Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x86) Wersja:05-03-2016 01 Uruchomiony przez Majkel (2016-03-15 11:54:31) Uruchomiony z C:\Users\Majkel\Downloads Microsoft Windows 7 Ultimate Service Pack 1 (X86) (2014-01-22 23:16:55) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-3561182577-639801756-3185389835-500 - Administrator - Enabled) => C:\Users\Administrator Gość (S-1-5-21-3561182577-639801756-3185389835-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3561182577-639801756-3185389835-1002 - Limited - Enabled) Majkel (S-1-5-21-3561182577-639801756-3185389835-1000 - Administrator - Enabled) => C:\Users\Majkel Mcx1-MAJKEL-KOMPUTER (S-1-5-21-3561182577-639801756-3185389835-1004 - Limited - Enabled) => C:\Users\Mcx1-MAJKEL-KOMPUTER ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: AVG AntiVirus Free Edition 2015 (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG AntiVirus Free Edition 2015 (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE} FW: AVG update module (Disabled) {757AB44A-78C2-7D1A-E37F-CA42A037B368} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Adobe Acrobat Reader DC - Polish (HKLM\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated) Adobe Flash Player 21 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 21.0.0.182 - Adobe Systems Incorporated) Adobe Flash Player 21 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 21.0.0.182 - Adobe Systems Incorporated) Aktualizacja produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0415-0000-0000000FF1CE}_ENTERPRISE_{04E205D6-88B1-4652-B162-42DF2C3B1228}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0415-0000-0000000FF1CE}_ENTERPRISE_{442ECBCF-94A7-48CC-8CD9-D31FFFD5FA86}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0415-0000-0000000FF1CE}_ENTERPRISE_{128A36ED-21BE-4547-9FFE-5B85AEC735DD}) (Version: - Microsoft) Aktualizacje NVIDIA 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden AP Tuner 3.08 (HKLM\...\AP Tuner 3.08) (Version: - ) Apple Mobile Device Support (HKLM\...\{E1DB0812-2D60-43DB-AE09-6C7027D93B28}) (Version: 8.1.1.3 - Apple Inc.) Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) ASIO4ALL (HKLM\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach) Assassin's Creed II (HKLM\...\{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}) (Version: 1.01 - Ubisoft) ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.24 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0028 - ASUS) ATK Hotkey (HKLM\...\{7C05592D-424B-46CB-B505-E0013E8E75C9}) (Version: 1.0.0053 - ASUS) ATK Media (HKLM\...\{D1E5870E-E3E5-4475-98A6-ADD614524ADF}) (Version: 2.0.0006 - ASUS) ATKOSD2 (HKLM\...\{3B05F2FB-745B-4012-ADF2-439F36B2E70B}) (Version: 7.0.0007 - ASUS) AVG (HKLM\...\AvgZen) (Version: 1.41.1.56922 - AVG Technologies) AVG 2015 (HKLM\...\AVG) (Version: 2015.0.6189 - AVG Technologies) AVG 2015 (Version: 15.0.4530 - AVG Technologies) Hidden AVG 2015 (Version: 15.0.4542 - AVG Technologies) Hidden AVG 2015 (Version: 15.0.6189 - AVG Technologies) Hidden AVG PC TuneUp 2014 (HKLM\...\AVG PC TuneUp 2014) (Version: 14.0.1001.147 - AVG) AVG PC TuneUp 2014 (pl-PL) (Version: 14.0.1001.147 - AVG) Hidden AVG PC TuneUp 2014 (Version: 14.0.1001.147 - AVG) Hidden AVG Zen (Version: 1.41.29 - AVG Technologies) Hidden BatteryBar (remove only) (HKLM\...\BatteryBar) (Version: - ) BEHRINGER USB AUDIO DRIVER (HKLM\...