Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 20-04-2017 Uruchomiony przez Łukasz (22-04-2017 00:19:43) Uruchomiony z C:\Users\Łukasz\Downloads Windows 7 Ultimate Service Pack 1 (X64) (2014-03-07 11:16:42) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-4264678522-3618739240-1028856009-500 - Administrator - Disabled) Gość (S-1-5-21-4264678522-3618739240-1028856009-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-4264678522-3618739240-1028856009-1003 - Limited - Enabled) UpdatusUser (S-1-5-21-4264678522-3618739240-1028856009-1001 - Limited - Enabled) Łukasz (S-1-5-21-4264678522-3618739240-1028856009-1000 - Administrator - Enabled) => C:\Users\Łukasz ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-4264678522-3618739240-1028856009-1000\...\uTorrent) (Version: 3.4.9.43388 - BitTorrent Inc.) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.0.4990 - Adobe Systems Inc.) Adobe Flash Player 25 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 25.0.0.148 - Adobe Systems Incorporated) Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated) Adobe Flash Player 25 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated) Adobe Flash Player Packages (HKU\S-1-5-21-4264678522-3618739240-1028856009-1000\...\Adobe Flash Player Packages) (Version: - ) <==== UWAGA Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A90000000001}) (Version: 9.0.0 - Adobe Systems Incorporated) ALLPlayer V6.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLPlayer Group, Ltd.) AlphaGo (HKLM-x32\...\{E1AF73C7-0C82-4D66-829E-16B29FBBF384}) (Version: 1.1.7 - AlphaGo) AMD Catalyst Install Manager (HKLM\...\{53A19094-2C04-A9B9-7309-3E92152D4845}) (Version: 8.0.903.0 - Advanced Micro Devices, Inc.) amuleC (HKLM-x32\...\{19539992-061C-4E8B-9053-07B175303AF4}) (Version: 1.0.1 - amuleC) <==== UWAGA Apple Application Support (32-bit) (HKLM-x32\...\{05E07D23-91E9-4E70-A4CC-EF505088F967}) (Version: 5.4.1 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{741291DA-2B34-4D44-8FB6-58EDE21261D8}) (Version: 5.4.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{DB18F1C0-846F-46F5-A074-5B97C8AF5C8E}) (Version: 10.3.1.2 - Apple Inc.) Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.) Asystent menedżera zawartości dla PlayStation(R) (HKLM-x32\...\{81AD22B9-C28A-45a3-94B3-5FECD221AD5C}) (Version: 3.10.7525.4 - Sony Computer Entertainment Inc.) BikaQ Rss (HKLM-x32\...\{78A2D999-4673-4FCC-818E-57B0AF8F3B70}) (Version: 2.0.16 - BikaQ) <==== UWAGA Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version: - SCS Software) Google Chrome (HKU\S-1-5-21-4264678522-3618739240-1028856009-1000\...\Google Chrome) (Version: 57.0.2987.133 - Google Inc.) Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games) GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation) Intel(R) Small Business Advantage (HKLM-x32\...\{6A6D86CD-B004-46b7-8951-7BB75A776F8C}) (Version: 2.2.39.7991 - Intel(R) Corporation) Intel(R) Smart Connect Technology (HKLM\...\{E1480805-A72D-4AE2-B24B-74599CD52915}) (Version: 4.2.40.2418 - Intel Corporation) Intel(R) Update Manager (x32 Version: 1.0.0.36888 - Intel Corporation) Hidden Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation) iTunes (HKLM\...\{6C01A0A7-7440-4D48-93C6-2927A1E93FE6}) (Version: 12.6.0.100 - Apple Inc.) Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden Lightshot-5.4.0.1 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.1 - Skillbrains) McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: - ) McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.262 - McAfee, Inc.) Microsoft .NET Framework 4.6.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01590 - Microsoft Corporation) Microsoft DirectX SDK (March 2009) (HKLM-x32\...\Microsoft DirectX SDK (March 2009)) (Version: 9.26.1590.0 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4420.1017 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) MSI Kombustor v1.0.10 (HKLM-x32\...