Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:14-12-2015 Uruchomiony przez bartek (2015-12-14 23:34:30) Uruchomiony z C:\Users\bartek\Desktop Windows 8.1 (X64) (2015-10-17 12:11:50) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-3045090937-3747617143-1340328465-500 - Administrator - Disabled) bartek (S-1-5-21-3045090937-3747617143-1340328465-1001 - Administrator - Enabled) => C:\Users\bartek Gość (S-1-5-21-3045090937-3747617143-1340328465-501 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) AdFender (HKLM-x32\...\AdFender) (Version: 2.01 - AdFender, Inc.) Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.235 - Adobe Systems Incorporated) Adobe Flash Player 20 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 20.0.0.228 - Adobe Systems Incorporated) ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.3.4 - ASUS) ASUS Screen Saver (HKLM-x32\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 2.0.8 - ASUS) ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 3.0.10 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.03.0006 - ASUS) ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.0.2 - ASUS) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0037 - ASUS) AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.31 - ICEpower a/s) AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.604 - AVG Technologies) AVG PC TuneUp 2015 (pl-PL) (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden AVG PC TuneUp 2015 (x32 Version: 15.0.1001.604 - AVG Technologies) Hidden Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.53.50 - Conexant) Free YouTube To MP3 Converter (HKLM-x32\...\Free YouTube To MP3 Converter_is1) (Version: 4.0.8.1127 - DVDVideoSoft Ltd.) Game Explorer Categories - casual (HKLM-x32\...\WildTangentGameProvider-asus-casual) (Version: 3.2.0.6 - WildTangent, Inc.) Game Explorer Categories - enthusiast (HKLM-x32\...\WildTangentGameProvider-asus-enthusiast) (Version: 3.2.0.6 - WildTangent, Inc.) Game Explorer Categories - family (HKLM-x32\...\WildTangentGameProvider-asus-family) (Version: 3.2.0.6 - WildTangent, Inc.) Game Explorer Categories - kids (HKLM-x32\...\WildTangentGameProvider-asus-kids) (Version: 3.2.0.6 - WildTangent, Inc.) Game Explorer Categories - touch (HKLM-x32\...\WildTangentGameProvider-asus-touch) (Version: 3.2.0.6 - WildTangent, Inc.) Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.3.2.2.1001 - Genesys Logic) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.80 - Google Inc.) Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden Huawei E3372 (HKLM-x32\...\Huawei E3372) (Version: 22.001.22.03.1202 - Huawei Technologies Co.,Ltd) Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1017 - Intel Corporation) Intel(R) Chipset Device Software (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.0.10100.71 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.28.1006 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4013 - Intel Corporation) Intel(R) WiDi (HKLM\...\{2F97FBC6-7992-4DF7-A7C7-B68455E307F7}) (Version: 5.1.20.0 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{06A5031E-3B1E-4FB9-AC4C-BA0FE2706152}) (Version: 17.1.1433.02 - Intel Corporation) Intel® PROSet/Wireless Software (HKLM-x32\...\{c78a13fd-4324-4ddb-a613-746d2461441d}) (Version: 17.13.1 - Intel Corporation) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Mozilla Firefox 41.0.2 (x86 pl) (HKLM-x32\...\Mozilla Firefox 41.0.2 (x86 pl)) (Version: 41.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.2 - Mozilla) NVIDIA Graphics Driver 333.37 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 333.37 - NVIDIA Corporation) NVIDIA PhysX System Software 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation) Opera Stable 34.0.2036.25 (HKLM-x32\...\Opera 34.0.2036.25) (Version: 34.0.2036.25 - Opera Software) Realtek USB Fast Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{D2B61BE0-B18B-4091-81B4-F234F4C30DFD}) (Version: 8.13.106.2014 - Realtek) Skype™ 7.14 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.14.106 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-3045090937-3747617143-1340328465-1001\...