Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:24-08-2015 Uruchomiony przez User (2015-08-25 12:03:36) Uruchomiony z C:\Users\User\Downloads Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-1130217176-4031021830-1519301973-500 - Administrator - Disabled) Gość (S-1-5-21-1130217176-4031021830-1519301973-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1130217176-4031021830-1519301973-1003 - Limited - Enabled) Test (S-1-5-21-1130217176-4031021830-1519301973-1001 - Administrator - Enabled) => C:\Users\Test User (S-1-5-21-1130217176-4031021830-1519301973-1000 - Administrator - Enabled) => C:\Users\User ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) „Windows Live Essentials“ (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden „Windows Live Mail“ (x32 Version: 15.4.3502.0922 - „Microsoft Corporation“) Hidden „Windows Live Messenger“ (x32 Version: 15.4.3538.0513 - „Microsoft Corporation“) Hidden „Windows Live“ fotogalerija (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden ABBYY FineReader 11 (HKLM-x32\...\{F1100000-0008-0000-0001-074957833700}) (Version: 11.0.289 - ABBYY) ACD/Labs Freeware in C:\ACD2012FREE\ (HKLM-x32\...\ACDLabs in C__ACD2012FREE_) (Version: v14.00, FREE - ACD/Labs) Adobe Digital Editions 4.0 (HKLM-x32\...\Adobe Digital Editions 4.0) (Version: 4.0.3 - Adobe Systems Incorporated) Adobe Flash Player 18 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 18.0.0.232 - Adobe Systems Incorporated) Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated) Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.0 - Adobe Systems Incorporated) Adobe Reader XI (11.0.12) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated) Agatha Christie - Death on the Nile (x32 Version: 2.2.0.82 - WildTangent) Hidden AMD Catalyst Install Manager (HKLM\...\{F81156E9-1687-E56A-E3B4-3CF3D17520E2}) (Version: 3.0.868.0 - Advanced Micro Devices, Inc.) AnyLogic 6.4.1 Professional (HKLM-x32\...\AnyLogic 6 Professional) (Version: - XJ Technologies) AnyLogic 7.1.2 Professional (HKLM-x32\...\AnyLogic 7 Professional) (Version: - AnyLogic North America) Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) AQQ (HKLM-x32\...\AQQ) (Version: 3.0.0.50 - Creative Team S.A.) ASUS RT-N12E Wireless Router Utilities (HKLM-x32\...\{BAC6FEB3-D5F4-4627-BCA1-18F914FC6C17}) (Version: 4.2.3.6 - ASUS) Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.126 - Atheros) Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Atheros) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software) Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Build-a-lot (x32 Version: 2.2.0.82 - WildTangent) Hidden Chuzzle Deluxe (x32 Version: 2.2.0.82 - WildTangent) Hidden CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2227 - CyberLink Corp.) CyberLink Media+ Player10 (HKLM-x32\...\InstallShield_{34FBC7C4-CD31-4D93-A428-0E524EAC4586}) (Version: 10.0.1110.00 - CyberLink Corp.) CyberLink MediaShow (HKLM-x32\...\InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}) (Version: 5.0.1130a - CyberLink Corp.) CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3802 - CyberLink Corp.) CyberLink PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.3306 - CyberLink Corp.) CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.1.5016 - CyberLink Corp.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Pro (HKLM-x32\...\DAEMON Tools Pro) (Version: 5.0.0316.0317 - DT Soft Ltd) Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.82 - WildTangent) Hidden DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.9 - DivX, LLC) DVD-Ranger Player (HKLM-x32\...\DVD-Ranger Player) (Version: - ) Easy File Share (HKLM-x32\...\{12F81925-F3C1-40DB-91F7-777817974319}) (Version: 1.3.1 - Samsung Electronics CO., LTD.) Easy Migration (HKLM-x32\...\{EDE7A262-DB20-4432-A630-2ACEE186C416}) (Version: 1.0 - Samsung Electronics CO., LTD.) Easy Settings (HKLM-x32\...\{17283B95-21A8-4996-97DA-547A48DB266F}) (Version: 1.1 - Samsung Electronics CO., LTD.) Easy Software Manager (HKLM-x32\...\{DE256D8B-D971-456D-BC02-CB64DA24F115}) (Version: 1.2.17.13 - Samsung Electronics CO., LTD.) Easy Support Center (HKLM\...