Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:05-03-2016 01 Uruchomiony przez mcm (2016-04-04 20:44:40) Uruchomiony z C:\Users\mcm\Desktop\farbar Windows 10 Pro Wersja 1511 (X64) (2015-12-12 12:52:19) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2182520945-4177100033-1416620387-500 - Administrator - Disabled) Gość (S-1-5-21-2182520945-4177100033-1416620387-501 - Limited - Disabled) => C:\Users\Gość HomeGroupUser$ (S-1-5-21-2182520945-4177100033-1416620387-1001 - Limited - Enabled) Konto domyślne (S-1-5-21-2182520945-4177100033-1416620387-503 - Limited - Disabled) mcm (S-1-5-21-2182520945-4177100033-1416620387-1002 - Administrator - Enabled) => C:\Users\mcm ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-2182520945-4177100033-1416620387-1002\...\uTorrent) (Version: 3.4.5.41712 - BitTorrent Inc.) 7-Zip 9.34 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0934-000001000000}) (Version: 9.34.00.0 - Igor Pavlov) Ableton Live 9 Suite (HKLM\...\{11DF5764-52FF-4149-8B65-FB4D721975C9}) (Version: 9.0.0.0 - Ableton) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 20.0.0.260 - Adobe Systems Incorporated) Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.197 - Adobe Systems Incorporated) Amazon 1Button App (x32 Version: 2.3.4 - Amazon) Hidden Amazon Assistant (HKLM-x32\...\Amazon Assistant) (Version: 2.3.4 - Amazon) AnySend (HKLM-x32\...\ASPackage) (Version: - CMI Limited) <==== UWAGA Apple Application Support (32-bit) (HKLM-x32\...\{A50679D9-6CBD-4FCD-BACB-62EF3894F6F3}) (Version: 4.0.3 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{1F72FDD5-A069-45B4-928F-D0F16492DC69}) (Version: 4.0.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{FD244E19-6EFE-4A2D-948A-0D45D4C168BE}) (Version: 9.0.0.26 - Apple Inc.) Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.) Armikrog (HKLM-x32\...\1433157800_is1) (Version: 2.0.0.1 - GOG.com) ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach) Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team) AutoCAD 2014 - English (Version: 19.1.18.0 - Autodesk) Hidden AutoCAD 2014 Language Pack - English (Version: 19.1.18.0 - Autodesk) Hidden Autodesk 360 (HKLM\...\{52B28CAD-F49D-47BA-9FFE-29C2E85F0D0B}) (Version: 4.0.27.1 - Autodesk) Autodesk 3ds Max Design 2013 64-bit (HKLM\...\Autodesk 3ds Max Design 2013 64-bit) (Version: 15.0.0.347 - Autodesk) Autodesk 3ds Max Design 2013 64-bit (Version: 15.0.0.347 - Autodesk) Hidden Autodesk App Manager (HKLM-x32\...\{C070121A-C8C5-4D52-9A7D-D240631BD433}) (Version: 1.1.0 - Autodesk) Autodesk AutoCAD 2014 - English (HKLM\...\AutoCAD 2014 - English) (Version: 19.1.18.0 - Autodesk) Autodesk Backburner 2013.0.0 (HKLM-x32\...\{3D347E6D-5A03-4342-B5BA-6A771885F379}) (Version: 2013.0.0 - Autodesk, Inc.) Autodesk Civil View for 3ds Max Design 2013 (HKLM-x32\...\{FE6DCC8D-427F-405C-A779-C93B6D9F77A5}) (Version: 1.0.0.2 - Autodesk) Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk) Autodesk Content Service (x32 Version: 3.1.3.0 - Autodesk) Hidden Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden Autodesk DirectConnect 2013 64-bit (HKLM\...\Autodesk DirectConnect 2013 64-bit) (Version: 7.0.28.0 - Autodesk) Autodesk DirectConnect 2013 64-bit (Version: 7.0.28.0 - Autodesk) Hidden Autodesk Essential Skills Movies for 3ds Max Design 2013 64-bit (HKLM\...\{62CBE596-1BB8-4D7B-A056-103287BAD1C4}) (Version: 1.0.0.1 - Autodesk) Autodesk FBX Plug-in 2013.1 - 3ds Max Design 2013 64-bit (HKLM\...\Autodesk FBX Plug-in 2013.1 - 3ds Max Design 2013 64-bit) (Version: - Autodesk) Autodesk Featured Apps (HKLM-x32\...\{F732FEDA-7713-4428-934B-EF83B8DD65D0}) (Version: 1.1.0 - Autodesk) Autodesk Inventor Server Engine for 3ds Max Design 2013 64-bit (HKLM\...\{BC66B242-DF13-1664-851B-00123612ED98}) (Version: 15.0 - Autodesk) Autodesk Material Library 2013 (HKLM-x32\...\{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}) (Version: 3.0.13 - Autodesk) Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.19.0 - Autodesk) Autodesk Material Library Base Resolution Image Library 2013 (HKLM-x32\...\{606E12B9-641F-4644-A22A-FF38AE980AFD}) (Version: 3.0.13 - Autodesk) Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk) Autodesk Material Library Medium Resolution Image Library 2013 (HKLM-x32\...\{58760EEC-8B6A-43F4-81AA-696E381DFADD}) (Version: 3.0.13 - Autodesk) Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.0.43.13 - Autodesk) Autodesk ReCap (Version: 1.0.43.13 - Autodesk) Hidden Autodesk ReCap Language Pack-English (Version: 1.0.43.13 - Autodesk) Hidden Autodesk Revit Interoperability for 3ds Max and 3ds Max Design 2013 64-bit (HKLM\...\{06E18300-BB64-1664-8E6A-2593FC67BB74}) (Version: 1.0.0.1 - Autodesk) AutoHotkey 1.1.22.03 (HKLM-x32\...