\USB_AUDIO_DEusb-audio.deBehringer2902) (Version: - ) BitTorrent (HKU\S-1-5-21-3561182577-639801756-3185389835-1000\...\BitTorrent) (Version: 7.9.5.41713 - BitTorrent Inc.) BitTorrent (HKU\S-1-5-21-3561182577-639801756-3185389835-500\...\BitTorrent) (Version: 7.9.5.41866 - BitTorrent Inc.) BlueSoleil 10.0.479.1 (HKLM\...\{C50C0B2C-CCEC-4143-9D19-2661BD47BD7D}) (Version: 10.0.479.1 - Nazwa firmy) Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.) CWK (Czasowy Wyłącznik Komputera) (HKLM\...\CWK) (Version: 2.52.3.43 - Damian Pasternak) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd) FMW 1 (Version: 1.62.2 - AVG Technologies) Hidden GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden Guitar Pro 5.2 (HKLM\...\Guitar Pro 5_is1) (Version: - Arobas Music) iTunes (HKLM\...\{3A9FE6B1-EE7F-40AC-B831-AC7C9ABB58A0}) (Version: 12.1.1.4 - Apple Inc.) Java 8 Update 25 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation) Knights of the Force 2.0 (HKLM\...\Knights of the Force 2.0) (Version: 2.0 - KotF.com) Live! Cam Sync HD VF0770 Driver (1.00.02.00) (HKLM\...\Creative VF0770) (Version: - Creative Technology Ltd.) Metric Collection SDK (Version: 1.1.0012.00 - Lenovo Group Limited) Hidden Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.6.01055 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Mozilla Firefox 45.0 (x86 pl) (HKLM\...\Mozilla Firefox 45.0 (x86 pl)) (Version: 45.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 45.0 - Mozilla) Native Instruments AC Box Combo (HKLM\...\Native Instruments AC Box Combo) (Version: - ) Native Instruments Plexi Combo (HKLM\...\Native Instruments Plexi Combo) (Version: - ) Native Instruments Twang Combo (HKLM\...\Native Instruments Twang Combo) (Version: - ) NVIDIA GeForce Experience 1.8.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.1 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 331.65 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.26.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.26.4 - NVIDIA Corporation) NVIDIA Sterownik graficzny 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation) NVIDIA Virtual Audio 1.2.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.19 - NVIDIA Corporation) Obsługa programów Apple (32-bitowa) (HKLM\...\{447CDCE5-F555-429B-BFA6-642C3C6D684F}) (Version: 3.1.2 - Apple Inc.) OpenOffice 4.0.1 (HKLM\...\{47F460DA-D1BE-4D85-8DF2-AA1F31D3445F}) (Version: 4.01.9714 - Apache Software Foundation) Panel sterowania NVIDIA 331.65 (Version: 331.65 - NVIDIA Corporation) Hidden PC TWIN SHOCK (HKLM\...\{4999B2F1-3E74-409A-B8B5-E94448AA9EA6}) (Version: 2007.08.17 - ) Rocksmith (HKLM\...\Rocksmith_is1) (Version: - ) SHARP AR-M160/M205/5220 Series T2 MFP Driver (HKLM\...\SHARP AR-M160 M205 5220 Series T2 MFP Driver) (Version: 1.00.000 - SHARP) Sharp Button Manager A (HKLM\...\Sharp Button Manager A) (Version: 1.00 - Sharp) SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden Skype™ 7.0 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.) Star Wars Jedi Knight Jedi Academy (HKLM\...\{1EECBA68-8BE4-4076-94DF-E9ED206B1D21}) (Version: - ) Subtitle Edit 3.3.12 (HKLM\...\SubtitleEdit_is1) (Version: 3.3.12.2367 - Nikse) The KMPlayer (remove only) (HKLM\...\The KMPlayer) (Version: 3.8.0.117 - PandoraTV) Tony Hawk's Underground 2 (HKLM\...\InstallShield_{EF1394D4-9FB6-4F1F-9A09-20FF3033AE14}) (Version: 1.00.0000 - Activision) Tony Hawk's Underground 2 (Version: 1.00.0000 - Activision) Hidden Ubisoft Game Launcher (HKLM\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT) Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) WD Drive Utilities (HKLM\...