Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:15-09-2015 Uruchomiony przez rkujawiak (2015-09-16 12:17:39) Uruchomiony z C:\ Windows 7 Professional Service Pack 1 (X64) (2015-03-27 13:51:29) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-771413754-865349641-4003382214-500 - Administrator - Disabled) Gość (S-1-5-21-771413754-865349641-4003382214-501 - Limited - Enabled) rkujawiak (S-1-5-21-771413754-865349641-4003382214-1001 - Administrator - Enabled) => D:\Users\rkujawiak ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A} AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - ) 7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov) Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated) Adobe Reader XI (11.0.12) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated) CCleaner (HKLM\...\CCleaner) (Version: 5.06 - Piriform) Creative ALchemy (HKLM-x32\...\ALchemy) (Version: 1.44 - Creative Technology Limited) Creative Audio Control Panel (HKLM-x32\...\AudioCS) (Version: 3.00 - Creative Technology Limited) Creative AutoMode Switcher (HKLM-x32\...\Creative AutoMode Switcher) (Version: 1.00 - Creative Technology Limited) Creative Console Launcher (HKLM-x32\...\Console Launcher) (Version: 2.61 - Creative Technology Limited) Creative MediaSource 5 (HKLM-x32\...\{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}) (Version: 5.26 - Creative Technology Limited) Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.41 - Creative Technology Limited) Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: 1.03 - Creative Technology Limited) Creative WaveStudio 7 (HKLM-x32\...\WaveStudio 7) (Version: 7.14 - Creative Technology Limited) Crystal Reports XI Runtime (HKLM-x32\...\{B53F189B-5098-4246-AE76-E8A95206C07E}) (Version: 11.5.12.1838 - SAP Business Objects) Direct3D11 Renderer für Gothic 2 DNDR (HKLM-x32\...\Direct3D11 Renderer für Gothic 2 DNDR) (Version: X17.1 - Andre Taulien) Euro Truck Simulator 2 (HKLM-x32\...\Euro Truck Simulator 2_is1) (Version: 1.19.2.1s - Релиз от R.G. Steamgames) Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version: - SCS Software) ExtremeCopy (HKLM\...\{DFCE9296-5A54-468F-A0A9-98B978DFCD26}) (Version: 2.1.0000 - Easersoft) Farming Simulator 15 (HKLM-x32\...\FarmingSimulator2015PL_is1) (Version: 1.2 - GIANTS Software) FileZilla Client 3.13.1 (HKLM-x32\...\FileZilla Client) (Version: 3.13.1 - Tim Kosse) foobar2000 v1.3.8 (HKLM-x32\...\foobar2000) (Version: 1.3.8 - Peter Pawlowski) globalupdate Helper (x32 Version: 1.3.25.0 - globalupdate Inc.) Hidden <==== UWAGA GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.85 - Google Inc.) Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden GOTHIC2 - Noc Kruka - 'Pakiet systemowy' (HKLM-x32\...\GOTHIC2 - Noc Kruka - 'Pakiet systemowy') (Version: 1.1 - World of Gothic RU © 2014) HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.16.0.001 - HTC Corporation) HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.46.0 - HTC) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation) Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation) IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC) Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation) MagicDisc 2.7.106 (HKLM-x32\...\MagicDisc 2.7.106) (Version: - ) Malwarebytes Anti-Malware wersja 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation) Microsoft IntelliPoint 8.2 (HKLM\...\Microsoft IntelliPoint 8.2) (Version: 8.20.468.0 - Microsoft Corporation) Microsoft IntelliType Pro 8.2 (HKLM\...\Microsoft IntelliType Pro 8.2) (Version: 8.20.469.0 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Might & Magic X Legacy (HKLM-x32\...\Uplay Install 401) (Version: - Ubisoft) Mozilla Firefox 40.0.3 (x86 pl) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 pl)) (Version: 40.0.3 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.8.2 - Notepad++ Team) Notepad2 (Notepad Replacement) (HKLM\...\Notepad2) (Version: 4.2.25 - Florian Balmer) NVIDIA GAME System Software 2.8.1 (HKLM-x32\...