Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:31-10-2015 Uruchomiony przez user (2015-11-02 14:22:59) Uruchomiony z C:\Users\user\Downloads Windows 7 Professional Service Pack 1 (X64) (2010-12-29 16:02:02) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2801442270-617576118-1268728334-500 - Administrator - Disabled) Gość (S-1-5-21-2801442270-617576118-1268728334-501 - Limited - Disabled) user (S-1-5-21-2801442270-617576118-1268728334-1000 - Administrator - Enabled) => C:\Users\user ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.21.0 - Mirillis) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.) Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.5.502.149 - Adobe Systems Incorporated) Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.257 - Adobe Systems Incorporated) Adobe Reader X (10.1.16) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.16 - Adobe Systems Incorporated) Advertising Center (x32 Version: 0.0.0.1 - Nero AG) Hidden ALLConverter PRO 1.0 (HKLM-x32\...\{9370105C-71BB-4FF9-A85B-36D79B95457A}_is1) (Version: - ALLCinema, Inc.) AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Archiwizator WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - ) Batman: Arkham City GOTY (HKLM-x32\...\Steam App 200260) (Version: - Rocksteady Studios) Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB) BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - ) CCleaner (HKLM\...\CCleaner) (Version: 5.00 - Piriform) Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) CorelDRAW Graphics Suite X4 - Capture (x32 Version: 14.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X4 - Content (x32 Version: 14.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X4 - Draw (x32 Version: 14.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X4 - Extra Content (x32 Version: 14.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X4 - Filters (x32 Version: 14.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X4 - FontNav (x32 Version: 14.1 - Corel Corporation) Hidden CorelDRAW Graphics SUite X4 - ICA (x32 Version: 14.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X4 - IPM (x32 Version: 14.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X4 - Lang BR (x32 Version: 14.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X4 - Lang CZ (x32 Version: 14.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X4 - Lang DE (x32 Version: 14.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X4 - Lang EN (x32 Version: 14.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X4 - Lang ES (x32 Version: 14.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X4 - Lang FR (x32 Version: 14.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X4 - Lang IT (x32 Version: 14.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X4 - Lang NL (x32 Version: 14.1 - Uw bedrijfsnaam) Hidden CorelDRAW Graphics Suite X4 - Lang PL (x32 Version: 14.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X4 - Lang SU (x32 Version: 14.1 - Yrityksen nimi) Hidden CorelDRAW Graphics Suite X4 - Lang SV (x32 Version: 14.1 - Ditt företagsnamn) Hidden CorelDRAW Graphics Suite X4 - PP (x32 Version: 14.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X4 - VBA (x32 Version: 14.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X4 (x32 Version: 14.1 - Corel Corporation) Hidden CorelDRAW(R) Graphics Suite X4 - Extra Content (HKLM-x32\...\_{80FDAE30-CDB6-4015-AFC7-86A762A5AD9B}) (Version: - Corel Corporation) CorelDRAW(R) Graphics Suite X4 - Windows Shell Extension (HKLM-x32\...\_{CE2DA11A-917F-4CF5-AB55-755EC115DD10}) (Version: - Corel Corporation) CorelDRAW(R) Graphics Suite X4 - Windows Shell Extension (x32 Version: 1.1 - Corel Corporation) Hidden CorelDRAW(R) Graphics Suite X4 (HKLM-x32\...\_{7F05E704-30A6-421A-97A7-8EEB1C7FF010}) (Version: - Corel Corporation) Counter-Strike (HKLM-x32\...\Steam App 10) (Version: - Valve) DayZ Commander (HKLM-x32\...\{7B2CA5E9-763C-4FCE-81EE-13E81ABFE908}) (Version: 0.92.115 - Dotjosh Studios) DayZLauncher version 0.0.0.7 (HKLM-x32\...\{E31045B4-9DB5-44DF-9EBD-BD4CFDE640FD}_is1) (Version: 0.0.0.7 - Maca134) DolbyFiles (x32 Version: 0.1 - Nero AG) Hidden Driver Sweeper wersja 3.2.0 (HKLM-x32\...