Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 20.06.2018 Uruchomiony przez Jurek (05-07-2018 14:25:37) Uruchomiony z C:\Users\Jurek\Downloads\Programs Windows 7 Ultimate (X64) (2017-08-05 00:15:46) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-4073930929-1170455140-3034316454-500 - Administrator - Disabled) Gość (S-1-5-21-4073930929-1170455140-3034316454-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-4073930929-1170455140-3034316454-1002 - Limited - Enabled) Jurek (S-1-5-21-4073930929-1170455140-3034316454-1000 - Administrator - Enabled) => C:\Users\Jurek ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) @BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.12 - GIGABYTE) µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - ) 4t Tray Minimizer Free 5.52 (HKLM-x32\...\4t Tray Minimizer_is1) (Version: 5.52 - 4t Niagara Software) AdFender (HKLM-x32\...\AdFender) (Version: 1.83 - AdFender, Inc.) Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.1.102.64 - Adobe Systems Incorporated) Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.151 - Adobe Systems Incorporated) Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.) Aegisub 3.2.2 (HKLM-x32\...\{24BC8B57-716C-444F-B46B-A3349B9164C5}_is1) (Version: 3.2.2 - Aegisub Team) Aktualizacje NVIDIA 24.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 24.0.0.0 - NVIDIA Corporation) Hidden Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 382.05 - NVIDIA Corporation) Hidden Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) ASUS Xonar DX Audio Driver (HKLM\...\C-Media Oxygen HD Audio Driver) (Version: - ) BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 3.56.76.1867 - BlueStack Systems, Inc.) Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Licomp EMPiK Multimedia) Hidden Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.7 - Licomp EMPiK Multimedia) Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (HKLM-x32\...\{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}) (Version: 1.6 - Activision) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (HKLM-x32\...\InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}) (Version: - ) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (HKLM-x32\...\{931C37FC-594D-43A9-B10F-A2F2B1F03498}) (Version: 1.7 - Activision) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (HKLM-x32\...\InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}) (Version: - ) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.17 - Piriform) Cool Edit Pro 2.1 (HKLM-x32\...\Cool Edit Pro 2.1) (Version: - ) Crossout Launcher 1.0.3.18 (HKU\S-1-5-21-4073930929-1170455140-3034316454-1000\...\CrossOutLauncher_is1) (Version: - ) Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform) Etron USB3.0 Host Controller (HKLM-x32\...\{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.104 - Etron Technology) Hidden Everything 1.3.4.686 (x64) (HKLM\...\Everything) (Version: - ) ffdshow v1.3.4533 [2014-09-29] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4533.0 - ) Flvto YouTube Downloader (HKLM-x32\...\Flvto YouTube Downloader) (Version: 1.0.9 - Hotger) foobar2000 v1.3.8 (HKLM-x32\...\foobar2000) (Version: 1.3.8 - Peter Pawlowski) IDM Crack 6.27 build 1 (HKLM-x32\...\IDM Crack 6.27 build 1) (Version: build 2 - Crackingpatching.com Team) IDM Patch 6.25 build 03 (HKLM-x32\...\IDM Patch 6.25 build 03) (Version: build 03 - SandySeedings Team) Intel Android Device USB driver (HKLM\...\Intel Android Device USB driver) (Version: 1.1.5 - Intel) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation) Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.) IrfanView 64 (remove only) (HKLM\...\IrfanView64) (Version: 4.42 - Irfan Skiljan) Malwarebytes Anti-Malware wersja 1.65.0.1400 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.65.0.1400 - Malwarebytes Corporation) MEmu (HKLM-x32\...\MEmu) (Version: 5.1.1.0 - Microvirt Software Technology Co. Ltd) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 61.0 - Mozilla) Mozilla Thunderbird 52.8.0 (x86 pl) (HKLM-x32\...\Mozilla Thunderbird 52.8.0 (x86 pl)) (Version: 52.8.0 - Mozilla) Mp3tag v2.79 (HKLM-x32\...