Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 21-08-2016 01 Uruchomiony przez Szymek (22-08-2016 15:07:08) Uruchomiony z C:\Users\Szymek\Desktop Windows 10 Pro (X64) (2016-06-28 09:25:46) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2393552708-3704467510-2414285713-500 - Administrator - Disabled) Gość (S-1-5-21-2393552708-3704467510-2414285713-501 - Limited - Enabled) Konto domyślne (S-1-5-21-2393552708-3704467510-2414285713-503 - Limited - Disabled) Szymek (S-1-5-21-2393552708-3704467510-2414285713-1001 - Administrator - Enabled) => C:\Users\Szymek ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Active Directory Authentication Library for SQL Server (Version: 13.0.1601.5 - Microsoft Corporation) Hidden Active Directory Authentication Library for SQL Server (x86) (x32 Version: 13.0.1601.5 - Microsoft Corporation) Hidden Aktualizacje NVIDIA 2.11.3.5 (Version: 2.11.3.5 - NVIDIA Corporation) Hidden Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{0E4C791E-B78E-477D-BD5A-CDD0985BA6EC}) (Version: 7.0.20622.1 - Microsoft Corporation) Awe (HKLM\...\Steam App 371450) (Version: - Badland Development Studio) Azure AD Authentication Connected Service (x32 Version: 14.0.25420 - Microsoft Corporation) Hidden AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden Bloody6 (HKLM-x32\...\Bloody3) (Version: 16.06.0011 - Bloody) Camtasia Studio 8 (HKLM-x32\...\{904AC0F0-F69E-467E-A719-B083940F608A}) (Version: 8.5.2.1999 - TechSmith Corporation) CCleaner (HKLM\...\CCleaner) (Version: 5.21 - Piriform) CPUID CPU-Z 1.76 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) Dead Bits (HKLM\...\Steam App 303390) (Version: - Microblast Games) Dotfuscator and Analytics Community Edition 5.22.0 (x32 Version: 5.22.0.3788 - PreEmptive Solutions) Hidden Entity Framework 6.1.3 Tools for Visual Studio 2015 Update 1 (HKLM-x32\...\{2A56910C-69C8-495D-8ED8-9080F0A14E58}) (Version: 14.0.41103.0 - Microsoft Corporation) Fingerbones (HKLM\...\Steam App 391270) (Version: - David Szymanski) GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team) Gtk# for .Net 2.12.26 (HKLM-x32\...\{BC25B808-A11C-4C9F-9C0A-6682E47AAB83}) (Version: 2.12.26 - Xamarin, Inc.) Heroes of Might & Magic III - HD Edition (HKLM\...\Steam App 297000) (Version: - DotEmu) Heroes of Might and Magic® II (HKLM-x32\...\InstallShield_{0BAA95A7-4303-11D6-851F-00C0CA129740}) (Version: 2.01.0000 - CD Projekt) Heroes of Might and Magic® II (x32 Version: 2.01.0000 - CD Projekt) Hidden HP Deskjet 2050 J510 series — podstawowe oprogramowanie urządzenia (HKLM\...\{64484376-A316-4328-84F8-DA98F4150A41}) (Version: 28.0.1313.0 - Hewlett-Packard Co.) IIS 10.0 Express (HKLM\...\{13FD7E30-D2F1-498D-ABC2-A4242DB6610E}) (Version: 10.0.1736 - Microsoft Corporation) IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version: - ) IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version: - ) Java 8 Update 101 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180101F0}) (Version: 8.0.1010.13 - Oracle Corporation) Java SE Development Kit 8 Update 91 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180910}) (Version: 8.0.910.15 - Oracle Corporation) KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - ) Left 4 Dead 2 (HKLM\...\Steam App 550) (Version: - Valve) Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation) Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation) Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{034547E9-D8FA-49E7-8B9C-4C9861FB9146}) (Version: 4.6.00127 - Microsoft Corporation) Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 SDK (Polski) (HKLM-x32\...\{A9D7F21C-C602-46C5-A080-4E44E440F249}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 z dodatkiem Targeting Pack (Polski) (HKLM-x32\...\{EDC3FD45-C9CE-483F-8013-D18C69EF3F85}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Version Manager (x64) 1.0.0-beta5 (HKLM\...\{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}) (Version: 1.0.10609.0 - Microsoft Corporation) Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.25420 - Microsoft Corporation) Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation) Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}) (Version: 11.0.2100.60 - Microsoft Corporation) Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation) Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2016 LocalDB (HKLM\...\{E359515A-92E6-4FA3-A2C9-E1BA02D8DE6E}) (Version: 13.0.1601.5 - Microsoft Corporation) Microsoft SQL Server 2016 Management Objects (HKLM-x32\...\{0F1C8E2F-199A-4946-B3BF-0906DACFD032}) (Version: 13.0.1601.5 - Microsoft Corporation) Microsoft SQL Server 2016 Management Objects (x64) (HKLM\...\{20EA85AA-2A1D-4F11-B09F-4BA2BF3C8989}) (Version: 13.0.1601.5 - Microsoft Corporation) Microsoft SQL Server 2016 T-SQL Language Service (HKLM-x32\...\{8BFDE775-C5B8-46DB-84EF-43FFC8A2E8AD}) (Version: 13.0.14500.10 - Microsoft Corporation) Microsoft SQL Server 2016 T-SQL ScriptDom (HKLM\...