\AutoHotkey) (Version: 1.1.22.03 - Lexikos) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5306 - CDBurnerXP) Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine) Composite 2013 64-bit (HKLM\...\{2F808931-D235-4FC7-90CD-F8A890C97B2F}) (Version: 8.0.0 - Autodesk) Creative ALchemy (HKLM-x32\...\ALchemy) (Version: 1.43 - Creative Technology Limited) Creative Audio Control Panel (HKLM-x32\...\AudioCS) (Version: 3.00 - Creative Technology Limited) Creative Console Launcher (HKLM-x32\...\Console Launcher) (Version: 2.61 - Creative Technology Limited) Creative Live! Cam Vista IM (VF0420) Driver (1.01.01.00) (HKLM\...\Creative VF0420) (Version: - ) Creative MediaSource 5 (HKLM-x32\...\{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}) (Version: 5.26 - Creative Technology Limited) Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.41 - Creative Technology Limited) Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: 1.03 - Creative Technology Limited) Creative WaveStudio 7 (HKLM-x32\...\WaveStudio 7) (Version: 7.14 - Creative Technology Limited) DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.7.0.64 - DivX, LLC) DMX 6fire 24/96 ControlPanel (HKLM-x32\...\{3A33D692-8679-4142-94C7-0BB784B9B3A3}) (Version: 1.00.000 - ) Dragon's Tale (HKLM-x32\...\Dragon's Tale) (Version: 1.00 - eGenesis) e-Deklaracje Desktop (HKLM-x32\...\e-Deklaracje.A1909296681C7ACEFE45687D3A64758C8659BF46.1) (Version: 8.0.6 - Ministerstwo Finansow) e-Deklaracje Desktop (x32 Version: 8.0.6 - Ministerstwo Finansow) Hidden Flashtool (HKLM-x32\...\Flashtool) (Version: 0.9.19.8 - Androxyde) foobar2000 v1.3.5 (HKLM-x32\...\foobar2000) (Version: 1.3.5 - Peter Pawlowski) GG (HKU\S-1-5-21-2182520945-4177100033-1416620387-1002\...\GG) (Version: 12 - GG Network S.A.) GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team) iTunes (HKLM\...\{96984DE8-1DB8-425C-AC8C-3098BC696F04}) (Version: 12.3.0.44 - Apple Inc.) Jammit (HKLM-x32\...\{665AD2EB-BBCE-43EB-8E7D-DB0C961C423E}) (Version: 1.0.108 - Jammit Inc) Java 8 Update 77 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218077F0}) (Version: 8.0.770.3 - Oracle Corporation) K-Lite Codec Pack 10.8.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.8.5 - ) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden Logic Fun 4.8 (HKLM-x32\...\Logic Fun 4.8) (Version: - ) Logitech SetPoint 6.65 (HKLM\...\sp6) (Version: 6.65.62 - Logitech) Malwarebytes Anti-Malware wersja 1.60.1.1000 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.60.1.1000 - Malwarebytes Corporation) Malwarebytes Anti-Malware wersja 2.1.8 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8 - ) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Mozilla Firefox 45.0.1 (x86 pl) (HKLM-x32\...\Mozilla Firefox 45.0.1 (x86 pl)) (Version: 45.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0.1.5918 - Mozilla) MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia) Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - ) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) OpenFM (HKU\S-1-5-21-2182520945-4177100033-1416620387-1002\...\OpenFM) (Version: 2 - GG Network S.A.) OpenOffice 4.1.1 (HKLM-x32\...\{B5373BA3-BAD7-4EAC-A9D2-B66B41B82C57}) (Version: 4.11.9775 - Apache Software Foundation) Oprogramowanie Logitech Unifying 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech) Oracle VM VirtualBox 4.3.28 (HKLM\...\{E8BB81BC-E67C-4750-84EE-128DA5A7ADA5}) (Version: 4.3.28 - Oracle Corporation) Pakiet sterowników systemu Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia) Pari-2-7-2 (remove only) (HKLM-x32\...\Pari-2-7-2) (Version: - ) PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia) QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.) Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.18.322.2010 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7634 - Realtek Semiconductor Corp.) REAPER (x64) (HKLM\...\REAPER) (Version: - ) Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.4.0 - Renesas Electronics Corporation) Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.4.0 - Renesas Electronics Corporation) Hidden SketchUp Import for AutoCAD 2014 (HKLM-x32\...\{644E9589-F73A-49A4-AC61-A953B9DE5669}) (Version: 1.1.0 - Autodesk) Skype™ 7.17 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.17.105 - Skype Technologies S.A.) Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.16.3.201602121455 - Sony Mobile Communications Inc.) Sony PC Companion 2.10.303 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.303 - Sony) SoundFont Bank Manager (HKLM-x32\...\SFBM) (Version: 3.21 - Creative Technology Limited) Splashtop Personal (HKLM-x32\...\{E7CF0F14-8C1D-41F3-85ED-579C108262C7}) (Version: 2.6.0.0 - Splashtop Inc.) Splashtop Software Updater (HKLM-x32\...