\{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1) (Version: - MSI Co., LTD) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Narzędzia sprawdzające pakietu Microsoft Office 2013 — polski (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden NVIDIA Oprogramowanie systemu PhysX 9.15.0324 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0324 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 350.12 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation) NVIDIA Sterownik graficzny 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 350.12 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 349.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 349.95 - NVIDIA Corporation) Panel sterowania NVIDIA 350.12 (Version: 350.12 - NVIDIA Corporation) Hidden Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.72.410.2013 - Realtek) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.4 - Rockstar Games) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.) Sony PC Companion 2.10.297 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.297 - Sony) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Super-Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.022 - MSI) SuperMemo UX - Angielski. No problem!+ 1 (HKLM-x32\...\SuperMemo UX - Angielski. No problem!+ 1) (Version: - ) System Requirements Lab Detection (HKLM-x32\...\{A407FC22-36BF-4C82-A516-59D94BC505A9}) (Version: 1.0.5.0 - Husdawg, LLC) Terela (HKLM-x32\...\{E2F7C535-0785-4C2D-B56F-016BFD02B010}) (Version: 1.1.6 - Terela) Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0415-1000-0000000FF1CE}_Office15.PROPLUSR_{67847964-08E2-4A8F-B09D-B08D5CE69250}) (Version: - Microsoft) Vegas Pro 13.0 (64-bit) (HKLM\...\{D0360940-CCC6-11E3-B9C6-F04DA23A5C58}) (Version: 13.0.310 - Sony) WinRAR 5.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) WINSNARE (HKLM-x32\...\{56D19032-B59F-4020-994B-15912A49CD96}) (Version: 4.4.6 - WINSNARE) <==== UWAGA WinZip (HKLM-x32\...\WinZip) (Version: 2.3.16 - Winzipper Pvt Ltd.) <==== UWAGA World of Warships (HKU\S-1-5-21-4264678522-3618739240-1028856009-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version: - Wargaming.net) YAC(Yet Another Cleaner!) (HKLM-x32\...\iSafe) (Version: - ELEX DO BRASIL PARTICIPAÇÕES LTDA) <==== UWAGA ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) HKU\S-1-5-21-4264678522-3618739240-1028856009-1000\...\ChromeHTML: -> C:\Program Files (x86)\Hipmy\Application\chrome.exe (Google Inc.) <==== UWAGA CustomCLSID: HKU\S-1-5-21-4264678522-3618739240-1028856009-1000_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04}\InprocServer32 -> C:\Users\Łukasz\AppData\Local\Google\Update\1.3.33.3\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-4264678522-3618739240-1028856009-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\Łukasz\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-4264678522-3618739240-1028856009-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Łukasz\AppData\Local\Google\Update\1.3.33.3\psuser_64.dll (Google Inc.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {03F22C3F-43E0-4CE7-8358-2393AE2CEB22} - \BagbinUpdateTaskMachineUA -> Brak pliku <==== UWAGA Task: {04A083DE-53B3-4BC0-AF1A-893F53F6EF7D} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [2017-03-31] () Task: {10936985-030D-48C8-89DD-A1FBE75EC52F} - \APSnotifierPP3 -> Brak pliku <==== UWAGA Task: {1BF115B9-3DE6-4FE4-9B7B-27BA8A22953D} - System32\Tasks\Games\UpdateCheck_S-1-5-21-4264678522-3618739240-1028856009-1000 Task: {1C85A2A6-F5CF-4E7A-814F-0A8577399AEC} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-02-14] (Apple Inc.) Task: {22A4D558-8CED-40BF-9E25-B6EC09BB9677} - \BagbinUpdateTaskMachineCore -> Brak pliku <==== UWAGA Task: {24F7B635-30D1-4830-94C0-D102EB48D6D8} - \APSnotifierPP2 -> Brak pliku <==== UWAGA Task: {2FFB6908-936D-422B-A211-4F778E751FE9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation) Task: {463F3CFE-AD5C-454A-8479-E0C813366993} - \AmiUpdXp -> Brak pliku <==== UWAGA Task: {4F570687-D551-47EA-8050-2C0E41804A30} - System32\Tasks\WinTOOL => C:\ProgramData\wintools\WintoolUprI.exe Task: {53DF2EFB-506C-431E-857D-4DD485F52DCF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4264678522-3618739240-1028856009-1000UA => C:\Users\Łukasz\AppData\Local\Google\Update\GoogleUpdate.exe [2016-10-31] (Google Inc.) Task: {5816A1AD-9491-4800-8AF5-F766EAAAD7B1} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => %ProgramFiles%\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe Task: {58ADC73F-CA0C-4DCD-BA20-46222B3C24A8} - System32\Tasks\{F377B323-3A62-41E7-B4FE-04EAEF18D657} => Chrome.exe hxxp://ui.skype.com/ui/0/6.20.0.104/pl/abandoninstall?page=tsProgressBar Task: {5AF7414B-6663-43B3-BCCD-F50060A2F673} - \APSnotifierPP1 -> Brak pliku <==== UWAGA Task: {747AEBF7-7FA2-49B9-B9D7-5A07988FA5D6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4264678522-3618739240-1028856009-1000Core => C:\Users\Łukasz\AppData\Local\Google\Update\GoogleUpdate.exe [2016-10-31] (Google Inc.) Task: {753C47AE-EC5E-44B3-95A9-2C8E553F0E39} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => %ProgramFiles%\Windows Media Player\wmpnscfg.exe Task: {8C3A0AA2-EC8D-4DAB-A9B0-F1AD9435E54A} - System32\Tasks\{660CB777-4642-4D8A-B738-0A5E21DB5574} => pcalua.exe -a F:\AngNP1\autorun.exe -d F:\AngNP1 Task: {90A6A0B8-A4A5-4F57-839B-764FEAB47F12} - System32\Tasks\{357D4DB9-5EC3-45FD-84B1-663380AED4F5} => Chrome.exe hxxps://ui.skype.com/ui/0/7.32.0.104/pl/abandoninstall?page=tsMain Task: {9F0DB505-2607-47B3-B3F1-56BBB5E701BC} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Łukasz-PC-Łukasz Łukasz-PC => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2015-02-10] (Microsoft Corporation) Task: {9F6BFFE8-BF99-4DCC-B084-3A66469F36F4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-04-12] (Adobe Systems Incorporated) Task: {A65C65B0-FC42-422B-8BF4-4B91E8AE7632} - System32\Tasks\BikaQ_FetchAndUpgrade_CanBeDel => C:\Program Files (x86)\BikaQRss\BikaQ.exe [2017-02-23] (IEC) <==== UWAGA Task: {A95F15EF-8148-4F32-932D-7D81C9B99B97} - System32\Tasks\update-S-1-5-21-4264678522-3618739240-1028856009-1000 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: {B955D67A-6FE8-41E7-9E11-064C407AA5E1} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe Task: {C91B58D8-EC16-4167-840E-A08E577544ED} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation) Task: {D0ACB76A-3839-44A3-9A70-D0E7CECA2DC7} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: {D315E96A-ED54-473F-96BC-D286BBDEDCFE} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_148_pepper.exe [2017-04-12] (Adobe Systems Incorporated) Task: {EB167D31-49F7-4DB7-A7C4-1DAB1B3F76AE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe Task: {F53A35DE-4261-4DC3-9E1B-775845F16DF8} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\ReimageUpdater.job => C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe <==== UWAGA Task: C:\Windows\Tasks\update-S-1-5-21-4264678522-3618739240-1028856009-1000.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) Shortcut: C:\Users\Łukasz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Hipmy\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Łukasz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk -> C:\Program Files (x86)\Hipmy\Application\chrome.exe (Google Inc.) ShortcutWithArgument: C:\Users\Łukasz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Users\Łukasz\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.ourluckysites.com/?type=sc&ts=1491817964&z=a28a78c0fccd6c7c8d487e0gdzctcg1b2gbm6tfqco&from=che0812&uid=ST1000DM003-1CH162_Z1DA3RS3XXXXZ1DA3RS3 ShortcutWithArgument: C:\Users\Łukasz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.ourluckysites.com/?type=sc&ts=1491479470&z=60459f1d68c4393b5809547g7zdt7g5z7mftcz3mae&from=che0812&uid=ST1000DM003-1CH162_Z1DA3RS3XXXXZ1DA3RS3 ShortcutWithArgument: C:\Users\Łukasz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.ourluckysites.com/?type=sc&ts=1491479470&z=60459f1d68c4393b5809547g7zdt7g5z7mftcz3mae&from=che0812&uid=ST1000DM003-1CH162_Z1DA3RS3XXXXZ1DA3RS3 