Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 16.01.2019 01 Uruchomiony przez user (19-01-2019 18:35:29) Uruchomiony z C:\Users\user\Desktop Windows 7 Ultimate Service Pack 1 (X64) (2012-03-26 14:12:03) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-3099186090-2590542960-4084621217-500 - Administrator - Disabled) ASPNET (S-1-5-21-3099186090-2590542960-4084621217-1006 - Limited - Enabled) Gość (S-1-5-21-3099186090-2590542960-4084621217-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3099186090-2590542960-4084621217-1004 - Limited - Enabled) UpdatusUser (S-1-5-21-3099186090-2590542960-4084621217-1001 - Limited - Enabled) => C:\Users\UpdatusUser user (S-1-5-21-3099186090-2590542960-4084621217-1000 - Administrator - Enabled) => C:\Users\user ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - ) µTorrent (HKU\S-1-5-21-3099186090-2590542960-4084621217-1000\...\uTorrent) (Version: 3.4.2.34309 - BitTorrent Inc.) 7-Zip 9.22beta (HKLM-x32\...\7-Zip) (Version: - ) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 19.010.20069 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 19.0.0.190 - Adobe Systems Incorporated) Adobe Flash Player 27 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 27.0.0.130 - Adobe Systems Incorporated) Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated) Adobe Flash Player 31 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 31.0.0.153 - Adobe Systems Incorporated) Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.0.162 - Adobe Systems, Inc.) Aktualizacje NVIDIA 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation) ATI Catalyst Install Manager (HKLM\...\{64555D45-1F57-BF1D-1A5E-BFD4C8C0ADB4}) (Version: 3.0.765.0 - ATI Technologies, Inc.) Audacity 2.0.3 (HKLM-x32\...\Audacity_is1) (Version: 2.0.3 - Audacity Team) Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.1.2360 - AVAST Software) Bandicam (HKLM-x32\...\Bandicam) (Version: 4.0.1.1339 - Bandicam.com) Bandicam MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandicam.com) Bullzip PDF Printer 9.10.0.1629 (HKLM\...\Bullzip PDF Printer_is1) (Version: 9.10.0.1629 - Bullzip) CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform) ChomikBox (HKLM-x32\...\{26050F54-3928-4D9C-849A-C48A9E831E6F}) (Version: 2.0.5.0 - Chomikuj.pl) Colin McRae Rally 2 (HKLM-x32\...\{19B72AA9-985A-11D4-9C8A-00D0B75D1498}) (Version: - ) Colin McRae Rally 2005 (HKLM-x32\...\{15CEC2E1-16AF-11D9-88E4-0004769F25D1}) (Version: 1.1 - Codemasters) CPUID HWMonitor 1.27 (HKLM\...\CPUID HWMonitor_is1) (Version: - ) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.1.0236 - DT Soft Ltd) Delta Force - Black Hawk Down (HKLM-x32\...\{8FE54D21-8254-4CCF-AEE0-066496AE43F4}) (Version: 1.00.000 - ) Delta Force Black Hawk Down Team Sabre (HKLM-x32\...\{6164D2E7-986B-42F5-B3A6-64D5E53FB889}) (Version: 1.00.000 - ) Deluxe Ski Jump 3 v1.7.0 (HKLM-x32\...\Deluxe Ski Jump 3_is1) (Version: 1.7.0 - Mediamond Tmi) Deluxe Ski Jump 4 (HKLM-x32\...\Deluxe Ski Jump 4_is1) (Version: 1.5.1 - Mediamond Tmi) Discord (HKU\S-1-5-21-3099186090-2590542960-4084621217-1000\...\Discord) (Version: 0.0.300 - Discord Inc.) DivX Converter (HKLM-x32\...\{13F3917B56CD4C25848BDC69916971BB}) (Version: 7.1.0 - DivX, Inc.) DivX Converter (HKLM-x32\...\{B13A7C41581B411290FBC0395694E2A9}) (Version: 7.1.0 - DivX, Inc.) DivX Plus DirectShow Filters (HKLM-x32\...\DivX Plus DirectShow Filters) (Version: - DivX, Inc.) DivX Pro 6.8.0 VFW (HKLM-x32\...\divx650vfw_is1) (Version: 6.8.0.14 - ) DivX Setup (HKLM\...\DivX Setup) (Version: 3.0.0.224 - DivX, LLC) DivX Version Checker (HKLM-x32\...\{3FC7CBBC4C1E11DCA1A752EA55D89593}) (Version: 7.1.0.9 - DivX, Inc.) EAX Unified (HKLM-x32\...\EAX Unified) (Version: - ) English to NHL 14 (HKU\S-1-5-21-3099186090-2590542960-4084621217-1000\...\English to NHL 14) (Version: - ) Epic Games Launcher (HKLM-x32\...\{9CBF2816-ED32-4B09-B48C-43D740D5F34E}) (Version: 1.1.147.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Fallout Mod Manager 0.13.21 (HKLM-x32\...\Generic Mod Manager_is1) (Version: - Q, Timeslip) FFmpeg v0.6.2 for Audacity (HKLM-x32\...\FFmpeg for Audacity_is1) (Version: - ) FileZilla Client 3.8.0 (HKLM-x32\...\FileZilla Client) (Version: 3.8.0 - Tim Kosse) FL Studio 10 (HKLM-x32\...\FL Studio 10) (Version: - Image-Line) foobar2000 v1.1.11 (HKLM-x32\...\foobar2000) (Version: 1.1.11 - Peter Pawlowski) Galeria fotografii usługi Windows Live (HKLM-x32\...\{CB3F59BB-7858-41A1-A7EA-4B8A6FC7D431}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden GameShadow (HKLM-x32\...