\Mp3tag) (Version: v2.79 - Florian Heidenreich) MPC-HC 1.7.9 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.9 - MPC-HC Team) MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD) MTP Porting Kit (HKLM-x32\...\{353B1E6D-7073-4450-8C80-699BD8FCFB49}) (Version: 12.0.0 - Microsoft Corp) My.com Game Center (HKU\S-1-5-21-4073930929-1170455140-3034316454-1000\...\MyComGames) (Version: 3.211 - My.com B.V.) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5 - Notepad++ Team) NVIDIA GeForce Experience 3.5.0.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.5.0.70 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 382.05 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.34.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.26 - NVIDIA Corporation) NVIDIA Sterownik graficzny 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.05 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.5.0.70 - NVIDIA Corporation) Hidden NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.4.8.0 - NVIDIA Corporation) Hidden NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden Obsługa programów Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) ON_OFF Charge B11.0110.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Opera Stable 53.0.2907.110 (HKLM-x32\...\Opera 53.0.2907.110) (Version: 53.0.2907.110 - Opera Software) Pakiet sterowników systemu Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.) Panel sterowania NVIDIA 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 382.05 - NVIDIA Corporation) Hidden PeaZip 6.5.0 (HKLM-x32\...\{5A2BC38A-406C-4A5B-BF45-6991F9A05325}_is1) (Version: 6.5.0 - Giorgio Tani) PeaZip configuration (HKLM-x32\...\{2D812859-07F9-403C-9E8C-47C5057E46C4}_is1) (Version: - Giorgio Tani) Polski pakiet językowy dla programu Microsoft .NET Framework 4.5 PLK (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50709 - Microsoft Corporation) PS3 Media Server (HKLM-x32\...\PS3 Media Server) (Version: 1.90.1 - PS3 Media Server) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.) QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.46.531.2011 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6423 - Realtek Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform) RivaTuner Statistics Server 6.4.1 (HKLM-x32\...\RTSS) (Version: 6.4.1 - Unwinder) Samsung Kies3 (HKLM-x32\...\{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.) Hidden Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.61.0 - Samsung Electronics Co., Ltd.) SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0360 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.5.0.70 - NVIDIA Corporation) Hidden Smart 6 B11.0824.1 (HKLM-x32\...\{3B35725F-C623-4A1E-B5CC-99C0868679E3}) (Version: 1.00.0000 - GIGABYTE) Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.16121.3 - Samsung Electronics Co., Ltd.) Hidden Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.16121.3 - Samsung Electronics Co., Ltd.) SoulseekQt (wersja 2017.2.20) (HKLM-x32\...\{8A4E1646-488C-4E5B-AC31-F784400E8D2D}_is1) (Version: 2017.2.20 - Soulseek LLC) Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform) Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SubEdit - Vista WMP Patch (HKLM-x32\...\SubEdit - Vista WMP Patch_is1) (Version: 1 - Artur Sikora) SubEdit-Player (HKLM-x32\...\SubEdit-Player_is1) (Version: 4072 - Artur Sikora) System Explorer 6.4.1 (HKLM-x32\...\{40F485F7-6478-4896-B0D5-F94BE677EB78}_is1) (Version: - Mister Group) TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.0.6447 - TeamViewer) Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 8.01 - Ghisler Software GmbH) TouchBIOS B11.0824.1 (HKLM-x32\...\{A2EBACDD-09BB-4894-AE25-7168DB3BFA7F}) (Version: 1.00.0000 - GIGABYTE) Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb) VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes) VNC Server 6.2.0 (HKLM\...\{9236C00E-10E1-46C2-829B-8FA8D5F97EE3}) (Version: 6.2.0.29523 - RealVNC Ltd) Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.) WinDirStat 1.1.2 (HKU\S-1-5-21-4073930929-1170455140-3034316454-1000\...\WinDirStat) (Version: - ) xrecode II 1.0.0.223 (HKLM-x32\...