Wirus na komputerze - reklamy, niepożądane aplikacje, zmiany w Chrome
Wrzucam wszystkie skany jakie robiłem.
Przed AdwCleaner , mbae wykrywał zagrożenia nadal powiadomieni przychodziły, teraz nie wiem jak jest, nie uruchamiałem ponownie komputera po FRST.
W adw, cureit i mbae klikałem w usuwanie zagrożeń. Reszta tylko skan
Pobierz plik - link do postu
Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 17-10-2016
Uruchomiony przez Albert (20-10-2016 14:43:45)
Uruchomiony z C:\Users\Albert\Desktop\Do odwirusowania
Windows 7 Home Premium (X64) (2013-01-05 19:55:50)
Tryb startu: Normal
==========================================================
==================== Konta użytkowników: =============================
Administrator (S-1-5-21-2157099664-4145591000-594153506-500 - Administrator - Disabled)
Albert (S-1-5-21-2157099664-4145591000-594153506-1000 - Administrator - Enabled) = & gt; C:\Users\Albert
Gość (S-1-5-21-2157099664-4145591000-594153506-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2157099664-4145591000-594153506-1003 - Limited - Enabled)
Rodzina (S-1-5-21-2157099664-4145591000-594153506-1005 - Limited - Enabled) = & gt; C:\Users\Rodzina
==================== Centrum zabezpieczeń ========================
(Załączenie wejścia w fixlist spowoduje jego usunięcie.)
AV: ESET NOD32 Antivirus 4.0 (Enabled - Out of date) {CB0F8167-5331-BA19-698E-64816B6801A5}
AS: ESET NOD32 Antivirus 4.0 (Enabled - Out of date) {706E6083-750B-B597-533E-5FF310EF4B18}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Zainstalowane programy ======================
(W fixlist dozwolone tylko załączanie programów adware z flagą " Hidden " w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.)
@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.24 - GIGABYTE)
µTorrent (HKLM-x32\...\uTorrent) (Version: 3.2.3.28705 - BitTorrent Inc.)
ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY)
ABBYY FineReader 9.0 Sprint (x32 Version: 9.01.513.58212 - ABBYY) Hidden
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.010.20056 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Adobe Photoshop CS3 (HKLM-x32\...\Adobe_678cd98c8365a5647f9a2e539d120a8) (Version: 10.0 - Adobe Systems Incorporated)
Advanced RAR Repair v1.2 (HKLM-x32\...\Advanced RAR Repair v1.2) (Version: - )
AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.60.1492, 24.04.2015 - AIMP DevTeam)
AMD Catalyst Install Manager (HKLM\...\{1E9871B6-7C44-9A3A-A1C0-F9729663C7F5}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
amuleC (HKLM-x32\...\{418DDAC3-E16C-47C2-B5FE-4FBCAB0E10D0}) (Version: 1.0.0 - amuleC)
AnyDVD (HKLM-x32\...\AnyDVD) (Version: - SlySoft)
Archiwizator WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
Ashampoo Burning Studio 2012 v10.0.15 (HKLM-x32\...\Ashampoo Burning Studio 2012_is1) (Version: 10.0.15 - Ashampoo GmbH & Co. KG)
AutoGreen B12.0206.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B12.0206.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
AxessManager (HKLM-x32\...\{B52D7A21-03E5-4C0C-82FA-FD8EB4C92149}) (Version: 1.1.2.3 - )
Battlefield 2(TM) (HKLM-x32\...\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}) (Version: - )
Battlefield: Bad Company™ 2 (HKLM-x32\...\{3AC8457C-0385-4BEA-A959-E095F05D6D67}) (Version: 1.0.1.0 - Electronic Arts)
Call of Duty (HKLM-x32\...\Call of Duty) (Version: - )
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000 - Activision) Hidden
Call of Juarez Gunslinger (c) Ubisoft version 1 (HKLM-x32\...\Q2FsbG9mSnVhcmV6R3Vuc2xpbmdlcg==_is1) (Version: 1 - )
CCleaner (HKLM\...\CCleaner) (Version: 5.21 - Piriform)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine)
CloneDVD 4.2.5.0 (HKLM-x32\...\MainApp.exe_is1) (Version: - Copyright (C) 2003-2008 DVD X Studios.)
