Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 02-06-2017 Uruchomiony przez admin11 (03-06-2017 12:38:27) Uruchomiony z C:\Users\ZM\Downloads Windows 7 Home Premium Service Pack 1 (X64) (2014-05-17 18:08:03) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= admin11 (S-1-5-21-1153295470-385941625-2631502423-1003 - Administrator - Enabled) => C:\Users\admin11 Administrator (S-1-5-21-1153295470-385941625-2631502423-500 - Administrator - Disabled) Gość (S-1-5-21-1153295470-385941625-2631502423-501 - Limited - Disabled) ZM (S-1-5-21-1153295470-385941625-2631502423-1000 - Limited - Enabled) => C:\Users\ZM ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189} AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-1153295470-385941625-2631502423-1000\...\uTorrent) (Version: 3.4.9.43085 - BitTorrent Inc.) µTorrent (HKU\S-1-5-21-1153295470-385941625-2631502423-1003\...\uTorrent) (Version: 3.4.1.31139 - BitTorrent Inc.) 7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - ) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 25.0.0.134 - Adobe Systems Incorporated) Adobe Flash Player 25 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 25.0.0.171 - Adobe Systems Incorporated) Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated) Adobe Reader XI (11.0.12) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated) Advanced Port Scanner v1.3 (HKLM-x32\...\Advanced Port Scanner v1.3) (Version: - ) AIDA64 Extreme v5.70 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.70 - FinalWire Ltd.) AirDroid 3.0.4.0 (HKLM-x32\...\AirDroid) (Version: 3.0.4.0 - Sand Studio) Aktualizacje NVIDIA 16.18.9 (Version: 16.18.9 - NVIDIA Corporation) Hidden aTube Catcher wersja 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp) Call of Duty(R) 2 (HKLM-x32\...\InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.00.0000 - Activision) Call of Duty(R) 2 (x32 Version: 1.00.0000 - Activision) Hidden CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6389 - CDBurnerXP) Centrum obsługi urządzeń z systemem Windows Mobile — aktualizacja sterowników (HKLM\...\{92DBCA36-9B41-4DD1-941A-AED149DD37F0}) (Version: 6.1.6965.0 - Microsoft Corporation) Centrum obsługi urządzeń z systemem Windows Mobile (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation) ChomikBox (HKLM-x32\...\{71736AF6-BA4B-4F3C-8496-C325B97869BA}) (Version: 2.0.8.1 - Chomikuj.pl) Commandos: Behind Enemy Lines (HKLM-x32\...\InstallShield_{63378C93-A47B-45AF-AAB3-BA082992AF6B}) (Version: 1.00.0000 - Cenega) Commandos: Behind Enemy Lines (x32 Version: 1.00.0000 - Cenega) Hidden CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) CyberLink PowerDVD 16 (HKLM-x32\...\{7CD1ACC0-3DD0-4894-90C7-BF2A136C074D}) (Version: 16.0.2406.60 - CyberLink Corp.) Dishonored - Game of the Year Edition (HKLM-x32\...\Dishonored - Game of the Year Edition_is1) (Version: - ) Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve) Dropbox (HKLM-x32\...\Dropbox) (Version: 27.4.22 - Dropbox, Inc.) Dropbox Update Helper (x32 Version: 1.3.59.1 - Dropbox, Inc.) Hidden EAX Unified (HKLM-x32\...\EAX Unified) (Version: - ) e-Deklaracje Desktop (HKLM-x32\...\e-Deklaracje.A1909296681C7ACEFE45687D3A64758C8659BF46.1) (Version: 9.0.5 - Ministerstwo Finansow) e-Deklaracje Desktop (x32 Version: 9.0.5 - Ministerstwo Finansow) Hidden ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden Hitman Kryptonim 47 (HKLM-x32\...\{43BA47DD-56A2-4203-B192-27049FD9DB79}) (Version: 1.00.0000 - Eidos) Informacje o systemie Creative (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited) InputMapper (HKLM-x32\...\{1A44056A-C7D8-4561-BC43-A0AA7D7AAA64}) (Version: 1.5.31.0 - DSDCS) Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation) JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH) Kaspersky Security Scan (HKLM-x32\...\InstallWIX_{D1282694-0693-41A8-ABC1-6D1FFC1F65C5}) (Version: 15.0.0.737 - Kaspersky Lab) Kaspersky Security Scan (x32 Version: 15.0.0.737 - Kaspersky Lab) Hidden KeePass Password Safe 2.30 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.30 - Dominik Reichl) Kodi (HKU\S-1-5-21-1153295470-385941625-2631502423-1000\...\Kodi) (Version: - XBMC-Foundation) Kodi (HKU\S-1-5-21-1153295470-385941625-2631502423-1003\...\Kodi) (Version: - XBMC-Foundation) L.A. Noire (HKLM-x32\...\{915726DF-7891-444A-AA03-0DF1D64F561A}) (Version: 1.00.0000 - Rockstar Games) L.A. Noire PL [BDIP] wersja 1.01 (HKLM-x32\...\{C863E3ED-F40F-411B-925D-87824CC81DCF}_is1) (Version: 1.01 - BDIP) Logitech Gaming Software 8.53 (HKLM\...