\{AFE83615-88BE-47F6-B3E4-A3FEF8B7B57F}_is1) (Version: - ) xrecode II shell extension (1.0.0.9) (HKLM-x32\...\{361F3560-6978-4B17-AEA1-3D766A9C5E68}_is1) (Version: - ) Youtube Downloader HD v. 2.9.9.30 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2017-06-23] (Tonec Inc.) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2017-08-15] () ContextMenuHandlers1: [B1ShellEx] -> {76CF52AF-2B2D-4999-8CE8-495187BB11CD} => C:\Program Files (x86)\B1 Free Archiver\B1Shellext64.dll -> Brak pliku ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2016-03-08] (Piriform Ltd) ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2016-09-24] (Florian Heidenreich) ContextMenuHandlers1: [SAScanShlExt] -> {94243EC1-AEE5-4d44-A6CF-6407ED967FED} => C:\Program Files\SecureAge\AntiVirus\SAScanCtx.dll -> Brak pliku ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG) ContextMenuHandlers1-x32: [xrecodeIIShellExt] -> {9D27511A-CC65-4933-9844-B9F070B63890} => C:\Program Files (x86)\xrecode II\xr2shell.dll [2015-05-20] (xrecode.com) ContextMenuHandlers1-x32: [xrecodeIIShellExt64] -> {9D27511A-CC65-4933-9844-B9F070B63891} => C:\Program Files (x86)\xrecode II\xr2shell64.dll [2015-05-20] (xrecode.com) ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2016-09-24] (Florian Heidenreich) ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG) ContextMenuHandlers2-x32: [xrecodeIIShellExt] -> {9D27511A-CC65-4933-9844-B9F070B63890} => C:\Program Files (x86)\xrecode II\xr2shell.dll [2015-05-20] (xrecode.com) ContextMenuHandlers2-x32: [xrecodeIIShellExt64] -> {9D27511A-CC65-4933-9844-B9F070B63891} => C:\Program Files (x86)\xrecode II\xr2shell64.dll [2015-05-20] (xrecode.com) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll [2012-09-07] (Malwarebytes Corporation) ContextMenuHandlers3: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] () ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2016-09-24] (Florian Heidenreich) ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2015-03-27] (Piriform Ltd) ContextMenuHandlers4-x32: [xrecodeIIShellExt] -> {9D27511A-CC65-4933-9844-B9F070B63890} => C:\Program Files (x86)\xrecode II\xr2shell.dll [2015-05-20] (xrecode.com) ContextMenuHandlers4-x32: [xrecodeIIShellExt64] -> {9D27511A-CC65-4933-9844-B9F070B63891} => C:\Program Files (x86)\xrecode II\xr2shell64.dll [2015-05-20] (xrecode.com) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-05-01] (NVIDIA Corporation) ContextMenuHandlers6: [B1ShellEx] -> {76CF52AF-2B2D-4999-8CE8-495187BB11CD} => C:\Program Files (x86)\B1 Free Archiver\B1Shellext64.dll -> Brak pliku ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2016-03-08] (Piriform Ltd) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll [2012-09-07] (Malwarebytes Corporation) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2015-03-27] (Piriform Ltd) ContextMenuHandlers6: [SAScanShlExt] -> {94243EC1-AEE5-4d44-A6CF-6407ED967FED} => C:\Program Files\SecureAge\AntiVirus\SAScanCtx.dll -> Brak pliku ContextMenuHandlers6: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] () ContextMenuHandlers6-x32: [xrecodeIIShellExt] -> {9D27511A-CC65-4933-9844-B9F070B63890} => C:\Program Files (x86)\xrecode II\xr2shell.dll [2015-05-20] (xrecode.com) ContextMenuHandlers6-x32: [xrecodeIIShellExt64] -> {9D27511A-CC65-4933-9844-B9F070B63891} => C:\Program Files (x86)\xrecode II\xr2shell64.dll [2015-05-20] (xrecode.com) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {3AD7FB5F-7CF6-4637-B5FC-C129D4B72A1D} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [2018-06-26] (BlueStack Systems, Inc.) Task: {875BD8D8-9015-4BFF-8F36-E33626711788} - System32\Tasks\Opera scheduled Autoupdate 1530721879 => C:\Program Files\Opera\launcher.exe [2018-06-26] (Opera Software) Task: {B039333A-D930-4907-B622-3B8CA06ABCAD} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2015-12-07] () (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) Shortcut: C:\Users\Jurek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microchip\Graphics Library v2.01\Application Notes\AN1136 - How to use widgets.lnk -> hxxp://www.microchip.com/stellent/idcplg?IdcService=SS_GET_PAGE&nodeId=1824&appnote=en53212 