Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:15-09-2015 Uruchomiony przez P.P. le Swad (2015-09-20 16:34:44) Uruchomiony z G:\Users\P.P. le Swad\Desktop\antywir Windows 7 Professional Service Pack 1 (X64) (2009-12-19 18:03:12) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-1397970861-2929257963-3791639479-500 - Administrator - Disabled) Gość (S-1-5-21-1397970861-2929257963-3791639479-501 - Limited - Enabled) HomeGroupUser$ (S-1-5-21-1397970861-2929257963-3791639479-1007 - Limited - Enabled) P.P. le Swad (S-1-5-21-1397970861-2929257963-3791639479-1000 - Administrator - Enabled) => G:\Users\P.P. le Swad ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: AVG AntiVirus Free Edition 2015 (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG AntiVirus Free Edition 2015 (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKLM-x32\...\uTorrent) (Version: 1.8.5 - ) µTorrent (HKU\S-1-5-21-1397970861-2929257963-3791639479-1000\...\uTorrent) (Version: 3.4.5.41073 - BitTorrent Inc.) 2T2R 11n USB Adapter (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 1.5.12.0 - PENTAGRAM) 64 Bit HP CIO Components Installer (Version: 6.2.2 - Hewlett-Packard) Hidden Adobe Flash Player 18 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 18.0.0.232 - Adobe Systems Incorporated) Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated) Adobe Reader XI (11.0.12) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated) Advanced Archive Password Recovery (HKU\S-1-5-21-1397970861-2929257963-3791639479-1000\...\Advanced Archive Password Recovery) (Version: 4.50 - ElcomSoft Co. Ltd.) AMD Catalyst Install Manager (HKLM\...\{0BD776F3-057D-4C11-020C-4FA9B13D04F9}) (Version: 3.0.855.0 - Advanced Micro Devices, Inc.) Archiwizator WinRAR (HKLM\...\WinRAR archiver) (Version: - ) Ashampoo Burning Studio 2010 Advanced (HKLM-x32\...\Ashampoo Burning Studio 2010 Advanced_is1) (Version: 9.2.4 - ashampoo GmbH & Co. KG) ATI AVIVO64 Codecs (Version: 10.12.0.41124 - ATI Technologies Inc.) Hidden ATI Stream Profiler 1.4 (HKLM-x32\...\{36CB8B27-3781-4AFA-91A6-D324668F567D}) (Version: 1.4 - Advanced Micro Devices, Inc) ATI Stream SDK v2 Samples (HKLM-x32\...\{4FB6028B-A459-1AAD-4704-917E8FC5E94F}) (Version: 2.2.0.0 - ATI Technologies Inc.) AVG 2015 (HKLM\...\AVG) (Version: 2015.0.6140 - AVG Technologies) AVG 2015 (Version: 15.0.4419 - AVG Technologies) Hidden AVG 2015 (Version: 15.0.6140 - AVG Technologies) Hidden Baldur's Gate II - Edycja kolekcjonerska (HKLM-x32\...\Baldur's Gate II - Edycja kolekcjonerska) (Version: - ) Baldur's Gate II - Tron Bhaala (HKLM-x32\...\{3CB1D980-79F3-11D5-8CC5-00C0CA129740}) (Version: - ) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.) Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.) Combined Community Codec Pack 2010-10-10 (HKLM-x32\...\Combined Community Codec Pack_is1) (Version: 2010.10.10.0 - CCCP Project) Crusader Kings 2 Collection (HKLM-x32\...\{6317A09E-6066-47A3-806F-469938C2A02B}_is1) (Version: - Paradox Interactive) EASEUS Partition Master 9.1.0 Home Edition (HKLM-x32\...\EASEUS Partition Master Home Edition_is1) (Version: - EASEUS) EasyCleaner (HKLM-x32\...\{F5346614-B7C4-4E94-826A-E2363155233D}) (Version: 2.0.6.380 - ToniArts) EPSON Attach To Email (HKLM-x32\...\InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5}) (Version: 1.01.0000 - SEIKO EPSON) EPSON Attach To Email (x32 Version: 1.01.0000 - SEIKO EPSON) Hidden EPSON File Manager (HKLM-x32\...\{D02F30FB-0BC4-419A-9B9C-ADC610029B50}) (Version: 1.3.2.0 - ) EPSON Scan Assistant (HKLM-x32\...\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}) (Version: 1.10.00 - ) Foxit Reader (HKLM-x32\...\{549197A2-8484-426C-814F-81A6535A24D6}) (Version: 4.2.0.928 - Foxit Corporation) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.93 - Google Inc.) Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) HydraVision (x32 Version: 4.2.128.0 - ATI Technologies Inc.) Hidden J2SE Runtime Environment 5.0 Update 6 (HKLM-x32\...\{3248F0A8-6813-11D6-A77B-00B0D0150060}) (Version: 1.5.0.60 - Sun Microsystems, Inc.) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office PowerPoint 2003 Template Pack 1 (HKLM-x32\...\{90AB0409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.5614.0 - Microsoft Corporation) Microsoft Office PowerPoint 2003 Template Pack 2 (HKLM-x32\...