ShortcutWithArgument: C:\Users\Łukasz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Users\Łukasz\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.ourluckysites.com/?type=sc&ts=1491817964&z=a28a78c0fccd6c7c8d487e0gdzctcg1b2gbm6tfqco&from=che0812&uid=ST1000DM003-1CH162_Z1DA3RS3XXXXZ1DA3RS3 ShortcutWithArgument: C:\Users\Łukasz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.ourluckysites.com/?type=sc&ts=1491479470&z=60459f1d68c4393b5809547g7zdt7g5z7mftcz3mae&from=che0812&uid=ST1000DM003-1CH162_Z1DA3RS3XXXXZ1DA3RS3 ==================== Załadowane moduły (filtrowane) ============== 2014-03-07 19:43 - 2015-04-08 23:30 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2017-04-07 14:09 - 2017-04-11 04:27 - 00252928 ____C () C:\Users\Łukasz\AppData\Local\AMD\amd.exe 2017-03-16 16:08 - 2017-03-16 16:08 - 01354040 _____ () D:\Apple\Apple Application Support\libxml2.dll 2017-03-16 16:08 - 2017-03-16 16:08 - 00092472 _____ () D:\Apple\Apple Application Support\zlib1.dll 2017-04-05 19:29 - 2017-04-06 05:22 - 00114688 ____C () C:\Users\Łukasz\AppData\Local\clean\Kyubey.exe 2010-01-30 02:40 - 2010-01-30 02:40 - 04254560 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2017-02-06 17:02 - 2017-02-06 05:20 - 00376832 _____ () C:\Users\Łukasz\AppData\Roaming\jcfic\UvConverter.exe 2013-08-01 18:31 - 2013-08-01 18:31 - 00198120 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe 2013-08-01 18:31 - 2013-08-01 18:31 - 00054760 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll 2013-08-01 18:31 - 2013-08-01 18:31 - 00034792 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTNetMon.dll 2017-03-02 00:13 - 2017-04-01 04:02 - 00236032 _____ () C:\Users\Łukasz\AppData\Roaming\Kyubey\Kyubey.exe 2017-03-27 12:20 - 2017-03-27 12:20 - 01354040 _____ () D:\iTunes\libxml2.dll 2017-03-27 12:20 - 2017-03-27 12:20 - 00092472 _____ () D:\iTunes\zlib1.dll 2016-08-22 13:41 - 2016-08-22 08:12 - 00422272 _____ () C:\ProgramData\Bagbin\Bagbin.exe 2017-01-18 18:47 - 2017-01-18 09:24 - 00106160 _____ () C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe 2017-03-21 16:40 - 2016-05-23 04:37 - 00065696 ____C () C:\Program Files (x86)\Elex-tech\YAC\zlib1.dll 2017-02-13 19:12 - 2017-02-13 05:31 - 00459264 _____ () C:\Program Files (x86)\Common Files\Services\iThemes.dll 2015-08-26 13:37 - 2015-12-30 07:34 - 00582144 _____ () C:\Program Files (x86)\WinZipper\curlpp.dll 2015-08-26 13:37 - 2016-01-26 10:27 - 00066560 _____ () C:\Program Files (x86)\WinZipper\zlib1.dll 2017-02-24 16:18 - 2017-02-23 11:02 - 00112640 _____ () c:\programdata\apple\apple application support\support.dll 2016-10-20 14:50 - 2016-10-20 11:39 - 00340480 _____ () c:\programdata\tencent\qq\report\report.dll 2017-03-21 16:40 - 2016-05-23 04:37 - 00179200 ____C () C:\Program Files (x86)\Elex-tech\YAC\libpng.dll 2010-01-30 02:41 - 2010-01-30 02:41 - 04254560 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2017-03-15 16:39 - 2017-02-01 11:01 - 01870168 ____C () C:\Program Files (x86)\Hipmy\Application\libglesv2.dll 2017-03-15 16:39 - 2017-02-01 11:01 - 00085848 ____C () C:\Program Files (x86)\Hipmy\Application\libegl.dll 2017-03-15 16:39 - 2017-03-15 08:15 - 00118784 _____ () c:\programdata\apple\apple application\devicecfg.dll 2017-03-15 16:39 - 2017-03-15 08:15 - 00118784 _____ () C:\ProgramData\Apple\Apple Application\DeviceCfg.dll 2017-04-12 12:49 - 2017-04-12 12:49 - 17778776 ____C () C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_25_0_0_148.