Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:17-12-2015 Uruchomiony przez Bajor (2015-12-18 13:21:19) Uruchomiony z G:\ Windows 7 Home Premium Service Pack 1 (X64) (2010-12-20 16:21:21) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-839240802-3775549750-1006347184-500 - Administrator - Disabled) Bajor (S-1-5-21-839240802-3775549750-1006347184-1000 - Administrator - Enabled) => C:\Users\Bajor Gość (S-1-5-21-839240802-3775549750-1006347184-501 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-839240802-3775549750-1006347184-1000\...\uTorrent) (Version: 3.4.2.32506 - BitTorrent Inc.) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9130 - Adobe Systems Inc.) Adobe Flash Player 19 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 19.0.0.185 - Adobe Systems Incorporated) Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.185 - Adobe Systems Incorporated) Adobe Reader X (10.1.15) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AA1000000001}) (Version: 10.1.15 - Adobe Systems Incorporated) Advertising Center (x32 Version: 0.0.0.1 - Nero AG) Hidden Corel Graphics - Windows Shell Extension 64 Bit (Version: 17.0.491 - Corel Corporation) Hidden Detektor Winampa (HKU\S-1-5-21-839240802-3775549750-1006347184-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc) Galeria fotografii usługi Windows Live (x32 Version: 14.0.8081.709 - Microsoft Corporation) Hidden globalupdate Helper (x32 Version: 1.3.25.0 - globalupdate Inc.) Hidden <==== UWAGA Google Chrome (HKU\S-1-5-21-839240802-3775549750-1006347184-1000\...\Google Chrome) (Version: 10.0.648.133 - Google Inc.) Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden GPU Monitor (HKLM-x32\...\VLC Player GPU+11.041.44) (Version: 11.041.44 - GPU Usage) <==== UWAGA ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation) Intel(R) Graphics Media Accelerator Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2086 - Intel Corporation) Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation) Java(TM) 6 Update 20 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216020FF}) (Version: 6.0.200 - Sun Microsystems, Inc.) Junk Mail filter update (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden K-Lite Codec Pack 6.0.4 (Basic) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 6.0.4 - ) Microsoft .NET Framework 4.5.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation) NapiProjekt 1.0.6.9 (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Narzędzie do przekazywania usługi Windows Live (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation) Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (Version: 11.0.51108 - Microsoft Corporation) Hidden Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden Poczta usługi Windows Live (x32 Version: 14.0.8089.0726 - Microsoft Corporation) Hidden Podstawowe programy Windows Live (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation) Podstawowe programy Windows Live (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) Program TOSHIBA HDD/SSD Alert (HKLM-x32\...\InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}) (Version: 3.1.64.6 - TOSHIBA Corporation) Program TOSHIBA HDD/SSD Alert (Version: 3.1.64.6 - TOSHIBA Corporation) Hidden Program TOSHIBA HDD/SSD Alert (x32 Version: 3.1.64.6 - TOSHIBA Corporation) Hidden Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.23.623.2010 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6167 - Realtek Semiconductor Corp.) Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30111 - Realtek Semiconductor Corp.) Realtek WLAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4fed-B2B9-173001290E16}) (Version: 2.00.0013 - REALTEK Semiconductor Corp.) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Setup (HKLM-x32\...\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}) (Version: - ) <==== UWAGA Sprzęt instalacyjny TOSHIBA (HKLM-x32\...\InstallShield_{5279374D-87FE-4879-9385-F17278EBB9D3}) (Version: 1.63.0.27C - TOSHIBA CORPORATION) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.8.1 - Synaptics Incorporated) TOSHIBA Disc Creator (HKLM\...