Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:17-11-2015 Uruchomiony przez asia (2015-11-18 07:35:52) Uruchomiony z C:\Users\asia\Desktop Windows 7 Home Premium Service Pack 1 (X64) (2011-05-24 21:01:12) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-3492713240-3900405530-923019510-500 - Administrator - Disabled) asia (S-1-5-21-3492713240-3900405530-923019510-1000 - Administrator - Enabled) => C:\Users\asia Gość (S-1-5-21-3492713240-3900405530-923019510-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3492713240-3900405530-923019510-1002 - Limited - Enabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Acer Arcade Deluxe (HKLM-x32\...\InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version: 3.0.7319 - CyberLink Corp.) Acer Arcade Deluxe (x32 Version: 3.0.7319 - CyberLink Corp.) Hidden Acer Crystal Eye Webcam (HKLM-x32\...\{7760D94E-B1B5-40A0-9AA0-ABF942108755}) (Version: 5.2.19.3 - Suyin Optronics Corp) Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 4.05.3007 - Acer Incorporated) Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3013 - Acer Incorporated) Acer GameZone Console (HKLM-x32\...\{58F4D244-314F-4D26-B5EF-C28AB32E22CB}_is1) (Version: 6.1.0.9 - Oberon Media, Inc.) Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.03.3003 - Acer Incorporated) Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.1.0513.2010 - Acer Incorporated) Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3001 - Acer Incorporated) Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.7.0.2090 - Adobe Systems Incorporated) Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.8.800.174 - Adobe Systems Incorporated) Adobe Reader XI (11.0.13) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated) Airport Mania First Flight (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11505173}) (Version: - Oberon Media) Amazonia (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11273477}) (Version: - Oberon Media) Amazonia (HKLM-x32\...\11273477) (Version: - Oberon Media) Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.33 - Atheros Communications Inc.) ATI Catalyst Install Manager (HKLM\...\{158E4649-5089-813C-1B35-D07C628D8F9E}) (Version: 3.0.778.0 - ATI Technologies, Inc.) AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4842 - AVG Technologies) AVG 2014 (Version: 14.0.4447 - AVG Technologies) Hidden AVG 2014 (Version: 14.0.4821 - AVG Technologies) Hidden AVG 2014 (Version: 14.0.4842 - AVG Technologies) Hidden AVG PC TuneUp 2014 (HKLM-x32\...\AVG PC TuneUp) (Version: 14.0.1001.295 - AVG) AVG PC TuneUp 2014 (pl-PL) (x32 Version: 14.0.1001.295 - AVG) Hidden AVG PC TuneUp 2014 (x32 Version: 14.0.1001.295 - AVG) Hidden Bing Bar (HKLM-x32\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation) Bing Rewards Client Installer (x32 Version: 16.0.345.0 - Microsoft Corporation) Hidden Cake Mania (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111199750}) (Version: - Oberon Media) ccc-core-static (x32 Version: 2010.0621.2137.36973 - ATI) Hidden CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Dream Day First Home (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}) (Version: - Oberon Media) eSobi v2 (HKLM-x32\...\InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}) (Version: 2.0.4.000274 - esobi Inc.) eSobi v2 (x32 Version: 2.0.4.000274 - esobi Inc.) Hidden Farm Frenzy 2 (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11531173}) (Version: - Oberon Media) Galapago (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}) (Version: - Oberon Media) Galapago (HKLM-x32\...\111307457) (Version: - Oberon Media) Galeria fotografii usługi Windows Live (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden Gamesbar (HKLM-x32\...\iplay_en) (Version: 3.2.0.49 - Visicom Media inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.) Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6904.2028 - Google Inc.) Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google) Heroes of Hellas (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113786380}) (Version: - Oberon Media) Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3003 - Acer Incorporated) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.2.1001 - Intel Corporation) Internet w Cyfrowym Polsacie (HKLM-x32\...\Internet w Cyfrowym Polsacie) (Version: 16.002.21.01.618 - Huawei Technologies Co.,Ltd) ipla 2.1.5 (HKLM-x32\...\ipla) (Version: 2.1.5 - Redefine Sp z o.o.) Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Launch Manager (HKLM-x32\...\LManager) (Version: 3.0.03 - Acer Inc.) McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.200 - McAfee, Inc.) Merriam Websters Spell Jam (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112662477}) (Version: - Oberon Media) Microsoft .NET Framework 4.5.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Mobogenie (HKLM-x32\...\Mobogenie) (Version: - Mobogenie.com) <==== UWAGA msvcrt_installer (HKLM-x32\...\{6068A42A-C1CF-45F2-9859-5DB16287FE5D}) (Version: 1.0.0 - SAH) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MyWinLocker (x32 Version: 3.1.212.0 - Egis Technology Inc.) Hidden MyWinLocker Suite (HKLM-x32\...\InstallShield_{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}) (Version: 3.1.212.0 - Egis Technology Inc.) MyWinLocker Suite (x32 Version: 3.1.212.0 - Egis Technology Inc.) Hidden Narzędzie do przekazywania usługi Windows Live (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation) Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.1.17869 - Symantec Corporation) NTI Backup Now 5 (HKLM-x32\...\InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}) (Version: 5.1.2.630 - NewTech Infosystems) NTI Backup Now Standard (x32 Version: 5.1.2.630 - NewTech Infosystems) Hidden NTI Media Maker 8 (HKLM-x32\...\InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}) (Version: 8.0.12.6636 - NewTech Infosystems) NTI Media Maker 8 (x32 Version: 8.0.12.6636 - NewTech Infosystems) Hidden PC Auto Backup (HKLM-x32\...\InstallShield_{662548BC-3506-4843-B7AA-F44D352F76A8}) (Version: 1.1.1.19 - Samsung Electronics Co,. Ltd.) PC Auto Backup (x32 Version: 1.1.1.19 - Samsung Electronics Co,. Ltd.) Hidden Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.) Poker Pop (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111355427}) (Version: - Oberon Media) PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6151 - Realtek Semiconductor Corp.) Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30104 - Realtek Semiconductor Corp.) SAMSUNG Intelli-studio (HKLM-x32\...\Intelli-studio) (Version: 3.1.32.1 - Samsung Electronics Co., Ltd.) Shredder (Version: 2.0.8.3 - Egis Technology Inc.) Hidden Shredder (x32 Version: 2.0.8.3 - Egis Technology Inc.) Hidden Spin & Win (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110300453}) (Version: - Oberon Media) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 13.2.2.0 - Synaptics Incorporated) Unity Web Player (HKU\S-1-5-21-3492713240-3900405530-923019510-1000\...\UnityWebPlayer) (Version: 4.6.2f1 - Unity Technologies ApS) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.02.3004 - Acer Incorporated) Wildlife Park 3 v1.07 (HKLM-x32\...\Wildlife Park 3_is1) (Version: - bitComposer Games) Windows Live Sync (HKLM-x32\...