Usunęłam programy, o których napisałeś. Po wykonaniu fix'a nie pojawiły się na nowo, niestety wirus wciąż nie został usunięty. Oto RTS wykonane po fix'ie. (Tym razem komputer pyta o zezwolenie otworzenia wirusa jako administrator, jednak nawet kiedy daje "nie" to i tak się otwiera, jednak nie tak natarczywie jak wcześniej). Czy uruchomić ADVCleaner'a i wysłać również raport? EDIT W razie czego załączam również raport. Scaliłem. RADU23
Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 18-06-2017 01
Uruchomiony przez shenzai (20-06-2017 21:48:59)
Uruchomiony z C:\Users\shenzai\Downloads\FRST
Windows 7 Ultimate Service Pack 1 (X64) (2015-05-28 18:43:10)
Tryb startu: Normal
==========================================================
==================== Konta użytkowników: =============================
Administrator (S-1-5-21-900294517-2085080873-4140816556-500 - Administrator - Disabled)
Gość (S-1-5-21-900294517-2085080873-4140816556-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-900294517-2085080873-4140816556-1002 - Limited - Enabled)
shenzai (S-1-5-21-900294517-2085080873-4140816556-1001 - Administrator - Enabled) = & gt; C:\Users\shenzai
==================== Centrum zabezpieczeń ========================
(Załączenie wejścia w fixlist spowoduje jego usunięcie.)
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Zainstalowane programy ======================
(W fixlist dozwolone tylko załączanie programów adware z flagą " Hidden " w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.)
µTorrent (HKU\S-1-5-21-900294517-2085080873-4140816556-1001\...\uTorrent) (Version: 3.5.0.43804 - BitTorrent Inc.)
4game (HKLM-x32\...\4game) (Version: 3.6.2.254 - Innova Systems)
Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.131 - Adobe Systems Incorporated)
Adobe Flash Player 26 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 26.0.0.131 - Adobe Systems Incorporated)
Adobe Photoshop CS3 (HKLM-x32\...\Adobe_678cd98c8365a5647f9a2e539d120a8) (Version: 10.0 - Adobe Systems Incorporated)
AION Free-to-Play (HKLM-x32\...\{82E73E8D-E1E7-45A4-A311-6D31492AA913}_is1) (Version: - Gameforge 4D GmbH)
Aktualizacje NVIDIA 2.5.14.5 (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.518 - AVG Technologies)
AVG PC TuneUp 2015 (pl-PL) (x32 Version: 15.0.1001.518 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.518 - AVG Technologies) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.08 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
Elsword (HKLM-x32\...\Elsword_pl_is1) (Version: - Gameforge 4D GmbH)
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Fallout 4 (HKLM-x32\...\Fallout 4_is1) (Version: - )
Farming Simulator 15 (HKLM-x32\...\Farming Simulator 15_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
Game Center 101XP (HKLM-x32\...\Game Center 101XP) (Version: - 101XP)
Gameforge Live 2.0.12 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.12 - Gameforge)
GIGABYTE OC_GURU II (HKLM-x32\...\InstallShield_{EA298EC1-2B8F-4DA9-8C5B-BC1FCBBAD72F}) (Version: 1.90.0000 - GIGABYTE Technology Co.,Ltd.)
GIGABYTE OC_GURU II (x32 Version: 1.90.0000 - GIGABYTE Technology Co.,Ltd.) Hidden
Glyph (HKLM-x32\...\Glyph) (Version: - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
Guild Wars 2 (HKLM\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Heroes of Might & Magic III - HD Edition (HKLM-x32\...\Heroes of Might & Magic III - HD Edition_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
Heroes of Might and Magic 4 Complete (HKLM-x32\...\Heroes of Might and Magic 4 Complete_is1) (Version: - GOG.com)
Heroes of Might and Magic III (HKLM-x32\...\{8B743AA0-53B2-11D2-808A-00600895FB43}) (Version: 1.0 - )
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.16.0.001 - HTC Corporation)
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.46.0 - HTC)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)
Lineage II (HKLM-x32\...\{076A6FD8-EE45-4A83-B3C9-C7C34E7CAFDD}) (Version: 90.7.2281 - NCSoft)
Lineage® II: Freya (High Five) (HKLM-x32\...\{21040472-F8DF-48A9-A093-2986C1495670}) (Version: 198 - NCsoft)
LineageII EU (HKLM-x32\...\4game_lineage2eu) (Version: - Innova Systems)
Malwarebytes (wersja 3.1.2.1733) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft DirectX SDK (March 2009) (HKLM-x32\...\Microsoft DirectX SDK (March 2009)) (Version: 9.26.1590.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{59E4543A-D49D-4489-B445-473D763C79AF}) (Version: 2.0.672.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60830 (HKLM\...\{122B909F-9DCF-360E-91E7-0679E033FBE1}) (Version: 11.0.60830 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60830 (HKLM\...\{083808D6-6235-37A8-82C1-98D226EB681F}) (Version: 11.0.60830 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60830 (HKLM-x32\...\{F68B404C-0E04-337F-A132-796508EE337A}) (Version: 11.0.60830 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60830 (HKLM-x32\...\{50AF8559-F490-381F-A6E7-06A07DE227DC}) (Version: 11.0.60830 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{85467CBC-7A39-33C9-8940-D72D9269B84F}) (Version: 10.0.40219 - Microsoft Corporation)
Might and Magic Heroes VII, âĺđńč˙ 1.0.0.0 (HKLM-x32\...\Might and Magic Heroes VII_is1) (Version: 1.0.0.0 - RePack by SEYTER)
Mozilla Firefox 54.0 (x86 pl) (HKLM-x32\...\Mozilla Firefox 54.0 (x86 pl)) (Version: 54.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 54.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
My.com Game Center (HKU\S-1-5-21-900294517-2085080873-4140816556-1001\...\MyComGames) (Version: 3.198 - My.com B.V.)
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version: - NCSOFT)
NCsoft Launcher (HKLM-x32\...\{5F8E2CBB-949D-4175-AC98-5ADE7F6C9697}) (Version: 1.5.19002 - NCsoft)
netis Wireless LAN Driver and Utility (HKLM-x32\...\{9C049509-055C-4CFF-A116-1D12312225EB}) (Version: 1.00.0219 - netis Systems Co.,Ltd.)