\{F7C1C17E-70E3-475F-BD52-EA554391F15D}) (Version: 2.01.0000 - Nazwa firmy) GameSpy Arcade (HKLM-x32\...\GameSpy Arcade) (Version: - ) Ghost Recon Online (EU) (HKU\S-1-5-21-3099186090-2590542960-4084621217-1000\...\d8be6c3f847d7d92) (Version: 1.33.5597.3 - Ubisoft) GIMP 2.8.8 (HKLM\...\GIMP-2_is1) (Version: 2.8.8 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden HxD Hex Editor wersja 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz) ipla 2.8.7 (HKLM-x32\...\ipla) (Version: 2.8.7 - Redefine Sp z o.o.) iZotope Ozone 4 (HKLM-x32\...\iZotope Ozone 4_is1) (Version: 4.00 - iZotope, Inc.) Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation) JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation) K-Lite Codec Pack 13.5.5 Standard (HKLM-x32\...\KLiteCodecPack_is1) (Version: 13.5.5 - KLCP) KORG Legacy Collection - DIGITAL EDITION v1.0.0 (HKLM-x32\...\KORG Legacy Collection - DIGITAL EDITION v1.0.0 ) (Version: - ) Korg Legacy Collection v1.0.0.2 (HKLM-x32\...\Korg Legacy Collection v1.0.0.2) (Version: - ) LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - ) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc) LightScribe System Software 1.10.13.1 (HKLM-x32\...\{CC4A73BF-938E-4C19-A553-853C035C9BA1}) (Version: 1.10.13.1 - hxxp://www.lightscribe.com) Hidden MadOnion.com/3DMark2001 SE (HKLM-x32\...\{91B323B5-A79C-4D23-BD6D-046C565F9BCF}) (Version: - ) Mafia Game (HKLM-x32\...\Mafia Game) (Version: - ) Mass Effect 3 version 1.5.5427.124 (HKLM-x32\...\Mass Effect 3_is1) (Version: 1.5.5427.124 - Mr DJ) Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Finnish Multilingual Keyboard for Evaluation (HKLM-x32\...\{5348C9C0-8FA2-48E5-A0FE-2D4095AA7115}) (Version: 1.0.3.13 - Microsoft Corp.) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation) Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation) Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110415-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Moorhuhn Kart 3 (HKLM-x32\...\{46376BAF-996E-410E-82B2-5D9E61820E6D}) (Version: 1.00.0000 - ) Mp3tag v2.50 (HKLM-x32\...\Mp3tag) (Version: v2.50 - Florian Heidenreich) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Native Instruments Driver (HKLM-x32\...\Native Instruments Driver) (Version: 1.0.1.288 - Native Instruments) Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: - Native Instruments) Nero 7 Essentials (HKLM-x32\...\{8E72B982-D54F-486F-B35A-C24B6F171045}) (Version: 7.03.0581 - Nero AG) NHL® 09 (HKLM-x32\...\{F2B5A2A7-2DF9-4361-8BD5-362714528B51}) (Version: 2.0.1.0 - Electronic Arts) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.8.1 - Notepad++ Team) NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10 - NVIDIA Corporation) NVIDIA Performance (HKLM-x32\...\InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}) (Version: 6.5 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 311.06 - NVIDIA Corporation) NVIDIA Sterownik graficzny 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.06 - NVIDIA Corporation) Ohm Force - Symptohm VST2 (HKLM-x32\...\Symptohm VST2) (Version: - ) Ohmforce Mobilohm VST v1.04 (HKLM-x32\...\Ohmforce Mobilohm VST v1.04) (Version: - ) OhmForce Ohmygod VST2 (HKLM-x32\...\Ohmygod VST2) (Version: - ) Ohmforce Predatohm VST v1.30 (HKLM-x32\...\Ohmforce Predatohm VST v1.30) (Version: - ) Opera Stable 57.0.3098.116 (HKLM-x32\...\Opera 57.0.3098.116) (Version: 57.0.3098.116 - Opera Software) Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.) Pakiet zgodności dla systemu Office 2007 (HKLM-x32\...\{90120000-0020-0415-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Panel sterowania NVIDIA 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 311.06 - NVIDIA Corporation) Hidden PDF Architect (HKLM-x32\...\{064A929A-4DE8-40CF-A901-BD40C14E4D25}) (Version: 1.1.83.9982 - pdfforge GmbH) PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.1 - pdfforge) PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Hidden PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation) Podstawowe programy Windows Live (HKLM-x32\...\{7A9D47BA-6D50-4087-866F-0800D8B89383}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Podstawowe programy Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation) Polski pakiet językowy dla programu Microsoft .NET Framework 4.5 PLK (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50709 - Microsoft Corporation) Pro Evolution Soccer 2015 (HKLM-x32\...\Pro Evolution Soccer 2015_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91) RadioSure (HKU\S-1-5-21-3099186090-2590542960-4084621217-1000\...\RadioSure) (Version: - ) Real Alternative 1.23 (HKLM-x32\...