\{E580DFEA-3F1D-4B56-9115-984217032FF5}) (Version: 14.0.8117.416 - Microsoft Corporation) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Punkty Przywracania systemu ========================= 01-09-2015 13:36:06 Windows Update 04-09-2015 08:53:56 Windows Update 29-09-2015 20:15:23 Windows Update 12-10-2015 09:46:28 Windows Update 20-10-2015 08:33:39 Windows Update 15-11-2015 09:30:18 Windows Update 17-11-2015 11:30:16 Windows Update 17-11-2015 22:37:53 Windows Update ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {06A59229-51F5-44E4-A8B0-C569452DDA12} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG PC TuneUp 2014\OneClick.exe [2013-12-18] (AVG) Task: {0B9EF118-44A4-4510-A6CD-29D0C13CE539} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd) Task: {1361BD2C-2782-4E30-AB4C-CBB06E0BB23D} - System32\Tasks\{48E06994-0839-4E51-89C8-D69F2659AFA0} => Iexplore.exe hxxp://ui.skype.com/ui/0/4.1.0.179.367/pl/abandoninstall?source=lightinstaller&page=tsMain&installinfo=google-toolbar:notoffered;notincluded,google-chrome:notoffered;notincluded Task: {172E2739-1D48-4C7A-B236-CBD29BD08D88} - System32\Tasks\{2F7B8A41-2D04-4BDD-A4FF-071C85764D03} => Iexplore.exe hxxp://ui.skype.com/ui/0/4.1.0.179.367/pl/abandoninstall?source=lightinstaller&page=tsMain&installinfo=google-toolbar:notoffered;notincluded,google-chrome:notoffered;notincluded Task: {328D0247-1AF0-4AF1-B5AA-47103FC2F5FD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {58A88C31-4503-4CEA-BCD0-AFD477986CF0} - System32\Tasks\{4AC343DD-C755-4FEE-A7BC-102436ED430A} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{3108C217-BE83-42E4-AE9E-A56A2A92E549}\setup.exe" -c -runfromtemp -l0x0009 -removeonly Task: {99E651D7-12ED-44E8-A5D4-85B087521127} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-09-14] (Adobe Systems Incorporated) Task: {9ABF2C4F-4E5A-4796-8AD8-81AB97818554} - System32\Tasks\{00FE7C03-D680-4F44-BAB3-3D9034C9481C} => pcalua.exe -a "C:\Users\asia\Downloads\WindowsPhone (1).exe" -d C:\Users\asia\Downloads Task: {A822B387-01E0-46C3-B650-D7A82549CD7A} - System32\Tasks\{B2EF975C-7856-475D-BA23-C06B0157EA27} => C:\Program Files (x86)\Internet w Cyfrowym Polsacie\Internet w Cyfrowym Polsacie.exe [2012-07-01] () Task: {AF31AA8B-6493-4511-A9B7-4D97247B75C7} - System32\Tasks\{9DC7F294-EE80-464D-A5F7-50F5C4605AE6} => Iexplore.exe hxxp://ui.skype.com/ui/0/4.1.0.179.367/pl/abandoninstall?source=lightinstaller&page=tsMain&installinfo=google-toolbar:notoffered;notincluded,google-chrome:notoffered;notincluded Task: {CB484367-9D76-4FF1-94FC-9C2BA3555F0C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Załadowane moduły (filtrowane) ============== 2014-01-11 11:14 - 2014-01-27 14:08 - 00063168 _____ () C:\Program Files (x86)\Mobogenie\MgAssist.exe 2013-12-18 09:38 - 2013-12-18 09:38 - 00742200 _____ () C:\Program Files (x86)\AVG PC TuneUp 2014\avgrepliba.dll 2010-09-03 13:11 - 2010-09-03 13:11 - 00520295 _____ () C:\Program Files (x86)\SAMSUNG\PC Auto Backup\http_ss_win_pro.exe 2010-12-05 14:00 - 2010-06-10 03:54 - 00206208 _____ () C:\Windows\PLFSetI.exe 2010-08-05 00:58 - 2010-08-05 00:58 - 00016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll 2010-06-22 06:36 - 2010-06-22 06:36 - 00270336 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll 2010-04-30 14:02 - 2010-04-30 14:02 - 00057344 _____ () C:\Program Files (x86)\SAMSUNG\PC Auto Backup\lang.dll 2014-11-11 13:17 - 2014-11-11 13:17 - 00170496 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\89753abff3827095ec7f3d3fb79f744a\IsdiInterop.ni.dll 2010-09-02 16:19 - 2010-04-13 17:52 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll 2015-11-11 21:34 - 2015-11-07 05:36 - 01532744 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libglesv2.dll 2015-11-11 21:34 - 2015-11-07 05:36 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libegl.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData\Temp:0B9176C0 AlternateDataStreams: C:\ProgramData\Temp:1A60DE96 AlternateDataStreams: C:\ProgramData\Temp:4D066AD2 AlternateDataStreams: C:\ProgramData\Temp:5D7E5A8F AlternateDataStreams: C:\ProgramData\Temp:798A3728 AlternateDataStreams: C:\ProgramData\Temp:93EB7685 AlternateDataStreams: C:\ProgramData\Temp:CDFF58FE AlternateDataStreams: C:\ProgramData\Temp:E1F04E8D AlternateDataStreams: C:\ProgramData\Temp:E36F5B57 AlternateDataStreams: C:\ProgramData\Temp:E3C56885 ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\70195994.