Anonim / 2 lata, 8 miesięcy temu | Download | Plaintext | Odpowiedz |

  1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-05-2015
Ran by 1 at 2015-06-02 12:21:08
Running from C:\Users\1\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

1 (S-1-5-21-1630618315-184258093-2792662394-1000 - Administrator - Enabled) => C:\Users\1
Administrator (S-1-5-21-1630618315-184258093-2792662394-500 - Administrator - Disabled)
Gość (S-1-5-21-1630618315-184258093-2792662394-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-1630618315-184258093-2792662394-1004 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Internet Security (Enabled - Up to date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Enabled - Up to date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Internet Security (Enabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1630618315-184258093-2792662394-1000\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
ALLPlayer V6.X (HKLM-x32\...\ALLPlayer_is1) (Version:  - ALLPlayer Group, Ltd.)
Archiwizator WinRAR (HKLM-x32\...\WinRAR archiver) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 4.13 - Piriform)
Comarch ERP Optima (HKLM-x32\...\Comarch ERP Optima) (Version: 2015.3.1.1749 - Comarch SA)
Comarch ERP Optima (x32 Version: 2015.3.1.1749 - Comarch SA) Hidden
Comarch ERP Optima WMPAINT Fix (HKLM\...\{6713fee8-dd53-48f5-adc5-b5a0498bde48}.sdb) (Version:  - )
Crystal Reports dla Comarch ERP Optima (HKLM-x32\...\Crystal Reports dla Comarch ERP Optima) (Version: 1.0.0.0 - Comarch SA)
Crystal Reports dla Comarch ERP Optima (x32 Version: 1.0.0.0 - Comarch SA) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
EaseUS Data Recovery Wizard 6.1 (HKLM-x32\...\EaseUS Data Recovery Wizard 6.1_is1) (Version:  - EaseUS)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
K-Lite Codec Pack 5.5.0 (64-bit) (HKLM\...\KLiteCodecPack64_is1) (Version: 5.5.0 - )
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 3.9.1.134 - PandoraTV)
LinkMonitor (HKLM-x32\...\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{f6d5a24}) (Version:  - LinkMonitor) <==== ATTENTION
Malwarebytes Anti-Malware wersja 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
Microsoft .NET Framework 4.5.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.30319 (HKLM-x32\...\{6A86554B-8928-30E4-A53C-D7337689134D}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Napisy24 (HKLM-x32\...\{D1985DBC-F09E-4317-91B8-932AD0FD4A27}_is1) (Version: 0.95 - Napisy24.pl)
Norton Internet Security (HKLM-x32\...\NIS) (Version: 19.9.1.14 - Symantec Corporation)
Opera Stable 29.0.1795.60 (HKLM-x32\...\Opera 29.0.1795.60) (Version: 29.0.1795.60 - Opera Software ASA)
ophcrack 3.6.0 (HKLM\...\ophcrack) (Version: 3.6.0 - OS Objectif Sécurité SA)
PriCeMInus (HKLM-x32\...\{06B99631-BFA2-3B7A-F58B-D067C2BA59B7}) (Version:  - )
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.24.0 - SAMSUNG Electronics Co., Ltd.)
SQL DMO dla Comarch ERP Optima (HKLM-x32\...\SQL DMO dla Comarch ERP Optima) (Version: 1.0.0.0 - Comarch SA)
SQL DMO dla Comarch ERP Optima (x32 Version: 1.0.0.0 - Comarch SA) Hidden
SQLXML 3.0 SP3 (HKLM-x32\...\{19ABFD8F-CB86-4965-9282-047FC27084F1}) (Version: 3.30.3457.0 - Microsoft Corporation)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.41459 - TeamViewer)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 7.50a - Ghisler Software GmbH)
Transcend Recovery V1.17 (HKLM-x32\...\Transcend Recovery_is1) (Version:  - )
UltraISO Premium V9.62 (HKLM-x32\...\UltraISO_is1) (Version:  - )
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
Win32DiskImager version 0.9.5 (HKLM-x32\...\{D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1) (Version: 0.9.5 - ImageWriter Developers)
WinHTTrack Website Copier 3.48-19 (HKLM-x32\...\WinHTTrack Website Copier_is1) (Version: 3.48.19 - HTTrack)
Zestaw zautomatyzowanej instalacji systemu Windows (HKLM\...\{31E8F586-4EF7-4500-844D-BA8756474FF1}) (Version: 2.0.0.0 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1630618315-184258093-2792662394-1000_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\1\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll No File