\{4F0C7CCF-5666-474B-B02E-AC514A95EC93}) (Version: 2.8.1 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.30 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA Sterownik graficzny 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.30 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Oprogramowanie mikroukładu Intel® (x32 Version: 10.0.26 - Intel(R) Corporation) Hidden Panel sterowania NVIDIA 353.30 (Version: 353.30 - NVIDIA Corporation) Hidden Paragon ExtFS for Windows (HKLM-x32\...\ParagonExtFS) (Version: - ) PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5875) (Version: - ) Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) Potplayer (HKLM-x32\...\PotPlayer) (Version: - Daum Kakao Corp.) Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 7.91.1119.2014 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.) Revo Uninstaller Pro 3.1.4 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.4 - VS Revo Group, Ltd.) Samsung Drive Manager (HKLM-x32\...\{9F1A6A24-4901-42F6-A355-5DD2B82E62AE}) (Version: 1.0.172 - Clarus, Inc.) Silent Hunter 5 (HKLM-x32\...\{AC61C594-5F86-4BE9-ABAF-763C6A8E2302}) (Version: 1.2.0 - Ubisoft) Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.) Smart Defrag 4 (HKLM-x32\...\Smart Defrag 4_is1) (Version: 4.0 - IObit) SolveigMM Video Splitter (HKLM-x32\...\SolveigMM Video Splitter 3.6.1308.22) (Version: 3.6.1308.22 - Solveig Multimedia) South Park™: The Stick of Truth™ (HKLM-x32\...\Steam App 213670) (Version: - Obsidian Entertainment) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.41459 - TeamViewer) Teleport VLX (HKLM-x32\...\Teleport VLX) (Version: 1.70 - Tennyson Maxwell Information Systems, Inc.) The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.8.4 - GOG.com) The Witcher 3: Wild Hunt - Alternative Look for Ciri (HKLM-x32\...\Alternative Look for Ciri_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Alternative Look for Triss (HKLM-x32\...\Alternative Look for Triss_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Alternative Look for Yennefer (HKLM-x32\...\Alternative Look for Yennefer_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Ballad Heroes - Neutral Gwent Card Set (HKLM-x32\...\Ballad Heroes - Neutral Gwent Card Set_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Beard and Hairstyle Set (HKLM-x32\...\Beard and Hairstyle Set_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Elite Crossbow Set (HKLM-x32\...\Elite Crossbow Set_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - New Finisher Animations (HKLM-x32\...\New Finisher Animations_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - NEW GAME + (HKLM-x32\...\NEW GAME +_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - New Quest - Contract - Skellige's Most Wanted (HKLM-x32\...\New Quest - Contract: Skellige's Most Wanted_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - New Quest - Contract Missing Miners (HKLM-x32\...\New Quest - Contract Missing Miners_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - New Quest - Fool's Gold (HKLM-x32\...\New Quest - Fool's Gold_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - New Quest - Scavenger Hunt - Wolf School Gear (HKLM-x32\...\New Quest - Scavenger Hunt: Wolf School Gear_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - New Quest - Where the Cat and Wolf Play... (HKLM-x32\...\New Quest - Where the Cat and Wolf Play..._is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Nilfgaardian Armor Set (HKLM-x32\...\Nilfgaardian Armor Set_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Skellige Armor Set (HKLM-x32\...\Skellige Armor Set_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Temerian Armor Set (HKLM-x32\...\Temerian Armor Set_is1) (Version: 1.0.0.0 - GOG.com) THX Setup Console (HKLM-x32\...\THX_Console_Unicode) (Version: - ) Train Simulator 2015 (HKLM-x32\...\Steam App 24010) (Version: - RailSimulator.com) Uplay (HKLM-x32\...