\{D091DE8C-EA0F-49AF-8DE3-BD6C79737C6E}) (Version: 13.0.1601.5 - Microsoft Corporation) Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation) Microsoft SQL Server Data Tools - enu (14.0.60519.0) (HKLM-x32\...\{4E27B0EF-7BAB-432A-AF3D-3FC8F3F7353F}) (Version: 14.0.60519.0 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2016 (HKLM\...\{96EB5054-C775-4BEF-B7B9-AA96A295EDCD}) (Version: 13.0.1601.5 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2016 (HKLM-x32\...\{84C23ECA-FE4D-494F-9247-3EBAD57E7F0C}) (Version: 13.0.1601.5 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation) Microsoft Visual Studio 2015 Tools for Unity (HKLM-x32\...\{D68E6605-F852-4936-AB64-04B80E0C85AD}) (Version: 2.2.0.0 - Microsoft Corporation) Microsoft Visual Studio Community 2015 with Updates (HKLM-x32\...\{79b486b9-c5f0-4096-a00c-8351f59587c2}) (Version: 14.0.25420.1 - Microsoft Corporation) Microsoft Web Deploy 3.6 (HKLM\...\{94E1227C-08A9-4962-B388-1F05D89AEA75}) (Version: 3.1238.1962 - Microsoft Corporation) MSBuild/NuGet Integration 14.0 (x86) (x32 Version: 14.0.25420 - Microsoft Corporation) Hidden Multi-Device Hybrid Apps using C# - Templates - ENU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.2 - Notepad++ Team) NVIDIA GeForce Experience 2.11.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.3.5 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 368.39 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 368.39 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.34.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.14 - NVIDIA Corporation) NVIDIA Sterownik graficzny 368.39 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.39 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.15.1 - OBS Project) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Origin (HKLM-x32\...\Origin) (Version: 9.12.1.43352 - Electronic Arts, Inc.) Panel sterowania NVIDIA 368.39 (Version: 368.39 - NVIDIA Corporation) Hidden PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden Prerequisites for SSDT (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation) Prerequisites for SSDT (HKLM-x32\...\{B7E94916-7AE6-4F7F-A377-7A410A42BA19}) (Version: 13.0.1601.5 - Microsoft Corporation) Python Tools 2.2.4 for Visual Studio 2015 (HKLM-x32\...\{59F0DA19-136B-4619-9E26-6AC1F4EE9BF7}) (Version: 2.2.40623.00 - Microsoft Corporation) Qt (HKU\S-1-5-21-2393552708-3704467510-2414285713-1001\...\{03985af9-3ff4-48e9-b20a-c4ae9ed9fdd0}) (Version: 2.0.3 - The Qt Company Ltd) Roll'd (HKLM\...\Steam App 461010) (Version: - MGP Studios) Roslyn Language Services - x86 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden Roslyn Language Services - x86 (x32 Version: 14.0.25422 - Microsoft Corporation) Hidden SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.11.3.5 - NVIDIA Corporation) Hidden Sid Meier's Civilization V (HKLM\...\Steam App 8930) (Version: - Firaxis Games) Sid Meier's Civilization V (HKLM-x32\...\steam app 8930) (Version: - 2K Games, Inc.) Starbound - Unstable (HKLM\...\Steam App 367540) (Version: - ) Starbound (HKLM\...\Steam App 211820) (Version: - ) Team Explorer for Microsoft Visual Studio 2015 Update 3 CTP1 (x32 Version: 14.98.25331 - Microsoft) Hidden Team Fortress 2 (HKLM\...\Steam App 440) (Version: - Valve) TeamSpeak 3 Client (HKU\S-1-5-21-2393552708-3704467510-2414285713-1001\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH) Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden The Sims 2: Ultimate Collection (HKLM-x32\...\{04450C18-F039-4B81-A621-70C3B0F523D5}) (Version: 1.0.0.0 - Electronic Arts) TypeScript Power Tool (x32 Version: 1.8.34.0 - Microsoft Corporation) Hidden TypeScript Tools for Microsoft Visual Studio 2015 (x32 Version: 1.8.35.0 - Microsoft Corporation) Hidden Unity (HKLM-x32\...\Unity) (Version: 5.3.5f1 - Unity Technologies ApS) Universal Adb Driver (HKLM-x32\...\{D9C4202E-6D51-4B06-A8F1-22316E654BCA}) (Version: 1.0.0 - ClockworkMod) Universal CRT Extension SDK (x32 Version: 10.0.10150 - Microsoft Corporation) Hidden Universal CRT Extension SDK (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden Universal CRT Headers Libraries and Sources (x32 Version: 10.0.10150 - Microsoft Corporation) Hidden Universal CRT Headers Libraries and Sources (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden Universal CRT Redistributable (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden Universal CRT Tools x64 (Version: 10.0.26624 - Microsoft Corporation) Hidden Universal CRT Tools x86 (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden Unturned (HKLM\...\Steam App 304930) (Version: - Smartly Dressed Games) Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation) Visual C++ for Linux Development (HKLM-x32\...\{0c29abf0-5a95-4c34-a587-df9abdaf6264}) (Version: 14.0.25333.0 - Microsoft Corporation) Visual Studio 2015 Update 3 (KB3022398) (HKLM-x32\...