\Splashtop Software Updater) (Version: 1.5.6.15 - Splashtop Inc.) Splashtop Streamer (HKLM-x32\...\{B7C5EA94-B96A-41F5-BE95-25D78B486678}) (Version: 3.0.4.5 - Splashtop Inc.) Superfrog HD (HKLM-x32\...\1207665663_is1) (Version: 2.0.0.2 - GOG.com) This War of Mine (HKLM-x32\...\{5FD7B6B3-08C7-4FEE-9C37-A2134C699885}}_is1) (Version: 1 - 11 bit studios) Transcribe! 8.40 (HKLM-x32\...\Transcribe!_is1) (Version: 8.40 - Seventh String Software) UltraStar Deluxe (HKLM-x32\...\UltraStar Deluxe) (Version: 1.1 - USDX Team) Unity Web Player (HKU\S-1-5-21-2182520945-4177100033-1416620387-1002\...\UnityWebPlayer) (Version: 5.2.0f3 - Unity Technologies ApS) VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden Vegas Pro 13.0 (64-bit) (HKLM\...\{3814DB30-091D-11E4-BDE0-F04DA23A5C58}) (Version: 13.0.373 - Sony) vTask Studio v7.912 (HKLM-x32\...\vTask Studio_is1) (Version: - Vista Software, Inc.) War Thunder Launcher 1.0.1.465 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment) WinRAR 5.11 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH) XTrack EQ32 (HKLM-x32\...\{509B0C7D-F4A8-455A-8F36-B18F2F42169B}_is1) (Version: 1.0.1 - SoundOutTheBox) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-2182520945-4177100033-1416620387-1002_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-2182520945-4177100033-1416620387-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\mcm\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2182520945-4177100033-1416620387-1002_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-2182520945-4177100033-1416620387-1002_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-2182520945-4177100033-1416620387-1002_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2014\en-US\acadficn.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-2182520945-4177100033-1416620387-1002_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\mcm\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll (GG Network S.A.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {02583360-AF7A-43DF-B223-36A95511DF0C} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {099EB959-9C19-47FB-A53C-BF6F2D7CE490} - System32\Tasks\DistromaticSearchProtect-hourly => C:\Program Files (x86)\Amazon Browser Settings\AmznSearchProtect.exe [2016-04-03] (Distromatic) Task: {09A3FC14-3C34-49F0-87F5-7A930A81E900} - System32\Tasks\{439809D6-2943-4805-9BEA-CD86198E9DF3} => C:\Users\mcm\Desktop\Nowy folder (4)\7.exe Task: {0C97CF1D-B6ED-43CF-9946-3208FD6BD6A5} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {0FB53F39-4E5D-4A6A-B59A-72AC813489F5} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Brak pliku <==== UWAGA Task: {10CF3CB3-96C1-4144-AE9B-365AFE3C92FE} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe Task: {173A7D53-0D9D-442C-9D81-F755CD22F868} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe Task: {194091DB-6B39-44BA-A570-797C2CCABDD7} - System32\Tasks\{3C0A3120-28AA-45F3-BEB9-A1FE1E367AD8} => C:\Users\mcm\Desktop\Super_Bros_3_Mario_Forever_v44\Super_Bros_3_Mario_Forever_v44.exe [2009-08-24] () Task: {1DF67A45-1695-45C6-A4AF-2D19A945A584} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe Task: {27B334F2-F9EC-47FC-9D38-E32825EC4CA8} - System32\Tasks\{30C00A70-6EC4-4E36-87E3-AC27B8E03B75} => C:\Users\mcm\Desktop\Super_Bros_3_Mario_Forever_v44\Super_Bros_3_Mario_Forever_v44.exe [2009-08-24] () Task: {28B6C3E6-CE7C-4A45-9F13-800D995DAC93} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe Task: {28FDF353-60AF-4A5B-8077-E31857B5A3C7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-23] (Adobe Systems Incorporated) Task: {2F813274-CDA4-4499-8218-E6B0EDE66634} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.) Task: {32318E8B-07F0-4A86-B952-8B76D5C03696} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Brak pliku <==== UWAGA Task: {3A2E4597-0EFF-40BC-A10A-65A2BEA122A3} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe Task: {45B45203-E3A1-41E2-97E2-9C37151C3562} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe Task: {47985437-2077-4EC6-A6E6-E6CA14CF05AF} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe Task: {4C84FF85-3F09-45F8-A92A-F6C77AC6D5DE} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Brak pliku <==== UWAGA Task: {4CDE85F3-5AF5-4D49-82B7-A3A346F0137F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA Task: {52BDF3D3-63B3-41CD-BD88-062D63949288} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {61672D6F-6CAF-4785-B0D7-9A46971F8E19} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe Task: {669947B6-DB0F-4F18-AD2A-D3554AFA4796} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Brak pliku <==== UWAGA Task: {6EB568EB-4F76-4957-B6B5-F22C23DA3157} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe Task: {71241447-0BAF-461C-A2B0-2646F03D3779} - System32\Tasks\{9C0BD9AC-D858-409A-BA7E-26AA9F23456A} => C:\Users\mcm\Desktop\Super_Bros_3_Mario_Forever_v44\Super_Bros_3_Mario_Forever_v44.exe [2009-08-24] () Task: {725934DF-FC37-435E-9CB7-C5025E49ABBA} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe Task: {74CCAD7C-AA67-44E3-ABEF-13C9BFB48101} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe Task: {8A1C854A-960D-49D5-B591-E62AF1D6875E} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA Task: {8A4E308E-A583-4CCB-AF9B-498112696325} - System32\Tasks\{0F98AC7B-6A9A-4E1E-B3A7-0AEE82180731} => C:\Users\mcm\Desktop\Nowy folder (4)\7.exe Task: {8CEF672E-AC9B-4625-97AD-8C162869A853} - System32\Tasks\DistromaticUpdater-logon => C:\Program Files (x86)\Amazon Browser Settings\updater.exe [2016-04-03] (Distromatic) Task: {92D09E66-FC71-45F4-8AA2-AF3CE7E1BA45} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe Task: {941DD02D-F261-4002-BF1E-2107FCF918E5} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe Task: {9E014ADD-5893-47CB-81D1-576854547807} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {A0435904-9F41-4304-ADF8-578FA7B16CD4} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe Task: {A32AE0E3-E42B-4D79-9BA0-56B7FD2AE9F3} - System32\Tasks\{47883E3F-5889-4B1B-9B45-86E9AD5F5D0C} => C:\Users\mcm\Desktop\Super_Bros_3_Mario_Forever_v44\Super_Bros_3_Mario_Forever_v44.exe [2009-08-24] () Task: {A5AA89E1-A027-4195-AD69-603166BC447A} - System32\Tasks\DistromaticSearchProtect-logon => C:\Program Files (x86)\Amazon Browser Settings\AmznSearchProtect.exe [2016-04-03] (Distromatic) Task: {AB6E9E95-C1B7-4DE3-8FAA-F7939B188804} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-03-09] (Microsoft Corporation) Task: {C6C83A98-92CD-4348-B023-A67387110E67} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA Task: {D0278C9A-15F0-4752-8F65-846997BC5460} - System32\Tasks\DistromaticUpdater-periodic => C:\Program Files (x86)\Amazon Browser Settings\updater.exe [2016-04-03] (Distromatic) Task: {DAD63D61-50F8-4514-A074-A8626A27F3D1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Brak pliku <==== UWAGA Task: {E10C6C76-95D5-4833-9D25-ED4FAD0B3D61} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe Task: {E2B0ACC8-A4EF-431B-B8F6-7E77F862249A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe Task: {E5AF5A54-27FA-4AA0-9330-C4F1853B408F} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA Task: {E7372F2B-B1CE-41A2-8901-23C82FA29303} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe Task: {E73D1E43-6DB5-4313-A7DA-35F9F7DFEA2C} - System32\Tasks\{9F67B492-B781-47A7-8E26-42FE6F8E731D} => C:\Users\mcm\Desktop\Nowy folder (4)\7.exe Task: {E76659E6-BF67-4B60-A182-1452E458112E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA Task: {E7897ED3-FBBA-4E3D-89BF-3059F2DD067B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe Task: {EBC14FA8-3BD9-49A3-82F8-CAA653117723} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated) Task: {F5C5B404-AF7F-45AC-9616-D4C4582D365E} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe Task: {F8F10ACB-43B3-47CB-9DAD-4E304D4D5CA8} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Brak pliku <==== UWAGA Task: {FCE40885-E2CA-408A-839E-2AEAF5BB330E} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\mcm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder\WarThunder.lnk -> C:\Program Files (x86)\WarThunder\launcher.exe (Gaijin Entertainment) -> "hxxp://trustedsurf.com/?ssid=1459791075&a=1046500&src=sh&uuid=96b22a27-d781-4dbf-9898-13ffff1918c9" ShortcutWithArgument: C:\Users\mcm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> "hxxp://trustedsurf.com/?ssid=1459791075&a=1046500&src=sh&uuid=96b22a27-d781-4dbf-9898-13ffff1918c9" ShortcutWithArgument: C:\Users\mcm\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> %SNP% ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> %SNF% ShortcutWithArgument: C:\Users\Public\Desktop\WarThunder.lnk -> C:\Program Files (x86)\WarThunder\launcher.exe (Gaijin Entertainment) -> "hxxp://trustedsurf.com/?ssid=1459791075&a=1046500&src=sh&uuid=96b22a27-d781-4dbf-9898-13ffff1918c9" ==================== Załadowane moduły (filtrowane) ============== 2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2015-09-23 16:47 - 2015-09-23 16:47 - 00085800 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-09-23 16:47 - 2015-09-23 16:47 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2016-04-04 19:31 - 2016-04-04 19:31 - 01067520 _____ () C:\ProgramData\Holdtam\Holdtam.exe 2016-04-04 19:31 - 2016-04-04 19:31 - 01067520 _____ () C:\ProgramData\CloudPrinter\CloudPrinter.exe 2011-09-15 00:19 - 2011-09-15 00:19 - 00086016 _____ () C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_64server.exe 2016-03-02 23:10 - 2016-02-23 13:27 - 02654872 