Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 07-12-2016 Uruchomiony przez Nesste (12-12-2016 16:02:32) Uruchomiony z C:\Users\Nesste\Desktop\Nowy folder (2) Windows 7 Home Premium Service Pack 1 (X64) (2013-12-31 19:31:41) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2816774600-1235983040-3463408076-500 - Administrator - Disabled) Gość (S-1-5-21-2816774600-1235983040-3463408076-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2816774600-1235983040-3463408076-1002 - Limited - Enabled) Nesste (S-1-5-21-2816774600-1235983040-3463408076-1000 - Administrator - Enabled) => C:\Users\Nesste ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-2816774600-1235983040-3463408076-1000\...\uTorrent) (Version: 3.4.9.42973 - BitTorrent Inc.) 3TB+Unlock B12.1102.1 (HKLM-x32\...\{17630FD1-B14A-4CA5-A627-B6B5F7DD41CF}) (Version: 1.00.0001 - GIGABYTE) ACP Application (Version: 2016.1025.1727.40 - Advanced Micro Devices, Inc.) Hidden Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 15.016.20045 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.) Adobe Flash Player 22 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 22.0.0.192 - Adobe Systems Incorporated) Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated) Adobe Flash Player 23 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated) Adobe Premiere Pro CS5.5 (HKLM-x32\...\{0497EAED-70DA-4BBE-BEB3-AF77FD8788EA}) (Version: 5.5 - Adobe Systems Incorporated) AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.60.1483, 27.02.2015 - AIMP DevTeam) AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.) Application Profiles (HKLM-x32\...\{3D35A74A-E3F5-37B8-43A1-0E0250572989}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.) AVG PC TuneUp 2015 (pl-PL) (x32 Version: 15.0.1001.604 - AVG Technologies) Hidden Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.0.0.0 - Electronic Arts) Battlefield™ Hardline (HKLM-x32\...\{CB4AC3DA-8CC1-4516-86DA-4078B57DB229}) (Version: 1.1.0.5 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB) Beat Up A Millionaire (HKLM-x32\...\Beat Up A Millionaire) (Version: - ) BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 2.4.43.6254 - BlueStack Systems, Inc.) Car Mechanic Simulator 2015 Performance (HKLM-x32\...\Car Mechanic Simulator 2015 Performance_is1) (Version: - ) Catalyst Control Center Next Localization BR (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHS (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHT (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CS (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DA (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DE (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization EL (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization ES (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FI (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FR (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization HU (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization IT (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization JA (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization KO (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NL (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NO (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization PL (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization RU (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization SV (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TH (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TR (Version: 2016.1025.1747.30190 - Advanced Micro Devices, Inc.) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.22 - Piriform) Chicken Invaders 3 - Revenge of the Yolk - Easter Edition (HKLM-x32\...\Chicken Invaders 3 - Revenge of the Yolk - Easter Edition3.63) (Version: 3.63 - InterAction studios) Chicken Invaders 4 The Ultimate Omelette version 1.00 (HKLM-x32\...