Creation Master 14.3 (HKLM-x32\...\Creation Master 14_is1) (Version: - FIFA MASTER)
Crysis(R) SP Demo (HKLM-x32\...\{92AF2F5A-4407-4A03-A80A-5A2582264746}) (Version: 1.00.0000 - Electronic Arts)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.46.1.0327 - DT Soft Ltd)
Dead Island (HKLM-x32\...\Steam App 91310) (Version: - Techland)
EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.8.0.0 - Electronic Arts)
Easy Tune 6 B12.0509.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B12.0509.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Epson Easy Photo Print 2 (HKLM-x32\...\{A02D7029-C4EF-44C1-9FD4-C0D3CA518113}) (Version: 2.2.4.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{8A17C27D-0325-400C-8AA9-DAA6B16CBD74}) (Version: 2.40.0009 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON SX130 Series Printer Uninstall (HKLM\...\EPSON SX130 Series) (Version: - SEIKO EPSON Corporation)
ESET NOD32 Antivirus (HKLM\...\{302725CC-C7B9-4650-8602-7F353B01366A}) (Version: 4.0.437.0 - Eset spol s r. o.)
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
FIFA 14 (HKLM-x32\...\{AA7A2800-1E75-4240-855B-03AFF8E5171E}) (Version: 1.0.0.7 - Electronic Arts)
File Master Version 14.0 (HKLM-x32\...\File Master_is1) (Version: - FIFA MASTER)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 6.0.5.618 - Foxit Corporation)
Freemake Video Converter wersja 4.1.4 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.4 - Ellora Assets Corporation)
Galeria fotografii (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
GG (HKU\S-1-5-21-2157099664-4145591000-594153506-1000\...\GG) (Version: 11 - GG Network S.A.)
Google Chrome (HKU\S-1-5-21-2157099664-4145591000-594153506-1000\...\Google Chrome) (Version: 54.0.2840.59 - Google Inc.)
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Heroes of Might and Magic III - Złota Edycja (HKLM-x32\...\Heroes of Might and Magic III - Złota Edycja_is1) (Version: - )
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.36 - Irfan Skiljan)
Java 7 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417025FF}) (Version: 7.0.250 - Oracle)
Java 7 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.250 - Oracle)
Łatka polonizacyjna GTA IV v1.0 (HKLM-x32\...\Łatka polonizacyjna GTA IV v1.0) (Version: 1.0 - GTAPOLSKA.PL)
Made Man - Prawa ręka mafii (remove only) (HKLM-x32\...\Made Man - Prawa ręka mafii) (Version: - )
Mafia II (HKLM-x32\...\Mafia II_is1) (Version: - )
Malwarebytes Anti-Malware wersja 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
MaturaRom - Biologia (HKLM-x32\...\{FB9E4364-AED8-4D4A-BBDF-70E772AD8C1E}) (Version: 1.10.0006 - YDP)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{F97E3841-CA9D-4964-9D64-26066241D26F}) (Version: 3.3.24.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{59E4543A-D49D-4489-B445-473D763C79AF}) (Version: 2.0.672.0 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 47.0.1 (x86 pl) (HKLM-x32\...\Mozilla Firefox 47.0.1 (x86 pl)) (Version: 47.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.1.6018 - Mozilla)
Need for Speed Underground 2 (HKLM-x32\...\Need for Speed Underground 2) (Version: 1.2 - Electronic Arts)
Need for Speed™ Most Wanted (HKLM-x32\...\{FB0127F3-985B-44CE-AE29-378CAF60B361}) (Version: 1.5.0.0 - Electronic Arts)
Need for Speed™ ProStreet (HKLM-x32\...\{343737F4-C04D-49F4-BE58-C7EAA8EBA57A}) (Version: 1.0.1.0 - Electronic Arts)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
ON_OFF Charge B11.1102.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
Origin (HKLM-x32\...\Origin) (Version: 9.3.10.4710 - Electronic Arts, Inc.)
PDF Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Podstawowe programy Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Podstawowe programy Windows Live (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Pro Evolution Soccer 2016 (HKLM-x32\...\UHJvRXZvbHV0aW9uU29jY2VyMjAxNg==_is1) (Version: 1 - )
Pro Evolution Soccer 2016 Demo (HKLM-x32\...\Steam App 376890) (Version: - Konami Digital Entertainment)
Przewodnik użytkownika EPSON SX130 Series (HKLM-x32\...\EPSON SX130 Series Useg) (Version: - )
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.988 - Even Balance, Inc.)
RAR Password Recovery v1.1 RC17 (remove only) (HKLM-x32\...\Intelore - RAR Password Recovery) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6409 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6482 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\{08B3869E-D282-424C-9AFC-870E04A4BA14}) (Version: 1.00.0000 - Rockstar Games)
Rzeźnik MPEGów 1.1.991 (HKLM-x32\...\Rzeźnik MPEGów 1.1.991_is1) (Version: 1.1.991 - Marcin Grenda)
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Sniper Elite 3 ver. 1.14 (HKLM-x32\...\{55055055-55AE-88BA-96F5-55DD6F3556AC}_is1) (Version: 1.14 - Rebellion)
Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.15.17.201512161456 - Sony Mobile Communications Inc.)