\{7a68448b-9cf2-4049-bd73-5875f1aa7ba2}) (Version: 14.0.25420 - Microsoft Corporation) VisualLightBox (HKLM-x32\...\VisualLightBox_is1) (Version: - ) VS Update core components (x32 Version: 14.0.25422 - Microsoft Corporation) Hidden vs_update3notification (x32 Version: 14.0.25422 - Microsoft Corporation) Hidden Waterfox 48.0.1 (x64 en-US) (HKLM\...\Waterfox 48.0.1 (x64 en-US)) (Version: 48.0.1 - Mozilla) WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden Wiggles (HKLM-x32\...\{654A4E00-D4E7-11D5-BA56-00C0CA129740}) (Version: - ) WinRAR 5.31 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) WinSCP 5.9 (HKLM-x32\...\winscp3_is1) (Version: 5.9 - Martin Prikryl) XAMPP (HKLM-x32\...\xampp) (Version: 7.0.8-0 - Bitnami) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {2151A1C5-BF44-4170-ABC0-C3B0B6FCFC3F} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [2015-08-12] (@ByELDI) Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW Task: {808CE240-E8AA-4A06-A8BD-62C98378AC20} - System32\Tasks\KuaiZip_Update => C:\Program Files\żěŃą\X86\Update.exe [2016-08-22] (Shanghai Guangle Network Technology Ltd ) <==== UWAGA Task: {87A9E945-3C67-4654-A798-4D9D838BF63D} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => E:\Visual Studio 2015\Common7\IDE\VSIXAutoUpdate.exe [2016-06-20] (Microsoft Corporation) Task: {B9864C72-8CB4-49BC-B3B7-82CEC020AC18} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-05] (Piriform Ltd) Task: {C046F846-F20B-49E2-9C87-92CAEFA0FE13} - System32\Tasks\UCBrowserUpdater => C:\Program Files (x86)\UCBrowser\Application\update_task.exe [2016-08-02] (UCWeb Inc) <==== UWAGA Task: {CC81AB9E-A19D-4A28-863E-28789856C344} - System32\Tasks\Ghurcult Controls => C:\Program Files (x86)\Zerlucult\GhrCntqerpertainaterjeck.exe Task: {F50549F2-6B64-4778-B0B9-2373DE001C2A} - System32\Tasks\{807F8D74-5FD5-40D6-9C09-296D5109C499} => pcalua.exe -a G:\DirectX\DXSetup.exe -d G:\DirectX (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\UCBrowserUpdater.job => C:\Program Files (x86)\UCBrowser\Application\update_task.exe <==== UWAGA ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) WMI_ActiveScriptEventConsumer_ASEC: <===== UWAGA ShortcutWithArgument: C:\Users\Szymek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Qt\5.7\MSVC 2015 (64-bit)\Qt 5.7 64-bit for Desktop (MSVC 2015).lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /A /Q /K E:\Qt\5.7\msvc2015_64\bin\qtenv2.bat ShortcutWithArgument: C:\Users\Szymek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Qt\5.7\MSVC 2015 (32-bit)\Qt 5.7 32-bit for Desktop (MSVC 2015).lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /A /Q /K E:\Qt\5.7\msvc2015\bin\qtenv2.bat ShortcutWithArgument: C:\Users\Szymek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Qt\5.6\MSVC 2015 (64-bit)\Qt 5.6 64-bit for Desktop (MSVC 2015).lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /A /Q /K E:\Qt\5.6\msvc2015_64\bin\qtenv2.bat ShortcutWithArgument: C:\Users\Szymek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> "hxxp://safesurfs.net/?ssid=1471867135&a=1078866&src=sh&uuid=3b72e03c-6e74-439a-bd5f-f9d297c18368" ==================== Załadowane moduły (filtrowane) ============== 2015-07-10 13:00 - 2015-07-10 13:00 - 00032768 _____ () C:\Windows\SYSTEM32\licensemanagerapi.dll 2015-07-10 12:59 - 2015-07-10 12:59 - 00403968 _____ () C:\Windows\System32\diagtrack_wininternal.dll 2016-08-11 15:04 - 2016-08-11 15:04 - 00121344 _____ () C:\Users\Szymek\AppData\Roaming\GowvePitpagf\Lurzem.exe 2016-08-11 15:04 - 2016-08-11 15:04 - 00170496 _____ () C:\Users\Szymek\AppData\Roaming\Geunfy\Geunfy.exe 2016-06-28 11:35 - 2016-06-03 09:22 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll 2016-06-28 11:35 - 2016-06-03 09:22 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll 2016-06-28 11:35 - 2016-06-03 09:22 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll 2016-06-28 11:35 - 2016-06-03 09:22 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll 2016-06-28 11:34 - 2016-06-03 05:59 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-08-11 15:44 - 2016-08-11 15:44 - 00170496 _____ () C:\Users\Szymek\AppData\Roaming\Hemkajdoa\Hemkajdoa.exe 2015-07-10 13:00 - 2015-07-10 13:00 - 02498296 _____ () C:\Windows\system32\CoreUIComponents.dll 2016-08-11 15:45 - 2016-08-11 15:45 - 00668672 _____ () C:\Users\Szymek\AppData\Roaming\Hemkajdoa\Soccartuwc.dll 2016-08-11 15:04 - 2016-08-11 15:04 - 00668672 _____ () C:\Users\Szymek\AppData\Roaming\Geunfy\Yjetipudl.dll 2016-06-28 11:35 - 2016-06-03 09:22 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll 2016-06-28 11:35 - 2016-06-03 09:22 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll 2016-06-28 11:35 - 2016-06-03 09:22 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll 2016-06-28 11:35 - 2016-06-03 09:22 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll 2016-06-28 11:35 - 2016-06-03 09:22 