\{0738F5F1-8E70-49A6-8692-F5722E1E5A4D}) (Version: 1.2.23 - Samsung Electronics CO., LTD.) E-POP (HKLM-x32\...\{F06DD8D9-9DC8-430C-835C-C9BF21E05CC1}) (Version: 1.0.1 - Samsung Electronics CO., LTD.) Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) Farm Frenzy (x32 Version: 2.2.0.82 - WildTangent) Hidden Fotogalerija Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 3.6.122.702 - Foxit Software Inc.) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.2.0.722 - Foxit Software Inc.) Gadu-Gadu 10 (HKLM-x32\...\Gadu-Gadu 10) (Version: - GG Network S.A.) Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galerie foto Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden GG (HKU\S-1-5-21-1130217176-4031021830-1519301973-1000\...\GG) (Version: 12 - GG Network S.A.) Google Chrome (HKU\S-1-5-21-1130217176-4031021830-1519301973-1000\...\Google Chrome) (Version: 44.0.2403.157 - Google Inc.) HP Support Solutions Framework (HKLM-x32\...\{5D014961-1B0B-4C40-99B0-63C3FB04E669}) (Version: 12.0.26.54 - Hewlett-Packard Company) Insaniquarium Deluxe (x32 Version: 2.2.0.82 - WildTangent) Hidden Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Display Audio Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 6.14.00.3090 - Intel Corporation) Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.36279 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.10.1464 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.220 - Intel Corporation) Intel® PROSet/Wireless WiFi Software (HKLM\...\{DF7756DD-656A-45C3-BA71-74673E8259A9}) (Version: 15.00.0000.0642 - Intel Corporation) ipla 2.8.4 (HKLM-x32\...\ipla) (Version: 2.8.4 - Redefine Sp z o.o.) Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation) John Deere Drive Green (x32 Version: 2.2.0.82 - WildTangent) Hidden Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Kurs Statystyka eTrapez (HKLM-x32\...\Kurs Statystyka eTrapez) (Version: 2013 - eTrapez Krystian Karczyński) Lizardtech DjVu Control (HKLM-x32\...\{105CFC7C-6992-11D5-BD9D-000102C10FD8}) (Version: - ) Malwarebytes Anti-Malware wersja 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation) Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation) Microsoft SkyDrive (HKU\S-1-5-21-1130217176-4031021830-1519301973-1000\...\SkyDriveSetup.exe) (Version: 16.4.6010.0727 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 40.0.2 (x86 pl) (HKLM-x32\...\Mozilla Firefox 40.0.2 (x86 pl)) (Version: 40.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.2.5702 - Mozilla) MPC-BE x64 1.4.2.4752 (HKLM\...\{FE09AF6D-78B2-4093-B012-FCDAF78693CE}_is1) (Version: 1.4.2.4752 - MPC-BE Team) Narzędzia sprawdzające pakietu Microsoft Office 2013 — polski (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Obsługa programów Apple (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.) OpenOffice.ux.pl 3.4 (HKLM-x32\...\{011B5F12-F1CB-4C14-A99E-62C55831D78A}) (Version: 3.4.402 - LibreOffice) Peggle (x32 Version: 2.2.0.82 - WildTangent) Hidden Penguins! (x32 Version: 2.2.0.82 - WildTangent) Hidden Plants vs. Zombies (x32 Version: 2.2.0.82 - WildTangent) Hidden PLAY ONLINE (HKLM-x32\...\PLAY ONLINE) (Version: 11.302.09.06.264 - Huawei Technologies Co.,Ltd) PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation) Poczta usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Polar Golfer (x32 Version: 2.2.0.82 - WildTangent) Hidden Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) Pošta Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden PowerTrader Free Edition (HKLM-x32\...\{8180ECD7-7DFB-4BD5-A596-A34DBC746A7A}_is1) (Version: - Sumito Development) PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.54.309.2012 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6602 - Realtek Semiconductor Corp.) Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7601.39025 - Realtek Semiconductor Corp.) Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.15045.4 - Samsung Electronics Co., Ltd.) Samsung Kies (x32 Version: 2.6.3.15045.4 - Samsung Electronics Co., Ltd.) Hidden Samsung Recovery Solution 5 (HKLM-x32\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 5.0.2.7 - Samsung Electronics CO., LTD.) SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.) Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft) Skype™ 7.1 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.1.105 - Skype Technologies S.A.) Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.0.15044.7 - Samsung Electronics Co., Ltd.) Smart Switch (x32 Version: 4.0.15044.7 - Samsung Electronics Co., Ltd.) Hidden Software Launcher (HKLM-x32\...\{B750B5C2-CC17-4967-905B-29F4EB986131}) (Version: 1.0.2 - Samsung Electronics CO., LTD.) STATISTICA PL 10 (64-bit) (HKLM\...\{7811654C-9701-4347-B9DD-7DDB6B47F56A}) (Version: 10.0.1101.6 - StatSoft, Inc.) STATNOVAPDF (novaPDF 7.4 printer) (HKLM\...\STATNOVAPDF_is1) (Version: - Softland) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.1.1.0 - Synaptics Incorporated) Update for Skype for Business 2015 (KB2889853) 32-Bit Edition (HKLM-x32\...\{90150000-012B-0415-0000-0000000FF1CE}_Office15.PROPLUS_{61D76467-9532-4D27-AE19-31DF7BD2C973}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3054946) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{9BBF212C-5BD8-4C8A-B65F-91342D904ED8}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3054946) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.PROPLUS_{9BBF212C-5BD8-4C8A-B65F-91342D904ED8}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3054946) 32-Bit Edition (HKLM-x32\...\{90150000-012B-0415-0000-0000000FF1CE}_Office15.PROPLUS_{9BBF212C-5BD8-4C8A-B65F-91342D904ED8}) (Version: - Microsoft) User Guide (HKLM-x32\...\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}) (Version: 1.2 - Samsung Electronics CO., LTD.) VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden Weaver WMS 1.0 (HKLM\...\Weaver WMS_is1) (Version: 1.0 - Weaver Software) Widevine Media Optimizer Chrome 6.0.0 (HKU\S-1-5-21-1130217176-4031021830-1519301973-1000\...\optimizer_chrome) (Version: 6.0.0.12757 - Widevine Technologies) WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.1.5 - WildTangent) WildTangent ORB Game Console (x32 Version: - WildTangent) Hidden Windows Live 程式集 (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation) WinRAR 4.20 (32-bitowy) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH) Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Фотогалерия на Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-1130217176-4031021830-1519301973-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\User\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-1130217176-4031021830-1519301973-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\User\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.) ==================== Punkty Przywracania systemu ========================= 25-08-2015 05:25:36 Zaplanowany punkt kontrolny 25-08-2015 05:45:35 Windows Defender Checkpoint 25-08-2015 11:38:45 Removed SpyHunter 25-08-2015 11:39:59 Removed SpyHunter ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____N C:\windows\system32\Drivers\etc\hosts ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {043E6FE7-33DD-475A-A3B0-7BC5352EAC77} - System32\Tasks\EasyDisplayMgr => C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe [2012-04-03] (Samsung Electronics Co., Ltd.) Task: {0AA5A084-6DB4-4B2B-AA2A-E5252FA7D078} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2012-02-16] (CyberLink) Task: {2CF7FD37-68BF-4ECB-93C8-A132F941BD33} - System32\Tasks\SmartSetting => C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe [2012-03-27] (Samsung Electronics Co., Ltd.) Task: {32D33072-93C6-4851-8460-8964135125A9} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1130217176-4031021830-1519301973-1000Core => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-16] (Google Inc.) Task: {42D5D538-C8EC-4445-BFB4-E89FAF94F372} - System32\Tasks\EasySupportCenter => C:\Program Files\Samsung\Easy Support Center\SamoyedAgent.exe [2012-04-19] (Samsung Electronics CO., LTD.) Task: {4521C86F-EDAE-4E6E-97E2-EF27EDB3F2C7} - System32\Tasks\MovieColorEnhancer => C:\Program Files (x86)\Samsung\Easy Settings\MovieColorEnhancer.exe [2012-01-31] (Samsung Electronics Co., Ltd.) Task: {48024EF7-ED65-47F0-B111-F455F9FA772A} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1130217176-4031021830-1519301973-1000UA => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-11-18] (Facebook Inc.) Task: {53116449-EE13-486B-AFB7-3582427E49A9} - System32\Tasks\WLANStartup => C:\Program Files (x86)\Samsung\Easy Settings\WLANStartup.exe [2012-04-03] (Samsung Electronics) Task: {6A45693B-5E98-48F4-9E6C-CA9F7563B83D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1130217176-4031021830-1519301973-1000Core1d004f231db71b4 => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-16] (Google Inc.) Task: {74FDF440-33D3-466E-A9F0-9D55B3986C4C} - System32\Tasks\Easy Software Manager Agent => C:\Program Files (x86)\Samsung\Easy Software Manager\SWMAgent.exe [2012-04-12] (Samsung Electronics CO., LTD.) Task: {78F305A4-3735-4E3F-BCE2-60B3BFAF6026} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1130217176-4031021830-1519301973-1000Core => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-11-18] (Facebook Inc.) Task: {8B29DCC5-8D06-43B9-9F88-F87E6A8B8060} - System32\Tasks\SCCSpeedBoot => C:\Program Files (x86)\Samsung\Easy Settings\SCCSpeedBoot.exe [2012-03-27] (Samsung Electronics Co., Ltd.) Task: {8FA7D7D4-140B-4F3B-A760-8ECEDD7FBF65} - System32\Tasks\AdobeAAMUpdater-1.0-User-Komputer-User => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-09-19] (Adobe Systems Incorporated) Task: {97170224-9B08-4D96-9C91-75AD4BD08881} - System32\Tasks\EasyBatteryManager => C:\Program Files (x86)\Samsung\Easy Settings\EBM\EasyBatteryMgr4.exe [2011-11-18] (SAMSUNG Electronics co., LTD.) Task: {9C8654DB-9F38-4828-8E2C-D8CE64565E22} - System32\Tasks\EasySpeedUpManager => C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe [2012-01-31] (Samsung Electronics) Task: {9D1D919B-1FED-4047-97BB-641BFB9AB893} - System32\Tasks\SDMsgUpdate (Local) => C:\Program Files (x86)\SmartDraw CI\Messages\SDNotify.exe [2012-08-13] () Task: {B85994B9-55B0-4ED6-B6A7-265A343B9D99} - System32\Tasks\advSRS5 => C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe [2012-01-28] (SEC) Task: {BC6B0EE0-D15A-4B92-AB39-6EEDE873171E} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-03-26] (Intel Corporation) Task: {C78643BC-1043-441E-AB5E-456EA7D811F4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated) Task: {D53BF8CC-0F83-4DB1-B2C2-6ABB7DE3B1F2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation) Task: {E1935EA7-6819-4A91-B265-BC6CCD4CF848} - System32\Tasks\SDMsgUpdate (TE) => C:\Program Files (x86)\SmartDraw CI\Messages\SDNotify.exe [2012-08-13] () Task: {E67B446F-3C1E-4E82-A104-7677DED05DDB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1130217176-4031021830-1519301973-1000UA => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-16] (Google Inc.) Task: {EF4F7721-055F-473B-BC49-7AC83BEE1B6C} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-07-01] (Avast Software s.r.o.) Task: {F1B6D58F-AE41-4CC4-9BDC-DDC83CFB3889} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-03-26] (Intel Corporation) Task: {F4035D75-9DC9-4600-B8FF-B2C40EA15644} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation) Task: {F8BC4D3C-4CB6-42FB-9332-56BD5BF88700} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1130217176-4031021830-1519301973-1000UA1d004f2359ad1b0 => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-16] (Google Inc.) Task: {FAF1AF90-8643-42E3-8281-48D3D151CBB9} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12] (Adobe Systems Incorporated) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1130217176-4031021830-1519301973-1000Core.job => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1130217176-4031021830-1519301973-1000UA.job => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1130217176-4031021830-1519301973-1000Core.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1130217176-4031021830-1519301973-1000Core1d004f231db71b4.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1130217176-4031021830-1519301973-1000UA.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1130217176-4031021830-1519301973-1000UA1d004f2359ad1b0.