\{41FB33E8-F7B7-4DAD-97F6-A5FB5C13CE3B}) (Version: 1.0.6.3 - Western Digital Technologies, Inc.) WD Quick View (HKLM\...\{15F5403E-C8AF-4FEC-893D-BA96D6063270}) (Version: 2.3.0.20 - Western Digital Technologies, Inc.) WD Security (HKLM\...\{91D4CB50-2839-4436-A272-1215AD05592C}) (Version: 1.0.6.3 - Western Digital Technologies, Inc.) WD SmartWare (HKLM\...\{14F421F8-C193-403A-9480-08A494884D0B}) (Version: 2.3.0.20 - Western Digital Technologies, Inc.) WD SmartWare Installer (HKLM\...\{1ec9e03a-452b-48fb-8e1b-27ee0477985f}) (Version: 2.3.0.20 - Western Digital Technologies, Inc.) Wiedźmin 2 (HKLM\...\{F0A209B7-7F85-4BDD-8F1F-B98EEAD9E04B}) (Version: 1.00.0000 - CD Projekt Red) WinRAR 5.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-3561182577-639801756-3185389835-1000_Classes\CLSID\{1c492e6a-2803-5ed7-83e1-1b1d4d41eb39}\InprocServer32 -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll () ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {070D2592-F020-42EE-8374-0D871E2F3BBF} - System32\Tasks\0215tb_RML => C:\Program Files\AVG Web TuneUp\AVG-Secure-Search-Update_0215tb.exe Task: {47C75497-F6FA-4C89-9B56-9574575CA9FC} - System32\Tasks\{065EDE78-F15E-48B8-88B6-81F6D50B6134} => pcalua.exe -a F:\setup.exe -d F:\ -c -el -s2 "-dC:\Program Files\USB Vibration\7906\setup" "-p" "-sp" Task: {5F1337DF-22B4-451E-9A57-B97B35C50104} - System32\Tasks\{554FA88E-BEE4-4FA8-8922-AD497EE2A5AD} => pcalua.exe -a I:\download\Realtime_Audio_Effects_v.1.08\V108.exe -d I:\download\Realtime_Audio_Effects_v.1.08 Task: {689A993C-465D-4A79-96FC-FD34CD453723} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-08] (Lenovo) Task: {718D529A-4DE9-4B11-AAC7-A07ED5EE430E} - System32\Tasks\{00C87106-B09D-4B0D-9094-EFE94D55A3E2} => D:\Program Files\Shai Raiten\Bluetooth Radar\Blue Radar.exe Task: {7887C036-E764-484C-B418-9ED4815C5E54} - System32\Tasks\ASUS P4G => D:\Program Files\P4G\BatteryLife.exe [2009-09-08] (ATK) Task: {79573F11-F6F7-42D7-A13E-6A2C46E34437} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files\AVG\AVG PC TuneUp\OneClick.exe [2013-08-30] (AVG) Task: {832671FC-5326-4676-BF03-86EAA7013AE4} - System32\Tasks\ACMON => D:\Program Files\ASUS\Splendid\ACMON.exe [2009-07-23] (ATK) Task: {87AABDE0-9DAC-4DAB-AFD1-1E0BF55545F8} - System32\Tasks\P4GIntlCtrl => D:\Program Files\P4G\IntlCtrl.exe [2009-08-11] (TODO: ) Task: {93A63725-46E6-48F2-AE34-2968239181A8} - \Program aktualizacji online firmy Adobe. -> Brak pliku <==== UWAGA Task: {B6539625-8C62-4166-859A-7E5C265D2EC3} - System32\Tasks\{4107DA9D-7BBB-4FD6-9E1F-CA7FFEC327E6} => pcalua.exe -a "I:\Games\KotF Jedi Academy Expansion Pack\Menus\flashactivexinstaller.exe" -d "I:\Games\KotF Jedi Academy Expansion Pack\Menus" Task: {C94B6D48-499C-46C7-A2C8-91004E00ED66} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-10] (Adobe Systems Incorporated) Task: {DC20BEF6-D912-49BC-A133-14E4D705FD3C} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-10-07] (Oracle Corporation) Task: {E6A57D68-4EE9-4A8A-BABB-96BF518DD35A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {F43EBDAF-BA81-4F2E-936F-8D9FECB2F662} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated) Task: {FD1F534F-A992-4DC2-84D5-ACCEE742981E} - System32\Tasks\Microsoft\Windows\Media Center\Extender\Update media permissions for Mcx1-MAJKEL-KOMPUTER => C:\Windows\ehome\McxTask.exe [2009-07-14] (Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\0215tb_RML.job => C:\Program Files\AVG Web TuneUp\AVG-Secure-Search-Update_0215tb.exe Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2014-07-23 16:02 - 2014-07-23 16:02 - 00311032 _____ () C:\Windows\system32\IVTCredentialProvider.DLL 2014-01-23 18:33 - 2013-10-23 08:19 - 00092448 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll 2014-07-23 16:01 - 2014-07-23 16:01 - 00031480 _____ () C:\Windows\system32\BsHelpCSps.dll 2014-07-23 16:01 - 2014-07-23 16:01 - 00813816 _____ () C:\Windows\system32\BlueSoleilCSps.dll 2014-07-25 10:11 - 2014-07-25 10:11 - 00367352 _____ () D:\Program Files\New Folder\IVT Corporation\BlueSoleil\setup.dll 2014-07-23 16:01 - 2014-07-23 16:01 - 00088824 _____ () C:\Windows\system32\BsVistaCommon.dll 2014-07-04 09:31 - 2014-07-04 09:31 - 00035672 _____ () d:\Program Files\New Folder\IVT Corporation\BlueSoleil\Driver\USB\btcusb.dll 2014-06-16 17:03 - 2014-06-16 17:03 - 00236280 _____ () D:\Program Files\New Folder\IVT Corporation\BlueSoleil\BaseLib.dll 2014-06-16 17:03 - 2014-06-16 17:03 - 00056056 _____ () D:\Program Files\New Folder\IVT Corporation\BlueSoleil\ExtraLib.dll 2014-06-16 17:03 - 2014-06-16 17:03 - 00048376 _____ () D:\Program Files\New Folder\IVT Corporation\BlueSoleil\cscvt.dll 2014-07-23 16:01 - 2014-07-23 16:01 - 00016632 _____ () C:\Windows\system32\BsMobileCSps.dll 2014-06-16 17:03 - 2014-06-16 17:03 - 00039672 _____ () C:\Windows\system32\cPhoneSDKCSps.dll 2013-08-30 11:40 - 2013-08-30 11:40 - 00501560 _____ () C:\Program Files\AVG\AVG PC TuneUp\avgreplibx.dll 2009-09-10 16:43 - 2009-09-10 16:43 - 00012800 _____ () D:\Program Files\P4G\DevMng.dll 2009-09-11 10:23 - 2009-09-11 10:23 - 00025088 _____ () D:\Program Files\P4G\OvrClk.dll 2008-09-30 23:02 - 2008-09-30 23:02 - 00009216 _____ () D:\Program Files\ASUS\Splendid\GLCDdll.dll 2015-09-15 14:43 - 2015-09-15 14:43 - 40500224 _____ () C:\Program Files\AVG\UiDll\2171\libcef.dll 2014-07-23 16:01 - 2014-07-23 16:01 - 00143096 _____ () C:\Windows\system32\BsProfilefunc.dll 2014-07-23 16:01 - 2014-07-23 16:01 - 00273144 _____ () C:\Windows\system32\Adpush.dll 2014-06-16 17:03 - 2014-06-16 17:03 - 00126200 _____ () D:\Program Files\New Folder\IVT Corporation\BlueSoleil\s40pack.dll 2015-05-25 23:47 - 2013-11-19 21:34 - 00152576 _____ () C:\Program Files\Remote Mouse\FileS.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:04 - 2016-03-12 18:50 - 00001205 ____N C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 www.czzsyzgm.com 127.0.0.1 www.czzsyzxl.com ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-3561182577-639801756-3185389835-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Majkel\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg HKU\S-1-5-21-3561182577-639801756-3185389835-500\Control Panel\Desktop\\Wallpaper -> C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 31.11.202.254 - 37.8.214.2 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [TCP Query User{4DBFC16D-1A3F-457E-8B4A-A72DB2EB56AC}G:\games\bin\witcher2.exe] => (Allow) G:\games\bin\witcher2.exe FirewallRules: [UDP Query User{154A29B9-5C61-4930-BEC0-3F7D3348B18B}G:\games\bin\witcher2.exe] => (Allow) G:\games\bin\witcher2.exe FirewallRules: [TCP Query User{F2C3796D-8BF4-4CCA-86B0-96545B24BD89}G:\games\bin\witcher2.exe] => (Allow) G:\games\bin\witcher2.exe FirewallRules: [UDP Query