Neverwinter Nights 2 Complete (HKLM-x32\...\GOGPACKNWN2COMPLETE_is1) (Version: 2.1.0.6 - GOG.com)
Nexon Launcher (HKLM-x32\...\Nexon Nexon Launcher) (Version: 1.3.0 - Nexon)
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - )
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.57.35 - NVIDIA Corporation)
NVIDIA ForceWare Network Access Manager (HKLM-x32\...\{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}) (Version: 1.00.7325.0 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Oprogramowanie systemu PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NVIDIA Sterownik 3D Vision 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.82 - NVIDIA Corporation)
NVIDIA Sterownik dźwięku HD 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA Sterownik graficzny 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.82 - NVIDIA Corporation)
NVIDIA Sterownik kontrolera 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
Online Application (HKLM-x32\...\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}) (Version: - )
Panel sterowania NVIDIA 355.82 (Version: 355.82 - NVIDIA Corporation) Hidden
PDF Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
PhotoFiltre Studio X (HKU\S-1-5-21-900294517-2085080873-4140816556-1001\...\PhotoFiltre Studio X) (Version: - )
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden
Revelation Online (HKU\S-1-5-21-900294517-2085080873-4140816556-1001\...\Revelation Online) (Version: 1.41 - My.com B.V.)
SafeZone Stable 1.48.2066.114 (x32 Version: 1.48.2066.114 - Avast Software) Hidden
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Skyforge MyCom (HKU\S-1-5-21-900294517-2085080873-4140816556-1001\...\Skyforge MyCom) (Version: 1.145 - My.com B.V.)
Skype™ 7.31 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.31.104 - Skype Technologies S.A.)
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
Spolszczenie do Game of Thrones Sezon I (HKLM-x32\...\Spolszczenie do Game of Thrones) (Version: 1.0 - GrajPoPolsku)
Spolszczenie do The Walking Dead: A New Frontier (HKLM-x32\...\Spolszczenie do The Walking Dead: A New Frontier) (Version: 1.2 - GrajPoPolsku)
Stronghold 2 Deluxe (HKLM-x32\...\{16D2C649-CBA8-44EE-B730-12584667D487}) (Version: 1.40.000 - Firefly Studios)
Tales from the Borderlands version Tales from the Borderlands (HKLM-x32\...\Tales from the Borderlands_is1) (Version: Tales from the Borderlands - )
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: - Gameforge 4D GmbH)
The Battle for Middle-Earth II (HKLM-x32\...\The Battle for Middle-Earth II) (Version: - )
The Evil Within (HKLM-x32\...\The Evil Within_is1) (Version: - )
The Sims 4 (HKLM-x32\...\VGhlU2ltczQ=_is1) (Version: 1 - )
The Sims 4 Deluxe Edition version 1.10.57.1020 (HKLM-x32\...\The Sims 4 Deluxe Edition_is1) (Version: 1.10.57.1020 - GMT-MAX.ORG)
The Sims 4 version final (HKLM-x32\...\The Sims 4_is1) (Version: final - Anonymous)
The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.0.732.20 - Electronic Arts Inc.)
The Walking Dead A New Frontier Episode 1 (HKLM-x32\...\The Walking Dead A New Frontier Episode 1_is1) (Version: - )
The Walking Dead A New Frontier Episode 2 (HKLM-x32\...\The Walking Dead A New Frontier Episode 2_is1) (Version: - )
The Walking Dead A New Frontier Episode 3 (HKLM-x32\...\The Walking Dead A New Frontier Episode 3_is1) (Version: - )
The Walking Dead A New Frontier Episode 4 (HKLM-x32\...\The Walking Dead A New Frontier Episode 4_is1) (Version: - )
The Walking Dead A New Frontier Episode 5 (HKLM-x32\...\The Walking Dead A New Frontier Episode 5_is1) (Version: - )
The Walking Dead Michonne Episode 3 (HKLM-x32\...\The Walking Dead Michonne Episode 3_is1) (Version: - )
Trust CP-2300 Webcam (HKLM-x32\...\InstallShield_{44F2B2D0-40A7-42A5-AF6C-812CA8A6809E}) (Version: 1.0.2.13 - Nazwa firmy)
Trust CP-2300 Webcam (x32 Version: 1.0.2.13 - Nazwa firmy) Hidden
Twierdza Krzyżowiec (HKLM-x32\...\{8C3727F2-8E37-49E4-820C-03B1677F53B6}) (Version: 1.00 - )
VIA Platforma Menedżera urządzeń (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
WildStar (HKLM-x32\...\WildStar) (Version: - NCSOFT)
WinRAR 5.21 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
==================== Niestandardowe rejestracje CLSID (filtrowane): ==========================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
==================== Zaplanowane zadania (filtrowane) =============
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
Task: {0D5F8E27-1983-4CCF-AF47-48E8FE26E13D} - System32\Tasks\Online Application V2G1 = & gt; C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-02-07] (Microleaves LTD) & lt; ==== UWAGA
Task: {0FEFA930-4387-41F8-AB08-EE0B8BE9DA0E} - System32\Tasks\Kaypall Phone = & gt; Rundll32.exe " C:\Program Files\Kaypall Phone\Kaypall Phone.dll " ,NRmWpXPs & lt; ==== UWAGA
Task: {35EE5DC8-F496-4495-A853-39FD8EE1EF31} - System32\Tasks\UCBrowserSecureUpdater = & gt; C:\Program Files (x86)\UCBrowser\Security\uclauncher.exe [2017-06-19] (UC Web Inc.) & lt; ==== UWAGA
Task: {3B380142-B313-448F-B4E0-90C32A2F96C5} - System32\Tasks\Updater_Online_Application = & gt; C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe [2017-06-18] (Microleaves) & lt; ==== UWAGA
Task: {5F34F37C-8702-4A72-ADA5-8721BDABF966} - System32\Tasks\AVAST Software\Avast settings backup = & gt; C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-01-27] (AVAST Software)
Task: {6D776B98-3FB5-4007-B4B6-C5E71165F41F} - System32\Tasks\MyReader = & gt; Rundll32.exe " C:\Program Files\MyReader\MyReader.dll " ,cyvBpo & lt; ==== UWAGA