\Spotify) (Version: 1.0.19.106.gb8a7150f - Spotify AB) Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden WebStorage (HKLM-x32\...\WebStorage) (Version: 2.1.2.301 - ASUS Cloud Corporation) WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.11.2 - WildTangent) Windows Driver Package - ASUS (ATP) Mouse (07/02/2014 6.0.0.39) (HKLM\...\51B9B97722559D76D6429B83B71A86106A35BFCE) (Version: 07/02/2014 6.0.0.39 - ASUS) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Punkty Przywracania systemu ========================= 05-11-2015 01:14:21 Chrome Cleanup Tool 19-11-2015 11:35:14 Zaplanowany punkt kontrolny 28-11-2015 14:30:45 Zaplanowany punkt kontrolny ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2013-08-22 14:25 - 2015-12-14 23:02 - 00000830 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {01623F47-08E0-4CDA-952E-280E9366823A} - System32\Tasks\Opera scheduled Autoupdate 1446079381 => C:\Program Files (x86)\Opera\launcher.exe [2015-12-04] (Opera Software) Task: {065A915F-5DCC-4A7C-872B-6563A9A3A748} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-03-23] (ASUSTeK Computer Inc.) Task: {23B5DB28-E353-4AAD-BF38-0FC607E8F101} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-29] (Google Inc.) Task: {25AA91E3-B9A8-4553-84BE-0184B70B61AD} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2014-11-21] (AsusTek) Task: {491B980A-00B4-4D5E-9D7C-DC642C7B0ADA} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-11] (Adobe Systems Incorporated) Task: {5F486EEF-BF1F-4C23-AF11-A71041AF2563} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2014-09-11] (ASUSTek Computer Inc.) Task: {91C25DCA-C764-400C-A2B8-C97BD152A991} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-29] (Google Inc.) Task: {BA75598A-80BD-4569-AEAC-A4FC923AB5DA} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-06-29] (AVG Technologies) Task: {C8846C66-03C8-4F03-A2DC-B62442CB543F} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2014-06-11] (ASUSTek Computer Inc.) Task: {CB37B8E1-B942-4282-8630-8353687DE2DB} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-03-23] (ASUSTeK Computer Inc.) Task: {CF6E758C-4B73-47A8-8C20-AA224BFB91F0} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2014-09-11] (ASUS) Task: {DABE5ECE-A38F-45AA-96B8-41D6EF0A84D7} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_228_pepper.exe [2015-12-11] (Adobe Systems Incorporated) Task: {E31B902F-CE25-4AF4-9FAC-610B1DBF8D05} - System32\Tasks\UMonitor Task => C:\Windows\SysWOW64\UMonit64.exe [2014-03-05] () Task: {EFAAF661-B099-41F0-86FC-4E2E40F6FBF4} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2015-02-12] () (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_228_pepper.exe Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\bartek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1450129933&z=5ebacc3752acbc67cd44decgbzfw0e8g7oft5t5cfg&from=wpm07173&uid=KINGSTONXSV300S37A240G_50026B7258069507 <==== UWAGA ShortcutWithArgument: C:\Users\bartek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Program uruchamiający aplikacje Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1450129933&z=5ebacc3752acbc67cd44decgbzfw0e8g7oft5t5cfg&from=wpm07173&uid=KINGSTONXSV300S37A240G_50026B7258069507 <==== UWAGA ShortcutWithArgument: C:\Users\bartek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome\Ad.Block Pro.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1450129933&z=5ebacc3752acbc67cd44decgbzfw0e8g7oft5t5cfg&from=wpm07173&uid=KINGSTONXSV300S37A240G_50026B7258069507 <==== UWAGA ShortcutWithArgument: C:\Users\bartek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1450129933&z=5ebacc3752acbc67cd44decgbzfw0e8g7oft5t5cfg&from=wpm07173&uid=KINGSTONXSV300S37A240G_50026B7258069507 <==== UWAGA ShortcutWithArgument: C:\Users\bartek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1450129933&z=5ebacc3752acbc67cd44decgbzfw0e8g7oft5t5cfg&from=wpm07173&uid=KINGSTONXSV300S37A240G_50026B7258069507 <==== UWAGA ShortcutWithArgument: C:\Users\bartek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1450129933&z=5ebacc3752acbc67cd44decgbzfw0e8g7oft5t5cfg&from=wpm07173&uid=KINGSTONXSV300S37A240G_50026B7258069507 <==== UWAGA ShortcutWithArgument: C:\Users\bartek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Opera.lnk -> C:\Program Files (x86)\Opera\launcher.exe (Opera Software) -> hxxp://www.yoursites123.com/?type=sc&ts=1450129933&z=5ebacc3752acbc67cd44decgbzfw0e8g7oft5t5cfg&from=wpm07173&uid=KINGSTONXSV300S37A240G_50026B7258069507 <==== UWAGA ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1450129933&z=5ebacc3752acbc67cd44decgbzfw0e8g7oft5t5cfg&from=wpm07173&uid=KINGSTONXSV300S37A240G_50026B7258069507 <==== UWAGA ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk -> C:\Program Files (x86)\Opera\launcher.exe (Opera Software) -> hxxp://www.yoursites123.com/?type=sc&ts=1450129933&z=5ebacc3752acbc67cd44decgbzfw0e8g7oft5t5cfg&from=wpm07173&uid=KINGSTONXSV300S37A240G_50026B7258069507 <==== UWAGA ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1450129933&z=5ebacc3752acbc67cd44decgbzfw0e8g7oft5t5cfg&from=wpm07173&uid=KINGSTONXSV300S37A240G_50026B7258069507 <==== UWAGA ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1450129933&z=5ebacc3752acbc67cd44decgbzfw0e8g7oft5t5cfg&from=wpm07173&uid=KINGSTONXSV300S37A240G_50026B7258069507 <==== UWAGA ShortcutWithArgument: C:\Users\Public\Desktop\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1450129933&z=5ebacc3752acbc67cd44decgbzfw0e8g7oft5t5cfg&from=wpm07173&uid=KINGSTONXSV300S37A240G_50026B7258069507 <==== UWAGA ShortcutWithArgument: C:\Users\Public\Desktop\Opera.lnk -> C:\Program Files (x86)\Opera\launcher.exe (Opera Software) -> hxxp://www.yoursites123.com/?type=sc&ts=1450129933&z=5ebacc3752acbc67cd44decgbzfw0e8g7oft5t5cfg&from=wpm07173&uid=KINGSTONXSV300S37A240G_50026B7258069507 <==== UWAGA ==================== Załadowane moduły (filtrowane) ============== 2015-09-23 22:28 - 2014-07-07 23:16 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-11-29 23:25 - 2014-03-07 02:41 - 00240720 _____ () C:\ProgramData\MobileBrServ\mbbservice.exe 2015-06-29 09:24 - 2015-06-29 09:24 - 00718136 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll 2015-06-29 09:24 - 2015-06-29 09:24 - 00862008 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll 2014-12-31 03:32 - 2014-11-19 08:26 - 00457616 _____ () C:\Windows\system32\igfxTray.exe 2015-11-29 23:25 - 2014-07-04 08:40 - 00182784 _____ () C:\ProgramData\MobileBrServ\tray.exe 2015-09-23 22:33 - 2014-03-05 09:49 - 00053248 _____ () C:\Windows\SysWOW64\UMonit64.exe 2014-02-24 11:59 - 2014-02-24 11:59 - 00109056 _____ () C:\Program Files (x86)\ASUS\WebStorage\2.1.2.301\ASUSWSHomeCloudAPI.dll 2015-11-02 18:36 - 2015-11-27 19:06 - 00110952 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll 2015-11-02 18:36 - 2015-11-27 19:06 - 00253800 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\collector.dll 2015-11-02 18:36 - 2015-11-27 19:06 - 00295272 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\stat.dll 2015-11-02 18:36 - 2015-11-27 19:06 - 00104296 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll 2015-11-02 18:36 - 2015-11-27 19:06 - 00020328 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll 2015-11-02 18:36 - 2015-11-27 19:06 - 00044392 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll 2014-09-11 18:31 - 2014-09-11 18:31 - 00037424 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll 2014-09-11 18:31 - 2014-09-11 18:31 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll 2014-09-11 18:31 - 2014-09-11 18:31 - 00018992 _____ () C:\Program Files (x86)\ASUS\Splendid\AMDColorEnhance.dll 2014-09-11 18:31 - 2014-09-11 18:31 - 00020528 _____ () C:\Program Files (x86)\ASUS\Splendid\AMDRegammaAndGamut.dll 2015-12-10 00:03 - 2015-12-04 22:32 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.80\libglesv2.dll 2015-12-10 00:03 - 2015-12-04 22:32 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.80\libegl.dll 2014-09-03 11:03 - 2014-09-03 11:03 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-3045090937-3747617143-1340328465-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\asus\wallpapers\asus.jpg DNS Servers: 192.168.8.