\Uplay) (Version: 5.2 - Ubisoft) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) Volume Panel (HKLM-x32\...\Creative Volume Panel) (Version: 2.21 - Creative Technology Limited) Wiedźmin 2 (HKLM-x32\...\{F0A209B7-7F85-4BDD-8F1F-B98EEAD9E04B}) (Version: 1.00.0000 - CD Projekt Red) Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation) Windows Resource Kit Tools - SubInAcl.exe (HKLM-x32\...\{D3EE034D-5B92-4A55-AA02-2E6D0A6A96EE}) (Version: 5.2.3790.1164 - Microsoft Corporation) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Punkty Przywracania systemu ========================= UWAGA: Przywracanie systemu jest wyłączone ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2015-09-13 10:03 - 00000748 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {19C73852-9E87-4719-AF4E-5F1384B03478} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-28] (Google Inc.) Task: {1F296818-5C2D-4C95-9CED-B7D8B2EF8AA6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12] (Adobe Systems Incorporated) Task: {46BE14EE-640C-444C-9B5F-50DC93F78DD3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated) Task: {87166C49-58FD-4DEE-BFB1-6E06061D6429} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser Task: {B2C1231F-3BF1-4560-BFEF-8528C5531356} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-28] (Google Inc.) Task: {B9D8F098-6C02-4451-9507-9A92B2CB593D} - System32\Tasks\Microsoft_Hardware_Launch_IType_exe => C:\Program Files\Microsoft IntelliType Pro\IType.exe [2011-08-10] (Microsoft Corporation) Task: {F1D37049-BCCE-4403-ABF7-6BD46BCAD771} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => C:\Program Files\Microsoft IntelliPoint\IPoint.exe [2011-08-01] (Microsoft Corporation) Task: {FEC89DBB-7BE8-4C43-91EA-F207C610F882} - System32\Tasks\Games\UpdateCheck_S-1-5-21-771413754-865349641-4003382214-1001 (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\0IdkliY74NYLV7Z9.job => D:\Users\rkujawiak\AppData\Roaming\0IdkliY74NYLV7Z9.exe <==== UWAGA Task: C:\Windows\Tasks\2pnkELAuyFg8.job => D:\Users\rkujawiak\AppData\Roaming\2pnkELAuyFg8.exe <==== UWAGA Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\h9u6cDssjq.job => D:\Users\rkujawiak\AppData\Roaming\h9u6cDssjq.exe <==== UWAGA Task: C:\Windows\Tasks\sFRQerYYX.job => D:\Users\rkujawiak\AppData\Roaming\sFRQerYYX.exe <==== UWAGA ==================== Załadowane moduły (filtrowane) ============== 2015-02-20 09:01 - 2015-02-20 09:01 - 00022528 _____ () C:\Windows\System32\us001lm.dll 2014-08-25 13:15 - 2014-08-25 13:15 - 00022736 _____ () C:\Program Files (x86)\Paragon Software\Paragon ExtFS for Windows\Dokan\DokanLibrary\mounter.exe 2015-03-28 16:45 - 2015-06-17 08:48 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-08-24 15:56 - 2015-08-24 15:56 - 00043480 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll 2013-10-17 15:27 - 2013-10-17 15:27 - 00166912 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe 2015-04-13 15:44 - 2015-04-13 15:44 - 00821600 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe 2015-04-13 15:43 - 2015-04-13 15:43 - 00031080 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll 2015-04-13 15:43 - 2015-04-13 15:43 - 00607376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll 2015-04-13 15:44 - 2015-04-13 15:44 - 00059752 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll 2015-04-13 15:44 - 2015-04-13 15:44 - 00036216 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll 2015-04-13 15:44 - 2015-04-13 15:44 - 00080248 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll 2015-04-13 15:45 - 2015-04-13 15:45 - 00129376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll 2015-04-13 15:47 - 2015-04-13 15:47 - 00223592 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll 2014-03-20 11:43 - 2014-03-20 11:43 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-771413754-865349641-4003382214-1001\Control Panel\Desktop\\Wallpaper -> D:\Users\rkujawiak\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.10.