Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 19-11-2017 Uruchomiony przez Robek (21-11-2017 18:24:26) Uruchomiony z C:\Users\Robek\Desktop\Downloads Windows 7 Ultimate Service Pack 1 (X64) (2014-11-12 20:21:10) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-1414513604-550418378-3547991025-500 - Administrator - Disabled) Gość (S-1-5-21-1414513604-550418378-3547991025-501 - Limited - Enabled) Mrozu1 (S-1-5-21-1414513604-550418378-3547991025-1004 - Administrator - Enabled) Robek (S-1-5-21-1414513604-550418378-3547991025-1000 - Administrator - Enabled) => C:\Users\Robek vod (S-1-5-21-1414513604-550418378-3547991025-1003 - Administrator - Enabled) => C:\Users\vod ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Norton Internet Security (Disabled - Out of date) {30744133-1E94-7B35-F4A3-82A5AEF1CBAA} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Norton Internet Security (Disabled - Out of date) {8B15A0D7-38AE-74BB-CE13-B9D7D5768117} FW: Norton Internet Security (Disabled) {084FC016-54FB-7A6D-DFFC-2B9050228CD1} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) "Tomb Raider" (HKLM-x32\...\{1EE9D482-3C07-4EE1-8968-6B364238FFE4}_is1) (Version: - ) µTorrent (HKU\S-1-5-21-1414513604-550418378-3547991025-1000\...\uTorrent) (Version: 3.5.0.44090 - BitTorrent Inc.) 7-Zip 15.14 (HKLM-x32\...\7-Zip) (Version: 15.14 - Igor Pavlov) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 20.0.0.204 - Adobe Systems Incorporated) Adobe Flash Player 27 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 27.0.0.187 - Adobe Systems Incorporated) Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.187 - Adobe Systems Incorporated) Adobe Reader XI (11.0.23) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated) AlphaGo (HKLM-x32\...\{118B6258-BF13-47C9-8D46-B2A349196B5D}) (Version: 1.0.0 - Default Company Name) <==== UWAGA AlphaGo (HKLM-x32\...\{51639FCA-678F-4D71-8044-E16E3D49187F}) (Version: 1.0.7 - Default Company Name) <==== UWAGA AlphaGo (HKLM-x32\...\{97D2FBF4-72CF-4DD6-8DA8-26710BC7BE71}) (Version: 1.1.0 - Default Company Name) <==== UWAGA AlphaGo (HKLM-x32\...\{B20B3A3C-91E3-4326-8A0F-B3C012574F8C}) (Version: 1.1.2 - Default Company Name) <==== UWAGA AlphaGo (HKLM-x32\...\{B7CB7055-EFAE-4CD2-928A-15DB5F4FF7C7}) (Version: 1.2.5 - AlphaGo) <==== UWAGA AMD Catalyst Install Manager (HKLM\...\{72B00742-24A4-76E6-5740-E41DA195473A}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.) amuleC (HKLM-x32\...\{0F7B5011-72EC-493D-A7BF-546591047E8E}) (Version: 1.0.2 - amuleC) <==== UWAGA amuleC (HKLM-x32\...\{19539992-061C-4E8B-9053-07B175303AF4}) (Version: 1.0.1 - amuleC) <==== UWAGA amulesw (HKLM-x32\...\{7CC4BD9A-10F3-432B-A037-AE9FCE1F9B64}) (Version: 1.0.8 - amules) <==== UWAGA Aplikacja Blizzard (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) ASGRAF EuroTEST 2014_PWPW (HKLM-x32\...\ASGRAF EuroTEST 2014_PWPW) (Version: 2.0.1.6 - ASGRAF) Bass Audio Decoder (remove only) (HKLM-x32\...\Bass Audio Decoder) (Version: - ) BikaQ Rss (HKLM-x32\...\{3678D164-84DB-4F73-AFD6-916342E10764}) (Version: 3.0.17 - BikaQ) <==== UWAGA BikaQ Rss Reader (HKLM-x32\...\{56B2B28A-E663-4D28-84A3-3846068A7D63}) (Version: 1.0.0 - BikaQ) <==== UWAGA BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.9.30.9239 - BlueStack Systems, Inc.) BlueStacks Notification Center (HKLM-x32\...\{4FCF716C-CEB4-499D-AFB8-A5375105EC2A}) (Version: 0.9.30.9239 - BlueStack Systems, Inc.) Canon MX300 series (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX300_series) (Version: - ) Chicken Invaders: Cluck of the Dark Side demo v5.00 (HKLM-x32\...\Chicken Invaders: Cluck of the Dark Side demo_is1) (Version: - InterAction studios) ChomikBox (HKLM-x32\...\{C7B52FAF-58D8-438C-B810-F78C3C927504}) (Version: 2.0.8.0 - Chomikuj.pl) Cisco Packet Tracer 6.0.1 (HKLM-x32\...\Cisco Packet Tracer 6.0.1_is1) (Version: - Cisco Systems, Inc.) Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.64.49.0 - Conexant) Cossacks Anthology (HKLM-x32\...\Cossacks Anthology_is1) (Version: - GOG.com) Counter-Strike 1.6 v43 (HKLM-x32\...\{1BD2212B-8287-4F33-A6DC-903D423AB814}_is1) (Version: v43 - CSSetti.pl) CPU Miner (HKLM\...\cpuminer) (Version: 1.2 - Open Source) Crysis® 2 (HKLM-x32\...\{6033673D-2530-4587-8AD0-EB059FC263F9}) (Version: 1.0.0.0 - Electronic Arts) Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0230 - Disc Soft Ltd) DCoder Image Source (remove only) (HKLM-x32\...\DCoder Image Source) (Version: - ) Dev-C++ (HKLM-x32\...\Dev-C++) (Version: 5.11 - Bloodshed Software) DirectVobSub (remove only) (HKLM-x32\...\DirectVobSub) (Version: - ) Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.17 - Dolby Laboratories Inc) EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.4.0.0 - Electronic Arts) Energy Management (HKLM-x32\...\{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 7.0.3.4 - Lenovo) Hidden Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 7.0.3.4 - Lenovo) FIFA 15 wersja 1.4.0.0 (HKLM-x32\...\FIFA 15_is1) (Version: 1.4.0.0 - GTX Box Team) GeoGebra 5 (HKLM-x32\...\GeoGebra 5) (Version: 5.0.119.0 - International GeoGebra Institute) GG (HKU\S-1-5-21-1414513604-550418378-3547991025-1000\...\GG) (Version: 12 - GG Network S.A.) GIMP 2.6.11 (HKLM-x32\...\WinGimp-2.0_is1) (Version: 2.6.11 - The GIMP Team) GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.94 - Google Inc.) Google Drive (HKLM-x32\...\{9BC95947-92FD-438B-A168-C01F9A5B7292}) (Version: 2.34.7529.6838 - Google, Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden Gwent (HKLM-x32\...\1971477531_is1) (Version: 0.9.12.2 public beta - GOG.com) Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) Heroes & Generals (HKLM-x32\...\Heroes & Generals) (Version: 1.0.6.1 - Reto-Moto) Herosi Hellady (HKU\S-1-5-21-1414513604-550418378-3547991025-1000\...