Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x86) Wersja:13-06-2016 Uruchomiony przez Serwis (2016-06-15 10:05:37) Uruchomiony z I:\ Microsoft Windows 7 Professional Service Pack 1 (X86) (2016-01-04 07:44:30) Tryb startu: Safe Mode (minimal) ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-1431477904-2404962558-605509844-500 - Administrator - Disabled) Gość (S-1-5-21-1431477904-2404962558-605509844-501 - Limited - Enabled) Serwis (S-1-5-21-1431477904-2404962558-605509844-1000 - Administrator - Enabled) => C:\Users\Serwis ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: 电脑管家系统防护 (Enabled - Up to date) {6F9C3F92-B625-0E47-F0B1-447602EC65F5} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: 电脑管家系统防护 (Enabled - Up to date) {D4FDDE76-901F-01C9-CA01-7F04796B2F48} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}) (Version: - Microsoft) 2007 Microsoft Office Suite Service Pack 1 (SP1) (Version: - Microsoft) Hidden 3DMark03 (HKLM\...\{FF35F637-72B9-43BE-A281-06EB2854393A}) (Version: 3.6.0 - ) Adobe Flash Player 21 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated) AdSkip (HKLM\...\ADSKIP) (Version: 1.0.523.2103 - Biling Network Technology Co. Ltd.) <==== UWAGA Aktualizacje NVIDIA 17.12.8 (Version: 17.12.8 - NVIDIA Corporation) Hidden AVG (HKLM\...\AvgZen) (Version: 1.61.2.12974 - AVG Technologies) AVG PC TuneUp (HKLM\...\AVG PC TuneUp) (Version: 16.42.2.18804 - AVG Technologies) AVG PC TuneUp (Version: 16.42.6 - AVG Technologies) Hidden AVG Zen (Version: 1.61.9 - AVG Technologies) Hidden BRC_Inst (HKLM\...\{F889A101-E52B-11D3-9C53-0050DA6409C2}) (Version: - ) BRC_Inst (HKLM\...\BRC_Inst) (Version: - ) ChomikBox (HKLM\...\{71736AF6-BA4B-4F3C-8496-C325B97869BA}) (Version: 2.0.8.1 - Chomikuj.pl) CleanBrowser (HKLM\...\CleanBrowser) (Version: - ) <==== UWAGA Compress (HKLM\...\ZipTool) (Version: 1.1.14.18 - ) <==== UWAGA Detektor Winampa (HKU\S-1-5-21-1431477904-2404962558-605509844-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc) Device Programmer Desktop (HKLM\...\{4802F8E5-3321-11D6-8494-008048C6ADC0}) (Version: 4.3.0 - DB Software) EasyHotspot version 1.0 (HKLM\...\EasyHotspot_is1) (Version: 1.0 - asia softwares tools) EPROM (HKLM\...\{EB89A100-B04F-11D8-A739-0002440A26CA}_is1) (Version: - ) EVEREST Ultimate Edition v5.02 (HKLM\...\EVEREST Ultimate Edition_is1) (Version: 5.02 - Lavalys, Inc.) FMW 1 (Version: 1.92.4 - AVG Technologies) Hidden groover (HKLM\...\{0F375453-0BB2-4846-88E9-66CD0FA6A1E6}) (Version: 2.0.0.478 - groover) <==== UWAGA hohosearch - Uninstall (HKLM\...\{CD6EAF22-9E51-4CCB-80DC-E1BB3BA46ECD}) (Version: - ) <==== UWAGA KA3010P (HKLM\...\{96D495CA-9518-4E09-91BB-59B77A2241F3}) (Version: 2.5.0 - WIN) Malwarebytes Anti-Malware wersja 2.2.0.1024 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes) Math Kernel Libraries (Version: 14.0.6 - National Instruments) Hidden Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.7.133.0 - Microsoft Corporation) Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6215.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) ModiFLY (HKLM\...\{1F08F5E7-EDED-11D4-9117-C43A07860C5D}) (Version: - ) Mozilla Firefox 47.0 (x86 pl) (HKLM\...\Mozilla Firefox 47.0 (x86 pl)) (Version: 47.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 47.0.0.5999 - Mozilla) National Instruments Software (HKLM\...