\{5DA0E02F-970B-424B-BF41-513A5018E4C0}) (Version: 2.1.0.2 for x64 - TOSHIBA Corporation) TOSHIBA Flash Cards Support Utility (HKLM-x32\...\InstallShield_{620BBA5E-F848-4D56-8BDA-584E44584C5E}) (Version: 1.63.0.10C - Nazwa firmy) TOSHIBA Media Controller (HKLM-x32\...\{983CD6FE-8320-4B80-A8F6-0D0366E0AA22}) (Version: 1.0.80.8.64 - TOSHIBA CORPORATION) TOSHIBA Media Controller Plug-in (HKLM-x32\...\{F26FDF57-483E-42C8-A9C9-EEE1EDB256E0}) (Version: 1.0.5.11 - TOSHIBA CORPORATION) TOSHIBA Recovery Media Creator (HKLM\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 2.1.0.4 x64 - TOSHIBA Corporation) TOSHIBA Value Added Package (HKLM-x32\...\InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}) (Version: 1.3.14.64 - TOSHIBA Corporation) TOSHIBA Web Camera Application (HKLM-x32\...\{5E6F6CF3-BACC-4144-868C-E14622C658F3}) (Version: 1.1.1.16 - TOSHIBA Corporation) Utility Common Driver (x32 Version: 1.0.52.2C - TOSHIBA) Hidden Winamp (HKLM-x32\...\Winamp) (Version: 5.621 - Nullsoft, Inc) WinRAR archiver (HKLM-x32\...\WinRAR archiver) (Version: - ) Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (Version: 11.0.51108 - Microsoft Corporation) Hidden Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Punkty Przywracania systemu ========================= ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {1355165F-610E-4E7F-BD0B-45EF745FD01D} - System32\Tasks\APSnotifierPP1 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== UWAGA Task: {151EE5B9-5E2F-447C-BA7F-E169A0FFE976} - System32\Tasks\{389FB2BB-0FB5-4017-BE87-D422063C9F61} => C:\Program Files (x86)\Valve\hl.exe Task: {15F2BD54-6385-43AB-A423-F5BCB04E9C8D} - System32\Tasks\EHprzyMaYaxmLOCpWiE => C:\Users\Bajor\AppData\Roaming\EHprzyMaYaxmLOCpWiE.exe [2015-04-20] () <==== UWAGA Task: {17A19606-062F-423D-929C-2CFCD4596E33} - System32\Tasks\{17F80C1F-19E8-408A-A296-68D585A46A71} => C:\Program Files (x86)\Valve\hl.exe Task: {18CD4B78-C088-4BE8-8DB1-38834E7883D3} - System32\Tasks\{57C3402F-F811-4005-9F3E-EFCF1762BB69} => pcalua.exe -a D:\gry\gothic3\Uninstal.exe -d D:\gry\gothic3 Task: {228E596B-5F4E-43F6-9042-DAFA51A0FF8D} - System32\Tasks\{99406A69-3D46-4FEF-85E8-6BAEFB983D5B} => C:\Program Files (x86)\Valve\hl.exe Task: {260BB75B-F792-4AB0-B7D5-F8A12190B64F} - System32\Tasks\{DAE438B5-E4FC-4737-AA36-A6222EABC801} => pcalua.exe -a "C:\Users\Bajor\Desktop\tonsil programy\Cinema 4D Studio 11.514\Setup.exe" -d "C:\Users\Bajor\Desktop\tonsil programy\Cinema 4D Studio 11.514" Task: {28F85E51-20FF-4731-B063-FCB747DD2890} - System32\Tasks\Bidaily Synchronize Task[74c7] => c:\programdata\{a60396a6-8f03-adee-a603-396a68f05a9a}\hqghumeaylnlf.exe <==== UWAGA Task: {29B070DF-4642-440E-8991-72796C81ABAC} - System32\Tasks\{09807BD2-3716-4A06-90E2-7238C76E77CC} => C:\Program Files (x86)\City Interactive\Crash Time II\CrashTime2.exe Task: {2F16A3A9-C544-4850-AB8D-56A26F3279A0} - System32\Tasks\APSnotifierPP2 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== UWAGA Task: {2FCD00A8-7F02-49C9-A33A-33206C93FF16} - System32\Tasks\{BCA5F36D-0278-4A36-87AC-5501A9ADFCD6} => pcalua.exe -a "C:\Users\Bajor\Downloads\csv13full (1).exe" -d C:\Users\Bajor\Desktop Task: {3E47776C-54AB-4C53-84AC-B9BE8D03DDFF} - System32\Tasks\{FB8C9F60-5D14-46CF-A4CA-73066E357D9B} => pcalua.exe -a C:\Users\Bajor\AppData\Roaming\istartsurf\UninstallManager.exe -c -ptid=obw Task: {3EAD5B38-792F-43BB-92E5-7A976AA80378} - System32\Tasks\{C8E1C8A2-E6A2-4FD5-8E5C-E638C2AE76BF} => pcalua.exe -a "C:\Users\Bajor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SEQQDV1Z\csv15full.exe" -d C:\Users\Bajor\Desktop Task: {56F5200F-2547-4683-ABCC-CCB9E0C0CB28} - System32\Tasks\SmartWeb Upgrade Trigger Task => C:\Users\Bajor\AppData\Local\SmartWeb\SmartWebHelper.exe <==== UWAGA Task: {63475900-D4F7-46AF-9900-E69F52CBCA04} - System32\Tasks\{654EAB1A-54F9-4584-8A46-D4449C78ABFD} => C:\Program Files (x86)\Valve\hl.exe Task: {6A6AF324-A080-4549-8EBB-0E4CB3D36EB4} - System32\Tasks\{18C85B4F-CEA1-4FF1-8503-05D61E4670E9} => pcalua.exe -a C:\Users\Bajor\Downloads\csv13full.exe -d C:\Users\Bajor\Desktop Task: {6E87F45A-EA00-4A01-99DE-24D9BC48024D} - System32\Tasks\APSnotifierPP3 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== UWAGA Task: {72B8745A-695C-43D8-9A81-BDB59D7B5F93} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe <==== UWAGA Task: {761F1363-A887-4477-91DB-CC9D28D6B58B} - System32\Tasks\{FD762312-BDD5-48CC-8769-74511E0BB572} => C:\Program Files (x86)\Valve\hl.exe Task: {76C0C1E4-949F-4AD2-9621-5D2BD78F57B0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-09-14] (Adobe Systems Incorporated) Task: {83A1FFED-A1DF-4189-88F4-B90A974DB5DE} - System32\Tasks\{8AAD31A0-A580-4791-85C8-A997B24ECEBD} => pcalua.exe -a H:\Setup.exe -d H:\ Task: {8600C623-0939-4A7D-B3C3-64D33D9395CA} - System32\Tasks\FileInspect => c:\programdata\{d7278ba5-8ed3-b6b6-d727-78ba58ed2e96}\2715029882298378839e.exe <==== UWAGA Task: {8D102236-4C53-4E57-8616-35D35F5779E5} - System32\Tasks\MyBrowser => C:\Program Files (x86)\MyBrowser\MyBrowser\Application\utility.exe <==== UWAGA Task: {A7252BCA-298D-4E0E-8FEE-D6AD5DAC1435} - System32\Tasks\{F4A2674C-5CD1-4FD7-8CEA-ED922D1FB782} => C:\Program Files (x86)\Valve\hl.exe Task: {AA688856-3617-4C3F-AECF-B25011E55728} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation) Task: {B0308889-60BB-4FF7-8D5D-FF293E17C086} - System32\Tasks\{9AD07A59-E2AA-47A3-9913-660B56EF072A} => C:\Program Files (x86)\Valve\hl.exe Task: {B14F9BAD-D80C-45E5-9B11-13FA933A1B06} - System32\Tasks\{2CDA425B-08C3-4794-8C28-757555D5B17E} => C:\Program Files (x86)\Valve\hl.exe Task: {BB74C644-A61C-4A4B-AB86-62111F032D2A} - System32\Tasks\hhhhh => D:\muzyka\mp3\Video - 02. Papierowy księżyc.mp3 Task: {BC26F2F8-EE68-48E7-8A56-EE4BA1E84878} - System32\Tasks\DataKeeper => c:\programdata\{d53611fb-585f-9f92-d536-611fb58547ed}\7371807827326421887e.exe <==== UWAGA Task: {C0896A66-A2AB-4EE7-B664-37790F091FFB} - System32\Tasks\{1CE41D8A-2EF3-49C4-B136-84058B46404E} => pcalua.exe -a E:\Patche\stk-pl-10004.exe -d E:\Patche Task: {C9BEEF18-51E5-470B-A92A-815C0F55639D} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe <==== UWAGA Task: {CEE4A61A-6E37-41A2-974A-37141CD497D1} - System32\Tasks\{400363EC-D7AE-47E8-824D-C6E79797A0E6} => C:\Program Files (x86)\Valve\hl.exe Task: {F0EDCAC7-6620-401F-9917-1D5959B782DC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-22] (Adobe Systems Incorporated) Task: {F4BB09D1-84DF-4577-B773-E5A065171459} - System32\Tasks\{8B8E0365-87AA-4FC2-8E2A-542514634DEF} => C:\Program Files (x86)\Skype\\Phone\Skype.exe (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\APSnotifierPP1.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== UWAGA Task: C:\Windows\Tasks\APSnotifierPP2.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== UWAGA Task: C:\Windows\Tasks\APSnotifierPP3.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== UWAGA Task: C:\Windows\Tasks\Bidaily Synchronize Task[74c7].job => c:\programdata\{a60396a6-8f03-adee-a603-396a68f05a9a}\hqghumeaylnlf.exe <==== UWAGA Task: C:\Windows\Tasks\DataKeeper.job => c:\programdata\{d53611fb-585f-9f92-d536-611fb58547ed}\7371807827326421887e.exe <==== UWAGA Task: C:\Windows\Tasks\EHprzyMaYaxmLOCpWiE.job => C:\Users\Bajor\AppData\Roaming\EHprzyMaYaxmLOCpWiE.exe <==== UWAGA Task: C:\Windows\Tasks\FileInspect.job => c:\programdata\{d7278ba5-8ed3-b6b6-d727-78ba58ed2e96}\2715029882298378839e.exe <==== UWAGA Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe <==== UWAGA Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe <==== UWAGA Task: C:\Windows\Tasks\MyBrowser.job => C:\Program Files (x86)\MyBrowser\MyBrowser\Application\utility.exe <==== UWAGA Task: C:\Windows\Tasks\RMSchedule.job => C:\Program Files (x86)\Registry Mechanic\RegMech.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\Bajor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> www.aqovd.com?oem=sunadplv3&uid=100829PBNC00EYC56G5S_HTS545032B9A&tm=1443384228 ShortcutWithArgument: C:\Users\Bajor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WorldofTanks\WorldofTanks.