Sony PC Companion 2.10.303 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.303 - Sony)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
Testy B 2015 (HKLM-x32\...\{51c8ad09-d9b5-478f-8dfe-6a5e040d7e7c}_is1) (Version: 6.1.4.86 - Grupa IMAGE Sp. z o.o.)
The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.50.56 - Electronic Arts)
The Sims™ 3 Nie z tego świata (HKLM-x32\...\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}) (Version: 15.0.135 - Electronic Arts)
The Sims™ 3 Nowoczesny apartament Akcesoria (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
The Sims™ 3 Studenckie życie (HKLM-x32\...\{F26DE8EF-F2CF-40DC-8CDA-CC0D82D11B36}) (Version: 18.0.126 - Electronic Arts)
The Sims™ 3 Wymarzone Podróże (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.0.86 - Electronic Arts)
Unity Web Player (HKU\S-1-5-21-2157099664-4145591000-594153506-1000\...\UnityWebPlayer) (Version: 5.2.0f3 - Unity Technologies ApS)
USB Network Joystick (HKLM-x32\...\{2A558A06-A44E-400D-95AD-D9FAA89AFD36}) (Version: V3.70a - )
Virtual DJ Pro Full - Atomix Productions (HKLM-x32\...\Virtual DJ Pro Full - Atomix Productions) (Version: - )
Watchmen: The End is Nigh (HKLM-x32\...\{EB644850-2B95-4D66-9C29-2B34CAC25947}_is1) (Version: - Warner Bros. Interactive Entertainment)
WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: - NCH Software)
WWE RAW - Ultimate Impact (HKLM-x32\...\WWE RAW - Ultimate Impact_is1) (Version: - )
==================== Niestandardowe rejestracje CLSID (filtrowane): ==========================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
CustomCLSID: HKU\S-1-5-21-2157099664-4145591000-594153506-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 - & gt; C:\Users\Albert\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2157099664-4145591000-594153506-1000_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 - & gt; C:\Users\Albert\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll (GG Network S.A.)
CustomCLSID: HKU\S-1-5-21-2157099664-4145591000-594153506-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 - & gt; C:\Users\Albert\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll (Google Inc.)
==================== Zaplanowane zadania (filtrowane) =============
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
Task: {0962E784-792F-442B-BC5E-6B21D62A0AD1} - System32\Tasks\{24E7FD5A-6D5A-40D1-A2D7-32DD913151F1} = & gt; pcalua.exe -a " F:\Pobrane\Grand Theft Auto_ San Andreas Cenega PL.exe " -d F:\Pobrane
Task: {127B990A-BF25-48A8-B86A-CA31F69AEFF0} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2157099664-4145591000-594153506-1000Core = & gt; C:\Users\Albert\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-07-15] (Facebook Inc.)
Task: {1C5E7842-93E7-4D9F-85FD-9A0BEF58A80E} - System32\Tasks\{4AFA21AA-523C-404B-84D2-AE39FBEA4734} = & gt; pcalua.exe -a C:\Users\Albert\Downloads\ZIP_Repair.exe -d C:\Users\Albert\Downloads
Task: {24712AAE-6ED1-4850-A576-CFB3A1F29EFD} - System32\Tasks\{4C7A3888-44C7-4BAC-9297-01415A5C6696} = & gt; pcalua.exe -a D:\Setup.Now.exe -d D:\
Task: {50C66CE7-D021-42FE-984A-5F0D4118BB3F} - System32\Tasks\{3C903F2E-03DB-4A5D-A227-0C5C7A574BE8} = & gt; pcalua.exe -a C:\Ola\SetupAnyDVD6574.exe -d C:\Ola
Task: {51226D69-864C-410A-9D29-6BDCC2D68683} - System32\Tasks\CCleanerSkipUAC = & gt; C:\Program Files\CCleaner\CCleaner.exe [2016-08-05] (Piriform Ltd)
Task: {9A0A0F7F-F37F-4618-9D15-14381711C6DB} - System32\Tasks\NCH Swift Sound\wavepadDowngrade = & gt; C:\Program Files (x86)\NCH Swift Sound\WavePad\wavepad.exe [2013-08-19] (NCH Software)
Task: {BCDCE51C-E303-4E33-8DE2-93D6BAEDA0B6} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2157099664-4145591000-594153506-1000UA = & gt; C:\Users\Albert\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-07-15] (Facebook Inc.)
