Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 02.01.2018 Uruchomiony przez Piotr (06-01-2018 19:18:16) Uruchomiony z C:\Users\Piotr\Downloads Windows 10 Home Wersja 1607 14393.1944 (X64) (2016-08-11 19:37:11) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2321489611-3326169072-3510785222-500 - Administrator - Disabled) Gość (S-1-5-21-2321489611-3326169072-3510785222-501 - Limited - Disabled) Konto domyślne (S-1-5-21-2321489611-3326169072-3510785222-503 - Limited - Disabled) Piotr (S-1-5-21-2321489611-3326169072-3510785222-1001 - Administrator - Enabled) => C:\Users\Piotr ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-2321489611-3326169072-3510785222-1001\...\uTorrent) (Version: 3.5.1.44332 - BitTorrent Inc.) abDocs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.10.2002 - Acer Incorporated) abDocs Office AddIn (HKLM-x32\...\{DCBF3379-246B-47E1-8173-639B63940838}) (Version: 3.02.2001 - Acer Incorporated) abFiles (HKLM-x32\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 2.01.2001 - Acer Incorporated) abMusic (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 3.01.2003.6 - Acer Incorporated) abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 4.00.2001.1 - Acer Incorporated) Acer Care Center (HKLM\...\{A424844F-CDB3-45E2-BB77-1DDE4A091E76}) (Version: 1.00.3012 - Acer Incorporated) Acer Explorer Agent (HKLM\...\{4D0F42CF-1693-43D9-BDC8-19141D023EE0}) (Version: 2.00.3001 - Acer Incorporated) Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.8115 - Acer Incorporated) Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.12.2006 - Acer Incorporated) Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8108 - Acer Incorporated) Acer Quick Access (HKLM\...\{C1FA525F-D701-4B31-9D32-504FC0CF0B98}) (Version: 1.01.3023 - Acer Incorporated) Acer UEIP App Monitor Plugin (HKLM\...\{978724F6-1863-4DD5-9E66-FB77F5AB5613}) (Version: 2.00.3002 - Acer Incorporated) Acer UEIP Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 2.00.3002 - Acer Incorporated) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 18.009.20050 - Adobe Systems Incorporated) Aloha TriPeaks (HKLM-x32\...\WTA-a9240211-6da6-4294-924b-526118ec3d58) (Version: 2.2.0.98 - WildTangent) Hidden AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.25.2001.0 - Acer Incorporated) Avast SecureLine (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 1.0.211.4 - AVAST Software) Bonjour (HKLM\...\{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}) (Version: 2.0.2.0 - Apple Inc.) Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 6.30.223.250 - Broadcom Corporation) calibre 64bit (HKLM\...\{B16F2206-747F-4758-ADA9-76148D2C0C35}) (Version: 3.7.0 - Kovid Goyal) CyberLink PhotoDirector 5 (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5926.02 - CyberLink Corp.) CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.3602.02 - CyberLink Corp.) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0115 - Disc Soft Ltd) DivX Setup (HKLM\...\DivX Setup) (Version: 3.0.0.240 - DivX, LLC) Document Express DjVu Plug-in (HKLM\...\{63D38589-F9D9-4851-A37F-E142A8D14A32}) (Version: 6.1.35472 - Cuminas Corporation) Dropbox 15 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 0.9.0 - Dropbox, Inc.) eBay Worldwide (HKLM-x32\...\{91589413-6675-4C27-8AFC-EFB9103B90A5}) (Version: 2.4.0105 - OEM) ELAN HIDI2C Filter Driver X64 13.6.1.1_WHQL (HKLM\...\Elantech) (Version: 13.6.1.1 - ELAN Microelectronic Corp.) Foxit PhantomPDF (HKLM-x32\...\{2DF18CA8-86F2-4F3A-A1BF-A2A7D39B9161}) (Version: 7.0.49.127 - Foxit Software Inc.) Game Explorer Categories - genres (HKLM-x32\...\WildTangentGameProvider-acer-genres) (Version: 12.0.0.6 - WildTangent, Inc.) Game Explorer Categories - main (HKLM-x32\...\WildTangentGameProvider-acer-main) (Version: 12.0.0.6 - WildTangent, Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 63.0.3239.132 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden Home Makeover (HKLM-x32\...\WTA-74aae9b4-b560-406b-a4f2-74e58942fde3) (Version: 3.0.2.59 - WildTangent) Hidden Hospital Manager (HKLM-x32\...\WTA-14c1a2a0-c695-4453-a9b7-d2fa3423ed6e) (Version: 3.0.2.59 - WildTangent) Hidden Host App Service (HKU\S-1-5-21-2321489611-3326169072-3510785222-1001\...\SweetLabs_AP) (Version: 0.269.8.342 - Pokki) Intel(R) Chipset Device Software (HKLM-x32\...