOpenPorts: [5560:TCP] => Enabled:swbpo StandardProfile\GloballyOpenPorts: [139:TCP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22004 StandardProfile\GloballyOpenPorts: [445:TCP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22005 StandardProfile\GloballyOpenPorts: [137:UDP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22001 StandardProfile\GloballyOpenPorts: [138:UDP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22002 ==================== Punkty Przywracania systemu ========================= 16-02-2016 13:42:24 Punkt kontrolny systemu 17-02-2016 21:44:07 Punkt kontrolny systemu 20-02-2016 17:36:59 Punkt kontrolny systemu 21-02-2016 23:58:43 Punkt kontrolny systemu 24-02-2016 01:07:41 Punkt kontrolny systemu 25-02-2016 21:45:32 Punkt kontrolny systemu 28-02-2016 12:15:39 Punkt kontrolny systemu ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Marvell Yukon 88E8056 PCI-E Gigabit Ethernet Controller Description: Marvell Yukon 88E8056 PCI-E Gigabit Ethernet Controller Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318} Manufacturer: Marvell Service: yukonwxp Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Karta sieciowa 1394 Description: Karta sieciowa 1394 Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318} Manufacturer: Microsoft Service: NIC1394 Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Standardowa klawiatura 101/102 klawisze lub Microsoft Natural Keyboard PS/2 Description: Standardowa klawiatura 101/102 klawisze lub Microsoft Natural Keyboard PS/2 Class Guid: {4D36E96B-E325-11CE-BFC1-08002BE10318} Manufacturer: (Klawiatury standardowe) Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Mysz Microsoft PS/2 Description: Mysz Microsoft PS/2 Class Guid: {4D36E96F-E325-11CE-BFC1-08002BE10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (03/02/2016 09:45:12 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Aplikacja powodująca błąd frst.exe, wersja 1.3.2016.0, moduł powodujący błąd frst.exe, wersja 1.3.2016.0, adres błędu 0x000211de. Przetwarzanie zdarzenia określonego nośnika dla [frst.exe!ws!] Error: (03/02/2016 08:52:45 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Aplikacja powodująca błąd allupdate.exe, wersja 1.1.0.0, moduł powodujący błąd kernel32.dll, wersja 5.1.2600.5512, adres błędu 0x00012aeb. Przetwarzanie zdarzenia określonego nośnika dla [allupdate.exe!ws!] Error: (03/02/2016 08:52:43 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Aplikacja powodująca błąd utorrent.exe, wersja 3.4.5.41712, moduł powodujący błąd ntdll.dll, wersja 5.1.2600.5512, adres błędu 0x0001b1fa. Przetwarzanie zdarzenia określonego nośnika dla [utorrent.exe!ws!] Error: (03/02/2016 08:52:20 AM) (Source: SENS) (EventID: 0) (User: ) Description: Event System Win32 Error: W docelowym punkcie końcowym sieci systemu zdalnego nie działa żadna usługa. ServiceStart(): SensInitialize() failed Error: (03/02/2016 08:50:46 AM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Nie można otworzyć usługi Server. Dane wydajności usługi Server nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error: (03/02/2016 08:50:46 AM) (Source: JavaQuickStarterService) (EventID: 1) (User: ) Description: Unable to create JQS API server: socket() failed (Socket error 10093) Error: (03/01/2016 07:16:54 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Aplikacja powodująca błąd allupdate.exe, wersja 1.1.0.0, moduł powodujący błąd kernel32.dll, wersja 5.1.2600.5512, adres błędu 0x00012aeb. Przetwarzanie zdarzenia określonego nośnika dla [allupdate.exe!ws!] Error: (03/01/2016 07:16:45 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Aplikacja powodująca błąd utorrent.exe, wersja 3.4.5.41712, moduł powodujący błąd ntdll.dll, wersja 5.1.2600.5512, adres błędu 0x0001b1fa. Przetwarzanie zdarzenia określonego nośnika dla [utorrent.exe!ws!] Error: (03/01/2016 07:16:29 PM) (Source: SENS) (EventID: 0) (User: ) Description: Event System Win32 Error: W docelowym punkcie końcowym sieci systemu zdalnego nie działa żadna usługa. ServiceStart(): SensInitialize() failed Error: (03/01/2016 07:14:56 PM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Nie można otworzyć usługi Server. Dane wydajności usługi Server nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Dziennik System: ============= Error: (03/02/2016 09:13:17 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi BDDefense z powodu następującego błędu: %%2 Error: (03/02/2016 09:11:58 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi BDMNetMon z powodu następującego błędu: %%2001 Error: (03/02/2016 09:11:58 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi BDMNetMon z powodu następującego błędu: %%2001 Error: (03/02/2016 09:11:58 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi BDMNetMon z powodu następującego błędu: %%2001 Error: (03/02/2016 09:11:58 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi BDMNetMon z powodu następującego błędu: %%2001 Error: (03/02/2016 09:11:58 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi BDMNetMon z powodu następującego błędu: %%2001 Error: (03/02/2016 09:11:58 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi BDMNetMon z powodu następującego błędu: %%2001 Error: (03/02/2016 09:11:58 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi BDMNetMon z powodu następującego błędu: %%2001 Error: (03/02/2016 09:11:58 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: i8042prt Error: (03/02/2016 09:11:58 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Monitor Task zakończyła działanie; wystąpił następujący błąd: %%2 ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz Procent pamięci w użyciu: 24% Całkowita pamięć fizyczna: 3583.04 MB Dostępna pamięć fizyczna: 2698.03 MB Całkowita pamięć wirtualna: 5465.01 MB Dostępna pamięć wirtualna: 4701.84 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:39.06 GB) (Free:3.3 GB) NTFS ==>[dysk z komponentami startowymi (Windows XP)] Drive d: () (Fixed) (Total:120.2 GB) (Free:62.76 GB) NTFS Drive e: () (Fixed) (Total:120.19 GB) (Free:15.66 GB) NTFS Drive g: (WANE) (CDROM) (Total:0.67 GB) (Free:0 GB) CDFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 279.5 GB) (Disk ID: 997D997D) Partition 1: (Active) - (Size=39.1 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=240.4 GB) - (Type=OF Extended) ==================== Koniec Addition.txt ============================