ADVERTISEMENT

Addition_12-07-2017 13.12.48.txt

Regsvr32 Windows 7 x86 - błąd przy rejestracji TherapeuticDrivelled.dll

Problem rozwiązany: https://www.reviversoft.com/pl/blog/2013/11/windows-defender-failed-to-initialize-0x800106ba/ plus najnowszy sterownik IRST. Bardzo dziękuję za szybką pomoc. Dodano po 1 35 : Wszystko działa, mimo wszystko prosiłbym sprawdzić czy coś tam nie zostało. Przesyłam logi 844319 844320


Download file - link to post

Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x86) Wersja: 08-07-2017
Uruchomiony przez USER (12-07-2017 13:12:35)
Uruchomiony z C:\Users\USER\Downloads
Microsoft Windows 7 Professional Service Pack 1 (X86) (2014-09-26 09:47:08)
Tryb startu: Normal
==========================================================


==================== Konta użytkowników: =============================

Administrator (S-1-5-21-894617674-61731402-313076616-500 - Administrator - Disabled)
Gast (S-1-5-21-894617674-61731402-313076616-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-894617674-61731402-313076616-1005 - Limited - Enabled)
USER (S-1-5-21-894617674-61731402-313076616-1000 - Administrator - Enabled) = & gt; C:\Users\USER

==================== Centrum zabezpieczeń ========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Zainstalowane programy ======================

(W fixlist dozwolone tylko załączanie programów adware z flagą " Hidden " w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.)