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe Task: C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe Task: C:\windows\Tasks\SDMsgUpdate (Local).job => C:\PROGRA~2\SMARTD~1\Messages\SDNotify.exe`-PLocal -V21020100 -SSDNI.ini -A -Mhttp:/www.smartdraw.com/msgs/messagecheck.asp Task: C:\windows\Tasks\SDMsgUpdate (TE).job => C:\PROGRA~2\SMARTD~1\Messages\SDNotify.exe\-PTE -V21020100 -SSDU.ini -A -Mhttp:/www.smartdraw.com/msgs/messagecheck.asp ==================== Załadowane moduły (filtrowane) ============== 2010-11-16 15:38 - 2010-11-16 15:38 - 00339456 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe 2012-05-29 10:48 - 2009-12-01 09:21 - 00244904 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe 2012-05-29 10:05 - 2012-02-13 08:02 - 00031624 _____ () C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe 2011-07-29 01:08 - 2011-07-29 01:08 - 01259376 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe 2012-05-29 09:46 - 2012-04-18 12:49 - 00127320 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe 2012-03-26 11:33 - 2012-03-26 11:33 - 00094208 _____ () C:\windows\system32\IccLibDll_x64.dll 2012-03-30 09:43 - 2012-03-30 09:43 - 00016384 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll 2015-07-01 18:25 - 2015-07-01 18:25 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2015-07-01 18:25 - 2015-07-01 18:25 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2015-08-24 21:47 - 2015-08-24 21:47 - 02960896 _____ () C:\Program Files\AVAST Software\Avast\defs\15082404\algo.dll 2015-08-25 11:59 - 2015-08-25 11:59 - 02960896 _____ () C:\Program Files\AVAST Software\Avast\defs\15082500\algo.dll 2014-10-11 14:06 - 2014-10-11 14:06 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2014-10-11 14:05 - 2014-10-11 14:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2012-05-29 10:05 - 2011-02-16 18:03 - 00203776 _____ () C:\Program Files (x86)\Samsung\Easy Settings\WinCRT.dll 2012-05-29 10:05 - 2006-08-12 05:48 - 00049152 _____ () C:\Program Files (x86)\Samsung\Easy Settings\HookDllPS2.dll 2011-07-29 01:09 - 2011-07-29 01:09 - 00096112 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll 2015-07-01 18:25 - 2015-07-01 18:25 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2015-08-21 08:46 - 2015-08-18 07:23 - 01405768 _____ () C:\Users\User\AppData\Local\Google\Chrome\Application\44.0.2403.157\libglesv2.dll 2015-08-21 08:46 - 2015-08-18 07:23 - 00081224 _____ () C:\Users\User\AppData\Local\Google\Chrome\Application\44.0.2403.157\libegl.dll 2012-05-29 10:09 - 2011-09-08 12:40 - 01645056 _____ () C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\Resdll.dll 2014-10-16 04:07 - 2014-10-16 04:07 - 00172032 _____ () C:\windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\92a1650dbe9fad5f46633b835420e1a8\IsdiInterop.ni.dll 2012-05-29 09:45 - 2011-11-29 13:00 - 00059392 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll 2012-05-29 09:46 - 2012-04-18 12:50 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2009-11-02 07:20 - 2009-11-02 07:20 - 00619816 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll 2009-11-02 07:23 - 2009-11-02 07:23 - 00013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll 2015-08-21 08:46 - 2015-08-18 07:23 - 16393032 _____ () C:\Users\User\AppData\Local\Google\Chrome\Application\44.0.2403.157\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\Users\User\Downloads\Re sesja poprawkowa.eml:OECustomProperty ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i Witryny z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-1130217176-4031021830-1519301973-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 80.72.37.106 - 8.8.8.8 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows - funkcja włączona. ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) MSCONFIG\startupreg: AQQ => C:\PROGRA~1\MyPortal\AQQ\AQQ.exe ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{DE28B32D-C441-4940-AB08-88DB38F614E3}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{F6E5FF76-68D0-4576-98FA-2ED4AF4EAFEB}] => (Allow) LPort=2869 FirewallRules: [{6CD5A5B3-F36A-4621-850B-508CE83F71D9}] => (Allow) LPort=1900 FirewallRules: [{88B9359F-9079-4935-9A07-C2E53D8E1011}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{B5111A84-F464-4BCB-9127-F24C8FCDE8FF}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe FirewallRules: [{6EC6073C-8B6A-4100-AC22-2D7DEAECD957}] => (Allow) C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10.exe FirewallRules: [{1A22A4B8-C888-4225-BE5D-0DDF7A81610C}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector\PDR8.EXE FirewallRules: [TCP Query User{553963A8-EE36-403F-858B-0932B940C6AE}C:\program files (x86)\gadu-gadu 10\gg.exe] => (Allow) C:\program files (x86)\gadu-gadu 10\gg.exe FirewallRules: [UDP Query User{A9DE62DE-CCC1-4D5F-8C4C-CAB8B2BF3647}C:\program files (x86)\gadu-gadu 10\gg.exe] => (Allow) C:\program files (x86)\gadu-gadu 10\gg.exe FirewallRules: [{F99D255C-CC38-4718-BBEA-13AE1B08F2CE}] => (Allow) C:\Users\User\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe FirewallRules: [{E18A461B-3569-445F-B1C2-EC95DD3D3697}] => (Allow) D:\RouterSetup\QISWizard.exe FirewallRules: [{A3614F64-D656-430C-A743-665F866FCA85}] => (Allow) D:\RouterSetup\QISWizard.exe FirewallRules: [{0909CE6D-BF49-4CC9-9DAD-E8CE2CC6DD90}] => (Allow) C:\Program Files (x86)\ASUS\RT-N12E Wireless Router Utilities\Discovery.exe FirewallRules: [{BD15C947-2DD9-46B8-B7EB-C4A0E4EF6BAA}] => (Allow) C:\Program Files (x86)\ASUS\RT-N12E Wireless Router Utilities\Discovery.exe FirewallRules: [{79D288DB-261E-48D9-83B9-DA806574A9B7}] => (Allow) C:\Program Files (x86)\ASUS\RT-N12E Wireless Router Utilities\Rescue.exe FirewallRules: [{CA024A6A-5845-4E8E-8863-9101BC400D55}] => (Allow) C:\Program Files (x86)\ASUS\RT-N12E Wireless Router Utilities\Rescue.exe FirewallRules: [{6A873995-0829-4576-9303-6AA451F0C09A}] => (Allow) C:\Program Files (x86)\ASUS\RT-N12E Wireless Router Utilities\LiveUpdate.exe FirewallRules: [{E9BDFE26-70D0-4F90-829B-194069394931}] => (Allow) C:\Program Files (x86)\ASUS\RT-N12E Wireless Router Utilities\LiveUpdate.exe FirewallRules: [{003EF142-49D0-4228-87EF-47BBF29376E8}] => (Allow) C:\Program Files (x86)\ASUS\RT-N12E Wireless Router Utilities\QISWizard.exe FirewallRules: [{0B311854-88A8-48CB-896D-86AE82AA569E}] => (Allow) C:\Program Files (x86)\ASUS\RT-N12E Wireless Router Utilities\QISWizard.exe FirewallRules: [{10FB2BDE-0838-426A-9941-527B46D92D47}] => (Allow) C:\ProgramData\eSafe\eGdpSvc.exe FirewallRules: [{081A3B26-F0C1-47F2-8E3E-934A4D836F35}] => (Allow) C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe FirewallRules: [{0DF22785-00D1-4530-8CC8-3CE703895C63}] => (Allow) C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe FirewallRules: [{5DFC5CDB-8A7D-4295-8C8B-B0346F802891}] => (Allow) C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe FirewallRules: [{53165822-6FE3-43AB-B362-BE2BD9FFEECE}] => (Allow) C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe FirewallRules: [TCP Query User{82BFEFA7-732C-446A-AA0C-6BE2F70ABA5F}C:\users\user\desktop\bruteforcer_081\server\bfs.exe] => (Allow) C:\users\user\desktop\bruteforcer_081\server\bfs.exe FirewallRules: [UDP Query User{06920CF3-45D4-4774-B459-DF9899AF81C8}C:\users\user\desktop\bruteforcer_081\server\bfs.exe] => (Allow) C:\users\user\desktop\bruteforcer_081\server\bfs.exe FirewallRules: [{0A16E29C-91F9-4E6A-BC58-BB2DCF7644B3}] => (Allow) C:\Users\User\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe FirewallRules: [{C72E364B-14C5-44AE-9FB8-D0F5018F9A4A}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe FirewallRules: [{5D207BD9-CD7A-43DE-BB56-C6835882ACBF}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe FirewallRules: [{F7E16682-3DCC-45F3-84FA-539984129E11}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{0421E109-317B-4053-8791-4F4CAF19EFF2}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{C10FC894-CBE3-4C91-AE39-6F52C9B2D7F6}] => (Allow) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe FirewallRules: [{A60926D8-49EB-4322-B511-18F71BF87491}] => (Allow) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe FirewallRules: [{18D8C56B-355D-4208-813C-2D6CF012C778}] => (Allow) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe FirewallRules: [{4D9941EB-4028-4F45-95F1-8FF3D056BC41}] => (Allow) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe FirewallRules: [{5C3A50FF-AF0A-4E5E-9BBD-9AE69EB005A7}] => (Allow) C:\Program Files (x86)\Multilizer\MultilizerPDFTranslator\PDFTRanslationWizard.exe FirewallRules: [{F483A4D6-DA98-4B2E-801C-AD35B57B12AB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{470FB41B-6664-4BBE-9AC7-F542358298A9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{97A9B607-0959-470C-BC79-EDA5B46F7C40}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{FF2EE824-EB95-4702-93BE-C48CC87BDC76}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [TCP Query User{30C0543C-DAA1-4C04-9B65-299DD336A459}C:\program files\myportal\aqq\aqq.exe] => (Allow) C:\program files\myportal\aqq\aqq.exe FirewallRules: [UDP Query User{58C747AD-60CE-433B-89CD-C9A238E99EB7}C:\program files\myportal\aqq\aqq.exe] => (Allow) C:\program files\myportal\aqq\aqq.exe FirewallRules: [{2C5BF1B5-F24D-4D0B-9355-655FAA10E510}] => (Block) %ProgramFiles%\Adobe\Adobe Photoshop CC 2014\Photoshop.exe FirewallRules: [{3047FF8D-D3A4-46CB-85B9-3522CC860A06}] => (Block) %ProgramFiles% (x86)\Common Files\Adobe\OOBE\PDApp\core\PDapp.exe FirewallRules: [{228E4967-F6BF-493E-ADBE-1968ED240EC3}] => (Block) %ProgramFiles%\Adobe\Adobe Photoshop CC 2014\Photoshop.exe FirewallRules: [{29595965-0589-4A34-BD5F-49D78A40B5D8}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{3C08844A-ECE6-4E2D-B97C-1D6A7CDD894B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{38745446-D113-4707-8328-01BBBE227A9A}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{15E36841-7234-446B-9EA5-EF70783F05AE}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe FirewallRules: [UDP Query User{61339B42-A924-41F5-B188-F211FD2E261E}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe FirewallRules: [TCP Query User{2BD32FE6-7AB2-4704-9CBC-814214F75BA3}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{1159F982-823F-4C2C-823B-057AA204FE2D}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [TCP Query User{74C59A21-8C6F-4C6F-A904-734B7C59ABB4}C:\program files\anylogic 7 professional\anylogic.exe] => (Allow) C:\program files\anylogic 7 professional\anylogic.exe FirewallRules: [UDP Query User{222F79AE-ABA4-4150-A4DC-22ACBB47AF88}C:\program files\anylogic 7 professional\anylogic.exe] => (Allow) C:\program files\anylogic 7 professional\anylogic.exe FirewallRules: [TCP Query User{761314C5-C138-4739-A9D8-B57F355FE636}C:\program files (x86)\anylogic 6 professional\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\anylogic 6 professional\jre\bin\javaw.exe FirewallRules: [UDP Query User{E750B871-DC83-496F-A936-F3EC3BC776EE}C:\program files (x86)\anylogic 6 professional\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\anylogic 6 professional\jre\bin\javaw.exe FirewallRules: [{034D6C22-D356-414F-BC46-8E184BA31F23}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{6D82C167-123F-4581-B979-9ACB3ACD73E3}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (08/25/2015 11:50:36 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/25/2015 11:46:10 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: nacl64.exe, wersja: 44.0.2403.157, sygnatura czasowa: 0x55d28d7b Nazwa modułu powodującego błąd: nacl64.exe, wersja: 44.0.2403.157, sygnatura czasowa: 0x55d28d7b Kod wyjątku: 0x80000003 Przesunięcie błędu: 0x0000000000011dd1 Identyfikator procesu powodującego błąd: 0x1690 Godzina uruchomienia aplikacji powodującej błąd: 0xnacl64.exe0 Ścieżka aplikacji powodującej błąd: nacl64.exe1 Ścieżka modułu powodującego błąd: nacl64.exe2 Identyfikator raportu: nacl64.exe3 Error: (08/25/2015 11:36:58 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT) Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu. Error: (08/25/2015 11:36:58 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (08/25/2015 11:36:58 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (08/25/2015 05:45:34 AM) (Source: VSS) (EventID: 8194) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Odmowa dostępu. . To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym. Operacja: Zbieranie danych modułu zapisującego Kontekst: Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220} Nazwa modułu zapisującego: System Writer Identyfikator wystąpienia modułu zapisującego: {a3f8290e-9b20-4620-b854-b398f9cf76fd} Error: (08/25/2015 05:28:33 AM) (Source: SideBySide) (EventID: 35) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"1". Błąd w pliku manifestu lub w pliku zasad "UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"2" w wierszu UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"3. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0". Definicja to UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (08/25/2015 02:04:50 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/25/2015 01:09:24 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/25/2015 12:53:45 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Dziennik System: ============= Error: (08/25/2015 11:47:17 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (08/25/2015 02:05:07 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi AvastVBox COM Service z powodu następującego błędu: %%1053 Error: (08/25/2015 02:05:07 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą AvastVBox COM Service. Error: (08/25/2015 02:05:07 AM) (Source: DCOM) (EventID: 10005) (User: ) Description: 1053AvastVBoxSvc{F319F1B8-7587-4146-AF9C-0D6D77819BF1} Error: (08/25/2015 02:01:20 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (08/25/2015 01:14:51 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi HP Support Solutions Framework Service z powodu następującego błędu: %%1053 Error: (08/25/2015 01:14:51 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą HP Support Solutions Framework Service. Error: (08/25/2015 01:09:03 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Tristip z powodu następującego błędu: %%1053 Error: (08/25/2015 01:09:03 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Tristip. Error: (08/25/2015 12:58:10 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Usługa Windows Defender zawiesiła się podczas uruchamiania. Microsoft Office: ========================= Error: (08/25/2015 11:50:36 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/25/2015 11:46:10 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: nacl64.exe44.0.2403.15755d28d7bnacl64.exe44.0.2403.15755d28d7b800000030000000000011dd1169001d0df1adecb870dC:\Users\User\AppData\Local\Google\Chrome\Application\44.0.2403.157\nacl64.exeC:\Users\User\AppData\Local\Google\Chrome\Application\44.0.2403.157\nacl64.exe1d52f46a-4b0e-11e5-9aac-dc3717a31e83 Error: (08/25/2015 11:36:58 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT) Description: WmiApRplWmiApRpl8F20300004D070000 Error: (08/25/2015 11:36:58 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Performance1637070000000000000000000009030000 Error: (08/25/2015 11:36:58 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Performance1637070000000000000000000009030000 Error: (08/25/2015 05:45:34 AM) (Source: VSS) (EventID: 8194) (User: ) Description: 0x80070005, Odmowa dostępu. Operacja: Zbieranie danych modułu zapisującego Kontekst: Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220} Nazwa modułu zapisującego: System Writer Identyfikator wystąpienia modułu zapisującego: {a3f8290e-9b20-4620-b854-b398f9cf76fd} Error: (08/25/2015 05:28:33 AM) (Source: SideBySide) (EventID: 35) (User: ) Description: UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0"C:\Program Files (x86)\Microsoft Office\Office15\lync.exe.ManifestC:\Program Files (x86)\Microsoft Office\Office15\UccApi.DLL1 Error: (08/25/2015 02:04:50 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/25/2015 01:09:24 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/25/2015 12:53:45 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 ==================== Statystyki pamięci =========================== Processor: Intel(R) Core(TM) i5-3210M CPU @ 2.50GHz Procent pamięci w użyciu: 44% Całkowita pamięć fizyczna: 6039.22 MB Dostępna pamięć fizyczna: 3380.49 MB Całkowita pamięć wirtualna: 12076.65 MB Dostępna pamięć wirtualna: 8481.17 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:907.41 GB) (Free:717.42 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 54FB85D0) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=907.4 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=24 GB) - (Type=27) ==================== Koniec FRST.txt ============================