\Logitech Gaming Software) (Version: 8.53.154 - Logitech Inc.) Mafia Game (HKLM-x32\...\Mafia Game) (Version: - ) Malwarebytes (wersja 3.0.6.1469) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes) Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.6.01055 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Network Monitor 3.4 (HKLM\...\{8C5B5A11-CBF8-451B-B201-77FAB0D0B77D}) (Version: 3.4.2350.0 - Microsoft Corporation) Microsoft Network Monitor: NetworkMonitor Parsers 3.4 (HKLM\...\{963E5FEB-1367-46B9-851D-A957F1A3747F}) (Version: 3.4.2350.0 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft) Mumble 1.2.6 (HKLM-x32\...\{BABDB1F8-5287-4CFC-AA64-3471B7028DD6}) (Version: 1.2.6 - Thorvald Natvig) MyFreeCodec (HKU\S-1-5-21-1153295470-385941625-2631502423-1000\...\MyFreeCodec) (Version: - ) MyFreeCodec (HKU\S-1-5-21-1153295470-385941625-2631502423-1003\...\MyFreeCodec) (Version: - ) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.19.0 - NEC Electronics Corporation) NEC Electronics USB 3.0 Host Controller Driver (x32 Version: 1.0.19.0 - NEC Electronics Corporation) Hidden Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.3 - Notepad++ Team) NVIDIA GeForce Experience 2.1.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.5 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 344.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 344.75 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.32.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.32.1 - NVIDIA Corporation) NVIDIA Sterownik graficzny 344.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 344.75 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 344.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 344.75 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Oracle VM VirtualBox 5.0.20 (HKLM\...\{8209969B-9A31-4021-B0D8-E6F719F7F995}) (Version: 5.0.20 - Oracle Corporation) Origin (HKLM-x32\...\Origin) (Version: 10.2.1.38915 - Electronic Arts, Inc.) Panel sterowania NVIDIA 344.75 (Version: 344.75 - NVIDIA Corporation) Hidden Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.) Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) Program Pit 2015 - wersja 9.0.18.37 (HKLM-x32\...\Roczne rozliczenie podatku dochodowego - PIT Gofin 2015_is1) (Version: - Wydawnictwo Podatkowe GOFIN sp. z o.o.) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.) PuTTY (HKLM-x32\...\{ED9EF59B-0799-428E-823D-6D2B7B4FE2E0}) (Version: 0.67.0.0 - Simon Tatham) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.89.716.2014 - Realtek) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.0.0.0 - Rockstar Games) Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.14044_17 - Samsung Electronics Co., Ltd.) Samsung Kies (x32 Version: 2.6.3.14044_17 - Samsung Electronics Co., Ltd.) Hidden Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.5.1 - Samsung Electronics) SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.27.0 - SAMSUNG Electronics Co., Ltd.) Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft) Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden Shadow Tactics - Blades of the Shogun (HKLM-x32\...\1601442230_is1) (Version: 2.0.0.3 - GOG.com) SHIELD Streaming (Version: 3.1.3000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 16.18.9 - NVIDIA Corporation) Hidden Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype™ 7.34 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.34.103 - Skype Technologies S.A.) Sound Blaster JAM Extras (HKLM-x32\...\{4E187CC4-E02C-4D07-994B-7425C40BCCAC}) (Version: - ) Spotify (HKU\S-1-5-21-1153295470-385941625-2631502423-1000\...\Spotify) (Version: 1.0.24.104.g92a22684 - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH) TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.77242 - TeamViewer) TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp) The Settlers II - Dziesięciolecie (HKLM-x32\...\S2TNG) (Version: - ) The Walking Dead - Complete Second Season wersja 1.0 (HKLM-x32\...\The Walking Dead - Complete Second Season_is1) (Version: 1.0 - Telltale Games) The Walking Dead (HKLM-x32\...\The Walking Dead_is1) (Version: The Walking Dead - ) Unified Remote (HKLM-x32\...\{415B4714-4F8C-49C6-B310-881EAF892CFB}_is1) (Version: 3.3.5 - Unified Intents AB) Uplay (HKLM-x32\...\Uplay) (Version: 26.1 - Ubisoft) Vagrant (HKLM-x32\...\{DBD58741-B374-4518-B0F7-8F33D09E3164}) (Version: 1.8.1 - HashiCorp) VIA Platforma Menedżera urządzeń (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) VLC media player 2.1.4 (HKLM\...\VLC media player) (Version: 2.1.4 - VideoLAN) VMware Workstation (HKLM\...