Task: {91C72EC4-DC8B-4762-8697-9CE73C23E895} - System32\Tasks\Online Application V2G2 = & gt; C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-02-07] (Microleaves LTD) & lt; ==== UWAGA
Task: {9AC09EF5-F041-43D6-9B17-DE05D38449B9} - System32\Tasks\UCBrowserUpdaterCore = & gt; C:\Program Files (x86)\UCBrowser\Application\update_task.exe [2017-05-11] (UCWeb Inc) & lt; ==== UWAGA
Task: {A966D23B-3130-42A6-B90B-71908E86A85D} - System32\Tasks\0b5c76bb7599252601fe688dbc063f23 = & gt; sc start 0b5c76bb7599252601fe688dbc063f23 & lt; ==== UWAGA
Task: {D50F71E3-5845-4742-BE69-CEC973B59B9B} - System32\Tasks\Online Application V2G3 = & gt; C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-02-07] (Microleaves LTD) & lt; ==== UWAGA
(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
Task: C:\Windows\Tasks\Online Application V2G1.job = & gt; C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe & lt; ==== UWAGA
Task: C:\Windows\Tasks\Online Application V2G2.job = & gt; C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe & lt; ==== UWAGA
Task: C:\Windows\Tasks\Online Application V2G3.job = & gt; C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe & lt; ==== UWAGA
Task: C:\Windows\Tasks\UCBrowserUpdaterCore.job = & gt; C:\Program Files (x86)\UCBrowser\Application\update_task.exe & lt; ==== UWAGA
Task: C:\Windows\Tasks\Updater_Online_Application.job = & gt; C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe & lt; ==== UWAGA
==================== Skróty & WMI ========================
(Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.)
WMI_ActiveScriptEventConsumer_ASEC: & lt; ===== UWAGA
Shortcut: C:\Users\shenzai\Desktop\Fаllоut 4.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.rehcnual4tuollaf.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\shenzai\Desktop\Moja Postać - Eldarya_files\Gоogle Chromе.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.emorhc.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\shenzai\Desktop\Moja Postać - Eldarya_files\Lеft 4 Dеаd 2.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.rehcnualemag.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\shenzai\Desktop\Moja Postać - Eldarya_files\Орerа.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.rehcnual.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\shenzai\Desktop\Moja Postać - Eldarya_files\programy\DАЕMОN Тоols Litе.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.rehcnualtd.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\shenzai\Desktop\Moja Postać - Eldarya_files\programy\Nехon Lаunсhеr.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.rehcnual_noxen.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\shenzai\Desktop\Moja Postać - Eldarya_files\programy\NСsоft Launcher.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.rehcnualcn.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\shenzai\Desktop\Moja Postać - Eldarya_files\programy\kutafonga\pierdołki\dd\Nowy folder (2)\Nowy folder\WаrThunder.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.rehcnual.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\shenzai\Desktop\Moja Postać - Eldarya_files\Nowy folder\Lеft 4 Dеаd 2.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.rehcnualemag.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\shenzai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intеrnet Еxрlorer.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.erolpxei.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\shenzai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WаrThunder.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.emorhc.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\shenzai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nexon\Nеxon Lаunсher.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.rehcnual_noxen.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\shenzai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nexon\Ridеrs оf Icаrus.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.rehcnual_noxen.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\shenzai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Intеrnеt Ехрlorеr (Nо Аdd-ons).lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.erolpxei.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\shenzai\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Gоoglе Chromе.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.emorhc.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\shenzai\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Lаunсh Intеrnet Ехрlоrеr Brоwser.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.erolpxei.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\shenzai\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WаrThundеr.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.emorhc.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\shenzai\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Gоoglе Chrоme.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.emorhc.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\shenzai\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Мozilla Firеfoх.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.xoferif.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\shenzai\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Оpera.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.rehcnual.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gооglе Chrоme.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.emorhc.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\АIОN Frеe-to-Play.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.rehcnualcn.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Моzilla Firefох.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.xoferif.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ореra.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.rehcnual.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\Public\Desktop\АION Frее-tо-Рlay.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.rehcnualcn.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\Public\Desktop\Мozilla Firefох.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.xoferif.bat (Brak pliku) & lt; ===== Cyrillic