7-Zip 9.20 (HKLM\...\7-Zip) (Version: - )
Acer Crystal Eye webcam Ver:1.1.160.210 (HKLM\...\{D0ACE89D-EC7F-470F-80BE-4C98ED366B32}) (Version: 1.1.160.210 - Chicony Electronics Co.,Ltd.)
Acer ePower Management (HKLM\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 4.05.3007 - Acer Incorporated)
Acer eRecovery Management (HKLM\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3011 - Acer Incorporated)
Acer GameZone Console (HKLM\...\{ABEE079E-648E-488B-8301-0C3DB48C1BCE}_is1) (Version: 6.1.0.2 - Oberon Media, Inc.)
Acer Registration (HKLM\...\Acer Registration) (Version: 1.03.3003 - Acer Incorporated)
Acer ScreenSaver (HKLM\...\Acer Screensaver) (Version: 1.11.1209 - Acer Incorporated)
Acer VCM (HKLM\...\{047F790A-7A2A-4B6A-AD02-38092BA63DAC}) (Version: 4.05.3002 - Acer Incorporated)
Adobe Acrobat Reader DC - Polish (HKLM\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 15.0.0.249 - Adobe Systems Incorporated)
Adobe Flash Player 25 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Adobe Flash Player 26 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 26.0.0.137 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.17 - Atheros Communications Inc.)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.98.9.0 - Conexant)
D3DX10 (HKLM\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Drzewo Genealogiczne (HKLM\...\{0FC860E5-3F77-4708-962C-20E274A854F4}_is1) (Version: 3.5.0.0 - PL-SOFT)
e-pity 6.2 za rok 2014 (HKLM\...\{80D8170E-5590-218-B9ED-E24E4C99A18C}_is1) (Version: - e-file sp. z o.o.)
e-pity 7.0.11 za rok 2015 (HKLM\...\{80D8170E-5590-218-B9ED-E24E4C99A18D}_is1) (Version: 7.0.11 - e-file sp. z o.o.)
e-pity 8.0.9 za rok 2016 (HKLM\...\{80D8170E-5590-218-B9ED-E24E4C99A11D}_is1) (Version: 8.0.9 - e-file sp. z o.o. sp.k.)
Fotogalerie (HKLM\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Free PDF to Word Converter 2.0 (HKLM\...\Free PDF to Word Converter_is1) (Version: - Free-PDF-to-Word.com)
Galeria fotografii (HKLM\...\{77655DF6-A143-4A25-A5F8-127C8CE63EDA}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GIRDAC PDF Converter Trial (HKLM\...\GIRDAC PDF Converter) (Version: 24.2.2.8 - GIRDAC InfoTechnologies)
GIRDAC Port (HKLM\...\GIRDAC Port) (Version: - )
Google Chrome (HKLM\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.)
Google Drive (HKLM\...\{A1238426-ECDF-4639-BE2F-8D12A97AE23C}) (Version: 2.34.5075.1619 - Google, Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
HP Support Solutions Framework (HKLM\...\{B11B6E26-63A4-4BB6-AA39-0AF758B26092}) (Version: 12.7.22.13 - Hewlett-Packard Company)
Identity Card (HKLM\...\Identity Card) (Version: 1.00.3003 - Acer Incorporated)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1892 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.7.0.1013 - Intel Corporation)
Intel(R) TV Wizard (HKLM\...\TVWiz) (Version: - Intel Corporation)
Junk Mail filter update (HKLM\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
K-Lite Mega Codec Pack 10.7.5 (HKLM\...\KLiteCodecPack_is1) (Version: 10.7.5 - )
Launch Manager (HKLM\...\LManager) (Version: 3.0.04 - Acer Inc.)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.6.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft Office 2010 dla Użytkowników Domowych i Małych Firm (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-894617674-61731402-313076616-1000\...\OneDriveSetup.exe) (Version: 17.0.4035.0328 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{F46E21DF-5BE1-48E2-8390-5EEA8B25E36A}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{FDE96E86-7780-431C-92F7-679C6A7CEC51}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Miś Uszatek Przygoda z Liczeniem - odinstaluj (HKLM\...\Miś Uszatek Przygoda z Liczeniem) (Version: 1.0 - Forever Entertainment S.A.)