\{0AD91785-F9BD-47FD-84F7-9E27B5A1853D}) (Version: 12.1.0 - VMware, Inc.) Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc) WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.) WinSCP 5.9.3 (HKLM-x32\...\winscp3_is1) (Version: 5.9.3 - Martin Prikryl) Wireshark 1.12.1 (64-bit) (HKLM-x32\...\Wireshark) (Version: 1.12.1 - The Wireshark developer community, hxxp://www.wireshark.org) Wtyczka e-Deklaracje (HKLM-x32\...\{81BF6353-3C5B-4E6E-A566-7E162A00BF72}_is1) (Version: 4.1.0 - Ministerstwo Finansów) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-1153295470-385941625-2631502423-1000_Classes\CLSID\{46500BE9-A846-F26A-88C1-E922430731F2}\InprocServer32 -> C:\Windows\system32\ole32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1153295470-385941625-2631502423-1000_Classes\CLSID\{6BB3A233-73B3-F11E-3B29-052FDDAE0832}\InprocServer32 -> C:\Windows\system32\ole32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1153295470-385941625-2631502423-1003_Classes\CLSID\{46500BE9-A846-F26A-88C1-E922430731F2}\InprocServer32 -> C:\Windows\system32\ole32.dll (Microsoft Corporation) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {228DA0DE-CF11-4386-BAFB-CDE65B852BD7} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.) Task: {5F3C1837-1B79-46FE-8970-B99BEB6E3DFB} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.) Task: {68892623-2A71-4F6C-9355-F5102FD41B9E} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => C:\Program Files\Microsoft Security Client\\MpCmdRun.exe [2016-11-14] (Microsoft Corporation) Task: {75E5E474-0B9A-4EF8-92B7-AAC4B35C4E06} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-09] (Adobe Systems Incorporated) Task: {8A8FBACD-A54A-4DA4-A4D2-4E85AE6A656B} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation) Task: {946C2902-1A61-49CB-AB45-B79205424F06} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {9C4DC02B-A99C-4DC8-99FA-6EF9B256199E} - System32\Tasks\GPU-Z => C:\Program Files (x86)\GPU-Z\GPU-Z.exe [2017-02-12] (techPowerUp (www.techpowerup.com)) Task: {B0DE0566-D902-4980-AE8A-3A811C22645D} - System32\Tasks\{4480F442-AF6B-481C-B70D-A30619E0768F} => pcalua.exe -a C:\Windows\system32\pcwrun.exe -c "C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil.exe" Task: {B1C98970-5882-4EED-880D-30D3434943FF} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe [2014-09-28] (Samsung Electronics.) Task: {BB3219CA-6923-4472-BB36-209959A1892F} - System32\Tasks\{FA7EDDA6-3876-4CF5-B8CD-73888B258990} => C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil.exe Task: {FB78C2C4-99CC-4E17-855E-B1B1BE8D754A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2014-11-19 22:33 - 2014-11-12 23:56 - 00118080 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-04-19 20:51 - 2015-12-21 00:03 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2015-11-25 19:09 - 2015-11-25 19:09 - 12462784 _____ () C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe 2014-05-12 11:49 - 2014-05-12 11:49 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll 2014-02-11 20:21 - 2014-02-11 20:21 - 00860160 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll 2014-02-11 20:22 - 2014-02-11 20:22 - 01043968 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll 2014-02-11 20:21 - 2014-02-11 20:21 - 00052736 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll 2014-02-11 20:22 - 2014-02-11 20:22 - 00236032 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll 2014-05-18 12:12 - 2009-05-07 16:51 - 00071680 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll 2014-05-18 12:12 - 2009-05-07 16:53 - 00379392 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll 2014-05-18 12:12 - 2008-01-18 14:50 - 00098816 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\VMicApi.dll 2014-05-18 12:12 - 2009-08-28 11:31 - 47601664 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll 2015-04-06 16:23 - 2015-04-06 16:23 - 00316200 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\dblite.dll 2015-11-25 19:09 - 2015-11-25 19:09 - 01301696 _____ () C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll 2015-11-25 19:09 - 2015-11-25 19:09 - 00191680 _____ () C:\Program Files (x86)\VMware\VMware Workstation\LIBEXPAT.dll 2015-11-25 19:09 - 2015-11-25 19:09 - 00388800 _____ () C:\Program Files (x86)\VMware\VMware Workstation\ssoClient.dll 2015-11-25 19:09 - 2015-11-25 19:09 - 00165056 _____ () C:\Program Files (x86)\VMware\VMware Workstation\nfc-types.dll 2017-06-02 17:20 - 2017-05-30 12:19 - 00775488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll 2017-06-02 17:20 - 2017-05-30 