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData:NT [40] AlternateDataStreams: C:\ProgramData:NT2 [322] AlternateDataStreams: C:\Users\All Users:NT [40] AlternateDataStreams: C:\Users\All Users:NT2 [322] AlternateDataStreams: C:\ProgramData\Application Data:NT [40] AlternateDataStreams: C:\ProgramData\Application Data:NT2 [322] AlternateDataStreams: C:\ProgramData\Dane aplikacji:NT [40] AlternateDataStreams: C:\ProgramData\Dane aplikacji:NT2 [322] AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40] AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [322] AlternateDataStreams: C:\Users\Łukasz\Dane aplikacji:NT [40] AlternateDataStreams: C:\Users\Łukasz\Dane aplikacji:NT2 [322] AlternateDataStreams: C:\Users\Łukasz\AppData\Roaming:NT [40] AlternateDataStreams: C:\Users\Łukasz\AppData\Roaming:NT2 [322] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PAexec => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Schedule => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PAexec => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Schedule => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2017-04-21 23:48 - 00000822 ___AC C:\Windows\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-4264678522-3618739240-1028856009-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Łukasz\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja wyłączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\startupfolder: C:^Users^Łukasz^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^howto_recover_file_mhyui.html => C:\Windows\pss\howto_recover_file_mhyui.html.Startup MSCONFIG\startupfolder: C:^Users^Łukasz^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^howto_recover_file_mhyui.txt => C:\Windows\pss\howto_recover_file_mhyui.txt.Startup MSCONFIG\startupfolder: C:^Users^Łukasz^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^howto_recover_file_twnxt.html => C:\Windows\pss\howto_recover_file_twnxt.html.Startup MSCONFIG\startupfolder: C:^Users^Łukasz^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^howto_recover_file_twnxt.txt => C:\Windows\pss\howto_recover_file_twnxt.txt.Startup MSCONFIG\startupfolder: C:^Users^Łukasz^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^how_recover+lds.html => C:\Windows\pss\how_recover+lds.html.Startup MSCONFIG\startupfolder: C:^Users^Łukasz^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^how_recover+lds.txt => C:\Windows\pss\how_recover+lds.txt.Startup MSCONFIG\startupfolder: C:^Users^Łukasz^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^x.vbs => C:\Windows\pss\x.vbs.Startup MSCONFIG\startupreg: Google Update => C:\Users\Łukasz\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe MSCONFIG\startupreg: World of Warships => "D:\World_of_Warships\WargamingGameUpdater.exe" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{02A0E9C4-9EB1-46EC-AA30-328320757735}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{12B19188-D47D-4A13-B9C1-E8E37D374EFC}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{3314E39C-8F8A-48CB-AE22-7905325024D3}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{C88F8323-765B-4B5D-9AC4-FAB49AAFC4E9}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{84C8829B-9778-4BE5-92B3-7341F6E7A4A3}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{D7AD6224-DEBD-4DDC-AB35-5DC5AF48E93C}] => (Allow) C:\Users\Łukasz\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{ED1479E6-B417-4534-A24D-9202D477229A}] => (Allow) C:\Users\Łukasz\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{9B8151D1-866E-4921-956F-3B559CFE4776}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [{E88A2CE1-1C19-445E-A591-A660FA7AEDBE}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [TCP Query User{5F74B519-5CC3-428F-88DD-9B7DA292D7EE}D:\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\steam\steamapps\common\the witcher 2\bin\witcher2.exe FirewallRules: [UDP Query User{C35A4143-17B8-4BBB-8527-30A5A837E8F0}D:\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\steam\steamapps\common\the witcher 2\bin\witcher2.exe FirewallRules: [TCP Query User{14CC7A38-DDDA-47B8-93DC-59880A0F1371}C:\users\łukasz\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\łukasz\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{9E9753F2-F41C-4D43-BE52-32C605D81309}C:\users\łukasz\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\łukasz\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{7C87DB70-96F8-45F0-80EA-2B7B3D71BD02}C:\users\łukasz\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\łukasz\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{DDB33497-6D7B-4E60-86DA-E1A5869A3BEF}C:\users\łukasz\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\łukasz\appdata\roaming\spotify\spotify.exe