Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 05-02-2017 Uruchomiony przez oliwia (05-02-2017 21:23:52) Uruchomiony z C:\Users\oliwia\Downloads\FRST-OlderVersion Windows 8.1 (Update) (X64) (2016-12-30 23:06:16) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-3748271482-3157857226-2612363529-500 - Administrator - Disabled) Gość (S-1-5-21-3748271482-3157857226-2612363529-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3748271482-3157857226-2612363529-1003 - Limited - Enabled) oliwia (S-1-5-21-3748271482-3157857226-2612363529-1001 - Administrator - Enabled) => C:\Users\oliwia ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated) AMD Catalyst Install Manager (HKLM\...\{42EC3153-24B0-FCAD-0F16-0904BCBAB179}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach) Bejeweled 3 (x32 Version: 3.0.2.59 - WildTangent) Hidden BitComet 1.44 (HKLM-x32\...\BitComet_x64) (Version: 1.44 - CometNetwork) BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 2.5.83.6332 - BlueStack Systems, Inc.) Cheat Engine 6.6 (HKLM-x32\...\Cheat Engine 6.6_is1) (Version: - Cheat Engine) Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.38.57 - Conexant) Cool Edit Pro 2.1 (HKLM-x32\...\Cool Edit Pro 2.1) (Version: - ) Counter-Strike 1.6 v23 (HKLM-x32\...\{6A8BC91F-83AF-4CA0-AA88-06B6FD071444}_is1) (Version: v23 - CSSetti.pl) Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve) CyberLink MediaStory (HKLM-x32\...\InstallShield_{55762F9A-FCE3-45d5-817B-051218658423}) (Version: 1.0.1321 - CyberLink Corp.) CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.4328.05 - CyberLink Corp.) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.0.0222 - Disc Soft Ltd) DAEMON Tools Ultra (HKLM\...\DAEMON Tools Ultra) (Version: 5.0.0.0540 - Disc Soft Ltd) Deluge 1.3.3 (HKLM-x32\...\Deluge) (Version: - ) Digimon Masters Online (HKLM\...\Steam App 537180) (Version: - Move Games Co., Ltd.) DTS Sound (HKLM-x32\...\{BC95D4AF-4DAC-4350-8BCE-C8BF16A13AE0}) (Version: 1.01.8800 - DTS, Inc.) ElfBot NG 4.5.9 (HKLM-x32\...\ElfBot NG_is1) (Version: - NGSoft, LLC) Enchanted Cavern 2 (x32 Version: 2.2.0.110 - WildTangent) Hidden Evernote v. 5.4 (HKLM-x32\...\{59071464-DAEE-11E3-9080-00163E98E7D0}) (Version: 5.4.0.3698 - Evernote Corp.) FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line) FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line) Gameforge Live 2.0.12 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.12 - Gameforge) GIMP 2.8.18 (HKLM\...\GIMP-2_is1) (Version: 2.8.18 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.) Google Drive (HKLM-x32\...\{07A12123-B717-496B-B471-48AF6407B433}) (Version: 1.32.4066.7445 - Google, Inc.) Google Update Helper (x32 Version: 1.3.21.115 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios) IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line) InfinityMU Season 3 Episode 1 (HKLM-x32\...\InfinityMU Season 3 Episode 1) (Version: Season 3 Episode 1 - InfinityMU) Intel(R) Chipset Device Software (x32 Version: 10.0.13 - Intel(R) Corporation) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3643 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{922CA1B2-9D74-49DF-A23F-90F710F51DD7}) (Version: 17.0.1428.01 - Intel Corporation) Intel® PROSet/Wireless Software (HKLM-x32\...\{85b9d34f-7397-4e39-8600-07942ef6ca04}) (Version: 17.0.5 - Intel Corporation) Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation) King Oddball (x32 Version: 3.0.2.48 - WildTangent) Hidden Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden Mahjongg Artifacts (x32 Version: 2.2.0.110 - WildTangent) Hidden MaxTo (HKLM\...