Task: {CEA7B652-6BD6-4348-A789-931B4CDE1936} - System32\Tasks\{4F0844F1-F3D8-4DB3-9F68-C04304029BC3} = & gt; pcalua.exe -a D:\Install.exe -d D:\
Task: {D48A57AF-8563-44B6-AAA1-FD84FCCE37F5} - System32\Tasks\{1773C422-5C6C-4114-A13B-0D3CAD08E9FC} = & gt; pcalua.exe -a " D:\Driver\Install 32\MSP_Install.exe " -d " D:\Driver\Install 32 "
Task: {D4D3ECAD-2A08-4C78-90D2-1B5950C58D6F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2157099664-4145591000-594153506-1000Core = & gt; C:\Users\Albert\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {E1A2AF85-B265-498F-B96B-9E00E67D2207} - System32\Tasks\Adobe Acrobat Update Task = & gt; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {F8DDCE9F-FF7C-4DD0-A63D-4077528DD431} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2157099664-4145591000-594153506-1000UA = & gt; C:\Users\Albert\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2157099664-4145591000-594153506-1000Core.job = & gt; C:\Users\Albert\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2157099664-4145591000-594153506-1000UA.job = & gt; C:\Users\Albert\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2157099664-4145591000-594153506-1000Core.job = & gt; C:\Users\Albert\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2157099664-4145591000-594153506-1000UA.job = & gt; C:\Users\Albert\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Skróty =============================
(Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.)
Shortcut: C:\Users\Albert\Favorites\NCH Audio and Telephony Software.lnk - & gt; hxxp://www.nch.com.au/index.html
Shortcut: C:\Users\Albert\Desktop\Gооglе Сhrоmе.lnk - & gt; C:\Users\Albert\AppData\Roaming\HPRewriter2\RewRun3.exe (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\Albert\Desktop\folder z folderami\Моzillа Firеfох.lnk - & gt; C:\Users\Albert\AppData\Roaming\HPRewriter2\RewRun3.exe (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\Albert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gооglе Сhrоmе.lnk - & gt; C:\Users\Albert\AppData\Roaming\HPRewriter2\RewRun3.exe (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\Albert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intеrnеt Ехрlоrеr (64-bit).lnk - & gt; C:\Users\Albert\AppData\Roaming\HPRewriter2\RewRun3.exe (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\Albert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intеrnеt Ехрlоrеr.lnk - & gt; C:\Users\Albert\AppData\Roaming\HPRewriter2\RewRun3.exe (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\Albert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenIV\Go to OpenIV web site.lnk - & gt; hxxp://openiv.com/
Shortcut: C:\Users\Albert\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Моzillа Firеfох.lnk - & gt; C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) & lt; ===== Cyrillic
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Моzillа Firеfох.lnk - & gt; C:\Users\Albert\AppData\Roaming\HPRewriter2\RewRun3.exe (Brak pliku) & lt; ===== Cyrillic
ShortcutWithArgument: C:\Users\Albert\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - & gt; C:\Program Files (x86)\Jarhair\Application\chrome.exe (Google Inc.) - & gt; %SNP%
ShortcutWithArgument: C:\Users\Albert\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - & gt; C:\Program Files (x86)\Jarhair\Application\chrome.exe (Google Inc.) - & gt; %SNP%
ShortcutWithArgument: C:\Users\Albert\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Gооglе Сhrоmе.lnk - & gt; C:\Users\Albert\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) - & gt; 1 0 & lt; ===== Cyrillic
ShortcutWithArgument: C:\Users\Albert\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk - & gt; C:\Program Files (x86)\Jarhair\Application\chrome.exe (Google Inc.) - & gt; %SNP%
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk - & gt; C:\Program Files (x86)\Jarhair\Application\chrome.exe (Google Inc.) - & gt; %SNP%
ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk - & gt; C:\Program Files (x86)\Jarhair\Application\chrome.exe (Google Inc.) - & gt; %SNP%
==================== Załadowane moduły (filtrowane) ==============
2014-08-20 20:15 - 2016-08-04 03:19 - 00075064 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2016-10-11 12:24 - 2016-10-10 14:24 - 00438272 _____ () C:\Program Files (x86)\UvConverter\UvConverter.exe
2015-06-08 21:37 - 2015-06-10 11:13 - 00113024 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
2015-07-08 18:14 - 2008-12-10 11:10 - 00796784 _____ () C:\Windows\USB Vibration\7906\USB Gamepad.exe
2013-08-30 19:47 - 2013-08-30 19:47 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2016-08-05 18:52 - 2016-08-05 18:52 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll
2016-10-20 14:16 - 2016-10-20 11:39 - 00340480 _____ () c:\programdata\tencent\qq\report\report.dll
2016-10-12 19:43 - 2016-10-12 19:43 - 00279552 _____ () c:\program files (x86)\ghuwule\clorudomcontrols.dll
2015-06-08 21:37 - 2012-04-30 11:57 - 00039936 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll
2015-06-08 21:37 - 2015-10-20 18:44 - 00242176 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll
2015-11-06 12:46 - 2015-11-06 12:46 - 02385280 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\libxt.dll
2015-06-08 21:37 - 2015-04-21 13:22 - 00053248 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\VObject.dll
2015-09-07 16:59 - 2015-09-07 16:59 - 00237440 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\Report.dll
2015-11-13 12:52 - 2015-11-13 12:52 - 00824192 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PhoneUpdate.dll
2016-09-06 17:08 - 2016-09-06 17:06 - 00137728 _____ () C:\Users\Albert\AppData\Local\Google\Chrome\Application\WTSAPI32.dll
2016-10-20 12:44 - 2016-10-12 07:43 - 01819240 _____ () C:\Users\Albert\AppData\Local\Google\Chrome\Application\54.0.2840.59\libglesv2.dll
2016-10-20 12:44 - 2016-10-12 07:43 - 00093288 _____ () C:\Users\Albert\AppData\Local\Google\Chrome\Application\54.0.2840.59\libegl.dll
==================== Alternate Data Streams (filtrowane) =========
(Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.)