\RealAlt_is1) (Version: 1.23 - ) reFX Nexus 1.0.0 (HKLM-x32\...\{84D04D4F-2201-4AED-BE9A-FFA62069CA19}_is1) (Version: 1.0.0 - reFX) reFX Nexus 1.0.9 (HKLM-x32\...\reFX Nexus 1.0.9_is1) (Version: - ) Robocraft Launcher version 0.4 (HKU\S-1-5-21-3099186090-2590542960-4084621217-1000\...\{9F101691-69D3-422E-BB5C-8CAD7110781B}_is1) (Version: 0.4 - Freejam Games) Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.) SMoKE Patch 9.2.0 (HKU\S-1-5-21-3099186090-2590542960-4084621217-1000\...\SMoKE Patch 9.2.0) (Version: - ) SMoKE Patch 9.4 (HKLM-x32\...\SMoKE Patch 9.4) (Version: - ) Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation) StrongRecovery 3.8.7.4 (HKLM-x32\...\StrongRecovery_is1) (Version: - Drobinski Maciej StrongRecovery) SUPER © v2012.build.51 (April 7, 2012) wersja v2012.build.51 (HKLM-x32\...\{B93DCF58-AA57-41EC-8D69-B05C66C6312D}_is1) (Version: v2012.build.51 - eRightSoft) SUPER © v2014.build.61+Recorder (2014/06/19) wersja v2014.build (HKLM-x32\...\{8E2A18E2-96AF-8549-4DE7-5C06B75719A4}_is1) (Version: v2014.build.61+Recorder - eRightSoft) swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.17 - TeamSpeak Systems GmbH) Testy B 2016 (HKLM-x32\...\{51c8ad09-d9b5-478f-8dfe-6a5e040d7e7c}_is1) (Version: 6.3.5.120 - Grupa IMAGE Sp. z o.o.) TreeSize Free V3.0.1 (HKLM-x32\...\TreeSize Free_is1) (Version: 3.0.1 - JAM Software) VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden Verbatim GREEN BUTTON 1.68 (HKLM-x32\...\Verbatim GREEN BUTTON_is1) (Version: - Verbatim) VIA Platforma Menedżera urządzeń (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Waves Mercury Bundle (HKLM-x32\...\Waves Mercury Bundle) (Version: 5.0 - Team AiR) WinRAR 5.21 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-3099186090-2590542960-4084621217-1000_Classes\CLSID\{f8d6c273-4772-4ee8-9d4f-adcb0a7e5c50}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-06] (AVAST Software) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-06] (AVAST Software) ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2011-04-18] (Igor Pavlov) ContextMenuHandlers1-x32: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => D:\Program Files (x86)\Notepad++\NppShell_06.dll [2015-04-15] () ContextMenuHandlers1-x32: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-06] (AVAST Software) ContextMenuHandlers1-x32-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-07-24] (Nero AG) ContextMenuHandlers1-x32-x32: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2012-03-11] (Florian Heidenreich) ContextMenuHandlers1-x32-x32-x32: [PDFArchitectExtension] -> {DBDB3433-0E01-40CE-A026-D9F54FAC3CA9} => C:\Program Files (x86)\PDF Architect\ContextMenuExt.dll [2013-04-08] (pdfforge GmbH) ContextMenuHandlers1-x32-x32-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-03-09] (Alexander Roshal) ContextMenuHandlers1-x32-x32-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-03-09] (Alexander Roshal) ContextMenuHandlers2: [IconPackager] -> {2CF9036B-F720-425F-918C-03A336A65FC4} => -> Brak pliku ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2012-03-11] (Florian Heidenreich) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-06] (AVAST Software) ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2011-04-18] (Igor Pavlov) ContextMenuHandlers4-x32: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2012-03-11] (Florian Heidenreich) ContextMenuHandlers4-x32: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> Brak pliku ContextMenuHandlers4-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-03-09] (Alexander Roshal) ContextMenuHandlers4-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-03-09] (Alexander Roshal) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2013-01-18] (NVIDIA Corporation) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-06] (AVAST Software) ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> Brak pliku ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-03-09] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-03-09] (Alexander Roshal) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0F829404-F5B2-450D-957A-0756AD5C34C4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-21] (Google Inc.) Task: {117AA8DD-93BA-4AAA-9AE5-546C4C864F0E} - System32\Tasks\Opera scheduled Autoupdate 1493915677 => C:\Program Files\Opera\launcher.exe [2019-01-09] (Opera Software) Task: {16A0078C-D34A-4088-8222-C44669FA50A1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-11-24] (Adobe Systems Incorporated) Task: {1C4A1047-EB95-45B7-9AFA-392C9ED1B915} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {4382ACA3-45B0-479F-A572-79C442750D02} - System32\Tasks\CleanMem Mini Monitor => C:\Users\user\Desktop\CleanMem.2.4.3.Portable\mini_monitor.exe [2013-09-28] (PcWinTech.com) Task: {445F7214-C4F5-4F06-97EB-FAAD3B443A2F} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2019-01-06] (AVAST Software) Task: {6C0D92DE-3B33-4CD5-836B-BDB6FE16CA75} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_153_pepper.exe [2018-11-24] (Adobe Systems Incorporated) Task: {7C11900B-3A6B-46B2-B6F7-56E46EA9EF62} - System32\Tasks\{BDB8E18C-8A48-4856-B754-801A435D2EC4} => C:\Users\user\Desktop\PES2015ScreenResolution.exe Task: {8154EEA3-DF33-4C40-857B-41DC757D54AF} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2017-09-22] () Task: {82A70137-FD82-4204-A290-4B6C63BC2488} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated) Task: {95257B6A-E199-4505-A0A6-AAD58FFB17B1} - System32\Tasks\{8D534665-47AC-4BD4-8FDA-9CF0AB7685F8} => D:\Pro Evolution Soccer 2016\PES2016.exe Task: {B20BFDFE-C307-4D3B-A8A2-7E40E8CC859F} - System32\Tasks\Call Recorder => C:\Windows\system32\rundll32.exe "C:\Users\user\AppData\Local\Call Recorder\xBin\CallRecorder.dll",#3 <==== UWAGA Task: {C0810EC5-5DE6-4011-B504-2C38EF47FE94} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-09-10] (Piriform Ltd) Task: {C769E834-CCAD-48B2-98FE-3173006560D4} - System32\Tasks\DivXUpdate => C:\Program Files (x86)\Common Files\DivX Shared\DivX Update\DivXUpdate.exe [2017-03-07] (DivX, LLC) Task: {C8B467A9-46FD-4EAB-AD03-31681DCFC5DE} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe Task: {CDBC7F9C-3521-4F8A-AE7B-23B745C977BA} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2019-01-16] (AVAST Software) Task: {CE5A8578-373B-4BC9-9BCF-89BF34A6D7B8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-21] (Google Inc.) Task: {D9499529-1053-46F4-A537-14F6571CFE36} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-09-10] (Piriform Ltd) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Clean System Memory.job => C:\WINDOWS\syswow64\CleanMem.exe ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 10\Image-Line website.lnk -> hxxp://www.image-line.com Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 10\Advanced\Diagnostic.lnk -> hxxp://www.image-line.com/diagnosti Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 10\Additional\Download Deckadance.lnk -> hxxp://www.deckadance.com Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 10\Additional\SynthMaker website.lnk -> hxxp://www.synthmaker.co.uk ==================== Załadowane moduły (filtrowane) ============== 2019-01-06 19:48 - 2019-01-06 19:48 - 000667016 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll 2019-01-19 14:07 - 2019-01-19 14:07 - 006937744 _____ () C:\Program Files\AVAST Software\Avast\defs\19011902\algo64.dll 2019-01-06 19:48 - 2019-01-06 19:48 - 000550792 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll 2019-01-06 19:48 - 2019-01-06 19:48 - 001175944 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll 2019-01-06 19:48 - 2019-01-06 19:48 - 001967496 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll 2012-11-19 04:56 - 2013-01-18 16:00 - 000087328 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2017-01-26 08:26 - 2017-01-26 08:26 - 000075784 _____ () C:\Windows\system32\bdmpega64.acm 2019-01-06 19:49 - 2019-01-06 19:49 - 093695912 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2012-03-26 16:57 - 2018-09-10 17:36 - 000091520 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll 2019-01-11 13:31 - 2019-01-09 07:52 - 000688216 _____ () C:\Program Files\Opera\57.0.3098.116\opera_elf.dll 2019-01-11 13:31 - 2019-01-11 13:30 - 107562072 _____ () C:\Program Files\Opera\57.0.3098.116\opera_browser.dll 2019-01-11 13:31 - 2019-01-11 13:30 - 004991576 _____ () C:\Program Files\Opera\57.0.3098.116\libglesv2.dll 2019-01-11 13:31 - 2019-01-11 13:30 - 000116824 _____ () C:\Program Files\Opera\57.0.3098.116\libegl.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\Users\user:Heroes & Generals [38] AlternateDataStreams: C:\ProgramData\TEMP:D1B5B4F1 [112] AlternateDataStreams: C:\Users\Public\AppData:CSM [464] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) HKLM\...\regfile\DefaultIcon: C:\Windows\regedit.exe,1 <==== UWAGA HKLM\...