\{90AC0409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.5614.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Mozilla Firefox 40.0.3 (x86 pl) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 pl)) (Version: 40.0.3 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3 - Mozilla) Odinstaluj drukarkę EPSON S22 Series (HKLM\...\EPSON S22 Series) (Version: - SEIKO EPSON Corporation) Odinstaluj SAGEM Wi-Fi 11g USB adapter (sterownik) (HKLM-x32\...\{E2AA331E-E10E-438C-B1C0-24B2FFD3D9C4}) (Version: - ) Passware Kit Professional 12.3 (HKLM-x32\...\{FFFF4FFA-3CC9-4EC1-845A-8B24027820E3}) (Version: 12.3.6332 - Passware) PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.2.1 - Frank Heindörfer, Philip Chinery) PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation) RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden RealPlayer (HKLM-x32\...\RealPlayer 12.0) (Version: - RealNetworks) RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden Sagem Wi-Fi 11g USB adapter (driver) (HKLM-x32\...\{2ED60C17-4568-4CD5-830A-03C4688B09A1}) (Version: - ) SAGEM Wi-Fi 11g USB adapter (driver) (HKLM-x32\...\{7421E270-0140-4F62-AE39-ECB9F1C81B35}) (Version: - ) Smart CD Catalog 2.56 Professional (HKLM-x32\...\Smart CD Catalog Professional_is1) (Version: - Abaiko Software) SopCast 3.4.0 (HKLM-x32\...\SopCast) (Version: 3.4.0 - www.sopcast.com) Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Visual C++ 8.0 Runtime Setup Package (x64) (HKLM-x32\...\{2FDBBCEA-62DB-45F4-B6E5-0E1FB2A1F29D}) (Version: 9.0.0.623 - AVG Technologies CZ, s.r.o.) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Punkty Przywracania systemu ========================= ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ___AC G:\Windows\system32\Drivers\etc\hosts ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {03C15C91-C9FF-4485-A9F4-A3FAFDCDD840} - System32\Tasks\{336FE1D0-6006-448C-AA16-E27E7D1268CD} => F:\setup.exe Task: {078C7777-E32B-4157-B7AB-049E0E0BA723} - System32\Tasks\{7E375A4E-ACA1-4C6E-90D6-3EB62A8032DB} => F:\setup.exe Task: {07BDE423-9326-4A3D-8630-248C54E138BB} - System32\Tasks\GoogleUpdateTaskMachineCore => G:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-17] (Google Inc.) Task: {0AF87CC6-66C6-451C-9616-9F55423FBA18} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-1397970861-2929257963-3791639479-1000 => G:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2011-03-29] (RealNetworks, Inc.) Task: {0C10A072-AF44-4BC3-B331-51364400B565} - System32\Tasks\{30CA1709-5454-47B3-B339-434F997FA749} => D:\Autorun.exe Task: {1C13DE06-B1C8-4132-AC73-8A0EFFE5776A} - System32\Tasks\ReclaimerUpdateFiles_P.P. le Swad => G:\Users\P.P. le Swad\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\14.00\agent\rnupgagent.exe [2015-09-16] (RealNetworks, Inc.) Task: {28D70298-E02F-46D2-A0DA-D3C653FA6211} - System32\Tasks\{BBA0A901-18B0-483F-9624-4C91D8B77C06} => F:\setup.exe Task: {2C4AA946-AA4C-43DD-918D-FF822B965DCE} - System32\Tasks\{138E3BFD-5249-4C24-881C-50AAEF1C3DF7} => C:\Program Files (x86)\Bioware Corp\Baldour's Gate\Baldur.exe Task: {2EFDAF3C-478C-4FEF-9F69-A61A18DAA9C6} - System32\Tasks\ReclaimerUpdateXML_P.P. le Swad => G:\Users\P.P. le Swad\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\14.00\agent\rnupgagent.exe [2015-09-16] (RealNetworks, Inc.) Task: {4657D252-12D1-4DF3-8B55-ED4D9B051CB4} - System32\Tasks\{A8BF8E92-8E6B-42FC-9CA3-09A2C6F753F0} => pcalua.exe -a F:\setup.exe -d F:\ Task: {4BFD0D24-AB9B-4D70-A109-142506110EFE} - System32\Tasks\Adobe Acrobat Update Task => G:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated) Task: {52122551-1992-4BC5-B3B3-5F37D18C80A9} - System32\Tasks\GoogleUpdateTaskMachineUA => G:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-17] (Google Inc.) Task: {548AE802-9145-43D4-B27A-38EDB0A33C1F} - System32\Tasks\{0BC374AF-A876-43DC-A093-61CD337048CC} => F:\setup.exe Task: {58CE0FE9-8A0F-427F-AE65-415F8A820F1E} - System32\Tasks\{162BB5B0-0509-46A9-88F7-925A3D866416} => F:\Autorun.exe Task: {5904D810-1233-4353-9DE0-3F9A1B7EFB08} - System32\Tasks\{93913232-9767-4DD7-ADA2-D98233B59FB1} => F:\setup.exe Task: {59DEA21A-456E-4207-A756-83E743129B08} - System32\Tasks\{96297951-4885-487A-BE74-CFC787520595} => G:\Users\P.P. le