Miś Uszatek Przygoda z Liczeniem (HKLM\...\{4E06C867-E988-4218-9949-E0E181792BA3}) (Version: 1.0 - Forever Entertainment S.A.) Hidden
Movie Maker (HKLM\...\{70C91B91-61E8-4D06-86D6-A9DCC291983A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM\...\{DAE8CC57-EBF5-4D46-8572-9A0C769D6F16}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 54.0.1 (x86 pl) (HKLM\...\Mozilla Firefox 54.0.1 (x86 pl)) (Version: 54.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 54.0.1.6388 - Mozilla)
Mozilla Thunderbird 31.1.2 (x86 pl) (HKLM\...\Mozilla Thunderbird 31.1.2 (x86 pl)) (Version: 31.1.2 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
NTI Backup Now 5 (HKLM\...\InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}) (Version: 5.1.2.630 - NewTech Infosystems)
NTI Backup Now Standard (HKLM\...\{12EFA1A4-AC3B-443C-8143-237EDE760403}) (Version: 5.1.2.630 - NewTech Infosystems) Hidden
NTI Media Maker 8 (HKLM\...\{2413930C-8309-47A6-BC61-5EF27A4222BC}) (Version: 8.0.12.6635 - NewTech Infosystems) Hidden
NTI Media Maker 8 (HKLM\...\InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}) (Version: 8.0.12.6635 - NewTech Infosystems)
Opera Stable 46.0.2597.39 (HKU\S-1-5-21-894617674-61731402-313076616-1000\...\Opera 46.0.2597.39) (Version: 46.0.2597.39 - Opera Software)
PhotoScape (HKLM\...\PhotoScape) (Version: - )
PIT Format 2014 (HKLM\...\PIT Format 2014_is1) (Version: - Biuro Informatyki Stosowanej FORMAT)
PIT Format 2016 (HKLM\...\PIT Format 2016_is1) (Version: - Biuro Informatyki Stosowanej FORMAT)
Poczta usługi Windows Live (HKLM\...\{45FF54A4-ECD4-455D-89A2-D209737AD726}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (HKLM\...\{8FFD72FC-4FFA-472D-9F76-AEC85F602F9D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (HKLM\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation)
Program Pit 2016 - wersja: 10.0.4.47 (HKLM\...\Roczne rozliczenie podatku dochodowego - PIT Gofin 2016_is1) (Version: - Wydawnictwo Podatkowe GOFIN sp. z o.o.)
Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7100.30094 - Realtek Semiconductor Corp.)
Rybka MiniMini poznaje świat - zabawki wersja 1.1 (HKLM\...\{05CA85FC-C5DC-4D88-A4CA-ADCB471F91AA}_is1) (Version: 1.1 - Aidem Media Sp. z o.o.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
swMSM (HKLM\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.6.0 - Synaptics Incorporated)
TigerProfits (HKLM\...\TigerProfits) (Version: 1.2.0.2 - Vidoz Limited)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 8.51a - Ghisler Software GmbH)
Unterstützungsdateien für das Microsoft SQL Server-Setup (Englisch) (HKLM\...\{07629207-FAA0-4F1A-8092-BF5085BE511F}) (Version: 9.00.5000.00 - Microsoft Corporation)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Welcome Center (HKLM\...\Acer Welcome Center) (Version: 1.01.3002 - Acer Incorporated)
Windows Live Sync (HKLM\...\{76618402-179D-4699-A66B-D351C59436BC}) (Version: 14.0.8089.726 - Microsoft Corporation)
Wizard101(PL) (HKU\S-1-5-21-894617674-61731402-313076616-1000\...\Wizard101(PL)_is1) (Version: - Gameforge 4D GmbH)