\batfile\DefaultIcon: C:\Windows\SysWow64\imageres.dll,-68 <==== UWAGA ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2019-01-04 16:05 - 000000825 _____ C:\Windows\system32\drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\ProgramData\Oracle\Java\javapath;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Common Files\DivX Shared\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\Skype\Phone\ HKU\S-1-5-21-3099186090-2590542960-4084621217-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\user\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == Załączenie wejścia w fixlist spowoduje jego usunięcie. MSCONFIG\startupreg: 20131121 => C:\Program Files\AVAST Software\Avast\setup\emupdate\da7c587f-74e9-4d6d-ad2f-70edc2f7259b.exe /check MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: DivXMediaServer => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe MSCONFIG\startupreg: FlashPlayerUpdate => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_7_700_224_Plugin.exe -update plugin MSCONFIG\startupreg: HDAudDeck => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r MSCONFIG\startupreg: LightScribe Control Panel => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden MSCONFIG\startupreg: Razer Comms => C:\Program Files (x86)\Razer\Core\RazerCore.exe /ChatApplet MSCONFIG\startupreg: Steam => "D:\Program Files (x86)\Steam\Steam.exe" -silent MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: V0520Pin.dll => RunDLL32.exe V0520Pin.dll,RunDLL32EP 514,/d:4 ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{757161DA-50C1-4DD2-9FF8-AD3AF7CA6159}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation) FirewallRules: [{55CCB318-A4DB-48A3-8F6C-0F0D30142FBA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation) FirewallRules: [{3402417C-D2A8-4ADE-81C3-54CBADD5A391}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.) FirewallRules: [{E19147A2-2690-4F7A-A847-4B5C7365F768}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.) FirewallRules: [TCP Query User{4BED18FB-9D68-40F0-B452-14992A01429D}C:\program files (x86)\phenomedia\moorhuhn kart 3\game\moorhuhn_kart3.exe] => (Allow) C:\program files (x86)\phenomedia\moorhuhn kart 3\game\moorhuhn_kart3.exe () FirewallRules: [UDP Query User{305AD022-2F94-4088-AB40-A26AA78A3B01}C:\program files (x86)\phenomedia\moorhuhn kart 3\game\moorhuhn_kart3.exe] => (Allow) C:\program files (x86)\phenomedia\moorhuhn kart 3\game\moorhuhn_kart3.exe () FirewallRules: [{C75F3E15-0DCE-4F2D-BA5D-225E0D8724C4}] => (Block) C:\program files (x86)\phenomedia\moorhuhn kart 3\game\moorhuhn_kart3.exe () FirewallRules: [{39B1A64E-FA72-4D24-A183-A7D24F660BD8}] => (Block) C:\program files (x86)\phenomedia\moorhuhn kart 3\game\moorhuhn_kart3.exe () FirewallRules: [{C00286D8-6897-448F-88B5-B7D9C2465636}] => (Allow) C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) FirewallRules: [{436A9655-CA30-4EDE-879F-D64C5A29EED5}] => (Allow) C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) FirewallRules: [{5BBC0BFE-65DC-40D6-8A7F-1A4FF1DC5327}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation) FirewallRules: [{D2530169-7192-49AC-98C8-F952E6144F38}] => (Allow) LPort=2869 FirewallRules: [{99664F8A-71B3-4BCD-A637-84B1C237C3B5}] => (Allow) LPort=1900 FirewallRules: [TCP Query User{C06E98C5-6FA9-4161-A72C-7C7ECE03130E}C:\users\user\appdata\local\radiosure\radiosure.exe] => (Allow) C:\users\user\appdata\local\radiosure\radiosure.exe (TheBestWare Studio) FirewallRules: [UDP Query User{9428A9F8-C80E-42E3-80AC-2F64A5B58A55}C:\users\user\appdata\local\radiosure\radiosure.exe] => (Allow) C:\users\user\appdata\local\radiosure\radiosure.exe (TheBestWare Studio) FirewallRules: [TCP Query User{1F59CA4C-DAB3-4B79-A0A5-96D13C257F10}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Corporation) FirewallRules: [UDP Query User{FCF73B8B-5B30-4EBB-916F-7391334F3DD1}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Corporation) FirewallRules: [{56E6E6E7-7345-4727-98E3-308B108F136D}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation) FirewallRules: [{C1C397F1-587C-4CD7-9E66-EEEBDE50776E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation) FirewallRules: [TCP Query User{AD48FD31-7F1D-4CAB-ADE2-C1E56DB00949}C:\program files (x86)\nero\nero 7\nero home\nerohome.exe] => (Block) C:\program files (x86)\nero\nero 7\nero home\nerohome.exe (Nero AG) FirewallRules: [UDP Query User{F19F1733-6C28-4916-B9B3-1F632D475686}C:\program files (x86)\nero\nero 7\nero home\nerohome.exe] => (Block) C:\program files (x86)\nero\nero 7\nero home\nerohome.exe (Nero AG) FirewallRules: [TCP Query User{1ADC9776-3AC6-4E83-A7E1-32C4506B6586}C:\users\user\appdata\local\apps\2.0\98n0vm7p.y7v\klqy3dqe.5rn\laun...app_59711684aa47878d_0001.0021_0a29c44eb469bfd0\launcher.exe] => (Allow) C:\users\user\appdata\local\apps\2.0\98n0vm7p.y7v\klqy3dqe.5rn\laun...app_59711684aa47878d_0001.0021_0a29c44eb469bfd0\launcher.exe (Ubisoft) FirewallRules: [UDP Query User{8F08CD0E-54ED-4708-BCA3-2A99A15E46CC}C:\users\user\appdata\local\apps\2.0\98n0vm7p.y7v\klqy3dqe.5rn\laun...app_59711684aa47878d_0001.0021_0a29c44eb469bfd0\launcher.exe] => (Allow) C:\users\user\appdata\local\apps\2.0\98n0vm7p.y7v\klqy3dqe.5rn\laun...app_59711684aa47878d_0001.0021_0a29c44eb469bfd0\launcher.exe (Ubisoft) FirewallRules: [TCP Query User{774AC913-6D9E-44A2-828F-D172302FB59F}C:\program files (x86)\media player classic\mplayerc.exe] => (Block) C:\program files (x86)\media player classic\mplayerc.exe (Gabest) FirewallRules: [UDP Query User{5498C7C5-0B25-4161-9799-CAC227AE5037}C:\program files (x86)\media player classic\mplayerc.exe] => (Block) C:\program files (x86)\media player classic\mplayerc.exe (Gabest) FirewallRules: [TCP Query User{5A37CC19-0225-44BC-8069-3CF15EF3319B}C:\users\user\appdata\local\apps\2.0\98n0vm7p.y7v\klqy3dqe.5rn\laun...app_59711684aa47878d_0001.0021_69ddb507cab74b90\launcher.exe] => (Allow) C:\users\user\appdata\local\apps\2.0\98n0vm7p.y7v\klqy3dqe.5rn\laun...app_59711684aa47878d_0001.0021_69ddb507cab74b90\launcher.exe (Ubisoft) FirewallRules: [UDP Query User{D563A8E2-C4D1-4982-948D-C8F8D7EB5C60}C:\users\user\appdata\local\apps\2.0\98n0vm7p.y7v\klqy3dqe.5rn\laun...app_59711684aa47878d_0001.0021_69ddb507cab74b90\launcher.exe] => (Allow) C:\users\user\appdata\local\apps\2.0\98n0vm7p.y7v\klqy3dqe.5rn\laun...app_59711684aa47878d_0001.0021_69ddb507cab74b90\launcher.exe (Ubisoft) FirewallRules: [{DFCC875D-8DDA-459E-87DA-353DB33FCB5D}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve Corporation) FirewallRules: [{0AE92BDE-5D3A-4A21-96DF-D111832F9C59}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve Corporation) FirewallRules: [TCP Query User{7FD79192-44F6-4E72-BC5F-15AAAB1684A0}C:\windows\syswow64\dpnsvr.exe] => (Allow) C:\windows\syswow64\dpnsvr.exe (Microsoft Corporation) FirewallRules: [UDP Query User{EE48C087-B8BD-4196-A5A3-8B625DEE4F97}C:\windows\syswow64\dpnsvr.exe] => (Allow) C:\windows\syswow64\dpnsvr.exe (Microsoft Corporation) FirewallRules: [{3C0BE1A6-8E65-4E0D-BDEC-9D8A7A7F85AB}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.) FirewallRules: [{5DDCF6F7-0720-455E-A8F8-261E5D318FEF}] => (Allow) LPort=80 FirewallRules: [{8E81B81F-964C-4574-97FE-ABDAD5176C04}] => (Allow) LPort=443 FirewallRules: [{3179FD66-CC58-4B06-9755-81BA17CAB23B}] => (Allow) LPort=20010 FirewallRules: [{3BFF6795-58D5-4F32-ACF5-19B3FA8425A1}] => (Allow) LPort=3478 FirewallRules: [{5B96D05E-1F96-444D-B68B-DF05B6D3A314}] => (Allow) LPort=7850 FirewallRules: [{C51A661B-C78B-4FAA-A2DA-E8B7B100CB38}] => (Allow) LPort=7852 FirewallRules: [{6741B9FB-F581-401E-933F-B924C69A9574}] => (Allow) LPort=7853 FirewallRules: [{36CC7FBD-0B4D-4B3B-A640-FCB6E710A61F}] => (Allow) LPort=27022 FirewallRules: [{B15797DF-E791-41EB-BA64-551DF19A1F58}] => (Allow) LPort=6881 FirewallRules: [{887C62B8-C162-4507-8CB0-A5FE8A42BE95}] => (Allow) LPort=33333 FirewallRules: [{CF1689F8-A438-476F-B9AC-54E338A75522}] => (Allow) LPort=20443 FirewallRules: [{837C1768-6017-46D8-AB0F-DC88C3D405E0}] => (Allow) LPort=8090 FirewallRules: [{0397BAEB-DEBF-4E87-A08B-D85C09360D55}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe () FirewallRules: [{D84A6574-4183-498F-AAB1-91A543908E06}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe () FirewallRules: [TCP Query User{8C042440-E2B8-4801-B19D-AC723B26D451}C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe (Oracle Corporation) FirewallRules: [UDP Query User{33524509-0699-49F6-8209-FC2EF7952D17}C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe (Oracle Corporation) FirewallRules: [{AFC1BD09-2234-4A3C-8C9D-5525D7F2E26A}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation) FirewallRules: [{46D884FA-8D9D-439C-A915-A847F1595EE9}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation) FirewallRules: [{039824A6-C9B2-44D4-9B4A-5AB9F598C256}] => (Allow) D:\Program Files (x86)\Mr DJ\Mass Effect 3\Binaries\Win32\MassEffect3.exe (BioWare) FirewallRules: [{4DFD01DF-48CF-4BD1-A69F-729B078872F8}] => (Allow) D:\Program Files (x86)\Mr DJ\Mass Effect 3\Binaries\Win32\MassEffect3.exe (BioWare) FirewallRules: [TCP Query User{BD87FA86-013F-44AE-829D-748AB5EC81BB}D:\program files (x86)\steam\steamapps\common\war thunder\win32\aces.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\war thunder\win32\aces.exe (Gaijin Entertainment) FirewallRules: [UDP Query User{FE061585-3B57-4630-8E57-3DEA156BF27A}D:\program files (x86)\steam\steamapps\common\war thunder\win32\aces.