\{5A67D2EA-FB70-4033-A6F3-606AD85B2015}_is1) (Version: 3.2.0 - Phyxion.net) Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD) EasySetPackage (HKLM-x32\...\{266725C1-716F-43AC-BBFB-4201131ED656}) (Version: 2.4 - LG Soft India) Europa Universalis III Złota Edycja (HKLM-x32\...\{8520505F-3734-4BF8-9DEC-ECBB8737C497}) (Version: 5.1b - Paradox Interactive) Europa Universalis IV (HKLM-x32\...\Steam App 236850) (Version: - Paradox Development Studio) EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc) Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.80 - Google Inc.) Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden HP Deskjet 2050 J510 series Badanie ulepszeń produktu (HKLM\...\{88FD4472-F950-4083-A6FA-A829AC785B04}) (Version: 20.0.771.0 - Hewlett-Packard Co.) HP Deskjet 2050 J510 series Podstawowe oprogramowanie urządzenia (HKLM\...\{D7716C7E-75F1-4C51-A2D5-C6A1E8311D53}) (Version: 20.0.771.0 - Hewlett-Packard Co.) HP Deskjet 2050 J510 series Pomoc (HKLM-x32\...\{7A3DF2E2-CF13-44FB-A93E-F71D5381DB3F}) (Version: 140.0.55.55 - Hewlett Packard) HP Update (HKLM-x32\...\{DE77FE3F-A33D-499A-87AD-5FC406617B40}) (Version: 5.002.003.003 - Hewlett-Packard) ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden iTunes (HKLM\...\{D227565A-0033-40AD-89BA-653A205CDC11}) (Version: 12.1.1.4 - Apple Inc.) Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217017FF}) (Version: 7.0.510 - Oracle) K-Lite Codec Pack 9.8.0 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.8.0 - ) LED Center version 7.5 (HKLM-x32\...\{AA2D3D77-61FC-4229-8E54-97CEEE7AB317}_is1) (Version: 7.5 - ) LedshowTW 2013 (HKLM-x32\...\{AFB46FFC-F996-4CC1-9957-129289C7E1C9}) (Version: 13.10.08.01 - ONBON) LedshowTW 2013 Simple (HKLM-x32\...\{8DC2FBFC-0F59-4734-81BC-9339A72BBE07}) (Version: 13.07.26.00 - ONBON) LightScribe System Software (HKLM-x32\...\{CC8E94A2-55C7-4460-953C-2A790180578C}) (Version: 1.18.8.1 - LightScribe) Logitech Gaming Software 8.57 (HKLM\...\Logitech Gaming Software) (Version: 8.57.145 - Logitech Inc.) Malwarebytes Anti-Malware wersja 1.70.0.1100 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.70.0.1100 - Malwarebytes Corporation) Menu Templates - Starter Kit (x32 Version: 9.4.2.0 - Nero AG) Hidden Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation) Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation) Microsoft Office Basic Edition 2003 (HKLM-x32\...\{91130415-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2801442270-617576118-1268728334-1000\...\OneDriveSetup.exe) (Version: 17.3.5951.0827 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Mortal Kombat Komplete Edition (HKLM-x32\...\Steam App 237110) (Version: - NetherRealm Studios) Movie Templates - Starter Kit (x32 Version: 9.4.2.0 - Nero AG) Hidden Mozilla Firefox 41.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 41.0.2 (x86 en-US)) (Version: 41.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.2.5765 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Nero 9 Essentials (HKLM-x32\...\{ae828375-29d5-46dd-9ab8-18950a0a6d86}) (Version: - Nero AG) Obsługa programów Apple (32-bitowa) (HKLM-x32\...\{447CDCE5-F555-429B-BFA6-642C3C6D684F}) (Version: 3.1.2 - Apple Inc.) Obsługa programów Apple (64-bitowa) (HKLM\...\{0DF7096B-715A-4233-8633-C7A16ED6D616}) (Version: 3.1.2 - Apple Inc.) Origin (HKLM-x32\...\Origin) (Version: 9.3.6.4639 - Electronic Arts, Inc.) Play withSIX (HKLM-x32\...\{D7F3EEAD-183C-47DE-BDC5-593539573F97}) (Version: 1.30.0476 - SIX Networks) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6194 - Realtek Semiconductor Corp.) Settlers IV - Złota Edycja (HKLM-x32\...\{A2422674-F3A7-46F2-8966-EC6B1FBD6EB3}) (Version: 1.0 - ) Skype Web Plugin (HKLM-x32\...\{8A9079EA-59DE-491F-937A-D421399B7762}) (Version: 7.6.0.295 - Skype Technologies S.A.) Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.) Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: - Bioware/EA) Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH) The Witcher 2 (HKLM-x32\...\{F0A209B7-7F85-4BDD-8F1F-B98EEAD9E04B}) (Version: 1.00.0000 - CD Projekt Red) The Witcher 2 Assassins of Kings version 1.0 (HKLM-x32\...