User{9A488E3A-A206-4BF8-BD8E-FF5F80CC958B}G:\games\bin\witcher2.exe] => (Allow) G:\games\bin\witcher2.exe FirewallRules: [{077410BA-7656-45CE-8538-43C64DDAE905}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{5086BD11-5E45-412C-B353-070F5A5F05CE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{7D280BAA-2E11-485C-9E20-ECD05A8FE489}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [{15572C9C-E695-4B3C-86FF-C0CC4F681BD9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{4D792DB9-6281-4350-8D3E-FB8F8D4C3BE8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{D916D9B3-E376-44E6-AAE6-6105E819A8CE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{08039A1F-8BEE-4CB3-83C7-99B5EF1FC69B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{E94496BB-2EBD-4933-A856-26ABA9120B24}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{FAD40576-BD47-47EB-ACC1-B874A3BF13CA}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{368B6C10-07EC-4662-B357-A096CEAB3565}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{E6460A34-851C-4FEB-B6AE-3FEE88EEEC89}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{AB733958-99B4-4411-A728-ABB5A49F643B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{EF6ECCB2-2C37-48BF-AFC6-678109141CF7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [TCP Query User{4B511CC7-8011-4742-BAC4-1FB719C8622D}G:\games\counter-strike 1.6\hl.exe] => (Allow) G:\games\counter-strike 1.6\hl.exe FirewallRules: [UDP Query User{D905FDB7-A2BE-447B-93E3-DA94F47AA367}G:\games\counter-strike 1.6\hl.exe] => (Allow) G:\games\counter-strike 1.6\hl.exe FirewallRules: [TCP Query User{79899465-4C18-4073-9A15-CA9D1DE74E25}I:\games\activision\tony hawk's underground 2\game\thug2.exe] => (Allow) I:\games\activision\tony hawk's underground 2\game\thug2.exe FirewallRules: [UDP Query User{79E8B026-B441-47FE-9987-27DBD527982B}I:\games\activision\tony hawk's underground 2\game\thug2.exe] => (Allow) I:\games\activision\tony hawk's underground 2\game\thug2.exe FirewallRules: [{D7F96C56-F7EF-4594-966D-44794B8EC386}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe FirewallRules: [{CF4CB32E-9B7A-4D14-BDBF-4FCF5C6D95DB}] => (Allow) C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe FirewallRules: [{E4FE8400-F465-40A8-AC46-1750D5910710}] => (Allow) C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe FirewallRules: [{F9B47870-B563-4F15-B5CA-8A978C611E76}] => (Allow) I:\Games\assasin\AssassinsCreedIIGame.exe FirewallRules: [{4E847A06-7EC5-470F-9293-CDBB3593E90C}] => (Allow) I:\Games\assasin\AssassinsCreedIIGame.exe FirewallRules: [{3D549AD3-02B9-4F43-94C1-D968828B5CE1}] => (Allow) I:\Games\assasin\AssassinsCreedII.exe FirewallRules: [{649196A8-D0D3-461F-BA3F-0977B119FBFD}] => (Allow) I:\Games\assasin\AssassinsCreedII.exe FirewallRules: [{1D3F1E5B-CE59-427F-B356-957D30DECBC8}] => (Allow) I:\Games\assasin\UPlayBrowser.exe FirewallRules: [{BA2F3060-A288-4EFE-BB91-7BB8A33B1AB3}] => (Allow) I:\Games\assasin\UPlayBrowser.exe FirewallRules: [{237A58B5-1DD4-40AE-895B-2B4757F49C25}] => (Allow) C:\Users\Administrator\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{79DA9E59-7AD3-4C3A-93E4-86A2EFB5A41D}] => (Allow) C:\Users\Administrator\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [TCP Query User{430622BC-15D0-4923-B40D-D823382254BD}I:\games\jedi\gamedata\jamp.exe] => (Allow) I:\games\jedi\gamedata\jamp.exe FirewallRules: [UDP Query