AlternateDataStreams: C:\Windows:EF46D7EA17E87DB4 [0]
==================== Tryb awaryjny (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość " AlternateShell " zostanie przywrócona.)
==================== Powiązania plików (filtrowane) ===============
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.)
==================== Internet Explorer - Witryny zaufane i z ograniczeniami ===============
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.)
==================== Hosts - zawartość: ===============================
(Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.)
2009-07-14 04:34 - 2016-10-20 14:01 - 00000876 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Inne obszary ============================
(Obecnie brak automatycznej naprawy dla tej sekcji.)
HKU\S-1-5-21-2157099664-4145591000-594153506-1000\Control Panel\Desktop\\Wallpaper - & gt; C:\Users\Albert\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System = & gt; (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Zapora systemu Windows [funkcja włączona]
==================== MSCONFIG/TASK MANAGER - Wyłączone elementy ==
MSCONFIG\startupreg: app = & gt; C:\Program Files (x86)\sbqh\uc.exe
MSCONFIG\startupreg: svchost0 = & gt; C:\Program Files (x86)\sbqh\uc.exe
==================== Reguły Zapory systemu Windows (filtrowane) ===============
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
FirewallRules: [TCP Query User{926D060E-721D-4AA0-96B6-CD05CAD739F7}C:\program files (x86)\axesstel\axessmanager\axessmanager.exe] = & gt; (Allow) C:\program files (x86)\axesstel\axessmanager\axessmanager.exe
FirewallRules: [UDP Query User{6410E5E1-53CD-43C3-AA8D-F95D1CC7E72C}C:\program files (x86)\axesstel\axessmanager\axessmanager.exe] = & gt; (Allow) C:\program files (x86)\axesstel\axessmanager\axessmanager.exe
FirewallRules: [{441A53CD-8AE1-4DB0-AE0B-0A4F0DDE8B1D}] = & gt; (Block) C:\program files (x86)\axesstel\axessmanager\axessmanager.exe
FirewallRules: [{8D420A96-87EE-4BAD-B53E-123FF195B596}] = & gt; (Block) C:\program files (x86)\axesstel\axessmanager\axessmanager.exe
FirewallRules: [TCP Query User{69B242DF-A7EC-4BF7-850B-16B79D828525}C:\program files (x86)\epson software\event manager\eeventmanager.exe] = & gt; (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{6103082C-C060-4B58-A60D-64FA2ADA4609}C:\program files (x86)\epson software\event manager\eeventmanager.exe] = & gt; (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [TCP Query User{EA8DE506-8CBD-4668-A433-14C63888DA6A}C:\program files (x86)\epson software\event manager\eeventmanager.exe] = & gt; (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{B7A7A10E-D541-42B6-AFC8-2FDE7A844512}C:\program files (x86)\epson software\event manager\eeventmanager.exe] = & gt; (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [{59581824-C5B9-433C-90D0-24E490E4DF48}] = & gt; (Allow) E:\Program Files (x86)\EA GAMES\Battlefield 2\BF2.exe
FirewallRules: [{9D2E22A7-6744-4DAA-B782-A275E61F2CF0}] = & gt; (Allow) E:\Program Files (x86)\EA GAMES\Battlefield 2\BF2.exe
FirewallRules: [{0C45B083-5252-4EBE-9A43-1C5C835DB84B}] = & gt; (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{32A84234-4002-45CD-BDC6-AD09B2A4584C}] = & gt; (Allow) C:\Microsoft Office\Office12\ONENOTE.EXE
FirewallRules: [{DB69D15F-9332-4C20-9D04-8C028CF6FAD5}] = & gt; (Allow) C:\Microsoft Office\Office12\ONENOTE.EXE
FirewallRules: [{0B8D8149-9504-4C9A-B2A2-381DE234AC6B}] = & gt; (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{398D7801-EC0E-4690-A76F-714E63E25C2C}] = & gt; (Allow) LPort=2869
FirewallRules: [{C6315E16-F53A-47A0-8850-9485B805AC7D}] = & gt; (Allow) LPort=1900
FirewallRules: [{E24C7F71-E123-48E1-AA0D-4497724E34B2}] = & gt; (Allow) E:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{F9F461CB-CC0D-41E9-AB33-F244113C15D0}] = & gt; (Allow) E:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{F68F5A88-0292-4827-92AE-95CB6558E3FF}] = & gt; (Allow) C:\Users\Albert\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{C80C0F31-D999-46FB-B4A2-F8465C915F19}] = & gt; (Allow) E:\Program Files (x86)\Electronic Arts\Crytek\Crysis SP Demo\Bin32\Crysis.exe