==================== Restore Points =========================

29-04-2015 17:48:57 Windows Update
13-05-2015 19:53:42 Windows Update
20-05-2015 21:53:59 Windows Update
01-06-2015 20:17:31 Instalator modułów systemu Windows

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2015-05-21 21:19 - 00000842 ____N C:\Windows\system32\Drivers\etc\hosts
192.168.1.2	server

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0B547211-DE18-44C9-B29B-95EBA0F5DEEA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {24F69967-FA97-4BF6-9698-0B72AE40B636} - System32\Tasks\{1602FAD7-8D7F-42FB-B215-3230C55C29B5} => pcalua.exe -a "C:\Program Files (x86)\YouTube Accelerator\YTAUninstall.exe"
Task: {2D77A61C-9C49-4D49-BBDC-49C8BDD16EB0} - \SPDriver No Task File <==== ATTENTION
Task: {31E00AE4-A603-4D34-AB7A-14713E60D0EB} - System32\Tasks\Opera scheduled Autoupdate 1422284650 => C:\Program Files (x86)\Opera\launcher.exe [2015-05-18] (Opera Software)
Task: {35649AF0-D12E-43F3-9F5E-D4FCDB0C8169} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\SymErr.exe [2012-02-04] (Symantec Corporation)
Task: {40CB9D43-DAFB-4224-8B49-A90490CD36E7} - \ShopperPro No Task File <==== ATTENTION
Task: {4E31CFA8-2D4A-49EC-B946-1E9EB7508846} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: {5DF96EF8-A307-4C30-90E2-3D0AD99BDA1D} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: {60EEC538-32D1-49D1-B170-4AA29ACD6CF8} - \SPBIW_UpdateTask_Time_323338393933363334362d45372a5a506c41324a345741 No Task File <==== ATTENTION
Task: {71AFFE1D-9FBA-4537-8214-C385FDF47544} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\WSCStub.exe [2013-02-02] (Symantec Corporation)
Task: {827255F9-FF28-4D1A-A581-2C483C79913F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-09] (Google Inc.)
Task: {8A27CE93-10AF-4D3F-A6ED-DBDF7BC1CBE8} - System32\Tasks\Microsoft\Windows\Multimedia\SMupdate3 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update3 <==== ATTENTION
Task: {8B6AD937-2474-457D-9566-665F2FB35A8E} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks
Task: {8FA67903-28AA-4AC1-AF43-DB8A9D15B87A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-09] (Google Inc.)
Task: {8FD9CE75-07DF-4CFB-89C5-24C3B13CC09B} - System32\Tasks\{E6E788F5-4ADF-4FF5-8CBD-B32A75DB5CDD} => pcalua.exe -a E:\Sims3Setup.exe -d E:\
Task: {9F34FD58-6D1F-400D-903D-B0E98C41D3C2} - System32\Tasks\{B1FBA69E-6619-40DB-A2BD-DA20D67A7DC4} => pcalua.exe -a C:\Users\1\AppData\Roaming\omiga-plus\UninstallManager.exe -c  -ptid=cor <==== ATTENTION
Task: {9F9C9375-1ED5-4841-954B-0666A57B6689} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask => C:\Windows\system32\Wat\WatAdminSvc.exe [2014-05-07] (Microsoft Corporation)
Task: {A862C866-4310-47E1-93C8-9432B8F7B1AF} - System32\Tasks\{F7C00BD1-1F31-414F-93CE-654ADC760081} => pcalua.exe -a c:\users\1\appdata\local\lollipop\lollipop.bat
Task: {B0D06074-BAE5-457E-8C70-6D897F3B8517} - System32\Tasks\Bidaily Synchronize Task[973b] => c:\programdata\{74910816-7f11-a9fb-7491-108167f12059}\metin2mod_2012sf_08022015.exe [2014-05-30] () <==== ATTENTION
Task: {C055215E-D74C-4085-A577-97849721C8EA} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-07] (Microsoft Corporation)
Task: {CE0C621F-A256-4D1B-9C17-022499923EDC} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: {DC296891-4567-41E0-B7C9-E22DB1E83A9C} - \ShopperProJSUpd No Task File <==== ATTENTION
Task: {DF99ABBA-36AC-4CF6-B90C-0C1821833EAD} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\SymErr.exe [2012-02-04] (Symantec Corporation)
Task: {DFB211E2-B071-489F-B941-A5A00BA751AA} - System32\Tasks\SMupdate1 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update1 <==== ATTENTION
Task: {EA287366-C616-4E46-B2AB-9370B9B158A9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-26] (Adobe Systems Incorporated)
Task: {F9178990-2E00-487D-B143-EB4EBB10E303} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-04-17] (Piriform Ltd)
Task: {F9A1F4E5-1F9F-4950-9A08-89B9E8A0EF85} - System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update2 <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Bidaily Synchronize Task[973b].job => c:\programdata\{74910816-7f11-a9fb-7491-108167f12059}\metin2mod_2012sf_08022015.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-05-05 14:16 - 2015-05-05 14:16 - 00016384 _____ () C:\Program Files (x86)\TomTom\MySportsConnect\DeviceDetection.dll
2015-05-05 14:16 - 2015-05-05 14:16 - 00076288 _____ () C:\Program Files (x86)\TomTom\MySportsConnect\TomTomSupporterBase.dll
2015-05-05 14:17 - 2015-05-05 14:17 - 00228352 _____ () C:\Program Files (x86)\TomTom\MySportsConnect\TomTomSupporterProxy.dll
2015-05-05 14:16 - 2015-05-05 14:16 - 00017920 _____ () C:\Program Files (x86)\TomTom\MySportsConnect\TimeParse.dll
2015-05-05 14:19 - 2015-05-05 14:19 - 00141824 _____ () C:\Program Files (x86)\TomTom\MySportsConnect\ContentManager.dll
2015-05-05 14:16 - 2015-05-05 14:16 - 00112640 _____ () C:\Program Files (x86)\TomTom\MySportsConnect\kqoauth.dll
2015-05-05 14:16 - 2015-05-05 14:16 - 00029696 _____ () C:\Program Files (x86)\TomTom\MySportsConnect\QtSolutions_SingleApplication.dll
2015-05-26 08:32 - 2015-05-22 22:22 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libglesv2.dll
2015-05-26 08:32 - 2015-05-22 22:22 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libegl.dll
2015-05-26 08:32 - 2015-05-22 22:22 - 14982472 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:56E2E879