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-03-02 23:10 - 2016-02-23 13:27 - 02654872 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2015-12-18 19:57 - 2015-12-07 06:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2016-03-02 23:10 - 2016-02-23 10:36 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2016-01-12 21:11 - 2016-01-05 03:29 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-01-12 21:11 - 2016-01-05 03:23 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-01-27 23:28 - 2016-01-16 07:10 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-01-27 23:29 - 2016-01-16 07:13 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2016-01-21 22:04 - 2016-01-21 22:04 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe 2015-09-04 18:51 - 2015-09-04 18:51 - 00002560 _____ () C:\WINDOWS\SYSTEM32\CTXFIRES.DLL 2016-01-21 22:04 - 2016-01-21 22:04 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll 2016-01-21 22:04 - 2016-01-21 22:04 - 22330368 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkyWrap.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData\TEMP:A1EDB939 [138] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SplashtopRemoteService => ""="Service" ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-2182520945-4177100033-1416620387-1002\...\amazon.com -> hxxps://amazon.com ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2016-04-04 19:31 - 00000209 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 www.czzsyzgm.com 127.0.0.1 www.czzsyzxl.com 127.0.0.1 union.baidu2019.com ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2182520945-4177100033-1416620387-1002\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg DNS Servers: 82.163.143.177 - 82.163.142.179 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\...\StartupApproved\StartupFolder: => "DMX 6fire 2496 ControlPanel.lnk" HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run32: => "APSDaemon" HKLM\...\StartupApproved\Run32: => "DivXUpdate" HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE" HKLM\...\StartupApproved\Run32: => "QuickTime Task" HKLM\...\StartupApproved\Run32: => "vmware-tray.exe" HKU\S-1-5-21-2182520945-4177100033-1416620387-1002\...\StartupApproved\Run: => "Autodesk Sync" HKU\S-1-5-21-2182520945-4177100033-1416620387-1002\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2182520945-4177100033-1416620387-1002\...\StartupApproved\Run: => "Sony PC Companion" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808 FirewallRules: [{293A1C39-CE12-492F-AC4F-17CC6C659F16}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe FirewallRules: [{1B9CBD7E-D029-44AD-9EB6-C36C77778ADC}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe FirewallRules: [{FD31EFD5-137A-4CF6-8EFA-D207A93E9039}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe FirewallRules: [{A2AB8590-BAD7-4D80-AD3F-78EE5B4F4288}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe FirewallRules: [{EE36EBB6-3467-4CC0-89E1-C77A4FA1E479}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{EFFEAC74-88DC-46D7-8188-B56CE7B79A40}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{EFCAC449-76C8-4130-AF6B-E57DC3FA7DD7}C:\egenesis\dragon's tale\eclient.exe] => (Allow) C:\egenesis\dragon's tale\eclient.exe FirewallRules: [UDP Query User{84F45C99-9BB0-43AE-BAA7-3014AD5BFAE0}C:\egenesis\dragon's tale\eclient.exe] => (Allow) C:\egenesis\dragon's tale\eclient.exe FirewallRules: [TCP Query User{DDAB82D2-37F6-40F8-8309-A7A6190EB757}C:\users\mcm\desktop\nowy folder\dragon's tale\eclient.exe] => (Allow) C:\users\mcm\desktop\nowy folder\dragon's tale\eclient.exe FirewallRules: [UDP Query User{813EB51F-EEBD-4420-94C5-9A4163C6A8C4}C:\users\mcm\desktop\nowy folder\dragon's tale\eclient.exe] => (Allow) C:\users\mcm\desktop\nowy folder\dragon's tale\eclient.exe FirewallRules: [{460D06A3-4AD9-46EC-8C92-DC359727BBFE}] => (Allow) C:\Users\mcm\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{9D19C5EA-9C90-4D48-83D6-008E79EDC617}] => (Allow) C:\Users\mcm\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{CB5AAB56-7BA5-4673-9F25-2A140E7062ED}] => (Allow) LPort=50248 FirewallRules: [{0D4D1796-1174-4B9C-9365-205F2830AEDF}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{1A834F80-21BC-4B80-8C34-FB2A43795F49}] => (Allow) C:\Program Files (x86)\WarThunder\launcher.exe FirewallRules: [{B35548AB-1231-4D35-B8AD-CDBE52C0CEBD}] => (Allow) C:\Program Files (x86)\WarThunder\launcher.exe FirewallRules: [{0BB31221-036E-4551-A62C-5EC670382805}] => (Allow) LPort=80 FirewallRules: [{74BEB2BA-8F06-4E46-92A3-7D48AEA12163}] => (Allow) LPort=443 FirewallRules: [{63F0837C-C81C-4612-9CD9-F0B10F120F62}] => (Allow) LPort=20010 FirewallRules: [{D807F471-F03F-463A-A665-E70124B2EB48}] => (Allow) LPort=3478 FirewallRules: [{4B1D0477-5FD6-4B8C-941E-075A32023FB8}] => (Allow) LPort=7850 FirewallRules: [{0D69465B-AA1C-4124-B432-6242F669CC05}] => (Allow) LPort=7852 FirewallRules: [{AC415CF5-E19A-4FB6-B06A-7BDB5C287AF9}] => (Allow) LPort=7853 FirewallRules: [{D29953F4-04B6-4BB5-8AEC-DB1B3CB9A56F}] => (Allow) LPort=27022 FirewallRules: [{44A6853E-9F3B-4DF1-96B2-8A25EF2AD9A2}] => (Allow) LPort=6881 FirewallRules: [{6AC5BCAA-53AC-4431-89E1-F6E9841FA414}] => (Allow) LPort=33333 FirewallRules: [{680A2043-AB6C-46BA-B93B-3FB52DB55260}] => (Allow) LPort=20443 FirewallRules: [{077CE195-D9D6-49D8-BBFC-0CA1DC5632D5}] => (Allow) LPort=8090 FirewallRules: [TCP Query User{E35CA4FC-A7AE-49A4-A3CB-3A44C4E25AD5}C:\program files (x86)\warthunder\aces.exe] => (Allow) C:\program files (x86)\warthunder\aces.exe FirewallRules: [UDP Query User{20DB8E03-822F-4D36-A3AE-6FBCCB9F3CF0}C:\program files (x86)\warthunder\aces.exe] => (Allow) C:\program files (x86)\warthunder\aces.exe FirewallRules: [TCP Query User{78DD5F03-BACE-46EC-AE5C-8D4F5BF920D7}C:\program files (x86)\cheat engine 6.4\cheatengine-x86_64.exe] => (Allow) C:\program files (x86)\cheat engine 6.4\cheatengine-x86_64.exe FirewallRules: [UDP Query User{B2E57D4B-A824-48DB-805E-EC17CE84062D}C:\program files (x86)\cheat engine 6.4\cheatengine-x86_64.exe] => (Allow) C:\program files (x86)\cheat engine 6.4\cheatengine-x86_64.exe FirewallRules: [{045B13BF-411A-4606-88BC-B7A872D02530}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{B6292B79-AB21-4530-AD53-1893A0171E4E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{753000F0-15B2-47F3-8C4F-7172804FCB40}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{0122C445-7326-4BC5-84F1-29EBA3DE7776}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [{23675A6C-F793-4665-B077-AAF2FC980619}] => (Allow) C:\Program Files (x86)\Apowersoft\MKV Converter Studio\MKV Converter Studio.exe FirewallRules: [{0766A424-88BB-4244-A291-5EE52AFB7FB2}] => (Allow) C:\Program Files (x86)\Apowersoft\MKV Converter Studio\MKV Converter Studio.exe FirewallRules: [{16A3DD89-BABE-43A5-A90A-A151CEBF1FF1}] => (Allow) C:\Users\mcm\AppData\Local\Temp\nsm3140.tmp\CnetInstaller-75984422.exe FirewallRules: [{E4CCF0B7-9515-4F48-9C4D-4B521A9EF413}] => (Allow) C:\Users\mcm\AppData\Local\Temp\nsm3140.tmp\CnetInstaller-75984422.exe FirewallRules: [TCP Query User{C274BEC7-9C81-4154-9B55-92513D01F873}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe FirewallRules: [UDP Query User{29311BE0-9ACE-4433-A07A-D87161ADE76E}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe FirewallRules: [TCP Query User{74E74426-01D7-4EED-B68B-0F27EEDDCE53}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe FirewallRules: [UDP Query User{C8763BF9-8701-4780-A327-3B7B20A825FD}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe FirewallRules: [TCP Query User{0BA79AA1-0801-4EF9-A5F4-68042EFA1893}C:\program files (x86)\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\grand theft auto v\gta5.exe FirewallRules: [UDP Query User{598E39D6-C0A1-4D85-9896-4BA584E606B5}C:\program files (x86)\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\grand theft auto v\gta5.exe FirewallRules: [TCP Query User{56953012-1F4A-4A6B-9A6E-CA52458A98AA}C:\program files\counter strike 1.6 standard\hl.exe] => (Allow) C:\program files\counter strike 1.6 standard\hl.exe FirewallRules: [UDP Query User{5BA00EF0-74C8-4700-A15B-121F91425CD9}C:\program files\counter strike 1.6 standard\hl.exe] => (Allow) C:\program files\counter strike 1.6 standard\hl.exe FirewallRules: [{EAA7AE31-B199-4426-9F79-8D395742F43C}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{A8D99231-6545-486E-8936-C8F10E348ADC}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_64server.exe FirewallRules: [{0A716D8F-4266-424B-AECB-EEE8C628DC88}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_64server.exe FirewallRules: [{75841099-6812-41E9-AFDC-03D679EB4413}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_64.exe FirewallRules: [{5332A0A3-3E5B-4A51-B907-FBD1411413D1}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_64.exe FirewallRules: [{7CFC5BCA-CAE2-447B-BE01-83D51A52B103}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2013\3dsmax.exe FirewallRules: [{A88E3D03-5DD1-4C9E-A30C-7E16675D42C8}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2013\3dsmax.exe FirewallRules: [{0F71310E-CA93-439E-9D53-F96F87A618BD}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\monitor.exe FirewallRules: [{E6A626F1-BF85-4481-AA3D-D9B72B9453CA}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\monitor.exe FirewallRules: [{2674D5E2-74C2-459A-9ED7-5405B60B2FD1}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\manager.exe FirewallRules: [{20E2D7C2-D94D-4104-9B16-2948ADB32127}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\manager.exe