FirewallRules: [{6B6DA161-DCAB-44F4-8B59-B3EC206FA0CB}] = & gt; (Allow) E:\Program Files (x86)\Electronic Arts\Crytek\Crysis SP Demo\Bin32\Crysis.exe
FirewallRules: [{F0B9CC51-9789-447A-BFB3-9FB5C746D05A}] = & gt; (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E8620B93-99DB-4E1C-B104-7FA002802C8E}] = & gt; (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{8BDF9466-9843-48EF-B961-2C643A0C3BD8}C:\program files (x86)\utorrent\utorrent.exe] = & gt; (Allow) C:\program files (x86)\utorrent\utorrent.exe
FirewallRules: [UDP Query User{7A466C1E-DC53-48C0-A812-13FF62BC45A4}C:\program files (x86)\utorrent\utorrent.exe] = & gt; (Allow) C:\program files (x86)\utorrent\utorrent.exe
FirewallRules: [TCP Query User{157194FE-877A-42A0-AC2A-03F9B295C73F}E:\program files (x86)\call of duty\codmp.exe] = & gt; (Block) E:\program files (x86)\call of duty\codmp.exe
FirewallRules: [UDP Query User{7C623953-7AF8-4699-9E92-A1488AB72EBF}E:\program files (x86)\call of duty\codmp.exe] = & gt; (Block) E:\program files (x86)\call of duty\codmp.exe
FirewallRules: [{9EDD6D15-8075-4658-BE31-F91174A1B5FE}] = & gt; (Allow) C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\GTAIV.exe
FirewallRules: [{2A3C72CF-3879-4637-A54D-E3A364BF561B}] = & gt; (Allow) C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\GTAIV.exe
FirewallRules: [{9D86A51A-A54D-4A5E-98C9-A4FCF8E1F32D}] = & gt; (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A35994F4-D330-4B8C-B8B8-7A705FEB1688}] = & gt; (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{68E42B8F-08F3-45D9-AB5F-EF12F7F2B6F1}] = & gt; (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{4F19AC28-6A1E-4BE5-8CA3-5E3308E06050}] = & gt; (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{3C6AF93A-093B-40D5-BE89-D969460C792D}] = & gt; (Allow) E:\Program Files (x86)\Origin Games\FIFA 14\Game\fifa14.exe
FirewallRules: [{839D140E-8BDC-47CB-89E3-3E98804EA829}] = & gt; (Allow) E:\Program Files (x86)\Origin Games\FIFA 14\Game\fifa14.exe
FirewallRules: [{2AFB006E-9D68-4D42-95A4-D112F5580F06}] = & gt; (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{61ACC2B3-59A8-47DD-9CC1-F2BC1EA883F6}] = & gt; (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0CDC7106-AD74-4123-BE6E-8EBEDFDA5C01}] = & gt; (Allow) C:\Program Files (x86)\Steam\steamapps\common\Pro Evolution Soccer 2016 Demo\PES2016.exe
FirewallRules: [{2F7A763E-F136-48D0-9C9A-6B7A75311864}] = & gt; (Allow) C:\Program Files (x86)\Steam\steamapps\common\Pro Evolution Soccer 2016 Demo\PES2016.exe
FirewallRules: [{C61AE213-B9FE-4F66-9F31-7F51A196C0E8}] = & gt; (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Island\DeadIslandGame.exe
FirewallRules: [{7963B366-4B2C-4B8E-BDFB-75E896939CD2}] = & gt; (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Island\DeadIslandGame.exe
FirewallRules: [{73319CEB-FFCA-4CC8-A47F-B00944ADBC75}] = & gt; (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{BC7BED6B-74F7-4B71-9DBB-164BA850DE09}] = & gt; (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [TCP Query User{B4BE572E-0590-4409-BCE3-A152C5B2D24B}C:\program files (x86)\pro evolution soccer 2016\pes2016.exe] = & gt; (Block) C:\program files (x86)\pro evolution soccer 2016\pes2016.exe
FirewallRules: [UDP Query User{E39E7285-B94B-4D73-AFEF-83F79E0CCDC9}C:\program files (x86)\pro evolution soccer 2016\pes2016.exe] = & gt; (Block) C:\program files (x86)\pro evolution soccer 2016\pes2016.exe
FirewallRules: [TCP Query User{FB2F4E74-210F-4080-97A2-16CB2F674CF2}C:\program files (x86)\pro evolution soccer 2016\pes2016.exe] = & gt; (Block) C:\program files (x86)\pro evolution soccer 2016\pes2016.exe
