Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:18-04-2016 Uruchomiony przez Grzegorz (2016-04-25 16:04:57) Uruchomiony z P:\Windows SSD x64 Windows 7 Ultimate Service Pack 1 (X64) (2015-05-14 18:29:26) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-1219206399-1922614678-3590554087-500 - Administrator - Disabled) Gość (S-1-5-21-1219206399-1922614678-3590554087-501 - Limited - Enabled) Grzegorz (S-1-5-21-1219206399-1922614678-3590554087-1000 - Administrator - Enabled) => C:\Users\Grzegorz HomeGroupUser$ (S-1-5-21-1219206399-1922614678-3590554087-1002 - Limited - Enabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: ESET Smart Security 8.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: ESET Smart Security 8.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834} FW: Zapora osobista ESET (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) @BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.20 - GIGABYTE) µTorrent (HKU\S-1-5-21-1219206399-1922614678-3590554087-1000\...\uTorrent) (Version: 3.4.5.41162 - BitTorrent Inc.) 3DMark (HKLM-x32\...\{12d6e0d7-21d5-4755-9da2-70352c6f7558}) (Version: 1.5.915.0 - Futuremark) 3DMark (Version: 1.5.915.0 - Futuremark) Hidden A Boy and His Blob (HKLM-x32\...\A Boy and His Blob_is1) (Version: - ) Adobe Flash Player 21 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 21.0.0.213 - Adobe Systems Incorporated) Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.213 - Adobe Systems Incorporated) Adobe Reader XI - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated) Alcohol 120% (HKLM-x32\...\Alcohol 120%) (Version: 2.0.2.3929 - ) ALLPlayer V6.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLPlayer Group, Ltd.) Aplikacja Wyświetl mój ekran (HKLM-x32\...\{82B9C5E5-F0C5-4B21-87A4-352C99868D5B}) (Version: 8.0.12539 - Microsoft Corporation) Ashampoo Burning Studio 2016 (HKLM-x32\...\{91B33C97-B4A4-B41A-6B97-C62C82CEB6A9}_is1) (Version: 16.0.2 - Ashampoo GmbH & Co. KG) Braid (HKLM-x32\...\Braid/EN/PL-Polish_is1) (Version: - City Interactive) Brother MFL-Pro Suite DCP-165C (HKLM-x32\...\{48D082B9-18F6-4426-AFAC-8B6A3E7021B1}) (Version: 1.0.1.0 - Brother Industries, Ltd.) CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden Chicken Invaders 5: Cluck of the Dark Side (HKU\S-1-5-21-1219206399-1922614678-3590554087-1000\...\Chicken Invaders 5: Cluck of the Dark Side) (Version: 1.0.0.0 - Alawar Entertainment Inc.) CPUID CPU-Z 1.75 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version: - ) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DuckTales Remastered wersja 1.0 u4 (HKLM-x32\...\DuckTales Remastered_is1) (Version: 1.0 u4 - Capcom) erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden ESET Smart Security (HKLM\...\{F3D78BA2-A8C6-40A3-AEBB-25D8FA49BB9A}) (Version: 8.0.312.4 - ESET, spol s r. o.) EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.) FIFA 14 (HKLM-x32\...\{AA7A2800-1E75-4240-855B-03AFF8E5171E}) (Version: 1.0.0.7 - Electronic Arts) Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - ) Futuremark SystemInfo (HKLM-x32\...\{70690D9E-3D00-47D6-9CE9-BC3B6F900447}) (Version: 4.41.563.0 - Futuremark) Galeria fotografii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden GG (HKU\S-1-5-21-1219206399-1922614678-3590554087-1000\...\GG) (Version: 12 - GG Network S.A.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.) Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden GRID 2 v1.0.85.8679 (HKLM-x32\...\GRID 2_is1) (Version: v1.0.85.8679 - Codemasters) HD Tune Pro 4.50 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software) Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.) Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.) IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan) Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation) Kits Configuration Installer (x32 Version: 10.1.10586.212 - Microsoft) Hidden Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.) Malwarebytes Anti-Malware wersja 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Metric Collection SDK 35 (x32 Version: 1.2.0010.00 - Lenovo Group Limited) Hidden Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.6.01055 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Mortal Kombat X (HKLM-x32\...