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\70195994.sys => ""="Driver" ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-3492713240-3900405530-923019510-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\asia\AppData\Roaming\recovery.bmp DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{5202817F-6AED-4B8C-9966-363A92A561D8}] => (Allow) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe FirewallRules: [{66805CC0-312A-4CAF-B71E-36F0D7220A0D}] => (Allow) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe FirewallRules: [{6FB92CE2-6D24-4E53-B37D-81559F420555}] => (Allow) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe FirewallRules: [{1A9E58EA-C17B-4950-B9A3-5F568F474349}] => (Allow) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe FirewallRules: [{684560A9-D1BD-4970-A84C-B1F2EC46AF73}] => (Allow) C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\Acer Arcade Deluxe.exe FirewallRules: [{CD381B5C-2B4D-445F-94E5-3592531094B0}] => (Allow) C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PlayMovie.exe FirewallRules: [{D96165DB-4F9E-47A5-A287-DE54D06505A3}] => (Allow) C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe FirewallRules: [{752E6816-FF98-46F4-990F-CF7463DB58C7}] => (Allow) C:\Program Files (x86)\Acer Arcade Deluxe\HomeMedia\HomeMedia.exe FirewallRules: [{955FD69E-14EC-4162-AEEA-9AB295C439E3}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{C2218BD4-BB0F-4FA4-AE88-EBF514A0E513}] => (Allow) svchost.exe FirewallRules: [{F926B84E-E3B2-4B36-A336-5C80AB87ECC5}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe FirewallRules: [{BE7F4856-1868-4656-8EE2-DB1592857DF3}] => (Allow) D:\fscommand\CKSocketServer.exe FirewallRules: [{3C45A23A-08F2-48B9-A8E6-8C04D1B3EE23}] => (Allow) D:\fscommand\CKSocketServer.exe FirewallRules: [{70120ED1-E13F-45E0-9162-2516E6A5DD4A}] => (Allow) D:\fscommand\CKSocketServer.exe FirewallRules: [{ABEB8CB6-BD51-4F8F-91C2-9CF7FEA89256}] => (Allow) D:\fscommand\CKSocketServer.exe FirewallRules: [{C5B6DE4B-167F-4001-80AE-E5E935405530}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{64F5C73B-4B8C-4838-A042-1AAA85DCC9AC}] => (Allow) LPort=2869 FirewallRules: [{48F7D8FD-0069-4506-A5DF-7D5DB9BA3DA4}] => (Allow) LPort=1900 FirewallRules: [TCP Query User{01634A43-CA10-4896-9834-C00EB0F047C6}C:\program files (x86)\samsung\pc auto backup\autobackup.exe] => (Block) C:\program files (x86)\samsung\pc auto backup\autobackup.exe FirewallRules: [UDP Query User{D6172935-D474-4ED7-A0A8-ECEB12E471F1}C:\program files (x86)\samsung\pc auto backup\autobackup.exe] => (Block) C:\program files (x86)\samsung\pc auto backup\autobackup.exe FirewallRules: [{D0594A89-9DC0-4956-82B5-81A497C7DF21}] => (Allow) C:\Program Files (x86)\SAMSUNG\PC Auto Backup\WiselinkPro.exe FirewallRules: [{09471638-56F3-41EE-A5ED-FCA22AFCDE85}] => (Allow) C:\Program Files (x86)\SAMSUNG\PC Auto Backup\WiselinkPro.exe FirewallRules: [{D8D821A7-6BCE-46CC-861A-D3C118385DE3}] => (Allow) C:\Program Files (x86)\SAMSUNG\PC Auto Backup\http_ss_win_pro.exe FirewallRules: [{1CE65E36-22A3-4A17-BEEA-954C312B43A1}] => (Allow) C:\Program Files (x86)\SAMSUNG\PC Auto Backup\http_ss_win_pro.exe FirewallRules: [{CEABB813-CF03-416A-9DEE-E7A0C0BADE47}] => (Allow) C:\Program Files (x86)\SAMSUNG\PC Auto Backup\WiselinkPro.exe FirewallRules: [{28B10DC0-878C-4BAD-9E5A-CFDC819884C7}] => (Allow) C:\Program Files (x86)\SAMSUNG\PC Auto Backup\WiselinkPro.exe FirewallRules: [{80047681-288F-424C-A95D-03E68F33342A}] => (Allow) C:\Program Files (x86)\SAMSUNG\PC Auto Backup\http_ss_win_pro.exe FirewallRules: [{9C4E85AA-1537-41D2-B72D-8E0B0DB5EA4F}] => (Allow) C:\Program Files (x86)\SAMSUNG\PC Auto Backup\http_ss_win_pro.exe FirewallRules: [TCP Query User{F6E99A14-5FA2-4503-AB02-EB6ED88E0611}C:\program files (x86)\samsung\pc auto backup\autobackup.exe] => (Block) C:\program files (x86)\samsung\pc auto backup\autobackup.exe