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows - funkcja włączona. ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{E7DE77E5-FFCA-41A2-B062-A06351E142A5}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{7E99BA88-421B-438C-A6C8-22927600BC7E}] => (Allow) C:\Program Files (x86)\DAUM\PotPlayer\PotPlayerMini.exe FirewallRules: [TCP Query User{B2795BFA-D4D1-4764-9BE9-D0630C681E54}G:\programy p2p\emule\emule.exe] => (Allow) G:\programy p2p\emule\emule.exe FirewallRules: [UDP Query User{D4A3A7A5-C2FD-4012-A566-8D12D26001FA}G:\programy p2p\emule\emule.exe] => (Allow) G:\programy p2p\emule\emule.exe FirewallRules: [{40C25D0B-FDBB-46A4-B2A2-3C547F30ACE6}] => (Allow) G:\Programy P2P\uTorrent\uTorrent.exe FirewallRules: [{83B06CD5-3B1F-4D93-A61B-26D5DE52A5AD}] => (Allow) G:\Programy P2P\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{4ACCB5C4-2548-41C9-994D-0F78CB32A87A}D:\totalcmd\totalcmd64.exe] => (Allow) D:\totalcmd\totalcmd64.exe FirewallRules: [UDP Query User{0335DEE9-1E36-4738-AAE7-972F449E1866}D:\totalcmd\totalcmd64.exe] => (Allow) D:\totalcmd\totalcmd64.exe FirewallRules: [{F0A7AEC3-9292-43AC-B782-6E0989A21431}] => (Allow) H:\Steam\Steam.exe FirewallRules: [{33666BAC-353E-4B6F-B15B-2B55B4AA2F77}] => (Allow) H:\Steam\Steam.exe FirewallRules: [{3571F08C-52E8-4A9E-984C-7ED41D217ACD}] => (Allow) H:\Steam\bin\steamwebhelper.exe FirewallRules: [{5C000EFA-9236-4F9D-A12B-952C71D112E5}] => (Allow) H:\Steam\bin\steamwebhelper.exe FirewallRules: [{C2BCBE3E-C2FE-4966-9B68-BF64A014FEA8}] => (Allow) H:\Farming Simulator 15\FarmingSimulator2015.exe FirewallRules: [{ABDB5122-2758-4954-A25D-0704CA0AE0A9}] => (Allow) H:\Farming Simulator 15\dedicatedServer.exe FirewallRules: [TCP Query User{119B15B7-B9CC-4012-B480-A195F0DA037C}H:\farming simulator 15\x64\farmingsimulator2015game.exe] => (Allow) H:\farming simulator 15\x64\farmingsimulator2015game.exe FirewallRules: [UDP Query User{EE4602F1-DBA8-4077-8290-A3023DEB9BC6}H:\farming simulator 15\x64\farmingsimulator2015game.exe] => (Allow) H:\farming simulator 15\x64\farmingsimulator2015game.exe FirewallRules: [TCP Query User{3DE5D3E5-F247-49D0-A3C6-3A8A65204246}D:\arduino-1.6.3\java\bin\javaw.exe] => (Allow) D:\arduino-1.6.3\java\bin\javaw.exe FirewallRules: [UDP Query User{C42B1A9C-CEE2-4A1F-8329-857656C48F27}D:\arduino-1.6.3\java\bin\javaw.exe] => (Allow) D:\arduino-1.6.3\java\bin\javaw.exe FirewallRules: [{48841C29-E10A-4EA4-8A8A-BD5B5F01A7AF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{A725F7B8-A0A8-47FF-BEEA-429279831155}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{595AD6B2-4ECB-47A1-93E4-AB101FB421C6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{D79F773D-6C4B-4D20-AABB-86562D5AC43B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [TCP Query User{915807B9-61A7-44BD-BFEC-1F8D1729EC90}C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\minecraft-by-zyczu.exe] => (Block) C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\minecraft-by-zyczu.exe FirewallRules: [UDP Query User{69351BD8-E2D5-406B-A0E9-F47F07C8E616}C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\minecraft-by-zyczu.exe] => (Block) C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\minecraft-by-zyczu.exe FirewallRules: [{4CE33F54-1F80-4BCB-8A1B-613C45D8A7A7}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe FirewallRules: [{ED2AE198-ABA6-4E02-BD3F-FAF9393931C5}] => (Allow) D:\Users\rkujawiak\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe FirewallRules: [{4906010C-352A-4D05-A142-BF82CD810DF5}] => (Allow) D:\Users\rkujawiak\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe FirewallRules: [TCP Query User{220DF015-29E2-4D97-9405-BF8E6BE2F8F5}H:\heroes of might and magic iii - zlota edycja\h3blade.exe] => (Allow) H:\heroes of might and magic iii - zlota edycja\h3blade.exe FirewallRules: [UDP Query User{C62A542A-9996-44D8-B19C-39D3CEC98CEF}H:\heroes of might and magic iii - zlota edycja\h3blade.exe] => (Allow) H:\heroes of might and magic iii - zlota edycja\h3blade.exe