FirewallRules: [{93E884FA-6069-4BDE-A4F3-5656657C155E}] => (Allow) C:\Users\Łukasz\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [TCP Query User{D2DCAF63-F888-4BC3-A3B6-C39A5386E07F}C:\windows\syswow64\svchost.exe] => (Block) C:\windows\syswow64\svchost.exe FirewallRules: [UDP Query User{27C67CCF-634B-46FD-B407-4BE585A1E213}C:\windows\syswow64\svchost.exe] => (Block) C:\windows\syswow64\svchost.exe FirewallRules: [{2DEB767B-07CB-4C35-BA45-935CB7C74B25}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{2364F982-EA76-43D2-9777-9EAE3ABF59A9}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{563ED8F3-65C9-4472-B260-37AE481FF006}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{A006D6F8-93B1-4524-813F-C93C9924A6A8}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{1F77BF2E-0557-4CDE-9B97-097F395843A4}] => (Allow) D:\NapiProjekt\napisy.exe FirewallRules: [{9ACBD246-0AD4-4158-AF2D-3DA3F37BE0EB}] => (Allow) D:\NapiProjekt\napisy.exe FirewallRules: [{77E00B69-0682-4F8C-8EBB-033B95B25748}] => (Allow) C:\ProgramData\Bagbin\Bagbin.exe FirewallRules: [TCP Query User{59769BB4-DB05-40A1-AB5F-63EE671AD7D6}C:\users\łukasz\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\łukasz\appdata\local\google\chrome\application\chrome.exe FirewallRules: [UDP Query User{E3229A82-8DC3-463F-B65C-71A08033840F}C:\users\łukasz\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\łukasz\appdata\local\google\chrome\application\chrome.exe FirewallRules: [{BA3E5237-26F2-4111-B3BD-B75ABF06D6A2}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{966FF5EA-DE4E-495E-AE2B-17320398010A}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{D55B4D92-BCA6-4C52-A32F-D577315FC960}] => (Allow) C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe FirewallRules: [{8BD3A764-16D9-4471-B2C6-B98B7D945654}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe FirewallRules: [{86BF1D9E-F7F0-416E-855F-567191D94D0C}] => (Allow) C:\Program Files (x86)\MIO\loader\st1000dm003-1ch162_z1da3rs3xxxxz1da3rs3.exe FirewallRules: [{5EF1B6E6-31CD-4675-A750-C1670E195406}] => (Allow) C:\Program Files (x86)\MIO\loader\st1000dm003-1ch162_z1da3rs3xxxxz1da3rs3.exe FirewallRules: [{62C358FA-83C3-460B-8442-5159120D8398}] => (Allow) C:\Program Files (x86)\MIO\loader\st1000dm003-1ch162_z1da3rs3xxxxz1da3rs3.exe FirewallRules: [{0977704D-CF43-4D2A-98FC-2D0047A7F3E4}] => (Allow) C:\Program Files (x86)\MIO\loader\st1000dm003-1ch162_z1da3rs3xxxxz1da3rs3.exe FirewallRules: [TCP Query User{9FE34E24-A5B8-4E4E-A224-EF79AE8C5886}D:\world_of_warships\wowslauncher.exe] => (Allow) D:\world_of_warships\wowslauncher.exe FirewallRules: [UDP Query User{C2AC082C-2B4A-49D0-AFE1-4415C2F7B0D6}D:\world_of_warships\wowslauncher.exe] => (Allow) D:\world_of_warships\wowslauncher.exe FirewallRules: [{CBAB53A5-0614-4800-A64B-CDEA48AA224F}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{49FBA772-B4DD-4996-B332-7FF5461E514E}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{64398E4E-E025-491A-B1AC-F1CF65E21323}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{A57C7AE8-65A8-45C4-9FFE-A44F625FEF3A}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{07816710-BFE6-4037-83F1-CD838E615351}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{0995ABC7-2726-4723-AA8E-A006D7E0559E}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{DBF79DE0-388F-4790-B334-CE5126B90568}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{51EEDAD2-3D73-4DB9-BF86-BC4E03E30F41}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{93900A0E-8222-494E-8FE0-95110DF23720}] => (Allow) C:\Program Files (x86)\Hipmy\Application\chrome.exe FirewallRules: [{D72C04E8-58D6-42B7-894B-0E9BB487B3FF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{B4AF9FEC-72F3-4AAF-A2DF-B9E1F99331E4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{13A51EA4-E7EA-4173-8525-84CDDE8AF71B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{926EF1A4-EEAD-49B5-9EF9-7B76ADC2640A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{7378D9D4-6C55-42BC-B968-C3921C8499EF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{E0523968-084B-4276-92FF-9AF0EBAA7633}] => (Allow) D:\GTA 5\GTA5.exe FirewallRules: [{2F688C60-9EC3-4044-B504-6D33CF393E7D}] => (Allow) D:\GTA 5\GTA5.exe FirewallRules: [{303BDC55-46BC-446E-BEA3-B170AAEC810D}] => (Allow) C:\Program Files (x86)\MIO\loader\st1000dm003-1ch162_z1da3rs3xxxxz1da3rs3.dat FirewallRules: [{8462996E-1F6A-4C27-B097-A990FAD991D4}] => (Allow) C:\Program Files (x86)\MIO\loader\st1000dm003-1ch162_z1da3rs3xxxxz1da3rs3.dat FirewallRules: [{B1C038FE-8BC0-4B94-A76A-14C0740DF130}] => (Allow) D:\Bonjour\mDNSResponder.exe FirewallRules: [{20DA3241-24F1-47D1-89FA-7F237E8A4A89}] => (Allow) D:\Bonjour\mDNSResponder.exe FirewallRules: [{13B86FED-7EDB-4C86-9C59-E4A9E1188FB1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{62B40A97-7004-4F61-9253-F8D1D1E0DAF2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{B24306D1-E851-4C7A-B676-832497B4FABE}] => (Allow) D:\iTunes\iTunes.exe FirewallRules: [{0900D3C9-3284-4CD9-BB1B-03A733F6AC5D}] => (Allow) C:\Program Files (x86)\MIO\loader\st1000dm003-1ch162_z1da3rs3xxxxz1da3rs3.dat FirewallRules: [{572AB392-ED2D-4141-B00D-9E96B8CD8D24}] => (Allow) C:\Program Files (x86)\MIO\loader\st1000dm003-1ch162_z1da3rs3xxxxz1da3rs3.dat ==================== Punkty Przywracania systemu ========================= ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (04/22/2017 12:11:18 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (04/22/2017 12:06:38 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3001) (User: ZARZĄDZANIE NT) Description: Występująca w rejestrze wartość ciągu nazwy licznika wydajności jest niepoprawnie sformatowana. Wadliwie sformułowany ciąg to . Pierwszy wpis DWORD w sekcji danych (Data) zawiera wartość indeksu wadliwie sformułowanego ciągu, a drugi i trzeci wpis DWORD w sekcji danych zawiera ostatnie prawidłowe wartości indeksu. Error: (04/22/2017 12:06:16 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "D:\vcredist_arm.exe". Nie można odnaleźć zestawu zależnego Microsoft.Windows.Common-Controls,language="*",processorArchitecture="arm",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (04/22/2017 12:01:34 AM) (Source: SetupARService) (EventID: 0) (User: ) Description: Nie można uruchomić usługi. System.NullReferenceException: Odwołanie do obiektu nie zostało ustawione na wystąpienie obiektu. w SetupAfterRebootService.SetupARService.OnStart(String[] args) w System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (04/22/2017 12:00:33 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: ) Description: Zainicjowanie obiektu System Writer kopii zapasowej VSS przez Usługi kryptograficzne nie powiodło się. Details: Could not query the status of the EventSystem service. System Error: Trwa proces zamykania systemu. . Error: (04/22/2017 12:00:05 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: Explorer.EXE, wersja: 6.1.7601.17514, sygnatura czasowa: 0x4ce7a144 Nazwa modułu powodującego błąd: mso.dll_unloaded, wersja: 0.0.0.0, sygnatura czasowa: 0x54d9d72c Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000007fef1726a18 Identyfikator procesu powodującego błąd: 0xa4 Godzina uruchomienia aplikacji powodującej błąd: 0x01d2bae8d953cdfd Ścieżka aplikacji powodującej błąd: C:\Windows\Explorer.EXE Ścieżka modułu powodującego błąd: mso.dll Identyfikator raportu: e00aeed9-26dd-11e7-a6b1-b8768b9444a0 Error: (04/21/2017 11:51:39 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3001) (User: ZARZĄDZANIE NT) Description: Występująca w rejestrze wartość ciągu nazwy licznika wydajności jest niepoprawnie sformatowana. Wadliwie sformułowany ciąg to . Pierwszy wpis DWORD w sekcji danych (Data) zawiera wartość indeksu wadliwie sformułowanego ciągu, a drugi i trzeci wpis DWORD w sekcji danych zawiera ostatnie prawidłowe