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\war thunder\win32\aces.exe (Gaijin Entertainment) FirewallRules: [{0EC04244-ACFA-466A-9EE8-C231C8732ECD}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Deceit\bin\win_x64\Deceit.exe (Crytek GmbH) FirewallRules: [{0E12062D-4B6B-4ECD-B7EE-79AC6F482B5B}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Deceit\bin\win_x64\Deceit.exe (Crytek GmbH) FirewallRules: [TCP Query User{2740DD33-AFE3-47FC-8C56-2E894FF1DEBB}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe () FirewallRules: [UDP Query User{68F0FA4E-2FCF-41B3-AAB9-EE431555AF76}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe () FirewallRules: [TCP Query User{5DA6FF41-05E7-4550-9BD6-C39F7E63F0C9}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe () FirewallRules: [UDP Query User{4F2A4C36-18E6-4DB4-8960-F9676904B49C}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe () FirewallRules: [{31B26917-3119-4DBA-8F3E-2C3701A692EB}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software) FirewallRules: [{8CCD4028-79C5-4C58-83FE-1B342643EB2E}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software) FirewallRules: [{5A0489B3-DC33-4819-BB4A-35991570FFC9}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Ltd) FirewallRules: [{F703650B-EEB4-449D-83E9-7BAC3A60A118}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Ltd) FirewallRules: [{F59B8395-5789-43DF-8699-EADFFE5F3A17}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) FirewallRules: [{9D4B8E9C-2E2F-48AF-BD23-BCF0818399EC}] => (Allow) C:\Program Files\Opera\57.0.3098.106\opera.exe (Opera Software) FirewallRules: [{F10F668A-6FFD-4F35-B218-CF588EEA3641}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software) FirewallRules: [{92B8CDE1-2698-4677-9E6C-0CEBEA987A6C}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software) ==================== Punkty Przywracania systemu ========================= UWAGA: Przywracanie systemu jest wyłączone ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: avast! Firewall NDIS Filter Miniport Description: avast! Firewall NDIS Filter Miniport Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: ALWIL Software Service: aswNdis Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (01/19/2019 01:07:38 PM) (Source: ESENT) (EventID: 489) (User: ) Description: taskhost (3000) WebCacheLocal: Próba otwarcia pliku "C:\Users\user\AppData\Local\Microsoft\Windows\WebCache\V01.log" w trybie tylko do odczytu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error: (01/19/2019 01:07:28 PM) (Source: ESENT) (EventID: 490) (User: ) Description: taskhost (3000) WebCacheLocal: Próba otwarcia pliku "C:\Users\user\AppData\Local\Microsoft\Windows\WebCache\V01.log" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error: (12/20/2018 08:11:14 PM) (Source: ESENT) (EventID: 489) (User: ) Description: CCleaner64 (2292) Próba otwarcia pliku "C:\Users\user\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat" w trybie tylko do odczytu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error: (12/11/2018 12:29:05 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „c:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Składnik 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (12/08/2018 03:07:42 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „c:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Składnik 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (12/07/2018 12:32:35 PM) (Source: ESENT) (EventID: 489) (User: ) Description: taskhost (1444) WebCacheLocal: Próba otwarcia pliku "C:\Users\user\AppData\Local\Microsoft\Windows\WebCache\V01.log" w trybie tylko do odczytu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error: (12/07/2018 12:32:25 PM) (Source: ESENT) (EventID: 490) (User: ) Description: taskhost (1444) WebCacheLocal: Próba otwarcia pliku "C:\Users\user\AppData\Local\Microsoft\Windows\WebCache\V01.log" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error: (12/05/2018 02:13:07 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: CCleaner64.exe, wersja: 5.46.0.6652, sygnatura czasowa: 0x5b8031e7 Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.18247, sygnatura czasowa: 0x521eaf24 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000000000004e4e4 Identyfikator procesu powodującego błąd: 0x5d4 Godzina uruchomienia aplikacji powodującej błąd: 0x01d48c9bf6cbd094 Ścieżka aplikacji powodującej błąd: C:\Program Files\CCleaner\CCleaner64.exe Ścieżka modułu powodującego błąd: C:\Windows\SYSTEM32\ntdll.dll Identyfikator raportu: 8132254c-f88f-11e8-8ad5-6c626d44eaae Dziennik System: ============= Error: (01/19/2019 06:28:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi NVIDIA Update Service Daemon z powodu następującego błędu: Usługa nie została uruchomiona z powodu nieudanego logowania. Error: (01/19/2019 06:28:42 PM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Usługa nvUpdatusService nie może zalogować się jako .