\{03F2D18D-9ADE-4C7C-9A81-C0B9A06EDEC1}) (Version: 15.11.1 - Digital Creations AS) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Mu Online LA - Season 6 EP3 (HKU\S-1-5-21-3748271482-3157857226-2612363529-1001\...\Mu Online LA - Season 6 EP3) (Version: - ) My Kingdom for the Princess 3 (x32 Version: 2.2.0.110 - WildTangent) Hidden Naruto Shippuden Ultimate Ninja Storm Revolution (HKLM-x32\...\Naruto Shippuden Ultimate Ninja Storm Revolution_is1) (Version: - ) NARUTO SHIPPUDEN: Ultimate Ninja STORM 3 Full Burst (HKLM-x32\...\TkFSVVRPU0hJUFBVREVOVWx0aW1hdGVOaW5qYVNUT1JNM0Z1~D4302771_is1) (Version: 1 - ) Nox APP Player (HKLM-x32\...\Nox) (Version: 3.8.0.0 - Duodian Technology Co. Ltd.) Oddshot (HKU\S-1-5-21-3748271482-3157857226-2612363529-1001\...\0aa2f797fe4c1ddb) (Version: 1.0.0.41 - Oddshot.tv) OEM Application Profile (HKLM-x32\...\{8C7185EB-4165-040E-D581-EA62D922E8A2}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - ) OpenMu (HKLM-x32\...\OpenMu) (Version: - ) Paladins (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF402}) (Version: 0.42.1552.0 - Hi-Rez Studios) Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden Plants vs. Zombies - Game of the Year (x32 Version: 3.0.2.59 - WildTangent) Hidden Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden PowerISO (HKLM-x32\...\PowerISO) (Version: 6.7 - Power Software Ltd) PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.29077 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek) Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.105 - Skype Technologies S.A.) Spotify (HKLM-x32\...\Spotify) (Version: 0.8.5.1333.g822e0de8 - Spotify AB) Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation) Symbaloo (HKLM-x32\...\Symbaloo) (Version: 1.0.0 - Symbaloo Launcher by Toshiba Europe GmbH) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.1.3.0 - Synaptics Incorporated) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH) TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: - Gameforge4d) Tibia (HKLM-x32\...\Tibia_is1) (Version: 8.60 - CipSoft GmbH) TOSHIBA Desktop Assist (HKLM\...\{C4CDCEF0-0A7A-4425-887C-33E39533D758}) (Version: 1.03.06.6403 - Toshiba Corporation) TOSHIBA Display Utility (HKLM\...\{484A4296-6F3D-4182-8CFA-D664F7DA34AA}) (Version: 1.1.17.0 - Toshiba Corporation) TOSHIBA eco Utility (HKLM\...\{94D2A899-0C34-4420-880E-AE337E635AB0}) (Version: 2.5.3.6401 - Toshiba Corporation) TOSHIBA Function Key (HKLM\...\{1844CFE2-EBA3-490A-8A5E-9BFC646342FD}) (Version: 1.1.5.6402 - Toshiba Corporation) TOSHIBA Manuals (HKLM-x32\...\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}) (Version: 10.19 - TOSHIBA) TOSHIBA Password Utility (HKLM-x32\...\InstallShield_{26BB68BB-CF93-4A12-BC6D-A3B6F53AC8D9}) (Version: 6.0.9.0 - Toshiba Corporation) TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 3.01.02.6400 - Toshiba Corporation) TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 3.2.00.56006005 - Toshiba Corporation) TOSHIBA Service Station (HKLM\...\{BFE4C813-4DD4-4B1C-97F4-76A459055C8D}) (Version: 2.6.13 - Toshiba Corporation) TOSHIBA Start Screen Option (HKLM\...\{06B71035-F19F-4F76-9875-FFCCD4FC3F83}) (Version: 1.00.01.6402 - Toshiba Corporation) TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 1.00.0033 - Toshiba Corporation) TOSHIBA System Settings (HKLM-x32\...\{4D57ED72-6B01-40BD-9CA9-012B8FC09CEB}) (Version: 2.0.1.32003 - Toshiba Corporation) Toshiba TEMPRO (HKLM-x32\...\{E4C7D9D7-19D4-4623-AF0C-EA313C466411}) (Version: 5.0.0 - Toshiba Europe GmbH) Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.8.8 - Tunngle.net GmbH) Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden Virtual Villagers 5 - New Believers (x32 Version: 3.0.2.32 - WildTangent) Hidden Warframe (HKLM-x32\...