wartości indeksu. Error: (04/21/2017 11:47:16 PM) (Source: Schedule) (EventID: 0) (User: ) Description: Event-ID 0 Error: (04/21/2017 11:36:15 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: winziper.exe, wersja: 2.2.28.0, sygnatura czasowa: 0x57d8c0e9 Nazwa modułu powodującego błąd: winziper.exe, wersja: 2.2.28.0, sygnatura czasowa: 0x57d8c0e9 Kod wyjątku: 0xc0000417 Przesunięcie błędu: 0x000d1ea5 Identyfikator procesu powodującego błąd: 0x102c Godzina uruchomienia aplikacji powodującej błąd: 0x01d2bae74c82ca12 Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\WinZipper\winziper.exe Ścieżka modułu powodującego błąd: C:\Program Files (x86)\WinZipper\winziper.exe Identyfikator raportu: 8b6a8148-26da-11e7-9e7a-448a5b604310 Error: (04/21/2017 11:03:10 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: winziper.exe, wersja: 2.2.28.0, sygnatura czasowa: 0x57d8c0e9 Nazwa modułu powodującego błąd: winziper.exe, wersja: 2.2.28.0, sygnatura czasowa: 0x57d8c0e9 Kod wyjątku: 0xc0000417 Przesunięcie błędu: 0x000d1ea5 Identyfikator procesu powodującego błąd: 0x1564 Godzina uruchomienia aplikacji powodującej błąd: 0x01d2bae2acdf436f Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\WinZipper\winziper.exe Ścieżka modułu powodującego błąd: C:\Program Files (x86)\WinZipper\winziper.exe Identyfikator raportu: ec40e75e-26d5-11e7-9e7a-448a5b604310 Dziennik System: ============= Error: (04/22/2017 12:05:27 AM) (Source: WMPNetworkSvc) (EventID: 14324) (User: ) Description: Nie można poprawnie uruchomić usługi „WMPNetworkSvc”, ponieważ funkcja CoCreateInstance(WindowsMediaPlayer) napotkała błąd „0x80004002”. Jeśli to możliwe, zainstaluj ponownie program Windows Media Player. Error: (04/22/2017 12:03:39 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi ed2k idle service z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (04/22/2017 12:03:39 AM) (Source: WMPNetworkSvc) (EventID: 14324) (User: ) Description: Nie można poprawnie uruchomić usługi „WMPNetworkSvc”, ponieważ funkcja CoCreateInstance(WindowsMediaPlayer) napotkała błąd „0x80004002”. Jeśli to możliwe, zainstaluj ponownie program Windows Media Player. Error: (04/22/2017 12:01:51 AM) (Source: WMPNetworkSvc) (EventID: 14324) (User: ) Description: Nie można poprawnie uruchomić usługi „WMPNetworkSvc”, ponieważ funkcja CoCreateInstance(WindowsMediaPlayer) napotkała błąd „0x80004002”. Jeśli to możliwe, zainstaluj ponownie program Windows Media Player. Error: (04/22/2017 12:01:33 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi SpyHunter4 Service z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (04/22/2017 12:01:26 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Reimage Real Time Protector z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (04/22/2017 12:01:19 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi InterHop z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (04/22/2017 12:01:19 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa GubZL zakończyła działanie; wystąpił następujący błąd: Nie można odnaleźć określonego modułu. Error: (04/22/2017 12:01:19 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Gubed_WMI z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (04/22/2017 12:01:19 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa GubedZL zakończyła działanie; wystąpił następujący błąd: Nie można odnaleźć określonego modułu. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz Procent pamięci w użyciu: 48% Całkowita pamięć fizyczna: 8119.98 MB Dostępna pamięć fizyczna: 4141.71 MB Całkowita pamięć wirtualna: 16238.15 MB Dostępna pamięć wirtualna: 11178.86 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:48.73 GB) (Free:2.34 GB) NTFS Drive d: () (Fixed) (Total:882.68 GB) (Free:267.49 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: E886123C) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=48.7 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=882.7 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================