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> www.aqovd.com?oem=sunadplv3&uid=100829PBNC00EYC56G5S_HTS545032B9A&tm=1443384228 ShortcutWithArgument: C:\Users\Bajor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> www.aqovd.com?oem=sunadplv3&uid=100829PBNC00EYC56G5S_HTS545032B9A&tm=1443384228 ShortcutWithArgument: C:\Users\Bajor\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> www.aqovd.com?oem=sunadplv3&uid=100829PBNC00EYC56G5S_HTS545032B9A&tm=1443384228 ShortcutWithArgument: C:\Users\Bajor\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WorldofTanks.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> www.aqovd.com?oem=sunadplv3&uid=100829PBNC00EYC56G5S_HTS545032B9A&tm=1443384228 ShortcutWithArgument: C:\Users\Bajor\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (64-bit).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> www.aqovd.com?oem=sunadplv3&uid=100829PBNC00EYC56G5S_HTS545032B9A&tm=1443384228 ==================== Załadowane moduły (filtrowane) ============== 2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2010-12-20 19:02 - 2005-06-07 12:26 - 00043008 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll 2010-04-07 15:07 - 2010-04-07 15:07 - 09468728 _____ () C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll 2009-11-03 12:26 - 2009-11-03 12:26 - 00053560 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnZ.dll 2010-03-03 13:15 - 2010-03-03 13:15 - 00019256 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF10.dll 2010-03-03 13:15 - 2010-03-03 13:15 - 00019256 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF11.dll 2009-03-12 19:08 - 2009-03-12 19:08 - 00048640 _____ () C:\Program Files (x86)\Toshiba\PCDiag\NotifyPCD.dll 2009-07-25 15:38 - 2009-07-25 15:38 - 00017800 _____ () C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll 2010-02-05 16:44 - 2010-02-05 16:44 - 00079192 _____ () C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosIPCWraper.dll 2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2015-10-18 13:19 - 2011-03-11 07:50 - 04110392 _____ () C:\Users\Bajor\AppData\Local\Google\Chrome\Application\10.0.648.133\pdf.dll 2015-10-18 13:19 - 2011-03-11 07:48 - 01823304 _____ () C:\Users\Bajor\AppData\Local\Google\Chrome\Application\10.0.648.133\avcodec-52.dll 2015-10-18 13:19 - 2011-03-11 07:48 - 00102472 _____ () C:\Users\Bajor\AppData\Local\Google\Chrome\Application\10.0.648.133\avutil-50.dll 2015-10-18 13:19 - 2011-03-11 07:48 - 00194632 _____ () C:\Users\Bajor\AppData\Local\Google\Chrome\Application\10.0.648.133\avformat-52.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-839240802-3775549750-1006347184-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Bajor\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) mpsdrv => Usługa "Zapora systemu Windows" nie jest uruchomiona. MpsSvc => Usługa "Zapora systemu Windows" nie jest uruchomiona. ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) MSCONFIG\startupreg: CorelDRAW Graphics Suite 11b => C:\Program Files (x86)\Corel\Corel Graphics 12\Languages\PL\Programs\Registration.exe /title="CorelDRAW Graphics Suite 12" /date=022212 serial=DR12WUZ-9327650-SEW lang=PL ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{D8B1E95D-3F2A-4683-8C64-843AAF0B7CA5}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{84AA1DE8-6539-4808-9F55-077213E01666}] => (Allow) svchost.exe FirewallRules: [{290D82A9-5168-4922-8512-F7E4589FE9B6}] => (Allow) C:\Program Files (x86)\Opera\opera.exe FirewallRules: [{FF7F3BD4-92FB-47E4-925F-797FA53324B1}] => (Allow) C:\Program Files (x86)\Opera\opera.exe FirewallRules: [{082BCD30-650C-4167-A54F-C299330F3EFC}] => (Allow) D:\gry\mofh\BFBC2Updater.exe FirewallRules: [{C2F8990F-48BC-4DC7-831E-EB4B6EBCE23C}] => (Allow) D:\gry\mofh\BFBC2Updater.exe FirewallRules: [{82B05258-C147-4C2F-9BF8-D2AAC5D520BD}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{86D85D9D-4DC5-48CD-BB9B-D6B6E21AAB5E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{CDF7AB9A-A8D7-45C2-BD58-DA34132C35E4}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{D71A19F5-14AA-4F94-817E-C7919BA7CB43}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [TCP Query User{0166877F-7109-43D2-972F-176D70573DE3}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe FirewallRules: [UDP Query User{EF8B8096-5120-43F2-A770-7381D209F4B7}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe FirewallRules: [TCP Query User{A4CF7F09-AF1A-437C-8D79-0C34C491A790}C:\program files (x86)\opera\opera.exe] => (Allow) C:\program files (x86)\opera\opera.exe FirewallRules: [UDP Query User{A588905E-8B26-45F4-A87A-CDEF8CFF2DFF}C:\program files (x86)\opera\opera.exe] => (Allow) C:\program files (x86)\opera\opera.exe FirewallRules: [TCP Query User{E718B6AE-DFAA-4A20-B479-4B399582219F}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe FirewallRules: [UDP Query User{7C781935-3FEE-4AFF-93EC-1DA6163B0BA3}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe FirewallRules: [TCP Query User{C4F9E9B2-7A17-4EF7-B58D-E6A0DB6D045C}C:\program files (x86)\gadu-gadu 10\gg.exe] => (Allow) C:\program files (x86)\gadu-gadu 10\gg.exe FirewallRules: [UDP Query User{7029D863-D1A8-41EE-9F83-DFA53ED37CF2}C:\program files (x86)\gadu-gadu 10\gg.exe] => (Allow) C:\program files (x86)\gadu-gadu 10\gg.exe FirewallRules: [TCP Query User{10368CB3-6B7B-4A35-8109-A8FE870C27B2}C:\program files (x86)\gadu-gadu 10\gg.exe] => (Block) C:\program files (x86)\gadu-gadu 10\gg.exe FirewallRules: [UDP Query User{A6063C8E-D5CC-4C81-B561-88933FEE6AED}C:\program files (x86)\gadu-gadu 10\gg.exe] => (Block) C:\program files (x86)\gadu-gadu 10\gg.exe FirewallRules: [TCP Query User{2F68C9C6-8803-49D8-9F16-B57098A7B633}C:\program files (x86)\google\google earth\plugin\geplugin.exe] => (Allow) C:\program files (x86)\google\google earth\plugin\geplugin.exe FirewallRules: [UDP Query User{6E6027C9-92DF-4F93-8FE5-FCE5226F887B}C:\program files (x86)\google\google earth\plugin\geplugin.exe] => (Allow) C:\program files (x86)\google\google earth\plugin\geplugin.exe FirewallRules: [TCP Query User{B0246BE2-8277-4762-9A74-D95BB696144C}D:\gry\cod4\wolfteam.bin] => (Block) D:\gry\cod4\wolfteam.bin FirewallRules: [UDP Query User{895473CB-178C-4AD8-AAC9-1DE14E75BA10}D:\gry\cod4\wolfteam.bin] => (Block) D:\gry\cod4\wolfteam.bin FirewallRules: [TCP Query User{876EFA8E-4806-4FF2-85C9-2CE80913C616}C:\users\bajor\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\bajor\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{D4914F25-3342-4709-9D3E-A93D2BE1B78C}C:\users\bajor\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\bajor\appdata\local\akamai\netsession_win.exe FirewallRules: [TCP Query User{3B0FA86D-423A-42A9-BE92-ECDBE83D6774}C:\users\bajor\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\bajor\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{C5F82858-7584-4B20-882F-2E1F16FF26F7}C:\users\bajor\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\bajor\appdata\local\akamai\netsession_win.exe FirewallRules: [{A99B1F0A-94C0-4124-9799-F34D9347FB82}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe FirewallRules: [{89B81160-78AE-4EF2-B6E8-ADEE10E77B87}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe FirewallRules: [{54AC3E78-9116-4700-981B-A90CD4C864A3}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe FirewallRules: [{FC67C397-E7B6-49D9-938D-A9E12990AEFB}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe FirewallRules: [{B08AA244-4C8A-4131-86F0-1D0AC72E6C5E}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe FirewallRules: [{C200611A-51A4-44EB-AC4B-0713A0472733}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe FirewallRules: [{C42D719B-6E75-4B3C-8AA8-DD3E3629C0E4}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe FirewallRules: [{1087A309-4AB8-41B9-818A-AF59C50CC75C}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe FirewallRules: [{C5DA4BB6-A8C3-4F4E-9CE3-36CB537AB1B1}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe FirewallRules: [{598D2416-0516-402A-B9E5-854E27CBACC9}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe FirewallRules: [TCP Query User{5F2100FC-266E-4710-9A15-EEF7AC07EF8C}C:\program files (x86)\valve\hl.exe] => (Allow) C:\program files (x86)\valve\hl.exe FirewallRules: [UDP Query User{527F4171-230B-419E-B0F4-6686317735F3}C:\program files (x86)\valve\hl.exe] => (Allow) C:\program