Swad\Desktop\poclbm_py2exe_20110709\poclbm.exe Task: {637A7374-4C65-4ECA-9CEF-60CABCDA4150} - System32\Tasks\{A8DD9AE8-4D46-4826-AD73-ACE38794AE23} => F:\setup.exe Task: {67D8E848-962E-4A6D-B88E-900569CA2BA6} - System32\Tasks\RNUpgradeHelperLogonPrompt_P.P. le Swad => G:\Users\P.P. le Swad\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\14.00\agent\rnupgagent.exe [2015-09-16] (RealNetworks, Inc.) Task: {699A92BD-66FC-4288-B892-D9FD47CC7171} - System32\Tasks\Adobe Flash Player Updater => G:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-17] (Adobe Systems Incorporated) Task: {7AD93743-F9E3-4D13-9943-274C8D421EF5} - System32\Tasks\{575C2891-489C-40F9-877E-9DD8C4085330} => F:\setup.exe Task: {7D2288FF-CCA4-4691-92D2-19FDBA8C79E7} - System32\Tasks\{A225E2A2-717F-44B1-ADE0-45A979DFBBCF} => D:\Autorun.exe Task: {8884D769-8BEE-478A-9C27-2BD627C291DE} - System32\Tasks\{666EF9B0-C14F-4E6D-9C70-BBDD88E4578D} => F:\setup.exe Task: {88DD780D-6DA6-4FC0-B8DC-32149A4CE0A1} - System32\Tasks\RNUpgradeHelperResumePrompt_P.P. le Swad => G:\Users\P.P. le Swad\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\14.00\agent\rnupgagent.exe [2015-09-16] (RealNetworks, Inc.) Task: {897C6B63-38B1-4F2A-979D-75CE59E2FA4C} - System32\Tasks\{DEA7C2A3-B3A2-43E8-98F2-6D9E668B7E69} => F:\setup.exe Task: {8EEA8816-2CEA-4A19-848B-CE03DFD52BC7} - System32\Tasks\{5CB0B8E2-3BA9-423D-A6DD-783AE4FD81F6} => F:\setup.exe Task: {95BB0C90-97D8-4615-B4EF-DFFF8532E288} - System32\Tasks\{A3646734-5508-4C91-BEC2-88527E29370D} => pcalua.exe -a D:\Start.exe -d D:\ Task: {95F38BB0-6352-435E-B6E9-1487BC218185} - System32\Tasks\{2E1A524B-0D50-4853-9F26-E9CE91117A98} => pcalua.exe -a "G:\Users\P.P. le Swad\Desktop\epson374893eu.exe" -d "G:\Users\P.P. le Swad\Desktop" Task: {9B7FA0A7-2EC9-43A5-B3FC-26C4917E4C9F} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-1397970861-2929257963-3791639479-1000 => G:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2011-03-29] (RealNetworks, Inc.) Task: {A1EFC060-773A-47D7-99D2-176FCF3D8A39} - System32\Tasks\{5C0F7119-BB4E-4F91-8D95-A06B33EB61AD} => F:\setup.exe Task: {A46E9526-7564-4491-9C9D-33F6C6195484} - System32\Tasks\{EE1AF83C-5B0B-443E-8A44-DD4A3500867C} => F:\Autorun.exe Task: {A4CAD17E-611D-412C-A0F7-C7688895DE82} - System32\Tasks\{CA8F090B-F074-4288-B8BB-05AEF9CE6FDE} => pcalua.exe -a "G:\Users\P.P. le Swad\Downloads\eMule0.49c-Installer2.exe" -d "G:\Users\P.P. le Swad\Downloads" Task: {AC864EC3-133A-4907-9DD8-47CE1DC90226} - System32\Tasks\{CFF3D5AC-3AE8-4813-A74B-A1EBFC7F8965} => pcalua.exe -a D:\Setup.exe -d D:\ Task: {B15F9315-5090-4F80-8E03-4070B109CA03} - System32\Tasks\{4E727E8A-5FF3-43DC-84A6-4C8388FB1380} => F:\setup.exe Task: {B5D076EC-DA40-42FA-865A-CFE13A67CA08} - System32\Tasks\{99919784-3A0F-4D9B-B558-42BE918FF927} => F:\setup.exe Task: {B8E774AF-694A-4958-95D2-5E5D7871ACD6} - System32\Tasks\{AE5B6D93-0DB5-4273-9799-2133BEC016EE} => F:\Autorun.exe Task: {BACB8054-07C3-4902-8464-D9CF1C60A2CC} - System32\Tasks\{B3C78DC8-A221-40E5-B1DE-C73F1E58142B} => pcalua.exe -a G:\PROGRA~2\DAP\DAPREMOVE.EXE Task: {C122F7B3-380C-4AE6-B5AD-1C594BC2EE64} - System32\Tasks\{26193D81-60F0-4847-9CD0-7E5AFA1E368F} => F:\setup.exe Task: {C2E1AC6F-4CD1-4AF2-885D-85A0B85D7464} - System32\Tasks\{207FF885-E359-4761-B776-3C552E4A0970} => F:\setup.exe Task: {C8671519-5A98-453D-9147-DCB450123EEA} - System32\Tasks\{C66069B4-94AA-4BE7-9EE1-6C3F60EB4ED8} => G:\Users\P.P. le Swad\Desktop\poclbm_py2exe_20110709\poclbm.exe Task: {CD9355BC-F43F-4EC5-8CC7-580998DD8F13} - System32\Tasks\{74BC0602-8F96-4A90-9BC4-9513D5461E37} => G:\Users\P.P. le Swad\Desktop\poclbm_py2exe_20110709\poclbm.exe Task: {D05F975F-9D2B-4197-9410-8134B73FB9A5} - System32\Tasks\{2F7A2524-FF32-406F-BE0F-B0C342243382} => D:\Autorun.exe Task: {E1146CA9-A565-4F6C-ADF3-BE8F632DC7EC} - System32\Tasks\{E76855F5-A215-41FB-BB0E-C8784C41EF21} => F:\setup.exe Task: {E441D9E6-438F-4DBE-B591-BB686462002C} - System32\Tasks\{E47FA55B-D70F-43B9-A33E-5B7ECFF76EB4} => pcalua.exe -a "G:\Users\P.P. le Swad\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EVNOGPIF\epson374893eu.exe" -d "G:\Users\P.P. le Swad\Desktop" Task: {E83D58BB-7714-4ED6-97DE-AAAC088C98CA} - System32\Tasks\{DCEE1A61-E1AF-4EE2-8893-057BA651712E} => F:\setup.exe