Shortcut: C:\Users\Jurek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microchip\Graphics Library v2.01\Application Notes\AN1182 - Fonts in the Microchip Graphics Library.lnk -> hxxp://www.microchip.com/stellent/idcplg?IdcService=SS_GET_PAGE&nodeId=1824&appnote=en53508 Shortcut: C:\Users\Jurek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microchip\Graphics Library v2.01\Application Notes\AN1227 - Using a Keyboard with the Microchip Graphics Library.lnk -> hxxp://www.microchip.com/stellent/idcplg?IdcService=SS_GET_PAGE&nodeId=1824&appnote=en53692 Shortcut: C:\Users\Jurek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microchip\Graphics Library v2.01\Application Notes\AN1246 - How to Create Widgets in Microchip Graphics Library.lnk -> hxxp://www.microchip.com/stellent/idcplg?IdcService=SS_GET_PAGE&nodeId=1824&appnote=en53927 Shortcut: C:\Users\Jurek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microchip\Graphics Library v2.01\Application Notes\TB3012 - Conversion of Graphics PICtail for Compatibility with USB PICtail.lnk -> hxxp://www.microchip.com/stellent/idcplg?IdcService=SS_GET_PAGE&nodeId=1824&appnote=en53608 ==================== Załadowane moduły (filtrowane) ============== 2017-08-05 02:35 - 2017-08-05 02:35 - 000008704 _____ () C:\Windows\assembly\GAC_64\GBHO\1.0.0.0__709f1911357dc329\GBHO.dll 2017-09-05 11:42 - 2018-02-08 18:39 - 000066872 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2017-08-05 02:35 - 2009-12-01 14:13 - 000035880 ____N () C:\Program Files (x86)\GIGABYTE\smart6\dbios\SDBMSG.exe 2017-08-05 02:42 - 2007-12-19 04:41 - 000020480 ____R () C:\Windows\system\CMGxMon.exe 2017-08-05 03:00 - 2014-08-06 03:04 - 001441792 ____N () C:\Program Files\Everything\Everything.exe 2016-01-06 18:41 - 2016-01-06 18:41 - 000062168 ____N () C:\Program Files\CCleaner\branding.dll 2016-04-15 20:07 - 2016-04-15 20:07 - 000065536 ____N () C:\Program Files\CCleaner\lang\lang-1045.dll 2017-08-05 02:42 - 2018-07-05 12:00 - 000090112 _____ () C:\Program Files\ASUS Xonar DX Audio\Customapp\MXMon.exe 2017-08-05 02:35 - 2009-06-10 16:28 - 000106496 ____N () C:\Program Files (x86)\GIGABYTE\smart6\dbios\DBIOS.dll 2017-08-05 02:42 - 2018-07-05 12:00 - 000323584 _____ () C:\Program Files\ASUS Xonar DX Audio\CustomApp\cmdevice.dll 2009-07-13 23:03 - 2009-07-14 03:15 - 000364544 _____ () C:\Windows\SysWOW64\msjetoledb40.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\88867374.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\88867374.sys => ""="Driver" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-4073930929-1170455140-3034316454-1000\...\localhost -> localhost ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2017-10-20 02:24 - 2017-10-20 02:24 - 000001326 _____ C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 tonec.com 127.0.0.1 www.tonec.com 127.0.0.1 internetdownloadmanager.com ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-4073930929-1170455140-3034316454-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Jurek\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{EBDFF222-B16B-45A8-B65A-49D59DA5B8D8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{7FD2496D-EE85-4855-AB7B-48ED4CF43C75}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{EBCCA024-3C0E-4BC1-8B24-8EC4F588E938}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{EFBE3483-BBE1-48E3-861E-2A1E4F8937AD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{4CE83941-5257-4FD7-BA22-E6BE76D35B6E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [TCP Query User{A69D2716-57CF-46E8-BABF-AB793AAEE2D2}C:\program files (x86)\gigabyte\@bios\gwflash.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\gwflash.exe FirewallRules: [UDP Query User{FD5ADB39-07FD-4A9D-8B77-7110138B7758}C:\program files (x86)\gigabyte\@bios\gwflash.