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll 2016-06-28 11:35 - 2016-06-03 09:22 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll 2015-07-10 13:00 - 2015-07-10 13:00 - 02498296 _____ () C:\Windows\System32\CoreUIComponents.dll 2016-08-11 15:04 - 2016-08-11 15:04 - 00112128 _____ () C:\Users\Szymek\AppData\Roaming\Geunfy\Yurejjaeb.exe 2016-08-11 15:04 - 2016-08-11 15:04 - 00143872 _____ () C:\Users\Szymek\AppData\Roaming\Geunfy\Yjetipudl.exe 2015-07-10 12:59 - 2015-07-10 12:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2015-07-10 12:59 - 2015-07-10 12:59 - 00642048 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\MtcUvc.dll 2016-08-11 15:44 - 2016-08-11 15:44 - 00112128 _____ () C:\Users\Szymek\AppData\Roaming\Hemkajdoa\Sejheb.exe 2016-08-11 15:45 - 2016-08-11 15:45 - 00143872 _____ () C:\Users\Szymek\AppData\Roaming\Hemkajdoa\Soccartuwc.exe 2015-07-10 13:00 - 2015-07-10 18:35 - 06579712 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2015-07-10 13:00 - 2015-07-10 18:35 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2015-07-10 13:00 - 2015-07-10 18:35 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-07-10 13:00 - 2015-07-10 18:35 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll 2016-08-11 15:04 - 2016-08-22 14:37 - 00218112 _____ () C:\Users\Szymek\AppData\Roaming\GowvePitpagf\Enisy.din 2016-08-11 15:04 - 2016-08-11 15:04 - 00258560 _____ () C:\Users\Szymek\AppData\Roaming\Geunfy\Yurejjaeb.dll 2016-08-11 15:45 - 2016-08-11 15:45 - 00258560 _____ () C:\Users\Szymek\AppData\Roaming\Hemkajdoa\Sejheb.dll 2016-06-28 11:35 - 2016-06-03 09:22 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2015-03-14 17:32 - 2016-08-09 01:27 - 00785920 _____ () D:\Steam\SDL2.dll 2015-03-14 17:32 - 2015-07-02 00:06 - 04962816 _____ () D:\Steam\v8.dll 2015-03-14 17:32 - 2016-08-16 22:54 - 02321184 _____ () D:\Steam\video.dll 2015-03-14 17:32 - 2016-01-27 09:49 - 02549760 _____ () D:\Steam\libavcodec-56.dll 2015-03-14 17:32 - 2016-01-27 09:49 - 00491008 _____ () D:\Steam\libavformat-56.dll 2015-03-14 17:32 - 2016-01-27 09:49 - 00332800 _____ () D:\Steam\libavresample-2.dll 2015-03-14 17:32 - 2016-01-27 09:49 - 00442880 _____ () D:\Steam\libavutil-54.dll 2015-03-14 17:32 - 2016-01-27 09:49 - 00485888 _____ () D:\Steam\libswscale-3.dll 2015-03-14 17:32 - 2015-07-02 00:06 - 01556992 _____ () D:\Steam\icui18n.dll 2015-03-14 17:32 - 2015-07-02 00:06 - 01187840 _____ () D:\Steam\icuuc.dll 2015-03-14 17:32 - 2016-08-16 22:54 - 00835360 _____ () D:\Steam\bin\chromehtml.DLL 2016-02-19 16:36 - 2016-07-05 00:17 - 00266560 _____ () D:\Steam\openvr_api.dll 2015-03-14 17:32 - 2016-08-04 22:56 - 49825056 _____ () D:\Steam\bin\libcef.dll 2015-03-14 17:32 - 2015-09-25 01:52 - 00119208 _____ () D:\Steam\winh264.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2015-07-10 13:04 - 2016-08-22 14:55 - 00001626 ____A C:\Windows\system32\Drivers\etc\hosts 107.178.255.88 www.google-analytics.com 107.178.255.88 www.statcounter.com 107.178.255.88 statcounter.com 107.178.255.88 ssl.google-analytics.com 107.178.255.88 partner.googleadservices.com 107.178.255.88 google-analytics.com 107.178.248.130 static.doubleclick.net 107.178.247.130 connect.facebook.net 107.178.255.88 www.google-analytics.com 107.178.255.88 www.statcounter.com 107.178.255.88 statcounter.com 107.178.255.88 ssl.google-analytics.com 107.178.255.88 partner.googleadservices.com 107.178.255.88 google-analytics.com 107.178.248.130 static.doubleclick.net 107.178.247.130 connect.facebook.net127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 www.czzsyzgm.com 127.0.0.1 www.czzsyzxl.com 127.0.0.1 union.baidu2019.com ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2393552708-3704467510-2414285713-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Szymek\Downloads\starbound.png DNS Servers: 104.197.191.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKU\S-1-5-21-2393552708-3704467510-2414285713-1001\...\StartupApproved\StartupFolder: => "TCYUCPCgXcXSeOHU.cmd.lnk" HKU\S-1-5-21-2393552708-3704467510-2414285713-1001\...\StartupApproved\StartupFolder: => "UBAOUJJKYhEceYCi.cmd.lnk" HKU\S-1-5-21-2393552708-3704467510-2414285713-1001\...\StartupApproved\Run: => "OneDrive" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{31D1D6C6-5ED5-4AC6-9397-07D15ACE1DF5}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{D61700F2-3044-4727-896B-972DE8DDDF74}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{35FDA8AF-D737-4AC5-B56A-7C4BC47A8C55}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{E45DAAFC-8A84-4392-89B0-2633A43A8962}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{D70A2392-15F3-4841-9518-3156278E11AF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{4AA62469-F1F9-4E46-BC8D-39EE326157F6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{08C214EB-8E7E-4559-B560-1087C6E4FE4D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{44775DEB-412C-4C51-A0FD-157D59D6747F}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{1A01770A-3ED7-4744-B862-00684A717739}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{4250D7CF-9B6C-43A0-AED1-784D49EB1985}] => (Allow) D:\Steam\bin\steamwebhelper.exe