files (x86)\valve\hl.exe FirewallRules: [TCP Query User{521B7B6E-8BF6-4406-AD52-8551AE02B103}C:\program files (x86)\valve\hltv.exe] => (Allow) C:\program files (x86)\valve\hltv.exe FirewallRules: [UDP Query User{BD8D2EE1-CF52-4FD5-B56A-9763ACD35A09}C:\program files (x86)\valve\hltv.exe] => (Allow) C:\program files (x86)\valve\hltv.exe FirewallRules: [TCP Query User{1BDA19E2-FCB8-4FD0-AD8F-B6BB3CE8B95B}C:\program files\maxon\net render r11.5 client\net render client 64 bit.exe] => (Allow) C:\program files\maxon\net render r11.5 client\net render client 64 bit.exe FirewallRules: [UDP Query User{2F5C280D-8912-4726-AA81-140CC8BDAB10}C:\program files\maxon\net render r11.5 client\net render client 64 bit.exe] => (Allow) C:\program files\maxon\net render r11.5 client\net render client 64 bit.exe FirewallRules: [TCP Query User{E0726AE5-1B93-4CDB-9035-26429A206485}C:\program files\maxon\net render r11.5 client\net render client.exe] => (Block) C:\program files\maxon\net render r11.5 client\net render client.exe FirewallRules: [UDP Query User{89A64701-B7EF-4360-8EBB-B82DD2437AC9}C:\program files\maxon\net render r11.5 client\net render client.exe] => (Block) C:\program files\maxon\net render r11.5 client\net render client.exe FirewallRules: [{00F6F94E-4C82-4310-A204-4CFD2C705393}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe FirewallRules: [TCP Query User{3694C536-AA1B-4AC2-9B94-FFC723BC5453}C:\program files (x86)\java\jre6\bin\java.exe] => (Allow) C:\program files (x86)\java\jre6\bin\java.exe FirewallRules: [UDP Query User{A553CB72-8E0E-449C-A0E4-05B1251E7477}C:\program files (x86)\java\jre6\bin\java.exe] => (Allow) C:\program files (x86)\java\jre6\bin\java.exe FirewallRules: [TCP Query User{7FB81B0D-9D37-4649-964D-7F524FEE4574}C:\program files (x86)\java\jre6\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre6\bin\javaw.exe FirewallRules: [UDP Query User{7790ECE0-0EB3-4C73-9D69-73C96576B5AA}C:\program files (x86)\java\jre6\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre6\bin\javaw.exe FirewallRules: [TCP Query User{66AF7C30-71F3-4E26-B7B8-A08BC77585FA}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe FirewallRules: [UDP Query User{A82D91DD-C4F1-44CC-BA41-F15CB7865A7F}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe FirewallRules: [{BCD3264E-0E53-4EAB-BF2B-2F75EDC0B47D}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe FirewallRules: [{70E5AE37-FF57-4E2A-A2FA-79D6B3942794}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe FirewallRules: [TCP Query User{15C53744-06A2-48C7-8293-2E682C553FE9}C:\program files\graphisoft\archicad 15\licensefilegenerator.exe] => (Allow) C:\program files\graphisoft\archicad 15\licensefilegenerator.exe FirewallRules: [UDP Query User{B0EE5E1E-53D3-461B-ACEB-9A9C65A838C9}C:\program files\graphisoft\archicad 15\licensefilegenerator.exe] => (Allow) C:\program files\graphisoft\archicad 15\licensefilegenerator.exe FirewallRules: [TCP Query User{15DDBF26-9B43-44D9-8EC3-8D9A4DFCFDD8}C:\program files\artlantis studio 4\qtsocketserver.exe] => (Allow) C:\program files\artlantis studio 4\qtsocketserver.exe FirewallRules: [UDP Query User{8D2E008B-F7D8-4890-AA26-D71A95C2FCD3}C:\program files\artlantis studio 4\qtsocketserver.exe] => (Allow) C:\program files\artlantis studio 4\qtsocketserver.exe FirewallRules: [TCP Query User{8AADC263-11A3-4F9D-BF86-58DD7300C3F1}C:\program files\graphisoft\archicad 16\lp_xmlconverter.exe] => (Allow) C:\program files\graphisoft\archicad 16\lp_xmlconverter.exe FirewallRules: [UDP Query User{E7276CB2-4136-4E12-9FA5-5AD92533C2E4}C:\program files\graphisoft\archicad 16\lp_xmlconverter.exe] => (Allow) C:\program files\graphisoft\archicad 16\lp_xmlconverter.exe FirewallRules: [TCP Query User{A9E38181-D3E5-4F34-B0BA-86B301C4D1EF}C:\program files\graphisoft\archicad 16\previouslp_xmlconverter\lp_xmlconverter.exe] => (Block) C:\program files\graphisoft\archicad 16\previouslp_xmlconverter\lp_xmlconverter.exe FirewallRules: [UDP Query User{30EFEE5B-E614-4FA4-B38A-7507A7208490}C:\program files\graphisoft\archicad 16\previouslp_xmlconverter\lp_xmlconverter.exe] => (Block) C:\program