\NI Uninstaller) (Version: - National Instruments) NI ActiveX Container (Version: 14.0.5 - National Instruments) Hidden NI Authentication 2014 (Version: 14.0.344 - National Instruments) Hidden NI Certificates Deployment Support (Version: 1.01.49153 - National Instruments) Hidden NI Curl 2014 (Version: 14.0.295 - National Instruments) Hidden NI Error Reporting 2014 (Version: 14.0.379 - National Instruments) Hidden NI Error Reporting Interface 14.0 (Version: 14.0.241 - National Instruments) Hidden NI EulaDepot (Version: 3.30.268 - National Instruments) Hidden NI LabVIEW 2012 Real-Time NBFifo (Version: 14.0.386 - National Instruments) Hidden NI LabVIEW 2014 Deployment Framework (Version: 14.0.390 - National Instruments) Hidden NI LabVIEW 2014 Run-Time Engine Web Server (Version: 14.0.442 - National Instruments) Hidden NI LabVIEW Run-Time Engine 2014 f1 (Version: 14.0.400 - National Instruments) Hidden NI LabVIEW Run-Time Engine 2014 Non-English Support. (Version: 14.0.381 - National Instruments) Hidden NI LabVIEW Run-Time Engine Interop 2014 (Version: 14.0.403 - National Instruments) Hidden NI LabWindows/CVI 2013 SP1 Low-Level Driver (Original) (Version: 13.0.1201 - National Instruments) Hidden NI LabWindows/CVI 2013 SP1 Low-Level Driver (Updated) (Version: 13.0.1201 - National Instruments) Hidden NI Logos 5.6 (Version: 5.6.254 - National Instruments) Hidden NI Logos XT Support (Version: 5.6.253 - National Instruments) Hidden NI MDF Support (Version: 3.30.268 - National Instruments) Hidden NI mDNS Responder 14.0.0 (Version: 14.00.49152 - National Instruments) Hidden NI Measurement Studio ComponentWorks 3D Graph (Version: 8.6.10603 - National Instruments) Hidden NI Security Update (KB 67L8LCQW) (Version: 1.0.29.0 - National Instruments) Hidden NI Service Locator 2014 (Version: 14.0.217 - National Instruments) Hidden NI SSL LabVIEW RTE 2014 Support (Version: 14.0.376 - National Instruments) Hidden NI SSL Support (Version: 14.0.303 - National Instruments) Hidden NI System State Publisher (Version: 14.0.383 - National Instruments) Hidden NI System Web Server 2014 (Version: 14.0.303 - National Instruments) Hidden NI System Web Server Base 2014 (Version: 14.0.249 - National Instruments) Hidden NI TDM Streaming 14.0 (Version: 14.0.43 - National Instruments) Hidden NI Trace Engine (Version: 14.0.177 - National Instruments) Hidden NI Uninstaller (Version: 3.30.268 - National Instruments) Hidden NI VC2008MSMs x86 (Version: 9.0.401 - National Instruments) Hidden NI VC2010SP1MSMs x86 (Version: 10.0.100 - National Instruments) Hidden NI Web Application Server 2014 (Version: 14.0.308 - National Instruments) Hidden NI Xerces Delay Load 2.7.6 (Version: 2.7.218 - National Instruments) Hidden NI-DIM 1.9.0f0 (Version: 1.93.49152 - National Instruments) Hidden NI-ORB 1.9.3f0 (Version: 1.93.49152 - National Instruments) Hidden NI-PAL 2.4.1f0 (Version: 10.51.49152 - National Instruments) Hidden NI-RPC 14.0.0f0 (Version: 14.00.49152 - National Instruments) Hidden NI-VISA Runtime 4.5.1 (Version: 4.81.768 - National Instruments) Hidden NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 341.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.92 - NVIDIA Corporation) NVIDIA Sterownik graficzny 341.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.92 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation) PAD Product Tool (HKLM\...\{18745E12-6FC9-4719-83BD-CFC7D4A9EFD1}) (Version: 1.05 - Actions) Panel sterowania NVIDIA 341.92 (Version: 341.92 - NVIDIA Corporation) Hidden Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Ralink RT6x Wireless LAN Card (HKLM\...\{FAB1F336-1B7C-4057-A7BC-2922CD82A781}) (Version: 1.5.4.0 - Ralink) RAR Password Recovery Magic v6.1.1.118 (HKLM\...\RAR Password Recovery Magic_is1) (Version: - Password Recovery Magic Studio Ltd.) RAR Password Recovery v1.1 RC17 (remove only) (HKLM\...\Intelore - RAR Password Recovery) (Version: - ) Sequent Plug & Drive (HKLM\...