Shortcut: C:\Users\Public\Desktop\ТERА.lnk - & gt; C:\Users\shenzai\AppData\Roaming\Browsers\exe.rehcnual-aret.bat (Brak pliku) & lt; ===== Cyrillic
ShortcutWithArgument: C:\Users\shenzai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - & gt; C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) - & gt; hxxp://www.yeadesktop.com/
ShortcutWithArgument: C:\Users\shenzai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder.lnk - & gt; C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) - & gt; --load-extension= " C:\Users\shenzai\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk " hxxp://www.yeadesktop.com/
ShortcutWithArgument: C:\Users\shenzai\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - & gt; C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) - & gt; --load-extension= " C:\Users\shenzai\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk " hxxp://www.yeadesktop.com/
ShortcutWithArgument: C:\Users\shenzai\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk - & gt; C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) - & gt; --load-extension= " C:\Users\shenzai\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk " hxxp://www.yeadesktop.com/
ShortcutWithArgument: C:\Users\shenzai\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - & gt; C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) - & gt; hxxp://www.yeadesktop.com/
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk - & gt; C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) - & gt; --load-extension= " C:\Users\shenzai\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk " hxxp://www.yeadesktop.com/
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk - & gt; C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) - & gt; hxxp://www.yeadesktop.com/
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk - & gt; C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) - & gt; --load-extension= " C:\Users\shenzai\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk " hxxp://www.yeadesktop.com/
ShortcutWithArgument: C:\Users\Public\Desktop\Mozilla Firefox.lnk - & gt; C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) - & gt; hxxp://www.yeadesktop.com/
==================== Załadowane moduły (filtrowane) ==============
2015-08-11 15:57 - 2015-08-25 16:24 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-06-19 19:20 - 2015-06-01 09:32 - 02482688 _____ () C:\Program Files\Kaypall Phone\Kaypall Phone.dll
2013-10-17 15:27 - 2013-10-17 15:27 - 00166912 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2016-08-15 22:35 - 2013-05-14 13:24 - 00044104 _____ () C:\Windows\runSW.exe
2015-05-15 15:57 - 2015-05-15 15:57 - 00718136 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2017-06-19 19:24 - 2017-05-11 06:09 - 00599440 _____ () C:\Program Files (x86)\UCBrowser\Application\UCService.exe
2015-05-29 20:35 - 2010-01-21 01:53 - 00496232 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
2015-05-29 20:35 - 2010-01-21 01:52 - 00076392 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nv_common.dll
2015-05-29 20:35 - 2010-01-21 01:53 - 00731752 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\SpecialCase.dll
2015-05-29 20:35 - 2010-01-21 01:53 - 00209000 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
2017-06-19 20:05 - 2017-06-20 20:52 - 00486400 _____ () C:\Windows\TEMP\gFF8.tmp.exe
2015-04-13 15:55 - 2015-04-13 15:55 - 00821600 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
2015-05-15 15:58 - 2015-05-15 15:58 - 00862008 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2017-06-20 20:53 - 2017-06-20 20:53 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\4d2002v0r0f\vmofordw3z2.exe
2017-06-20 20:53 - 2017-06-20 20:53 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\g5lv3hpk5ks\0xb1sbgtlce.exe
2017-06-20 20:53 - 2017-06-20 20:53 - 01040384 _____ () C:\Program Files\56XA2LHKIG\ZKFHTP73D.exe
2017-06-20 20:53 - 2017-06-20 20:53 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\2hbgqbtkrt4\ys5ynnoxh5d.exe
2015-05-29 20:57 - 2000-01-01 02:00 - 00078456 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2015-05-29 20:57 - 2000-01-01 02:00 - 00386168 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2017-06-19 20:34 - 2017-06-19 20:34 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\fhzrd0gttza\5zct21km4e1.exe
2017-06-19 20:34 - 2017-06-19 20:34 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\nura0dmmhpv\dsljdbb31r0.exe
2017-06-20 20:53 - 2017-06-20 20:53 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\k2eydxbro4d\fggyucix0hi.exe
2017-06-20 20:53 - 2017-06-20 20:53 - 01040384 _____ () C:\Program Files\OLPO2K3XJB\8EKPAN5IC.exe
2017-06-19 20:34 - 2017-06-19 20:34 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\ldmagzil55c\ftp0i4wlwfx.exe
2017-06-19 20:34 - 2017-06-19 20:34 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\zmzrs3tx0wf\f2nwb323hsr.exe
2017-06-19 21:05 - 2017-06-19 21:05 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\q05qybgj5jq\ghqbgghizvj.exe
