Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:09-12-2015 Uruchomiony przez Jan (2015-12-09 20:10:25) Uruchomiony z C:\Users\Jan\Desktop\FRST Windows 8.1 (X64) (2015-09-28 11:05:34) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-3381551172-2302675559-2523391916-500 - Administrator - Disabled) ASPNET (S-1-5-21-3381551172-2302675559-2523391916-1004 - Limited - Disabled) Gość (S-1-5-21-3381551172-2302675559-2523391916-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3381551172-2302675559-2523391916-1003 - Limited - Enabled) Jan (S-1-5-21-3381551172-2302675559-2523391916-1001 - Administrator - Enabled) => C:\Users\Jan ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-3381551172-2302675559-2523391916-1001\...\uTorrent) (Version: 3.4.5.41162 - BitTorrent Inc.) 1602 A.D. (HKLM-x32\...\1602 A.D.) (Version: - ) Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated) Adobe Reader XI - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated) Age of Empires III - Complete Collection (HKLM-x32\...\Age of Empires III - Complete Collection_is1) (Version: - ) Aktualizacje NVIDIA 2.7.4.10 (Version: 2.7.4.10 - NVIDIA Corporation) Hidden ALLPlayer V6.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLPlayer Group, Ltd.) Anno 1404 Gold Edition wersja 1.03 (HKLM-x32\...\{52057027-985F-4455-9D84-46D3D99AB138}_is1) (Version: 1.03 - UBISoft) Anno 2070 Complete Edition wersja 2.0.7780.0 (HKLM-x32\...\Anno 2070 Complete Edition_is1) (Version: 2.0.7780.0 - UBISoft) Ashampoo Burning Studio 2015 (HKLM-x32\...\{91B33C97-21E3-DF34-9630-2EE80DDE1648}_is1) (Version: 1.15.3 - Ashampoo GmbH & Co. KG) Assassin's Creed II (HKLM-x32\...\{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}) (Version: 1.01 - Ubisoft) Avast Internet Security (HKLM-x32\...\Avast) (Version: 10.4.2233 - AVAST Software) CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform) Common Desktop Agent (Version: 1.62.0 - OEM) Hidden DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0112 - Disc Soft Ltd) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.73 - Google Inc.) Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation) Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{302600C1-6BDF-4FD1-1309-148929CC1385}) (Version: 3.1.1309.0390 - Intel Corporation) LG PC Suite (HKLM-x32\...\LG PC Suite) (Version: 5.3.25.20150529 - LG Electronics) LG United Mobile Driver (HKLM-x32\...\{2A3A4BD6-6CE0-4e2a-80D2-1D0FF6ACBFBA}) (Version: 3.13.2.0 - LG Electronics) Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Mozilla Firefox 42.0 (x86 pl) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 pl)) (Version: 42.0 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Napisy24 (HKLM-x32\...\{D1985DBC-F09E-4317-91B8-932AD0FD4A27}_is1) (Version: 1.2 - Napisy24.pl) NVIDIA GeForce Experience 2.7.4.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.7.4.10 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) NVIDIA Sterownik graficzny 359.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 359.06 - NVIDIA Corporation) Panel sterowania NVIDIA 359.06 (Version: 359.06 - NVIDIA Corporation) Hidden Przegląd podręcznika użytkownika (HKLM-x32\...\View User Guide) (Version: 3.60.45.0 - ) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.19.726.2013 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7354 - Realtek Semiconductor Corp.) S Agent (Version: 1.1.54 - Samsung Electronics CO., LTD.) Hidden Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.02.74.00(2012-11-06) - Samsung Electronics Co., Ltd.) Samsung ML-2160 Series (HKLM-x32\...\Samsung ML-2160 Series) (Version: 1.25 (2015-09-07) - Samsung Electronics Co., Ltd.) Samsung Printer Diagnostics (HKLM-x32\...\Samsung Printer Diagnostics) (Version: 1.0.0.15 - Samsung Electronics Co., Ltd.) Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.) Samsung Settings (HKLM-x32\...\{3BB58176-B3A7-47FD-9F18-C3576431D193}) (Version: 2.2.0 - Samsung Electronics CO., LTD.) Samsung Update (HKLM-x32\...