files\graphisoft\archicad 16\previouslp_xmlconverter\lp_xmlconverter.exe FirewallRules: [TCP Query User{6FB0F5A2-369B-47B9-ABB2-2CEAE4B965EB}C:\program files\graphisoft\archicad 16\previouslp_xmlconverter\gsquicktimeserver\gsqtserver.exe] => (Allow) C:\program files\graphisoft\archicad 16\previouslp_xmlconverter\gsquicktimeserver\gsqtserver.exe FirewallRules: [UDP Query User{49A9F5C8-30F1-4DE6-81C7-20A8620FAF82}C:\program files\graphisoft\archicad 16\previouslp_xmlconverter\gsquicktimeserver\gsqtserver.exe] => (Allow) C:\program files\graphisoft\archicad 16\previouslp_xmlconverter\gsquicktimeserver\gsqtserver.exe FirewallRules: [TCP Query User{A5F32662-DBDA-4FF0-AABE-BEFFB4521CA4}C:\program files\artlantis studio 4\artlantisstudio.exe] => (Allow) C:\program files\artlantis studio 4\artlantisstudio.exe FirewallRules: [UDP Query User{68063318-C3FE-472D-8E84-CA57B503C42D}C:\program files\artlantis studio 4\artlantisstudio.exe] => (Allow) C:\program files\artlantis studio 4\artlantisstudio.exe FirewallRules: [TCP Query User{6A34AFFA-0DE2-48E3-AC7D-DC72FF07A291}C:\program files\graphisoft\archicad 16\licensefilegenerator.exe] => (Allow) C:\program files\graphisoft\archicad 16\licensefilegenerator.exe FirewallRules: [UDP Query User{05F9A2F5-7A52-49EE-9252-A44669B8BFEE}C:\program files\graphisoft\archicad 16\licensefilegenerator.exe] => (Allow) C:\program files\graphisoft\archicad 16\licensefilegenerator.exe FirewallRules: [TCP Query User{CFBF788D-00D3-463D-86BA-DCC285B2D8D9}E:\easysetupassistant\easysetupassistant.exe] => (Allow) E:\easysetupassistant\easysetupassistant.exe FirewallRules: [UDP Query User{0CE99B7E-5302-4FBD-8B1E-D307F07FB1F4}E:\easysetupassistant\easysetupassistant.exe] => (Allow) E:\easysetupassistant\easysetupassistant.exe FirewallRules: [{B42DD5C1-EB9D-434E-BF05-F75DADFFD65B}] => (Allow) C:\Program Files\BitComet\BitComet.exe FirewallRules: [{1FCFCA1E-1E5D-4F11-8A82-28E37D2D2416}] => (Allow) C:\Program Files\BitComet\BitComet.exe FirewallRules: [TCP Query User{072A831E-29DB-497B-BAEE-B77BFCBE1070}C:\users\bajor\downloads\utorrentportable\app\utorrent\utorrent.exe] => (Allow) C:\users\bajor\downloads\utorrentportable\app\utorrent\utorrent.exe FirewallRules: [UDP Query User{393383F5-0E7B-4662-867F-CB69D0E0801E}C:\users\bajor\downloads\utorrentportable\app\utorrent\utorrent.exe] => (Allow) C:\users\bajor\downloads\utorrentportable\app\utorrent\utorrent.exe FirewallRules: [TCP Query User{837A3E8F-1006-496D-AF49-0FFCC05D6973}C:\users\bajor\desktop\bittorrent-7-7-3-28706.exe] => (Allow) C:\users\bajor\desktop\bittorrent-7-7-3-28706.exe FirewallRules: [UDP Query User{AAA9D594-8DB7-40BD-B20A-ACF3BAE760F5}C:\users\bajor\desktop\bittorrent-7-7-3-28706.exe] => (Allow) C:\users\bajor\desktop\bittorrent-7-7-3-28706.exe ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Niepowodzenie przy listowaniu urządzeń. Sprawdź usługę "winmgmt" lub napraw WMI. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (12/18/2015 01:08:31 PM) (Source: Schedule) (EventID: 0) (User: ) Description: Schedule error: 10106Initialize call failed, bailing out Error: (12/14/2015 09:37:47 PM) (Source: Schedule) (EventID: 0) (User: ) Description: Schedule error: 10106Initialize call failed, bailing out Error: (12/11/2015 07:08:16 PM) (Source: Schedule) (EventID: 0) (User: ) Description: Schedule error: 10106Initialize call failed, bailing out Error: (12/11/2015 06:55:41 PM) (Source: Schedule) (EventID: 0) (User: ) Description: Schedule error: 10106Initialize call failed, bailing out Error: (12/11/2015 06:49:59 PM) (Source: Schedule) (EventID: 0) (User: ) Description: Schedule error: 10106Initialize call failed, bailing out Error: (12/11/2015 06:36:32 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: iexplore.exe, wersja: 11.0.9600.18057, sygnatura czasowa: 0x5605a124 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00460218 Identyfikator procesu powodującego błąd: 0x808 Godzina uruchomienia aplikacji powodującej błąd: 0xiexplore.exe0 Ścieżka aplikacji powodującej błąd: iexplore.exe1 Ścieżka modułu powodującego błąd: iexplore.exe2 Identyfikator raportu: iexplore.exe3 Error: (12/11/2015 06:35:15 PM) (Source: Schedule) (EventID: 0) (User: ) Description: Schedule error: 10106Initialize call failed, bailing out Error: (12/11/2015 07:21:01 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: iexplore.exe, wersja: 11.0.9600.18057, sygnatura czasowa: 0x5605a124 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00d50218 Identyfikator procesu powodującego błąd: 0x634 Godzina uruchomienia aplikacji powodującej błąd: 0xiexplore.exe0 Ścieżka aplikacji powodującej błąd: iexplore.exe1 Ścieżka modułu powodującego błąd: iexplore.exe2 Identyfikator raportu: iexplore.exe3 Error: (12/11/2015 07:19:46 AM) (Source: Schedule) (EventID: 0) (User: ) Description: Schedule error: 10106Initialize call failed, bailing out Error: (12/11/2015 07:02:23 AM) (Source: Schedule) (EventID: 0) (User: ) Description: Schedule error: 10106Initialize call failed, bailing out Dziennik System: ============= Error: (12/18/2015 01:10:50 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: Usługa Usługa inteligentnego transferu w tle zakończyła działanie; wystąpił specyficzny dla niej błąd %%-2147014790. Error: (12/18/2015 01:10:50 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: ZARZĄDZANIE NT) Description: Uruchomienie usługi BITS nie powiodło się. Błąd 2147952506. Error: (12/18/2015 01:09:13 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Agent zasad IPsec zakończyła działanie; wystąpił następujący błąd: %%10106 Error: (12/18/2015 01:08:29 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: ZARZĄDZANIE NT) Description: Uruchomienie modułu rozszerzalności sieci WLAN nie powiodło się. Ścieżka modułu: C:\Windows\system32\Rtlihvs.dll Kod błędu: 126 Error: (12/14/2015 10:03:38 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {3EB3C877-1F16-487C-9050-104DBCD66683} Error: (12/14/2015 09:47:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi DrWeb Protection z powodu następującego błędu: %%31 Error: (12/14/2015 09:46:06 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: Bajor-TOSH) Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts. Error: (12/14/2015 09:40:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Usługa Google Update (gupdate) z powodu następującego błędu: %%2 Error: (12/14/2015 09:40:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi globalUpdate Update Service (globalUpdate) z powodu następującego błędu: %%216 Error: (12/14/2015 09:38:13 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Agent zasad IPsec zakończyła działanie; wystąpił następujący błąd: %%10106 CodeIntegrity: =================================== Date: 2015-12-10 22:04:56.350 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\199ce.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-12-10 22:04:55.819 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\199ce.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: Pentium(R) Dual-Core CPU T4500 @ 2.30GHz Procent pamięci w użyciu: 43% Całkowita pamięć fizyczna: 2936.88 MB Dostępna pamięć fizyczna: 1645.68 MB Całkowita pamięć wirtualna: 5871.97 MB Dostępna pamięć wirtualna: 4532.47 MB ==================== Dyski ================================ Drive c: (WINDOWS) (Fixed) (Total:149.04 GB) (Free:38.39 GB) NTFS Drive d: (Data) (Fixed) (Total:148.65 GB) (Free:51.69 GB) NTFS Drive e: (GRMCPRXFRER_PL_DVD) (CDROM) (Total:2.91 GB) (Free:0 GB) UDF Drive f: () (Removable) (Total:3.72 GB) (Free:3.14 GB) FAT32 Drive g: () (Removable) (Total:14.54 GB) (Free:14.36 GB) FAT32 ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 64ABF50A) Partition 1: (Active) - (Size=400 MB) - (Type=27) Partition 2: (Not Active) - (Size=149 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=148.7 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Size: 3.7 GB) (Disk ID: 002EEFDA) Partition 1: (Active) - (Size=3.7 GB) - (Type=0C) ======================================================== Disk: 2 (Size: 14.6 GB) (Disk ID: 001644FB) Partition 1: (Active) - (Size=14.6 GB) - (Type=0C) ==================== Koniec Addition.txt ============================