\TW9ydGFsS29tYmF0WA==_is1) (Version: 1 - ) Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 45.0.2 (x64 pl) (HKLM\...\Mozilla Firefox 45.0.2 (x64 pl)) (Version: 45.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0.2.5941 - Mozilla) MPC-BE x64 1.4.4.286 (HKLM\...\{FE09AF6D-78B2-4093-B012-FCDAF78693CE}_is1) (Version: 1.4.4.286 - MPC-BE Team) MPC-HC 1.7.8 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.8 - MPC-HC Team) MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD) Narzędzia sprawdzające pakietu Microsoft Office 2013 — polski (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Nero 11 DiscSpeed (HKLM-x32\...\{B8B03F99-F600-4D96-ADBD-2F384240FB9C}) (Version: 11.0.00400 - Nero AG) Nero Burning ROM 2014 (HKLM-x32\...\{DEFD8F31-C266-4ED3-91DF-5B222C050827}) (Version: 15.0.03900 - Nero AG) Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 16.0.2003 - Nero AG) Nero WaveEditor (HKLM-x32\...\{D0656D0B-9712-45BD-9243-21FEBF5B05E5}) (Version: 14.0.00600 - Nero AG) NVIDIA Oprogramowanie systemu PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 361.43 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 361.43 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA Sterownik graficzny 361.43 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 361.43 - NVIDIA Corporation) Origin (HKLM-x32\...\Origin) (Version: 9.4.22.2815 - Electronic Arts, Inc.) Panel sterowania NVIDIA 361.43 (Version: 361.43 - NVIDIA Corporation) Hidden Podstawowe programy Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Podstawowe programy Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) Prerequisite installer (x32 Version: 12.0.0010 - Nero AG) Hidden Prerequisite installer (x32 Version: 15.0.0005 - Nero AG) Hidden Prerequisite installer (x32 Version: 17.0.0002 - Nero AG) Hidden PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) Rayman Origins (HKLM-x32\...\Rayman Origins_is1) (Version: - ) Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.17.304.2010 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6077 - Realtek Semiconductor Corp.) SDK Debuggers (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.109 - Skype Technologies S.A.) Smart-X7 7.80 (HKLM\...\WheelMouse) (Version: - ) Sonic Generations (HKLM-x32\...\Sonic Generations_is1) (Version: 1.0 - SEGA) Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0415-1000-0000000FF1CE}_Office15.PROPLUS_{67847964-08E2-4A8F-B09D-B08D5CE69250}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3114831) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{319F14FC-24A0-4A07-B84C-C7450AF9422F}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3114831) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{319F14FC-24A0-4A07-B84C-C7450AF9422F}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3114831) 64-Bit Edition (HKLM\...\{90150000-012B-0415-1000-0000000FF1CE}_Office15.PROPLUS_{319F14FC-24A0-4A07-B84C-C7450AF9422F}) (Version: - Microsoft) WERSJA DEMO FIFA 16 (HKLM-x32\...\{D09AD1AE-6AAC-45EB-B9F6-C1F223DD8481}) (Version: 1.0.0.0 - Electronic Arts) WhoCrashed 5.51 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.) Winamp (HKLM-x32\...\Winamp) (Version: 5.7 Beta - Nullsoft, Inc) Windows Phone app for desktop (HKLM-x32\...\{99759E36-8961-43DC-A7E6-4601D6AEF166}) (Version: 1.1.2726.0 - Microsoft Corporation) Windows Software Development Kit - Windows 10.0.10586.212 (HKLM-x32\...\{43d9f43d-c90b-4fdf-9dfe-ecf9990bfa2a}) (Version: 10.1.10586.212 - Microsoft Corporation) WinRAR 5.11 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH) Your Uninstaller! 7 (HKLM-x32\...\YU2010_is1) (Version: 7.5.2013.2 - URSoft, Inc.) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-1219206399-1922614678-3590554087-1000_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\Grzegorz\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll (GG Network S.A.