\{3F5FA47E-B4DE-45B4-85E3-11CD5E4974A3}_is1) (Version: 1.0 - Atari) Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT) Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation) Xfire (HKLM-x32\...\Xfire) (Version: - ) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-2801442270-617576118-1268728334-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\user\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => Brak pliku CustomCLSID: HKU\S-1-5-21-2801442270-617576118-1268728334-1000_Classes\CLSID\{04419CEE-76E5-4487-B32E-68C0FD0C07E4}\InprocServer32 -> C:\Users\user\AppData\Local\SkypePlugin\7.6.0.295\GatewayActiveX-x64.dll (Skype Technologies S.A.) CustomCLSID: HKU\S-1-5-21-2801442270-617576118-1268728334-1000_Classes\CLSID\{4CEEAF57-0208-4CA4-A473-914C2D2FFC23}\InprocServer32 -> C:\Program Files (x86)\trademanager\AliIMX_64.dll (Alibaba software (Shanghai) Corporation.) CustomCLSID: HKU\S-1-5-21-2801442270-617576118-1268728334-1000_Classes\CLSID\{5D09DD40-CDC4-4C56-B615-0D1E3B357C2B}\InprocServer32 -> C:\Program Files (x86)\trademanager\AliIMX_64.dll (Alibaba software (Shanghai) Corporation.) CustomCLSID: HKU\S-1-5-21-2801442270-617576118-1268728334-1000_Classes\CLSID\{82C13295-2E78-45DD-9973-21F20A7D6F5C}\localserver32 -> C:\Users\user\AppData\Local\SkypePlugin\7.6.0.295\GatewayVersion-x64.exe (Skype Technologies S.A.) CustomCLSID: HKU\S-1-5-21-2801442270-617576118-1268728334-1000_Classes\CLSID\{CBF9CD8C-2714-4F36-B76A-43E6C7547BC2}\localserver32 -> C:\Users\user\AppData\Local\SkypePlugin\7.6.0.295\EdgeCalling.exe (Skype Technologies S.A.) CustomCLSID: HKU\S-1-5-21-2801442270-617576118-1268728334-1000_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\user\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll => Brak pliku ==================== Punkty Przywracania systemu ========================= 15-10-2015 07:00:15 Zaplanowany punkt kontrolny 23-10-2015 07:58:52 Zaplanowany punkt kontrolny 30-10-2015 13:46:03 Zaplanowany punkt kontrolny ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0622AF78-ACE7-4A95-BE85-7869F9179CA3} - System32\Tasks\{1637B148-C28D-4152-A2EF-39A6958E2DBB} => pcalua.exe -a C:\Users\user\AppData\Roaming\sweet-page\UninstallManager.exe -c -ptid=cor Task: {094A6671-29A7-4F63-AB25-1117388E65B5} - System32\Tasks\HPCustParticipation HP Deskjet 2050 J510 series => C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe [2010-02-02] (Hewlett-Packard Co.) Task: {0BE79683-7048-4EC1-8608-FF696FE3D297} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-11-21] (Piriform Ltd) Task: {0FB7767F-E8A8-4272-A8C6-2DAAC291CD8F} - System32\Tasks\Bluetooth Driver Installer => C:\Users\user\AppData\Local\Temp\is-DICJV.tmp\prsetup.exe <==== UWAGA Task: {1CC8EAF4-63EC-4D09-9BD8-C37873E43D2F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-14] (Adobe Systems Incorporated) Task: {2F73A655-D0CD-4EFF-B94A-48C217BC0CFC} - System32\Tasks\{0F6FBBFD-CA66-4932-AA2A-C95445E8D65D} => pcalua.exe -a C:\PROGRA~2\NEOSTR~1\INSTAL~1.EXE -d C:\PROGRA~2\NEOSTR~1 -c ListeModeAcces=ADSLUSB,DriverADSLUSB=SAGEMFAST800USB Task: {4359FADE-6554-445C-B55D-ADBFF375FA38} - System32\Tasks\{3FD652C8-0550-4621-ADED-F1594D03438A} => pcalua.exe -a C:\Users\user\AppData\Local\Temp\Temp1_pbsetup.zip\pbsetup.exe Task: {5220FD5B-0ED1-432B-8592-44FCA73DC4A4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {5D4AF378-D433-43E6-B4FB-8356B4873FD3} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2801442270-617576118-1268728334-1000Core => C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-12-16] (Facebook Inc.) Task: {78B42636-DD0F-4027-9A3D-1B74F6A6A92D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated) Task: {82CE6CE9-2019-4591-A22E-06AF9A72174C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {9401703B-AF15-4383-AAEB-EB415AD35F69} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {96D22DB1-2AF3-44F9-9B95-9727D2508A34} - System32\Tasks\{20907C6A-E91E-44C5-8FA1-9866AB1E7512} => pcalua.exe -a C:\Users\user\AppData\Local\Temp\Temp1_pbsetup(1).zip\pbsetup.exe Task: {9AEDD8CA-CA74-4D26-B02F-A5DB5816AC04} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2801442270-617576118-1268728334-1000UA => C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-12-16] (Facebook Inc.) Task: {C8009093-7B10-4B29-8928-639C68C26043} - System32\Tasks\{7C88FE9E-D567-424D-87EF-900FFC98B4A4} => Chrome.exe hxxp://ui.skype.com/ui/0/7.2.0.103/pl/abandoninstall?source=lightinstaller&page=tsBing Task: {D12D064A-721D-4536-AAFE-4427A8DAA7D4} - System32\Tasks\elbyExecuteWithUAC => D:\Program Files (x86)\VirtualCloneDrive\ExecuteWithUAC.exe Task: {D3B9F7A2-57B0-49A9-9AEC-E921197A1B4B} - System32\Tasks\{6C801717-2CD4-4BB5-A327-5D364EB83B0B} => d:\Program Files (x86)\CorelDRAW Graphics Suite X4\Programs\CorelDRW.exe Task: {E98E411D-60D0-48B5-8429-CEA8F46C5E7C} - System32\Tasks\{215362C5-7A22-492D-BAC0-E0E51DABD6D7} => C:\gjetea\gta_sa.exe Task: {FC290702-7387-49A7-835A-B613BF6246BF} - System32\Tasks\{A867C7D9-6898-4670-83F5-2CCEA6B32EB4} => Chrome.exe hxxp://ui.skype.com/ui/0/6.11.59.102/pl/abandoninstall?page=tsBing (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2801442270-617576118-1268728334-1000Core.job => C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2801442270-617576118-1268728334-1000UA.job => C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Załadowane moduły (filtrowane) ============== 2015-02-13 04:20 - 2015-02-13 04:20 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-02-13 04:20 - 2015-02-13 04:20 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2014-12-31 18:49 - 2014-12-31 18:49 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2014-09-18 08:23 - 2014-09-18 08:23 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll 2014-10-14 19:51 - 2014-10-14 19:51 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll 2014-09-18 08:23 - 2014-09-18 08:23 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll 2014-10-14 19:51 - 2014-10-14 19:51 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll 2014-11-22 01:03 - 2014-11-22 01:03 - 00047104 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll 2015-10-24 14:41 - 2015-10-20 15:08 - 01532744 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\libglesv2.dll 2015-10-24 14:41 - 2015-10-20 15:08 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\libegl.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData\TEMP:05E9FFE5 AlternateDataStreams: C:\Users\user\upomnienie.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\user\upomnienie.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\user\Desktop\bilet 22 września - 22 października.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\user\Desktop\bilet 22 września - 22 października.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\user\Desktop\Chiang Mai to Hangzhou.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\user\Desktop\Chiang Mai to Hangzhou.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\user\Desktop\chusty góralskie.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\user\Desktop\chusty góralskie.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\user\Desktop\hotel w Keqiao.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\user\Desktop\hotel w Keqiao.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\user\Desktop\mniej.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\user\Desktop\mniej.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\user\Desktop\nowy hotel trzecia stacja od Pudomg.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\user\Desktop\nowy hotel trzecia stacja od Pudomg.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\user\Desktop\stawki rynkowe.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\user\Desktop\stawki rynkowe.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\user\Desktop\upoważnienie z pieczątką.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\user\Desktop\upoważnienie z pieczątką.