Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:29-12-2015 Uruchomiony przez Rafal (2015-12-31 11:18:15) Uruchomiony z C:\Users\Rafal\Desktop\Nowy folder Windows 7 Ultimate Service Pack 1 (X64) (2015-07-09 10:17:23) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-1232658623-443321704-2474385330-500 - Administrator - Disabled) Gość (S-1-5-21-1232658623-443321704-2474385330-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1232658623-443321704-2474385330-1002 - Limited - Enabled) Rafal (S-1-5-21-1232658623-443321704-2474385330-1001 - Administrator - Enabled) => C:\Users\Rafal ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated) Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.267 - Adobe Systems Incorporated) Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated) AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Ashampoo Burning Studio 2015 v.1.15.3 (HKLM-x32\...\{91B33C97-21E3-DF34-9630-2EE80DDE1648}_is1) (Version: 1.15.3 - Ashampoo GmbH & Co. KG) AVG (HKLM\...\AvgZen) (Version: 1.22.1.40089 - AVG Technologies) AVG (Version: 16.12.7303 - AVG Technologies) Hidden AVG 2016 (Version: 16.0.4489 - AVG Technologies) Hidden AVG Protection (HKLM\...\AVG) (Version: 2016.12.7303 - AVG Technologies) AVG Zen (Version: 1.22.1 - AVG Technologies) Hidden Bloody5 (HKLM-x32\...\Bloody3) (Version: 15.06.0005 - Bloody) Brackets (HKLM-x32\...\{36FDB2A6-90A0-43DC-8CF9-FC66E1D6DC7D}) (Version: 1.5 - brackets.io) CCleaner (HKLM\...\CCleaner) (Version: 5.06 - Piriform) Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - ) GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.) Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games) Koala version 2.0.4 (HKLM-x32\...\{434536F5-D7D0-4558-B756-F5D65705068A}_is1) (Version: 2.0.4 - Ethan Lai) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.22609 (HKLM\...\{7FAA7151-D2F2-3CB5-A82B-16410DC068F6}) (Version: 14.0.22609 - Microsoft Corporation) Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.22609 (HKLM\...\{6246A9E2-24AE-3CEE-8C52-1CCE7F0E4006}) (Version: 14.0.22609 - Microsoft Corporation) Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.22609 (HKLM-x32\...\{E4E510C1-EC51-3DB5-A1A1-E6116853EF7B}) (Version: 14.0.22609 - Microsoft Corporation) Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.22609 (HKLM-x32\...\{9B5D95E8-316C-3390-B4A5-EB7B6D8F228D}) (Version: 14.0.22609 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Web Platform Installer 5.0 (HKLM\...\{4D84C195-86F0-4B34-8FDE-4A17EB41306A}) (Version: 5.0.50430.0 - Microsoft Corporation) Mozilla Firefox 43.0.1 (x86 pl) (HKLM-x32\...\Mozilla Firefox 43.0.1 (x86 pl)) (Version: 43.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.1.5828 - Mozilla) Mozilla Thunderbird 38.0.1 (x86 pl) (HKLM-x32\...\Mozilla Thunderbird 38.0.1 (x86 pl)) (Version: 38.0.1 - Mozilla) Mozilla Thunderbird 38.5.0 (x86 pl) (HKU\S-1-5-21-1232658623-443321704-2474385330-1001\...\Mozilla Thunderbird 38.5.0 (x86 pl)) (Version: 38.5.0 - Mozilla) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Narzędzia sprawdzające pakietu Microsoft Office 2013 — polski (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.8 - Notepad++ Team) Origin (HKLM-x32\...\Origin) (Version: 9.11.2.10120 - Electronic Arts, Inc.) Pazera Free MP4 to AVI Converter 1.9 (HKLM-x32\...\{42442BC6-5A92-4BC2-9E0C-3D359D548A21}_is1) (Version: 1.9 - Jacek Pazera) Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation) PowerISO (HKLM-x32\...\PowerISO) (Version: 4.6 - PowerISO Computing, Inc.) Raptr (HKLM-x32\...\Raptr) (Version: - ) Razer Arctosa (HKLM-x32\...\{2D9C81F2-CF30-47F9-860E-58DACF92ABC9}) (Version: 1.00.0000 - Razer USA Ltd.) Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6650 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.) RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version: - Punk Software) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.9 - Rockstar Games) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation) Skype™ 7.14 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.14.106 - Skype Technologies S.A.) SopCast 3.8.3 (HKLM-x32\...\SopCast) (Version: 3.8.3 - www.sopcast.com) SpyHunter (HKLM-x32\...\{AF549236-6258-4AC6-A043-5B5B89C6EB61}) (Version: 4.17.6.4336 - Enigma Software Group USA, LLC) Sublime Text 2.0.2 (HKLM\...\Sublime Text 2_is1) (Version: - ) The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.11.0 - GOG.com) The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.0.10.0 - GOG.com) The Witcher 3: Wild Hunt - Serca z kamienia (HKLM-x32\...\Hearts of Stone_is1) (Version: 1.0.10.0 - GOG.com) Update for Skype for Business 2015 (KB2889853) 64-Bit Edition (HKLM\...