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0F6A4C14-1774-4677-AB3F-B3EEBB61DA0B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-15] (Google Inc.) Task: {100D0251-0F06-4C02-87F4-BB33AFF42529} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-15] (Google Inc.) Task: {1A7D8598-141F-41F8-9003-0F868F879D08} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {517E26E2-520B-4BAB-942B-D010FD940D13} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2015-05-27] () Task: {58CFC1A8-B0F5-447C-96CD-2DBA4DECA08F} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2016-03-01] (Nero AG) Task: {5F7E7C94-D69C-4632-B0B3-D5AA204CCF7C} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {63A1B2C4-4814-46A4-AF54-4D7F84392A66} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe Task: {809942D5-4371-47EF-9BBD-F8B0B8E2A254} - System32\Tasks\{7B683E62-BE71-40E9-AE58-57425284C7BB} => Firefox.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=6.20.0.104&LastError=404 Task: {93FC69FB-15F7-4A13-89D2-1265943C1FE1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {9F22E115-7AE9-4F3A-A683-20FF00225E26} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-14] (Adobe Systems Incorporated) Task: {9F55159B-3ECE-4EAB-AB8F-AB7515373250} - System32\Tasks\ESET Windows 10 upgrade – Refresh settings => C:\Program Files\Common Files\AV\ESET Smart Security 8.0\upgrade.exe [2016-04-18] (ESET) Task: {B27BD9AC-E891-4C9A-AF09-1C006DC4A4FC} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1219206399-1922614678-3590554087-1000 Task: {CC96F31E-B1CD-4DC6-93DF-9A1BC0DB8B7F} - System32\Tasks\{8C2BD398-DFD0-4B1E-92AF-309E089D6337} => pcalua.exe -a "P:\Windows 64\Irfanview\irfanview_plugins_438_setup_[www.programosy.pl].exe" -d "P:\Windows 64\Irfanview" (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2016-01-23 13:57 - 2015-12-16 16:53 - 00126072 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-05-19 23:27 - 2015-05-19 23:27 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2015-05-15 08:48 - 2008-03-03 23:54 - 00196608 _____ () C:\Program Files\Mouse\Amoumain.exe 2016-04-14 10:15 - 2016-04-14 10:15 - 26735296 _____ () C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll 2015-05-15 08:48 - 2007-04-06 13:04 - 00098304 _____ () C:\Program Files\Mouse\Amoures.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\Windows\system32\Drivers\sdfhgdf.sys:{1d89e16c-bfbc-11e5-bbe7-1c6f654732eb} [20] AlternateDataStreams: C:\Windows\system32\Drivers\sdfhgdf.sys:{1d89e16d-bfbc-11e5-bbe7-1c6f654732eb} [31] AlternateDataStreams: C:\ProgramData\TEMP:1CE11B51 [158] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-1219206399-1922614678-3590554087-1000\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-1219206399-1922614678-3590554087-1000\...\webcompanion.com -> hxxp://webcompanion.com ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2016-03-30 15:17 - 00000826 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-1219206399-1922614678-3590554087-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Grzegorz\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 62.179.1.62 - 62.179.1.63 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: NAUpdate => 2 MSCONFIG\Services: SkypeUpdate => 2 MSCONFIG\Services: Smart TimeLock => 2 MSCONFIG\startupreg: ALLPlayer WiFi Remote => C:\Program Files (x86)\ALLPlayer Remote\ALLPlayerRemoteControl.exe MSCONFIG\startupreg: ALLUpdate => "C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe" "sleep" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{237ACB9D-ED01-4695-87A0-BDFBABE1F033}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{5416353E-148B-4D10-8BC6-A580ED75BFFF}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{5954B00D-EB57-477E-B794-ABF671C42794}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{0AC800DF-2642-4B0D-AEFC-AA055FDE3AB0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{CAAD83D6-09F0-4C8B-B278-30A3870D9695}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3.exe FirewallRules: [{7092EB13-93C3-454B-A55B-72A0AC62BDA4}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3.exe FirewallRules: [{C4CDB7A4-4C6C-4069-940F-A037EC31A986}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe FirewallRules: [{0EA79AC9-CE4A-4325-959A-15C6D5B31827}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe FirewallRules: [{BFA00A35-8D44-434E-BEEE-5A5DD46A5310}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Updater.exe FirewallRules: [{B49476F0-A027-4445-B879-525BE7B7D7FB}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Updater.exe FirewallRules: [{691F423A-106A-4893-BBDF-500F6A81501B}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Editor.exe FirewallRules: [{E0A4FF9C-7068-41A6-8F6F-16F3DE2803EC}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Editor.exe FirewallRules: [{DC8A562B-F122-4C51-A986-96E67D89B8F2}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{9D981D87-8B79-4A69-88D7-48FFB260FD22}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{E6967DCF-0909-4B9A-8363-E368C1F60E02}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{8831A790-E2F2-44ED-8C13-B09FD603262D}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{AEA26209-4E16-4132-9A53-FFEBBAC02F0F}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{22E26696-05F6-4248-A343-7BCFC9634A21}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{6807FCB2-BB19-4C40-A7B9-F99B36E2FE0A}] => (Allow) LPort=2869 FirewallRules: [{C9AECF42-1F07-4D11-B927-97F7906EFE7F}] => (Allow) LPort=1900 FirewallRules: [{27FB1394-D88B-4BA1-9914-D3CEEF29C81A}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 14\Game\fifa14.exe FirewallRules: [{746053B5-7159-4600-8B73-3DB762685529}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 14\Game\fifa14.exe FirewallRules: [{753FD0CC-6944-44B5-9D06-5DE99AA53B3E}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16 DEMO\fifasetup\fifaconfig.exe FirewallRules: [{10017CFC-8F70-41B6-9CC1-A69D84DEDA3A}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16 DEMO\fifasetup\fifaconfig.exe FirewallRules: [{B1325E4B-DBCB-41F5-BBC3-C1461EE896B8}] => (Allow) C:\Users\Grzegorz\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{62C55EBE-E197-47ED-930D-1AE6A7733AF0}] => (Allow) C:\Users\Grzegorz\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{41414B54-A938-4BD9-AA70-9664E860E4E4}] => (Allow) C:\Users\Grzegorz\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{3CB0E89D-DC74-4837-84D2-3DBE8536B1E9}] => (Allow) C:\Users\Grzegorz\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{05ECB804-4D1B-4D81-BB72-D890DF119F71}] => (Allow) C:\Users\Grzegorz\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{484D0D40-1CFB-49C6-BF1B-10D856A9F3A3}] => (Allow) C:\Users\Grzegorz\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{BC7D8353-0F94-4AA8-B51D-0F9CBD84A405}] => (Allow) C:\Users\Grzegorz\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{BD27EB2D-2E06-4287-8353-605585DE52AF}] => (Allow) C:\Users\Grzegorz\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{C2E35C87-A355-4FB6-803D-92AEF8898761}] => (Allow) C:\Program Files (x86)\Alawar.pl\Chicken Invaders 5 Cluck of the Dark Side\CI5.exe FirewallRules: [{FD01CB42-1E6C-4994-9531-FB8E40696A3B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{619A7928-308B-40E4-92FC-3E5212A12EB1}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{17A81E47-055C-478F-83B1-47A8D7D282C6}] => (Block) C:\Program Files (x86)\Psyonix\Rocket League Revenge of the Battle-Cars\Binaries\Win32\RocketLeague.exe FirewallRules: [{DDD965F0-6A3F-45FC-ACDE-937718D36BFA}] => (Block) C:\Program Files (x86)\Psyonix\Rocket League Chaos Run\Binaries\Win32\RocketLeague.exe FirewallRules: [{BFD3323E-79D1-498F-A2EA-21FCE96DAE49}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{521557A6-9F8C-4B87-8314-14DBA6E1777F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{3F9B96F4-3593-426A-9884-95910791AF3F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{F3B547BB-3C4C-4779-85B2-39F9477B5749}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{E3787420-B537-4C95-B131-257AEFE6A5FE}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{5B676043-5F3D-4034-9BB5-55F91551B63F}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{FCAC7AF8-B197-4758-AB2C-C2350C98A0DF}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Punkty Przywracania systemu ========================= 22-06-2014 15:00:18 Installed Nero Burning ROM 2014. 