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{AB512674-7D75-43AC-B0AD-FBF17D86DB37}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{CFD349D0-7F18-4ED0-B0A0-6C176C516B80}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{E0B5E26E-8530-40D8-B9E6-72BD46383C37}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{E3DF7050-44AD-4937-B0E1-3E3CE87CD703}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe FirewallRules: [{26F29DDD-9769-4A65-ACA9-C54B019D1F91}] => (Allow) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe FirewallRules: [{1A353237-BE5A-4AD2-96E3-F2DCE37C2016}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{78807D72-80DE-402E-9B21-9C9AD92E3291}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{720AA5BA-3CDB-4F27-BCCC-78F28D5BFA2C}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{B49AA9BB-E564-4676-8BDF-E39DAFC3A8AE}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{E11E87A5-F213-40EA-B747-9C44672C2E23}C:\users\bartek\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\bartek\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{197DB229-4961-4628-9BF2-1F18CD1AEE36}C:\users\bartek\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\bartek\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{73E53503-C80D-4C62-BA92-BAAD81C80287}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{B09CB6EF-9A86-4AB0-A5EB-6DEB742898A0}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{0B96D4A3-3B18-461A-888E-E6A3F2271E70}C:\users\bartek\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\bartek\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{0ED6E7C2-84E2-4A21-BEED-D62F93A89D75}C:\users\bartek\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\bartek\appdata\roaming\spotify\spotify.exe FirewallRules: [{B5224691-5738-4D8D-B2A0-8C2EA598269A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (12/14/2015 11:13:24 PM) (Source: DPTF) (EventID: 256) (User: ) Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.0.10100.71) TYPE: ERROR FUNC: rsrc_app_start_app_in_active_user_session FILE: rsrc_app.c LINE: 328 Unable to start capture program. Error = 2 Error: (11/30/2015 12:30:39 PM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: ) Description: Wolumin Recovery nie został zoptymalizowany, ponieważ napotkano błąd: Parametr jest niepoprawny. (0x80070057) Error: (11/23/2015 11:52:08 PM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: ) Description: Wolumin Recovery nie został zoptymalizowany, ponieważ napotkano błąd: Parametr jest niepoprawny. (0x80070057) Error: (11/19/2015 11:29:53 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: ) Description: Wolumin Recovery nie został zoptymalizowany, ponieważ napotkano błąd: Parametr jest niepoprawny. (0x80070057) Error: (11/13/2015 11:54:02 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: ) Description: Wolumin Recovery nie został zoptymalizowany, ponieważ napotkano błąd: Parametr jest niepoprawny. (0x80070057) Error: (11/07/2015 06:01:49 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: AsusZenbook) Description: Aktywacja aplikacji Microsoft.BingSports_8wekyb3d8bbwe!AppexSports nie powiodła się. Błąd: -2144927142. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (11/07/2015 06:01:50 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program wwahost.exe w wersji 6.3.9600.17415 przestał współpracować z systemem Windows i został zamknięty. Aby sprawdzić, czy jest dostępnych więcej informacji na temat tego problemu, sprawdź historię problemu w aplecie Centrum akcji w Panelu sterowania. Identyfikator procesu: dcc Godzina rozpoczęcia: 01d1197df9b645a8 Godzina zakończenia: 4294967295 Ścieżka aplikacji: C:\Windows\system32\wwahost.exe Identyfikator raportu: 39125daa-8571-11e5-8264-605718b95004 Pełna nazwa pakietu powodującego błąd: Microsoft.BingSports_3.0.2.233_x64__8wekyb3d8bbwe Identyfikator aplikacji względem pakietu powodującego błąd: AppexSports Error: (11/07/2015 06:01:44 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: AsusZenbook) Description: Aplikacja Microsoft.BingSports_3.0.2.233_x64__8wekyb3d8bbwe+AppexSports