Task: {EDC6CED3-D562-4BA0-87F4-13B195463DF7} - System32\Tasks\{7901A433-4E1E-4644-8191-EAEB2BE3DAA6} => F:\setup.exe Task: {FF1A963E-283D-4CB8-A9E1-747A7A05AB2E} - System32\Tasks\{8CA68B4D-E2F0-49CA-84DA-3B7A79FF23BB} => F:\Autorun.exe (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: G:\Windows\Tasks\Adobe Flash Player Updater.job => G:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: G:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => G:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: G:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => G:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Załadowane moduły (filtrowane) ============== 2011-05-31 00:06 - 2005-03-12 01:07 - 00087040 _____ () G:\Windows\System32\pdfcmnnt.dll 2011-11-09 23:10 - 2011-11-09 23:10 - 00369152 ____C () G:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll 2015-06-03 17:57 - 2015-06-03 17:57 - 00072192 ____C () G:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.Utils.dll 2015-06-03 17:57 - 2015-06-03 17:57 - 00178176 ____C () G:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.Business.dll 2015-06-03 17:57 - 2015-06-03 17:57 - 00040448 ____C () G:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.adblocker.dll 2015-06-03 17:57 - 2015-06-03 17:57 - 00067072 ____C () G:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SysInfo.dll 2015-06-03 17:57 - 2015-06-03 17:57 - 00026624 ____C () G:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.Repositories.dll 2015-06-03 17:57 - 2015-06-03 17:57 - 00009216 ____C () G:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.Utils.SqlLite.dll 2015-06-03 17:57 - 2015-06-03 17:57 - 00117248 ____C () G:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.PUP.Management.dll 2015-07-22 13:26 - 2011-05-04 19:53 - 01058664 ____C () G:\Program Files (x86)\PENTAGRAM\P6132-14\RaWLAPI.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: G:\ProgramData\Temp:553CA6CA AlternateDataStreams: G:\ProgramData\Temp:E8BE05FA ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-1397970861-2929257963-3791639479-1000\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-1397970861-2929257963-3791639479-1000\...\webcompanion.com -> hxxp://webcompanion.com ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-1397970861-2929257963-3791639479-1000\Control Panel\Desktop\\Wallpaper -> DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows - funkcja włączona. ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{2BE86E0A-5B15-46FD-BB67-429376A38E64}] => (Allow) G:\Program Files (x86)\uTorrent\uTorrent.exe FirewallRules: [{EF7B2CE6-ED86-476A-8600-57A31193CC81}] => (Allow) G:\Program Files (x86)\uTorrent\uTorrent.exe FirewallRules: [{F24A3747-E8E2-4AFC-AD5D-1841D2589615}] => (Allow) G:\Users\P.P. le Swad\Desktop\PDFConverterSetup.exe FirewallRules: [{51311F0A-3D9C-4C4B-8A29-152B980FA01A}] => (Allow) G:\Users\P.P. le Swad\Desktop\PDFConverterSetup.exe FirewallRules: [{D2045468-9F6D-42A3-B6AE-8E60B63A5A07}] => (Allow) G:\Users\P.P. le Swad\AppData\Local\Temp\ICReinstall\PDFConverterSetup.exe FirewallRules: [{68215646-CBC3-47D6-8374-85C04EF92379}] => (Allow) G:\Users\P.P. le Swad\AppData\Local\Temp\ICReinstall\PDFConverterSetup.exe FirewallRules: [TCP Query User{51370B66-A39A-4E87-AEF7-CF68A792586F}G:\program files\internet explorer\iexplore.exe] => (Allow) G:\program files\internet explorer\iexplore.exe FirewallRules: [UDP Query User{699339E2-B43F-4231-A249-FCD1FC1E0EBA}G:\program files\internet explorer\iexplore.exe] => (Allow) G:\program files\internet explorer\iexplore.exe FirewallRules: [{D79F9B00-9A05-4031-8CE9-913B211F874B}] => (Block) G:\program files\internet explorer\iexplore.exe FirewallRules: [{CE99528D-4A7F-41B3-9C2B-BF8B4B461AEA}] => (Block) G:\program files\internet explorer\iexplore.exe FirewallRules: [TCP Query User{5C3AF720-D26F-4435-A5E5-98C974E1ABDF}G:\users\p.p. le swad\desktop\bitcoin-0.3.24\bitcoin.exe] => (Allow) G:\users\p.p. le swad\desktop\bitcoin-0.3.24\bitcoin.exe FirewallRules: [UDP Query User{17526D9F-231B-417A-96E9-B4A7BD2F1F7C}G:\users\p.p. le swad\desktop\bitcoin-0.3.24\bitcoin.exe] => (Allow) G:\users\p.p. le swad\desktop\bitcoin-0.3.24\bitcoin.exe FirewallRules: [{1AA668B0-49AE-4D10-8196-927D3125C0AD}] => (Block) G:\users\p.p. le