2017-06-19 21:05 - 2017-06-19 21:05 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\sugqxgvlxy5\ri3bke4qsm3.exe
2017-06-20 20:54 - 2017-06-20 20:54 - 01040384 _____ () C:\Program Files\FTG5QMPBVQ\6OZSYSNGJ.exe
2017-06-19 21:21 - 2017-06-19 21:21 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\qpmxs3bw3ng\oznlho02uba.exe
2017-06-19 21:21 - 2017-06-19 21:21 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\dz5uts4wvfd\kjg4k3pbawg.exe
2017-06-19 21:21 - 2017-06-19 21:21 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\qkbq50xf10b\cw1uk2ojliy.exe
2017-06-19 21:22 - 2017-06-19 21:22 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\hrjq31jjr1s\fpjvn4zz34s.exe
2017-06-19 21:33 - 2017-06-19 21:33 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\rqva4vu3i5j\bzpxt0lba5z.exe
2017-06-19 21:33 - 2017-06-19 21:33 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\yry2vavm0el\41suzs5cthi.exe
2017-06-19 21:34 - 2017-06-19 21:34 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\s3hgbczwrde\ageptk0vzca.exe
2017-06-19 21:34 - 2017-06-19 21:34 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\c0hqm2ldlwn\n2glakpvl1m.exe
2017-06-20 20:10 - 2017-06-20 20:10 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\dybmia1ijuv\q0y2d250eqq.exe
2017-06-20 20:10 - 2017-06-20 20:10 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\y5biuysevnl\4phjuookzub.exe
2017-06-20 20:10 - 2017-06-20 20:10 - 01040384 _____ () C:\Program Files\4PBTGJC09T\JYDKCXGWC.exe
2017-06-20 20:10 - 2017-06-20 20:10 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\toczbv142yx\m2sxde1ymwr.exe
2017-06-20 20:10 - 2017-06-20 20:10 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\ghiuy3lhhxs\n32a1l3edju.exe
2017-06-20 20:10 - 2017-06-20 20:10 - 01040384 _____ () C:\Program Files\W5M8VVC41Z\W5M8VVC41.exe
2017-06-20 20:10 - 2017-06-20 20:10 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\koqyvsaiayp\41rp2vfgvbd.exe
2017-06-20 20:10 - 2017-06-20 20:10 - 01040384 _____ () C:\Program Files\MM5915986V\MM5915986.exe
2017-06-20 20:10 - 2017-06-20 20:10 - 01040384 _____ () C:\Program Files\1R2KLZCDR0\1R2KLZCDR.exe
2017-06-20 20:10 - 2017-06-20 20:10 - 01040384 _____ () C:\Program Files\G8P4KU1YKZ\G8P4KU1YK.exe
2017-06-20 20:27 - 2017-05-11 06:21 - 02150288 _____ () C:\Program Files (x86)\UCBrowser\Application\6.1.2716.5\UCAgent.exe
2017-06-20 20:57 - 2017-06-20 20:57 - 02072576 _____ () C:\Users\shenzai\AppData\Local\Temp\00018051\msiql.exe
2017-06-20 21:24 - 2017-06-20 21:24 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\ncci2xwqyz4\u1f0xjgbj0n.exe
2017-06-20 21:24 - 2017-06-20 21:24 - 01076736 _____ () C:\Users\shenzai\AppData\Local\Temp\is-F5C6C.tmp\EW3pNblyk.tmp
2017-06-20 21:24 - 2017-06-20 21:24 - 00008192 _____ () C:\Users\shenzai\AppData\Roaming\yd4trr2f34o\onlhvh2zxm3.exe
2015-10-20 10:17 - 2015-10-20 10:17 - 00242176 _____ () C:\Program Files (x86)\4game\3.6.2.254\PocoUtil.dll
2015-10-20 10:18 - 2015-10-20 10:18 - 00714240 _____ () C:\Program Files (x86)\4game\3.6.2.254\PocoNet.dll
2015-10-20 10:16 - 2015-10-20 10:16 - 00394240 _____ () C:\Program Files (x86)\4game\3.6.2.254\PocoXML.dll
2015-04-13 15:54 - 2015-04-13 15:54 - 00031080 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2015-04-13 15:54 - 2015-04-13 15:54 - 00607376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2015-04-13 15:54 - 2015-04-13 15:54 - 00059752 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2015-04-13 15:54 - 2015-04-13 15:54 - 00036216 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2015-04-13 15:54 - 2015-04-13 15:54 - 00080248 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2015-04-13 15:55 - 2015-04-13 15:55 - 00129376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2015-04-13 15:57 - 2015-04-13 15:57 - 00223592 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2016-08-15 22:35 - 2013-02-27 17:17 - 00221184 _____ () C:\Program Files (x86)\netis\USB Wireless LAN Utility\EnumDevLib.dll
2017-05-22 20:58 - 2015-08-27 02:37 - 00011896 ____R () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2017-06-20 21:24 - 2008-10-15 16:44 - 00205312 _____ () C:\Users\shenzai\AppData\Local\Temp\is-U0PA4.tmp\itdownload.dll
2017-06-20 20:27 - 2017-05-11 06:19 - 00509840 _____ () C:\Program Files (x86)\UCBrowser\Application\6.1.2716.5\libmp3lame.DLL
2017-06-20 20:27 - 2017-05-11 06:19 - 01716624 _____ () C:\Program Files (x86)\UCBrowser\Application\6.1.2716.5\libglesv2.dll
2017-06-20 20:27 - 2017-05-11 06:17 - 00088464 _____ () C:\Program Files (x86)\UCBrowser\Application\6.1.2716.5\libegl.dll
==================== Alternate Data Streams (filtrowane) =========
(Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.)
AlternateDataStreams: C:\Windows\system32\drivers:ucdrv-x64.sys [25444]
AlternateDataStreams: C:\Windows\system32\drivers:x64 [1498914]
AlternateDataStreams: C:\Windows\system32\drivers:x86 [1223458]
==================== Tryb awaryjny (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość " AlternateShell " zostanie przywrócona.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService = & gt; " " = " Service "
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService = & gt; " " = " Service "
==================== Powiązania plików (filtrowane) ===============
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.)
==================== Internet Explorer - Witryny zaufane i z ograniczeniami ===============
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.)
==================== Hosts - zawartość: ==========================
(Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.)