FirewallRules: [{98071984-7E64-499B-8B1A-BCE3730CB361}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\server.exe FirewallRules: [{9CEF4EE7-A986-4F93-ABFC-1A54C76567C8}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\server.exe FirewallRules: [{E261C956-7F7A-489C-87F3-E8AAB20BF43F}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe FirewallRules: [{2B635A96-206E-400F-A3A5-CA51B6EFFC97}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe FirewallRules: [{2449FDFA-4E3B-4EAA-A828-66DBD912B352}] => (Allow) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRManager.exe ==================== Punkty Przywracania systemu ========================= 29-03-2016 20:20:19 Zaplanowany punkt kontrolny ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (04/04/2016 08:14:33 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: BITSC:\Windows\System32\bitsperf.dll4 Error: (04/04/2016 08:14:12 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: mbamservice.exe, wersja: 3.2.13.0, sygnatura czasowa: 0x558200e9 Nazwa modułu powodującego błąd: mbamservice.exe, wersja: 3.2.13.0, sygnatura czasowa: 0x558200e9 Kod wyjątku: 0x40000015 Przesunięcie błędu: 0x000ace66 Identyfikator procesu powodującego błąd: 0x9a0 Godzina uruchomienia aplikacji powodującej błąd: 0xmbamservice.exe0 Ścieżka aplikacji powodującej błąd: mbamservice.exe1 Ścieżka modułu powodującego błąd: mbamservice.exe2 Identyfikator raportu: mbamservice.exe3 Pełna nazwa pakietu powodującego błąd: mbamservice.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: mbamservice.exe5 Error: (04/04/2016 08:14:12 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: mbamscheduler.exe, wersja: 3.1.3.0, sygnatura czasowa: 0x55252bff Nazwa modułu powodującego błąd: MSVCR100.dll, wersja: 10.0.40219.325, sygnatura czasowa: 0x4df2be1e Kod wyjątku: 0x40000015 Przesunięcie błędu: 0x0008d6fd Identyfikator procesu powodującego błąd: 0x884 Godzina uruchomienia aplikacji powodującej błąd: 0xmbamscheduler.exe0 Ścieżka aplikacji powodującej błąd: mbamscheduler.exe1 Ścieżka modułu powodującego błąd: mbamscheduler.exe2 Identyfikator raportu: mbamscheduler.exe3 Pełna nazwa pakietu powodującego błąd: mbamscheduler.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: mbamscheduler.exe5 Error: (04/04/2016 08:13:25 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: mcm-Komputer) Description: Aktywacja aplikacji Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI nie powiodła się. Błąd: -2144927141. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (04/04/2016 08:08:03 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: mbam.exe, wersja: 2.3.55.0, sygnatura czasowa: 0x557a2a02 Nazwa modułu powodującego błąd: MSVCR100.dll, wersja: 10.0.40219.325, sygnatura czasowa: 0x4df2be1e Kod wyjątku: 0x40000015 Przesunięcie błędu: 0x0008d6fd Identyfikator procesu powodującego błąd: 0x280 Godzina uruchomienia aplikacji powodującej błąd: 0xmbam.exe0 Ścieżka aplikacji powodującej błąd: mbam.exe1 Ścieżka modułu powodującego błąd: mbam.exe2 Identyfikator raportu: mbam.exe3 Pełna nazwa pakietu powodującego błąd: mbam.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: mbam.exe5 Error: (04/04/2016 08:05:44 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: mbam.exe, wersja: 2.3.55.0, sygnatura czasowa: 0x557a2a02 Nazwa modułu powodującego błąd: MSVCR100.dll, wersja: 10.0.40219.325, sygnatura czasowa: 0x4df2be1e Kod wyjątku: 0x40000015 Przesunięcie błędu: 0x0008d6fd Identyfikator procesu powodującego błąd: 0x13a8 Godzina uruchomienia aplikacji powodującej błąd: 0xmbam.exe0 Ścieżka aplikacji powodującej błąd: mbam.exe1 Ścieżka modułu powodującego błąd: mbam.exe2 Identyfikator raportu: mbam.exe3 Pełna nazwa pakietu powodującego błąd: mbam.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: mbam.exe5 Error: (04/04/2016 07:57:56 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: mbam.exe, wersja: 2.3.55.0, sygnatura czasowa: 0x557a2a02 Nazwa modułu powodującego błąd: MSVCR100.dll, wersja: 10.0.40219.325, sygnatura czasowa: 0x4df2be1e Kod wyjątku: 0x40000015 Przesunięcie błędu: 0x0008d6fd Identyfikator procesu powodującego błąd: 0x202c Godzina uruchomienia aplikacji powodującej błąd: 0xmbam.exe0 Ścieżka aplikacji powodującej błąd: mbam.exe1 Ścieżka modułu powodującego błąd: mbam.exe2 Identyfikator raportu: mbam.exe3 Pełna nazwa pakietu powodującego błąd: mbam.