\{9FC5FB5C-EBFD-4E80-9CC1-6C3D26EAF27C}) (Version: - ) SHIELD Streaming (Version: 4.0.1000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 17.12.8 - NVIDIA Corporation) Hidden SPCA1628 PC Driver (HKLM\...\{40BBB89F-B596-44E8-8E3C-C32DE22F7100}) (Version: 1.0.1.0 - ) Steam(TM) (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve) Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 8.52a - Ghisler Software GmbH) UPA-USB Device Programmer v1.2 (HKLM\...\UPA-USB Device Programmer_is1) (Version: 1.2 - ELRASOFT Ltd.) VirtualCloneDrive (HKLM\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes) VISA Shared Components (HKLM\...\VISASharedComponents) (Version: - ) VISA Shared Components (Version: 1.1.0 - IVI Foundation Inc.) Hidden Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) Winamp (HKLM\...\Winamp) (Version: 5.63 - Nullsoft, Inc) WinRAR 5.21 (32-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {00E938A1-4713-4CF0-9F90-6D1550DDEC8B} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2015-12-09] (Microsoft) Task: {096E5706-630A-4C23-8B03-0C34C51376CB} - System32\Tasks\{7F556B9D-27BB-4A07-AC67-C8C781A3D2BC} => pcalua.exe -a C:\WINDOWS\ISUNINST.EXE -c -f"C:\Program Files\Gigabyte\ET5\Uninst.isu" -c"C:\Program Files\Gigabyte\ET5\uninstdrv.dll" Task: {306BC9C2-0C21-478F-A0CB-0C3A4530C567} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files\AVG\AVG PC TuneUp\tuscanx.exe [2016-06-01] (AVG Technologies CZ, s.r.o.) Task: {360D6C92-FB18-4EE1-AA28-1766F0B0E2B7} - System32\Tasks\{4CB3C0B7-F0C4-4F53-8728-A2CC9DBBD64D} => pcalua.exe -a H:\SETUP.EXE -d H:\ Task: {455DF271-99EF-4820-92B1-E02D25F531D6} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-12-09] (Microsoft Corporation) Task: {4642BEBB-74E9-404D-B96A-A1C0F0BC5C57} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-12-09] (Microsoft Corporation) Task: {4A682105-BE16-4F9D-95E9-82F6A8675599} - System32\Tasks\Arerack Server => C:\Program Files\Arerack\ArerackServerTask.exe [2016-06-14] () <==== UWAGA Task: {5359AF86-15BF-423C-9355-8FAB5C33AD0D} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-12-09] (Microsoft Corporation) Task: {56C540C6-1C9A-4C5E-AE97-3255400EEB2C} - System32\Tasks\tasklist => C:\Users\Serwis\AppData\Roaming\UPUpdata\service72564.exe [2016-06-15] () Task: {5ACDFC22-1CAF-424B-91B8-1817E4F08D13} - System32\Tasks\{00D8F59D-6355-4320-B656-047D4C30E9B3} => pcalua.exe -a "G:\Radio Code\SAMOCHODY\IMMOBILIZER\immo_soft\Loader.exe" Task: {742D7B67-A72D-40B3-8CDE-B5A0B7E85F0A} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-12-09] (Microsoft Corporation) Task: {94993550-FCB4-42AE-905E-178DFC70D8F9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-16] (Adobe Systems Incorporated) Task: {B433477F-0A53-4761-97C9-E89B7A0FF50B} - System32\Tasks\{11403C9E-61E0-4B9C-9504-953691A52CDB} => pcalua.exe -a G:\Programatory\setup97ja.exe -d G:\Programatory Task: {D766EBAE-00E2-48BD-AB1C-EB468F980EEB} - System32\Tasks\{4240F6B0-999B-41A0-8684-C12891E7CDDF} => pcalua.exe -a "G:\Radio Code\SAMOCHODY\IMMOBILIZER\immo_soft\IMMOdecoder.exe" Task: {DCD321CF-F4D8-4AB5-B4AA-08F868508DAC} - System32\Tasks\{84127E72-29F0-441F-8636-3FEA3CBFD515} => pcalua.exe -a I:\vcredist_x64.exe -d I:\ -c /q (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) WMI_ActiveScriptEventConsumer_ASEC: <===== UWAGA (yeabests) ==================== Załadowane moduły (filtrowane) ============== 2016-06-15 08:18 - 2016-06-15 08:18 - 00115904 _____ () C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QMAntiInject.dll 2016-06-15 08:18 - 2016-06-15 08:18 - 00088416 _____ () C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\zlib.dll 2016-06-15 08:18 - 2016-06-15 08:18 - 00488640 _____ () C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\sqlite.dll 2016-06-15 08:18 - 2016-06-15 08:18 - 00100704 _____ () C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\tinyxml.dll 2016-06-15 08:18 - 2016-06-15 08:18 - 00046784 _____ () C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\plugins\sysspeeduprtpplugin\SysSpeedupRtpPlugin.dll 2016-06-15 08:18 - 2016-06-15 08:18 - 00070848 _____ () C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\plugins\qmiemalrtpplugin\qmiemalrtpplugin.dll 2016-06-15 08:18 - 2016-02-28 00:55 - 00036128 _____ () C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\oDayProtect.dll 2016-06-15 08:18 - 2016-06-15 08:18 - 00128192 _____ () c:\program files\tencent\qqpcmgr\11.5.17490.219\qmrtpcontroller.dll 2016-06-15 08:11 - 2016-06-14 10:46 - 00316088 _____ () C:\Users\Serwis\AppData\Roaming\Microsoft\Windows\Cookies\grumak.dll 2016-06-15 08:49 - 2015-11-30 12:17 - 00120736 _____ () C:\Program Files\ZipTool\JZipExt.dll 2016-06-15 08:18 - 2016-06-15 08:18 - 00137568 _____ () C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\libexpatw.dll 2016-06-15 08:18 - 2016-06-15 08:18 - 02156896 _____ () C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\GF.dll 2016-06-15 08:18 - 2016-06-15 08:18 - 00092512 _____ () C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\xGraphic32.dll 2016-06-15 08:18 - 2016-06-15 08:18 - 00342368 _____ () C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\arkGraphic.dll 2016-06-15 08:18 - 2016-06-15 08:18 - 00045408 _____ () C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\jgImage.dll 2016-06-15 08:18 - 2016-06-15 08:18 - 00158048 _____ () C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\libpng.dll 2016-06-15 08:18 - 2016-06-15 08:18 - 00285024 _____ () C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\libjpegturbo.dll 2016-06-15 08:18 - 2016-06-15 08:18 - 00014176 _____ () C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\jgIOStub.dll 2016-06-15 08:18 - 2016-06-15 08:18 - 00194912 _____ () C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\xImage.dll 2016-06-15 08:18 - 2016-06-15 08:18 - 00083136 _____ () C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\MemDefrag.dll 2016-06-15 08:18 - 2016-06-15 08:18 - 00169152 _____ () c:\program files\tencent\qqpcmgr\11.5.17490.219\qmhipslogpolicy.dll 2016-06-15 08:18 - 2016-06-15 08:18 - 00337088 _____ () C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QMTrayPlugin\QMAutoTaskPlugin\SubPlugins\OperationFileCloudMgr.dll 2016-06-15 08:18 - 2016-06-15 08:18 - 00379232 _____ () C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\DlForQd.dll 2016-06-15 08:18 - 2016-06-15 08:18 - 00251072 _____ () C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QMWlanMacDll.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\bsdp32.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\QQPCRTP => ""="service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\bsdp32.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\QQPCRTP => ""="service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:04 - 2016-06-15 08:40 - 00001626 ____A C:\Windows\system32\Drivers\etc\hosts 107.178.255.88 www.google-analytics.com 107.178.255.88 www.statcounter.com 107.178.255.88 statcounter.com 107.178.255.88 ssl.google-analytics.com 107.178.255.88 partner.googleadservices.com 107.178.255.88 google-analytics.com 107.178.248.130 static.doubleclick.net 107.178.247.130 connect.facebook.net 107.178.255.88 www.google-analytics.com 107.178.255.88 www.statcounter.com 107.178.255.88 statcounter.com 107.178.255.88 ssl.google-analytics.com 107.178.255.88 partner.googleadservices.com 107.178.255.88 google-analytics.com 107.178.248.130 static.doubleclick.net 107.178.247.130 connect.facebook.net127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 www.czzsyzgm.com 127.0.0.1 www.czzsyzxl.com 127.0.0.1 union.baidu2019.com ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-1431477904-2404962558-605509844-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Serwis\AppData\Roaming\Mozilla\Firefox\Tapeta pulpitu.bmp DNS Servers: Urządzenie nie jest podłączone do internetu. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{2BD88C43-FF13-477F-A39C-2AFD05DCE649}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{526EDBDE-C2A2-430E-9A20-AA5C5746DB51}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{D00F387F-508B-4A7E-9ABD-B5803F1CD8BD}] => (Allow) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [{35B6EE2B-210D-4C99-8D77-7E588CE38C07}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{8733F59C-76AA-453E-9912-6FB780E5A0E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{B84FC812-9A17-46C2-977C-29240A942FD8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{B908C483-8E2D-47BD-AAD3-9B020C37C1FF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{85DDF818-9D72-49CC-A680-E81672E3CCAA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{5A6D72A1-3802-4D18-868E-DBE7846D4D4D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{A9C2A7E2-75FE-4C61-8B15-6FCD44513AE3}] => (Allow) C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe FirewallRules: [{3B848BF1-A2CB-49D8-BEDD-6E15C4BDB929}] => (Allow) C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe FirewallRules: [{22EC3136-CADE-4416-9D77-F40268D55AD2}] => (Allow) C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe FirewallRules: [{CD4A55A3-AC69-4910-B11D-11764353D2A1}] => (Allow) C:\Program Files\National Instruments\Shared\NI WebServer\SystemWebServer.exe FirewallRules: [{E9F3CA92-CAD3-46F6-BDA4-C9D733553497}] => (Allow) C:\Program Files\National Instruments\Shared\NI WebServer\SystemWebServer.exe FirewallRules: [{8A3BB187-468E-4D84-9792-02A814D0A23C}] => (Allow) C:\Program Files\National Instruments\Shared\nisvcloc\nisvcloc.exe FirewallRules: [{DF58609B-7294-4D7B-8E9A-A4EABA727F0B}] => (Allow) C:\Program Files\National Instruments\Shared\nisvcloc\nisvcloc.exe FirewallRules: [TCP Query User{83CDDDC1-CB9D-4131-B881-7D6A80CCDC18}C:\program files\winamp\winamp.exe] => (Allow) C:\program files\winamp\winamp.exe FirewallRules: [UDP Query User{715FB848-3741-4B9B-9936-487407711E5C}C:\program files\winamp\winamp.exe] => (Allow) C:\program files\winamp\winamp.exe FirewallRules: [{FE0C591E-83D1-4BE0-B5B5-0C93F434012E}] => (Block) C:\program files\winamp\winamp.exe FirewallRules: [{DA897AB1-ABFB-41D3-BD03-FC191146F7E8}] => (Block) C:\program files\winamp\winamp.exe FirewallRules: [{BA7B264F-91FE-4BA5-B5FC-C5910471F06D}] => (Allow) C:\Program Files\ADSKIP\ADSkip.exe FirewallRules: [{88963AA8-35CC-4C4E-8A69-5E15DF794BB5}] => (Allow) C:\Program Files\ADSKIP\ADSkipSvc.exe FirewallRules: [{583D1364-F5E0-4A6B-BA31-0481645F7FD3}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QQPCmgrInstallGuide.exe FirewallRules: [{51A67260-7EF5-45B6-A7A5-D3EAA8CA4F66}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QQPCTray.exe FirewallRules: [{0FA725BB-9BD2-40A6-87D3-EA17FD369463}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QQPCMgr.exe FirewallRules: [{E4737BD1-3948-4431-8A66-FD1858B644B9}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QQPCRTP.exe FirewallRules: [{B37795DE-3551-4B7A-998C-1C07A7DBD534}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QMDL.exe FirewallRules: [{0C12E439-6898-4FCE-BCC0-3B0EA833D2F3}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\bugreport.exe FirewallRules: [{1A7EFB1D-0B61-404E-901F-2D2E67CAA5AB}] => (Allow) C:\program files\common files\tencent\qqdownload\130\bugreport_xf.exe FirewallRules: [{E09C8D87-FA76-4FF8-B9F0-D2FDA2AB9A65}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QQPCFileOpen.exe FirewallRules: [{BACABF39-2C61-4CDB-9B95-51C19F088E2A}] => (Allow) C:\program files\common files\tencent\qqdownload\130\tencentdl.exe FirewallRules: [{1E2079EF-5B98-4055-9782-D601737D90CD}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QQPCLeakScan.exe FirewallRules: [{0C42BD49-5C02-4FC9-BB5D-E7C749378F67}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QQPConfig.exe FirewallRules: [{70249663-419B-4DAC-A31D-2F40BA4C5BFD}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QQPCSoftMgr.exe FirewallRules: [{7EBBC529-2F2A-4F27-BCB7-848F81A46F3D}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\plugins\QMNetMon\QQPCNetFlow.exe FirewallRules: [{3C3B0FCB-E14A-43AF-BF09-C3E78C6CB635}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QQPCBTU.exe FirewallRules: [{4485A483-E11F-4393-B454-9FE8BC7D5C8A}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QQPCClinic.exe FirewallRules: [{A9A42589-062C-40C3-8EA0-C597C509301D}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QQPCLaunch.exe FirewallRules: [{51DA95C7-3B17-4658-8131-C798344CBF8B}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QMUpdate\QQPCMgrUpdate.exe FirewallRules: [{5F6B87B1-275B-412B-A287-4E6045558C08}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QQPCSoftGame.exe FirewallRules: [{BEBDBAD9-9A71-4F47-B737-F847FD560BAC}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QQPCSysOptimize.exe FirewallRules: [{03AFCFDA-671F-46F3-922A-C70473CB4019}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QQPCUpdateAVLib.exe FirewallRules: [{EB01873C-6B5B-41FE-89A1-4726638C04C6}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QQRepair.exe FirewallRules: [{C5E5B65D-26AF-4540-8457-F4576D961560}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\Uninst.exe FirewallRules: [{61370178-1ED8-49A8-8AC6-C49D30479F04}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QQPCPatch.exe FirewallRules: [{8995C442-A354-45AB-B3E4-0EE58CF6E509}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\TpkUpdate.exe FirewallRules: [{51F88AFE-EE60-490B-B927-5775B864D9B2}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QMRouterMgr.exe FirewallRules: [{6231A899-0506-4F82-A4D4-6D988B3D2296}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QMAccountProtection.exe FirewallRules: [{E7B4421F-8EB3-452E-9E7A-844205EA464D}] => (Allow) C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QMAdBlock.exe ==================== Punkty Przywracania systemu ========================= 23-05-2016 14:04:00 Installed Steam(TM) 23-05-2016 14:05:01 Installed Half-Life(R) 2 24-05-2016 07:07:38 Windows Update 30-05-2016 07:14:25 Windows Update 30-05-2016 08:08:35 Zainstalowany program DirectX 03-06-2016 13:57:23 Windows Update 07-06-2016 13:06:43 Windows Update 14-06-2016 07:55:33 Windows Update ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: NIPALK Description: NIPALK Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: NIPALK Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Security Processor Loader Driver Description: Security Processor Loader Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: spldr Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (06/15/2016 09:48:28 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/15/2016 09:22:50 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: msiql.exe, wersja: 1.0.1.17, sygnatura