==================== Niestandardowe rejestracje CLSID (filtrowane): ==========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

CustomCLSID: HKU\S-1-5-21-894617674-61731402-313076616-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 - & gt; C:\Users\USER\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-894617674-61731402-313076616-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 - & gt; C:\Users\USER\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-894617674-61731402-313076616-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 - & gt; C:\Users\USER\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-894617674-61731402-313076616-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 - & gt; C:\Users\USER\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-894617674-61731402-313076616-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 - & gt; C:\Users\USER\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\FileSyncApi.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] - & gt; {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} = & gt; C:\Program Files\Google\Drive\googledrivesync32.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] - & gt; {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} = & gt; C:\Program Files\Google\Drive\googledrivesync32.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] - & gt; {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} = & gt; C:\Program Files\Google\Drive\googledrivesync32.dll [2017-03-21] (Google)
ContextMenuHandlers01: [7-Zip] - & gt; {23170F69-40C1-278A-1000-000100020000} = & gt; C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov)
ContextMenuHandlers01: [GDContextMenu] - & gt; {BB02B294-8425-42E5-983F-41A1FA970CD6} = & gt; C:\Program Files\Google\Drive\contextmenu32.dll [2017-03-21] (Google)
ContextMenuHandlers04: [7-Zip] - & gt; {23170F69-40C1-278A-1000-000100020000} = & gt; C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov)
ContextMenuHandlers04: [GDContextMenu] - & gt; {BB02B294-8425-42E5-983F-41A1FA970CD6} = & gt; C:\Program Files\Google\Drive\contextmenu32.dll [2017-03-21] (Google)
ContextMenuHandlers05: [igfxcui] - & gt; {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} = & gt; C:\Windows\system32\igfxpph.dll [2009-09-02] (Intel Corporation)

==================== Zaplanowane zadania (filtrowane) =============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

Task: {0824925E-298B-41CB-9082-B35C232A1AF5} - System32\Tasks\Adobe Flash Player Updater = & gt; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-07-12] (Adobe Systems Incorporated)
Task: {3F241D10-AA96-4B0C-90D1-B95524E56859} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report = & gt; C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.)
Task: {736CA1CA-72F2-4EC6-B434-87E3EB45E1A4} - System32\Tasks\e-pity2015a_kwiecien = & gt; C:\Program Files\e-file\e-pity2015\Assets\signxml.exe [2016-01-15] (e-file sp. z o.o.)
Task: {76AD7A4A-B112-454F-AA40-5D45533E521C} - System32\Tasks\e-pity2015a_styczen = & gt; C:\Program Files\e-file\e-pity2015\Assets\signxml.exe [2016-01-15] (e-file sp. z o.o.)
Task: {816BE69C-23AE-49AE-8C1A-3D4C4CFF26A1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater = & gt; C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {8861A0C4-5E34-48ED-97B3-471ED53C04AE} - System32\Tasks\GoogleUpdateTaskMachineUA = & gt; C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {9A61FC59-B907-433E-B834-886C213A6A19} - System32\Tasks\Adobe Acrobat Update Task = & gt; C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {D8EE1686-DC11-4D6B-851B-225D476C0B62} - System32\Tasks\GoogleUpdateTaskMachineCore = & gt; C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)

(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)


==================== Skróty & WMI ========================

(Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.)


==================== Załadowane moduły (filtrowane) ==============

2017-07-12 12:31 - 2017-07-12 12:31 - 00016384 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\PSIClient\a90213ca95eaff114d1f46b1a7f6eacb\PSIClient.ni.dll

==================== Alternate Data Streams (filtrowane) =========

(Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.)

AlternateDataStreams: C:\ProgramData\TEMP:82F50D1C [133]

==================== Tryb awaryjny (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość " AlternateShell " zostanie przywrócona.)