FirewallRules: [UDP Query User{94D40A7A-C908-4F08-8E8F-18C1C335A578}C:\program files (x86)\pro evolution soccer 2016\pes2016.exe] = & gt; (Block) C:\program files (x86)\pro evolution soccer 2016\pes2016.exe
FirewallRules: [{713D68BF-1935-4F57-867F-A958DD40055D}] = & gt; (Allow) C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [{E208EA73-6F52-4A3B-9C18-EFB85CD231DC}] = & gt; (Allow) C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [{06E974C6-2784-4CF4-B161-3FB591AAF214}] = & gt; (Allow) C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [{D6AA75A3-9ACD-4D59-AA6C-39DB17CC700A}] = & gt; (Allow) C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [{D8EBD67B-9431-4A18-AB04-60E6951D0C25}] = & gt; (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{0075344D-0627-4491-9829-00FCB01F337B}] = & gt; (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{0588755B-3F19-4017-AE5F-3914C6322771}] = & gt; (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{609CC5BF-ADFD-4E33-B291-1AF7352524D8}] = & gt; (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{3F454E94-6ED1-44B3-B0E4-03FB581EC367}] = & gt; (Allow) E:\Program Files (x86)\Origin Games\Battlefield Bad Company 2\BFBC2Game.exe
FirewallRules: [{4A84AC2C-4EC8-490D-AC9A-DDF166280918}] = & gt; (Allow) E:\Program Files (x86)\Origin Games\Battlefield Bad Company 2\BFBC2Game.exe
FirewallRules: [{07520332-4E68-4FD8-A637-865F49573788}] = & gt; (Allow) E:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [{363F437E-809E-4797-A1B0-27B677632216}] = & gt; (Allow) E:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [{8A7D1581-6CD9-41AE-B568-2FB3D2B7DD73}] = & gt; (Allow) C:\Users\Albert\AppData\Local\Temp\MPCOnline\MPCDownload.exe
FirewallRules: [{FF118EBD-C0D2-46C4-B379-7A4ACE09C170}] = & gt; (Allow) C:\Users\Albert\AppData\Local\Temp\MPCOnline\MPCDownload.exe
FirewallRules: [{2DDC75C4-1E9C-470A-B344-2FA92E40A5A2}] = & gt; (Allow) C:\Program Files (x86)\Jarhair\Application\chrome.exe
==================== Punkty Przywracania systemu =========================
12-10-2016 19:40:06 Removed amuleC
12-10-2016 19:40:52 Removed UvConverter
12-10-2016 19:41:13 Removed amuleC
17-10-2016 00:05:49 Removed InterHop
==================== Wadliwe urządzenia w Menedżerze urządzeń =============
Name: Teredo Tunneling Pseudo-Interface
Description: Karta tunelowania Teredo firmy Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click " Update Driver " to update the drivers for this device.
On the " General Properties " tab of the device, click " Troubleshoot " to start the troubleshooting wizard.
Name: pcouffin device ...
Description: pcouffin device ...
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click " Update Driver " , which starts the Hardware Update wizard.
==================== Błędy w Dzienniku zdarzeń: =========================
Dziennik Aplikacja:
==================
Error: (10/20/2016 02:26:28 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Nie można wyodrębnić listy głównej innych firm z pliku cab automatycznej aktualizacji z: & lt; http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab & gt; , wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej.
.
Error: (10/20/2016 02:25:53 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005.
Error: (10/20/2016 02:16:51 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3001) (User: ZARZĄDZANIE NT)
Description: Występująca w rejestrze wartość ciągu nazwy licznika wydajności jest niepoprawnie sformatowana. Wadliwie sformułowany ciąg to 謟�. Pierwszy wpis DWORD w sekcji danych (Data) zawiera wartość indeksu wadliwie sformułowanego ciągu, a drugi i trzeci wpis DWORD w sekcji danych zawiera ostatnie prawidłowe wartości indeksu.
Error: (10/20/2016 02:16:47 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Nie można wyodrębnić listy głównej innych firm z pliku cab automatycznej aktualizacji z: & lt; http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab & gt; , wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej.
.