User{AE18652C-AFA5-436C-9227-A992BE32AEDF}I:\games\jedi\gamedata\jamp.exe] => (Allow) I:\games\jedi\gamedata\jamp.exe FirewallRules: [TCP Query User{CD037344-3AB3-42DA-8A63-1EC4662F6966}I:\games\kotf jedi academy expansion pack\gamedata\jamp.exe] => (Block) I:\games\kotf jedi academy expansion pack\gamedata\jamp.exe FirewallRules: [UDP Query User{3436DF67-9F4A-41C5-822E-40DBEDF979EB}I:\games\kotf jedi academy expansion pack\gamedata\jamp.exe] => (Block) I:\games\kotf jedi academy expansion pack\gamedata\jamp.exe FirewallRules: [TCP Query User{9EF3990D-C909-4759-AC8C-98CE18D8F379}G:\dysk e\program files\wiedźmin\program files\wiedźmin 2\bin\witcher2.exe] => (Allow) G:\dysk e\program files\wiedźmin\program files\wiedźmin 2\bin\witcher2.exe FirewallRules: [UDP Query User{0E014D0B-F83A-4BC7-94A2-3CEB73324127}G:\dysk e\program files\wiedźmin\program files\wiedźmin 2\bin\witcher2.exe] => (Allow) G:\dysk e\program files\wiedźmin\program files\wiedźmin 2\bin\witcher2.exe FirewallRules: [TCP Query User{6913A459-2DAC-48D2-9D4C-E7FAE4C7E655}I:\games\cs 1.6\counter-strike 1.6\hl.exe] => (Allow) I:\games\cs 1.6\counter-strike 1.6\hl.exe FirewallRules: [UDP Query User{E8F4246F-CF86-4710-ABFE-DD11F58F0E3E}I:\games\cs 1.6\counter-strike 1.6\hl.exe] => (Allow) I:\games\cs 1.6\counter-strike 1.6\hl.exe FirewallRules: [{B44A1FF4-6F76-48D1-9156-45EAFE5235B6}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [TCP Query User{1EE114D1-AB7D-426D-838F-8F72C72D4235}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{8E387DE2-CCC4-4B1B-9625-D280C872E450}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe FirewallRules: [{69DB279D-3512-4083-BB61-A8CC959479E3}] => (Allow) C:\Program Files\Remote Mouse\RemoteMouse.exe FirewallRules: [{0D68E724-8B20-408D-B36F-152465AC6DB6}] => (Allow) C:\Program Files\Remote Mouse\RemoteMouse.exe FirewallRules: [TCP Query User{994D8F9E-A97A-4EB1-BC83-BB2E054806E0}C:\program files\remote mouse\remotemouse.exe] => (Allow) C:\program files\remote mouse\remotemouse.exe FirewallRules: [UDP Query User{E24F105D-0BB8-41C8-899D-B78A2C5E00A6}C:\program files\remote mouse\remotemouse.exe] => (Allow) C:\program files\remote mouse\remotemouse.exe FirewallRules: [{626506A5-7FE9-409A-A707-EF779C3AB2E5}] => (Allow) C:\Program Files\AVG\AVG2015\avgmfapx.exe FirewallRules: [{020E7B76-438F-469B-9DF4-F583B7A97778}] => (Allow) C:\Program Files\AVG\AVG2015\avgmfapx.exe FirewallRules: [TCP Query User{E0B39C06-63B1-4A12-9B67-E9EBDD611D91}C:\users\majkel\appdata\roaming\bittorrent\bittorrent.exe] => (Block) C:\users\majkel\appdata\roaming\bittorrent\bittorrent.exe FirewallRules: [UDP Query User{66C1A468-A524-49CD-93C3-046ECFB6ABA9}C:\users\majkel\appdata\roaming\bittorrent\bittorrent.exe] => (Block) C:\users\majkel\appdata\roaming\bittorrent\bittorrent.exe FirewallRules: [{34DC2B70-42EB-4330-974A-D52D9D887FA1}] => (Allow) C:\Program Files\AVG\AVG2015\avgnsx.exe FirewallRules: [{AE279780-5098-4E2B-9B91-EA86ED836B38}] => (Allow) C:\Program Files\AVG\AVG2015\avgnsx.exe FirewallRules: [{F8F8B51E-5A9B-4AC9-962F-BEB3B9AC3B2B}] => (Allow) C:\Program Files\AVG\AVG2015\avgdiagex.exe FirewallRules: [{DF19C913-79F1-4325-B781-0A185EEE1862}] => (Allow) C:\Program Files\AVG\AVG2015\avgdiagex.exe FirewallRules: [{D6107C4B-B175-41EB-8D02-C9616EAE4F01}] => (Allow) C:\Program Files\AVG\AVG2015\avgemcx.exe FirewallRules: [{6D21C052-5CB1-4981-BAA6-56014C536409}] => (Allow) C:\Program Files\AVG\AVG2015\avgemcx.exe FirewallRules: [{7F647F88-5079-47D7-859B-EF9565DE254D}] => (Allow) D:\Program