\{5a6a5d15-d5af-417c-b08f-f7e5eb1f98af}) (Version: 10.0.26 - Intel(R) Corporation) Hidden Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10300.137 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4175 - Intel Corporation) Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 2.0.0.1036 - Intel Corporation) Intel(R) USB 3.0 Host Controller Adaptation Driver (HKLM\...\{9472AEE5-5D4D-4329-8BD8-B282FD33B8E0}) (Version: 1.0.0.26 - Intel Corporation) Intel® Security Assist (HKLM-x32\...\{A5830729-36A3-4900-8135-D8A972914342}) (Version: 1.0.0.516 - Intel Corporation) Internet Manager (HKLM-x32\...\Internet Manager) (Version: 22.001.18.17.49 - Huawei Technologies Co.,Ltd) Jewel Match 3 (HKLM-x32\...\WTA-52f74fb4-1785-417c-951f-e9bacec071cc) (Version: 3.0.2.59 - WildTangent) Hidden King Oddball (HKLM-x32\...\WTA-db6ac1a7-947c-456c-a449-669287fbcf45) (Version: 3.0.2.48 - WildTangent) Hidden Magic Academy (HKLM-x32\...\WTA-8e296fc0-52a6-4623-a0eb-bb5d677f10f7) (Version: 2.2.0.98 - WildTangent) Hidden Microsoft Office 365 ProPlus - pl-pl (HKLM\...\O365ProPlusRetail - pl-pl) (Version: 16.0.8827.2099 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2321489611-3326169072-3510785222-1001\...\OneDriveSetup.exe) (Version: 17.3.7290.1212 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Mozilla Firefox 46.0.1 (x86 pl) (HKLM-x32\...\Mozilla Firefox 46.0.1 (x86 pl)) (Version: 46.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 46.0.1 - Mozilla) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.8827.2099 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.8827.2099 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.8827.2099 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0415-0000-0000000FF1CE}) (Version: 16.0.8827.2099 - Microsoft Corporation) Hidden OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Ori and The Blind Forest - Definitive Edition (HKLM-x32\...\1384944984_is1) (Version: 2.0.0.2 - GOG.com) Pokki Start Menu (HKU\S-1-5-21-2321489611-3326169072-3510785222-1001\...\SweetLabs_Start_Menu) (Version: 0.269.8.342 - Pokki) Polar Bowler 1st Frame (HKLM-x32\...\WTA-6cefebda-427c-4793-b5a9-0d7f0c8059f0) (Version: 3.0.2.59 - WildTangent) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.37.1119.2014 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7455 - Realtek Semiconductor Corp.) Rory's Restaurant (HKLM-x32\...\WTA-0743cab1-f1a6-4f26-9a0e-bac4fad70313) (Version: 3.0.2.59 - WildTangent) Hidden Royal Envoy Double Pack (HKLM-x32\...\WTA-9def09f2-eb1e-4bad-a769-cc398498e81f) (Version: 3.0.2.59 - WildTangent) Hidden Skype™ 7.39 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.39.102 - Skype Technologies S.A.) SoulSeek 157 NS 13e (HKLM-x32\...\Soulseek2) (Version: - ) Spotify (HKLM-x32\...\Spotify) (Version: 0.9.6.81.gd359a796 - Spotify AB) The Chronicles of Emerland Solitaire (HKLM-x32\...\WTA-32eb1519-acdf-4626-801b-7119d90b295d) (Version: 3.0.2.51 - WildTangent) Hidden Trinklit Supreme (HKLM-x32\...\WTA-7ebeeb01-eb1a-40d0-94d5-ed17744c394a) (Version: 2.2.0.98 - WildTangent) Hidden Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{DE083343-D24D-4495-919E-18C65EC0F289}) (Version: 2.8.0.0 - Microsoft Corporation) Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version: - WildTangent) Hidden VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) WarThunder (HKU\S-1-5-21-2321489611-3326169072-3510785222-1001\...\WarThunder) (Version: - WarThunder) <==== UWAGA WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.1.220 - Broadcom Corporation) WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent) WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer) (Version: 4.0.11.14 - WildTangent) Hidden WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-wildgames) (Version: 4.1.1.8 - WildTangent) Hidden Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation) Windows Driver Package - Intel Corporation (iagpioe) System (02/28/2015 603.9600.1920.60719) (HKLM\...\F7BD032DC4815E48C8FFD310F4793B930D5F4837) (Version: 02/28/2015 603.9600.1920.60719 - Intel Corporation) Windows Driver Package - Intel Corporation (iai2ce) System (02/28/2015 603.9600.2425.60717) (HKLM\...\358163B8DA80E489A41CAAC6542BF9E6245297EA) (Version: 02/28/2015 603.9600.2425.60717 - Intel Corporation) Windows Driver Package - Intel Corporation (iauarte) System (02/16/2015 603.9600.2426.59928) (HKLM\...