FirewallRules: [{B94BF4DF-FAE1-40E6-89A5-EC1F8AFE921F}] => (Allow) D:\Steam\bin\steamwebhelper.exe FirewallRules: [{F83D4A17-0862-4D03-8B66-D24F7A0695FA}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{60276E68-4894-43A5-B301-ED0C0F48F03A}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{C2508E56-5D65-4D62-9FD6-FDDB88B08D43}] => (Allow) D:\Steam\steamapps\common\HeroSiege\bin\Hero_Siege.exe FirewallRules: [{E888354A-4AA6-4386-A9BE-745925525D14}] => (Allow) D:\Steam\steamapps\common\HeroSiege\bin\Hero_Siege.exe FirewallRules: [{51288CAC-2AC5-4762-BEF7-93314C588C69}] => (Allow) C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\USBSetup.exe FirewallRules: [{3F67610E-4EFB-4C23-A1A3-1C9A424FA677}] => (Allow) E:\Visual Studio 2015\Common7\IDE\devenv.exe FirewallRules: [{99C08E2C-25BA-433A-BBB1-6D382DAF55B2}] => (Allow) D:\Steam\steamapps\common\Awe\Awe.exe FirewallRules: [{8DAB72AF-594F-4CCF-BBDC-4B515F41D11F}] => (Allow) D:\Steam\steamapps\common\Awe\Awe.exe FirewallRules: [{B3F441AC-4827-4FBD-B482-F3FE8A06A3AF}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio Tools for Unity\2015\UnityVS.OpenFile.exe FirewallRules: [{2E41F654-0571-4B19-9814-414AE31B3533}] => (Allow) E:\Visual Studio 2015\Common7\IDE\devenv.exe FirewallRules: [{8BC2DF27-7130-42E7-ACA9-CE5545A9E706}] => (Allow) E:\Unity3D\Editor\Unity.exe FirewallRules: [{CBDD33A7-C8B9-4770-91EF-BDA0BBF0C6BC}] => (Allow) D:\Steam\steamapps\common\Heroes of Might & Magic III - HD Edition\HOMM3Launcher.exe FirewallRules: [{BC180948-F8C9-419F-AEE8-C132DCCC3E54}] => (Allow) D:\Steam\steamapps\common\Heroes of Might & Magic III - HD Edition\HOMM3Launcher.exe FirewallRules: [TCP Query User{4E325CA2-4EA6-4495-83EC-E21C2606C330}D:\steam\steamapps\common\loadout\loadout.exe] => (Block) D:\steam\steamapps\common\loadout\loadout.exe FirewallRules: [UDP Query User{9841898B-AE69-4579-8E22-9670DFC05FD0}D:\steam\steamapps\common\loadout\loadout.exe] => (Block) D:\steam\steamapps\common\loadout\loadout.exe FirewallRules: [{D6AB440A-2CCB-4277-86A1-2E962E523F6B}] => (Allow) D:\Steam\steamapps\common\Unturned\Unturned.exe FirewallRules: [{51B51E7C-F67B-495F-B824-479939EA5031}] => (Allow) D:\Steam\steamapps\common\Unturned\Unturned.exe FirewallRules: [{F5B1F9F1-3BBA-4424-BB84-6E9C105805EF}] => (Allow) D:\Origin\Games\The Sims 2 Ultimate Collection\Fun with Pets\SP9\TSBin\Sims2EP9.exe FirewallRules: [{5BF85A8C-CD55-45D6-B977-012958A8D46A}] => (Allow) D:\Origin\Games\The Sims 2 Ultimate Collection\Fun with Pets\SP9\TSBin\Sims2EP9.exe FirewallRules: [{32814F2E-7992-4772-A77C-03951D0997AA}] => (Allow) D:\Steam\steamapps\common\Showerdad\SHOWERDAD.exe FirewallRules: [{31DBC3FC-EA03-4DD2-AAC1-ED22C6F8433C}] => (Allow) D:\Steam\steamapps\common\Showerdad\SHOWERDAD.exe FirewallRules: [{FCFAF6D7-FBBC-49C5-967A-84CE6635D8D7}] => (Allow) D:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe FirewallRules: [{39F16E96-9228-427B-B74D-A7B45E34C29B}] => (Allow) D:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe FirewallRules: [{8BC4B947-F910-4088-B37C-45437131B9AF}] => (Allow) D:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe FirewallRules: [{707346E8-1738-4B4B-B965-174BD752C327}] => (Allow) D:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe FirewallRules: [{22CA7AC0-F306-45D4-AD92-52BEA6E20D40}] => (Allow) D:\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe FirewallRules: [{C9BE4C64-8843-4326-8D90-904B43DD67DC}] => (Allow) D:\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe FirewallRules: [{2CBB050F-F99C-4825-A63B-648543502508}] => (Allow) D:\Steam\steamapps\common\Spooky's House of Jump Scares\SPOOKY.exe FirewallRules: [{76C1B9A1-CE29-4A1F-B4A6-9F268E8CCE9B}] => (Allow) D:\Steam\steamapps\common\Spooky's House of Jump Scares\SPOOKY.exe FirewallRules: [{E96156D0-0838-42FB-B630-7FF36D13617D}] => (Allow) D:\Steam\steamapps\common\Fingerbones\Fingerbones.exe FirewallRules: [{2E044AB2-1277-4690-9058-EC0AF42A614F}] => (Allow) D:\Steam\steamapps\common\Fingerbones\Fingerbones.exe FirewallRules: [{6DC95446-EFE3-41AA-959B-D0D1CCAFE38E}] => (Allow) D:\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{E899F5C3-2A31-449F-95CC-A251FDA544DE}] => (Allow) D:\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [TCP Query User{B43C8840-8E39-46EB-AED4-6E80ABA79F76}E:\xammp\apache\bin\httpd.exe] => (Allow) E:\xammp\apache\bin\httpd.exe FirewallRules: [UDP Query User{9ABC901D-53FA-49CD-8E0E-9F19D60974EA}E:\xammp\apache\bin\httpd.exe] => (Allow) E:\xammp\apache\bin\httpd.exe FirewallRules: [{ED9F4222-BBA8-4A20-B0D6-2C102EE447C3}] => (Allow) D:\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe FirewallRules: [{4E65CF79-FA23-41E7-970B-9542C344B53A}] => (Allow) D:\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe FirewallRules: [{4F5D141F-8AC6-475A-98D2-33578186BB1B}] => (Allow) D:\Steam\steamapps\common\Rolld\Rolld.exe FirewallRules: [{7693CE57-06E3-4D57-A7ED-8AD6575F9AB6}] => (Allow) D:\Steam\steamapps\common\Rolld\Rolld.exe FirewallRules: [{8FDAA521-1B49-4589-B934-9FB11777AD1B}] => (Allow) D:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{8427B656-EA51-4AC5-A480-6A1B914B2B23}] => (Allow) D:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{28DDA4A2-083A-4B94-8607-427DBE7E5B4F}] => (Allow) LPort=8317 FirewallRules: [{F0E3AA8A-C4F1-4586-92AF-AACF4E336230}] => (Allow) D:\Steam\steamapps\common\ShareX\ShareX_Launcher.exe FirewallRules: [{E34E6003-54FA-43A3-AD18-E987BB4F7C56}] => (Allow) D:\Steam\steamapps\common\ShareX\ShareX_Launcher.exe FirewallRules: [TCP Query User{DB4553AE-DCBF-465E-AF2D-1CB094746836}E:\xammp\mysql\bin\mysqld.exe] => (Allow) E:\xammp\mysql\bin\mysqld.exe FirewallRules: [UDP Query User{D361A910-2D8B-41E9-9F4E-456F3C343810}E:\xammp\mysql\bin\mysqld.exe] => (Allow) E:\xammp\mysql\bin\mysqld.exe FirewallRules: [{7AB55EC5-E545-45CC-8DAA-9A6DD7E03CEC}] => (Allow) D:\Steam\steamapps\common\Polarity\Polarity.exe FirewallRules: [{F71A6586-F703-45FB-BB4E-D314E37E400E}] => (Allow) D:\Steam\steamapps\common\Polarity\Polarity.exe FirewallRules: [{E96C04A9-8156-4FAB-BF2E-5C5DF8EAB665}] => (Allow) D:\Steam\steamapps\common\Timberman\Timberman.exe FirewallRules: [{1C124FAC-40DE-4AF6-9F62-A7CAEE791454}] => (Allow) D:\Steam\steamapps\common\Timberman\Timberman.exe FirewallRules: [{D8CD4EF3-2831-4E8D-B632-5D6F68331815}] => (Allow) D:\Steam\steamapps\common\Ratz Instagib\RatzInstagib.exe FirewallRules: [{A1A17AC4-A6E9-4CC8-9A6A-EB8252BB043C}] => (Allow) D:\Steam\steamapps\common\Ratz Instagib\RatzInstagib.exe FirewallRules: [TCP Query User{80E768B4-2753-4297-93F6-9847A50F8757}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_101\bin\javaw.exe FirewallRules: [UDP Query User{A8952773-E81E-4956-AA88-505A131D5A82}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_101\bin\javaw.exe FirewallRules: [{6E6F0B17-0F49-478F-B8F6-FFC7253CD1A6}] => (Allow) D:\Steam\steamapps\common\Dead Bits\Dead Bits.exe FirewallRules: [{016FE60D-8670-4369-83DF-B06B9D8D232E}] => (Allow) D:\Steam\steamapps\common\Dead Bits\Dead Bits.exe FirewallRules: [{A35F1A70-FA21-47E5-82FC-52B030605CB4}] => (Allow) D:\Steam\steamapps\common\Starbound\win64\starbound.exe FirewallRules: [{35191165-301D-4838-919D-A22ED1C81680}] => (Allow) D:\Steam\steamapps\common\Starbound\win64\starbound.exe FirewallRules: [{2005B2FF-8AAB-43FD-BBCA-F828E75DEFDC}] => (Allow) D:\Steam\steamapps\common\Starbound\win64\starbound_server.exe FirewallRules: [{AD2B66B1-F5AA-40EC-A3FC-BFC3A89B43CC}] => (Allow) D:\Steam\steamapps\common\Starbound\win64\starbound_server.exe FirewallRules: [{D6033778-DAD4-40C7-A02F-6949135B7EC2}] => (Allow) D:\Steam\steamapps\common\Starbound\win64\mod_uploader.exe FirewallRules: [{8102C4F9-567B-4997-9A2C-F23C34D2F5A1}] => (Allow) D:\Steam\steamapps\common\Starbound\win64\mod_uploader.exe FirewallRules: [{B53DDAB9-0FEE-42D9-AF6E-089D7F571E1E}] => (Allow) D:\Steam\steamapps\common\Starbound\win32\starbound.exe FirewallRules: [{E47EC95A-FB02-45CD-BAEB-535B563897CD}] => (Allow) D:\Steam\steamapps\common\Starbound\win32\starbound.exe FirewallRules: [TCP Query User{1AA25806-F6BF-4D89-BE58-87204752D46D}F:\visualstudioprojects\tcp chat\server\bin\release\server.vshost.exe] => (Allow) F:\visualstudioprojects\tcp chat\server\bin\release\server.vshost.exe FirewallRules: [UDP Query User{0DC78FFF-8617-4BFF-822F-C5FBB8C582C8}F:\visualstudioprojects\tcp chat\server\bin\release\server.vshost.exe] => (Allow) F:\visualstudioprojects\tcp chat\server\bin\release\server.vshost.exe FirewallRules: [TCP Query User{BAE3B5CE-7D87-484C-8932-A72FF43A664C}F:\visualstudioprojects\tcp chat\server\bin\release\server.exe] => (Allow) F:\visualstudioprojects\tcp chat\server\bin\release\server.exe FirewallRules: [UDP Query User{3E3B740D-DE2E-4CAA-AB51-5D439D674F90}F:\visualstudioprojects\tcp chat\server\bin\release\server.exe] => (Allow) F:\visualstudioprojects\tcp chat\server\bin\release\server.exe FirewallRules: [{44D10801-3F93-47D9-A6BF-0DCACF89E64C}] => (Allow) D:\Steam\steamapps\common\Starbound - Unstable\win64\starbound.exe FirewallRules: [{20C95371-926D-441D-AD78-669B273247C3}] => (Allow) D:\Steam\steamapps\common\Starbound - Unstable\win64\starbound.exe FirewallRules: [{44D4FC5A-767F-437A-AB8B-3B7C95ED1444}] => (Allow) D:\Steam\steamapps\common\Starbound - Unstable\win64\starbound_server.exe FirewallRules: [{214D0983-3DCE-4A5E-B5D5-EB967B760C2C}] => (Allow) D:\Steam\steamapps\common\Starbound - Unstable\win64\starbound_server.exe FirewallRules: [{66FF8CFC-AAD1-4991-BEAA-8C1C3AD11608}] => (Allow) D:\Steam\steamapps\common\Starbound - Unstable\win64\mod_uploader.exe FirewallRules: [{74F2DA15-608D-434C-A7A1-44DE414D7D07}] => (Allow) D:\Steam\steamapps\common\Starbound - Unstable\win64\mod_uploader.exe FirewallRules: [{73BA42C9-436C-4352-BB98-1DF24C5DD452}] => (Allow) D:\Steam\steamapps\common\Starbound - Unstable\win32\starbound.exe FirewallRules: [{343967CF-8E47-450D-985D-4917C1C57DFF}] => (Allow) D:\Steam\steamapps\common\Starbound - Unstable\win32\starbound.exe FirewallRules: [{E9A3B34F-14A5-466E-B08F-0B84C9088EBE}] => (Allow) D:\Steam\steamapps\common\Construct2\Construct2.exe FirewallRules: [{48BD66C2-E0A8-401B-B0C8-4DB47A5ABB6B}] => (Allow) D:\Steam\steamapps\common\Construct2\Construct2.exe FirewallRules: [{8F6F2277-DE3C-48DA-B396-76D87D55879E}] => (Allow) D:\Steam\steamapps\common\Burgers\Burgers.exe FirewallRules: [{5E05ACF1-15B7-4784-A076-AAE8A64E076F}] => (Allow) D:\Steam\steamapps\common\Burgers\Burgers.exe FirewallRules: [TCP Query User{3791CAC6-C6BB-4044-BAFF-0CB95DB3BDBE}E:\wiggles\wiggles.exe] => (Allow) E:\wiggles\wiggles.exe FirewallRules: [UDP Query User{3DDF0C37-538F-44FB-AFD5-9C6BEBCA1D1D}E:\wiggles\wiggles.exe] => (Allow) E:\wiggles\wiggles.exe FirewallRules: [{FAADB79E-CF46-4558-B7D7-0DB84AD1B968}] => (Allow) E:\Waterfox\waterfox.exe FirewallRules: [{60E41A78-028F-493E-8D6D-3FA03BDD0BB1}] => (Allow) E:\Waterfox\waterfox.exe FirewallRules: [{7D710421-C409-483E-B23E-5744BE87C8CF}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe FirewallRules: [{E2C33170-E39C-4958-9B0A-428A638BF088}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe FirewallRules: [{2F1CF8B5-4234-43AB-9BDF-AED57517601D}] => (Allow) C:\Program Files (x86)\GreatMaker\MaohaWiFi\MaohaWifiSvr.exe ==================== Punkty Przywracania systemu ========================= 06-08-2016 13:51:06 Visual C++ for Linux Development 15-08-2016 11:22:27 Zainstalowany program DirectX 15-08-2016 11:22:56 Instalator modułów systemu Windows 20-08-2016 17:07:00 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 22-08-2016 11:13:58 Microsoft Visual Studio Community 2015 with Updates ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (08/22/2016 02:53:02 PM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: Nie można zainicjować indeksu. Szczegóły: Nie można odnaleźć określonego obiektu. Określ nazwę istniejącego obiektu. (HRESULT : 0x80040d06) (0x80040d06) Error: (08/22/2016 02:53:02 PM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: Nie można zainicjować aplikacji. Kontekst: aplikacja Windows Szczegóły: Nie można odnaleźć określonego obiektu. Określ nazwę istniejącego obiektu. (HRESULT : 0x80040d06) (0x80040d06) Error: (08/22/2016 02:53:02 PM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: Nie można zainicjować obiektu programu zbierającego. Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Nie można odnaleźć określonego obiektu. Określ nazwę istniejącego obiektu. (HRESULT : 0x80040d06) (0x80040d06) Error: (08/22/2016 02:53:02 PM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Nie można zainicjować wtyczki w . Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Nie można odnaleźć określonego obiektu. Określ nazwę istniejącego obiektu. (HRESULT : 0x80040d06) (0x80040d06) Error: (08/22/2016 02:53:01 PM) (Source: Windows Search Service) (EventID: 3057) (User: ) Description: Nie można zainicjować menedżera wtyczek . Kontekst: aplikacja Windows Szczegóły: (HRESULT : 0x8e5e0210) (0x8e5e0210) Error: (08/22/2016 02:53:01 PM) (Source: Windows Search Service) (EventID: 7042) (User: ) Description: Usługa Windows Search jest zatrzymywana, ponieważ wystąpił problem z indeksatorem: The catalog is corrupt. Szczegóły: Wykaz indeksów zawartości jest uszkodzony. 0xc0041801 (0xc0041801) Error: (08/22/2016 02:52:47 PM) (Source: Windows Search Service) (EventID: 7040) (User: ) Description: Usługa wyszukiwania wykryła uszkodzone pliki danych w indeksie {id=4810 - base\appmodel\search\search\ytrip\common\util\jetutil.cpp (203)}. Usługa podejmie próbę automatycznego rozwiązania tego problemu przez odbudowanie indeksu. Szczegóły: 0x8e5e0210 (0x8e5e0210) Error: (08/22/2016 02:52:47 PM) (Source: ESENT) (EventID: 455) (User: ) Description: SearchIndexer (3796) Windows: Wystąpił błąd -1811 (0xfffff8ed) podczas otwierania pliku dziennika C:\ProgramData\Microsoft\Search\Data\Applications\Windows\edb000C5.log. Error: (08/22/2016 02:52:27 PM) (Source: ESENT) (EventID: 454) (User: ) Description: CCleaner64 (6072) testing: Odzyskiwanie/przywracanie bazy danych nie powiodło się z powodu nieoczekiwanego błędu: -1216. Error: (08/22/2016 02:52:27 PM) (Source: ESENT) (EventID: 494) (User: ) Description: CCleaner64 (6072) testing: Odzyskiwanie bazy danych zakończyło się niepomyślnie z błędem -1216, ponieważ napotkano odwołania do bazy danych „C:\Users\Szymek\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat”, której już nie ma. Baza danych nie została doprowadzona do stanu Zamknięcie czyste, zanim została usunięta (możliwe też, że ją przeniesiono lub zmieniono