12:19 - 01787200 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll 2017-01-24 11:12 - 2017-05-12 04:25 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd 2017-01-24 11:12 - 2017-05-12 04:25 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd 2017-01-24 11:12 - 2017-05-12 04:25 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd 2017-01-24 11:12 - 2017-05-30 12:21 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd 2017-06-02 17:20 - 2017-05-30 12:21 - 00020824 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd 2017-01-24 11:12 - 2017-05-12 04:25 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd 2017-01-24 11:12 - 2017-05-12 04:25 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd 2017-06-02 17:20 - 2017-05-30 12:21 - 01729360 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd 2017-06-02 17:20 - 2017-05-30 12:21 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd 2017-06-02 17:20 - 2017-05-12 04:25 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd 2017-06-02 17:20 - 2017-05-12 04:25 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd 2017-06-02 17:20 - 2017-05-12 04:25 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll 2017-01-24 11:12 - 2017-05-12 04:27 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd 2017-01-24 11:12 - 2017-05-30 12:22 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd 2017-06-02 17:20 - 2017-05-30 12:21 - 00060736 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd 2017-06-02 17:20 - 2017-05-30 12:21 - 00038712 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd 2017-01-24 11:12 - 2017-05-12 04:27 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd 2017-06-02 17:20 - 2017-05-12 04:25 - 00392656 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll 2017-06-02 17:20 - 2017-05-12 04:27 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd 2017-01-24 11:12 - 2017-05-12 04:27 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd 2017-01-24 11:12 - 2017-05-30 12:21 - 00392512 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd 2017-01-24 11:12 - 2017-05-12 04:27 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd 2017-01-24 11:12 - 2017-05-30 12:22 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd 2017-01-24 11:12 - 2017-05-12 04:27 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd 2017-01-24 11:12 - 2017-05-12 04:27 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd 2017-01-24 11:12 - 2017-05-12 04:27 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd 2017-01-24 11:12 - 2017-05-12 04:27 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd 2017-01-24 11:12 - 2017-05-12 04:27 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd 2017-01-24 11:12 - 2017-05-12 04:27 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd 2017-01-24 11:12 - 2017-05-12 04:27 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd 2017-06-02 17:20 - 2017-05-30 12:21 - 00022336 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd 2017-05-16 20:03 - 2017-05-30 12:22 - 00082264 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.pyd 2017-01-24 11:12 - 2017-05-30 12:22 - 00025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd 2017-06-02 17:20 - 2017-05-30 12:21 - 00246608 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd 2017-06-02 17:20 - 2017-05-30 12:21 - 00027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd 2017-06-02 17:20 - 2017-05-30 12:21 - 03928896 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd 2017-01-24 11:12 - 2017-05-12 04:25 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd 2017-06-02 17:20 - 2017-05-30 12:21 - 01826104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd 2017-06-02 17:20 - 2017-05-30 12:21 - 01972024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd 2017-01-24 11:12 - 2017-05-12 04:27 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd 2017-06-02 17:20 - 2017-05-30 12:21 - 00171336 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd 2017-06-02 17:20 - 2017-05-30 12:21 - 00042816 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd 2017-06-02 17:20 - 2017-05-30 12:21 - 00531264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd 2017-06-02 17:20 - 2017-05-30 12:21 - 00133432 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd 2017-06-02 17:20 - 2017-05-30 12:21 - 00224064 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd 2017-06-02 17:20 - 2017-05-30 12:21 - 00207680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd 2017-01-24 11:12 - 2017-05-12 04:27 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd 2017-02-24 23:21 - 2017-05-30 12:22 - 00054608 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.pyd 2017-01-24 11:12 - 2017-05-30 12:22 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd 2017-01-24 11:12 - 2017-05-30 12:22 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd 2017-01-24 11:12 - 2017-05-30 12:22 - 00021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd 2017-01-24 11:12 - 2017-05-30 12:22 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd 2017-01-24 11:12 - 2017-05-12 04:27 - 00349128 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd 2017-01-24 11:12 - 2017-05-30 12:22 - 00023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd 2017-06-02 17:20 - 2017-05-30 12:21 - 00025936 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd 2017-06-02 17:20 - 2017-05-12 04:20 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll 2017-06-02 17:20 - 2017-05-30 12:21 - 00084288 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL 2017-01-24 11:12 - 2017-05-30 12:21 - 00030536 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.pyd 2017-06-02 17:20 - 2017-05-12 04:30 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll 2017-06-02 17:20 - 2017-05-12 04:30 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll 2017-01-24 11:12 - 2017-05-30 12:22 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd 2017-04-07 21:40 - 2017-05-30 12:21 - 00023368 _____ () C:\Program Files (x86)\Dropbox\Client\wincrashpad.compiled._Crashpad.pyd 2017-06-02 17:20 - 2017-05-30 12:21 - 00546104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd 2017-06-02 17:20 - 2017-05-30 12:21 - 00357688 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData\.rdata:X [526] AlternateDataStreams: C:\Users\ZM\Desktop\Naznaczony.S01E01.PL.PDTV.XviD.avi:com.dropbox.attributes [424] AlternateDataStreams: C:\Users\ZM\Desktop\Naznaczony.S01E02.PL.WebRip.XviD.avi:com.dropbox.attributes [212] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2014-07-06 01:26 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-1153295470-385941625-2631502423-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\ZM\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg HKU\S-1-5-21-1153295470-385941625-2631502423-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\admin11\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: AirDroid 3 => C:\Program Files (x86)\AirDroid\AirDroid.exe /start MSCONFIG\startupreg: Check Point VPN => "C:\Program Files (x86)\CheckPoint\Endpoint Connect\TrGui.exe" MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: vmware-tray.exe => "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [TCP Query User{8176F6F5-A39E-49CE-A41E-97C7BC32FD9E}C:\users\zm\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zm\appdata\roaming\utorrent\utorrent.exe FirewallRules: [UDP Query User{F68CD0F6-DC24-48D7-9727-35BBFC2AD862}C:\users\zm\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zm\appdata\roaming\utorrent\utorrent.exe FirewallRules: [{3EA6E1E3-8EA1-454A-BDD3-3CD8DD158A78}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{FE97F481-4183-47DD-B902-E13AE07F7A3A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [TCP Query User{420C0DE4-6218-40C9-BE0F-BBA2117CCD4E}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe FirewallRules: [UDP Query User{20B0EB62-B528-428C-84F0-AC349EA44E6F}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe FirewallRules: [{55C8A059-7CD2-4E9A-B876-848F3ABAFA89}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe FirewallRules: [{3463911A-31D2-4B5C-9AD7-4A313B4ADF0D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe FirewallRules: [{13149D8F-8EDF-4356-8A14-81F69136EE7F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win32\dota2.exe FirewallRules: [{347A6FFE-C632-42FB-9BF3-DA16DCDCDED9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win32\dota2.exe FirewallRules: [{C3973F55-7CAF-4C48-9E94-CEAE834EB7D9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2cfg.exe FirewallRules: [{6639A308-EEF4-4E24-8062-90C66E886E9A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2cfg.exe FirewallRules: [TCP Query User{254141B3-DC03-4B7C-B470-A0A9D889CC7B}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{DCBAE585-2BF7-4D00-BD8E-4B6B3A3099B5}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{6C6CF9E1-85F9-4D70-9F9A-49D3922DEE42}C:\program files (x86)\pes2015\pes2015.exe] => (Block) C:\program files (x86)\pes2015\pes2015.exe FirewallRules: [UDP Query User{23FF35D3-49F6-4096-A621-044ED9B28657}C:\program files (x86)\pes2015\pes2015.exe] => (Block) C:\program