\Herosi Hellady) (Version: 1.0.0.0 - Alawar Entertainment Inc.) Herosi Hellady 2: Olimpia (HKU\S-1-5-21-1414513604-550418378-3547991025-1000\...\Herosi Hellady 2: Olimpia) (Version: 1.0.0.0 - Alawar Entertainment Inc.) Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios) Huawei E3272 (HKLM-x32\...\Huawei E3272) (Version: 22.001.22.00.1202 - Huawei Technologies Co.,Ltd) HyperCam 2 (HKLM-x32\...\HyperCam 2) (Version: 2.29.01 - Hyperionics Technology LLC) Inkscape 0.92.2 (HKLM-x32\...\Inkscape) (Version: 0.92.2 - Inkscape Project) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation) Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2778 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.0.1083 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.7.248 - Intel Corporation) ipla 2.8.6 (HKLM-x32\...\ipla) (Version: 2.8.6 - Redefine Sp z o.o.) Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation) Konserwacja programu Samsung SCX-4600 Series (HKLM-x32\...\Samsung SCX-4600 Series) (Version: - Samsung Electronics CO.,LTD) Kozacy II (HKLM-x32\...\CossacksII_is1) (Version: - Cenega Poland Sp. z o. o.) LAV Filters 0.63.0 (HKLM-x32\...\lavfilters_is1) (Version: 0.63.0 - Hendrik Leppkes) Lenovo Bluetooth with Enhanced Data Rate Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.4600 - Broadcom Corporation) Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10206 - Realtek Semiconductor Corp.) Lenovo Solution Center (HKLM\...\{E92E1FF1-B188-43FE-BECA-2248E227E67D}) (Version: 2.8.005.00 - Lenovo Group Limited) Lenovo_Wireless_Driver (HKLM-x32\...\{36CE10BD-A076-4DE3-A8A7-2F61E3FB2E6A}) (Version: 6.20.55.14 - Lenovo) LG PC Suite (HKLM-x32\...\LG PC Suite) (Version: 5.3.23.20150119 - LG Electronics) LG United Mobile Drivers (HKLM-x32\...\{2D5218EB-6992-46E3-8ECE-76C79AB955CE}) (Version: 3.13.2.0 - LG Electronics) MadVR (remove only) (HKLM-x32\...\MadVR) (Version: - ) Malwarebytes Anti-Malware wersja 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.599.11 - McAfee, Inc.) Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation) Microsoft .NET Framework 4.7 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.7.02053 - Microsoft Corporation) Microsoft Office Professional Plus 2016 (HKLM-x32\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation) Microsoft Visual Studio Code (HKLM-x32\...\{F8A2A208-72B3-4D61-95FC-8A65D340689B}_is1) (Version: 1.10.2 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Minecraft (HKLM-x32\...\Minecraft_is1) (Version: - FreeGamePick) MioMore Desktop 7.50 (HKLM-x32\...\{A2804FE8-4101-48a0-AE1A-575B99014BF4}-Mio-7.50) (Version: 7.50.0110.129 - Mio Technology) Movavi Screen Capture Studio 7 (HKLM-x32\...\Movavi Screen Capture Studio 7) (Version: 7.0.0 - Movavi) Mozilla Firefox 47.0.1 (x86 pl) (HKLM-x32\...\Mozilla Firefox 47.0.1 (x86 pl)) (Version: 47.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.1.6018 - Mozilla) Narzędzia sprawdzające pakietu Microsoft Office 2016 — polski (HKLM-x32\...\{90160000-001F-0415-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Need for Speed™ Carbon (HKLM-x32\...\{259C0ABB-A3B2-4D70-008F-BF7EE491B70B}) (Version: - ) Node.js (HKLM\...\{84F68739-3B44-4D36-ABDB-2151A23C9C3D}) (Version: 6.10.0 - Node.js Foundation) Norton Internet Security (HKLM-x32\...\NIS) (Version: 22.11.2.7 - Symantec Corporation) Notepad++ (HKLM-x32\...\Notepad++) (Version: 7 - Notepad++ Team) OEM Application Profile (HKLM-x32\...\{C89A97B6-F991-EBB5-77B7-927BCF420EBE}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.) OpenFM (HKU\S-1-5-21-1414513604-550418378-3547991025-1000\...\OpenFM) (Version: 2 - GG Network S.A.) OpenOffice 4.1.1 (HKLM-x32\...\{B5373BA3-BAD7-4EAC-A9D2-B66B41B82C57}) (Version: 4.11.9775 - Apache Software Foundation) Oprogramowanie Intel® PROSet/Wireless (HKLM-x32\...\{e6d17d96-ddaa-476f-bb07-db601024ffb1}) (Version: 15.8.0 - Intel Corporation) Pakiet sterowników systemu Windows - Lenovo (ACPIVPC) System (12/15/2011 7.1.0.1) (HKLM\...\99841829BE839365AA67B2AD0E50D371F59F8A1E) (Version: 12/15/2011 7.1.0.1 - Lenovo) Pakiet zgodności dla systemu Office 2007 (HKLM-x32\...\{90120000-0020-0415-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation) PowerXpressHybrid (HKLM-x32\...\{51FDC2DE-0917-46B7-EAEC-5377504701DE}) (Version: 1.00.0000 - Nazwa firmy) Hidden Prisoner of War (HKLM-x32\...\{04C1C4A0-FDF9-11D6-928D-000ACD006A23}) (Version: - ) PX Profile Update (HKLM-x32\...\{460B875F-7712-B288-E190-6831F5349EA9}) (Version: 1.00.1. - AMD) Hidden Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.12 - Qualcomm Atheros Communications Inc.) RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.0-1.0.10926.49 - raidcall.com) Realtek USB Card Reader (HKLM-x32\...\{1E496A68-4943-424E-829D-5C3C85B7B8F2}) (Version: 6.2.9200.39041 - Realtek Semiconductor Corp.) Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.103 - Skype Technologies S.A.) Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 2.19.3116.2 - Hi-Rez Studios) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.4.1.0 - Synaptics Incorporated) TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.47484 - TeamViewer) Terela (HKLM-x32\...\{E2F7C535-0785-4C2D-B56F-016BFD02B010}) (Version: 1.1.6 - Terela) The Sims 2 All In One (HKLM-x32\...\{DEDD62B4-908E-4460-8BFE-467AA745E5BE}_is1) (Version: - Lena(R)) Unity Web Player (HKU\S-1-5-21-1414513604-550418378-3547991025-1000\...\UnityWebPlayer) (Version: 5.3.3f1 - Unity Technologies ApS) Update for Skype for Business 2016 (KB4011238) 32-Bit Edition (HKLM-x32\...\{90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{BE7AEADB-02E5-40B7-BA59-9EE2F4C03CA1}) (Version: - Microsoft) Update for Skype for Business 2016 (KB4011238) 32-Bit Edition (HKLM-x32\...\{90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{BE7AEADB-02E5-40B7-BA59-9EE2F4C03CA1}) (Version: - Microsoft) Update for Skype for Business 2016 (KB4011238) 32-Bit Edition (HKLM-x32\...