2009-07-14 04:34 - 2017-06-20 21:24 - 00001182 _____ C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 cpm.paneladmin.pro
127.0.0.1 publisher.hmdiadmingate.xyz
127.0.0.1 distribution.hmdiadmingate.xyz
127.0.0.1 hmdicrewtracksystem.xyz
127.0.0.1 linkmate.space
127.0.0.1 space1.adminpressure.space
127.0.0.1 trackpressure.website
127.0.0.1 doctorlink.space
127.0.0.1 plugpackdownload.net
127.0.0.1 dscdn.pw
127.0.0.1 beautifllink.xyz
==================== Inne obszary ============================
(Obecnie brak automatycznej naprawy dla tej sekcji.)
HKU\S-1-5-21-900294517-2085080873-4140816556-1001\Control Panel\Desktop\\Wallpaper - & gt; C:\Users\shenzai\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 89.231.1.206 - 217.172.224.160
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System = & gt; (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Zapora systemu Windows [funkcja włączona]
==================== MSCONFIG/TASK MANAGER - Wyłączone elementy ==
==================== Reguły Zapory systemu Windows (filtrowane) ===============
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
FirewallRules: [{A8309E6D-9747-4CEB-AFF2-2A5CEDE39C43}] = & gt; (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{CEF7AD1E-E4CF-4DC0-8991-7A70A437914E}] = & gt; (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{CDF413D9-4A98-491D-8B05-5A15120518DE}] = & gt; (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{891F151E-57C3-444D-96B7-D1ED5DA4FF2D}] = & gt; (Allow) D:\GF)\GameforgeLive\Games\POL_pol\Elsword\data\x2.exe
FirewallRules: [{0F361BD8-F50D-44F5-852D-F507493DEDDE}] = & gt; (Allow) D:\GF)\GameforgeLive\Games\POL_pol\Elsword\data\x2.exe
FirewallRules: [TCP Query User{2687B38F-E733-4888-8658-A8EEDD2BAF5B}C:\users\shenzai\appdata\roaming\utorrent\utorrent.exe] = & gt; (Allow) C:\users\shenzai\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{724F914D-7C84-441C-9212-EC1BCC1AE5F4}C:\users\shenzai\appdata\roaming\utorrent\utorrent.exe] = & gt; (Allow) C:\users\shenzai\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{0996A5B7-50AF-4CA3-AF8A-8618110CEDA5}] = & gt; (Allow) C:\WarThunder\bpreport.exe
FirewallRules: [{542F1EEB-33AE-4C25-BA33-3AB552162F2E}] = & gt; (Allow) C:\WarThunder\bpreport.exe
FirewallRules: [{DB591FDF-9C01-4E03-A420-DCD869B24282}] = & gt; (Allow) LPort=80
FirewallRules: [{CCEEAF9C-D18C-4017-BE94-A76DE3FBE847}] = & gt; (Allow) LPort=443
FirewallRules: [{62655BDD-2D8E-47DB-AD41-506294F44609}] = & gt; (Allow) LPort=20010
FirewallRules: [{0AF5CDDC-4667-4D92-94EA-797EBA42D7E5}] = & gt; (Allow) LPort=3478
FirewallRules: [{5F3084C9-3EF6-44B6-A182-9C1999156B44}] = & gt; (Allow) LPort=7850
FirewallRules: [{6AF70536-7947-4DF8-9096-CAF4A56C0B2A}] = & gt; (Allow) LPort=7852
FirewallRules: [{17A270E6-FF9C-4939-A603-C294D47CC2D6}] = & gt; (Allow) LPort=7853
FirewallRules: [{F601E230-D9C5-41E2-988B-EBE90EDD9776}] = & gt; (Allow) LPort=27022
FirewallRules: [{7E9EA25D-F8BB-41A9-AC1B-3E3C5901C05F}] = & gt; (Allow) LPort=6881
FirewallRules: [{F7454378-0C28-424C-B73D-9DF3134C29F1}] = & gt; (Allow) LPort=33333
FirewallRules: [{508D75A8-73E7-43FC-A202-756216DAEF8E}] = & gt; (Allow) LPort=20443
FirewallRules: [{01CC6AD9-6864-453F-B129-57BEC852D382}] = & gt; (Allow) LPort=8090
FirewallRules: [TCP Query User{2F5661C5-F17F-42C8-95A9-FC0FD5B98F24}D:\gf)\gameforgelive\games\pol_pol\aion\nclauncher.exe] = & gt; (Allow) D:\gf)\gameforgelive\games\pol_pol\aion\nclauncher.exe
FirewallRules: [UDP Query User{0CE39B76-E9D5-4CD1-8C49-2EE7BE1BED48}D:\gf)\gameforgelive\games\pol_pol\aion\nclauncher.exe] = & gt; (Allow) D:\gf)\gameforgelive\games\pol_pol\aion\nclauncher.exe
FirewallRules: [TCP Query User{26ADC7E1-5EEF-4C7C-A209-B8EC1D508222}C:\users\shenzai\appdata\roaming\utorrent\utorrent.exe] = & gt; (Allow) C:\users\shenzai\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{54DFAA56-E82A-46B3-A992-F2C2FAFACA6C}C:\users\shenzai\appdata\roaming\utorrent\utorrent.exe] = & gt; (Allow) C:\users\shenzai\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{94466356-C9FF-4270-800D-E58C9AFC0347}D:\games\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe] = & gt; (Allow) D:\games\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe
FirewallRules: [UDP Query User{A5032E9A-0B43-4CAD-AA9F-6F60262E39E9}D:\games\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe] = & gt; (Allow) D:\games\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe
FirewallRules: [TCP Query User{E94B1480-C4DC-43BC-ABDE-122FA576AABD}D:\gry\l4d\left 4 dead 2 v2.0.2.7 full-rip {blaze69}\left 4 dead 2\left4dead2.exe] = & gt; (Block) D:\gry\l4d\left 4 dead 2 v2.0.2.7 full-rip {blaze69}\left 4 dead 2\left4dead2.exe
FirewallRules: [UDP Query User{3AE0056D-FC70-413C-A7FF-7EE7BE9750DD}D:\gry\l4d\left 4 dead 2 v2.0.2.7 full-rip {blaze69}\left 4 dead 2\left4dead2.exe] = & gt; (Block) D:\gry\l4d\left 4 dead 2 v2.0.2.7 full-rip {blaze69}\left 4 dead 2\left4dead2.exe
FirewallRules: [TCP Query User{158E9A23-26FA-49BA-8BA9-EE4479E54E48}D:\games\goat simulator\binaries\win32\goatgame-win32-shipping.exe] = & gt; (Allow) D:\games\goat simulator\binaries\win32\goatgame-win32-shipping.exe
FirewallRules: [UDP Query User{71C0F90F-4A11-482E-96C2-C2E996EAB65A}D:\games\goat simulator\binaries\win32\goatgame-win32-shipping.exe] = & gt; (Allow) D:\games\goat simulator\binaries\win32\goatgame-win32-shipping.exe
FirewallRules: [TCP Query User{BD91D167-820F-4A40-9AD8-4B67C20A066A}D:\games\l4d2 fatal return\resources\left4dead2.exe] = & gt; (Block) D:\games\l4d2 fatal return\resources\left4dead2.exe
FirewallRules: [UDP Query User{08D037B6-D0F6-49B9-9497-6013937DB9F3}D:\games\l4d2 fatal return\resources\left4dead2.exe] = & gt; (Block) D:\games\l4d2 fatal return\resources\left4dead2.exe