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\gwflash.exe FirewallRules: [{9DD3CDDF-F75E-4D8D-8BBB-D6D9597FFFD0}] => (Allow) C:\Users\Jurek\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{C6DA56DD-B4B0-4C49-BB08-4D0D2184549A}] => (Allow) C:\Users\Jurek\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D21916BD-52A4-487F-B7E5-6E483FC687C1}] => (Allow) C:\Users\Jurek\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{0FA5B360-7661-4550-AE75-735EEDEB72B4}] => (Allow) C:\Users\Jurek\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{C30DA36E-D3B2-4A17-89F4-03B130447741}] => (Allow) C:\Users\Jurek\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{34EB2936-B6C8-44E0-AD1A-C21105419418}] => (Allow) C:\Users\Jurek\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{88A5EE8A-82BE-4814-8AE7-2C262E69571C}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe FirewallRules: [UDP Query User{552CFF6A-8D7A-4D23-95FF-428F74F060DB}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe FirewallRules: [{0C4822E8-2852-44E3-A490-D104F29F80CC}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe FirewallRules: [{5CFE9601-D87C-4187-A025-497A031C4883}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{FBB2ECA3-B989-406C-A639-4D38EF0D4A19}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe FirewallRules: [UDP Query User{02957051-DA1C-4CE1-8E4D-611DB3C2950D}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe FirewallRules: [{80955442-C729-4F9E-97A0-96C9A8574E60}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [{1672B43E-A7C0-4375-A952-D110117652ED}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [TCP Query User{F911F357-ED19-4916-9AF6-D9AC57C79979}C:\program files (x86)\doom\doomx64.exe] => (Allow) C:\program files (x86)\doom\doomx64.exe FirewallRules: [UDP Query User{ECA675A7-4552-4D61-B909-C023777A4FF2}C:\program files (x86)\doom\doomx64.exe] => (Allow) C:\program files (x86)\doom\doomx64.exe FirewallRules: [TCP Query User{52D4075D-7EDB-491A-9C01-578C907FDFC5}C:\program files (x86)\emule\emule.exe] => (Allow) C:\program files (x86)\emule\emule.exe FirewallRules: [UDP Query User{E8597156-A1C7-4444-AD88-06EB87CA9C27}C:\program files (x86)\emule\emule.exe] => (Allow) C:\program files (x86)\emule\emule.exe FirewallRules: [TCP Query User{709EC22D-5503-4557-89C5-C80DF4274D5F}C:\users\jurek\desktop\nowy folder\emule.exe] => (Allow) C:\users\jurek\desktop\nowy folder\emule.exe FirewallRules: [UDP Query User{330A162C-92DE-4D97-A825-3C34B747218E}C:\users\jurek\desktop\nowy folder\emule.exe] => (Allow) C:\users\jurek\desktop\nowy folder\emule.exe FirewallRules: [TCP Query User{15697BFB-201F-4E9C-9955-F184FC4BC773}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe FirewallRules: [UDP Query User{A3CD8E2A-516F-4A9E-BCF7-51EF2120CE1D}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe FirewallRules: [TCP Query User{F43DFC88-6A26-4A7F-BC42-015E2E80A5E6}D:\gry\call of duty 4 - modern warfare\iw3mp.exe] => (Allow) D:\gry\call of duty 4 - modern warfare\iw3mp.exe FirewallRules: [UDP Query User{57C5D677-EDCB-4A29-9E8C-8AE45A4A1919}D:\gry\call of duty 4 - modern warfare\iw3mp.exe] => (Allow) D:\gry\call of duty 4 - modern warfare\iw3mp.exe FirewallRules: [TCP Query User{8AE738A2-4AFB-4B6F-839A-CF7E95F59148}C:\program files (x86)\secondlife\newview.exe] => (Allow) C:\program files (x86)\secondlife\newview.exe FirewallRules: [UDP Query User{A099A905-B877-457E-9DA6-F30DCF03DA87}C:\program files (x86)\secondlife\newview.exe] => (Allow) C:\program files (x86)\secondlife\newview.exe FirewallRules: [{D4EFBB7A-9132-45F6-8CCD-3633C3C3014A}] => (Allow) C:\Program Files\RealVNC\VNC Server\vncserver.exe FirewallRules: [{7E30D8B5-3A0F-4DE0-A1CE-C1D73982790A}] => (Allow) C:\Program Files\RealVNC\VNC Server\vncserver.exe FirewallRules: [TCP Query User{B8B8DC54-4774-4CA9-A83D-963FC11436EB}C:\program files (x86)\cts games\szone-online\szoneonlinelauncher.exe] => (Allow) C:\program files (x86)\cts games\szone-online\szoneonlinelauncher.exe FirewallRules: [UDP Query User{EA76BE6D-D7AD-433D-936F-3C36855499D2}C:\program files (x86)\cts games\szone-online\szoneonlinelauncher.exe] => (Allow) C:\program files (x86)\cts games\szone-online\szoneonlinelauncher.exe FirewallRules: [TCP Query User{D4D3F37A-5AB6-4581-B5F7-EB5B7518D9C4}C:\program files (x86)\infestationnewz\newzlauncher.exe] => (Allow) C:\program files (x86)\infestationnewz\newzlauncher.exe FirewallRules: [UDP Query User{65940FB9-7DD0-43CD-B93C-85587386FFBF}C:\program