\{CF4A7B69-BEFD-4AE8-8710-FFD471DC136F}) (Version: 1.0.0 - Digital Extremes) WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent) WildTangent Games App (Toshiba Games) (x32 Version: 4.0.11.9 - WildTangent) Hidden Windows Driver Package - BigNox Corporation YSDrv System (12/26/2016 4.3.12) (HKLM\...\F2B0D5BB68B49599C93223B0816974DBDFAA2B0A) (Version: 12/26/2016 4.3.12 - BigNox Corporation) WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) WinZip 18.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240E3}) (Version: 18.5.11111 - WinZip Computing, S.L. ) Youda Jewel Shop (x32 Version: 3.0.2.51 - WildTangent) Hidden ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-3748271482-3157857226-2612363529-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3748271482-3157857226-2612363529-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3748271482-3157857226-2612363529-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3748271482-3157857226-2612363529-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3748271482-3157857226-2612363529-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3748271482-3157857226-2612363529-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {09BEB9E0-6E53-405F-B9DE-585BFD7BAB1B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-30] (Google Inc.) Task: {2329AE5B-EA15-4BE6-AD06-8B90D7ADF005} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe [2013-09-24] (TOSHIBA Corporation) Task: {68CA1401-D7CA-4A16-9F33-44CD4862D48A} - System32\Tasks\dts_apo_service_task => C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_task.exe [2014-06-04] () Task: {7CE88E83-9D08-41F6-8B08-7DF6FE2FD603} - System32\Tasks\Toshiba\CommonNotifier => C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe [2015-11-17] (Toshiba Europe GmbH) Task: {997304F7-44CE-4E06-9A27-BBCEC9E30447} - System32\Tasks\MaxTo => C:\Program Files\MaxTo\MaxTo.exe [2015-11-15] (Digital Creations AS) Task: {B963634B-6EDF-4044-B7E1-09E7AC274877} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-10] (Adobe Systems Incorporated) Task: {C28D0D07-9B3F-4FFF-928A-9A8CDE77E937} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2014-02-20] (Synaptics Incorporated) Task: {E221B81B-8439-44F2-AA9C-4FB971452B62} - System32\Tasks\Resolution+ Setting Task => C:\Program Files\Toshiba\TOSHIBA Smart View Utility\Plugins\ResolutionPlus\TosRegPermissionChg.exe [2014-03-12] (TOSHIBA Corporation) Task: {EB674715-89B9-4E69-8E94-B829D0492571} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-30] (Google Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\oliwia\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> –safebrowsing-disable-download-protection ==================== Załadowane moduły (filtrowane) ============== 2012-07-18 18:38 - 2012-07-18 18:38 - 00020904 _____ () C:\Program Files\TOSHIBA\Hotkey\SmoothView.dll 2017-01-29 19:44 - 2017-01-10 22:53 - 00206848 ____N () C:\Gry\Counter-Strike 1.6 v23\SteamServerBrowser\SteamServerBrowser.exe 2014-06-30 11:11 - 2014-06-30 11:11 - 00021840 _____ () C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe 2017-02-01 17:10 - 2017-02-01 17:10 - 01459712 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.UI\ea494708300f305a0bfdb9484f99e357\Windows.UI.ni.dll 2013-08-21 23:19 - 2013-08-21 22:54 - 00050176 _____ () C:\WINDOWS\system32\WinMetadata\Windows.Data.winmd 2013-08-21 23:19 - 2013-08-21 22:54 - 00030208 _____ () C:\WINDOWS\system32\WinMetadata\Windows.Foundation.winmd 2016-12-30 16:27 - 2016-12-08 00:03 - 02412888 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll 2016-12-30 16:27 - 2016-12-08 00:03 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll 2017-02-05 21:15 - 2017-02-05 21:15 - 04015056 _____ () C:\Users\oliwia\Downloads\adwcleaner_6.043.exe 2017-01-09 15:15 - 2016-12-13 09:17 - 03243616 _____ () C:\Program Files (x86)\Bluestacks\libGLESv2.dll 2014-11-15 18:50 - 2014-03-06 03:15 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2013-08-22 05:25 - 2013-08-22 05:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-3748271482-3157857226-2612363529-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Theme2\img10.