FirewallRules: [{87DF6D6C-F084-401F-AF72-C8666002C65A}] = & gt; (Allow) D:\Games\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
FirewallRules: [{B9D281B3-10AD-4D98-925B-43637E8C9F66}] = & gt; (Allow) D:\Games\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
FirewallRules: [{6C481C14-5C03-4462-8297-ACF252316398}] = & gt; (Allow) C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [{8E1C531C-DD0A-4071-A858-E9E7B972F871}] = & gt; (Allow) C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [TCP Query User{7DAC8585-C2D0-4863-B5D1-C2EA289BF74B}C:\users\shenzai\desktop\nowy folder (2)\virtualmt2\virtualcafe_launcher.exe] = & gt; (Allow) C:\users\shenzai\desktop\nowy folder (2)\virtualmt2\virtualcafe_launcher.exe
FirewallRules: [UDP Query User{129C2F6C-6F96-499A-BF1D-F2945B8EB3E3}C:\users\shenzai\desktop\nowy folder (2)\virtualmt2\virtualcafe_launcher.exe] = & gt; (Allow) C:\users\shenzai\desktop\nowy folder (2)\virtualmt2\virtualcafe_launcher.exe
FirewallRules: [TCP Query User{4A653EC1-6EEA-4AE8-BE86-462ACD3520E6}C:\users\shenzai\desktop\nowy folder\nightcore.pl\nightcore.pl.exe] = & gt; (Allow) C:\users\shenzai\desktop\nowy folder\nightcore.pl\nightcore.pl.exe
FirewallRules: [UDP Query User{BDED31A4-4B7B-4E8F-9EC6-330A4A95FDB0}C:\users\shenzai\desktop\nowy folder\nightcore.pl\nightcore.pl.exe] = & gt; (Allow) C:\users\shenzai\desktop\nowy folder\nightcore.pl\nightcore.pl.exe
FirewallRules: [TCP Query User{969F793E-53FE-4689-9481-308B17B14602}C:\users\shenzai\desktop\nowy folder (3)\marinermt2.pl-09.04.2016\marinermt2.exe] = & gt; (Allow) C:\users\shenzai\desktop\nowy folder (3)\marinermt2.pl-09.04.2016\marinermt2.exe
FirewallRules: [UDP Query User{08069095-34DB-490E-BDB0-587C4FAFDAD0}C:\users\shenzai\desktop\nowy folder (3)\marinermt2.pl-09.04.2016\marinermt2.exe] = & gt; (Allow) C:\users\shenzai\desktop\nowy folder (3)\marinermt2.pl-09.04.2016\marinermt2.exe
FirewallRules: [TCP Query User{1018C9D7-D42C-495D-B5EF-1AA870AD3AE6}C:\users\shenzai\desktop\nowy folder (3)\marinermt2.pl-09.04.2016\marinermt2.exe] = & gt; (Allow) C:\users\shenzai\desktop\nowy folder (3)\marinermt2.pl-09.04.2016\marinermt2.exe
FirewallRules: [UDP Query User{8353A40E-4EEE-4B43-AAFF-1C11F7B2CDCB}C:\users\shenzai\desktop\nowy folder (3)\marinermt2.pl-09.04.2016\marinermt2.exe] = & gt; (Allow) C:\users\shenzai\desktop\nowy folder (3)\marinermt2.pl-09.04.2016\marinermt2.exe
FirewallRules: [{547C0AD3-24C2-4814-A4DB-A78C8DFCDF24}] = & gt; (Allow) D:\Games\Mr DJ\Deadpool\Binaries\DP.exe
FirewallRules: [{71DE4AB7-A2A6-441C-81E1-3A3CB382530C}] = & gt; (Allow) D:\Games\Mr DJ\Deadpool\Binaries\DP.exe
FirewallRules: [TCP Query User{CE9F1566-3C36-4E2F-AD73-C8625A661A87}C:\users\shenzai\desktop\porno\marinermt2.pl-09.04.2016\marinermt2.exe] = & gt; (Allow) C:\users\shenzai\desktop\porno\marinermt2.pl-09.04.2016\marinermt2.exe
FirewallRules: [UDP Query User{4D76F199-9F43-4664-901D-9227A007E93F}C:\users\shenzai\desktop\porno\marinermt2.pl-09.04.2016\marinermt2.exe] = & gt; (Allow) C:\users\shenzai\desktop\porno\marinermt2.pl-09.04.2016\marinermt2.exe
FirewallRules: [TCP Query User{FD13BE00-2535-4E07-87B1-065FA96E074B}C:\users\shenzai\desktop\marinermt2.pl-09.04.2016\marinermt2.exe] = & gt; (Allow) C:\users\shenzai\desktop\marinermt2.pl-09.04.2016\marinermt2.exe
FirewallRules: [UDP Query User{4B93B86E-6AE2-407B-BBEA-2E246A8B2EBA}C:\users\shenzai\desktop\marinermt2.pl-09.04.2016\marinermt2.exe] = & gt; (Allow) C:\users\shenzai\desktop\marinermt2.pl-09.04.2016\marinermt2.exe
FirewallRules: [{5DA00583-7DB6-49B8-9692-3F11FF52B176}] = & gt; (Allow) D:\GF)\GameforgeLive\gfl_client.exe
FirewallRules: [TCP Query User{F53E7D67-5307-4DAC-8A7A-502005E2D572}D:\games\icarus\appdata\bin64\launcher.exe] = & gt; (Allow) D:\games\icarus\appdata\bin64\launcher.exe
FirewallRules: [UDP Query User{3559FDD9-60A7-43D9-A37F-4E0678712376}D:\games\icarus\appdata\bin64\launcher.exe] = & gt; (Allow) D:\games\icarus\appdata\bin64\launcher.exe
FirewallRules: [TCP Query User{0A6505EE-71FB-487A-AF04-56AC628CCAB1}C:\nexon\library\icarus\appdata\bin64\launcher.exe] = & gt; (Allow) C:\nexon\library\icarus\appdata\bin64\launcher.exe
FirewallRules: [UDP Query User{B5E80DC2-4939-4683-8E2D-E49361D85988}C:\nexon\library\icarus\appdata\bin64\launcher.exe] = & gt; (Allow) C:\nexon\library\icarus\appdata\bin64\launcher.exe
FirewallRules: [{49260335-BEB8-4191-82D0-EB86E0F53176}] = & gt; (Allow) C:\PROGRA~2\netis\USBWIR~1\RtWlan.exe
FirewallRules: [{5DAA7345-BB1A-4B41-8485-3B55DA39ADFA}] = & gt; (Allow) LPort=1542
FirewallRules: [{77765D5A-1474-4C4A-A9B6-74C9B6E09168}] = & gt; (Allow) LPort=1542
FirewallRules: [{0EDBB368-9E38-446B-A711-2527FF5B7E5C}] = & gt; (Allow) LPort=53
FirewallRules: [{8F704E7C-0CE1-41E7-8F1D-97F600B33284}] = & gt; (Allow) LPort=67
FirewallRules: [{22DB2DC8-FD64-42A1-947C-5FEE39778DCE}] = & gt; (Allow) LPort=68
FirewallRules: [{A22624E3-DF19-4DF5-B685-FF8BB4DE3CDA}] = & gt; (Allow) LPort=53
FirewallRules: [{B7852B59-DD92-4179-AE73-2A92AA67F0E4}] = & gt; (Allow) LPort=53
FirewallRules: [{7C274069-C5D9-4A50-BC7B-484E277068CB}] = & gt; (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\Rtldhcp.exe
FirewallRules: [{3AE50E90-724E-4DF9-B0DF-E216EEDE05EA}] = & gt; (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{4BE28A1C-1034-48C9-956D-4B91B16D47F6}] = & gt; (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{28AC0985-4A84-4912-A4F5-32187E502BBF}] = & gt; (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{5C5ACC21-3553-4E12-AEED-92FC19FF4FDD}] = & gt; (Allow) D:\Games\st2\Stronghold2.exe