files (x86)\infestationnewz\newzlauncher.exe] => (Allow) C:\program files (x86)\infestationnewz\newzlauncher.exe FirewallRules: [TCP Query User{395E6385-49A9-4542-8CF8-60816D60289F}C:\program files (x86)\infestationnewz\newzlauncher.exe.new.exe] => (Allow) C:\program files (x86)\infestationnewz\newzlauncher.exe.new.exe FirewallRules: [UDP Query User{57A3F455-ED25-47D0-91E1-FC5841C4451B}C:\program files (x86)\infestationnewz\newzlauncher.exe.new.exe] => (Allow) C:\program files (x86)\infestationnewz\newzlauncher.exe.new.exe FirewallRules: [{252965C7-D1CA-4163-ABC1-3204CE0310E8}] => (Allow) C:\Program Files (x86)\InfestationNewZ\TheNewZ.exe FirewallRules: [{2AFA9D6F-C6AF-4738-985F-D5DB8F2847B7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{EC90925E-CCA8-4026-AE34-8C913CF549F0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{D603EA78-D8B5-46BB-941F-020249F49FF8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{A66EA361-750A-456A-815B-1355D2749B32}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{EE662A0C-B021-4FB0-8F48-F21C4A119850}] => (Allow) C:\Users\Jurek\AppData\Local\MyComGames\MyComGames.exe FirewallRules: [{438DE1E5-1C74-4768-A76A-03E350D712D4}] => (Allow) C:\Users\Jurek\AppData\Local\MyComGames\MyComGames.exe FirewallRules: [{FF7B8EF4-E547-48B7-8785-1AC2BD97C694}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe FirewallRules: [{DEC5F206-1340-496E-87A8-1841AB630C5A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe FirewallRules: [{A0BD30AC-C53A-45AE-A41D-F272512D0675}] => (Allow) C:\Armored\Warface My.Com\Bin32Release\Game.exe FirewallRules: [{99D630CC-13CD-4DC0-8AE8-8B871D0726A1}] => (Allow) C:\Armored\Warface My.Com\Bin32Release\Game.exe FirewallRules: [{B02E1D18-7AB6-4BDC-AD8C-B46F14260BC3}] => (Allow) C:\Armored\Allods Online EN\bin\AOgame.exe FirewallRules: [{A6970740-5EF5-4ECD-9EE4-AF6F858E10A7}] => (Allow) C:\Armored\Allods Online EN\bin\AOgame.exe FirewallRules: [{2C7358B8-A630-4B84-BC8E-B116CBA74F8B}] => (Allow) C:\Armored\Revelation Online\game\tianyu.exe FirewallRules: [{C602F7B7-B72A-4808-9A02-91AEABAA0555}] => (Allow) C:\Armored\Revelation Online\game\tianyu.exe FirewallRules: [TCP Query User{4AA9EB09-7FD9-4759-96BD-8DB1B2C953CB}C:\program files (x86)\steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe FirewallRules: [UDP Query User{B85242E4-D236-4C0E-BADE-2D42B56F4D03}C:\program files (x86)\steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe FirewallRules: [TCP Query User{E16C388A-03A4-4DB8-B9EA-899DB6485B3F}C:\program files (x86)\steam\steamapps\common\warface\mycomgames\mycomgames.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\mycomgames\mycomgames.exe FirewallRules: [UDP Query User{4D6A84C4-0E7E-4271-98DA-BA80F78C59A0}C:\program files (x86)\steam\steamapps\common\warface\mycomgames\mycomgames.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\mycomgames\mycomgames.exe FirewallRules: [{6884EEC2-32A4-4DAF-9399-FEDBD9A6BD2A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\Warface\Bin32Release\Game.exe FirewallRules: [{F29D05B6-F06B-44ED-AF06-8727C4A2B91F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\Warface\Bin32Release\Game.exe FirewallRules: [{12D3FFA8-921A-4DC8-9B9B-9BD9C2A616A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AAGame.exe FirewallRules: [{CBDCF1B8-6282-4178-8ED6-72A705DC596B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AAGame.exe FirewallRules: [{47AAE90C-7AE2-468C-B4BA-8B417FA4F661}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AALauncher32.exe FirewallRules: [{D9611556-57DA-4571-9005-C07C4F731542}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AALauncher32.exe FirewallRules: [{C340EBC6-6900-470D-A0F6-2F24BA7F2C18}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe FirewallRules: [{FF7E883B-104E-42E5-AF47-ECDFBDC609A9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{2E217AF7-0B8C-451B-927E-23DB0635F83F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{B95DD51D-EC01-46B2-989A-44DF03E042B2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{97FC4DB1-12E7-4935-B643-5A763F2363AB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{86EA4141-22E1-4E14-A6CA-82C6DC305FD8}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{C62E60D8-6F56-452F-AA98-148E41A2CA65}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{52BBEAE8-96C3-4B10-BEE9-47B54A210378}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{8F85FE9C-E9FC-4258-A419-F7CF21EE5BB5}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{9845F2A2-6DD5-4FFE-8EC7-3B4E54451F24}] => (Allow) C:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe FirewallRules: [{A56E8DD2-C536-44ED-A50B-5ACB63AFF883}] => (Allow) C:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe FirewallRules: [TCP Query User{802F551F-D6A0-4616-8212-FB5D1617279B}C:\program files (x86)\ps3 media server\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\ps3 media server\jre\bin\javaw.exe FirewallRules: [UDP Query User{7C110DF4-29DF-47E0-869C-E54900126D90}C:\program files (x86)\ps3 media server\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\ps3 media server\jre\bin\javaw.exe FirewallRules: [TCP Query User{FD3EFC56-B803-446D-B3F3-5D2670DC5450}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe FirewallRules: [UDP Query User{77076CEE-6A79-45D4-9941-7578F95AD902}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe FirewallRules: [{629C2129-5D78-4C84-934B-4D7CF34E9251}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe FirewallRules: [{017FEDC0-CD9C-4B8B-970B-E1CA03E61F06}] => (Allow) C:\Program Files\Opera\53.0.2907.110\opera.exe ==================== Punkty Przywracania systemu ========================= ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (07/05/2018 02:18:27 PM) (Source: VNC Server) (EventID: 256) (User: ) Description: HostedRendezvous: Rendezvous lookup failed: Hosted Bootstrap error: Network failure: Error connecting: getaddrinfo: Żądana nazwa jest prawidłowa, ale dane żądanego typu nie zostały znalezione. (11004) Error: (07/05/2018 02:17:06 PM) (Source: VNC Server) (EventID: 256) (User: ) Description: HostedRendezvous: Rendezvous lookup failed: Hosted Bootstrap error: Network failure: Error connecting: getaddrinfo: Żądana nazwa jest prawidłowa, ale dane żądanego typu nie zostały znalezione. (11004) Error: (07/05/2018 02:16:26 PM) (Source: VNC Server) (EventID: 256) (User: ) Description: HostedRendezvous: Rendezvous lookup failed: Hosted Bootstrap error: Network failure: Error connecting: getaddrinfo: Żądana nazwa jest prawidłowa, ale dane żądanego typu nie zostały znalezione. (11004) Error: (07/05/2018 02:16:06 PM) (Source: VNC Server) (EventID: 256) (User: ) Description: HostedRendezvous: Rendezvous lookup failed: Hosted Bootstrap error: Network failure: Error connecting: getaddrinfo: Żądana nazwa jest prawidłowa, ale dane żądanego typu nie zostały znalezione. (11004) Error: (07/05/2018 02:15:55 PM) (Source: VNC Server) (EventID: 256) (User: ) Description: HostedRendezvous: Rendezvous lookup failed: Hosted Bootstrap error: Network failure: Error connecting: getaddrinfo: Żądana nazwa jest prawidłowa, ale dane żądanego typu nie zostały znalezione. (11004) Error: (07/05/2018 02:15:50 PM) (Source: VNC Server) (EventID: 256) (User: ) Description: HostedRendezvous: Rendezvous lookup failed: Hosted Bootstrap error: Network failure: Error connecting: getaddrinfo: Żądana nazwa jest prawidłowa, ale dane żądanego typu nie zostały znalezione. (11004) Error: (07/05/2018 01:00:19 AM) (Source: SideBySide) (EventID: 63) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "c:\program files (x86)\spybot - search & destroy\DelZip179.dll". Błąd w pliku manifestu lub w pliku zasad "c:\program files (x86)\spybot - search & destroy\DelZip179.dll" w wierszu 8. Wartość "*" atrybutu "language" elementu "assemblyIdentity" jest nieprawidłowa. Error: (07/04/2018 06:31:40 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: ) Description: Nie można wyodrębnić listy głównej innych firm z pliku cab automatycznej aktualizacji z: , wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej. . Dziennik System: ============= Error: (07/05/2018 11:54:50 AM) (Source: DCOM) (EventID: 10000) (User: ) Description: Nie można uruchomić serwera DCOM: {73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}. Błąd: 5 Błąd wystąpił podczas uruchamiania polecenia: C:\Windows\system32\wbem\wmiprvse.exe -Embedding Error: (07/05/2018 11:51:05 AM) (Source: volsnap) (EventID: 36) (User: ) Description: Wykonywanie kopii w tle woluminu C: zostało przerwane, ponieważ nie można powiększyć magazynu kopii w tle z powodu limitu wprowadzonego przez użytkownika. Error: (07/05/2018 10:40:39 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi DES2 Service for Energy Saving. z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (07/04/2018 10:41:14 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Ładowanie sterownika \??