==================== Powiązania plików (filtrowane) ===============

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.)


==================== Internet Explorer - Witryny zaufane i z ograniczeniami ===============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.)


==================== Hosts - zawartość: ===============================

(Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.)

2009-07-14 04:04 - 2017-07-11 14:45 - 00000027 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Inne obszary ============================

(Obecnie brak automatycznej naprawy dla tej sekcji.)

HKU\S-1-5-21-894617674-61731402-313076616-1000\Control Panel\Desktop\\Wallpaper - & gt; C:\Users\USER\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.3.200
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System = & gt; (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Zapora systemu Windows [funkcja włączona]

==================== MSCONFIG/TASK MANAGER - Wyłączone elementy ==


==================== Reguły Zapory systemu Windows (filtrowane) ===============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

FirewallRules: [SPPSVC-In-TCP] = & gt; (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] = & gt; (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{C21D4D58-2C19-4176-ABF7-86BE0C6C5126}] = & gt; (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{20ABBF0A-E899-4549-A95C-B57943FA93FB}] = & gt; (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{510AE8F5-EFE1-487F-B0A1-037C604C90DE}] = & gt; (Allow) C:\Program Files\Acer\Acer VCM\VC.exe
FirewallRules: [{12870F13-A815-49C2-B9B0-455C2477623C}] = & gt; (Allow) C:\Program Files\Acer\Acer VCM\RS_Service.exe
FirewallRules: [{C73AD7DF-6AC5-4B68-9745-1666724FA0B4}] = & gt; (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{6701A928-5218-461E-B99F-E0CA5746E7EC}] = & gt; (Allow) svchost.exe
FirewallRules: [{98033058-D293-4B77-9F2F-853CC01BCE79}] = & gt; (Allow) C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{7358A915-28B8-4031-9A0A-EE5015070701}] = & gt; (Allow) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
FirewallRules: [{EEBDD4E8-A01F-41D8-BE0F-6596B647E264}] = & gt; (Allow) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
FirewallRules: [{9AD0C094-81EF-4C1E-B4D8-4CC5EF487E2E}] = & gt; (Allow) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
FirewallRules: [{8DCC28A0-632C-469C-BC39-8D1A7064E64E}] = & gt; (Allow) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
FirewallRules: [{31148B85-5741-4F58-8271-FB0695E7B399}] = & gt; (Allow) C:\Users\USER\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{E3F2A796-17C6-4ACE-9C7F-18C757569A7E}] = & gt; (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{582DFC9A-836C-4F8F-BAB4-1DBC0B53BB4C}] = & gt; (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{54594286-83A8-4DE7-B9CA-2CE28804F06C}] = & gt; (Allow) LPort=2869
FirewallRules: [{04ED001B-0BA4-4941-904E-194DF65E8C47}] = & gt; (Allow) LPort=1900
FirewallRules: [{B3D01F91-FB2C-4603-B3DE-DE31202A81A3}] = & gt; (Allow) C:\Program Files\AVG\AVG2014\avgnsx.exe
FirewallRules: [{FB829E83-828D-459A-8696-CFBEE07A1761}] = & gt; (Allow) C:\Program Files\AVG\AVG2014\avgnsx.exe
FirewallRules: [{D5B02608-FA1C-4168-8063-43B2070A3CF4}] = & gt; (Allow) C:\Program Files\AVG\AVG2014\avgdiagex.exe
FirewallRules: [{3C934D33-A34D-4044-A30B-AFE817D897EB}] = & gt; (Allow) C:\Program Files\AVG\AVG2014\avgdiagex.exe
FirewallRules: [{D92E10A8-2244-4DB8-8F33-C297D32A09EF}] = & gt; (Allow) C:\Program Files\AVG\AVG2014\avgmfapx.exe
FirewallRules: [{BECA75E7-46DF-4D31-9628-FC42475D946A}] = & gt; (Allow) C:\Program Files\AVG\AVG2014\avgmfapx.exe
FirewallRules: [{0A4F312E-9F02-4176-B75C-2010FFC5F179}] = & gt; (Allow) C:\Program Files\AVG\AVG2014\avgemcx.exe
FirewallRules: [{4FE10CF9-2174-4D6F-866B-2D06C08B1DE8}] = & gt; (Allow) C:\Program Files\AVG\AVG2014\avgemcx.exe
FirewallRules: [{CADD8DB6-CA45-4E94-8A4B-DF737E07070B}] = & gt; (Allow) C:\Program Files\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{4BAC43F4-FFC5-4DEA-97F7-3E8C3112394D}] = & gt; (Allow) C:\Program Files\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{7F27D21C-BFB5-4A13-BA46-B98ED21AC1A7}] = & gt; (Allow) C:\Program Files\AVG\AVG2015\avgnsx.exe
FirewallRules: [{8ED725E9-3F2B-408F-A809-ABECF27202DC}] = & gt; (Allow) C:\Program Files\AVG\AVG2015\avgnsx.exe
FirewallRules: [{1EA6ACEC-B61C-48A0-AE20-A47BD2DCEF3B}] = & gt; (Allow) C:\Program Files\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{82D35C7F-24F9-4BCA-8AC0-4F757F1096C0}] = & gt; (Allow) C:\Program Files\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{89A81845-AE33-48AF-8274-056ADF4215C4}] = & gt; (Allow) C:\Program Files\AVG\AVG2015\avgemcx.exe
FirewallRules: [{F69F27AA-CA30-4344-9AB0-8980F1FC438C}] = & gt; (Allow) C:\Program Files\AVG\AVG2015\avgemcx.exe
FirewallRules: [{FE62ECDD-068B-4075-8D0B-8E47C3926250}] = & gt; (Allow) C:\Program Files\AVG\AVG2015\avgnsx.exe
FirewallRules: [{6C73740A-702A-4B81-AF55-B190CB847CEA}] = & gt; (Allow) C:\Program Files\AVG\AVG2015\avgnsx.exe
FirewallRules: [{C16CDA16-2BBA-41FB-9C78-79C07A6A7F53}] = & gt; (Allow) C:\Program Files\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{64A1331B-75E5-4D20-97CC-48CE3F13B4D0}] = & gt; (Allow) C:\Program Files\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{865E0492-1972-4F96-A303-962232B146CD}] = & gt; (Allow) C:\Program Files\AVG\AVG2015\avgemcx.exe
FirewallRules: [{10A89052-C9B0-44FF-81CE-8822A2E74B88}] = & gt; (Allow) C:\Program Files\AVG\AVG2015\avgemcx.exe
FirewallRules: [{714765A4-6D3B-42C4-807D-76DCA1CA92B6}] = & gt; (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{5BEB95AB-6A57-43E8-9E40-DB214F20EEE5}] = & gt; (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{83018EC6-53B8-44AB-A110-B7791891553B}] = & gt; (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{83938F9B-33EB-46E8-A157-EC827125970A}] = & gt; (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{A351BEBF-66D2-4CA0-8782-56C5B340F12E}] = & gt; (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{D13CCF3A-165A-488A-94D5-36A3439B8EF4}] = & gt; (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{DCB25370-B5B0-4528-BB84-D758ECD82C04}] = & gt; (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{C5D00064-0978-41BF-B55E-E0E8AE079368}] = & gt; (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{C11D0126-A5BC-41C4-80A1-652D0CACB601}] = & gt; (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{4906AD3E-6F33-4774-BF03-5C6CA04E0864}] = & gt; (Allow) C:\Users\USER\AppData\Local\Programs\Opera\46.0.2597.32\opera.exe
FirewallRules: [{028B15B2-5C0C-4EA8-90FF-F9F2CE21EE8F}] = & gt; (Allow) C:\Users\USER\AppData\Local\Programs\Opera\46.0.2597.39\opera.exe