\{90150000-012B-0415-1000-0000000FF1CE}_Office15.PROPLUS_{CF394926-359E-48E1-AA25-E56B32FCB335}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3054791) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{591150FB-47D4-495C-9E76-F8D354A2577D}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3054791) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{591150FB-47D4-495C-9E76-F8D354A2577D}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3054791) 64-Bit Edition (HKLM\...\{90150000-012B-0415-1000-0000000FF1CE}_Office15.PROPLUS_{591150FB-47D4-495C-9E76-F8D354A2577D}) (Version: - Microsoft) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN) WampServer 2.5 (HKLM-x32\...\WampServer 2_is1) (Version: - Hervé Leclerc (HeL)) WERSJA DEMO FIFA 16 (HKLM-x32\...\{D09AD1AE-6AAC-45EB-B9F6-C1F223DD8481}) (Version: 1.0.0.0 - Electronic Arts) Windows Phone app for desktop (HKLM-x32\...\{99759E36-8961-43DC-A7E6-4601D6AEF166}) (Version: 1.1.2726.0 - Microsoft Corporation) WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0374FE2D-2D34-4CB4-8634-C3E2182D4BFC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated) Task: {1AC9EF26-E65C-456A-B7D4-05BA0ADD4437} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-09] (Google Inc.) Task: {3128EE91-095A-4CE8-ABD8-15E932B90D7C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {321C2DA8-A87B-4ED6-9D15-13C45A134E97} - System32\Tasks\Gamma Task Menager Worker => C:\Program Files (x86)\Gamma Task Menager\gtrsecure.exe <==== UWAGA Task: {3DFFE59E-7F28-4E6A-9669-D723BD8BCCA6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-09] (Google Inc.) Task: {46F719CC-1492-4E93-AB47-C7395A15A082} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-05-08] (Piriform Ltd) Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto Task: {61E6FECF-CDF9-4D04-9E84-60A0A5E481AF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-28] (Adobe Systems Incorporated) Task: {92AEA3C3-2E1B-481D-BF7F-D55423950A0F} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {AA66755A-C4B8-44CD-9464-76D8B5B160F2} - System32\Tasks\PenetrativeBarrelsV2 => Rundll32.exe PalaverStumpiest.dll,main 7 1 <==== UWAGA Task: {AB219379-D173-44D3-95DB-CDD5ED6CA42D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {C6B78804-A70D-42C0-8B94-65031EF5B973} - System32\Tasks\Network Defrag => C:\Users\Rafal\AppData\Roaming\Network Defrag\Network Defrag.exe <==== UWAGA Task: {D7B63D74-6E50-4B9A-AAA3-74500B8B7B6C} - System32\Tasks\{7BFD4C87-59D4-43FB-86A2-9B642149754D} => pcalua.exe -a C:\Users\Rafal\AppData\Roaming\istartsurf\UninstallManager.exe -c -ptid=cor Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2014-11-20 20:23 - 2014-11-20 20:23 - 00214528 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll 2014-02-11 05:08 - 2014-02-11 05:08 - 00817152 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Device.dll 2014-02-11 05:08 - 2014-02-11 05:08 - 03650560 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Platform.dll 2015-07-09 12:43 - 2007-09-02 12:58 - 00495616 _____ () F:\PROGRAMY\RocketDock\RocketDock\RocketDock.exe 2015-07-09 12:43 - 2007-09-02 12:57 - 00069632 _____ () F:\PROGRAMY\RocketDock\RocketDock\RocketDock.dll 2015-12-04 15:00 - 2015-12-04 15:00 - 00349184 _____ () C:\Users\Rafal\AppData\Local\PenetrativeBarrels\PalaverStumpiest.dll 2015-12-30 22:41 - 2015-12-30 22:41 - 00153768 _____ () F:\PROGRAMY\Thunderbird\NSLDAP32V60.dll 2015-12-30 22:41 - 2015-12-30 22:41 - 00023208 _____ () F:\PROGRAMY\Thunderbird\NSLDAPPR32V60.dll 2015-12-16 20:46 - 2015-12-11 04:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll 2015-12-16 20:46 - 2015-12-11 04:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll 2015-12-24 21:02 - 2015-12-24 07:46 - 16792256 _____ () C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\PepperFlash\20.0.0.267\pepflashplayer.dll ==================== Alternate Data Streams (filtrowane) ========= ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2015-07-13 08:14 - 00000878 ____N C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 localhost ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-1232658623-443321704-2474385330-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Rafal\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) MSCONFIG\startupreg: Arctosa => "C:\Program Files (x86)\Razer\Arctosa\razerhid.exe" MSCONFIG\startupreg: Bloody2 => "C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe" Minimum MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: GalaxyClient => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe /launchViaAutoStart MSCONFIG\startupreg: Raptr => C:\Program Files (x86)\Raptr\raptrstub.exe --startup MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun MSCONFIG\startupreg: WinLess => C:\Program Files (x86)\Mark Lagendijk\WinLess\WinLess.exe ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{D73F59F0-6AFE-4A65-BB82-050A076B1885}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe FirewallRules: [{F3C2A4AF-95DD-4C88-8402-5E903D9898E6}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe FirewallRules: [{F5872DD0-F881-4ED2-BEE8-3D0001CAE016}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe FirewallRules: [{8B8A6041-342A-473C-8D04-B631554CC3FE}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe FirewallRules: [{17F0F428-6CCC-4BDE-B66B-8C4BDD61ED8B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{241199D9-2455-4C61-9DA7-BFD00CF24BB0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{6D101CC4-CF4A-4A39-B1CE-D31EA1FF5861}F:\programy\totalcmd\totalcmd64.exe] => (Allow) F:\programy\totalcmd\totalcmd64.exe FirewallRules: [UDP Query User{9B34CED0-1517-4B7B-8FE6-5252FCDAF2BE}F:\programy\totalcmd\totalcmd64.exe] => (Allow) F:\programy\totalcmd\totalcmd64.exe FirewallRules: [{A27370C2-632D-4EA1-8EC7-2CAD3439A293}] => (Allow) F:\PROGRAMY\NapiProjekt\NapiProjekt\napisy.exe FirewallRules: [{765C26CE-E6F9-4408-9DE0-E2A0A69B1D8C}] => (Allow) F:\PROGRAMY\NapiProjekt\NapiProjekt\napisy.exe FirewallRules: [TCP Query User{417BBE6D-66BA-47F9-91F9-A6363D5334CC}C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe FirewallRules: [UDP Query User{BF56FB6F-6C05-450C-81E2-A40874CED928}C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe FirewallRules: [TCP Query User{CE9F24EC-984E-4177-89ED-8BB0ED734B30}F:\programy\sublime text 2\sublime_text.exe] => (Allow) F:\programy\sublime text 2\sublime_text.exe FirewallRules: [UDP Query User{142C7986-44B3-4851-BC12-22ED00382BCB}F:\programy\sublime text 2\sublime_text.exe] => (Allow) F:\programy\sublime text 2\sublime_text.exe FirewallRules: [{562D293C-BF4E-469D-9305-A0B6C917330C}] => (Allow) F:\GTA V\GTA5.exe FirewallRules: [{A7736C57-40E8-4E85-B448-0CC8239E4DF4}] => (Allow) F:\GTA V\GTA5.exe FirewallRules: [TCP Query User{354E465A-3442-4004-B34C-5869B15FA0FD}F:\programy\sopcast\sopcast.exe] => (Allow) F:\programy\sopcast\sopcast.exe FirewallRules: [UDP Query User{3BF3B7BC-0C34-4325-86A2-1FD9D17C8F62}F:\programy\sopcast\sopcast.exe] => (Allow) F:\programy\sopcast\sopcast.exe FirewallRules: [{C250A6EF-0A84-403D-90AC-69BEF6727D4B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{CA766377-7BA3-4265-9622-3BBF41BB80B8}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{FAF05D92-BF6D-4635-8315-11597CFBA288}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{D5D6606B-A954-48B7-87E3-CCD0B1D75F77}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{34EDB0B3-3CDE-43C8-AC30-D5CC67093FB5}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{EB1D2AE4-D86F-41EC-8006-BFF05923DFE5}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe FirewallRules: [{66610EDD-5E02-4E95-AB38-CE01214CE6D5}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe FirewallRules: [{DEC9A54F-C1A8-4B53-A471-2EB6DA725798}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{27D09318-A211-40BD-9A26-06E71E47C66B}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{4CE16166-A517-4E7B-AFB7-36D8C310E337}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe FirewallRules: [{5EEB397F-ECBB-4FEC-AD05-2885D0F4A440}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe FirewallRules: [{553AE082-E2A9-4367-9181-80313E14DE61}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [TCP Query User{58E6A013-B5CA-40F4-BF3C-E4ED40AF8914}F:\programy\brackets\node.exe] => (Allow) F:\programy\brackets\node.exe FirewallRules: [UDP Query User{17DB0ADE-614D-4B77-A033-58EE27F49EA1}F:\programy\brackets\node.exe] => (Allow) F:\programy\brackets\node.exe FirewallRules: [{11ABC0E4-85BE-4204-BE27-CD5A9802BD49}] => (Allow) F:\Program Files (x86)\Origin Games\FIFA 16 DEMO\fifasetup\fifaconfig.exe FirewallRules: [{D15F0B33-0239-4155-838B-97E65930D049}] => (Allow) F:\Program Files (x86)\Origin Games\FIFA 16 DEMO\fifasetup\fifaconfig.exe FirewallRules: [TCP Query User{AAFE487E-698B-4E71-8D68-6D8038D53630}F:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe] => (Allow) F:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe FirewallRules: [UDP Query User{133436E5-3170-4C3A-B647-A5E16DD4E550}F:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe] => (Allow) F:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe ==================== Punkty Przywracania systemu ========================= 17-12-2015 13:56:55 Installed Brackets 28-12-2015 20:26:59 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 