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2801442270-617576118-1268728334-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\user\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Zapora systemu Windows [funkcja wyłączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: BEService => 3 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: McComponentHostService => 3 MSCONFIG\Services: Nero BackItUp Scheduler 4.0 => 2 MSCONFIG\Services: SkypeUpdate => 2 MSCONFIG\Services: Steam Client Service => 3 MSCONFIG\startupreg: aliim => C:\Program Files (x86)\trademanager\aliim.exe MSCONFIG\startupreg: DAEMON Tools Lite => "D:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: EADM => "D:\Origin\Origin.exe" -AutoStart MSCONFIG\startupreg: Facebook Update => "C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver MSCONFIG\startupreg: Gadu-Gadu 10 => "C:\Program Files (x86)\Gadu-Gadu 10\gg.exe" MSCONFIG\startupreg: GG => "C:\Users\user\AppData\Local\GG\Application\gghub.exe" MSCONFIG\startupreg: Green Christmas Tree => C:\Users\user\AppData\Local\Opera\Opera\temporary_downloads\ChristmasTree.exe MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [TCP Query User{D78DDF23-9385-4772-A621-6722C4B6DFB4}D:\steam\steamapps\common\arma 2 operation arrowhead\arma2oa.exe] => (Allow) D:\steam\steamapps\common\arma 2 operation arrowhead\arma2oa.exe FirewallRules: [UDP Query User{52747332-CF0E-46A0-9DF6-2A28A294600D}D:\steam\steamapps\common\arma 2 operation arrowhead\arma2oa.exe] => (Allow) D:\steam\steamapps\common\arma 2 operation arrowhead\arma2oa.exe FirewallRules: [TCP Query User{EA512F1A-DA69-4D88-B270-34BD2656597C}D:\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe] => (Allow) D:\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe FirewallRules: [UDP Query User{CB1CC4A9-7E12-4DDF-AA03-215CA0136963}D:\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe] => (Allow) D:\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe FirewallRules: [{C7ED6CCE-1A52-4345-9109-771D4C794B1E}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{FF521C36-2E5A-4D48-8CCF-583525D342B6}C:\program files (x86)\xfire\xfire.exe] => (Allow) C:\program files (x86)\xfire\xfire.exe FirewallRules: [UDP Query User{D6EE5874-CF43-4241-A95C-832BDECBC63A}C:\program files (x86)\xfire\xfire.exe] => (Allow) C:\program files (x86)\xfire\xfire.exe FirewallRules: [TCP Query User{8692B6EE-BEFB-43A4-BFC1-F7413360A519}D:\mohaa\mohaa\mohaa.exe] => (Allow) D:\mohaa\mohaa\mohaa.exe FirewallRules: [UDP Query User{29118067-B346-4C5F-8061-CAFA077936F7}D:\mohaa\mohaa\mohaa.exe] => (Allow) D:\mohaa\mohaa\mohaa.exe FirewallRules: [TCP Query User{E8DFB93F-FF15-43A8-8B99-7E6BC4607153}D:\program files (x86)\the witcher 2 assassins of kings\bin\witcher2.exe] => (Block) D:\program files (x86)\the witcher 2 assassins of kings\bin\witcher2.exe FirewallRules: [UDP Query User{423CFE68-F554-484F-8902-8D8010060689}D:\program files (x86)\the witcher 2 assassins of kings\bin\witcher2.exe] => (Block) D:\program files (x86)\the witcher 2 assassins of kings\bin\witcher2.exe FirewallRules: [{EED973A9-AEA4-439C-91D3-05015B738A09}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{8BB7DFBA-F402-4CBF-A27C-165EA75882ED}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{644FE891-787C-452A-916D-D64515D42BC8}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{7938DB96-C34C-4CF6-B329-842BD32408E6}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{771FB13E-9ACC-4BC6-B419-9351BC27B93F}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{81EF22DB-670B-4253-BB2F-5E27598D1416}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{CA0BC92F-9BA5-4AD3-9195-DAC886B0F35B}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe FirewallRules: [{A3D18528-0FA4-40E1-966C-2E12799019B7}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe FirewallRules: [{F58BD3A2-463D-4B93-87A7-6A7346078D50}] => (Allow) D:\Program Files (x86)\Star Wars-The Old Republic\launcher.exe FirewallRules: [{ADFA7B18-23AF-46C2-8981-AB5FD3FF98C8}] => (Allow) D:\Program Files (x86)\Star Wars-The Old Republic\launcher.exe FirewallRules: [{3F316328-0689-49A0-B587-F2B86DF8EBD7}] => (Allow) D:\Program Files (x86)\Star Wars-The Old Republic\launcher.exe FirewallRules: [{AF29D9BD-385B-442E-954B-CF6E49F20EDC}] => (Allow) D:\Program Files (x86)\Star Wars-The Old Republic\launcher.exe FirewallRules: [{676D32DF-94F4-406D-A640-60D696C7CBF0}] => (Allow) C:\Users\user\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe FirewallRules: [{92C13D04-434B-460F-A04D-835C512747BE}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{E88A51E0-CC33-4C4E-ABC2-323B55BC9681}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{50A51A78-CA15-4B62-8FFB-5A7E80C95195}] => (Allow) E:\Steamek\SteamApps\common\Arma 2\arma2.exe FirewallRules: [{34949C8D-1089-4774-B51E-9C7398B945AB}] => (Allow) E:\Steamek\SteamApps\common\Arma 2\arma2.exe FirewallRules: [{0E2333E2-A25F-4ED7-8F11-BDF7834D11C7}] => (Allow) E:\Steamek\SteamApps\common\MortalKombat_KompleteEdition\DiscContentPC\MKKE.exe FirewallRules: [{C0147561-3FEB-44E3-88C2-18298D3343CC}] => (Allow) E:\Steamek\SteamApps\common\MortalKombat_KompleteEdition\DiscContentPC\MKKE.exe FirewallRules: [{E70F4D03-D97A-490B-A0B7-20BCFE597232}] => (Allow) E:\Steamek\SteamApps\common\MortalKombat_KompleteEdition\DiscContentPC\MKLauncher.exe FirewallRules: [{2A3D1535-6120-4D3F-AB75-2B744F2FBEDA}] => (Allow) E:\Steamek\SteamApps\common\MortalKombat_KompleteEdition\DiscContentPC\MKLauncher.exe FirewallRules: [{A4433A8E-B276-4C47-896F-F6F8D87FC11F}] => (Allow) E:\Steamek\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe FirewallRules: [{242226FD-B936-46A0-AC4E-5E8B0C3500F1}] => (Allow) E:\Steamek\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe FirewallRules: [{11588670-ACA7-4572-8B6F-6DEF0383CFB9}] => (Allow) E:\Steamek\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe FirewallRules: [{BA0966F9-2A0F-49F3-9FF0-150FFE827E49}] => (Allow) E:\Steamek\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe FirewallRules: [{3A542344-C7A7-4818-8D8B-A64E88DDD994}] => (Allow) E:\Steamek\SteamApps\common\Arma 2 Operation Arrowhead\Expansion\beta\Arma2OA.exe FirewallRules: [{1806112B-D11E-4ACA-908E-2D1014E1A535}] => (Allow) E:\Steamek\SteamApps\common\Arma 2 Operation Arrowhead\Expansion\beta\Arma2OA.exe FirewallRules: [{EE4EED15-525C-4311-934B-D8BA423B38C8}] => (Allow) E:\Steamek\Steam\Steam.exe FirewallRules: [{E7EF69DB-BE19-45F5-A1A4-0C4084346ECB}] => (Allow) E:\Steamek\Steam\Steam.exe FirewallRules: [{75D08840-52F1-479D-98A0-CB296A007B50}] => (Allow) E:\Steamek\Steam\bin\steamwebhelper.exe FirewallRules: [{F0E20C6C-6C3C-485F-8921-60B17C0D191F}] => (Allow) E:\Steamek\Steam\bin\steamwebhelper.exe FirewallRules: [{D3A420E9-C65B-4488-82DE-1AB53D99A704}] => (Allow) E:\Steamek\Steam\SteamApps\common\MortalKombat_KompleteEdition\DiscContentPC\MKKE.exe FirewallRules: [{6B57CD90-7DD2-44C1-80B7-4F5909EE6BD1}] => (Allow) E:\Steamek\Steam\SteamApps\common\MortalKombat_KompleteEdition\DiscContentPC\MKKE.exe FirewallRules: [{BCB74BD2-6F41-407B-A925-E9251A682831}] => (Allow) E:\Steamek\Steam\SteamApps\common\MortalKombat_KompleteEdition\DiscContentPC\MKLauncher.exe FirewallRules: [{E7E3B264-0A92-43AE-8FB9-E7B67BC0E225}] => (Allow) E:\Steamek\Steam\SteamApps\common\MortalKombat_KompleteEdition\DiscContentPC\MKLauncher.exe FirewallRules: [{15B6E5EB-93D3-4CF6-8B7F-5FBFFAEF7AD8}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe FirewallRules: [{695A11A2-E2D4-4CD0-9BCD-56DF608E0CE7}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe FirewallRules: [{995A27BF-8950-4F65-A946-A286B8BD0528}] => (Allow) E:\Steamek\Steam\SteamApps\common\Half-Life\hl.exe FirewallRules: [{F7D73F22-7888-4594-B09C-F5A4727C5242}] => (Allow) E:\Steamek\Steam\SteamApps\common\Half-Life\hl.exe FirewallRules: [{329EA32A-F30F-47E9-B572-28EB19B4A0CA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{4291A90D-201F-4551-B77C-6573884E3EEA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{6EFE6CB1-DBAB-4FFC-90FC-639A9461DFA8}] => (Allow) C:\Users\user\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe FirewallRules: [{84F765EB-AE99-4944-B381-4C1736E3FF33}] => (Allow) E:\Steamek\Steam\SteamApps\common\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe FirewallRules: [{EF8A7E97-2B56-4EFA-B4BC-A585B9684CC2}] => (Allow) E:\Steamek\Steam\SteamApps\common\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe FirewallRules: [{5E7AE551-10AB-4C15-8602-5691549691F4}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{4A5BB38F-49A5-41E3-9360-8832E1E68B39}] => (Allow) E:\Steamek\Steam\SteamApps\common\Europa Universalis IV\eu4.exe FirewallRules: [{D0E847D1-E6A0-4DF0-820D-DAAD17F55403}] => (Allow) E:\Steamek\Steam\SteamApps\common\Europa Universalis IV\eu4.exe FirewallRules: [{B338DF0F-BF08-4E1D-A808-6D2D90217175}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe FirewallRules: [{0866C51B-0FFB-4418-9994-E3CAF5908BB7}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe FirewallRules: [{15E358DE-A94A-48EB-87DD-7E3D64617765}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe FirewallRules: [{FFA888BB-E6E0-4DA4-A8EF-2C202A9665DD}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe FirewallRules: [{F9CE9F9F-DEED-423E-84A7-E96F50623FB2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: wafd_vt_1_10_0_20 Description: wafd_vt_1_10_0_20 Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: wafd_vt_1_10_0_20 Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Kontroler multimediów audio Description: Kontroler multimediów audio Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (10/28/2015 12:11:05 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: bf3.exe, wersja: 1.6.0.0, sygnatura czasowa: 0x511c9356 Nazwa modułu powodującego błąd: atidxx32.dll, wersja: 8.17.10.581, sygnatura czasowa: 0x546e9f8e Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0006808b Identyfikator procesu powodującego błąd: 0x744 Godzina uruchomienia aplikacji powodującej błąd: 0xbf3.exe0 Ścieżka aplikacji powodującej błąd: bf3.exe1 Ścieżka modułu powodującego błąd: bf3.exe2 Identyfikator raportu: bf3.exe3 Error: (10/28/2015 08:44:33 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: googleearth.exe, wersja: 7.1.5.1557, sygnatura czasowa: 0x555d17ea Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.18933, sygnatura czasowa: 0x55a69e20 Kod wyjątku: 0xc0000374 Przesunięcie błędu: 0x000ced0b Identyfikator procesu powodującego błąd: 0x984 Godzina uruchomienia aplikacji powodującej błąd: 0xgoogleearth.exe0 Ścieżka aplikacji powodującej błąd: googleearth.exe1 Ścieżka modułu powodującego błąd: googleearth.exe2 Identyfikator raportu: googleearth.exe3 Error: (09/21/2015 08:25:54 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: bf3.exe, wersja: 1.6.0.0, sygnatura czasowa: 0x511c9356 Nazwa modułu powodującego błąd: bf3.exe, wersja: 1.6.0.0, sygnatura czasowa: 0x511c9356 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0038e1a4 Identyfikator procesu powodującego błąd: 0xaa8 Godzina uruchomienia aplikacji powodującej błąd: 0xbf3.exe0 Ścieżka aplikacji powodującej błąd: bf3.exe1 Ścieżka modułu powodującego błąd: bf3.exe2 Identyfikator raportu: bf3.exe3 Error: (09/10/2015 08:40:09 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: GWXUX.exe, wersja: 6.3.9600.17923, sygnatura czasowa: 0x55945dbd Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.18933, sygnatura czasowa: 0x55a6a196 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000000000004ac04 Identyfikator procesu powodującego błąd: 0xcd4 Godzina uruchomienia aplikacji powodującej błąd: 0xGWXUX.exe0 Ścieżka aplikacji powodującej błąd: GWXUX.exe1 Ścieżka modułu powodującego błąd: GWXUX.exe2 Identyfikator raportu: GWXUX.exe3 Error: (09/10/2015 03:06:42 PM) (Source: Google Update) (EventID: 20) (User: user-Komputer) Description: Network Request Error. Error: 0x80072ee7. Http status code: 0. Url=https://www.facebook.com/omaha/update.php Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=, direct connection. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=, direct connection. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http s Error: (09/03/2015 06:30:22 PM) (Source: MsiInstaller) (EventID: 1023) (User: user-Komputer) Description: Produkt: Microsoft Office Basic Edition 2003 - nie można zainstalować aktualizacji 'Security Update for Word 2003 (KB2878303): WINWORD'. Kod błędu 1603. Dodatkowe informacje są dostępne w pliku dziennika C:\Users\user\AppData\Local\Temp\MSI2fbb2.LOG. Error: (09/03/2015 06:30:22 PM) (Source: MsiInstaller) (EventID: 10005) (User: user-Komputer) Description: Produkt: Microsoft Office Basic Edition 2003 -- Błąd 25090. Instalator pakietu Office napotkał problem związany z aparatem źródłowym pakietu Office, błąd systemu: -2147023836. Otwórz folder C:\Program Files (x86)\Microsoft