FirewallRules: [TCP Query User{B1AEC0C3-775E-4EF1-9E87-8E84064E2591}H:\heroes of might and magic iii - zlota edycja\_hd3_data\heroes3.exe] => (Allow) H:\heroes of might and magic iii - zlota edycja\_hd3_data\heroes3.exe FirewallRules: [UDP Query User{CB3EB36C-7E50-46E8-AFD8-4933C60A0F0B}H:\heroes of might and magic iii - zlota edycja\_hd3_data\heroes3.exe] => (Allow) H:\heroes of might and magic iii - zlota edycja\_hd3_data\heroes3.exe FirewallRules: [TCP Query User{F35DC77A-F11F-4CBC-8093-4EC571B40311}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe FirewallRules: [UDP Query User{46D74F96-63D5-413A-9EC9-A50DE75686A8}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe FirewallRules: [TCP Query User{CB7B78C2-A774-47B9-8F5C-957692ABDD76}H:\wiedźmin 2\bin\witcher2.exe] => (Allow) H:\wiedźmin 2\bin\witcher2.exe FirewallRules: [UDP Query User{6284A4A0-D148-4A34-AF05-04C07BDD9E7D}H:\wiedźmin 2\bin\witcher2.exe] => (Allow) H:\wiedźmin 2\bin\witcher2.exe FirewallRules: [{0D4F00EF-437A-4216-A405-DF66A478F981}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [{D60F3763-0C07-482F-A519-09359EDC14E7}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [TCP Query User{16A8603D-4A19-4FC9-88C9-C41A5B7E5057}H:\heroes of might and magic iii - zlota edycja\heroes3 hd.exe] => (Allow) H:\heroes of might and magic iii - zlota edycja\heroes3 hd.exe FirewallRules: [UDP Query User{98A2B7E1-5172-4BA6-9943-0E136D0E83BE}H:\heroes of might and magic iii - zlota edycja\heroes3 hd.exe] => (Allow) H:\heroes of might and magic iii - zlota edycja\heroes3 hd.exe FirewallRules: [{23D2AAC5-138F-4135-AD19-7BDE16DA5E42}] => (Allow) H:\Might & Magic® X Legacy\Might and Magic X Legacy.exe FirewallRules: [{777B7A66-3DA6-49F9-87B9-945B0C5BF73F}] => (Allow) H:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{D5FE27F7-5DC1-4749-9CCC-B12CFB87B6D4}] => (Allow) H:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{7DA9CF0C-0006-430F-B747-46DCEFD59F82}] => (Allow) H:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{14924D27-DCE2-41CC-BD2A-CC79317CEDAC}] => (Allow) H:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{0C00AF10-247B-4BF4-B27A-72795A6C8132}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{6F279E72-74F9-439C-B348-4CE02A626114}] => (Allow) H:\Silent Hunter 5\sh5.exe FirewallRules: [{D468442B-5E43-4DF3-87BD-4FE5F3B5F3C2}] => (Allow) H:\Silent Hunter 5\sh5.exe FirewallRules: [{CC621DF0-3CE1-4094-832B-BB95F8C5CE1D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{1CBFB55C-8F53-4777-BA76-AF93B6D143A2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{5077BD62-8EEF-4707-9684-7E190F4A2109}] => (Allow) LPort=1688 ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: ATAPI iHAS124 B ATA Device Description: Stacja dysków CD-ROM Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318} Manufacturer: (Standardowe stacje dysków CD-ROM) Service: cdrom Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (09/16/2015 07:27:58 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/16/2015 12:15:13 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: 80004005 Error: (09/15/2015 07:10:11 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/15/2015 07:07:18 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/15/2015 06:58:11 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/15/2015 06:48:11 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/15/2015 01:37:33 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/15/2015 01:34:51 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: Service_KMS.exe, wersja: 15.0.0.1, sygnatura czasowa: 0x54cfe390 Nazwa modułu powodującego błąd: KERNELBASE.dll, wersja: 6.1.7601.18939, sygnatura czasowa: 0x55b02e7b Kod wyjątku: 0xe0434352 Przesunięcie błędu: 0x000000000000b16d Identyfikator procesu powodującego błąd: 0x8fc Godzina uruchomienia aplikacji powodującej błąd: 0xService_KMS.exe0 Ścieżka aplikacji powodującej błąd: Service_KMS.exe1 Ścieżka modułu powodującego błąd: Service_KMS.exe2 Identyfikator raportu: Service_KMS.exe3 Error: (09/15/2015 01:34:50 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Aplikacja: Service_KMS.exe Wersja architektury: v4.0.30319 Opis: proces został przerwany z powodu nieobsłużonego wyjątku. Informacje o wyjątku: System.InvalidOperationException Stos: w System.Net.Sockets.TcpClient.GetStream() w Service_KMS.KMSEmulator.TCPServer.