\{AB56EEE6-D64A-43BB-B68F-D150FD26FFED}_is1) (Version: 1.00 - PreCracked Games) Chicken Invaders 5: Cluck of the Dark Side (HKU\S-1-5-21-2816774600-1235983040-3463408076-1000\...\Chicken Invaders 5: Cluck of the Dark Side) (Version: 1.0.0.0 - Alawar Entertainment Inc.) Chicken Invaders 5: Cluck of the Dark Side. Halloween Edition (HKU\S-1-5-21-2816774600-1235983040-3463408076-1000\...\Chicken Invaders 5: Cluck of the Dark Side. Halloween Edition) (Version: 1.0.0.0 - Alawar Entertainment Inc.) Chicken Invaders v1.30 (HKLM-x32\...\Chicken Invaders_is1) (Version: - InterAction studios) Chicken Invaders: Revenge of the Yolk (Christmas Edition) v3.20 (HKLM-x32\...\Chicken Invaders: Revenge of the Yolk (Christmas Edition)_is1) (Version: - InterAction studios) ChomikBox (HKLM-x32\...\{71736AF6-BA4B-4F3C-8496-C325B97869BA}) (Version: 2.0.8.1 - Chomikuj.pl) Diablo II (HKLM-x32\...\Diablo II) (Version: - ) DiRT 3 (x32 Version: 1.0.0001.130 - Codemasters) Hidden DiRT2 (HKLM-x32\...\{F0A421DB-030E-40DE-A3E6-EC340B1074BC}) (Version: 1.00.0000 - Codemasters) Drakensang Online (HKLM-x32\...\Drakensang Online) (Version: - ) Euro Truck Simulator 2 wersja 1.5.2.1s (HKLM-x32\...\Euro Truck Simulator 2_is1) (Version: 1.5.2.1s - SCS Software) Farming Simulator 15 (HKLM-x32\...\Farming Simulator 15_is1) (Version: - ) FreeMouseAutoClicker 3.8.4 (HKLM-x32\...\{292F00C5-25EF-4FBE-9873-13EF1F69DEED}_is1) (Version: - Advanced Mouse Auto Clicker ltd.) GENESIS HX66 Headset Driver (HKLM\...\C-Media CM108 Like Sound Driver) (Version: - ) GENESIS HX66 Headset Driver (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392006300}) (Version: 1.00.0001 - ) Genesis RX66 keyboard Driver (HKLM-x32\...\{68F65E0D-F894-4F5A-B9E9-F3CAB29FB59A}) (Version: 1.0 - Genesis) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden Gothic II - Noc Kruka (HKLM-x32\...\{6FB6D550-DDC4-4996-9CDF-91C34F0A4C4A}) (Version: 2.60.000 - JoWooD) Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games) Kerish Doctor 2016 (HKLM-x32\...\{EF70A54F-E09E-4570-8F21-C7674CDDB5B6}_is1) (Version: 4.60 - Kerish Products) Malwarebytes (wersja 3.0.4.1269) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.4.1269 - Malwarebytes) Mars War Logs version 1.00 (HKLM-x32\...\Mars War Logs_is1) (Version: 1.00 - ) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation) Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation) Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Monopoly (HKLM-x32\...\{20FA8AEE-E785-4F79-98EB-2067A8F395F4}) (Version: - ) Monopoly Here & Now (HKLM-x32\...\Monopoly Here & Now 1.07.110) (Version: 1.07.110 - KaPi Software) MSVC80_x64 (Version: 1.0.1.0 - Nokia) Hidden MSVC80_x86 (x32 Version: 1.0.1.0 - Nokia) Hidden MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation) Need For Speed - Porsche 2000 (HKLM-x32\...\Need For Speed - Porsche 2000) (Version: - ) Need for Speed Undeground 2 (x32 Version: 1.0 - Polish Games Group) Hidden Need for Speed Underground 2 (HKLM-x32\...\{909F8EBC-EC7F-48FF-0085-475D818F0F31}) (Version: - ) Need for Speed™ Most Wanted (HKLM-x32\...\{ADE91A13-434D-4229-00BC-182BAD607303}) (Version: - ) ON_OFF Charge B12.1025.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE) Pakiet sterowników systemu Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (01/27/2014 9.0.0000.00000) (HKLM\...\9CA77E2A8332A0824C54DA611BBE4CA24AB1F750) (Version: 01/27/2014 9.0.0000.00000 - Google, Inc.) PxMergeModule (x32 Version: 1.00.0000 - Your Company Name) Hidden Qualcomm USB Drivers For Windows (HKLM-x32\...\{D9FB7F91-9687-4B09-894D-072903CADEA4}) (Version: 1.0.14 - QUALCOMM Incorporated) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek) Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6650 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6767 - Realtek Semiconductor Corp.) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.0.5 - Rockstar Games) Snap.Do Engine (HKU\S-1-5-21-2816774600-1235983040-3463408076-1000\...\{7603a0f7-7dcc-491c-8faf-bf3f74d0ce5f}) (Version: 11.140.1.20709 - ReSoft Ltd.) <==== UWAGA Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.15.9.201506241347 - Sony Mobile Communications Inc.) Sony PC Companion 2.10.303 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.303 - Sony) Sony刷机驱动安装程序 version 1.2 (HKLM-x32\...\{DCF4A01A-4ED7-4E60-8D4B-4B3F59CF3DE0}_is1) (Version: 1.2 - 北京众晶锐驰科技有限公司) Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH) The Chronicles of Riddick - Assault on Dark Athena (HKLM-x32\...\{AF012B6B-87C9-4E9E-8DCA-AB4E99E3CA60}) (Version: 1.00.0000 - Atari) The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts) The Sims™ 3 Kariera (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.0.87 - Electronic Arts) The Sims™ 3 Nowoczesny apartament Akcesoria (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts) The Sims™ 3 Wymarzone Podróże (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.0.86 - Electronic Arts) The Sims™ 3 Zwierzaki (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts) The Witcher 3 - Wild Hunt (HKLM-x32\...\1495134320_is1) (Version: 2.0.0.51 - GOG.com) Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT) Uplay (HKLM-x32\...\Uplay) (Version: 26.1 - Ubisoft) VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden Visual C++ 8.0 Runtime Setup Package (HKLM-x32\...\{CCF6C317-6428-4407-B52F-DD11B266EDC4}) (Version: 1.0.0.0 - Your Company) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) Vulkan Run Time Libraries 1.0.17.0 (HKLM\...\VulkanRT1.0.17.0) (Version: 1.0.17.0 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0-2) (Version: 1.0.26.0 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.26.0 (Version: 1.0.26.0 - LunarG, Inc.) Hidden War Thunder Launcher 1.0.1.467 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment) Warblade (HKLM-x32\...\Warblade_is1) (Version: - EMV Software) Warblade v1.2Y.6 (HKLM-x32\...\Warblade v1.2Y.6_is1) (Version: v1.2Y.6 - Edgar M Vigdal, EMV Software) Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation) WinRAR 5.01 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) World of Tanks (HKU\S-1-5-21-2816774600-1235983040-3463408076-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0405163B-E7DE-47A8-BAE1-86B2EED7B1FC} - System32\Tasks\d6a959b4fd1aaa581ab458d9d73c08ff => Rundll32.exe "C:\Program Files (x86)\BRS\0oo5rc.dll",e62dc6c6547f46bda862da2d05af6862 <==== UWAGA Task: {07F9754D-6B7A-476D-9A08-2025D871A3FA} - System32\Tasks\{0FBF02A0-4F56-4538-B998-824415FAE0CF} => pcalua.exe -a "C:\Program Files (x86)\Digital Image Recovery\unins000.exe" Task: {0AF1FFB3-6726-40D4-A3AC-EC47EC3FB3CB} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2016-10-25] (Advanced Micro Devices, Inc.) Task: {0B825389-7CFF-4F71-9C7F-280C123F5173} - \Microsoft\Windows\Media Center\ReindexSearchRoot -> Brak pliku <==== UWAGA Task: {230F544D-4F40-445F-92C8-8357185B6100} - \Microsoft\Windows\Media Center\ActivateWindowsSearch -> Brak pliku <==== UWAGA Task: {3464778B-DFD9-48C5-978D-4A4D31AF89BE} - System32\Tasks\{0BB4F1DD-83B5-420B-844D-33969734B1B9} => E:\Gry\Mars War Logs\MarsWarLogs.exe [2013-04-26] (Spiders) Task: {346EDB4C-62B6-467D-8CC4-E0217ABB6FA5} - \Microsoft\Windows\Media Center\OCURActivate -> Brak pliku <==== UWAGA Task: {3EB9619C-CF63-4E2A-8CB8-AF7645B418AF} - \Microsoft\Windows\Media Center\SqlLiteRecoveryTask -> Brak pliku <==== UWAGA Task: {3EFDE1F4-CCBA-47E7-BFF8-EBA451BCEC12} - \Microsoft\Windows\Media Center\OCURDiscovery -> Brak pliku <==== UWAGA Task: {443927B0-A28E-45F0-9300-F66326E89344} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-12-10] (AVAST Software) Task: {4B0C1872-ADC8-45A8-B762-1EFF25837F1D} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_207_pepper.exe [2016-11-11] (Adobe Systems