Error: (10/20/2016 02:12:09 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Nie można wyodrębnić listy głównej innych firm z pliku cab automatycznej aktualizacji z: & lt; http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab & gt; , wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej.
.
Error: (10/20/2016 02:10:38 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005.
Error: (10/20/2016 02:07:41 PM) (Source: Windows Search Service) (EventID: 3100) (User: )
Description: Nie można zainicjować procesu hosta filtru. Kończenie.
Szczegóły:
Operacja została zwrócona, ponieważ przekroczono limit czasu. (HRESULT : 0x800705b4) (0x800705b4)
Error: (10/20/2016 01:54:26 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Nie można wyodrębnić listy głównej innych firm z pliku cab automatycznej aktualizacji z: & lt; http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab & gt; , wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej.
.
Error: (10/20/2016 01:50:32 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: Wystąpił błąd harmonogramu aktywacji licencji (sppuinotify.dll), kod błędu:
0x80070005
Error: (10/20/2016 01:32:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: mbamservice.exe, wersja: 3.2.21.0, sygnatura czasowa: 0x56bd3616
Nazwa modułu powodującego błąd: mbamservice.exe, wersja: 3.2.21.0, sygnatura czasowa: 0x56bd3616
Kod wyjątku: 0x40000015
Przesunięcie błędu: 0x000ad2a6
Identyfikator procesu powodującego błąd: 0x12d4
Godzina uruchomienia aplikacji powodującej błąd: 0x01d22abe4eb7b857
Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
Ścieżka modułu powodującego błąd: C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
Identyfikator raportu: dada22f1-96b8-11e6-8d44-902b348acc43
Dziennik System:
=============
Error: (10/20/2016 02:28:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi ProgramFilesxAgusiQTorrentSplTerminatorGenisysPLSUBBEDkokosikkowal z powodu następującego błędu:
Nie można odnaleźć określonego pliku.
Error: (10/20/2016 02:28:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi PesGry z powodu następującego błędu:
Nie można odnaleźć określonego pliku.
Error: (10/20/2016 02:28:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi MozillaFirefoxMicrosoftNET z powodu następującego błędu:
Nie można odnaleźć określonego pliku.
Error: (10/20/2016 02:28:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi grafifaAgusiQTorrentsplSnajperNAPISYPLMXAgusiQ z powodu następującego błędu:
Nie można odnaleźć określonego pliku.
Error: (10/20/2016 02:28:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi GameSpyArcadeWatchmenTheEndisNigh z powodu następującego błędu:
Nie można odnaleźć określonego pliku.
Error: (10/20/2016 02:28:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi AxesstelSpolszcz z powodu następującego błędu:
Nie można odnaleźć określonego pliku.
Error: (10/20/2016 02:28:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi ARARWinRAR z powodu następującego błędu:
Nie można odnaleźć określonego pliku.
Error: (10/20/2016 02:28:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi AgusiQTorrentsplDiscoPoloPLKAgusiQMuzyka z powodu następującego błędu:
Nie można odnaleźć określonego pliku.
Error: (10/20/2016 02:27:06 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Usługa Grupowanie sieci równorzędnej zależy od usługi Protokół rozpoznawania nazw równorzędnych, której nie można uruchomić z powodu następującego błędu:
%%-2140993535
Error: (10/20/2016 02:27:06 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Usługa Protokół rozpoznawania nazw równorzędnych zakończyła działanie; wystąpił następujący błąd:
%%-2140993535
CodeIntegrity:
===================================
Date: 2013-01-08 15:33:27.546
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Albert\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-01-08 15:33:27.546
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Albert\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-01-08 15:33:27.250
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-01-08 15:33:27.250
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Statystyki pamięci ===========================
Procesor: AMD Athlon(tm) II X2 270 Processor
Procent pamięci w użyciu: 32%
Całkowita pamięć fizyczna: 8189.55 MB
Dostępna pamięć fizyczna: 5557.04 MB
Całkowita pamięć wirtualna: 16377.26 MB
Dostępna pamięć wirtualna: 13637.22 MB
==================== Dyski ================================
Drive c: () (Fixed) (Total:195.21 GB) (Free:18.32 GB) NTFS
Drive d: (Mój dysk) (CDROM) (Total:1.01 GB) (Free:0 GB) CDFS
Drive e: (Nowy) (Fixed) (Total:195.31 GB) (Free:16.24 GB) NTFS
Drive f: (Nowy) (Fixed) (Total:70.31 GB) (Free:4.23 GB) NTFS
Drive g: (GTA IV Disc 1) (CDROM) (Total:7.03 GB) (Free:0 GB) UDF
==================== MBR & Tablica partycji ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 0501D13E)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=195.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=195.3 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=75.1 GB) - (Type=OF Extended)
==================== Koniec Addition.txt ============================