files (x86)\pes2015\pes2015.exe FirewallRules: [TCP Query User{7E74E218-FB21-4BFF-9AF2-6FE30A311E36}C:\program files (x86)\pes2015\e-mod-nesa.exe] => (Block) C:\program files (x86)\pes2015\e-mod-nesa.exe FirewallRules: [UDP Query User{03D3B434-C953-407A-9763-80664DB8D2DF}C:\program files (x86)\pes2015\e-mod-nesa.exe] => (Block) C:\program files (x86)\pes2015\e-mod-nesa.exe FirewallRules: [{9FFCAD44-C6B2-4045-90D7-18DAADAC3704}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{7B9EC2E2-7D55-46CB-A26E-3433483D2D4C}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe FirewallRules: [UDP Query User{8AF5102C-C9B8-40F1-9930-5E23F41F449A}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe FirewallRules: [TCP Query User{4EA095B2-6708-4727-BE18-681CF091D257}C:\users\zm\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\zm\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{E762FE68-EBA1-4464-94F8-ECD2376D80A6}C:\users\zm\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\zm\appdata\roaming\spotify\spotify.exe FirewallRules: [{53BA07A9-FCA3-4ABC-BC3F-9FA29F4B05A7}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{9CCB8688-5478-4056-A28B-D45CB45C06DC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [TCP Query User{C06B0621-3360-4CAC-A3F1-356240C30146}C:\program files (x86)\pes2015\e-mod.exe] => (Block) C:\program files (x86)\pes2015\e-mod.exe FirewallRules: [UDP Query User{1BB921C0-C7A1-4985-85CB-C8AE725010F8}C:\program files (x86)\pes2015\e-mod.exe] => (Block) C:\program files (x86)\pes2015\e-mod.exe FirewallRules: [{72C7179D-5BEE-4482-91C5-5FB8006EAEDB}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{4E4B474D-3335-4757-9DD0-1BEF56F198E2}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{5D3E28BA-448A-43C1-AEAA-961657099F5D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{F730653E-F887-4587-972A-E5D3BD6FDECA}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{869DDB51-AA23-4390-B057-8B74BF7D3F19}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{F8F36057-0387-4901-8887-07CC8AB70CE5}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{26F03287-DE94-4602-9B97-D5DBF68BEB47}] => (Allow) C:\Program Files (x86)\Project Reality\Project Reality BF2\prbf2.exe FirewallRules: [{E68923F2-B062-4E4E-A8A0-867E50CB18CA}] => (Allow) C:\Program Files (x86)\Project Reality\Project Reality BF2\mods\pr\bin\PRLauncher.exe FirewallRules: [{56B7F7A8-CC3D-457C-ADCA-0E194DB36670}] => (Allow) C:\Program Files (x86)\Project Reality\Project Reality BF2\mods\pr\bin\PRUpdater.exe FirewallRules: [{47077167-2F3F-4664-B25E-8517CF931126}] => (Allow) C:\Program Files (x86)\Project Reality\Project Reality BF2\mods\pr\bin\PRMumble\PRMumble.exe FirewallRules: [TCP Query User{82C61FEB-C731-4C8F-AA7C-2C9F26DFA5C3}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe FirewallRules: [UDP Query User{F8D12F30-2F61-4D7E-805B-ACACB0FDE2BB}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe FirewallRules: [TCP Query User{9ED68EDE-1F13-4C2C-A482-BFEE45F832CA}C:\users\zm\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zm\appdata\roaming\utorrent\utorrent.exe FirewallRules: [UDP Query User{63FD6C3B-4B60-4B91-A3D8-3C87CD9E3D9B}C:\users\zm\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zm\appdata\roaming\utorrent\utorrent.exe FirewallRules: [{349FE636-3D1A-4AB2-865A-7159F060AA03}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe FirewallRules: [{9F88E2A1-12B7-4A08-964E-E7FC201FB79A}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe FirewallRules: [{0CC183A4-AD01-438C-BE2D-8E9D4B5D2B75}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe FirewallRules: [{78B66FFA-6B17-4ADE-B334-A2D46823662F}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe FirewallRules: [{8F6CC56C-9C75-4310-8207-81A29BC35824}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe FirewallRules: [{FBDAB136-D93A-4BE8-B676-0EB195BCE725}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe FirewallRules: [{BDF80427-A888-4BD4-872D-2AA3EEDDD219}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe FirewallRules: [{D86DE866-3AB4-4F10-AED2-EAAAA3D6097F}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe FirewallRules: [TCP Query User{77277756-8CBE-4260-96BE-87E811164E21}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe FirewallRules: [UDP Query User{36AAEE58-754A-48D2-9F3D-8E5E87F553FA}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe FirewallRules: [TCP Query User{B0390B1D-762C-4098-BF2F-D708C78081BE}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe FirewallRules: [UDP Query