==================== Punkty Przywracania systemu =========================

11-07-2017 14:14:53 ComboFix created restore point
12-07-2017 07:57:25 Configured eSobi v2
12-07-2017 08:10:07 Removed WinDVD
12-07-2017 11:48:35 Windows Update
12-07-2017 12:12:19 Windows Update
12-07-2017 13:02:31 Windows Update

==================== Wadliwe urządzenia w Menedżerze urządzeń =============


==================== Błędy w Dzienniku zdarzeń: =========================

Dziennik Aplikacja:
==================
Error: (07/12/2017 11:36:36 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Zainicjowanie bazy danych wykazu przez Usługi kryptograficzne nie powiodło się. Błąd ESENT: -583.

Error: (07/12/2017 11:36:36 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Zainicjowanie bazy danych wykazu przez Usługi kryptograficzne nie powiodło się. Błąd ESENT: -583.

Error: (07/12/2017 11:36:36 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Zainicjowanie bazy danych wykazu przez Usługi kryptograficzne nie powiodło się. Błąd ESENT: -583.

Error: (07/12/2017 11:36:36 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Zainicjowanie bazy danych wykazu przez Usługi kryptograficzne nie powiodło się. Błąd ESENT: -583.

Error: (07/12/2017 11:36:33 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Zainicjowanie bazy danych wykazu przez Usługi kryptograficzne nie powiodło się. Błąd ESENT: -583.

Error: (07/12/2017 11:36:33 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Zainicjowanie bazy danych wykazu przez Usługi kryptograficzne nie powiodło się. Błąd ESENT: -583.

Error: (07/12/2017 11:36:33 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Zainicjowanie bazy danych wykazu przez Usługi kryptograficzne nie powiodło się. Błąd ESENT: -583.

Error: (07/12/2017 11:36:33 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Zainicjowanie bazy danych wykazu przez Usługi kryptograficzne nie powiodło się. Błąd ESENT: -583.

Error: (07/12/2017 11:36:32 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Zainicjowanie bazy danych wykazu przez Usługi kryptograficzne nie powiodło się. Błąd ESENT: -583.

Error: (07/12/2017 11:36:32 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Zainicjowanie bazy danych wykazu przez Usługi kryptograficzne nie powiodło się. Błąd ESENT: -583.


Dziennik System:
=============
Error: (07/12/2017 11:36:36 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Usługa Windows Defender zakończyła działanie; wystąpił następujący błąd:
%%-1906441657

Error: (07/12/2017 11:36:32 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Usługa Windows Defender zakończyła działanie; wystąpił następujący błąd:
%%-1906441657

Error: (07/12/2017 11:36:29 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Usługa Windows Defender zakończyła działanie; wystąpił następujący błąd:
%%-1906441657

Error: (07/12/2017 11:36:26 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Usługa Windows Defender zakończyła działanie; wystąpił następujący błąd:
%%-1906441657

Error: (07/12/2017 11:36:23 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Usługa Windows Defender zakończyła działanie; wystąpił następujący błąd:
%%-1906441657

Error: (07/12/2017 11:36:20 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Usługa Windows Defender zakończyła działanie; wystąpił następujący błąd:
%%-1906441657

Error: (07/12/2017 11:36:17 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Usługa Windows Defender zakończyła działanie; wystąpił następujący błąd:
%%-1906441657

Error: (07/12/2017 11:36:14 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Usługa Windows Defender zakończyła działanie; wystąpił następujący błąd:
%%-1906441657

Error: (07/12/2017 11:36:11 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Usługa Windows Defender zakończyła działanie; wystąpił następujący błąd:
%%-1906441657

Error: (07/12/2017 11:36:08 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Usługa Windows Defender zakończyła działanie; wystąpił następujący błąd:
%%-1906441657


CodeIntegrity:
===================================
Date: 2015-12-08 08:26:53.469
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\NlsLex32.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-12-08 08:21:39.450
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\NlsLex32.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-12-08 08:12:37.235
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\NlsLex32.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-12-07 10:08:16.307
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\NlsLex32.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-12-07 10:00:17.813
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\NlsLex32.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-12-07 09:41:26.088
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\NlsLex32.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-12-05 22:53:42.201
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\NlsLex32.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-12-05 22:46:47.350
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\NlsLex32.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-12-05 22:38:10.320
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\NlsLex32.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-12-05 22:07:24.497
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\NlsLex32.dll because the set of per-page image hashes could not be found on the system.


==================== Statystyki pamięci ===========================

Procesor: Intel(R) Core(TM)2 Duo CPU T6600 @ 2.20GHz
Procent pamięci w użyciu: 41%
Całkowita pamięć fizyczna: 3000.93 MB
Dostępna pamięć fizyczna: 1747.16 MB
Całkowita pamięć wirtualna: 6000.18 MB
Dostępna pamięć wirtualna: 4722.82 MB

==================== Dyski ================================

Drive c: (Acer) (Fixed) (Total:109.18 GB) (Free:4.86 GB) NTFS
Drive d: (DATA) (Fixed) (Total:105.19 GB) (Free:51.98 GB) NTFS

==================== MBR & Tablica partycji ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: DFEE8B89)
Partition 1: (Not Active) - (Size=24 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=109.2 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=105.2 GB) - (Type=07 NTFS)

==================== Koniec Addition.txt ============================