Incorporated) Task: {4EA494FC-0494-4264-BF5F-565EDB06EE41} - \Microsoft\Windows\Media Center\RegisterSearch -> Brak pliku <==== UWAGA Task: {54D9C6DC-217B-4256-BEE1-FD2E45997CEB} - \Microsoft\Windows\Media Center\ObjectStoreRecoveryTask -> Brak pliku <==== UWAGA Task: {54DA40DE-9F59-406A-8EDB-E6C04A0C72F1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-26] (Piriform Ltd) Task: {5B931075-BC14-4CC8-B2EA-97F8DE86A0B6} - \Microsoft\Windows\Media Center\PBDADiscovery -> Brak pliku <==== UWAGA Task: {5EDD4C4D-CD51-42B1-BED1-A9C4BD8BDFC2} - System32\Tasks\{246A56C2-C1F8-4F9C-BF1F-445F36588D9C} => pcalua.exe -a G:\setup.exe -d G:\ Task: {5FEA77D6-5A56-4B51-ADE2-9A6ABFB636B3} - \Microsoft\Windows\Media Center\mcupdate -> Brak pliku <==== UWAGA Task: {692DECDC-6C58-402E-8136-45A6AEC54F41} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-12] (Google Inc.) Task: {69EFC8A3-0623-49FF-88C1-0E3895D29AAB} - \Microsoft\Windows\Media Center\ehDRMInit -> Brak pliku <==== UWAGA Task: {73E2116E-2A0E-4A84-ADEC-9003149B1E3F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated) Task: {84170554-552F-4E12-B551-9ED3534A9173} - \Microsoft\Windows\Media Center\PBDADiscoveryW2 -> Brak pliku <==== UWAGA Task: {8B957F03-F793-4072-8363-49C441879D3C} - \Microsoft\Windows\Media Center\ConfigureInternetTimeService -> Brak pliku <==== UWAGA Task: {8F72D655-EF0C-489B-8E16-B56AD18A1468} - \Program aktualizacji online firmy Adobe. -> Brak pliku <==== UWAGA Task: {928EB6AE-7C6F-41E0-9D11-FDE02D4D321C} - System32\Tasks\{B3AAB301-E553-4B07-8F4A-29BB64597D7F} => pcalua.exe -a "C:\Users\Nesste\Desktop\Pobrane\VirtualBox-4.3.20-96997-Win (1).exe" -d C:\Users\Nesste\Desktop\Pobrane Task: {9676E001-2070-4594-9DE5-1984E2DE009B} - \Microsoft\Windows\Media Center\UpdateRecordPath -> Brak pliku <==== UWAGA Task: {97F0BF86-6E68-4073-A797-D0EF9E46BF2E} - \Microsoft\Windows\Media Center\DispatchRecoveryTasks -> Brak pliku <==== UWAGA Task: {9ACCEC29-D06F-45D5-812A-FA0A71876C12} - \Microsoft\Windows\Media Center\PeriodicScanRetry -> Brak pliku <==== UWAGA Task: {A9A65A43-F0E2-4DF3-84D8-F06D572F0A88} - \Microsoft\Windows\Media Center\PvrScheduleTask -> Brak pliku <==== UWAGA Task: {B53BF6A5-62A0-4AFC-A916-C9FFFB75B730} - \Microsoft\Windows\Media Center\InstallPlayReady -> Brak pliku <==== UWAGA Task: {BAE2BA0E-EB2A-48B4-ACFD-EA28EBE03B72} - \Microsoft\Windows\Media Center\PvrRecoveryTask -> Brak pliku <==== UWAGA Task: {CD41DDD1-7680-44A0-AF7A-F6EC816497E3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-12] (Google Inc.) Task: {DB22B199-18AF-45F3-8EA6-80353684E0E0} - \Microsoft\Windows\Media Center\RecordingRestart -> Brak pliku <==== UWAGA Task: {DCF0D733-C4B2-4827-9B88-1F2F56ABA5FE} - \Microsoft\Windows\Media Center\PBDADiscoveryW1 -> Brak pliku <==== UWAGA Task: {E9C70F03-8906-4C03-8A99-3541FA4EBA8F} - \Microsoft\Windows\Media Center\MediaCenterRecoveryTask -> Brak pliku <==== UWAGA (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_207_pepper.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\Nesste\AppData\Local\Dritopy\Program uruchamiający aplikacje Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list ShortcutWithArgument: C:\Users\Nesste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://yeabd66.cc/ ShortcutWithArgument: C:\Users\Nesste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://yeabd66.cc/ ShortcutWithArgument: C:\Users\Nesste\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --load-extension="C:\Users\Nesste\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://yeabd66.cc/ ShortcutWithArgument: C:\Users\Nesste\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://yeabd66.cc/ ShortcutWithArgument: C:\Users\Nesste\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --load-extension="C:\Users\Nesste\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://yeabd66.cc/ ShortcutWithArgument: C:\Users\Nesste\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7eacadfa43776aec\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData2 ==================== Załadowane moduły (filtrowane) ============== 2014-04-27 10:43 - 2015-03-29 16:20 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2016-12-12 01:03 - 2016-11-29 06:27 - 02259232 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll 2016-12-12 01:03 - 2016-11-29 06:27 - 02813904 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\arwlib.dll 2016-09-14 03:12 - 2016-09-14 03:12 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll 2016-09-14 03:12 - 2016-09-14 03:12 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll 2016-09-14 03:12 - 2016-09-14 03:12 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll 2016-09-14 03:12 - 2016-09-14 03:12 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll 2016-09-14 03:11 - 2016-09-14 03:11 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll 2016-09-14 03:11 - 2016-09-14 03:11 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll 2016-12-12 00:01 - 2016-12-08 09:03 - 02412888 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll 2016-12-12 00:01 - 2016-12-08 09:03 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll 2016-12-12 01:03 - 2016-11-08 09:46 - 00693248 _____ () C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData\TEMP:56E2E879 [116] AlternateDataStreams: C:\Users\Nesste\Cookies:9BIXY5OeabJgBgGRPoI8LVn [1966] AlternateDataStreams: C:\Users\Nesste\AppData\Local\Temporary Internet Files:V8nfNb64BXYcGJThXCGo [1942] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMChameleon => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMChameleon => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2016-12-11 22:00 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2816774600-1235983040-3463408076-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Nesste\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.99.99 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe MSCONFIG\startupreg: Sony PC Companion => "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{09AA2F8E-2022-4499-9D3D-D64B8FA5949E}] => E:\Gry\Kroniki Riddica\System\win32_x86\DarkAthena.exe FirewallRules: [{53793801-57D8-485C-BCC6-BB96E3453C41}] => E:\Gry\Kroniki Riddica\System\win32_x86\DarkAthena.exe FirewallRules: [{D6DB80F1-4437-4491-A400-B02CA1529728}] => E:\Gry\WarThunder\launcher.exe FirewallRules: [{B1C7AADD-721F-410D-8B08-D2A84E26639E}] => E:\Gry\WarThunder\launcher.exe FirewallRules: [{4BB0C2C0-4150-4BAE-85BA-C3E873345F7D}] => C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{DA677493-C545-424F-81C6-B0118EDF9F7F}] => C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{75972388-4593-4DC2-BEA1-01A13E958521}] => C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{0D8888E9-D0FB-4A00-BD50-683C1EAE24F3}] => C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{A8BA2D77-E1E5-4D68-BEEF-DFD7FA066043}] => C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe FirewallRules: [{B110A2BF-9A9F-42EF-B99F-D21A6122D733}] => C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe FirewallRules: [TCP Query User{75A6174A-684B-4522-9ED9-767AE7BEFAED}C:\users\nesste\appdata\roaming\utorrent\utorrent.exe] => C:\users\nesste\appdata\roaming\utorrent\utorrent.exe FirewallRules: [UDP Query User{46EBEDE4-7ED6-4C85-9C0D-5E0584EC69C9}C:\users\nesste\appdata\roaming\utorrent\utorrent.exe] => C:\users\nesste\appdata\roaming\utorrent\utorrent.exe FirewallRules: [{2FE581EB-634F-4FC2-82A6-7058991720B8}] => C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe FirewallRules: [{003EC317-8BAE-4C71-9F02-94AFE1107501}] => C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe FirewallRules: [TCP Query User{3524C2A1-9DE4-4BCC-8294-72362F34E775}E:\gry\warthunder\launcher.exe] => E:\gry\warthunder\launcher.exe FirewallRules: [UDP Query