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1630618315-184258093-2792662394-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\1\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: DAEMON Tools Lite => "F:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: EA Core => "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
MSCONFIG\startupreg: SPDriver => C:\Program Files (x86)\ShopperPro\JSDriver\1361.0.0.0\jsdrv.exe
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: uTorrent => "C:\Users\1\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{3F225809-B1FB-4745-9E81-FD3C484B138B}C:\users\1\desktop\marinermt2.pl\marinermt2.exe] => (Allow) C:\users\1\desktop\marinermt2.pl\marinermt2.exe
FirewallRules: [UDP Query User{A1079919-F988-4E5E-8F86-EDB98BA05744}C:\users\1\desktop\marinermt2.pl\marinermt2.exe] => (Allow) C:\users\1\desktop\marinermt2.pl\marinermt2.exe
FirewallRules: [TCP Query User{E692BC6A-BB1F-4FEB-B62E-070F97261855}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{E45B0351-7503-4063-941F-CA5CE57F710E}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{4D11E43F-22CD-43FE-A253-52823A85DF23}C:\users\1\desktop\counter strike\hl.exe] => (Block) C:\users\1\desktop\counter strike\hl.exe
FirewallRules: [UDP Query User{41B16661-FE51-46F5-B1CE-8F8415C29B29}C:\users\1\desktop\counter strike\hl.exe] => (Block) C:\users\1\desktop\counter strike\hl.exe
FirewallRules: [TCP Query User{57C19558-6FB0-4191-AA88-D73C998803E6}C:\program files (x86)\electronic arts\eadm\core.exe] => (Block) C:\program files (x86)\electronic arts\eadm\core.exe
FirewallRules: [UDP Query User{683DF67E-26EE-45B4-95A4-0B78E1B3C5A0}C:\program files (x86)\electronic arts\eadm\core.exe] => (Block) C:\program files (x86)\electronic arts\eadm\core.exe
FirewallRules: [TCP Query User{C034F511-DF0D-4760-9347-20333CA6D53E}F:\utorrent\utorrent.exe] => (Block) F:\utorrent\utorrent.exe
FirewallRules: [UDP Query User{B0B14B10-6524-43F4-9EC1-0D009109F70F}F:\utorrent\utorrent.exe] => (Block) F:\utorrent\utorrent.exe
FirewallRules: [TCP Query User{44CF9B54-2138-48A0-B7CF-7DCCCD3450BB}C:\program files (x86)\connectify\connectify.exe] => (Block) C:\program files (x86)\connectify\connectify.exe
FirewallRules: [UDP Query User{7ECA57DD-271D-462A-8018-FFE0C0517EDA}C:\program files (x86)\connectify\connectify.exe] => (Block) C:\program files (x86)\connectify\connectify.exe
FirewallRules: [{E8FE86F4-9F91-4700-BA49-952ACB501702}] => (Allow) C:\Users\1\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{111B77DB-D0E6-4938-B528-C826740686D5}] => (Allow) C:\Users\1\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5AAC5266-5BDE-4F99-9FD9-E053B1FD7BF9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{188A3504-89B5-4F83-B95C-F02B1AAF4A6F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{03F8959F-9499-4866-A919-126616F94356}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{EE748A63-8318-4E5E-BFA9-892F09348E13}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{757D9E4D-38BA-4E59-901E-178975FE2534}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2B2F69E6-0F8C-4618-9F84-EB8C606E74DF}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8967F4C3-3FF5-4E45-B3C1-8C998BAD0EBE}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{A1080A85-372E-4611-88E0-0D8A1025C11E}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{83943CB9-FB72-4B25-A767-94E629D787B3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: SPDRIVER_1361.0.0.0
Description: SPDRIVER_1361.0.0.0
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: SPDRIVER_1361.0.0.0
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/02/2015 09:50:30 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program IEXPLORE.EXE w wersji 11.0.9600.17801 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji.