\{A9D16B9C-AA6D-4154-80CA-17099A2C308F}) (Version: 2.2.16 - Samsung Electronics CO., LTD.) SHIELD Streaming (Version: 4.1.0240 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.7.4.10 - NVIDIA Corporation) Hidden Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version: - 2K Games, Inc.) Sid Meier's Civilization: Beyond Earth (HKLM-x32\...\U2lkTWVpZXJzQ2l2aWxpemF0aW9uQmV5b25kRWFydGg=_is1) (Version: 1 - ) Skype™ 7.3 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.) Sleeping Dogs Definitive Edition (HKLM-x32\...\Sleeping Dogs Definitive Edition_is1) (Version: - ) Spotify (HKU\S-1-5-21-3381551172-2302675559-2523391916-1001\...\Spotify) (Version: 1.0.19.106.gb8a7150f - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Subtitle Edit 3.4.10 (HKLM-x32\...\SubtitleEdit_is1) (Version: 3.4.10.1 - Nikse) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.0.0.0 - Synaptics Incorporated) The Settlers Online (HKLM-x32\...\Steam App 354640) (Version: - Blue Byte) Uplay (HKLM-x32\...\Uplay) (Version: 13.0 - Ubisoft) WinRAR 5.21 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-3381551172-2302675559-2523391916-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation) ==================== Punkty Przywracania systemu ========================= 21-11-2015 14:22:00 Installed Assassin's Creed II 29-11-2015 05:54:14 Zaplanowany punkt kontrolny 03-12-2015 07:29:40 Windows Update ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {04A8F43E-486E-4AE5-A0E1-3F6A8F67F43C} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-09-28] (AVAST Software) Task: {06BBF170-AD2C-4F68-BD4F-D2231FA3777A} - System32\Tasks\LaunchSettings => C:\Program Files (x86)\Samsung\Settings\Settings.exe [2015-06-24] () Task: {0F77FB26-74AC-493C-A598-449EBC9EDCB5} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2015-12-03] (AVAST Software) Task: {4E183B04-7CAE-42F9-B03F-D3B1F510B00D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-18] (Google Inc.) Task: {6B7B32AB-F16A-4469-B813-3565A7BA879D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd) Task: {73285EEA-5306-47E0-BC01-19CBA3BA3A2D} - System32\Tasks\SettingsHibernateMonitor => C:\Program Files (x86)\Samsung\Settings\SettingsHibernateMonitor.exe [2015-06-24] (Samsung Electronics CO., LTD.) Task: {73B0E875-50D8-45FD-9C10-AFE0E8451688} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-18] (Google Inc.) Task: {7D6AF7E2-0187-44BF-8C08-B88BFA2DDDB6} - System32\Tasks\SUPatchForW10Up => C:\ProgramData\Samsung\SamsungUpdatePatch\SUPatchForW10Up.exe [2015-08-18] (Samsung Electronics CO., LTD.) Task: {98F0773D-FC06-4532-A92C-2C3BE89605CB} - System32\Tasks\SettingsEventHandlerMonitor => C:\Program Files (x86)\Samsung\Settings\CmdServer\RSSettingEventHandler.exe [2015-06-24] (Samsung Electronics CO., LTD.) Task: {D58E289D-AFCA-488D-AF59-72CAF7D8E756} - System32\Tasks\SAgent => C:\Program Files\Samsung\S Agent\CommonAgent.exe [2015-08-05] (Samsung Electronics CO., LTD.) Task: {DD9F9F7D-E9FE-4B4A-87DD-0ACF6A49AD57} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-11] (Adobe Systems Incorporated) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449646810&z=5235b3be5bfb61659ca30d6g9z3zetdq5z5qab5g7c&from=ient07021&uid=ST750LM022XHN-M750MBB_S2RRJ9ED302077 <==== UWAGA ShortcutWithArgument: C:\Users\Jan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1449646810&z=5235b3be5bfb61659ca30d6g9z3zetdq5z5qab5g7c&from=ient07021&uid=ST750LM022XHN-M750MBB_S2RRJ9ED302077 <==== UWAGA ShortcutWithArgument: C:\Users\Jan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449646810&z=5235b3be5bfb61659ca30d6g9z3zetdq5z5qab5g7c&from=ient07021&uid=ST750LM022XHN-M750MBB_S2RRJ9ED302077 <==== UWAGA ShortcutWithArgument: C:\Users\Jan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1449646810&z=5235b3be5bfb61659ca30d6g9z3zetdq5z5qab5g7c&from=ient07021&uid=ST750LM022XHN-M750MBB_S2RRJ9ED302077 <==== UWAGA ShortcutWithArgument: C:\Users\Jan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449646810&z=5235b3be5bfb61659ca30d6g9z3zetdq5z5qab5g7c&from=ient07021&uid=ST750LM022XHN-M750MBB_S2RRJ9ED302077 <==== UWAGA ShortcutWithArgument: C:\Users\Jan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449646810&z=5235b3be5bfb61659ca30d6g9z3zetdq5z5qab5g7c&from=ient07021&uid=ST750LM022XHN-M750MBB_S2RRJ9ED302077 <==== UWAGA ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449646810&z=5235b3be5bfb61659ca30d6g9z3zetdq5z5qab5g7c&from=ient07021&uid=ST750LM022XHN-M750MBB_S2RRJ9ED302077 <==== UWAGA ==================== Załadowane moduły (filtrowane) ============== 2015-12-03 19:02 - 2015-11-24 19:40 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-09-28 22:26 - 2015-03-18 16:12 - 00022528 _____ () C:\Windows\System32\ssj1mlm.dll 2015-08-05 15:32 - 2015-08-05 15:32 - 00088624 _____ () C:\Program Files\Samsung\S Agent\ToastX64.dll 2015-09-28 12:23 - 2015-09-28 12:23 - 00103376 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2015-09-28 12:23 - 2015-09-28 12:23 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2015-12-09 16:17 - 2015-12-09 16:17 - 02803200 _____ () C:\Program Files\AVAST Software\Avast\defs\15120900\algo.dll 2015-12-09 19:39 - 2015-12-09 19:39 - 02803200 _____ () C:\Program Files\AVAST Software\Avast\defs\15120901\algo.dll 2015-11-23 19:58 - 2015-11-16 04:35 - 00012080 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2015-06-24 15:05 - 2015-06-24 15:05 - 00211064 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\WinCRT.dll 2015-09-28 12:23 - 2015-09-28 12:23 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2015-11-19 23:14 - 2013-09-16 12:20 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-3381551172-2302675559-2523391916-1001\Control Panel\Desktop\\Wallpaper -> DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{7F1C66C3-59B4-4F57-906D-2688A2D84D3D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{4E3F6F48-0882-431C-AD4D-941DFC87891F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{B52E8AC8-7B33-48FF-9FA7-A5FF7D2B05C3}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{F2F32058-01C3-401C-814B-479123F2258E}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{154DD792-2BED-48C5-8AC6-EDA353D51C02}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{1B695350-5424-48B8-B1D3-CFD26D6455B9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{AA1B3A73-525E-40B0-B8B6-98CBD4D4B0AD}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{97B09D53-D3C3-4DC0-877F-964E39DC994F}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{34A274F3-410B-4383-99E4-8D7DB78A80AD}] => (Allow) D:\Steam instalacje\steamapps\common\Sid Meier's Civilization V\Launcher.exe FirewallRules: [{FC2B5C3D-7DC6-4A41-B6A8-461F8937DFAF}] => (Allow) D:\Steam instalacje\steamapps\common\Sid Meier's Civilization V\Launcher.exe FirewallRules: [{3B94B57E-8DCB-4B62-8E68-F9BA32D2D185}] => (Allow) D:\Steam instalacje\steamapps\common\The Settlers Online\nw.exe FirewallRules: [{A29E5E4F-0984-4DB4-82DC-963E8F73A909}] => (Allow) D:\Steam instalacje\steamapps\common\The Settlers Online\nw.exe FirewallRules: [{CA6BE8FC-FA6F-49CF-88A9-F6EA5AE5F6D8}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe FirewallRules: [{0BDAF625-C570-41B3-BA45-CC94BEA47B6B}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe FirewallRules: [{C4F54F55-A4E1-4659-B127-7DA39B6034E0}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe FirewallRules: [{67E8A60D-4A8F-4A34-953A-5147FC178888}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe FirewallRules: [{E750BCD2-7318-49DD-8792-37DCBF928793}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe FirewallRules: [{F63E808D-2D16-487B-B30E-1FE974EF216C}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe FirewallRules: [{4F2D8E61-7636-4E61-A402-86D2BAF9FD8A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe FirewallRules: [{51C0752E-17FA-4A04-95B4-026888CD216E}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe FirewallRules: [{C48755C6-D9D9-4544-9407-36EB9BE88AE8}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe FirewallRules: [{0E619D6F-095B-4D89-A812-D8A12C52288F}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe FirewallRules: [{4F6B0AF7-E389-48B9-AF08-11759DC491F0}] => (Allow) C:\Users\Jan\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{68833089-E3F2-4F26-8D7C-F5C542AC27AA}] => (Allow) C:\Users\Jan\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{7EA60657-E348-48E0-9C61-E1127BC6C5C7}] => (Allow) C:\Users\Jan\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{0133A532-5D07-4D66-BA1A-5E874B10E574}] => (Allow) C:\Users\Jan\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{BBAD70FA-6632-413A-A88D-B66399C79930}] => (Allow) C:\Users\Jan\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{EDDF0EEC-706C-434F-B50B-6F776327B27E}] => (Allow) C:\Users\Jan\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{BE513FA1-BD50-485B-AD82-0EAFB9C82676}] => (Allow) D:\Gry\Age of Empires III - Complete Collection\bin\age3.exe FirewallRules: [{88F1736E-7A54-4B3C-B16E-321B2386DF84}] => (Allow) D:\Gry\Age of Empires III - Complete Collection\bin\age3.exe FirewallRules: [{4D2C39D3-E2E0-489F-8B8B-DD2D15E379DB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{0E290359-0F73-467E-A382-6FF709D45C0E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{9E089FB4-DBFF-4996-A301-3395FF758A9C}D:\gry\anno 1404 gold edition\tools\anno4web.exe] => (Block) D:\gry\anno 1404 gold edition\tools\anno4web.exe FirewallRules: [UDP Query User{B2C4ADDF-A7E0-4566-AC12-DE8DD6385D51}D:\gry\anno 1404 gold edition\tools\anno4web.exe] => (Block) D:\gry\anno 1404 gold edition\tools\anno4web.exe FirewallRules: [{F52ABF97-9902-48B6-9187-6CC44C90D744}] => (Allow) D:\Gry\Assassin's Creed II\AssassinsCreedIIGame.exe FirewallRules: [{6D3448E9-46AC-4BA3-AA31-ABDE970E0F9A}] => (Allow) D:\Gry\Assassin's Creed II\AssassinsCreedIIGame.exe FirewallRules: [{9B0FBA99-AFDA-452F-B40E-27CE8B43C524}] => (Allow) D:\Gry\Assassin's Creed II\AssassinsCreedII.exe FirewallRules: [{B8DE694E-7539-4ABA-BDB5-CFF38C101108}] => (Allow) D:\Gry\Assassin's Creed II\AssassinsCreedII.exe FirewallRules: [{735F056D-06FF-479A-A306-25A4E62BC58B}] => (Allow) D:\Gry\Assassin's Creed II\UPlayBrowser.exe FirewallRules: [{E884A4E8-6743-4211-9E24-375139DADD55}] => (Allow) D:\Gry\Assassin's Creed II\UPlayBrowser.exe FirewallRules: [{FCF99A02-EFF3-4857-8524-458AD56416AB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{A7B3A239-0115-419B-BE72-142CE72C4B49}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{2DDABDE9-AA33-4195-9B9F-234AE229E4E6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{BA6C35CD-16C6-4E54-A0D4-DC0258DE416D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{78C7421B-8E43-4205-A3F4-0B7CD34CEC27}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{0D13A291-ADCF-415C-9C53-3069858D77D5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{FA910106-00F2-4B40-A3D1-2D7C088AFD6D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{9EC5D8E0-322C-422A-A517-A86577D6409F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [TCP Query User{3F91621F-3D6E-4634-85DF-49256E17445D}C:\users\jan\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\jan\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{6F09FB22-2FCD-4A1C-925C-D82C46876971}C:\users\jan\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\jan\appdata\roaming\spotify\spotify.exe ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (12/09/2015 07:59:23 PM) (Source: SideBySide) (EventID: 78) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest1”. Błąd w pliku manifestu lub w pliku zasad „C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest2” w wierszu C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest3. Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest. Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest. Error: (12/09/2015 07:36:26 PM) (Source: SideBySide) (EventID: 78) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest1”. Błąd w pliku manifestu lub w pliku zasad „C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest2” w wierszu C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest3. Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest. Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest. Error: (12/09/2015 06:33:26 PM) (Source: SideBySide) (EventID: 78) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest1”. Błąd w pliku manifestu lub w pliku zasad „C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest2” w wierszu C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest3. Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest. Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest. Dziennik System: ============= Error: (12/09/2015 07:34:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Windows Search z powodu następującego błędu: %%1069 Error: (12/09/2015 07:34:43 PM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Usługa WSearch nie może zalogować się jako NT AUTHORITY\SYSTEM za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu: %%50 Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC). Error: (12/09/2015 07:34:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Bluetooth Device Monitor niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (12/09/2015 07:34:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Intel(R) Dynamic Application Loader Host Interface Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (12/09/2015 07:34:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Bluetooth OBEX Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (12/09/2015 07:34:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa NVIDIA Streamer Network Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (12/09/2015 07:34:12 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Windows Search niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (12/09/2015 07:34:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Settings Launcher niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (12/09/2015 07:34:12 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Usługa buforowania czcionek platformy Windows Presentation Foundation, wersja 3.0.0.0 niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 0 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (12/09/2015 07:34:12 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa SSFK niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 0 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. CodeIntegrity: =================================== Date: 2015-11-13 21:59:16.335 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-13 21:59:15.884 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-13 20:57:49.597 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-13 20:57:49.269 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-13 19:52:54.086 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-13 19:52:51.634 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-13 19:46:25.464 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-13 19:46:25.110 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-13 19:31:53.145 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-13 19:31:52.728 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-3210M CPU @ 2.50GHz Procent pamięci w użyciu: 29% Całkowita pamięć fizyczna: 6031.3 MB Dostępna pamięć fizyczna: 4265.84 MB Całkowita pamięć wirtualna: 6991.31 MB Dostępna pamięć wirtualna: 5272.08 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:195.31 GB) (Free:146.24 GB) NTFS Drive d: (Nowy) (Fixed) (Total:258.67 GB) (Free:204.82 GB) NTFS Drive e: (Nowy) (Fixed) (Total:244.14 GB) (Free:114.24 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 698.6 GB) (Disk ID: BB124058) Partition: GPT. ==================== Koniec Addition.txt ============================