\UpdatusUser za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu: Błąd logowania: określone hasło konta wygasło. Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC). Error: (01/19/2019 06:26:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi MBAMChameleon z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (01/19/2019 04:05:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi NVIDIA Update Service Daemon z powodu następującego błędu: Usługa nie została uruchomiona z powodu nieudanego logowania. Error: (01/19/2019 04:05:14 PM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Usługa nvUpdatusService nie może zalogować się jako .\UpdatusUser za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu: Błąd logowania: określone hasło konta wygasło. Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC). Error: (01/19/2019 04:02:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi MBAMChameleon z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (01/19/2019 02:23:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi MBAMChameleon z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (01/19/2019 02:23:00 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 14:17:06 na ‎2019-‎01-‎19 było nieoczekiwane. Windows Defender: =================================== Date: 2012-04-08 18:57:17.987 Description: Podczas skanowania produktu Windows Defender wykryto program szpiegujący lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: http://go.microsoft.com/fwlink/?linkid=37020&name=Program:Win32/PowerRegScheduler&threatid=9940 Nazwa:Program:Win32/PowerRegScheduler Id.:9940 Ważność:Średni Kategoria:Potencjalnie niechciane oprogramowanie Znaleziona ścieżka:containerfile:C:\Users\user\AppData\Local\Temp\{AC022549-45D0-4470-89E7-EAAC103B02E7}\{8FE54D21-8254-4CCF-AEE0-066496AE43F4}\NOVG.EXE;file:C:\Users\user\AppData\Local\Temp\{AC022549-45D0-4470-89E7-EAAC103B02E7}\{8FE54D21-8254-4CCF-AEE0-066496AE43F4}\NOVG.EXE->[RSRCEmb];process:pid:4964 Typ wykrycia:Konkretne Źródło wykrycia:Ochrona w czasie rzeczywistym Stan:Nieznane Użytkownik:\ Nazwa procesu: Date: 2012-05-23 12:37:42.644 Description: Produkt Windows Defender napotkał błąd podczas próby załadowania podpisów i podejmie próbę powrotu do znanego zestawu dobrych podpisów. Podpisy objęte próbą:Bieżące Kod błędu:0x80070002 Opis błędu:Nie można odnaleźć określonego pliku. Wersja podpisu:0.0.0.0 Wersja aparatu:0.0.0.0 Date: 2012-04-08 21:31:47.836 Description: Produkt Windows Defender napotkał błąd podczas podejmowania akcji względem programu szpiegującego lub innego potencjalnie niechcianego oprogramowania. Aby uzyskać więcej informacji, zobacz: http://go.microsoft.com/fwlink/?linkid=37020&name=Program:Win32/PowerRegScheduler&threatid=9940 Użytkownik:user-Komputer\user Nazwa:Program:Win32/PowerRegScheduler Identyfikator:9940 Ważność:Średni Kategoria:Potencjalnie niechciane oprogramowanie Ścieżka: Akcja:Usuń Kod błędu:0x80508023 Opis błędu:Program nie znalazł na komputerze oprogramowania szpiegującego ani innego potencjalnie niechcianego oprogramowania. Stan: CodeIntegrity: =================================== Date: 2016-09-20 22:14:40.200 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswHdsKe.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-20 22:14:40.199 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswHdsKe.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: AMD Athlon(tm) II X2 250 Processor Procent pamięci w użyciu: 55% Całkowita pamięć fizyczna: 4095.18 MB Dostępna pamięć fizyczna: 1842.28 MB Całkowita pamięć wirtualna: 8188.54 MB Dostępna pamięć wirtualna: 5850.3 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:74.12 GB) (Free:17.17 GB) NTFS Drive d: (Dysk lokalny) (Fixed) (Total:200.2 GB) (Free:25.28 GB) NTFS Drive e: (KAROL NIE MA TU WSTĘPU ) (Fixed) (Total:191.35 GB) (Free:21.44 GB) NTFS \\?\Volume{b1245f23-774c-11e1-bbd2-806e6f6e6963}\ (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: F2FEAA69) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=74.1 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=200.2 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=191.3 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================