nie została uruchomiona w wyznaczonym czasie. Error: (11/07/2015 01:33:32 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: chrome.exe, wersja: 46.0.2490.80, sygnatura czasowa: 0x56262c73 Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.3.9600.18007, sygnatura czasowa: 0x55c4bc8e Kod wyjątku: 0xc0000142 Przesunięcie błędu: 0x0009d4f2 Identyfikator procesu powodującego błąd: 0xa8c Godzina uruchomienia aplikacji powodującej błąd: 0xchrome.exe0 Ścieżka aplikacji powodującej błąd: chrome.exe1 Ścieżka modułu powodującego błąd: chrome.exe2 Identyfikator raportu: chrome.exe3 Pełna nazwa pakietu powodującego błąd: chrome.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: chrome.exe5 Error: (11/05/2015 02:19:03 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: TiWorker.exe, wersja: 6.3.9600.17031, sygnatura czasowa: 0x53087091 Nazwa modułu powodującego błąd: wcp.dll, wersja: 6.3.9600.17031, sygnatura czasowa: 0x53087294 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000000000009bf73 Identyfikator procesu powodującego błąd: 0xd94 Godzina uruchomienia aplikacji powodującej błąd: 0xTiWorker.exe0 Ścieżka aplikacji powodującej błąd: TiWorker.exe1 Ścieżka modułu powodującego błąd: TiWorker.exe2 Identyfikator raportu: TiWorker.exe3 Pełna nazwa pakietu powodującego błąd: TiWorker.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: TiWorker.exe5 Dziennik System: ============= Error: (12/14/2015 11:13:25 PM) (Source: DCOM) (EventID: 10010) (User: AsusZenbook) Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39} Error: (12/14/2015 11:13:25 PM) (Source: DCOM) (EventID: 10010) (User: AsusZenbook) Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39} Error: (12/14/2015 11:10:19 PM) (Source: DCOM) (EventID: 10029) (User: ZARZĄDZANIE NT) Description: {E60687F7-01A1-40AA-86AC-DB1CBF673334}wuauserv Error: (12/14/2015 11:02:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa WinZiper service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (12/14/2015 10:33:16 PM) (Source: DCOM) (EventID: 10029) (User: ZARZĄDZANIE NT) Description: {E60687F7-01A1-40AA-86AC-DB1CBF673334}wuauserv Error: (12/14/2015 10:29:16 PM) (Source: DCOM) (EventID: 10029) (User: AsusZenbook) Description: {E60687F7-01A1-40AA-86AC-DB1CBF673334}wuauserv Error: (12/14/2015 10:25:15 PM) (Source: DCOM) (EventID: 10029) (User: ZARZĄDZANIE NT) Description: {E60687F7-01A1-40AA-86AC-DB1CBF673334}wuauserv Error: (12/14/2015 10:21:15 PM) (Source: DCOM) (EventID: 10029) (User: AsusZenbook) Description: {E60687F7-01A1-40AA-86AC-DB1CBF673334}wuauserv Error: (12/14/2015 10:17:14 PM) (Source: DCOM) (EventID: 10029) (User: AsusZenbook) Description: {E60687F7-01A1-40AA-86AC-DB1CBF673334}wuauserv Error: (12/14/2015 10:13:14 PM) (Source: DCOM) (EventID: 10029) (User: ZARZĄDZANIE NT) Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}wuauserv CodeIntegrity: =================================== Date: 2015-11-30 13:20:34.416 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-30 13:20:34.321 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-30 13:14:12.803 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-30 13:14:12.709 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-30 12:30:44.301 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-30 12:30:44.179 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-28 16:54:50.747 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-28 16:54:50.662 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-28 16:20:42.553 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-11-28 16:20:42.456 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i7-5500U CPU @ 2.40GHz Procent pamięci w użyciu: 37% Całkowita pamięć fizyczna: 8094.55 MB Dostępna pamięć fizyczna: 5033.55 MB Całkowita pamięć wirtualna: 9374.55 MB Dostępna pamięć wirtualna: 6227.69 MB ==================== Dyski ================================ Drive c: (OS) (Fixed) (Total:202.46 GB) (Free:157.56 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 223.6 GB) (Disk ID: 7433A2E3) Partition: GPT. ==================== Koniec Addition.txt ============================