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [vm-monitoring-nb-session] => LPort=139 FirewallRules: [{5A025C82-5DEF-4BF6-A2E4-39507DC98B1C}] => C:\Program Files (x86)\Spotify\spotify.exe FirewallRules: [{D74D8D76-9426-4714-89F8-FB064475591D}] => C:\Program Files (x86)\Spotify\spotify.exe FirewallRules: [{56335CE8-6D88-4AA2-B19F-890FC44580D1}] => C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe FirewallRules: [{D53517AC-C263-4444-AE27-60A04AA6E291}] => C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe FirewallRules: [{F334160D-C155-4512-8A11-BB83B3A77175}] => C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{D2C55BE3-B9D8-4445-B9EA-C3ECD47346DF}] => C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe FirewallRules: [{4DBA3ACA-42AB-4B1C-92F3-25F39EBC603D}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{0DD53029-2798-4BCE-BB3E-65D33668EBA3}] => C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{4882AD41-20E2-4019-9C65-82571BF025DF}] => C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{EC7CAD8F-DBC1-43E9-98D5-AD1F398AA774}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{8779FC4E-1507-407D-A25C-24E167E362D1}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{FB2C3E14-4456-4099-A3B8-F706B36369ED}] => C:\Program Files (x86)\Steam\steamapps\common\Digimon Masters Online - Steam\DMLauncher.exe FirewallRules: [{4D0B640E-5F47-4F33-A220-F5FE023BBFC7}] => C:\Program Files (x86)\Steam\steamapps\common\Digimon Masters Online - Steam\DMLauncher.exe FirewallRules: [{A89E6C2D-EB41-4657-B74F-EC16E9D5FA39}] => C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{31F7A1DC-8995-4332-8A46-9BE784914F4C}] => C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [TCP Query User{9468B970-E585-4BC5-A01B-6A0971D371B6}C:\users\oliwia\appdata\roaming\utorrent\utorrent.exe] => C:\users\oliwia\appdata\roaming\utorrent\utorrent.exe FirewallRules: [UDP Query User{52F1CED2-90BE-4390-B073-6A666DE6F6AB}C:\users\oliwia\appdata\roaming\utorrent\utorrent.exe] => C:\users\oliwia\appdata\roaming\utorrent\utorrent.exe FirewallRules: [TCP Query User{5A793AB9-1582-40AF-A448-7AECE11633D4}C:\program files\bitcomet\bitcomet.exe] => C:\program files\bitcomet\bitcomet.exe FirewallRules: [UDP Query User{B0494155-5180-4E0B-A817-FD59BF891726}C:\program files\bitcomet\bitcomet.exe] => C:\program files\bitcomet\bitcomet.exe FirewallRules: [{1F33E2AC-A863-4962-9F46-9AB5D9B6CF30}] => C:\Program Files (x86)\Tunngle\TnglCtrl.exe FirewallRules: [{9F960E28-209A-41F0-A5BE-9D3F0505FB1C}] => C:\Program Files (x86)\Tunngle\TnglCtrl.exe FirewallRules: [{05AF28DA-FB4A-4091-A7D2-33B11B263A4D}] => C:\Program Files (x86)\Tunngle\Tunngle.exe FirewallRules: [{76F49EA5-7E9F-44A0-BC4B-9DA5F10FF862}] => C:\Program Files (x86)\Tunngle\Tunngle.exe FirewallRules: [{837D212B-CDD2-419D-BF3F-2EC57146DAD4}] => C:\Program Files (x86)\NARUTO SHIPPUDEN Ultimate Ninja STORM 3 Full Burst\NS3FB_launcher.exe FirewallRules: [{FA748642-7CAE-4ABF-9B90-3A2F1FC97C57}] => C:\Program Files (x86)\NARUTO SHIPPUDEN Ultimate Ninja STORM 3 Full Burst\NS3FB_launcher.exe FirewallRules: [{8621292D-177D-4C96-B92F-25DC3D57FA4C}] => C:\Program Files (x86)\NARUTO SHIPPUDEN