FirewallRules: [UDP Query User{7EE8658E-028E-4211-ACBE-A67433311BDC}C:\program files (x86)\samsung\pc auto backup\autobackup.exe] => (Block) C:\program files (x86)\samsung\pc auto backup\autobackup.exe FirewallRules: [{D1575114-7651-442C-8396-485DD3E2CF14}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe FirewallRules: [{D994C41C-EC21-4121-AE71-BB18A4D82049}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe FirewallRules: [{441DAE66-BAF1-4F7D-BBDD-C81F7E233E50}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe FirewallRules: [{D24A0E39-970E-47D0-B08A-B64AAF961B14}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe FirewallRules: [{841D8CBA-4621-4183-956C-03DF2531155A}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgdiagex.exe FirewallRules: [{0C93A0BF-6706-4A19-8E18-CF1A89968F50}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgdiagex.exe FirewallRules: [{D9316B03-D175-4F76-8F27-E7230234AEA2}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe FirewallRules: [{193FD7E6-F564-4F37-A3E0-3D9577CF8D7F}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe FirewallRules: [{AFA1DB1E-0536-47DA-B69F-C1EF89E8EB4A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (11/17/2015 10:38:14 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Przetwarzanie wywołania OnIdentity() w obiekcie System Writer przez Usługi kryptograficzne nie powiodło się. Details: AddLegacyDriverFiles: Unable to back up image of binary 4FDF5E28. System Error: Nie można odnaleźć określonego pliku. . Error: (11/17/2015 11:27:31 AM) (Source: MsiInstaller) (EventID: 11706) (User: acer) Description: Product: Shredder -- Error 1706.No valid source could be found for product Shredder. The Windows Installer cannot continue. Error: (11/15/2015 09:31:38 AM) (Source: MsiInstaller) (EventID: 11706) (User: acer) Description: Product: Shredder -- Error 1706.No valid source could be found for product Shredder. The Windows Installer cannot continue. Error: (11/13/2015 02:07:14 PM) (Source: MsiInstaller) (EventID: 11706) (User: acer) Description: Product: Shredder -- Error 1706.No valid source could be found for product Shredder. The Windows Installer cannot continue. Error: (11/11/2015 09:33:36 PM) (Source: MsiInstaller) (EventID: 11706) (User: acer) Description: Product: Shredder -- Error 1706.No valid source could be found for product Shredder. The Windows Installer cannot continue. Error: (10/20/2015 07:14:17 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: saUpd.exe, wersja: 4.0.1.167, sygnatura czasowa: 0x5601db38 Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.19018, sygnatura czasowa: 0x560a0083 Kod wyjątku: 0xc0000409 Przesunięcie błędu: 0x000000000001928b Identyfikator procesu powodującego błąd: 0x1edc Godzina uruchomienia aplikacji powodującej błąd: 0xsaUpd.exe0 Ścieżka aplikacji powodującej błąd: saUpd.exe1 Ścieżka modułu powodującego błąd: saUpd.exe2 Identyfikator raportu: saUpd.exe3 Error: (09/29/2015 08:15:45 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: GWXUX.exe, wersja: 6.3.9600.17923, sygnatura czasowa: 0x55945dbd Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.18933, sygnatura czasowa: 0x55a6a196 Kod wyjątku: 0xc0000008 Przesunięcie błędu: 0x00000000000c96f8 Identyfikator procesu powodującego błąd: 0x2dd0 Godzina uruchomienia aplikacji powodującej błąd: 0xGWXUX.exe0 Ścieżka aplikacji powodującej błąd: GWXUX.exe1 Ścieżka modułu powodującego błąd: GWXUX.exe2 Identyfikator raportu: GWXUX.exe3 Error: (09/02/2015 04:00:43 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program IEXPLORE.EXE w wersji 11.0.9600.17909 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 22a4 Godzina rozpoczęcia: 01d0e590125d64e4 Godzina zakończenia: 15 Ścieżka aplikacji: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE Identyfikator raportu: Error: (09/02/2015 04:00:13 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program