\{90160000-012B-0415-0000-0000000FF1CE}_Office16.PROPLUS_{BE7AEADB-02E5-40B7-BA59-9EE2F4C03CA1}) (Version: - Microsoft) WebcamMax (HKLM-x32\...\WebcamMax) (Version: 7.9.5.2.MultiLanguage - COOLWAREMAX) WinRAR 5.11 (32-bitowy) (HKLM-x32\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH) WINSNARE (HKLM-x32\...\{56D19032-B59F-4020-994B-15912A49CD96}) (Version: 4.4.6 - WINSNARE) <==== UWAGA World of Tanks (HKU\S-1-5-21-1414513604-550418378-3547991025-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net) XAMPP (HKLM-x32\...\xampp) (Version: 5.6.30-0 - Bitnami) Zoom Player (remove only) (HKLM-x32\...\ZoomPlayer) (Version: 9.5.0 - Inmatrix LTD) Zoom Player Polish language (remove only) (HKLM-x32\...\ZoomPlayer_Polish) (Version: - ) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) HKU\S-1-5-21-1414513604-550418378-3547991025-1000\...\ChromeHTML: -> C:\Program Files (x86)\Cupduck\Application\chrome.exe (Google Inc.) <==== UWAGA CustomCLSID: HKU\S-1-5-21-1414513604-550418378-3547991025-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation) CustomCLSID: HKU\S-1-5-21-1414513604-550418378-3547991025-1000_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\Robek\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll (GG Network S.A.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-10] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-10] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-10] (Google) ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Internet Security\Engine\22.11.2.7\buShell.dll [2017-11-11] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Internet Security\Engine\22.11.2.7\buShell.dll [2017-11-11] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Internet Security\Engine\22.11.2.7\buShell.dll [2017-11-11] (Symantec Corporation) ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.) ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Internet Security\Engine\22.11.2.7\buShell.dll [2017-11-11] (Symantec Corporation) ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Internet Security\Engine\22.11.2.7\buShell.dll [2017-11-11] (Symantec Corporation) ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Internet Security\Engine\22.11.2.7\buShell.dll [2017-11-11] (Symantec Corporation) ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2015-12-31] (Igor Pavlov) ContextMenuHandlers1-x32: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2016-09-21] () ContextMenuHandlers1-x32: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files (x86)\Norton Internet Security\Engine\22.11.2.7\buShell.dll [2017-11-11] (Symantec Corporation) ContextMenuHandlers1-x32: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-10] (Google) ContextMenuHandlers1-x32: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Internet Security\Engine\22.11.2.7\NavShExt.dll [2017-11-11] (Symantec Corporation) ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2014-09-02] (Alexander Roshal) ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2014-09-02] (Alexander Roshal) ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Internet Security\Engine\22.11.2.7\NavShExt.dll [2017-11-11] (Symantec Corporation) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes) ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2015-12-31] (Igor Pavlov) ContextMenuHandlers4-x32: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-10] (Google) ContextMenuHandlers4-x32: [ZPShellExt] -> {ABE00001-0123-ABED-1248-0248ADFA1909} => C:\Program Files (x86)\Zoom Player\zpshlext64.dll [2008-08-05] () ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2013-02-04] (Advanced Micro Devices, Inc.) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2012-06-07] (Intel Corporation) ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2014-10-01] (Intel Corporation) ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2015-12-31] (Igor Pavlov) ContextMenuHandlers6-x32: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files (x86)\Norton Internet Security\Engine\22.11.2.7\buShell.dll [2017-11-11] (Symantec Corporation) ContextMenuHandlers6-x32: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes) ContextMenuHandlers6-x32: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Internet Security\Engine\22.11.2.7\NavShExt.dll [2017-11-11] (Symantec Corporation) ContextMenuHandlers6-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2014-09-02] (Alexander Roshal) ContextMenuHandlers6-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2014-09-02] (Alexander Roshal) ContextMenuHandlers1_S-1-5-21-1414513604-550418378-3547991025-1000: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} => C:\Users\Robek\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll [2014-03-20] (GG Network S.A.) ContextMenuHandlers4_S-1-5-21-1414513604-550418378-3547991025-1000: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} => C:\Users\Robek\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll [2014-03-20] (GG Network S.A.) ContextMenuHandlers5_S-1-5-21-1414513604-550418378-3547991025-1000: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} => C:\Users\Robek\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll [2014-03-20] (GG Network S.A.