jej nazwę). Aparat bazy danych nie pozwoli na dokończenie odzyskiwania w przypadku tego wystąpienia, dopóki brakująca baza danych nie zostanie przywrócona na miejsce. Jeśli baza danych faktycznie nie jest już dostępna ani wymagana, procedury dotyczące odzyskiwania sprawności po tym błędzie są dostępne w bazie wiedzy Microsoft Knowledge Base. Można też do nich dotrzeć, używając linku „więcej informacji” na dole tego komunikatu. Dziennik System: ============= Error: (08/22/2016 02:58:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Ghurcult Controls z powodu następującego błędu: %%2 = Nie można odnaleźć określonego pliku. Error: (08/22/2016 02:57:43 PM) (Source: DCOM) (EventID: 10016) (User: SZYMON-KOMPUTER) Description: domyślne ustawienia komputeraLokalnyAktywacja{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}SZYMON-KOMPUTERSzymekS-1-5-21-2393552708-3704467510-2414285713-1001LocalHost (użycie LRPC)Microsoft.Windows.Cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (08/22/2016 02:57:43 PM) (Source: DCOM) (EventID: 10016) (User: SZYMON-KOMPUTER) Description: domyślne ustawienia komputeraLokalnyAktywacja{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}SZYMON-KOMPUTERSzymekS-1-5-21-2393552708-3704467510-2414285713-1001LocalHost (użycie LRPC)Microsoft.Windows.Cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (08/22/2016 02:57:43 PM) (Source: DCOM) (EventID: 10016) (User: SZYMON-KOMPUTER) Description: domyślne ustawienia komputeraLokalnyAktywacja{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}SZYMON-KOMPUTERSzymekS-1-5-21-2393552708-3704467510-2414285713-1001LocalHost (użycie LRPC)Microsoft.Windows.Cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (08/22/2016 02:57:43 PM) (Source: DCOM) (EventID: 10016) (User: SZYMON-KOMPUTER) Description: domyślne ustawienia komputeraLokalnyAktywacja{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}SZYMON-KOMPUTERSzymekS-1-5-21-2393552708-3704467510-2414285713-1001LocalHost (użycie LRPC)Microsoft.Windows.Cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (08/22/2016 02:57:43 PM) (Source: DCOM) (EventID: 10016) (User: SZYMON-KOMPUTER) Description: domyślne ustawienia komputeraLokalnyAktywacja{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}SZYMON-KOMPUTERSzymekS-1-5-21-2393552708-3704467510-2414285713-1001LocalHost (użycie LRPC)Microsoft.Windows.Cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (08/22/2016 02:57:43 PM) (Source: DCOM) (EventID: 10016) (User: SZYMON-KOMPUTER) Description: domyślne ustawienia komputeraLokalnyAktywacja{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}SZYMON-KOMPUTERSzymekS-1-5-21-2393552708-3704467510-2414285713-1001LocalHost (użycie LRPC)Microsoft.Windows.Cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (08/22/2016 02:57:43 PM) (Source: DCOM) (EventID: 10016) (User: SZYMON-KOMPUTER) Description: domyślne ustawienia komputeraLokalnyAktywacja{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}SZYMON-KOMPUTERSzymekS-1-5-21-2393552708-3704467510-2414285713-1001LocalHost (użycie LRPC)Microsoft.Windows.Cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (08/22/2016 02:57:43 PM) (Source: DCOM) (EventID: 10016) (User: SZYMON-KOMPUTER) Description: domyślne ustawienia komputeraLokalnyAktywacja{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}SZYMON-KOMPUTERSzymekS-1-5-21-2393552708-3704467510-2414285713-1001LocalHost (użycie LRPC)Microsoft.Windows.Cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (08/22/2016 02:57:43 PM) (Source: DCOM) (EventID: 10016) (User: SZYMON-KOMPUTER) Description: domyślne ustawienia komputeraLokalnyAktywacja{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}SZYMON-KOMPUTERSzymekS-1-5-21-2393552708-3704467510-2414285713-1001LocalHost (użycie LRPC)Microsoft.Windows.Cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 ==================== Statystyki pamięci =========================== Procesor: Pentium(R) Dual-Core CPU E5200 @ 2.50GHz Procent pamięci w użyciu: 39% Całkowita pamięć fizyczna: 4095.24 MB Dostępna pamięć fizyczna: 2469.13 MB Całkowita pamięć wirtualna: 6399.24 MB Dostępna pamięć wirtualna: 4683.45 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:172.85 GB) (Free:136.57 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano odczytując BCD)] Drive d: (Steam) (Fixed) (Total:596.17 GB) (Free:387.59 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive e: (Programy) (Fixed) (Total:195.3 GB) (Free:176.81 GB) NTFS Drive f: (Inne) (Fixed) (Total:97.61 GB) (Free:85.16 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: FF4FFF4F) Partition 1: (Active) - (Size=172.8 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=292.9 GB) - (Type=OF Extended) ======================================================== Disk: 1 (Size: 596.2 GB) (Disk ID: 3514B4DF) Partition 1: (Active) - (Size=596.2 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================