IEXPLORE.EXE w wersji 11.0.9600.17909 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 2950 Godzina rozpoczęcia: 01d0e590014e7157 Godzina zakończenia: 32 Ścieżka aplikacji: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE Identyfikator raportu: Error: (09/02/2015 03:59:45 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program IEXPLORE.EXE w wersji 11.0.9600.17909 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 1a78 Godzina rozpoczęcia: 01d0e58e5325cbca Godzina zakończenia: 47 Ścieżka aplikacji: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE Identyfikator raportu: Dziennik System: ============= Error: (11/18/2015 07:14:03 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: {00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C} Error: (11/17/2015 08:01:25 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C} Error: (11/17/2015 07:51:06 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Host urządzenia UPnP zakończyła działanie; wystąpił następujący błąd: %%5 Error: (11/17/2015 07:23:49 PM) (Source: Tcpip) (EventID: 4199) (User: ) Description: System wykrył konflikt adresów między adresem IP 192.168.0.2 a komputerem o sieciowym adresie sprzętowym 00-0D-88-4F-C3-87. W rezultacie mogą być zakłócone operacje sieciowe na tym komputerze. Error: (11/17/2015 07:05:51 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C} Error: (11/17/2015 07:03:46 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 18:48:51 na ‎2015-‎11-‎17 było nieoczekiwane. Error: (11/17/2015 06:27:42 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {FCA02D56-BF9D-4591-AD41-E59AF763C64A} Error: (11/17/2015 06:25:57 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {5EF1CF5D-87A9-434B-8786-2A08E1C30F6C} Error: (11/17/2015 06:18:34 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C} Error: (11/17/2015 00:28:04 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C} CodeIntegrity: =================================== Date: 2012-09-24 13:28:03.892 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\stmatm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-09-24 13:28:03.814 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\stmatm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-09-20 21:51:40.811 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\stmatm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-09-20 21:51:40.748 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\stmatm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-09-20 19:00:06.702 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\stmatm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-09-20 19:00:06.624 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\stmatm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-09-13 17:43:10.967 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\stmatm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-09-13 17:43:10.889 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\stmatm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-08-28 18:12:58.454 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\stmatm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-08-28 18:12:58.391 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\stmatm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: Pentium(R) Dual-Core CPU T4500 @ 2.30GHz Procent pamięci w użyciu: 73% Całkowita pamięć fizyczna: 3069.98 MB Dostępna pamięć fizyczna: 816.35 MB Całkowita pamięć wirtualna: 6138.16 MB Dostępna pamięć wirtualna: 3712.13 MB ==================== Dyski ================================ Drive c: (Acer) (Fixed) (Total:451.66 GB) (Free:366.79 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: C479EE5E) Partition 1: (Not Active) - (Size=14 GB) - (Type=27) Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=451.7 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================