czasowa: 0x574c5c6f Nazwa modułu powodującego błąd: msiql.exe, wersja: 1.0.1.17, sygnatura czasowa: 0x574c5c6f Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0001ec21 Identyfikator procesu powodującego błąd: 0x1380 Godzina uruchomienia aplikacji powodującej błąd: 0xmsiql.exe0 Ścieżka aplikacji powodującej błąd: msiql.exe1 Ścieżka modułu powodującego błąd: msiql.exe2 Identyfikator raportu: msiql.exe3 Error: (06/15/2016 09:20:39 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/15/2016 08:55:03 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/15/2016 08:46:51 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: ) Description: Nie można automatycznie pobrać aktualizacji głównego certyfikatu innych firm z: , wystąpił błąd: Operacja została zwrócona, ponieważ przekroczono limit czasu. . Error: (06/15/2016 08:43:33 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/15/2016 08:42:42 AM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: NvStreamSvcNvVAD initialization failed [6] Error: (06/15/2016 08:42:42 AM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0] Error: (06/15/2016 08:42:42 AM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: NvStreamSvcNvVAD endpoint registration failed [0] Error: (06/15/2016 08:22:48 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: ) Description: Nie można automatycznie pobrać aktualizacji głównego certyfikatu innych firm z: , wystąpił błąd: Operacja została zwrócona, ponieważ przekroczono limit czasu. . Dziennik System: ============= Error: (06/15/2016 09:56:18 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (06/15/2016 09:49:10 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (06/15/2016 09:47:57 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (06/15/2016 09:47:56 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (06/15/2016 09:47:54 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (06/15/2016 09:47:53 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (06/15/2016 09:47:52 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (06/15/2016 09:47:50 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (06/15/2016 09:47:50 AM) (Source: DCOM) (EventID: 10005) (User: ) Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030} Error: (06/15/2016 09:47:47 AM) (Source: DCOM) (EventID: 10005) (User: ) Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} ==================== Statystyki pamięci =========================== Procesor: AMD Athlon(tm) 64 X2 Dual Core Processor 5400+ Procent pamięci w użyciu: 27% Całkowita pamięć fizyczna: 2047.55 MB Dostępna pamięć fizyczna: 1493.17 MB Całkowita pamięć wirtualna: 4095.11 MB Dostępna pamięć wirtualna: 3612.47 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:149.05 GB) (Free:80.78 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano odczytując BCD)] Drive d: (XP) (Fixed) (Total:14.63 GB) (Free:1.03 GB) FAT32 Drive e: (MALINA D) (Fixed) (Total:19.52 GB) (Free:0.69 GB) FAT32 Drive f: (DYSK E) (Fixed) (Total:19.52 GB) (Free:0.2 GB) FAT32 Drive g: (ELEKTRONIKA) (Fixed) (Total:20.8 GB) (Free:0.36 GB) FAT32 Drive h: (HL2) (CDROM) (Total:2.77 GB) (Free:0 GB) CDFS Drive i: () (Removable) (Total:0.93 GB) (Free:0.02 GB) FAT ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 74.5 GB) (Disk ID: FB7FFB7F) Partition 1: (Active) - (Size=14.6 GB) - (Type=0C) Partition 2: (Not Active) - (Size=59.9 GB) - (Type=OF Extended) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: D932D932) Partition 1: (Active) - (Size=149 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (Size: 961 MB) (Disk ID: 00000000) Partition: GPT. ==================== Koniec Addition.txt ============================