28-12-2015 20:27:33 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 28-12-2015 21:33:04 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 30-12-2015 14:31:29 Punkt przywracania przed FMW 1 usunięto przy użyciu narzędzia do rozwiązywania problemów z instalowaniem i odinstalowywaniem programów 30-12-2015 14:31:55 FMW 1 ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (12/31/2015 10:11:33 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (12/30/2015 07:44:33 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (12/30/2015 02:31:55 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Odmowa dostępu. . To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym. Operacja: Zbieranie danych modułu zapisującego Kontekst: Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220} Nazwa modułu zapisującego: System Writer Identyfikator wystąpienia modułu zapisującego: {53e20c40-0ab7-4bd7-95d4-10994d2803aa} Error: (12/30/2015 02:31:28 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Odmowa dostępu. . To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym. Operacja: Zbieranie danych modułu zapisującego Kontekst: Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220} Nazwa modułu zapisującego: System Writer Identyfikator wystąpienia modułu zapisującego: {53e20c40-0ab7-4bd7-95d4-10994d2803aa} Error: (12/30/2015 02:31:25 PM) (Source: MsiInstaller) (EventID: 11922) (User: Rafal-Komputer) Description: Product: FMW 1 -- Error 1922. Service 'AVG Service' (avgsvc) could not be deleted. Verify that you have sufficient privileges to remove system services. Error: (12/30/2015 11:30:08 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (12/30/2015 09:49:54 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (12/29/2015 07:45:41 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (12/29/2015 12:27:10 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (12/29/2015 09:14:00 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Dziennik System: ============= Error: (12/31/2015 10:10:24 AM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: Usługa AVGIDSAgent zakończyła działanie; wystąpił specyficzny dla niej błąd %%-536753631. Error: (12/31/2015 10:10:18 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi AVG Service z powodu następującego błędu: %%1053 Error: (12/31/2015 10:10:18 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą AVG Service. Error: (12/30/2015 11:33:36 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: Usługa AVGIDSAgent zakończyła działanie; wystąpił specyficzny dla niej błąd %%-536753631. Error: (12/30/2015 07:43:22 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: Usługa AVGIDSAgent zakończyła działanie; wystąpił specyficzny dla niej błąd %%-536753631. Error: (12/30/2015 07:43:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi AVG Service z powodu następującego błędu: %%1053 Error: (12/30/2015 07:43:17 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą AVG Service. Error: (12/29/2015 12:24:42 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 11:03:14 na ‎2015-‎12-‎29 było nieoczekiwane. Error: (12/28/2015 02:53:47 PM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: Usługa Klient zasad grupy nie została poprawnie zamknięta po odebraniu kodu sterującego przed zamknięciem. Error: (12/22/2015 01:31:21 PM) (Source: Service Control Manager) (EventID: 7032) (User: ) Description: Menedżer sterowania usługami próbował podjąć akcję korekcyjną (Uruchom usługę ponownie) po nieoczekiwanym zakończeniu usługi Windows Search, ale ta akcja nie powiodła się przy następującym błędzie: %%1056. ==================== Statystyki pamięci =========================== Procesor: AMD Phenom(tm) II X4 955 Processor Procent pamięci w użyciu: 43% Całkowita pamięć fizyczna: 4094.49 MB Dostępna pamięć fizyczna: 2294.34 MB Całkowita pamięć wirtualna: 8187.19 MB Dostępna pamięć wirtualna: 5571.63 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:78.03 GB) (Free:20.01 GB) NTFS Drive d: (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive e: (DOWNLOAD) (Fixed) (Total:9.75 GB) (Free:9.33 GB) FAT32 Drive f: (PROGRAMY) (Fixed) (Total:387.63 GB) (Free:64.72 GB) NTFS Drive h: (MEDIA) (Fixed) (Total:455.99 GB) (Free:157.36 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 394F422F) Partition 1: (Active) - (Size=456 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=9.8 GB) - (Type=0C) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 00017111) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=78 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=387.6 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================