Office\OFFICE11\1045\SETUP.CHM i znajdź tekst "Office Source Engine", aby uzyskać informacje dotyczące sposobu rozwiązania tego problemu. Error: (09/03/2015 06:30:18 PM) (Source: MsiInstaller) (EventID: 1023) (User: user-Komputer) Description: Produkt: Microsoft Office Basic Edition 2003 - nie można zainstalować aktualizacji 'Update for Outlook 2003 Junk E-mail Filter (KB2863822): OUTLFLTR'. Kod błędu 1603. Dodatkowe informacje są dostępne w pliku dziennika C:\Users\user\AppData\Local\Temp\MSI2e9b0.LOG. Error: (09/03/2015 06:30:18 PM) (Source: MsiInstaller) (EventID: 10005) (User: user-Komputer) Description: Produkt: Microsoft Office Basic Edition 2003 -- Błąd 25090. Instalator pakietu Office napotkał problem związany z aparatem źródłowym pakietu Office, błąd systemu: -2147023836. Otwórz folder C:\Program Files (x86)\Microsoft Office\OFFICE11\1045\SETUP.CHM i znajdź tekst "Office Source Engine", aby uzyskać informacje dotyczące sposobu rozwiązania tego problemu. Error: (09/03/2015 06:30:13 PM) (Source: MsiInstaller) (EventID: 1023) (User: user-Komputer) Description: Produkt: Microsoft Office Basic Edition 2003 - nie można zainstalować aktualizacji 'Security Update for Office 2003 (KB2817480): GDIPLUS'. Kod błędu 1603. Dodatkowe informacje są dostępne w pliku dziennika C:\Users\user\AppData\Local\Temp\MSI2d713.LOG. Dziennik System: ============= Error: (11/02/2015 06:00:23 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: wafd_vt_1_10_0_20 Error: (11/01/2015 03:00:29 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: wafd_vt_1_10_0_20 Error: (11/01/2015 06:05:45 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: wafd_vt_1_10_0_20 Error: (11/01/2015 05:47:15 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: wafd_vt_1_10_0_20 Error: (10/31/2015 08:13:36 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: wafd_vt_1_10_0_20 Error: (10/31/2015 05:55:00 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: wafd_vt_1_10_0_20 Error: (10/30/2015 05:40:39 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: wafd_vt_1_10_0_20 Error: (10/29/2015 04:58:33 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: wafd_vt_1_10_0_20 Error: (10/28/2015 06:20:11 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: wafd_vt_1_10_0_20 Error: (10/27/2015 05:48:05 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: wafd_vt_1_10_0_20 CodeIntegrity: =================================== Date: 2015-01-10 13:57:46.429 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\user\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-01-10 13:57:46.351 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\user\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-01-10 13:57:45.966 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-01-10 13:57:45.904 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-11-16 06:35:43.629 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-11-16 06:35:43.567 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-09-08 22:21:42.685 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\user\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-09-08 22:21:42.625 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\user\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-09-08 22:21:42.347 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-09-08 22:21:42.288 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM)2 Duo CPU E8500 @ 3.16GHz Procent pamięci w użyciu: 45% Całkowita pamięć fizyczna: 4094.3 MB Dostępna pamięć fizyczna: 2221.16 MB Całkowita pamięć wirtualna: 8186.81 MB Dostępna pamięć wirtualna: 5496.96 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:100 GB) (Free:48.65 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano odczytując BCD)] Drive d: () (Fixed) (Total:277.17 GB) (Free:110.41 GB) NTFS Drive e: () (Fixed) (Total:277.18 GB) (Free:184.45 GB) NTFS Drive f: () (Fixed) (Total:277.17 GB) (Free:262.64 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 000ABE57) Partition 1: (Active) - (Size=100 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=831.5 GB) - (Type=05) ==================== Koniec Addition.txt ============================