Files\New Folder\IVT Corporation\BlueSoleil\BlueSoleilCS.exe FirewallRules: [{57C900AB-E4D7-4ED6-A720-DE72F8733927}] => (Allow) D:\Program Files\New Folder\IVT Corporation\BlueSoleil\BlueSoleilCS.exe FirewallRules: [{0564FEE4-EEE3-4E9C-940D-5A899A6D1916}] => (Allow) D:\Program Files\New Folder\IVT Corporation\BlueSoleil\cPhoneSDKCS.exe FirewallRules: [{B958C6F6-CA89-4ED8-95FC-E4EFFBFBF205}] => (Allow) D:\Program Files\New Folder\IVT Corporation\BlueSoleil\cPhoneSDKCS.exe FirewallRules: [{131CD618-87E3-4432-9E93-B7EFEEE4EA18}] => (Allow) D:\Program Files\New Folder\IVT Corporation\BlueSoleil\BlueSoleilCS.exe FirewallRules: [{C1B11AC4-02E3-4025-8158-652F372C2209}] => (Allow) D:\Program Files\New Folder\IVT Corporation\BlueSoleil\BlueSoleilCS.exe FirewallRules: [{D68ED977-F5E2-40EB-B56A-7622DA5D1B23}] => (Allow) D:\Program Files\New Folder\IVT Corporation\BlueSoleil\cPhoneSDKCS.exe FirewallRules: [{D301233A-6540-47AC-9572-EF3B698070BE}] => (Allow) D:\Program Files\New Folder\IVT Corporation\BlueSoleil\cPhoneSDKCS.exe FirewallRules: [{35A4E781-DF0E-493C-A7ED-3C411A805D14}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{BC12CC51-2CCE-48C5-9BB1-C94C47BFFA24}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe ==================== Punkty Przywracania systemu ========================= ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Podstawowe urządzenie systemowe Description: Podstawowe urządzenie systemowe Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Podstawowe urządzenie systemowe Description: Podstawowe urządzenie systemowe Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (03/15/2016 11:25:53 AM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcNvVAD initialization failed [6] Error: (03/15/2016 11:25:53 AM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0] Error: (03/15/2016 02:19:11 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 4227 Error: (03/15/2016 02:19:11 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 4227 Error: (03/15/2016 02:19:11 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (03/15/2016 02:19:10 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 3229 Error: (03/15/2016 02:19:10 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 3229 Error: (03/15/2016 02:19:10 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (03/15/2016 02:19:09 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 2184 Error: (03/15/2016 02:19:09 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 2184 Dziennik System: ============= Error: (03/15/2016 11:28:03 AM) (Source: WMPNetworkSvc) (EventID: 14332) (User: ) Description: WMPNetworkSvc0x80070422 Error: (03/15/2016 11:27:59 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Moduł wyliczający magistrali PnP-X IP zależy od usługi Host dostawcy odnajdowania funkcji, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (03/15/2016 11:27:35 AM) (Source: WMPNetworkSvc) (EventID: 14332) (User: ) Description: WMPNetworkSvc0x80070422 Error: (03/15/2016 11:27:32 AM) (Source: WMPNetworkSvc) (EventID: 14332) (User: ) Description: WMPNetworkSvc0x80070422 Error: (03/15/2016 11:27:29 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Dostawca grupy domowej zależy od usługi Host dostawcy odnajdowania funkcji, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (03/15/2016 11:25:21 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Windows Image Acquisition (WIA) zależy od