Identyfikator procesu: d74

Godzina rozpoczęcia: 01d09d08bd8637ca

Godzina zakończenia: 10

Ścieżka aplikacji: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Identyfikator raportu:

Error: (06/02/2015 09:28:53 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program IEXPLORE.EXE w wersji 11.0.9600.17801 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji.

Identyfikator procesu: ca0

Godzina rozpoczęcia: 01d09cf8bec3ff65

Godzina zakończenia: 250

Ścieżka aplikacji: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Identyfikator raportu:

Error: (06/01/2015 09:28:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: IEXPLORE.EXE, wersja: 11.0.9600.17801, sygnatura czasowa: 0x5536642c
Nazwa modułu powodującego błąd: jscript9.dll, wersja: 11.0.9600.17801, sygnatura czasowa: 0x55366d21
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x00013c88
Identyfikator procesu powodującego błąd: 0xfac
Godzina uruchomienia aplikacji powodującej błąd: 0xIEXPLORE.EXE0
Ścieżka aplikacji powodującej błąd: IEXPLORE.EXE1
Ścieżka modułu powodującego błąd: IEXPLORE.EXE2
Identyfikator raportu: IEXPLORE.EXE3

Error: (05/14/2015 09:46:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: svchost.exe_DiagTrack, wersja: 6.1.7600.16385, sygnatura czasowa: 0x4a5bc3c1
Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.18839, sygnatura czasowa: 0x553e8bfa
Kod wyjątku: 0xc000000d
Przesunięcie błędu: 0x000000000006ec12
Identyfikator procesu powodującego błąd: 0x548
Godzina uruchomienia aplikacji powodującej błąd: 0xsvchost.exe_DiagTrack0
Ścieżka aplikacji powodującej błąd: svchost.exe_DiagTrack1
Ścieżka modułu powodującego błąd: svchost.exe_DiagTrack2
Identyfikator raportu: svchost.exe_DiagTrack3

Error: (05/13/2015 05:30:56 PM) (Source: MsiInstaller) (EventID: 1024) (User: 1-Komputer)
Description: Produkt: Adobe Reader XI (11.0.10) - Polish - nie można zainstalować aktualizacji '{AC76BA86-7AD7-0000-2550-7A8C40011011}'. Kod błędu 1625. Instalator Windows może tworzyć dzienniki, aby ułatwić rozwiązywanie problemów z instalowaniem pakietów oprogramowania. Użyj następującego łącza, aby uzyskać instrukcje dotyczące włączania obsługi rejestrowania: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (05/01/2015 07:15:46 PM) (Source: RasClient) (EventID: 20227) (User: )
Description: Identyfikator CoId={7144EB33-92C8-45AE-8394-BFA1D0782134}: Użytkownik 1-Komputer\1 wybrał numer w celu nawiązania połączenia o nazwie ArmaExpress, jednak jego nawiązanie nie powiodło się. Kod błędu zwrócony w wyniku niepowodzenia: 691.