swad\desktop\bitcoin-0.3.24\bitcoin.exe FirewallRules: [{27A90B9A-361F-4DDA-8713-ADC7D3464D8A}] => (Block) G:\users\p.p. le swad\desktop\bitcoin-0.3.24\bitcoin.exe FirewallRules: [TCP Query User{DC43B199-32FC-450C-82C2-D36A8DC4206D}C:\pawel\bitcoin\bitcoin-0.3.24\bitcoin.exe] => (Allow) C:\pawel\bitcoin\bitcoin-0.3.24\bitcoin.exe FirewallRules: [UDP Query User{1C271884-5427-42B6-AD11-97FC4B77CC6E}C:\pawel\bitcoin\bitcoin-0.3.24\bitcoin.exe] => (Allow) C:\pawel\bitcoin\bitcoin-0.3.24\bitcoin.exe FirewallRules: [{A2E350A4-8A39-4E94-911C-23A5F5843C64}] => (Block) C:\pawel\bitcoin\bitcoin-0.3.24\bitcoin.exe FirewallRules: [{C2721171-2950-42F3-AAB8-0C9135EA089A}] => (Block) C:\pawel\bitcoin\bitcoin-0.3.24\bitcoin.exe FirewallRules: [TCP Query User{DE76F9A0-C102-4E40-9392-4C6D9064C12F}G:\program files (x86)\bitcoin\bitcoin.exe] => (Allow) G:\program files (x86)\bitcoin\bitcoin.exe FirewallRules: [UDP Query User{2C0BB742-34CE-4903-A5F0-93A9E0BA7393}G:\program files (x86)\bitcoin\bitcoin.exe] => (Allow) G:\program files (x86)\bitcoin\bitcoin.exe FirewallRules: [{6F96BAB0-592F-49C1-A36C-302FB99297B0}] => (Block) G:\program files (x86)\bitcoin\bitcoin.exe FirewallRules: [{E2249A09-FA02-494D-A422-511AC97B5C3B}] => (Block) G:\program files (x86)\bitcoin\bitcoin.exe FirewallRules: [TCP Query User{47AE9C74-8C1D-42B6-A4DD-EA634300AF3D}G:\program files (x86)\internet explorer\iexplore.exe] => (Allow) G:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [UDP Query User{661A9701-A7CE-4510-BDFE-D1A822587071}G:\program files (x86)\internet explorer\iexplore.exe] => (Allow) G:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [TCP Query User{D417AB96-AE5C-4E9E-8235-3050986189A6}G:\program files (x86)\rayv\rayv\rayv.exe] => (Allow) G:\program files (x86)\rayv\rayv\rayv.exe FirewallRules: [UDP Query User{93CAEB14-C702-4935-8FD9-5A0102668A1A}G:\program files (x86)\rayv\rayv\rayv.exe] => (Allow) G:\program files (x86)\rayv\rayv\rayv.exe FirewallRules: [{53D96475-D6A8-4938-87A2-96BDE33ED8B5}] => (Allow) G:\Program Files (x86)\RayV\RayV\RayV.exe FirewallRules: [{5C24EC37-1078-406A-947E-83D9AA03CC3E}] => (Allow) G:\Program Files (x86)\RayV\RayV\RayV.exe FirewallRules: [{DF722A48-5796-4CF6-8AD0-D4E637710462}] => (Allow) G:\Program Files (x86)\RayV\RayV\RayV.dll FirewallRules: [{96D3E2E9-A143-4A9B-8F20-A191E9A5DE39}] => (Allow) G:\Program Files (x86)\RayV\RayV\RayV.dll FirewallRules: [{C6332F9E-4D28-44DD-8B00-B57B47F74204}] => (Allow) G:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe FirewallRules: [{A921DA4E-2AAC-4CE8-8E51-1AB675269A19}] => (Allow) G:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe FirewallRules: [{DAEEA15B-90EE-455E-AC07-9B11A1D76FE0}] => (Allow) G:\Users\P.P. le Swad\AppData\Roaming\RayV\RayV\RayV.dll FirewallRules: [{BE2E15E8-F1F5-4CB8-A51D-D47DFE6E7F89}] => (Allow) G:\Users\P.P. le Swad\AppData\Roaming\RayV\RayV\RayV.dll FirewallRules: [TCP Query User{E342FDA5-F993-4F5D-9309-873D60C6429F}G:\program files (x86)\sopcast\sopcast.exe] => (Allow) G:\program files (x86)\sopcast\sopcast.exe FirewallRules: [UDP Query User{662B8FF5-879F-4E6B-A151-00245F5A1B0B}G:\program files (x86)\sopcast\sopcast.exe] => (Allow) G:\program files (x86)\sopcast\sopcast.exe FirewallRules: [TCP Query User{6F77702E-0BF1-4A2A-8BC5-550CFDC799C1}G:\program files (x86)\sopcast\adv\sopadver.exe] => (Allow) G:\program files (x86)\sopcast\adv\sopadver.exe FirewallRules: [UDP Query User{FEB36704-E07D-4D7B-A143-A13BE25C0D0C}G:\program files (x86)\sopcast\adv\sopadver.exe] => (Allow) G:\program files (x86)\sopcast\adv\sopadver.exe FirewallRules: [{CF4911EE-0D88-4B1C-8F9E-BFC752208FCB}] => (Block) G:\program files (x86)\sopcast\adv\sopadver.exe FirewallRules: [{5FF3C44A-F7A0-4F2B-B9B0-3DDDECDD7620}] => (Block) G:\program files (x86)\sopcast\adv\sopadver.exe FirewallRules: [{ABDCCA30-14D2-424F-A166-87D83CC07783}] => (Block) G:\program files (x86)\sopcast\sopcast.exe FirewallRules: [{12D47E0D-4F74-4B37-934A-78561EF72AA5}] => (Block) G:\program files (x86)\sopcast\sopcast.exe FirewallRules: [TCP Query User{C2087155-6A2A-4A56-9CDC-0AE09EE2AFF2}C:\program files (x86)\proenginner5\x86e_win64\nms\nmsd.exe] => (Block) C:\program files (x86)\proenginner5\x86e_win64\nms\nmsd.exe FirewallRules: [UDP