User{B892BBC2-5A11-4B3F-8814-DD8B28254B5F}E:\gry\warthunder\launcher.exe] => E:\gry\warthunder\launcher.exe FirewallRules: [TCP Query User{B0F67470-FE3F-48C3-8319-F2BFFD822F0E}C:\program files\rockstar games\grand theft auto v\gta5.exe] => C:\program files\rockstar games\grand theft auto v\gta5.exe FirewallRules: [UDP Query User{3A17E8BE-D7DA-4C2A-AC37-1B7DE1BA2723}C:\program files\rockstar games\grand theft auto v\gta5.exe] => C:\program files\rockstar games\grand theft auto v\gta5.exe FirewallRules: [{A0E0E286-615A-4433-A5BB-D1E182ECB9A2}] => C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{6944478A-D8B8-43F9-9060-EF23496A579E}] => C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{3AD7FAF5-AA99-481E-BA8C-7872E602ED15}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{3CAE885E-5BEF-4F6E-8711-6BDB4F1F57E7}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{69CB5978-CD62-4112-AF2D-7860D5BDC5C3}] => C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe FirewallRules: [{EDBB7670-4DC1-45E9-99F5-2ECFD9DD998C}] => C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe FirewallRules: [TCP Query User{9A417532-F79F-467C-A28C-E105E934AB73}E:\nfs\need for speed - the run\need for speed the run.exe] => E:\nfs\need for speed - the run\need for speed the run.exe FirewallRules: [UDP Query User{B910041B-129C-4CDF-92F7-CE1FF64267D9}E:\nfs\need for speed - the run\need for speed the run.exe] => E:\nfs\need for speed - the run\need for speed the run.exe FirewallRules: [TCP Query User{FE95CA40-313E-4304-8D9E-965E777A77D5}E:\gry\wot\wotlauncher.exe] => E:\gry\wot\wotlauncher.exe FirewallRules: [UDP Query User{7DBC0A28-B895-4DDE-BDDD-7A3AC504F123}E:\gry\wot\wotlauncher.exe] => E:\gry\wot\wotlauncher.exe FirewallRules: [TCP Query User{8905153E-D6B0-4B49-881F-B9029ADD0EC3}E:\gry\wot\worldoftanks.exe] => E:\gry\wot\worldoftanks.exe FirewallRules: [UDP Query User{8DF43F18-8A27-4178-A60D-30B8031CF5EC}E:\gry\wot\worldoftanks.exe] => E:\gry\wot\worldoftanks.exe FirewallRules: [TCP Query User{18A56F28-A0DB-4E7E-BA27-34E9D023741B}E:\gry\warthunder\win64\aces.exe] => E:\gry\warthunder\win64\aces.exe FirewallRules: [UDP Query User{FF1DD4BD-7FD6-44AD-833E-9D557ABFBC00}E:\gry\warthunder\win64\aces.exe] => E:\gry\warthunder\win64\aces.exe FirewallRules: [{2A9E4D2E-0BA7-4C8E-9D4D-4863F08E249C}] => E:\Gry\Chicken Invaders 5 Cluck of the Dark Side\CI5.exe FirewallRules: [{F8098015-98DD-4701-9128-D751775D6868}] => C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe FirewallRules: [{C1CDA3D2-5123-42A1-89CB-5F9327C9A1F6}] => C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe FirewallRules: [{37FDE0D1-3C47-4DAC-9DF6-7621FB0392C9}] => E:\Piotr\BF4 reload\Battlefield 4\bf4_x86.exe FirewallRules: [{017BE88A-C2F4-4B2B-93DE-E4C7CD7CA9FB}] => E:\Piotr\BF4 reload\Battlefield 4\bf4_x86.exe FirewallRules: [{6204DD31-9782-4799-A949-D1CB3856F4C3}] => E:\Piotr\BF4 reload\Battlefield 4\bf4.exe FirewallRules: [{B555BC8B-C332-4FD9-96D3-9E696C08D899}] => E:\Piotr\BF4 reload\Battlefield 4\bf4.exe FirewallRules: [TCP Query User{5C5A4316-6A37-49F3-8BDD-587139ED80ED}E:\piotr\bf4 reload\battlefield 4\bf4.exe] => E:\piotr\bf4 reload\battlefield 4\bf4.exe FirewallRules: [UDP Query User{AE0395ED-D0BD-4EBD-8BF1-1EFFC791A34B}E:\piotr\bf4 reload\battlefield 4\bf4.exe] => E:\piotr\bf4 reload\battlefield 4\bf4.exe FirewallRules: [{89BE67FE-DD58-45DB-9CA9-BFFBC288C12C}] => C:\Program Files (x86)\BFH\BFHWebHelper.exe FirewallRules: [{95FC4721-2418-4D92-89B7-817C3A78EC49}] => C:\Program Files (x86)\BFH\BFHWebHelper.exe FirewallRules: [TCP Query User{4D2DB7BC-828D-4FC9-A8D4-D871FC049CEE}C:\program files (x86)\bfh\bfh.exe] => C:\program files (x86)\bfh\bfh.exe FirewallRules: [UDP Query User{34019C71-CBE3-4300-8789-887B4822A3B7}C:\program files (x86)\bfh\bfh.exe] => C:\program files (x86)\bfh\bfh.exe FirewallRules: [{24504018-29C4-4424-94BC-4BED97359A42}] => E:\Gry\Colin dirt 2\dirt2_game.exe FirewallRules: [{39F611AA-2B7D-49CE-A558-0A49DB070300}] => E:\Gry\Colin dirt 2\dirt2_game.exe FirewallRules: [{2F97692A-FBFF-4326-8D13-5C48E023D410}] => C:\Users\Nesste\AppData\Local\Temp\is-8EE7U.tmp\download\MiniThunderPlatform.exe FirewallRules: [{3DC3EB97-AE6D-4CF8-A626-3A45AA3F005A}] => C:\Users\Nesste\AppData\Local\Temp\00009874\inst_buychannel_07.exe FirewallRules: [{2EE400BA-F67B-4FF9-A02B-F240D59668AB}] => C:\Users\Nesste\AppData\Local\Temp\00009874\inst_buychannel_07.exe FirewallRules: [{D2B63745-A6A2-467E-9AC8-8BE1E418CD6A}] => C:\Program Files (x86)\Maoha\MaohaAP\MaohaWifiSvr.exe FirewallRules: [{F5CA0A61-3505-44FB-9092-A48EBCFA7899}] => C:\Program Files (x86)\LuDaShi\Utils\Down.exe FirewallRules: [{2BA6E156-7BCE-4941-8D1E-0A067DC44BE1}] => C:\Program Files (x86)\LuDaShi\Utils\Down.exe FirewallRules: [{D0538E8B-3C0A-465F-B221-CE2C2582E9C2}] => C:\Program Files (x86)\LuDaShi\ComputerZTray.exe FirewallRules: [{DCF6DAF4-D392-4243-99BD-EC5F1B3994D5}] => C:\Program Files (x86)\LuDaShi\ComputerZTray.exe FirewallRules: [{AAF0EF5C-EC1B-46D7-86AB-74CC5257B300}] => C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{8D6F2FBF-22AD-4071-B326-7A203E5F8587}] => C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{1C300230-2F19-4FCE-AF8E-7C624D6635DD}] => C:\Users\Nesste\AppData\Local\Temp\{EEC363FD-0962-4615-8805-5B73027D2E56}\utils\Down.exe FirewallRules: [{882894B6-7736-4421-9345-9D193EE4052B}] => C:\Users\Nesste\AppData\Local\Temp\{EEC363FD-0962-4615-8805-5B73027D2E56}\utils\Down.exe FirewallRules: [{E4933877-0C66-48FE-B5E7-ACD7EFCD9530}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Punkty Przywracania systemu ========================= 04-12-2016 00:58:16 Zaplanowany punkt kontrolny 04-12-2016 20:46:02 Zainstalowane Punkt wznowienia InstallShield 10-12-2016 23:01:31 Removed Online.io Application 10-12-2016 23:06:29 Removed Traffic Exchange 10-12-2016 23:31:05 Installed AVG 2016 10-12-2016 23:31:22 Installed AVG 11-12-2016 21:36:56 Removed AVG 11-12-2016 21:38:21 Removed AVG 2016 ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (12/12/2016 04:00:03 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT) Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu. Error: (12/12/2016 04:00:03 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (12/12/2016 04:00:03 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (12/12/2016 03:56:05 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (12/12/2016 03:55:50 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error: (12/12/2016 03:00:42 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT) Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu. Error: (12/12/2016 03:00:42 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (12/12/2016 03:00:42 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (12/12/2016 02:56:02 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (12/12/2016 02:55:48 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Dziennik System: ============= Error: (12/12/2016 03:56:03 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Host urządzenia UPnP zależy od usługi Odnajdywanie SSDP, której nie można uruchomić z powodu następującego błędu: Nie można uruchomić określonej usługi, ponieważ jest ona wyłączona lub ponieważ nie są włączone skojarzone z nią urządzenia. Error: (12/12/2016 03:56:03 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Host urządzenia UPnP zależy od usługi Odnajdywanie SSDP, której nie można uruchomić z powodu następującego błędu: Nie można uruchomić określonej usługi, ponieważ jest ona wyłączona lub ponieważ nie są włączone skojarzone z nią urządzenia. Error: (12/12/2016 03:56:03 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Host urządzenia UPnP zależy od usługi Odnajdywanie SSDP, której nie można uruchomić z powodu następującego błędu: Nie można uruchomić określonej usługi, ponieważ jest ona wyłączona lub ponieważ nie są włączone skojarzone