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {014ED373-DBCE-4834-92A0-45678201ED76} - System32\Tasks\RobekBhangsKeypuncherV2 => rundll32.exe SeducibleMycelium.dll,main 7 1 <==== UWAGA Task: {073EAAEF-8BC8-42F4-B7EC-D062CCD20F4B} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2015-08-17] () Task: {0C642312-7FEB-41CA-8583-C0BA295AF6A3} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2015-08-17] (Lenovo) Task: {0E13C416-3EEA-424D-9281-980F032EB4AE} - System32\Tasks\BikaQ_FetchAndUpgrade_CanBeDel => C:\Program Files (x86)\BikaQRss\BikaQ.exe [2017-03-21] (IEC) <==== UWAGA Task: {107991B1-3EB9-45FC-B82C-6BC557966039} - System32\Tasks\Norton Internet Security\Norton Internet Security Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\22.11.2.7\SymErr.exe [2017-11-11] (Symantec Corporation) Task: {117A95CE-11DC-426B-AA0D-FCE933FD63BB} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2015-08-17] (Lenovo) Task: {1A5CFDA4-166A-40B7-A19A-7073BFE9ECC8} - System32\Tasks\Laecultgnergh Helper => C:\Program Files (x86)\Clfick\anerwut.exe [2016-11-29] (Glarysoft Ltd) Task: {1CE6248E-D2BD-4741-A30D-60FFC3207734} - \WordSurfer Auto Updater 1.10.0.19 Pending Update -> Brak pliku <==== UWAGA Task: {2DA28F79-2046-4233-9AAF-DD519BBFFACF} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1414513604-550418378-3547991025-1000 Task: {3696F41F-3C79-47DD-B793-C0920DD0BB65} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe Task: {39B8185F-A4D4-4E7A-80C5-01E05DBC16E9} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe <==== UWAGA Task: {4595DEB0-2661-4D09-932B-3070036B9154} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation) Task: {52330D3E-FD16-4CC8-90F1-4793E109C1BC} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe Task: {5B3448FD-225C-4B21-9B3A-8AFEB55977B0} - \Web Protector Plus -> Brak pliku <==== UWAGA Task: {70500B52-150E-4C0F-A03D-7861E4BCFFEF} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)" Task: {856FC7A7-E566-4B19-BE6D-940E93667DE9} - System32\Tasks\d639866a9491f79c4d8ac0f8356e1d26 => rundll32.exe "C:\Program Files (x86)\globalUpdate\nmqype.dll",e62dc6c6547f46bda862da2d05af6862 <==== UWAGA Task: {8C2B8F81-A94C-47A8-A900-31331A771004} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2015-08-17] (Lenovo) Task: {8D3F91D6-77D9-4EAE-8508-542690DDA104} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\22.11.2.7\WSCStub.exe [2017-11-11] (Symantec Corporation) Task: {953EAFE1-E567-41BC-A46A-0E55C8F55001} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated) Task: {95CD69BA-9F93-4B1E-9762-4E14EB663119} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {9F9F1CD8-8937-4B9B-80AD-B3530F9B8711} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2015-08-17] () Task: {AB83A9DF-E428-4EAA-862A-5A9395D9FF4B} - System32\Tasks\Windows-PG => C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe C:\windows\psgo\psgo.ps1 <==== UWAGA Task: {AE9589DC-A4A6-4598-89B5-84CC19BCF18B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation) Task: {CDD2DDB4-B89D-4857-A9BF-DDC42EFB8B18} - System32\Tasks\{C7FBCBF8-412A-4D95-8AAE-7F06CC8EC226} => "c:\program files (x86)\cupduck\application\chrome.exe" hxxps://ui.skype.com/ui/0/7.39.0.102/pl/abandoninstall?page=tsProgressBar Task: {D157AE0B-BE5F-4011-8F72-155A5042D3B3} - \WordWizard Auto Updater 1.10.0.24 Pending Update -> Brak pliku <==== UWAGA Task: {E07637A1-F8B7-42E5-B8F8-8FA5194FBFFE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {FA54715A-8D86-49E0-B08E-FFA997F3736D} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Internet Security\Upgrade.exe [2017-11-11] (Symantec Corporation) Task: {FD4389BA-EBE3-4F36-87E1-BA32DB5C6E42} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-11-17] (Adobe Systems Incorporated) Task: {FD6E103E-7DD9-442D-89DD-89ED839AEDD6} - System32\Tasks\Norton Internet Security\Norton Internet Security Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\22.11.2.7\SymErr.exe [2017-11-11] (Symantec Corporation) Task: {FDCC1C73-BCCB-4D26-9290-784F4057522E} - System32\Tasks\WinTOOL => C:\ProgramData\wintools\WintoolUprI.exe [2017-01-18] () <==== UWAGA (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) Shortcut: C:\Users\Robek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Cupduck\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Robek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Cupduck\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Robek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk -> C:\Program Files (x86)\Cupduck\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Robek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d75398020044c136\Google Chrome.lnk -> C:\Program Files (x86)\Cupduck\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Robek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\70216a91c23d8320\Google Chrome.lnk -> C:\Program Files (x86)\Cupduck\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Robek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Cupduck\Application\chrome.exe (Google Inc.) ShortcutWithArgument: C:\Users\Robek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\BigFarm.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://bigfarm.goodgamestudios.com/?w=239064 ShortcutWithArgument: C:\Users\Robek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\big_bang_empire.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.bigbangempire.com/?ref=281-000-000-005 ShortcutWithArgument: C:\Users\Robek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\FIFA 15.lnk -> C:\Program Files (x86)\GTX Box Team\FIFA 15\Launcher.exe () -> hxxp://www.amisites.com/?type=sc&ts=1481136175&z=241cfe77bdf6efe24eda62ag8zeb8gagec5qagcm7m&from=che0812&uid=ST1000LM024XHN-M101MBB_S2SMJ9CD927401 ShortcutWithArgument: C:\Users\Robek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Internet Explorer.lnk -> C:\Program Files (x86)\Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.amisites.com/?type=sc&ts=1481136175&z=241cfe77bdf6efe24eda62ag8zeb8gagec5qagcm7m&from=che0812&uid=ST1000LM024XHN-M101MBB_S2SMJ9CD927401 ShortcutWithArgument: C:\Users\Robek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\1e9dbac0bb94874\Google Chrome.lnk -> C:\Program Files (x86)\Cupduck\Application\chrome.exe (Google Inc.) -> ==================== Załadowane moduły (filtrowane) ============== 2017-03-01 20:56 - 2017-03-01 07:02 - 000055992 _____ () C:\Program Files (x86)\Explorer\iedvutils.exe 2009-08-03 04:48 - 2009-08-03 04:48 - 000027648 _____ () C:\Windows\System32\sso1ml6.dll 2016-09-15 06:19 - 2016-09-15 06:19 - 000031256 _____ () C:\Windows\System32\us005lm.dll 2016-06-27 18:23 - 2013-12-03 07:09 - 000240720 _____ () C:\ProgramData\MobileBrServ\mbbservice.exe 2016-09-21 21:16 - 2016-09-21 21:16 - 000230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll 2008-12-20 03:20 - 2014-11-13 17:58 - 000054088 _____ () C:\Program Files (x86)\Lenovo\Energy Management\HookLib.dll 2012-03-10 16:30 - 2014-11-13 17:58 - 001509936 _____ () C:\Program Files (x86)\Lenovo\Energy Management\EMWpfUI.dll 2012-03-08 15:40 - 2014-11-13 17:58 - 000011096 _____ () C:\Program Files (x86)\Lenovo\Energy Management\pl-PL\EMWpfUI.resources.dll 2008-12-20 03:20 - 2014-11-13 17:58 - 000054088 _____ () C:\Program Files (x86)\Lenovo\Energy Management\kbdhook.dll 2014-11-12 22:45 - 2012-06-07 09:51 - 000094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2014-11-16 12:07 - 2011-06-24 05:40 - 001990144 _____ () C:\Windows\twain_32\Samsung\SCX4600\Scan2Pc.exe 2017-03-01 20:56 - 2017-03-01 07:02 - 001779896 _____ () C:\Program Files (x86)\Explorer\iedvtoolex.dll 2017-03-01 20:56 - 2017-03-01 07:02 - 002177208 _____ () C:\Program Files (x86)\Explorer\WINNSI.DLL 2016-12-09 17:01 - 2016-12-09 09:21 - 000368128 _____ () c:\programdata\microsoft\visualstudio\14.0\2052\msmg.dll 2017-04-26 14:03 - 2017-05-31 11:10 - 000348160 _____ () C:\Users\Robek\AppData\Local\background_fault\bf.dll 2014-11-16 12:07 - 2009-02-19 03:17 - 001384520 _____ () C:\Windows\twain_32\Samsung\SCX4600\ssole.dll 2017-10-29 23:47 - 2017-10-19 12:12 - 053018112 _____ () C:\Program Files (x86)\GOG Galaxy\libcef.dll 2017-10-29 23:47 - 2017-11-14 21:21 - 000507968 _____ () C:\Program Files (x86)\GOG Galaxy\PocoUtil.dll 2017-10-29 23:47 - 2017-11-14 21:21 - 000520768 _____ () C:\Program Files (x86)\GOG Galaxy\PocoXML.dll 2017-10-29 23:47 - 2017-11-14 21:16 - 000152128 _____ () C:\Program Files (x86)\GOG Galaxy\expat.dll 2017-10-29 23:47 - 2017-11-14 21:20 - 001589312 _____ () C:\Program Files (x86)\GOG Galaxy\PocoFoundation.dll 2017-10-29 23:47 - 2017-11-14 21:19 - 000425536 _____ () C:\Program Files (x86)\GOG Galaxy\pcre.dll 2017-10-29 23:47 - 2017-11-14 21:24 - 000104000 _____ () C:\Program Files (x86)\GOG Galaxy\zlib.dll 2017-10-29 23:47 - 2017-11-14 21:20 - 000330816 _____ () C:\Program Files (x86)\GOG Galaxy\PocoJSON.dll 2017-10-29 23:47 - 2017-11-14 21:21 - 001076800 _____ () C:\Program Files (x86)\GOG Galaxy\PocoNet.dll 2017-10-29 23:47 - 2017-11-14 21:19 - 001854528 _____ () C:\Program Files (x86)\GOG Galaxy\PocoData.dll 2017-10-29 23:47 - 2017-11-14 21:19 - 000393280 _____ () C:\Program Files (x86)\GOG Galaxy\PocoDataSQLite.dll 2017-10-29 23:47 - 2017-11-14 21:24 - 000680000 _____ () C:\Program Files (x86)\GOG Galaxy\sqlite.dll 2017-10-29 23:47 - 2017-11-14 21:21 - 000307776 _____ () C:\Program Files (x86)\GOG Galaxy\PocoNetSSL.dll 2017-10-29 23:47 - 2017-11-14 21:19 - 000157760 _____ () C:\Program Files (x86)\GOG Galaxy\PocoCrypto.dll 2017-10-29 23:47 - 2017-11-14 21:24 - 000130112 _____ () C:\Program Files (x86)\GOG Galaxy\xdelta3.dll 2017-10-29 23:47 - 2017-11-14 21:21 - 000272448 _____ () C:\Program Files (x86)\GOG Galaxy\PocoZip.dll 2017-10-29 23:47 - 2017-11-14 21:27 - 000104512 _____ () C:\ProgramData\GOG.com\Galaxy\redists\zlib.dll 2017-10-29 23:47 - 2017-11-14 21:27 - 001589312 _____ () C:\ProgramData\GOG.com\Galaxy\redists\PocoFoundation.dll 2017-10-29 23:47 - 2017-11-14 21:27 - 000425536 _____ () C:\ProgramData\GOG.com\Galaxy\redists\pcre.dll 2017-10-29 23:47 - 2017-11-14 21:27 - 000330816 _____ () C:\ProgramData\GOG.com\Galaxy\redists\PocoJSON.dll 2017-10-29 23:47 - 2017-11-14 21:27 - 000507968 _____ () C:\ProgramData\GOG.com\Galaxy\redists\PocoUtil.dll 2017-10-29 23:47 - 2017-11-14 21:27 - 000520768 _____ () C:\ProgramData\GOG.com\Galaxy\redists\PocoXML.dll 2017-10-29 23:47 - 2017-11-14 21:26 - 000152128 _____ () C:\ProgramData\GOG.com\Galaxy\redists\expat.dll 2017-10-29 23:47 - 2017-10-19 12:12 - 001738752 _____ () C:\Program Files (x86)\GOG Galaxy\libglesv2.dll 2017-10-29 23:47 - 2017-10-19 12:12 - 000078848 _____ () C:\Program Files (x86)\GOG Galaxy\libegl.dll 2014-12-09 13:29 - 2012-07-18 06:55 - 001198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2017-05-23 21:55 - 2017-04-19 05:04 - 002864984 _____ () C:\Program Files (x86)\Cupduck\Application\libglesv2.dll 2017-05-23 21:55 - 2017-04-19 05:04 - 000087384 _____ () C:\Program Files (x86)\Cupduck\Application\libegl.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\Users\Robek:Heroes & Generals [38] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2017-09-25 22:23 - 000001253 _____ C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 www.czzsyzgm.com 127.0.0.1 www.czzsyzxl.com 127.0.0.1 union.baidu2019.com 127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 www.czzsyzgm.com 127.0.0.1 www.czzsyzxl.com 127.0.0.1 union.baidu2019.com 0.0.0.1 mssplus.mcafee.com ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-1414513604-550418378-3547991025-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Robek\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 8.8.8.8 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\startupfolder: C:^Users^Robek^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse.lnk => C:\Windows\pss\Curse.lnk.Startup MSCONFIG\startupreg: ChomikBox => C:\Program Files (x86)\ChomikBox\chomikbox.exe MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: GG => "C:\Users\Robek\AppData\Local\GG\Application\gghub.exe" MSCONFIG\startupreg: IPLA! => C:\Program Files (x86)\ipla\ipla.exe /autorun MSCONFIG\startupreg: RaidCall => D:\RaidCall\raidcall.exe MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: WebcamMaxAutoRun => "C:\Program Files (x86)\WebcamMax\wcmmon.exe" -a ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{A89C560C-D05C-47A2-B77E-D4F73E9379B3}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{E664EB30-E651-4F66-A5E0-7ADC2DCE24D4}] => (Allow) C:\Windows\twain_32\Samsung\ScanMgr.exe FirewallRules: [{1A92CD4D-A055-418D-AC92-2B75FEE9750C}] => (Allow) C:\Windows\twain_32\Samsung\ScanMgr.exe FirewallRules: [{953AF194-F8EA-46CF-BFF3-2642A7F622B7}] => (Allow) C:\Windows\twain_32\Samsung\SCX4600\Scan2Pc.exe FirewallRules: [{A5612E8B-9E44-442D-9238-04C07904656A}] => (Allow) C:\Windows\twain_32\Samsung\SCX4600\Scan2Pc.exe FirewallRules: [{1592C508-978A-4793-A28D-BA881A067427}] => (Allow) C:\Windows\twain_32\Samsung\SCX4600\Sscan2io.exe FirewallRules: [{5461072A-1A1F-463F-B85F-0D7969AA8221}] => (Allow) C:\Windows\twain_32\Samsung\SCX4600\Sscan2io.exe FirewallRules: [{0E69C5DD-1B88-46DB-AF10-8D3178DD6BB9}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{16C22B4B-8941-4D55-B578-6B92F7B80B3D}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{82F750B2-7A6A-4FCA-B4F0-FD1A837DBB16}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{1AD3B2BA-AA07-42C0-BC2C-B6E8D4133431}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{984B27F9-4194-4AF9-B9EF-8D563B640208}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{804A3C23-381A-4F51-B233-82B1A9E3BF06}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe FirewallRules: [{79A1BA38-B7C3-4915-A0F3-7F52AA7346D6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe FirewallRules: [{C9323F25-E143-4544-8A6F-0449875E5AEC}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{7496268D-951B-4BDE-A969-7C2D2CD0114B}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{FEF2E411-4BA0-4745-9A25-4AD3872404DE}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [{88E762AD-7EF9-44E5-8F49-E8CDC2CD5E16}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [TCP Query User{01EB30D0-52A7-4C41-BEBA-5DAD8069553E}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe FirewallRules: [UDP Query User{A10C70A3-F425-4FEB-890C-4DF1443C20F9}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe FirewallRules: [TCP Query User{F1F87E48-2F72-4AA8-80C7-19F11DB5D48D}D:\wot\wotlauncher.exe] => (Block) D:\wot\wotlauncher.exe FirewallRules: [UDP Query User{B3A58E6D-A166-433B-B836-3C28061994D5}D:\wot\wotlauncher.exe] => (Block) D:\wot\wotlauncher.exe FirewallRules: [{F6FA4AB5-30E4-45C3-AB07-1345AEFC8A09}] => (Allow) C:\Program Files (x86)\GTX Box Team\FIFA 15\Launcher.exe FirewallRules: [{39FBC301-7523-4453-AC7A-3FC96A0AC94D}] => (Allow) C:\Program Files (x86)\GTX Box Team\FIFA 15\Launcher.exe FirewallRules: [{000157DE-3C3F-465B-AE4E-00A00B025C5C}] => (Allow) C:\Program Files (x86)\GTX Box Team\FIFA 15\fifasetup\fifaconfig.exe FirewallRules: [{88F58F50-1BAF-4244-95DD-7E33DC8399FE}] => (Allow) C:\Program Files (x86)\GTX Box Team\FIFA 15\fifasetup\fifaconfig.exe FirewallRules: [TCP Query User{4F241A5F-890E-4754-9174-4C3540916513}C:\program files (x86)\gtx box team\fifa 15\fifa15.exe] => (Block) C:\program files (x86)\gtx box team\fifa 15\fifa15.exe FirewallRules: [UDP Query User{043D171F-DE0E-4607-BF62-6DB1608EF585}C:\program files (x86)\gtx box team\fifa 15\fifa15.exe] => (Block) C:\program files (x86)\gtx box team\fifa 15\fifa15.exe FirewallRules: [{CA2AA8F2-C304-4C61-92CE-A2C06E601461}] => (Allow) LPort=1886 FirewallRules: [{5F7A4BB6-FA2C-4A31-B76E-0F3EC2756008}] => (Allow) LPort=1886 FirewallRules: [{6C341B1A-3712-4484-8132-AE4197DABD3C}] => (Allow) C:\Program Files (x86)\MyBrowser\MyBrowser\Application\mybrowser.exe FirewallRules: [{72BEEDE3-D608-4919-91F2-C4EB1665509C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{FB2E0442-BD83-4882-9CA0-283ECF3D7F30}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{FF6C61D4-06F4-4F31-A01B-DAD0F4E2EEE0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{B4518E9B-60C8-414E-B49F-176917A49358}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [TCP Query User{C4E56B94-727A-41BF-B6C7-503CD0D7C1D7}C:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe] => (Allow) C:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe FirewallRules: [UDP Query User{9CE3A80D-6CF3-451C-99FC-7834F46630E2}C:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe] => (Allow) C:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe FirewallRules: [{851C15D8-298A-4969-9D32-872590C6EAF2}] => (Allow) C:\Program Files (x86)\Heroes & Generals\live\hng.exe FirewallRules: [{B0A75F03-2F81-4B79-B38A-E44E41F11993}] => (Allow) C:\Program Files (x86)\Heroes & Generals\live\hng.exe FirewallRules: [TCP Query User{0A6A7821-020A-437D-8FC8-83DD3BCB6E48}D:\carbon\nfsc.exe] => (Allow) D:\carbon\nfsc.exe FirewallRules: [UDP Query User{3D7BF55C-4C81-4EF9-933E-5B7170D55B9B}D:\carbon\nfsc.exe] => (Allow) D:\carbon\nfsc.exe FirewallRules: [TCP Query User{B237DBF8-1F41-49FA-A868-890402EEF835}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [UDP Query User{093BC4C9-EFCB-4ABE-B327-C235A8B85512}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [TCP Query User{9B0C96EE-A012-41F7-9A14-6AA8102F6D26}D:\kozacy ii\data\engine.exe] => (Allow) D:\kozacy ii\data\engine.exe FirewallRules: [UDP Query User{3F2EB7AD-1189-4F61-ADFC-1FBCF48E04F5}D:\kozacy ii\data\engine.exe] => (Allow) D:\kozacy ii\data\engine.exe FirewallRules: [TCP Query User{894AF9C9-8871-4D51-BA6C-A193022D66E4}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [UDP Query User{E7E1E5CB-21EA-4EA6-999A-3A7D288A4B06}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [TCP Query User{D55F0D31-CD83-4D44-BAA6-DA92B870A983}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe FirewallRules: [UDP Query User{9437CC36-34DA-4311-ACF1-79EC7DD200FD}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe FirewallRules: [{A66E65C9-A50F-4812-A653-C05EC5A94223}] => (Allow) C:\Program Files (x86)\Instalki.pl\Heroes of Hellas 2 Olympia\F2PHttpDaemon.exe FirewallRules: [{8509C46D-A2E1-40B3-9988-1CB504CCE04F}] => (Allow) C:\Program Files (x86)\Alawar.pl\Heroes Of Hellas\F2PHttpDaemon.exe FirewallRules: [{99348531-4CE4-4C5B-8AF3-F8EE53599E4A}] => (Allow) C:\Program Files (x86)\Instalki.pl\Heroes of Hellas 2 Olympia\F2PHttpDaemon.exe FirewallRules: [TCP Query User{7C8C1427-522E-45B9-8691-8C913DA04942}C:\gry\counter-strike 1.6 v43\hl.exe] => (Allow) C:\gry\counter-strike 1.6 v43\hl.exe FirewallRules: [UDP Query User{C754195D-F894-4B43-A76E-122BD57C233A}C:\gry\counter-strike 1.6 v43\hl.exe] => (Allow) C:\gry\counter-strike 1.6 v43\hl.exe FirewallRules: [TCP Query User{96738E56-CC02-4136-9B3A-85BFFA68E072}D:\wot\worldoftanks.exe] => (Allow) D:\wot\worldoftanks.exe FirewallRules: [UDP Query User{1F4164C9-F9AA-4C84-AC1F-40C3CB18A7F2}D:\wot\worldoftanks.exe] => (Allow) D:\wot\worldoftanks.exe FirewallRules: [TCP Query User{3BE1F2F3-F2A5-408A-B6D4-6547637973E8}D:\wot\worldoftanks.exe] => (Allow) D:\wot\worldoftanks.exe FirewallRules: [UDP Query User{5A2F48B9-C31E-4190-AA9D-49C231C26A4D}D:\wot\worldoftanks.exe] => (Allow) D:\wot\worldoftanks.exe FirewallRules: [{241A3DD8-148C-4129-A86C-FE2015444833}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{BEE8ABC2-BC45-44D2-A45F-8A52ABF0B694}C:\program files (x86)\hotjob\application\chrome.exe] => (Allow) C:\program files (x86)\hotjob\application\chrome.exe FirewallRules: [UDP Query User{EFE2EAA7-0A06-4AFA-BD07-9F69C314B45E}C:\program files (x86)\hotjob\application\chrome.exe] => (Allow) C:\program files (x86)\hotjob\application\chrome.exe FirewallRules: [TCP Query User{259A6F53-6253-4DE9-B063-1E676E9E1E72}C:\program files (x86)\amulec1\amule.exe] => (Block) C:\program files (x86)\amulec1\amule.exe FirewallRules: [UDP Query User{7AEEC250-D626-4D0C-80DF-041C7AFC1543}C:\program files (x86)\amulec1\amule.exe] => (Block) C:\program files (x86)\amulec1\amule.exe FirewallRules: [{A7AE2005-9F80-40DD-AA3C-53CB58416475}] => (Allow) C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe FirewallRules: [{899BBBAC-027F-47A2-877E-ACA8A356EB48}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe FirewallRules: [TCP Query User{862465BC-830B-4DED-A88A-24D6BE6F271D}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe FirewallRules: [UDP Query User{A5CD82CA-5F67-42F9-9B81-0779B1D56D52}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe FirewallRules: [TCP Query User{28135A48-B1AF-49D0-81CF-4C680F47BAF5}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe FirewallRules: [UDP Query User{D34DC66A-8652-44F1-8600-D8E60D629356}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe FirewallRules: [TCP Query User{24DB4EBC-2E89-4460-8F5C-0D1F23C091C0}C:\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\xampp\filezillaftp\filezillaserver.exe FirewallRules: [UDP Query User{99F524E0-E665-4058-8CB7-6745C799BAB1}C:\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\xampp\filezillaftp\filezillaserver.exe FirewallRules: [TCP Query User{72A028C5-B3C4-410C-B37F-9F07131FD7F0}C:\xampp\mercurymail\mercury.exe] => (Allow) C:\xampp\mercurymail\mercury.exe FirewallRules: [UDP Query User{1C7255F6-F1A9-4D31-8E60-13002CE157B1}C:\xampp\mercurymail\mercury.exe] => (Allow) C:\xampp\mercurymail\mercury.exe FirewallRules: [TCP Query User{527AF680-2F97-47A3-B355-350520159CC9}C:\program files (x86)\java\jre1.8.0_111\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_111\bin\java.exe FirewallRules: [UDP Query User{04CC4869-5674-4E59-BE0E-9972FA2D8326}C:\program files (x86)\java\jre1.8.0_111\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_111\bin\java.exe FirewallRules: [{E8CE41AC-3041-4C03-B278-917E7406C7AA}] => (Allow) C:\Program Files (x86)\Mio\loader\st1000lm024xhn-m101mbb_s2smj9cd927401.dat FirewallRules: [{2722DFE2-D0AA-4E47-8800-429A6B273624}] => (Allow) C:\Program Files (x86)\Mio\loader\st1000lm024xhn-m101mbb_s2smj9cd927401.dat FirewallRules: [{AB01F0E9-D9C3-4217-8DC4-2BD614379F4A}] => (Allow) C:\Program Files (x86)\Cupduck\Application\chrome.exe FirewallRules: [{1CA29D82-0D32-4F5E-BB3E-E4901D1B3088}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe FirewallRules: [{B24A64CA-6968-478F-BD35-0B9FC92D7302}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe FirewallRules: [{4ED235E5-0D5A-42F5-8574-2B75CE1243BF}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe FirewallRules: [{8DB55400-91A1-42FD-905F-8F4BF11016F6}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe FirewallRules: [{6FE75B41-93E7-492B-9E88-46B426289A4C}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe FirewallRules: [{7687A0E2-9BBA-4B5E-B010-CDE89F1A017B}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe FirewallRules: [{7B904A39-2D43-40E1-95E5-2652E0C86587}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe FirewallRules: [{0C011E2B-3E6E-4827-B2B4-0E0540EB9277}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe FirewallRules: [{31C2C09C-BEEC-4D53-951E-4FD98EB88B15}] => (Allow) C:\Program Files (x86)\Mio\loader\st1000lm024xhn-m101mbb_s2smj9cd927401.dat FirewallRules: [{4B771D4E-A487-4447-BA4C-3E65D93B9314}] => (Allow) C:\Program Files (x86)\Mio\loader\st1000lm024xhn-m101mbb_s2smj9cd927401.dat FirewallRules: [TCP Query User{52200962-034E-48EC-ACC7-B9E4A18D3C0A}D:\carbon\nfsc.exe] => (Block) D:\carbon\nfsc.exe FirewallRules: [UDP Query User{2B58A6C5-4190-4201-A796-8849C4F34C6C}D:\carbon\nfsc.exe] => (Block) D:\carbon\nfsc.exe FirewallRules: [{8C698900-4EB1-48EE-89B5-4AE373CEF916}] => (Allow) C:\Games\Tomb Raider\TombRaider.exe FirewallRules: [{DE866229-EED4-47F1-9063-8FC397B0E2F6}] => (Allow) C:\Games\Tomb Raider\TombRaider.exe FirewallRules: [{718FB417-1717-48F4-A124-80881445DCA8}] => (Allow) C:\Users\Robek\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{7B8D21A6-2A1A-4F91-BE90-25F26154654E}] => (Allow) C:\Users\Robek\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D9998A5F-9569-4EE9-8196-9B6211E21170}] => (Allow) C:\Users\Robek\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{6783F1A2-A7BE-4902-9D79-AF38BC22ACD1}] => (Allow) C:\Users\Robek\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{5E769915-40D2-4004-B98E-4C69D00A71C1}] => (Allow) C:\Users\Robek\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{E543AC2F-3A5D-422A-97FA-370ECC1AB107}] => (Allow) C:\Users\Robek\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{86B8126B-567F-4C65-A6D2-1C1356382697}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Punkty Przywracania systemu ========================= 19-11-2017 03:00:20 Windows Update 19-11-2017 18:34:21 Operacja przywracania 19-11-2017 19:10:29 Windows Update 19-11-2017 19:29:22 Windows Defender Checkpoint 20-11-2017 14:54:45 Operacja przywracania 21-11-2017 04:15:10 Windows Update 21-11-2017 04:28:51 Windows Defender Checkpoint ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: p1481550202am Description: p1481550202am Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: p1481550202am Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: p1481732029am Description: p1481732029am Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: p1481732029am Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (11/21/2017 06:18:43 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program IEXPLORE.EXE w wersji 11.0.9600.18838 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 1c20 Godzina rozpoczęcia: 01d362ecbaa79efe Godzina zakończenia: 3 Ścieżka aplikacji: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE Identyfikator raportu: Error: (11/20/2017 06:44:19 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Error: (11/19/2017 07:29:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Przetwarzanie wywołania OnIdentity() w obiekcie System Writer przez Usługi kryptograficzne nie powiodło się. Details: AddLegacyDriverFiles: Unable to back up image of binary Symantec Network Security WFP Driver. System Error: Nie można odnaleźć określonego pliku. . Error: (11/19/2017 07:29:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Przetwarzanie wywołania OnIdentity() w obiekcie System Writer przez Usługi kryptograficzne nie powiodło się. Details: AddLegacyDriverFiles: Unable to back up image of binary Symantec Iron Driver. System Error: Nie można odnaleźć określonego pliku. . Error: (11/19/2017 07:29:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Przetwarzanie wywołania OnIdentity() w obiekcie System Writer przez Usługi kryptograficzne nie powiodło się. Details: AddLegacyDriverFiles: Unable to back up image of binary Symantec Eraser Control driver. System Error: Nie można odnaleźć określonego pliku. . Error: (11/19/2017 07:26:02 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Error: (11/19/2017 07:21:41 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Error: (11/18/2017 09:41:26 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program DTLite.exe w wersji 10.5.1.230 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 18e4 Godzina rozpoczęcia: 01d360acc0d9bf94 Godzina zakończenia: 8 Ścieżka aplikacji: C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe Identyfikator raportu: c5051534-cca0-11e7-bcb5-201a06312602 Error: (11/17/2017 09:14:46 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Error: (11/17/2017 04:13:24 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Odmowa dostępu. . To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym. Operacja: Zbieranie danych modułu zapisującego Kontekst: Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220} Nazwa modułu zapisującego: System Writer Identyfikator wystąpienia modułu zapisującego: {54351553-29cf-431f-a303-a1c1e6d7c778} Dziennik System: ============= Error: (11/21/2017 02:41:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa glory niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (11/21/2017 02:41:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa CSHMDR niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (11/21/2017 02:32:28 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Microsoft Cache Services zakończyła działanie; wystąpił następujący błąd: Nie można odnaleźć określonego modułu. Error: (11/21/2017 02:32:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi globalUpdate Update Service (globalUpdate) z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (11/21/2017 02:31:54 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi ShellHWDetection. Error: (11/21/2017 02:28:35 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: cdrom p1481550202am p1481732029am Error: (11/21/2017 02:28:15 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Zerdgeghevse zakończyła działanie; wystąpił następujący błąd: Nie można odnaleźć określonego modułu. Error: (11/21/2017 02:27:10 PM) (Source: Service Control Manager) (EventID: 7003) (User: ) Description: Usługa Kompozycje zależy od następującej usługi: iThemes5. Ta usługa może nie być zainstalowana. Error: (11/21/2017 07:01:23 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: Serwer {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (11/21/2017 04:29:15 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa iThemes5 niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i3-3120M CPU @ 2.50GHz Procent pamięci w użyciu: 49% Całkowita pamięć fizyczna: 8092.85 MB Dostępna pamięć fizyczna: 4094.97 MB Całkowita pamięć wirtualna: 16183.89 MB Dostępna pamięć wirtualna: 11748.54 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:736.1 GB) (Free:279.09 GB) NTFS Drive d: () (Fixed) (Total:195.31 GB) (Free:160.81 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 952C7966) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=736.1 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=195.3 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================