Ultimate Ninja STORM 3 Full Burst\NS3FB_launcher.exe FirewallRules: [{0E819981-896D-4D1B-A11A-B4B3D62D45C0}] => C:\Program Files (x86)\NARUTO SHIPPUDEN Ultimate Ninja STORM 3 Full Burst\NS3FB_launcher.exe FirewallRules: [TCP Query User{E25DEAA6-6487-49E1-A3FA-11EDD4760F30}C:\program files (x86)\naruto shippuden ultimate ninja storm 3 full burst\ns3fb.exe] => C:\program files (x86)\naruto shippuden ultimate ninja storm 3 full burst\ns3fb.exe FirewallRules: [UDP Query User{C73EE5BA-7F09-40F8-B634-8C461F261170}C:\program files (x86)\naruto shippuden ultimate ninja storm 3 full burst\ns3fb.exe] => C:\program files (x86)\naruto shippuden ultimate ninja storm 3 full burst\ns3fb.exe FirewallRules: [TCP Query User{28D7309E-54EC-4EEE-8091-8A40E736AFDB}C:\gry\counter-strike 1.6 windows 8\hl.exe] => C:\gry\counter-strike 1.6 windows 8\hl.exe FirewallRules: [UDP Query User{89342C68-ED45-4D4A-927B-6EB98B52352F}C:\gry\counter-strike 1.6 windows 8\hl.exe] => C:\gry\counter-strike 1.6 windows 8\hl.exe FirewallRules: [TCP Query User{C1B1F3BC-8C28-4A91-AFC3-DD85E023A46A}C:\program files (x86)\java\jre1.8.0_111\bin\javaw.exe] => C:\program files (x86)\java\jre1.8.0_111\bin\javaw.exe FirewallRules: [UDP Query User{0FDE6A44-346D-4E27-909D-1B73C94F81D8}C:\program files (x86)\java\jre1.8.0_111\bin\javaw.exe] => C:\program files (x86)\java\jre1.8.0_111\bin\javaw.exe FirewallRules: [{2E43A70A-12BF-489A-BAF8-4215D1BCBB95}] => C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{9B6BCA54-CF07-4AC5-9072-D2F0FC45D270}] => C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [TCP Query User{FDDD4673-1BD9-4D05-B35B-9BA7F20364F5}C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe] => C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe FirewallRules: [UDP Query User{B5D7C6B7-0230-4E05-B60D-74EF8A9A62EF}C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe] => C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe FirewallRules: [{E65CDB83-619E-487B-BB30-07066CC8980C}] => C:\Users\oliwia\AppData\Local\Warframe\Downloaded\Public\Warframe.exe FirewallRules: [{FE61DC93-C749-4140-BE93-909E3EF7351B}] => C:\Users\oliwia\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe FirewallRules: [{D67049D5-B56E-4C3C-BAE6-7897B9B7885D}] => C:\Users\oliwia\AppData\Local\Warframe\Downloaded\Public\Warframe.exe FirewallRules: [{7B553410-6636-435C-B4CB-2CC625541F4F}] => C:\Users\oliwia\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe FirewallRules: [{3919AFE2-C3C6-4D90-9CE6-F6A07838BB0E}] => C:\Users\oliwia\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe FirewallRules: [{814C2A45-5B86-4698-A1DE-8D399DE960FB}] => C:\Users\oliwia\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe FirewallRules: [{3039419F-BFF1-4DCF-A32B-2CC5B03AB49E}] => C:\Users\oliwia\AppData\Local\Warframe\Downloaded\Public\Warframe.exe FirewallRules: [{18BC0912-A187-453B-872F-EB5B16102C4C}] => C:\Users\oliwia\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe FirewallRules: [{18C5585F-0A55-4B42-8089-F4F6CC17DF5D}] => C:\Users\oliwia\AppData\Local\Warframe\Downloaded\Public\Warframe.exe FirewallRules: [{E7BBAE02-982B-4DDB-AC4E-AB842B8A6F2B}] => C:\Users\oliwia\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe FirewallRules: [{90212766-0D0D-4F02-9838-4E9E430BA646}] => C:\Users\oliwia\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe FirewallRules: [{C7863EE6-89AC-418C-83A5-E1AAC308FEC9}] => C:\Users\oliwia\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe FirewallRules: [{24A89B6B-6BC7-4091-8D34-94AFC55BC1F2}] => C:\Program Files (x86)\GameforgeLive\gfl_client.exe FirewallRules: [TCP Query User{E7E3F7BF-3B9C-47A2-B027-CBA87A0C1487}C:\program