\EBFE7C1B6A8869998B8883D5FAFEA855A69722C8) (Version: 02/16/2015 603.9600.2426.59928 - Intel Corporation) WinRAR 5.30 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated) ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated) ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated) ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL -> Brak pliku ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL -> Brak pliku ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL -> Brak pliku ContextMenuHandlers1: [DivXShellExtensionItem] -> {48A8A3B0-57E8-4F2B-A49D-19E02B92377B} => C:\Program Files (x86)\Common Files\DivX Shared\DivXShellExtension64.dll [2017-05-25] (DivX, LLC) ContextMenuHandlers1: [DivXShellExtensionItem64] -> {6B49A276-0DBA-43F4-BC96-A841AD11B40B} => C:\Program Files (x86)\Common Files\DivX Shared\DivXShellExtension64.dll [2017-05-25] (DivX, LLC) ContextMenuHandlers1: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files (x86)\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x64.dll [2015-01-28] (Foxit Software Inc.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (Alexander Roshal) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-09-30] (Intel Corporation) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (Alexander Roshal) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {062403A3-9589-444F-85A2-2AE921C818E5} - System32\Tasks\Opera scheduled Autoupdate 1504274106 => C:\Users\Piotr\AppData\Local\Programs\Opera\launcher.exe Task: {06ACB3C9-DCC9-489D-850A-0763DC4A1BD6} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [2014-06-09] (Acer Incorporated) Task: {17D4575C-3CD8-4F37-8F75-68E41677F09F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA Task: {197F8A16-B7F4-41CB-9684-6AA26488A5A8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe Task: {233B620B-A63B-46E3-9E2B-5C1D87780023} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-12-20] (Microsoft Corporation) Task: {260D4826-F2D6-4CAD-A01E-341A292DB718} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Brak pliku <==== UWAGA Task: {28712C9E-9366-4FD3-9E9E-6B0129C91B82} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated) Task: {30D97C15-FD42-49C4-B8FA-6941B42CA197} - System32\Tasks\abDocsDllLoader => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe [2017-09-28] () Task: {3395345B-FA07-4FB1-BC4F-7345A40FB7AE} - System32\Tasks\Quick Access Quick Launcher => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2015-02-04] (Acer Incorporated) Task: {3480D380-726B-4063-81AE-54626E631D55} - System32\Tasks\SweetLabs App Platform => C:\Users\Piotr\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe [2017-12-13] (Pokki) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {3D1F0460-2CF7-47BC-8BED-4FBBEC793CE3} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Brak pliku <==== UWAGA Task: {4005FAED-147A-4BD2-81B6-98E9D1FA0AA7} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe Task: {49FE31DA-585F-420E-BD46-3C631A5622D8} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [2014-08-30] () Task: {4A5B3171-DA91-4C68-9E7B-726FF08C5E55} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Brak pliku <==== UWAGA Task: {58E7B785-83AA-4D21-AD22-D975C6297664} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe [2015-01-28] (Acer Incorporated) Task: {5D6C48F1-BFA7-4B3D-9A25-DA6049449025} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe Task: {5EEB64CA-7CB4-4DAA-AFB1-01DCB0DA9357} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Brak pliku <==== UWAGA Task: {618A97D5-0DBA-4ED1-B045-F98789891B6A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA Task: {638DFA7E-96FE-4946-886B-B70635DB25BE} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2015-02-04] (Acer Incorporated) Task: {67B057A3-BF05-4F9B-8A27-036C4C795D8D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-04] (Google Inc.) Task: {6B8C206B-AB60-4C96-9836-855097F095AD} - System32\Tasks\psv_Zootrax => cmd.exe /c regedit.exe /s "C:\ProgramData\Viatax\Canjob.reg" & del "C:\ProgramData\Viatax\Canjob.reg" & SCHTASKS /Delete /TN "psv_Zootrax" /F <==== UWAGA Task: {6CA429B6-FD25-4AC3-9FF0-55C6F8E310AD} - System32\Tasks\avast! SL Update => C:\Program Files\AVAST Software\SecureLine\SLUpdate.exe [2016-03-01] (AVAST Software) Task: {6E533C18-0709-4655-9D77-26BE0F11F8B2} - System32\Tasks\DropboxOEM => c:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2014-12-12] () Task: {8E393BEC-D874-42AB-87AC-7047386B3A0C} - System32\Tasks\psv_Stancanlex => cmd.exe /c regedit.exe /s "C:\ProgramData\Viatax\In-Dex.reg" & del "C:\ProgramData\Viatax\In-Dex.reg" & SCHTASKS /Delete /TN "psv_Stancanlex" /F <==== UWAGA Task: {9C569A02-A486-4FDB-B720-94121D4FF34D} - System32\Tasks\Avast SecureLine => C:\Program Files\AVAST Software\SecureLine\SecureLine.exe [2016-05-24] (AVAST Software) Task: {A1306F28-6A3A-43E7-A943-D12BA98C725C} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-12-20] (Microsoft Corporation) Task: {A7F73E31-33A1-40C4-A37E-724F87D0C307} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-04] (Google Inc.) Task: {AB79D6A4-762A-4E3C-9FBB-E137D2981109} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe Task: {AD9D0F02-DA70-4CE4-A6D3-1D861E9636CD} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2014-08-30] () Task: {B2CAAA1B-446C-4F02-BF27-200AF21E431D} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA Task: {B819C36B-33A8-4711-9474-98DA2B15D8B2} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA Task: {BF9755AC-9E6A-4812-ACAC-629A8736BFB4} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2017-10-02] (Acer) Task: {C36BDC64-7A9D-4866-B86A-48B7266EA753} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-12-29] (Microsoft Corporation) Task: {C7F86C88-7038-4180-B47C-5180B4BC2270} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Brak pliku <==== UWAGA Task: {C8F55924-880B-4A5F-8E87-2DDA8FE27D6F} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Brak pliku <==== UWAGA Task: {C9DA07F8-55C5-4E53-87FC-432C25B15BC9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe Task: {D5952736-D70C-4A55-81BD-2287223518FE} - System32\Tasks\psv_Medtom => cmd.exe /c regedit.exe /s "C:\ProgramData\Viatax\Runfresh.reg" & del "C:\ProgramData\Viatax\Runfresh.reg" & SCHTASKS /Delete /TN "psv_Medtom" /F <==== UWAGA Task: {DAEAE7D8-FACA-432D-927D-C3DCD1BA8DA6} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA Task: {DE4CA6D4-A967-4C10-BA7C-AEAC191C43E2} - System32\Tasks\McAfeeLogon => C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe Task: {F7FF304E-1BD2-4359-9902-9E698E85291F} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2017-09-26] (Acer Incorporated) Task: {FC340E78-5DB9-4A9A-BAD6-C778714560B2} - System32\Tasks\DivXUpdate => C:\Program Files (x86)\Common Files\DivX Shared\DivX Update\DivXUpdate.exe [2017-05-26] (DivX, LLC) Task: {FEAEE0E7-C045-4D87-A32A-E0F3FA48E625} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2014-12-30] (Acer Incorporate) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\Piotr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://mmotraffic.com/catalog/goplay/1000932/MTE3NjYvLy8xMDAwOTMy?click_id=6b4b7029d019205253797516675386588bf45038 --start-fullscreen ShortcutWithArgument: C:\Users\Piotr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://mmotraffic.com/catalog/goplay/1000932/MTE3NjYvLy8xMDAwOTMy?click_id=6b4b7029d019205253797516675386588bf45038 --start-fullscreen ==================== Załadowane moduły (filtrowane) ============== 2016-07-16 12:42 - 2016-07-16 12:42 - 000231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2017-09-22 08:59 - 2017-09-07 07:01 - 002681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2014-01-15 04:42 - 2014-01-15 04:42 - 000351824 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe 2015-02-18 23:47 - 2015-02-18 23:47 - 000007680 _____ () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe 2016-05-24 01:04 - 2016-05-24 01:04 - 000592392 _____ () C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe 2015-03-24 14:08 - 2014-10-08 02:27 - 000253776 _____ () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe 2015-03-24 14:17 - 2014-08-23 02:21 - 000111872 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext_x64.dll 2015-09-30 20:39 - 2015-09-30 20:39 - 000415128 _____ () C:\WINDOWS\system32\igfxTray.exe 2016-09-16 13:35 - 2016-09-07 05:56 - 000134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2017-03-16 20:49 - 2017-03-04 07:31 - 000474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2017-03-16 20:51 - 2017-03-04 07:12 - 009760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-03-16 20:51 - 2017-03-04 07:05 - 001401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-03-16 20:51 - 2017-03-04 07:05 - 000757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2017-12-24 07:56 - 2017-11-30 08:32 - 002424832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2017-12-24 07:56 - 2017-11-30 08:34 - 004853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-02-18 