\C:\Users\Jurek\Desktop\Nowy folder (5)\x86\UnlockerDriver5. zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika. Error: (07/04/2018 10:41:14 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Ładowanie sterownika \??\C:\Users\Jurek\Desktop\Nowy folder (5)\x86\UnlockerDriver5. zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika. Error: (07/04/2018 08:51:08 PM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT) Description: Odebrano następujący alert krytyczny: 70. Error: (07/04/2018 01:49:21 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Ładowanie sterownika \??\C:\Users\Jurek\Desktop\Nowy folder (5)\x86\UnlockerDriver5. zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika. Error: (07/04/2018 01:49:21 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Ładowanie sterownika \??\C:\Users\Jurek\Desktop\Nowy folder (5)\x86\UnlockerDriver5. zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika. Windows Defender: =================================== Date: 2018-01-27 02:37:41.050 Description: Skanowanie produktu Windows Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania:{D2D2BB8E-AECF-400E-B805-8C07B578A67A} Typ skanowania:Oprogramowanie antyszpiegowskie Parametry skanowania:Szybkie skanowanie Użytkownik:ZARZĄDZANIE NT\USŁUGA SIECIOWA CodeIntegrity: =================================== Date: 2018-07-04 22:41:14.598 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Jurek\Desktop\Nowy folder (5)\x86\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-07-04 22:41:14.596 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Jurek\Desktop\Nowy folder (5)\x86\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-07-04 22:41:14.592 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Jurek\Desktop\Nowy folder (5)\x86\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-07-04 22:41:14.590 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Jurek\Desktop\Nowy folder (5)\x86\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-07-04 13:49:21.436 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Jurek\Desktop\Nowy folder (5)\x86\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-07-04 13:49:21.434 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Jurek\Desktop\Nowy folder (5)\x86\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-07-04 13:49:21.430 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Jurek\Desktop\Nowy folder (5)\x86\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-07-04 13:49:21.428 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Jurek\Desktop\Nowy folder (5)\x86\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-3350P CPU @ 3.10GHz Procent pamięci w użyciu: 31% Całkowita pamięć fizyczna: 4079.12 MB Dostępna pamięć fizyczna: 2801.61 MB Całkowita pamięć wirtualna: 8156.38 MB Dostępna pamięć wirtualna: 6538.54 MB ==================== Dyski ================================ Drive c: (System) (Fixed) (Total:465.66 GB) (Free:5.89 GB) NTFS Drive d: (Pierdolnik) (Fixed) (Total:465.75 GB) (Free:5.96 GB) NTFS Drive e: (Filmy) (Fixed) (Total:931.5 GB) (Free:1.22 GB) NTFS \\?\Volume{f0cceb60-7971-11e7-bb2b-806e6f6e6963}\ (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 539CA5F9) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=0F Extended) ======================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 0004523A) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: D907E4A0) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=0F Extended) ==================== Koniec Addition.txt ============================