Query User{A7555211-A61B-4798-9BC7-F0300360A5C2}C:\program files (x86)\proenginner5\x86e_win64\nms\nmsd.exe] => (Block) C:\program files (x86)\proenginner5\x86e_win64\nms\nmsd.exe FirewallRules: [TCP Query User{1CF797F8-B3D1-4AB0-8AD3-947EAD41A5F0}C:\program files (x86)\proenginner5\x86e_win64\obj\xtop.exe] => (Block) C:\program files (x86)\proenginner5\x86e_win64\obj\xtop.exe FirewallRules: [UDP Query User{E7F2FA2B-3033-4725-AE87-21AF8659E27C}C:\program files (x86)\proenginner5\x86e_win64\obj\xtop.exe] => (Block) C:\program files (x86)\proenginner5\x86e_win64\obj\xtop.exe FirewallRules: [TCP Query User{5F2A28ED-DB39-4BED-A292-45EDC4C6F025}C:\program files (x86)\proenginner5\x86e_win64\obj\pro_comm_msg.exe] => (Block) C:\program files (x86)\proenginner5\x86e_win64\obj\pro_comm_msg.exe FirewallRules: [UDP Query User{9BF6155A-0BCA-40D4-8C13-53E326C32679}C:\program files (x86)\proenginner5\x86e_win64\obj\pro_comm_msg.exe] => (Block) C:\program files (x86)\proenginner5\x86e_win64\obj\pro_comm_msg.exe FirewallRules: [{2569D1BA-47BA-4017-8639-55D21FB608E0}] => (Allow) G:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe FirewallRules: [{EE3DD9B4-7BFA-4CE4-A46C-ED72E0F1489B}] => (Allow) G:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe FirewallRules: [{AE768EDB-DD10-437E-9046-345EFF70D830}] => (Allow) G:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe FirewallRules: [{179107A7-DABF-4208-88D0-EF47F3CA14C8}] => (Allow) G:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe FirewallRules: [{0B139E07-D1A4-4B88-A41A-F0473DE10BD2}] => (Allow) G:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe FirewallRules: [{45812072-D9A9-4D34-ACC8-96A2F369550E}] => (Allow) G:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe FirewallRules: [{88C436DB-CC3F-4550-99AF-B1F74F632B5B}] => (Allow) G:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe FirewallRules: [{9373F3CC-2B0F-403C-B22B-C0DAF95016BC}] => (Allow) G:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe FirewallRules: [{B3DCD311-EB36-460D-9140-E8DAEA993641}] => (Allow) G:\Program Files (x86)\HP\hp software update\hpwucli.exe FirewallRules: [{CC953141-5555-48F0-8654-DC4FF6C740B3}] => (Allow) G:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe FirewallRules: [{4247330A-E366-4DB3-8008-6E48787970D7}] => (Allow) G:\Users\P.P. le Swad\AppData\Local\Temp\7zS4438\HPDiagnosticCoreUI.exe FirewallRules: [{583A7D0B-4907-4073-8C76-CA18CF423982}] => (Allow) G:\Users\P.P. le Swad\AppData\Local\Temp\7zS4438\HPDiagnosticCoreUI.exe FirewallRules: [{1325FA77-D208-411C-AA8E-13DFB6C6D726}] => (Allow) G:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{5E1FFC79-B636-40C5-8DFC-955538F04638}] => (Allow) G:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{7AD73A86-97F3-40D7-BB03-BB61FE807B58}] => (Allow) G:\Program Files (x86)\AVG\AVG2015\avgnsa.exe FirewallRules: [{C31EF37B-126C-4CD7-A373-D4C90F0B67CC}] => (Allow) G:\Program Files (x86)\AVG\AVG2015\avgnsa.exe FirewallRules: [{28BB9983-FA69-45F4-B203-AA2BF776D588}] => (Allow) G:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe FirewallRules: [{FA9284D4-D418-4836-9623-4F832A533E4D}] => (Allow) G:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe FirewallRules: [{7ACA91B8-5F15-40A2-9014-481B09721782}] => (Allow) G:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe FirewallRules: [{D14B368F-9BC0-4FEF-A929-497498FF7B8C}] => (Allow) G:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe FirewallRules: [{EB75ACCA-1280-4AC9-A829-45B43376C90B}] => (Allow) G:\Program Files (x86)\AVG\AVG2015\avgemca.exe FirewallRules: [{5679689D-E259-4FD9-B49A-C532CA7E5C69}] => (Allow) G:\Program Files (x86)\AVG\AVG2015\avgemca.exe FirewallRules: [TCP Query User{8EBC1AFA-572B-4E7F-95F0-C7F19BCA1FFB}G:\program files (x86)\ptc\creo 3.0\m010\common files\i486_nt\nms\nmsd.exe] => (Block) G:\program files (x86)\ptc\creo 3.0\m010\common files\i486_nt\nms\nmsd.exe FirewallRules: [UDP Query User{E5083550-3041-42A5-A5A2-E77A7ED00F56}G:\program files (x86)\ptc\creo 3.0\m010\common files\i486_nt\nms\nmsd.exe] => (Block) G:\program files (x86)\ptc\creo 3.0\m010\common files\i486_nt\nms\nmsd.exe FirewallRules: [TCP Query User{1313470F-8ADE-4E57-BD88-743BA452F9B6}G:\program files (x86)\ptc\creo 3.0\m010\common