23:47 - 2015-02-18 23:47 - 000330240 _____ () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe 2017-09-28 17:21 - 2017-09-28 17:21 - 001769312 _____ () C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe 2018-01-05 14:30 - 2018-01-03 10:20 - 004063064 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.132\libglesv2.dll 2018-01-05 14:30 - 2018-01-03 10:20 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.132\libegl.dll 2017-06-07 04:00 - 2017-06-07 04:00 - 001749504 _____ () C:\Program Files (x86)\DivX\DivX Media Server\avcodec-57.dll 2017-06-07 04:00 - 2017-06-07 04:00 - 002242560 _____ () C:\Program Files (x86)\DivX\DivX Media Server\avformat-57.dll 2017-06-07 04:00 - 2017-06-07 04:00 - 000795648 _____ () C:\Program Files (x86)\DivX\DivX Media Server\avutil-55.dll 2017-06-07 04:00 - 2017-06-07 04:00 - 001947648 _____ () C:\Program Files (x86)\DivX\DivX Media Server\avfilter-6.dll 2017-06-07 04:00 - 2017-06-07 04:00 - 000789504 _____ () C:\Program Files (x86)\DivX\DivX Media Server\swscale-4.dll 2017-06-07 04:00 - 2017-06-07 04:00 - 000068096 _____ () C:\Program Files (x86)\DivX\DivX Media Server\zlib.dll 2017-06-07 04:00 - 2017-06-07 04:00 - 000325632 _____ () C:\Program Files (x86)\DivX\DivX Media Server\swresample-2.dll 2017-05-26 05:02 - 2017-05-26 05:02 - 001293824 _____ () C:\Program Files (x86)\Common Files\DivX Shared\Qt5.6\libGLESv2.dll 2017-09-22 15:14 - 2017-09-22 15:14 - 000202528 _____ () C:\Program Files (x86)\Acer\abPhoto\curllib.dll 2017-09-22 15:17 - 2017-09-22 15:17 - 000654072 _____ () C:\Program Files (x86)\Acer\abPhoto\sqlite3.dll 2017-09-22 15:17 - 2017-09-22 15:17 - 000641312 _____ () C:\Program Files (x86)\Acer\abPhoto\tag.dll 2017-09-22 15:16 - 2017-09-22 15:16 - 000119072 _____ () C:\Program Files (x86)\Acer\abPhoto\OpenLDAP.dll 2017-11-13 19:28 - 2017-11-13 19:28 - 000015136 _____ () C:\WINDOWS\assembly\GAC_MSIL\MyService\1.0.0.1__2dfa3f50f0bed57d\MyService.dll 2017-09-26 12:35 - 2017-09-26 12:35 - 000013088 _____ () C:\Program Files (x86)\Acer\AOP Framework\ServiceInterface.dll 2017-09-26 12:34 - 2017-09-26 12:34 - 000277856 _____ () C:\Program Files (x86)\Acer\AOP Framework\libcurl.dll 2017-10-02 14:56 - 2017-10-02 14:56 - 000202456 _____ () C:\Program Files (x86)\Acer\Acer Portal\curllib.dll 2017-10-02 14:56 - 2017-10-02 14:56 - 000119000 _____ () C:\Program Files (x86)\Acer\Acer Portal\OpenLDAP.dll 2016-05-24 01:04 - 2016-05-24 01:04 - 038907672 _____ () C:\Program Files\AVAST Software\SecureLine\libcef.dll 2017-12-13 17:41 - 2017-12-13 17:41 - 044752080 _____ () C:\Users\Piotr\AppData\Local\SweetLabs App Platform\Engine\libPokki.dll 2017-12-13 17:41 - 2017-12-13 17:41 - 001413856 _____ () C:\Users\Piotr\AppData\Local\SweetLabs App Platform\Engine\avcodec-54.dll 2017-12-13 17:41 - 2017-12-13 17:41 - 000164064 _____ () C:\Users\Piotr\AppData\Local\SweetLabs App Platform\Engine\avutil-51.dll 2017-12-13 17:41 - 2017-12-13 17:41 - 000235744 _____ () C:\Users\Piotr\AppData\Local\SweetLabs App Platform\Engine\avformat-54.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2013-08-22 14:25 - 2013-08-22 14:25 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2321489611-3326169072-3510785222-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\acer01.jpg DNS Servers: 192.168.8.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [UDP Query User{B4D5FF9C-303E-421B-B4D4-C936BE7FA223}C:\program files (x86)\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe] => (Allow) C:\program files (x86)\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe FirewallRules: [TCP Query User{16980B2F-9AB3-44E2-A211-E6984E6BEC88}C:\program files (x86)\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe] => (Allow) C:\program files (x86)\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe FirewallRules: [UDP Query User{EB9A438A-4D65-4C49-A0AF-08839205BF7C}C:\program files (x86)\soulseekns\slsk.exe] => (Allow) C:\program files (x86)\soulseekns\slsk.exe FirewallRules: [TCP Query User{B01CCFE5-CAD7-44DC-90E7-2FD534C4B655}C:\program files (x86)\soulseekns\slsk.exe] => (Allow) C:\program files (x86)\soulseekns\slsk.exe FirewallRules: [{35E3542E-E75B-44F5-810E-FD6D105CB310}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{DF4FCE88-801E-4226-9712-12F255618A3A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{A321716A-8DCD-4F07-9975-B7E8FD74A91C}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{2DC28C8E-2EA4-43BE-A4A4-968DD3566522}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{5C3F4B5F-47CA-49C9-B1F4-28C02C36BDD5}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{6ACF8FE1-2E1A-4E65-BE05-AD256B99C430}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{85C4CA0B-6613-4DF0-AA66-FF546B63360D}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [{C42474A9-9D27-4F79-9893-2252A3831734}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [{46F80A27-08AE-4727-A72F-DF10C6857612}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector12\PDR10.EXE FirewallRules: [{BC8007AF-5C72-4407-A098-B0C7B565EDE3}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{B81E5AA0-EE69-4109-AEAC-8ADCF82566DC}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe FirewallRules: [{A3EAD224-CFDA-46B9-A4AB-0AC2F1AE5F22}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe FirewallRules: [{6D20FBE5-3CD0-46DE-9E58-08357CCBFAF7}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe FirewallRules: [{B08C60F8-232D-495D-A68B-E59F801C82D2}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe FirewallRules: [{DF035506-33C8-402F-8231-3FE320EF5478}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe FirewallRules: [{7FFDF8EF-83C4-4E4D-A9B5-40D16A05DEF8}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe FirewallRules: [{1D989ACB-8C11-4539-A982-F892C5924A42}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe FirewallRules: [{3752B768-B965-4AEF-9969-6B6D5727A149}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe FirewallRules: [{3995E4A5-9EFA-491E-830D-5EC43098FD39}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe FirewallRules: [{DAD14720-BDFE-495C-AD10-1C10B6B2D899}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe FirewallRules: [{EB6E18A4-7CD5-4C90-88BE-4EA97D5382DF}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe FirewallRules: [{2B6B436E-9AF6-4856-9928-9D845CB9AB97}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe FirewallRules: [{B4ABD151-1644-4BED-9C4F-AFCBAE725C64}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe FirewallRules: [{565FA201-A965-4E8F-9DF7-19B5A5519F4B}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe FirewallRules: [{F9EB79BE-2FCE-4E31-B487-92A15890C232}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe FirewallRules: [{8A44D35B-7558-4716-A77B-F85C6C1C7503}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe FirewallRules: [{2EC14392-3E68-4920-A125-0BF45A5DB50D}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe FirewallRules: [{DBE29425-884F-4CD9-A8B9-AE0A3C50024C}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe FirewallRules: [{4606999C-725A-40F5-81D7-69F03C818425}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe FirewallRules: [{6B2D7964-42E2-4580-A849-F458E90BC519}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe FirewallRules: [{25E5BAB2-C827-48C0-BFE6-E28D4676BFCF}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe FirewallRules: [{75BFDB29-7067-416C-9881-AF200C98EAE3}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe FirewallRules: [{74AD0906-FDE3-4B7B-9D02-4E01835A3CF1}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe FirewallRules: [{7E0944FC-3F14-4FAF-8CDB-77D19E8F2C88}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe FirewallRules: [{F6348066-432B-45E8-A47C-E1D84C78DE0D}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe FirewallRules: [{91222C15-8D49-4A96-979E-F7BF74C6B324}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe FirewallRules: [{A1310223-23AB-4242-9AD1-203C6DE0DE58}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe FirewallRules: [{9C4C63EE-598F-496F-9B5B-C1D7D8D4B66E}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe FirewallRules: [{94F36CE5-3C68-4451-A8C3-7ACEE9AFD943}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe FirewallRules: [{531E1140-B317-49CE-BE40-005F3E9BA482}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe FirewallRules: [{DCD053F1-C0BD-48F4-857F-7F4D4B142C9D}] => (Allow) C:\Users\Piotr\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{967B6A00-1B3E-4CAD-8C50-936344D380C9}] => (Allow) C:\Users\Piotr\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{DA0BD500-6F90-4DCA-88F2-9E3BF0CDBBB0}] => (Allow) C:\Users\Piotr\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D87D4351-7E0A-4932-80F7-A55E9AA50F52}] => (Allow) C:\Users\Piotr\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{32C99EE8-0070-46FA-8BB6-F8ACC7FEC730}] => (Allow) C:\Users\Piotr\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{96AFF99E-CFF1-4BC0-9124-B8AAA33AAB9A}] => (Allow) C:\Users\Piotr\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{DC4711E5-5358-4D0D-96DB-EB4AAE398920}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe FirewallRules: [{DA984C29-C570-47C9-9F70-364C95AD37EA}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe FirewallRules: [{F9AAC07D-C881-4CB8-99C3-FAA39E38EEE1}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe FirewallRules: [{55BD3280-149F-4AAA-AF00-54D149B62B6A}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe FirewallRules: [{38C88B01-DA3D-44FB-9777-8E26112ADFFB}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{F1300E1A-C99F-4432-8912-92E652EED594}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{EE9EDA01-F6F1-40B1-BEEF-877CA02664D4}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{89A7BD82-940E-4988-BE1E-E01620FBDC8C}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{6AABDF48-42AE-4D2B-B81E-A291375F16C7}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{97C92F23-A104-4F2F-BDC2-98B2B64308DB}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{C65B9946-1276-4910-972E-ECCDFF15DD64}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{C2A3681B-89D4-40E5-A9D7-5ED88D207561}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{AB6F2C8B-5E62-4BDB-AA2A-217BEE0995D7}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{A9068102-D4C0-48C8-BE42-EC70D74078FC}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{3FA0C272-B4EC-4FC8-9FB7-D523DDFF0ABB}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{7B57644F-D345-4DB7-AA16-76AC91EACE56}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{FA415C91-4DC2-4C7F-82E2-728ED45F2DC5}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{9E3259D9-9814-4D51-9BE9-A4DA0BBEDBBF}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{16341D78-4048-4F46-AEF7-22D49B9A8FEA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{65B025A1-7B91-44BF-A92B-810D911C4494}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{53A0C498-23DC-4877-A070-A5DAA545DE7F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{55326596-8AA7-422A-9777-2AE79F939DD6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{534071B6-AD34-460C-BE46-08CEDC707F9E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{2DC4572B-CCAC-4DCA-8FF8-0E15928699C8}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{4510D303-A905-434D-8268-8C16341D1A7F}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{A054EFE2-1801-4090-AC90-4D7F35AAE65C}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{B73939F0-833B-4E11-AAC7-94624E2CAB5E}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [TCP Query User{58D372FF-DA65-40D5-B1D5-88A8B232A282}C:\program files (x86)\divx\divx media server\divxmediaserver.exe] => (Allow) C:\program files (x86)\divx\divx media server\divxmediaserver.exe FirewallRules: [UDP Query User{EC1246F4-EEB1-40AD-83A9-DC6CF5168891}C:\program files (x86)\divx\divx media server\divxmediaserver.exe] => (Allow) C:\program files (x86)\divx\divx media server\divxmediaserver.exe FirewallRules: [{E4B863A9-2956-427B-B35D-9EE9F19BC237}] => (Allow) C:\Users\Piotr\AppData\Local\Programs\Opera\49.0.2725.47\opera.exe FirewallRules: [{CB2A8405-0986-4ACA-9857-F7D490A20F0D}] => (Allow) C:\Users\Piotr\AppData\Local\Programs\Opera\49.0.2725.64\opera.exe FirewallRules: [{6E2C68E8-42A1-4C9F-9FF3-65B7A0115966}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Punkty Przywracania systemu ========================= 24-12-2017 10:05:09 Windows Update 29-12-2017 23:20:37 Windows Update ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (01/06/2018 07:04:13 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Kacper) Description: Aktywacja aplikacji king.com.CandyCrushSodaSaga_kgqvnymyfvs32!App nie powiodła się. Błąd: -2144927142. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (01/06/2018 07:04:12 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: Kacper) Description: Aplikacja king.com.CandyCrushSodaSaga_1.101.900.0_x86__kgqvnymyfvs32+App nie została uruchomiona w wyznaczonym czasie. Error: (01/06/2018 01:21:42 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Kacper) Description: Aktywacja aplikacji Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI nie powiodła się. Błąd: -2147023174. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (01/05/2018 02:54:36 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: Kacper) Description: Działanie pakietu Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy+CortanaUI zostało zakończone, ponieważ operacja wstrzymywania pakietu trwała zbyt długo. Error: (01/04/2018 07:14:58 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: Kacper) Description: Działanie pakietu Microsoft.Windows.Photos_2017.35063.13610.0_x64__8wekyb3d8bbwe+App zostało zakończone, ponieważ operacja wstrzymywania pakietu trwała zbyt długo. Error: (01/04/2018 07:14:56 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Kacper) Description: Aktywacja aplikacji microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 nie powiodła się. Błąd: -2144927142. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (01/04/2018 07:14:45 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Kacper) Description: Aktywacja aplikacji microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 nie powiodła się. Błąd: -2144927142. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (01/04/2018 01:26:50 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: Kacper) Description: Działanie pakietu Microsoft.Windows.Photos_2017.35063.13610.0_x64__8wekyb3d8bbwe+App zostało zakończone, ponieważ operacja wstrzymywania pakietu trwała zbyt długo. Error: (01/04/2018 12:39:24 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 4633969 Error: (01/04/2018 12:39:24 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 4633969 Dziennik System: ============= Error: (01/06/2018 07:07:20 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Usługa Menedżer pobranych map zawiesiła się podczas uruchamiania. Error: (01/06/2018 07:04:59 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Usługa Optymalizacja dostarczania zawiesiła się podczas uruchamiania. Error: (01/06/2018 07:00:17 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} i identyfikatorem aplikacji APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} użytkownikowi ZARZĄDZANIE NT\SYSTEM o identyfikatorze zabezpieczeń SID (S-1-5-18) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (01/06/2018 06:58:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi ClickToRunSvc z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (01/06/2018 06:58:49 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą ClickToRunSvc. Error: (01/06/2018 06:58:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Internet Manager. RunOuc z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (01/06/2018 06:58:45 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Internet Manager. RunOuc. Error: (01/06/2018 06:58:11 PM) (Source: disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk0\DR0 wystąpił zły blok. Error: (01/06/2018 06:58:07 PM) (Source: disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk0\DR0 wystąpił zły blok. Error: (01/06/2018 06:58:04 PM) (Source: disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk0\DR0 wystąpił zły blok. CodeIntegrity: =================================== Date: 2017-06-20 10:57:50.097 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-06-10 04:45:52.568 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-06-03 22:42:16.476 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-05-27 12:58:33.387 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-05-26 12:21:32.265 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-05-19 12:54:29.831 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-05-15 02:21:50.818 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-05-14 17:25:23.891 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-05-05 19:06:53.515 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-05-04 15:36:00.822 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Pentium(R) CPU N3700 @ 1.60GHz Procent pamięci w użyciu: 51% Całkowita pamięć fizyczna: 4010.02 MB Dostępna pamięć fizyczna: 1958.53 MB Całkowita pamięć wirtualna: 4714.02 MB Dostępna pamięć wirtualna: 2310.16 MB ==================== Dyski ================================ Drive c: (Acer) (Fixed) (Total:450.01 GB) (Free:210.84 GB) NTFS Drive f: (Might and Magic Heroes VII) (CDROM) (Total:11.44 GB) (Free:0 GB) UDF Drive g: (Office 2010) (CDROM) (Total:0.63 GB) (Free:0 GB) CDFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: EF1F6842) Partition: GPT. ==================== Koniec Addition.txt ============================