files (x86)\gameforgelive\games\gbr_eng\tera\tera-launcher.exe] => C:\program files (x86)\gameforgelive\games\gbr_eng\tera\tera-launcher.exe FirewallRules: [UDP Query User{50FFBC4F-0D3F-4D3E-8EE1-997676F6F095}C:\program files (x86)\gameforgelive\games\gbr_eng\tera\tera-launcher.exe] => C:\program files (x86)\gameforgelive\games\gbr_eng\tera\tera-launcher.exe FirewallRules: [TCP Query User{8147C506-FA42-44C2-A465-8DF7C28F537A}C:\gry\counter-strike 1.6 v23\hl.exe] => C:\gry\counter-strike 1.6 v23\hl.exe FirewallRules: [UDP Query User{980A83C9-B9C2-45EE-B5F1-99A9DBE7A751}C:\gry\counter-strike 1.6 v23\hl.exe] => C:\gry\counter-strike 1.6 v23\hl.exe FirewallRules: [{37F4373F-D8F6-40BC-8135-8A8E7E76F81F}] => C:\Program Files (x86)\Nox\bin\Nox.exe FirewallRules: [{16211B2C-3DC0-4D2D-ADEE-2FF00C282601}] => C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe ==================== Punkty Przywracania systemu ========================= 01-02-2017 16:05:10 Windows Update ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: AMD Radeon R7 M260 Description: AMD Radeon R7 M260 Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318} Manufacturer: Advanced Micro Devices, Inc. Service: amdkmdap Problem: : Windows has stopped this device because it has reported problems. (Code 43) Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (02/05/2017 09:09:34 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: Nie powiodło się wykonanie procedury otwierania dla usługi „WmiApRpl” w bibliotece DLL „C:\WINDOWS\system32\wbem\wmiaprpl.dll”. Dane wydajności dla tej usługi nie będą dostępne. Pierwsze cztery bajty (DWORD) sekcji danych Data zawierają kod błędu. Error: (02/05/2017 09:09:28 PM) (Source: Perflib) (EventID: 1023) (User: ) Description: System Windows nie może załadować biblioteki DLL licznika rozszerzalnego rdyboost. Pierwsze cztery bajty (DWORD) sekcji danych Data zawierają kod błędu systemu Windows. Error: (02/05/2017 09:09:27 PM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Nie można otworzyć obiektu wydajności usługi Server. Pierwsze cztery bajty (DWORD) sekcji danych Data zawierają kod stanu. Error: (02/05/2017 09:09:27 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: Nie powiodło się wykonanie procedury otwierania dla usługi „MSDTC” w bibliotece DLL „C:\WINDOWS\system32\msdtcuiu.DLL”. Dane wydajności dla tej usługi nie będą dostępne. Pierwsze cztery bajty (DWORD) sekcji danych Data zawierają kod błędu. Error: (02/05/2017 09:09:25 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: Nie powiodło się wykonanie procedury otwierania dla usługi „Lsa” w bibliotece DLL „C:\Windows\System32\Secur32.dll”. Dane wydajności dla tej usługi nie będą dostępne. Pierwsze cztery bajty (DWORD) sekcji danych Data zawierają kod błędu. Error: (02/05/2017 09:09:25 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: Nie powiodło się wykonanie procedury otwierania dla usługi „ESENT” w bibliotece DLL „C:\WINDOWS\system32\esentprf.dll”. Dane wydajności dla tej usługi nie będą dostępne. Pierwsze cztery bajty (DWORD) sekcji danych Data zawierają kod błędu. Error: (02/05/2017 09:09:24 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: Nie powiodło się wykonanie procedury otwierania dla usługi „BITS” w bibliotece DLL „C:\Windows\System32\bitsperf.dll”. Dane wydajności dla tej usługi nie będą dostępne. Pierwsze cztery bajty (DWORD) sekcji danych Data zawierają kod błędu. Error: (02/05/2017 08:55:50 PM) (Source: System Restore) (EventID: 8193) (User: ) Description: Nie można utworzyć punktu przywracania (Proces = C:\Users\oliwia\Downloads\FRST-OlderVersion\FRST64.exe ; Opis = Restore Point Created by FRST; Błąd = 0x80042306). Error: (02/05/2017 08:55:44 PM) (Source: VSS) (EventID: 12289) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd DeviceIoControl(\\?