files\i486_nt\obj\xtop.exe] => (Block) G:\program files (x86)\ptc\creo 3.0\m010\common files\i486_nt\obj\xtop.exe FirewallRules: [UDP Query User{8A6442E9-EF66-418A-AA0A-29B6D6F9D8F2}G:\program files (x86)\ptc\creo 3.0\m010\common files\i486_nt\obj\xtop.exe] => (Block) G:\program files (x86)\ptc\creo 3.0\m010\common files\i486_nt\obj\xtop.exe FirewallRules: [TCP Query User{9F19A042-9907-4EEB-B7A9-A9A838079DE8}G:\program files (x86)\ptc\creo 3.0\m010\common files\i486_nt\obj\pro_comm_msg.exe] => (Block) G:\program files (x86)\ptc\creo 3.0\m010\common files\i486_nt\obj\pro_comm_msg.exe FirewallRules: [UDP Query User{11CB39CA-3E8E-40B9-A22D-A6CDC3B915E7}G:\program files (x86)\ptc\creo 3.0\m010\common files\i486_nt\obj\pro_comm_msg.exe] => (Block) G:\program files (x86)\ptc\creo 3.0\m010\common files\i486_nt\obj\pro_comm_msg.exe FirewallRules: [{E0ED9B51-515B-4D34-8197-BB8EC0D932C0}] => (Allow) G:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{5A9719E6-AD59-4893-9516-324A9209D7A2}] => (Allow) G:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{30B03A23-5681-4F4E-AAC4-7F629EC5757C}] => (Allow) G:\Users\P.P. le Swad\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{5A0DFC71-3EF9-4CF4-81A6-3946F6401D45}] => (Allow) G:\Users\P.P. le Swad\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{0B1E7291-CADE-4B2F-B8E4-CEEC344A96E0}] => (Allow) G:\Users\P.P. le Swad\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{463913CA-D106-4F9F-9E71-D7D749A33982}] => (Allow) G:\Users\P.P. le Swad\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D0BB5807-6625-4C91-ADB0-260580E9CF1B}] => (Allow) G:\Users\P.P. le Swad\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{64C2BEA9-5DE2-483A-B401-015CDD01D099}] => (Allow) G:\Users\P.P. le Swad\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{8F7E70E1-5CF0-431A-9801-FDA2249D8D65}] => (Allow) G:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [{7E0ACC2E-EB97-4A4B-8617-0F017C71376D}] => (Allow) G:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [{A80605F1-9DBE-483F-8ECF-1D657AAC4B90}] => (Allow) G:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe FirewallRules: [{16C2085E-DDE0-44A1-986B-18FA89221D22}] => (Allow) G:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe FirewallRules: [{2FB78824-5990-4C10-95AF-979FD8DB9783}] => (Allow) G:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{565362B9-C1F8-442B-BC04-3D03C547E4BB}] => (Allow) G:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{A9CABF86-07E7-41C4-9EFE-1A252372622C}] => (Allow) G:\Program Files (x86)\AVG\AVG2015\avgnsa.exe FirewallRules: [{764009FB-C2C6-49B1-806C-35ACAC66BDF6}] => (Allow) G:\Program Files (x86)\AVG\AVG2015\avgnsa.exe FirewallRules: [{65D9574D-77B1-4E87-8F59-F3FABB4C5C2F}] => (Allow) G:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe FirewallRules: [{FD35B7DB-A30E-48E5-B54E-117D871F3CBB}] => (Allow) G:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe FirewallRules: [{E3CA272A-01F0-494C-ADC0-58B068D2F349}] => (Allow) G:\Program Files (x86)\AVG\AVG2015\avgemca.exe FirewallRules: [{647ADCEC-8718-46EB-B008-8211C74E68DD}] => (Allow) G:\Program Files (x86)\AVG\AVG2015\avgemca.exe FirewallRules: [{2B58BB02-178B-49E7-9713-5AFB308E6395}] => (Allow) G:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (09/20/2015 03:56:24 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000. Error: (09/20/2015 03:56:24 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Wystąpił błąd aktywacji licencji (slui.exe), kod błędu: 0x8007043C Error: (09/20/2015 03:32:51 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000. Error: (09/20/2015 03:32:51 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Wystąpił błąd aktywacji licencji (slui.exe), kod błędu: 0x8007043C Error: (09/20/2015 03:18:25 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000. Error: (09/20/2015 03:18:25 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Wystąpił błąd aktywacji licencji (slui.exe), kod błędu: 0x8007043C Error: (09/20/2015 02:41:45 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000. Error: (09/20/2015 02:41:45 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Wystąpił błąd aktywacji licencji (slui.exe), kod błędu: 0x8007043C Error: (09/20/2015 10:34:43 