User{773C9D6D-15FC-4FD8-91DC-DBC4BA388F6F}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe FirewallRules: [{2AC512E2-CBB2-45F4-B9D1-AC8D2990C5D9}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\gu.exe FirewallRules: [{B2E2E082-4117-4C9F-BDEF-459D13BDBDDA}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\gu.exe FirewallRules: [{89C37BE2-FA0F-4256-AA28-688BA84875C1}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\Rayman Origins.exe FirewallRules: [{07840E54-2A30-410F-AB09-24EF6144C652}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\Rayman Origins.exe FirewallRules: [TCP Query User{4C2DE52E-2EC4-4ED2-8096-A49FE9F75D8F}C:\program files (x86)\steam\steamapps\common\squad\squad\binaries\win64\squad.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\squad\squad\binaries\win64\squad.exe FirewallRules: [UDP Query User{81828E82-FBB8-4ED5-A65F-3AF74D1BBD10}C:\program files (x86)\steam\steamapps\common\squad\squad\binaries\win64\squad.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\squad\squad\binaries\win64\squad.exe FirewallRules: [TCP Query User{F92437B9-C8B5-4825-B536-62B44E85B535}C:\program files (x86)\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe] => (Allow) C:\program files (x86)\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe FirewallRules: [UDP Query User{7F1ED5D9-6003-48DC-AA2B-04E797D7F426}C:\program files (x86)\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe] => (Allow) C:\program files (x86)\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe FirewallRules: [{34EFBFB1-41CC-46A8-B93C-188502F0753F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{49AD35C1-7427-4317-87FE-A01A2F457138}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [TCP Query User{B9566DCD-B4B1-4B56-8D2B-6BF27A575E03}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe FirewallRules: [UDP Query User{470231A7-2CF2-4CA5-9C99-6768A5D7CED2}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe FirewallRules: [{9D307081-A4C2-46C4-B05E-CB00A7909A9E}] => (Allow) C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil_.exe FirewallRules: [{A9C6A58B-1504-460F-943C-0642F5F2EE32}] => (Allow) C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil_.exe FirewallRules: [{AC7A24EF-A7E5-4A9A-AF5F-6FF6D04ADAAE}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD16\PowerDVD.exe FirewallRules: [{4A41F208-CE81-42C8-9054-23D9A4C6843F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD16\Kernel\DMS\CLMSServerPDVD16.exe FirewallRules: [{3A60CF8A-9790-455C-96EF-9726931C895D}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD16\PowerDVD16Agent.exe FirewallRules: [{38232BC8-C274-49EC-BAF0-DB03BC2CAB1C}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD16\Movie\PowerDVDMovie.exe FirewallRules: [{BFBFF9C9-D663-42BD-8A10-669A9DE67423}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD16\CastingStation.exe FirewallRules: [{AFE89397-0C33-4FA5-BC62-1C822CA70DD2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{F56C9788-43AB-46A1-ADE2-C3CAF97350BA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{CCECE0D2-D9A8-4783-A259-23BBB389A321}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{F7D8C598-69AA-489B-B3FB-9E1F822E6CBA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{BDA33425-47E0-4501-9306-52DC9A6C3A21}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{32157F6F-8237-4820-9EE5-627EB7283BEF}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe ==================== Punkty Przywracania systemu ========================= ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Webcam C210 Description: Webcam C210 Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: Logitech Service: usbaudio Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: NVIDIA Virtual Audio Device (Wave Extensible) (WDM) Description: NVIDIA Virtual Audio Device (Wave Extensible) (WDM) Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: NVIDIA Service: nvvad_WaveExtensible Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (06/03/2017 11:46:55 AM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: Event-ID 2001 Error: (06/03/2017 11:46:55 AM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: Event-ID 2001 Error: (06/03/2017 11:44:12 AM) (Source: VSS) (EventID: 8194) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Odmowa dostępu. . To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym. Operacja: Zbieranie danych modułu zapisującego Kontekst: Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220} Nazwa modułu zapisującego: System Writer Identyfikator wystąpienia modułu zapisującego: {d0589528-290d-4e28-bfce-8a8dafb68dea} Error: (06/03/2017 11:39:43 AM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: Event-ID 2001 Error: (06/03/2017 11:39:43 AM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: Event-ID 2001 Error: (06/03/2017 09:48:50 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „c:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Składnik 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Error: (06/03/2017 09:39:58 AM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: Event-ID 2001 Error: (06/03/2017 09:39:58 AM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: Event-ID 2001 Error: (06/02/2017 05:37:36 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: jucheck.exe, wersja: 2.8.60.27, sygnatura czasowa: 0x55c116b1 Nazwa modułu powodującego błąd: jucheck.exe, wersja: 2.8.60.27, sygnatura czasowa: 0x55c116b1 Kod wyjątku: 0x40000015 Przesunięcie błędu: 0x00052d24 Identyfikator procesu powodującego błąd: 0xe90 Godzina uruchomienia aplikacji powodującej błąd: 0x01d2dbb627f5d8f6 Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe Ścieżka modułu powodującego błąd: C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe Identyfikator raportu: 669d65c7-47a9-11e7-a6ef-005056c00008 Error: (06/02/2017 04:51:53 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „c:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Składnik 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Dziennik System: ============= Error: (06/03/2017 11:47:25 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Origin Web Helper Service z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (06/03/2017 11:47:25 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Origin Web Helper Service. Error: (06/03/2017 11:46:50 AM) (Source: volsnap) (EventID: 27) (User: ) Description: Wykrywanie kopii w tle woluminu C: zostało przerwane podczas wykrywania, ponieważ nie można otworzyć krytycznego pliku kontrolnego. Error: (06/03/2017 11:46:46 AM) (Source: volsnap) (EventID: 27) (User: ) Description: Wykrywanie kopii w tle woluminu C: zostało przerwane podczas wykrywania, ponieważ nie można otworzyć krytycznego pliku kontrolnego. Error: (06/03/2017 11:46:36 AM) (Source: volsnap) (EventID: 25) (User: ) Description: Kopie w tle woluminu C: zostały usunięte, ponieważ nie można było powiększyć magazynu kopii w tle. Rozważ zmniejszenie obciążenia We/Wy w systemie lub wybierz wolumin magazynu kopii w tle, który nie jest kopiowany w tle. Error: (06/03/2017 11:45:11 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa VMware Workstation Server zależy od usługi VMware Authorization Service, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (06/03/2017 11:45:11 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa VMware Authorization Service zależy od usługi Instrumentacja zarządzania Windows, której nie można uruchomić z powodu następującego błędu: Trwa proces zamykania systemu. Error: (06/03/2017 11:45:11 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Bufor wydruku z powodu następującego błędu: Usługa nie została uruchomiona z powodu nieudanego logowania. Error: (06/03/2017 11:45:11 AM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Usługa Spooler nie może zalogować się jako NT AUTHORITY\SYSTEM za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu: Żądanie nie jest obsługiwane. Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC). Error: (06/03/2017 11:44:11 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Ochrona oprogramowania niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 120000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. ==================== Statystyki pamięci =========================== Procesor: AMD Phenom(tm) II X4 955 Processor Procent pamięci w użyciu: 15% Całkowita pamięć fizyczna: 16374.74 MB Dostępna pamięć fizyczna: 13852.19 MB Całkowita pamięć wirtualna: 32747.66 MB Dostępna pamięć wirtualna: 30350.93 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:232.79 GB) (Free:25.01 GB) NTFS Drive d: () (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive i: () (Fixed) (Total:931.3 GB) (Free:202 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: FBA67B08) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.4 GB) (Disk ID: DB2CB428) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=931.3 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows 7 or 8) (Size: 2794.5 GB) (Disk ID: DBD23A2D) Partition 1: (Not Active) - (Size=2048 GB) - (Type=06) ==================== Koniec Addition.txt ============================