08-05-2015 19:06:55 Windows Update 11-05-2015 19:45:13 Zainstalowany program DirectX 12-05-2015 10:32:38 Windows Update 13-05-2015 10:48:24 Windows Update 13-05-2015 18:28:12 Installed ON_OFF Charge B10.0427.1 13-05-2015 18:29:53 Installed Easy Tune 6 B10.0521.1 13-05-2015 18:30:21 Installed @BIOS 13-05-2015 18:30:43 Installed DES 2.0 B10.0301.2 13-05-2015 18:31:07 Installed AutoGreen B09.1014.2 13-05-2015 22:33:24 Windows Update 14-05-2015 07:20:20 Windows Update 14-05-2015 07:27:24 Windows Update 16-05-2015 13:21:33 Windows Update 18-05-2015 07:26:47 Windows Update 01-04-2016 18:32:37 Installed PC Remote 18-04-2016 15:49:20 Zaplanowany punkt kontrolny 19-04-2016 17:19:13 Przed deinstalacja PC Remote 19-04-2016 17:19:20 Removed PC Remote 19-04-2016 17:20:08 Przed deinstalacja Feurio! v. 1.68 19-04-2016 17:20:42 Przed deinstalacja Feurio! CD-Writer 22-04-2016 11:22:05 Installed Nero 11 DiscSpeed. 22-04-2016 14:37:46 Przed deinstalacja Nero BurningROM 2016 22-04-2016 14:37:54 Removed Nero BurningROM 2016. 22-04-2016 14:41:23 Przed deinstalacja Nero Info 22-04-2016 14:41:28 Removed Nero Info. 25-04-2016 14:51:56 Windows Software Development Kit - Windows 10.0.10586.212 ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (04/22/2016 03:14:20 PM) (Source: MsiInstaller) (EventID: 11706) (User: Grzegorz-PC) Description: Produkt: Nero DiscSpeed 11 -- Błąd 1706. Pakiet instalacyjny dla produktu Nero DiscSpeed 11 nie został odnaleziony. Spróbuj uruchomić instalację ponownie przy użyciu aktualnej kopii pakietu instalacyjnego 'nero.discspeed.msi'. Error: (06/22/2014 03:05:19 PM) (Source: MsiInstaller) (EventID: 11706) (User: ZARZĄDZANIE NT) Description: Product: Nero Update -- Error 1706.No valid source could be found for product Nero Update. The Windows Installer cannot continue. Error: (06/22/2014 03:01:12 PM) (Source: MsiInstaller) (EventID: 11706) (User: ZARZĄDZANIE NT) Description: Product: Nero Update -- Error 1706.No valid source could be found for product Nero Update. The Windows Installer cannot continue. Error: (04/22/2016 02:59:29 PM) (Source: MsiInstaller) (EventID: 11706) (User: Grzegorz-PC) Description: Produkt: Nero DiscSpeed 11 -- Błąd 1706. Pakiet instalacyjny dla produktu Nero DiscSpeed 11 nie został odnaleziony. Spróbuj uruchomić instalację ponownie przy użyciu aktualnej kopii pakietu instalacyjnego 'nero.discspeed.msi'. Error: (12/21/2013 03:54:22 PM) (Source: MsiInstaller) (EventID: 11500) (User: Grzegorz-PC) Description: Produkt: Nero Burning ROM 2014 -- Błąd 1500. Inna instalacja jest w toku. Przed kontynuowanie tej instalacji, dokończ tamtą. Error: (12/21/2013 03:54:22 PM) (Source: MsiInstaller) (EventID: 11500) (User: Grzegorz-PC) Description: Produkt: Nero Burning ROM 2014 -- Błąd 1500. Inna instalacja jest w toku. Przed kontynuowanie tej instalacji, dokończ tamtą. Error: (12/21/2013 03:54:22 PM) (Source: MsiInstaller) (EventID: 11500) (User: Grzegorz-PC) Description: Produkt: Nero Burning ROM 2014 -- Błąd 1500. Inna instalacja jest w toku. Przed kontynuowanie tej instalacji, dokończ tamtą. Error: (12/21/2013 03:54:22 PM) (Source: MsiInstaller) (EventID: 11500) (User: Grzegorz-PC) Description: Produkt: Nero Burning ROM 2014 -- Błąd 1500. Inna instalacja jest w toku. Przed kontynuowanie tej instalacji, dokończ tamtą. Error: (12/21/2013 03:54:21 PM) (Source: MsiInstaller) (EventID: 11500) (User: Grzegorz-PC) Description: Produkt: Nero Burning ROM 2014 -- Błąd 1500. Inna instalacja jest w toku. Przed kontynuowanie tej instalacji, dokończ tamtą. Error: (12/21/2013 03:54:21 PM) (Source: MsiInstaller) (EventID: 11500) (User: Grzegorz-PC) Description: Produkt: Nero Burning ROM 2014 -- Błąd 1500. Inna instalacja jest w toku. Przed kontynuowanie tej instalacji, dokończ tamtą. Dziennik System: ============= Error: (04/25/2016 01:02:21 PM) (Source: VDS Basic Provider) (EventID: 1) (User: ) Description: Nieoczekiwane niepowodzenie. Kod błędu: 490@01010004 Error: (04/25/2016 12:32:19 PM) (Source: VDS Basic Provider) (EventID: 1) (User: ) Description: Nieoczekiwane niepowodzenie. Kod błędu: 490@01010004 Error: (04/25/2016 11:40:30 AM) (Source: Microsoft-Windows-Directory-Services-SAM) (EventID: 12291) (User: ZARZĄDZANIE NT) Description: Modułowi SAM nie powiodło się uruchomienie wątku nasłuchu TCP/IP lub SPX/IPX. Error: (04/25/2016 11:40:26 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} Error: (04/25/2016 10:24:08 AM) (Source: VDS Basic Provider) (EventID: 1) (User: ) Description: Nieoczekiwane niepowodzenie. Kod błędu: 490@01010004 Error: (04/24/2016 05:33:51 PM) (Source: Microsoft-Windows-HAL) (EventID: 12) (User: ) Description: Oprogramowanie układowe platformy spowodowało uszkodzenie pamięci podczas poprzedniego przejścia do innego trybu zasilania systemu. Sprawdź dostępność zaktualizowanego oprogramowania układowego przeznaczonego do tego systemu. Error: (04/24/2016 01:27:07 PM) (Source: Microsoft-Windows-HAL) (EventID: 12) (User: ) Description: Oprogramowanie układowe platformy spowodowało uszkodzenie pamięci podczas poprzedniego przejścia do innego trybu zasilania systemu. Sprawdź dostępność zaktualizowanego oprogramowania układowego przeznaczonego do tego systemu. Error: (04/23/2016 08:30:44 PM) (Source: Microsoft-Windows-HAL) (EventID: 12) (User: ) Description: Oprogramowanie układowe platformy spowodowało uszkodzenie pamięci podczas poprzedniego przejścia do innego trybu zasilania systemu. Sprawdź dostępność zaktualizowanego oprogramowania układowego przeznaczonego do tego systemu. Error: (04/23/2016 12:13:39 PM) (Source: BugCheck) (EventID: 1001) (User: ) Description: 0x00000124 (0x0000000000000000, 0xfffffa800742a028, 0x00000000f2000000, 0x000000000020008f)C:\Windows\MEMORY.DMP042316-8190-01 Error: (04/23/2016 12:13:38 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 12:03:19 na ‎2016-‎04-‎23 było nieoczekiwane. CodeIntegrity: =================================== Date: 2015-05-15 08:48:00.116 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\Amfltx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-05-15 08:48:00.116 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\Amfltx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-05-15 08:42:29.938 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\Amusbx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-05-15 08:42:29.938 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\Amusbx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-05-15 08:42:26.100 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\Amfltx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-05-15 08:42:26.100 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\Amfltx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-05-15 08:40:44.901 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\Amusbx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-05-15 08:40:44.899 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\Amusbx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz Procent pamięci w użyciu: 32% Całkowita pamięć fizyczna: 8151.48 MB Dostępna pamięć fizyczna: 5467.54 MB Całkowita pamięć wirtualna: 16301.18 MB Dostępna pamięć wirtualna: 13490.39 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:232.79 GB) (Free:60.46 GB) NTFS Drive f: (Filmy) (Fixed) (Total:336.51 GB) (Free:148.56 GB) NTFS Drive g: (Gry) (Fixed) (Total:300 GB) (Free:79.38 GB) NTFS Drive j: () (Fixed) (Total:150.05 GB) (Free:48.92 GB) NTFS Drive k: () (Fixed) (Total:315.61 GB) (Free:31.63 GB) NTFS Drive m: (Muzyka) (Fixed) (Total:75 GB) (Free:38.49 GB) NTFS Drive p: (Programy ) (Fixed) (Total:220 GB) (Free:13.79 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: A1C29503) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 2D2EDEC5) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=150 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=315.6 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: D50BAF58) Partition 1: (Not Active) - (Size=300 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=75 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=220 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=336.5 GB) - (Type=OF Extended) ==================== Koniec Addition.txt ============================