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: mbam.exe5 Error: (04/04/2016 07:32:22 PM) (Source: Perflib) (EventID: 1023) (User: ) Description: rdyboost4 Error: (04/04/2016 07:13:39 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: mbamscheduler.exe, wersja: 3.1.3.0, sygnatura czasowa: 0x55252bff Nazwa modułu powodującego błąd: MSVCR100.dll, wersja: 10.0.40219.325, sygnatura czasowa: 0x4df2be1e Kod wyjątku: 0x40000015 Przesunięcie błędu: 0x0008d6fd Identyfikator procesu powodującego błąd: 0x818 Godzina uruchomienia aplikacji powodującej błąd: 0xmbamscheduler.exe0 Ścieżka aplikacji powodującej błąd: mbamscheduler.exe1 Ścieżka modułu powodującego błąd: mbamscheduler.exe2 Identyfikator raportu: mbamscheduler.exe3 Pełna nazwa pakietu powodującego błąd: mbamscheduler.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: mbamscheduler.exe5 Error: (04/04/2016 07:13:39 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: mbamservice.exe, wersja: 3.2.13.0, sygnatura czasowa: 0x558200e9 Nazwa modułu powodującego błąd: mbamservice.exe, wersja: 3.2.13.0, sygnatura czasowa: 0x558200e9 Kod wyjątku: 0x40000015 Przesunięcie błędu: 0x000ace66 Identyfikator procesu powodującego błąd: 0x49c Godzina uruchomienia aplikacji powodującej błąd: 0xmbamservice.exe0 Ścieżka aplikacji powodującej błąd: mbamservice.exe1 Ścieżka modułu powodującego błąd: mbamservice.exe2 Identyfikator raportu: mbamservice.exe3 Pełna nazwa pakietu powodującego błąd: mbamservice.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: mbamservice.exe5 Dziennik System: ============= Error: (04/04/2016 08:14:14 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa MBAMService niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (04/04/2016 08:14:13 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi MBAMScheduler z powodu następującego błędu: %%1053 Error: (04/04/2016 08:14:13 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą MBAMScheduler. Error: (04/04/2016 08:14:04 PM) (Source: NTFS) (EventID: 137) (User: ) Description: Domyślny menedżer zasobów transakcji w woluminie D: napotkał błąd niepowtarzający operacji i nie można go uruchomić. Dane zawierają kod błędu. Error: (04/04/2016 08:13:27 PM) (Source: DCOM) (EventID: 10010) (User: mcm-Komputer) Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39} Error: (04/04/2016 08:13:27 PM) (Source: DCOM) (EventID: 10010) (User: mcm-Komputer) Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39} Error: (04/04/2016 08:13:25 PM) (Source: DCOM) (EventID: 10010) (User: mcm-Komputer) Description: CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca Error: (04/04/2016 08:13:23 PM) (Source: DCOM) (EventID: 10010) (User: mcm-Komputer) Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} Error: (04/04/2016 08:13:23 PM) (Source: DCOM) (EventID: 10010) (User: mcm-Komputer) Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} Error: (04/04/2016 08:13:21 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Synchronizuj hosta_39ac7 niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. CodeIntegrity: =================================== Date: 2016-03-23 00:34:47.883 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-03-14 22:22:51.371 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-03-13 22:03:12.285 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-03-04 18:04:25.467 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-03-03 20:34:34.453 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-19 23:44:55.927 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-19 23:05:32.145 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-18 14:53:40.302 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-12 17:03:59.473 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-11 10:31:43.670 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. ==================== Statystyki pamięci =========================== Procesor: Genuine Intel(R) CPU 000 @ 2.67GHz Procent pamięci w użyciu: 17% Całkowita pamięć fizyczna: 12279.11 MB Dostępna pamięć fizyczna: 10095.33 MB Całkowita pamięć wirtualna: 24567.11 MB Dostępna pamięć wirtualna: 22346.42 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:223.03 GB) (Free:13.59 GB) NTFS Drive d: () (Fixed) (Total:0.01 GB) (Free:0 GB) NTFS Drive e: () (Fixed) (Total:198.24 GB) (Free:5.6 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive f: () (Fixed) (Total:232.88 GB) (Free:9.07 GB) NTFS Drive g: () (Fixed) (Total:267.52 GB) (Free:60.33 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: 71DA416D) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=223 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450 MB) - (Type=27) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 71987198) Partition 1: (Active) - (Size=198.2 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=267.5 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (Size: 232.9 GB) (Disk ID: 71987199) Partition 1: (Not Active) - (Size=8 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=232.9 GB) - (Type=OF Extended) ==================== Koniec Addition.txt ============================