z nią urządzenia. Error: (12/12/2016 03:56:03 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Host urządzenia UPnP zależy od usługi Odnajdywanie SSDP, której nie można uruchomić z powodu następującego błędu: Nie można uruchomić określonej usługi, ponieważ jest ona wyłączona lub ponieważ nie są włączone skojarzone z nią urządzenia. Error: (12/12/2016 03:56:03 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: ) Description: Nie można poprawnie uruchomić usługi „WMPNetworkSvc”, ponieważ funkcja CoCreateInstance(CLSID_UPnPDeviceFinder) napotkała błąd „0x80070422”. Sprawdź, czy usługa UPnPHost jest uruchomiona i czy składnik UPnPHost systemu Windows jest zainstalowany właściwie. Error: (12/12/2016 03:56:03 PM) (Source: DCOM) (EventID: 10005) (User: ) Description: Model DCOM odebrał błąd 1068 podczas próby uruchomienia usługi upnphost z argumentami w celu uruchomienia serwera: {204810B9-73B2-11D4-BF42-00B0D0118B56} Error: (12/12/2016 03:56:03 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: ) Description: Nie można poprawnie uruchomić usługi „WMPNetworkSvc”, ponieważ funkcja CoCreateInstance(CLSID_UPnPDeviceFinder) napotkała błąd „0x80070422”. Sprawdź, czy usługa UPnPHost jest uruchomiona i czy składnik UPnPHost systemu Windows jest zainstalowany właściwie. Error: (12/12/2016 03:55:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Plays.tv Update Service z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (12/12/2016 03:55:52 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Game Protection Service zakończyła działanie; wystąpił następujący błąd: Nie można odnaleźć określonego modułu. Error: (12/12/2016 03:55:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi BlueStacks Updater Service z powodu następującego błędu: Nie można odnaleźć określonego pliku. CodeIntegrity: =================================== Date: 2016-12-11 21:59:33.979 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-12-11 21:59:33.948 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-12-10 22:45:43.041 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\mwescontroller.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-12-10 22:45:42.995 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\mwescontroller.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-12-10 22:44:11.819 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\mwescontroller.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-12-10 22:44:11.772 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\mwescontroller.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-12-10 22:38:59.412 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\mwescontroller.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-12-10 22:38:59.383 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\mwescontroller.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-12-10 22:38:42.511 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\mwescontroller.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-12-10 22:38:42.484 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\mwescontroller.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: AMD FX(tm)-6300 Six-Core Processor Procent pamięci w użyciu: 25% Całkowita pamięć fizyczna: 8189.55 MB Dostępna pamięć fizyczna: 6097.16 MB Całkowita pamięć wirtualna: 16377.3 MB Dostępna pamięć wirtualna: 14145.84 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:689.16 GB) (Free:445.79 GB) NTFS Drive d: () (Fixed) (Total:102.54 GB) (Free:47.31 GB) NTFS Drive e: () (Fixed) (Total:605.47 GB) (Free:151.77 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1397.3 GB) (Disk ID: A1C993AE) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=102.5 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=605.5 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=689.2 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================