\Volume{e6e666fd-3f87-11e4-82db-e06c25c3852e} - 00000000000001C4,0x0053c008,0000005D7E53A8B0,0,0000005D7EC40080,4096,[0]). hr = 0x80070079, Przekroczono limit czasu semafora. . Operacja: Przetwarzanie metody EndPrepareSnapshots Kontekst: Kontekst wykonywania: System Provider Error: (02/05/2017 08:35:24 PM) (Source: VSS) (EventID: 12289) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd DeviceIoControl(\\?\Volume{e6e666fd-3f87-11e4-82db-e06c25c3852e} - 00000000000001C8,0x0053c008,0000005D7E53C8F0,0,0000005D7E53D900,4096,[0]). hr = 0x80070079, Przekroczono limit czasu semafora. . Operacja: Przetwarzanie metody EndPrepareSnapshots Kontekst: Kontekst wykonywania: System Provider Dziennik System: ============= Error: (02/05/2017 09:07:47 PM) (Source: BugCheck) (EventID: 1001) (User: ) Description: Nastąpił ponowny rozruch komputera po operacji wykrywania błędów. Wyniki tej operacji były następujące: 0x0000009f (0x0000000000000004, 0x000000000000012c, 0xffffe0001f6451c0, 0xffffd000592e9980). Zrzut zapisano w: C:\WINDOWS\MEMORY.DMP. Identyfikator raportu: 020517-33453-01. Error: (02/05/2017 09:01:14 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: Nastąpiło nieoczekiwane zatrzymanie modułu rozszerzalności sieci WLAN. Ścieżka modułu: C:\WINDOWS\System32\IWMSSvc.dll Error: (02/05/2017 09:01:14 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: Nastąpiło nieoczekiwane zatrzymanie modułu rozszerzalności sieci WLAN. Ścieżka modułu: C:\WINDOWS\System32\IWMSSvc.dll Error: (02/05/2017 09:01:05 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: Nastąpiło nieoczekiwane zatrzymanie modułu rozszerzalności sieci WLAN. Ścieżka modułu: C:\WINDOWS\System32\IWMSSvc.dll Error: (02/05/2017 08:55:44 PM) (Source: volsnap) (EventID: 67) (User: ) Description: Nie można zainstalować tworzonej kopii w tle woluminu C:. Error: (02/05/2017 08:35:24 PM) (Source: volsnap) (EventID: 67) (User: ) Description: Nie można zainstalować tworzonej kopii w tle woluminu C:. Error: (02/05/2017 08:14:50 PM) (Source: volsnap) (EventID: 67) (User: ) Description: Nie można zainstalować tworzonej kopii w tle woluminu C:. Error: (02/05/2017 07:54:39 PM) (Source: volsnap) (EventID: 67) (User: ) Description: Nie można zainstalować tworzonej kopii w tle woluminu C:. Error: (02/05/2017 07:34:28 PM) (Source: volsnap) (EventID: 67) (User: ) Description: Nie można zainstalować tworzonej kopii w tle woluminu C:. Error: (02/05/2017 07:14:09 PM) (Source: Service Control Manager) (EventID: 7032) (User: ) Description: Menedżer sterowania usługami próbował podjąć akcję korekcyjną (Uruchom usługę ponownie) po nieoczekiwanym zakończeniu usługi Windows Search, ale ta akcja nie powiodła się przy następującym błędzie: Jedno wystąpienie usługi już działa. . CodeIntegrity: =================================== Date: 2017-02-02 20:37:25.517 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdhdl64.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-01-26 18:31:03.239 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdhdl64.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i7-4510U CPU @ 2.00GHz Procent pamięci w użyciu: 63% Całkowita pamięć fizyczna: 4016.14 MB Dostępna pamięć fizyczna: 1467.46 MB Całkowita pamięć wirtualna: 8112.14 MB Dostępna pamięć wirtualna: 4930.85 MB ==================== Dyski ================================ Drive c: (TI31382400A) (Fixed) (Total:918.08 GB) (Free:708.21 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ==================== Koniec Addition.txt ============================