usługi Wykrywanie sprzętu powłoki, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (03/15/2016 11:25:20 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Usługa Media Center Extender zależy od usługi Host dostawcy odnajdowania funkcji, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (03/15/2016 11:25:20 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Moduł wyliczający magistrali PnP-X IP zależy od usługi Host dostawcy odnajdowania funkcji, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (03/15/2016 11:23:49 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa BsHelpCS niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (03/15/2016 11:23:48 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa AVG PC TuneUp Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. CodeIntegrity: =================================== Date: 2014-09-20 23:51:22.091 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\nvapo32v.dll because the set of per-page image hashes could not be found on the system. Date: 2014-09-20 23:51:20.719 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\nvapo32v.dll because the set of per-page image hashes could not be found on the system. Date: 2014-09-20 23:47:30.730 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\nvapo32v.dll because the set of per-page image hashes could not be found on the system. Date: 2014-09-20 23:47:29.706 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\nvapo32v.dll because the set of per-page image hashes could not be found on the system. Date: 2014-09-20 23:47:26.099 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\nvapo32v.dll because the set of per-page image hashes could not be found on the system. Date: 2014-09-20 23:42:55.445 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\nvapo32v.dll because the set of per-page image hashes could not be found on the system. Date: 2014-09-20 23:42:53.479 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\nvapo32v.dll because the set of per-page image hashes could not be found on the system. Date: 2014-09-20 23:03:59.674 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\nvapo32v.dll because the set of per-page image hashes could not be found on the system. Date: 2014-09-20 18:58:11.267 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\nvapo32v.dll because the set of per-page image hashes could not be found on the system. Date: 2014-09-19 00:04:16.436 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\nvapo32v.dll because the set of per-page image hashes could not be found on the system. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM)2 Duo CPU T5800 @ 2.00GHz Procent pamięci w użyciu: 44% Całkowita pamięć fizyczna: 3071.11 MB Dostępna pamięć fizyczna: 1705.71 MB Całkowita pamięć wirtualna: 7365.43 MB Dostępna pamięć wirtualna: 5778.25 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:38.96 GB) (Free:8.21 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano odczytując BCD)] Drive d: () (Fixed) (Total:126.95 GB) (Free:113.04 GB) NTFS Drive e: () (Fixed) (Total:132.07 GB) (Free:58.06 GB) NTFS Drive g: (Rocksmith) (CDROM) (Total:7.07 GB) (Free:0 GB) CDFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 97646C29) Partition 1: (Active) - (Size=39 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=127 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=132.1 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================