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program Hearthstone.exe w wersji 3.0.0.9786 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 1588 Godzina rozpoczęcia: 01d0f37ca03e6f5c Godzina zakończenia: 44 Ścieżka aplikacji: G:\Program Files (x86)\Hearthstone\Hearthstone.exe Identyfikator raportu: 6abf291e-5f72-11e5-b4da-001b110f4c32 Error: (09/20/2015 09:18:15 AM) (Source: System Restore) (EventID: 8193) (User: ) Description: Nie można utworzyć punktu przywracania (Proces = G:\Windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Opis = Zaplanowany punkt kontrolny; Błąd = 0x80070422). Dziennik System: ============= Error: (09/20/2015 04:32:00 PM) (Source: DCOM) (EventID: 10016) (User: PPleSwad) Description: właściwe dla aplikacjiLokalnyAktywacja{D3DCB472-7261-43CE-924B-0704BD730D5F}{D3DCB472-7261-43CE-924B-0704BD730D5F}PPleSwadP.P. le SwadS-1-5-21-1397970861-2929257963-3791639479-1000LocalHost (użycie LRPC) Error: (09/20/2015 04:32:00 PM) (Source: DCOM) (EventID: 10016) (User: PPleSwad) Description: właściwe dla aplikacjiLokalnyAktywacja{145B4335-FE2A-4927-A040-7C35AD3180EF}{145B4335-FE2A-4927-A040-7C35AD3180EF}PPleSwadP.P. le SwadS-1-5-21-1397970861-2929257963-3791639479-1000LocalHost (użycie LRPC) Error: (09/20/2015 04:20:00 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error: (09/20/2015 04:20:00 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error: (09/20/2015 04:20:00 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error: (09/20/2015 04:19:02 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error: (09/20/2015 04:19:02 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error: (09/20/2015 04:19:02 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error: (09/20/2015 04:17:52 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error: (09/20/2015 04:17:52 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 CodeIntegrity: =================================== Date: 2015-08-24 18:12:17.214 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\MRT.exe because the set of per-page image hashes could not be found on the system. Date: 2011-02-12 23:38:56.865 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\P.P. le Swad\Downloads\PCIUtil.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2011-02-12 23:38:56.856 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\P.P. le Swad\Downloads\PCIUtil.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2011-02-12 23:38:56.286 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\PP98A7~1.LES\AppData\Local\Temp\PCIUtil.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2011-02-12 23:38:56.278 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\PP98A7~1.LES\AppData\Local\Temp\PCIUtil.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2011-02-12 23:38:39.184 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\P.P. le Swad\Downloads\PCIUtil.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2011-02-12 23:38:39.175 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\P.P. le Swad\Downloads\PCIUtil.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2011-02-12 23:38:38.530 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\PP98A7~1.LES\AppData\Local\Temp\PCIUtil.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2011-02-12 23:38:38.521 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\PP98A7~1.LES\AppData\Local\Temp\PCIUtil.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2011-02-12 23:38:23.855 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Mozilla Firefox\PCIUtil.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM)2 Duo CPU E8400 @ 3.00GHz Procent pamięci w użyciu: 46% Całkowita pamięć fizyczna: 4095.05 MB Dostępna pamięć fizyczna: 2176.32 MB Całkowita pamięć wirtualna: 8188.3 MB Dostępna pamięć wirtualna: 5937.64 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:238.93 GB) (Free:33.9 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano BCD)] Drive g: (Windows 7) (Fixed) (Total:59.15 GB) (Free:2.99 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows XP) (Size: 298.1 GB) (Disk ID: 19C719C6) Partition 1: (Active) - (Size=238.9 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=59.2 GB) - (Type=OF Extended) ==================== Koniec Addition.txt ============================