Error: (05/01/2015 07:14:18 PM) (Source: RasClient) (EventID: 20227) (User: )
Description: Identyfikator CoId={DF9B2143-9670-490A-B92B-C17366E06557}: Użytkownik 1-Komputer\1 wybrał numer w celu nawiązania połączenia o nazwie ArmaExpress, jednak jego nawiązanie nie powiodło się. Kod błędu zwrócony w wyniku niepowodzenia: 691.

Error: (05/01/2015 07:09:56 PM) (Source: RasClient) (EventID: 20227) (User: )
Description: Identyfikator CoId={DE7C1EBA-8BF6-4192-9E70-2CEC5725B0E1}: Użytkownik 1-Komputer\1 wybrał numer w celu nawiązania połączenia o nazwie ArmaExpress, jednak jego nawiązanie nie powiodło się. Kod błędu zwrócony w wyniku niepowodzenia: 691.

Error: (05/01/2015 07:08:06 PM) (Source: RasClient) (EventID: 20227) (User: )
Description: Identyfikator CoId={ED4E2593-E6E5-4CE5-B0C9-FB00D2E26E4F}: Użytkownik 1-Komputer\1 wybrał numer w celu nawiązania połączenia o nazwie ArmaExpress, jednak jego nawiązanie nie powiodło się. Kod błędu zwrócony w wyniku niepowodzenia: 691.

Error: (04/27/2015 11:11:09 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: Identyfikator CoId={74ABA0B0-B5CA-41B3-8ACF-7BAC55ED8077}: Użytkownik 1-Komputer\1 wybrał numer w celu nawiązania połączenia o nazwie ArmaExpress, jednak jego nawiązanie nie powiodło się. Kod błędu zwrócony w wyniku niepowodzenia: 0.


System errors:
=============
Error: (06/02/2015 11:44:22 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi YTDUpdt z powodu następującego błędu: 
%%2

Error: (06/02/2015 11:44:04 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi SPDRIVER_1361.0.0.0 z powodu następującego błędu: 
%%3

Error: (06/02/2015 10:15:52 AM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT)
Description: Odebrano następujący alert krytyczny: 40.

Error: (06/02/2015 10:04:58 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi YTDUpdt z powodu następującego błędu: 
%%2

Error: (06/02/2015 10:04:46 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi SPDRIVER_1361.0.0.0 z powodu następującego błędu: 
%%3

Error: (06/02/2015 07:30:06 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi YTDUpdt z powodu następującego błędu: 
%%2

Error: (06/02/2015 07:29:43 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi SPDRIVER_1361.0.0.0 z powodu następującego błędu: 
%%3

Error: (06/01/2015 09:49:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi YTDUpdt z powodu następującego błędu: 
%%2

Error: (06/01/2015 09:49:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi SPDRIVER_1361.0.0.0 z powodu następującego błędu: 
%%3

Error: (06/01/2015 08:29:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi YTDUpdt z powodu następującego błędu: 
%%2


Microsoft Office:
=========================

==================== Memory info =========================== 

Processor: Intel(R) Core(TM)2 Duo CPU T6670 @ 2.20GHz
Percentage of memory in use: 75%
Total physical RAM: 2013.09 MB
Available physical RAM: 503.14 MB
Total Pagefile: 4026.17 MB
Available Pagefile: 1832.92 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:234.29 GB) (Free:161.94 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive f: (DANE) (Fixed) (Total:216.82 GB) (Free:138.68 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: 76692CA8)
Partition 1: (Not Active) - (Size=14.6 GB) - (Type=1C)
Partition 2: (Active) - (Size=234.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=216.8 GB) - (Type=07 NTFS)

==================== End of log ============================