ᜂ(System.IAsyncResult) w System.Net.LazyAsyncResult.Complete(IntPtr) w System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) w System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) w System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) w System.Net.ContextAwareResult.Complete(IntPtr) w System.Net.Sockets.BaseOverlappedAsyncResult.CompletionPortCallback(UInt32, UInt32, System.Threading.NativeOverlapped*) w System.Threading._IOCompletionCallback.PerformIOCompletionCallback(UInt32, UInt32, System.Threading.NativeOverlapped*) Error: (09/15/2015 10:37:10 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Dziennik System: ============= Error: (09/16/2015 07:27:27 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: {995C996E-D918-4A8C-A302-45719A6F4EA7} Error: (09/16/2015 07:26:02 AM) (Source: volmgr) (EventID: 46) (User: ) Description: Inicjowanie zrzutu awaryjnego nie powiodło się! Error: (09/15/2015 07:18:32 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla FailureCommand nie powiodło się i wystąpił następujący błąd: %%5. Error: (09/15/2015 07:18:31 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla Start nie powiodło się i wystąpił następujący błąd: %%5. Error: (09/15/2015 07:08:50 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla Start nie powiodło się i wystąpił następujący błąd: %%5. Error: (09/15/2015 07:08:50 PM) (Source: Microsoft Antimalware) (EventID: 3002) (User: ) Description: Funkcja ochrony w czasie rzeczywistym produktu %%860 napotkała błąd i jej uruchomienie nie powiodło się. Funkcja: %%886 Kod błędu: 0x80070005 Opis błędu: Odmowa dostępu. Przyczyna: %%892 Error: (09/15/2015 07:08:13 PM) (Source: volmgr) (EventID: 46) (User: ) Description: Inicjowanie zrzutu awaryjnego nie powiodło się! Error: (09/15/2015 07:05:29 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: AFD AsIO CSC DfsC discache MpFilter NetBIOS NetBT nsiproxy Psched rdbss spldr tdx Wanarpv6 WfpLwf Error: (09/15/2015 07:05:28 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Rozpoznawanie lokalizacji w sieci zależy od usługi Usługa interfejsu magazynu sieciowego, której nie można uruchomić z powodu następującego błędu: %%1068 Error: (09/15/2015 07:05:28 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Microsoft Network Inspection System zależy od usługi Microsoft Malware Protection Driver, której nie można uruchomić z powodu następującego błędu: %%31 ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-4690 CPU @ 3.50GHz Procent pamięci w użyciu: 19% Całkowita pamięć fizyczna: 8132.45 MB Dostępna pamięć fizyczna: 6575.61 MB Całkowita pamięć wirtualna: 8130.66 MB Dostępna pamięć wirtualna: 6586.04 MB ==================== Dyski ================================ Drive c: (System) (Fixed) (Total:98.41 GB) (Free:75.51 GB) NTFS Drive d: (Dane) (Fixed) (Total:206.05 GB) (Free:166.14 GB) NTFS Drive e: (Filmy) (Fixed) (Total:313.48 GB) (Free:124.43 GB) NTFS Drive f: (Muzyka) (Fixed) (Total:313.47 GB) (Free:216.5 GB) NTFS Drive g: (Inne) (Fixed) (Total:465.76 GB) (Free:142.99 GB) NTFS Drive h: (Gry) (Fixed) (Total:465.76 GB) (Free:265.47 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 1FD596A8) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=98.4 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=206.1 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=627 GB) - (Type=OF Extended) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 2BD2C32A) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (Size: 465.8 GB) (Disk ID: 1F292C09) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================