FirewallRules: [{CA8DB92E-FE92-4F5C-AD5A-264E0E80B875}] = & gt; (Allow) D:\Games\st2\Stronghold2.exe
FirewallRules: [{AACABCDF-65DC-4194-9276-C6611F8060BB}] = & gt; (Allow) D:\Gry\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{51EB1C17-0D62-4CDC-A1F4-EDFF8D599C25}] = & gt; (Allow) D:\Gry\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [TCP Query User{77309FEE-DACF-4DE5-A584-8973FE547582}C:\users\shenzai\appdata\local\mycomgames\mycomgames.exe] = & gt; (Allow) C:\users\shenzai\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{7BCB6DB3-6D33-4F39-9DBA-E2796B844788}C:\users\shenzai\appdata\local\mycomgames\mycomgames.exe] = & gt; (Allow) C:\users\shenzai\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{B030CFB3-02EF-4901-9DDE-6644647B74B5}D:\mygames\revelation online\game\tianyu.exe] = & gt; (Allow) D:\mygames\revelation online\game\tianyu.exe
FirewallRules: [UDP Query User{7C04FFA0-2276-471F-AE8E-8D1F64C2F7AB}D:\mygames\revelation online\game\tianyu.exe] = & gt; (Allow) D:\mygames\revelation online\game\tianyu.exe
FirewallRules: [TCP Query User{4D577AEE-33D8-4358-9B2E-D3A00EF1266A}C:\users\shenzai\appdata\local\mycomgames\mycomgames.exe] = & gt; (Block) C:\users\shenzai\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{0C9006F2-2A80-41E8-A755-12BC9FDEEEF1}C:\users\shenzai\appdata\local\mycomgames\mycomgames.exe] = & gt; (Block) C:\users\shenzai\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [{928D4A6E-DD07-48B0-9CEF-B491975699F9}] = & gt; (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{25103903-9384-4FB1-AB11-3882E0AE0C51}] = & gt; (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{001D4220-8D22-4860-81C7-2C6A0670B854}] = & gt; (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{24047753-95F2-426C-ADA1-9505C83EFCAA}] = & gt; (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{0EFAB273-3B8D-4689-A958-3B413A1C4204}] = & gt; (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{89AD2AC4-6495-4AEA-B059-3DA3EA8B5EF2}] = & gt; (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{C44228B5-6434-492E-AB85-04C2A54F3C4A}C:\program files (x86)\game center 101xp\launcher101xp.exe] = & gt; (Allow) C:\program files (x86)\game center 101xp\launcher101xp.exe
FirewallRules: [UDP Query User{4550633E-8F67-4B7F-B173-00BFEFBC5ACE}C:\program files (x86)\game center 101xp\launcher101xp.exe] = & gt; (Allow) C:\program files (x86)\game center 101xp\launcher101xp.exe
FirewallRules: [{707EC754-D146-44EA-863A-A4611947D98A}] = & gt; (Allow) C:\Windows\system32\rundll32.exe
FirewallRules: [{E2A2E4DF-D1E7-4F7B-BABD-86C25436C22D}] = & gt; (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
FirewallRules: [{42037F67-3558-4C99-8160-9315F94C437A}] = & gt; (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
FirewallRules: [{9FCFA277-E836-4B38-813A-26AC51CC5B1F}] = & gt; (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [{C45B6149-5710-476E-AD19-BB56BB1A8A3C}] = & gt; (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [{5C7ED833-AA40-4FC9-A785-C8BEEBB3AB42}] = & gt; (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{9D71EAE8-9D46-493D-999F-84A311CA5DA2}] = & gt; (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E07DA246-BEC9-4AD3-854C-8E8534FD6352}] = & gt; (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [{60D71418-2DDD-479C-8855-290462056EF9}] = & gt; (Allow) C:\Windows\System32\rundll32.exe
==================== Punkty Przywracania systemu =========================
12-06-2017 15:03:30 Zaplanowany punkt kontrolny
13-06-2017 17:56:16 Windows Update
14-06-2017 23:49:42 Windows Update
19-06-2017 19:53:03 Removed Cisco EAP-FAST Module
19-06-2017 20:02:58 Operacja przywracania
19-06-2017 20:35:16 Removed Online Application
19-06-2017 20:54:37 Removed Online Application
20-06-2017 20:04:30 Windows Update
==================== Wadliwe urządzenia w Menedżerze urządzeń =============
Name: Kontroler multimediów audio
Description: Kontroler multimediów audio
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click " Update Driver " , which starts the Hardware Update wizard.
==================== Błędy w Dzienniku zdarzeń: =========================
Dziennik Aplikacja:
==================
Error: (06/20/2017 08:52:20 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: ZARZĄDZANIE NT)
Description: Pomijanie: nie można zweryfikować Eap method DLL path name. Błąd: identyfikator typu=43, identyfikator autora=9, identyfikator dostawcy=0, typ dostawcy=0
Error: (06/20/2017 08:52:20 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: ZARZĄDZANIE NT)
Description: Pomijanie: nie można zweryfikować Eap method DLL path name. Błąd: identyfikator typu=25, identyfikator autora=9, identyfikator dostawcy=0, typ dostawcy=0
Error: (06/20/2017 08:52:20 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: ZARZĄDZANIE NT)
Description: Pomijanie: nie można zweryfikować Eap method DLL path name. Błąd: identyfikator typu=17, identyfikator autora=9, identyfikator dostawcy=0, typ dostawcy=0
Error: (06/20/2017 08:12:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: Setup.exe_Setup, wersja: 2.0.0.56, sygnatura czasowa: 0x593e604c
Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.23807, sygnatura czasowa: 0x5915f8e8
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x0006427b
Identyfikator procesu powodującego błąd: 0x1f40
Godzina uruchomienia aplikacji powodującej błąd: 0x01d2e9f096dfa620
Ścieżka aplikacji powodującej błąd: C:\Users\shenzai\AppData\Local\Temp\is-FF6HN.tmp\Setup.exe
Ścieżka modułu powodującego błąd: C:\Windows\SysWOW64\ntdll.dll
Identyfikator raportu: fd6ddfd8-55e3-11e7-a94e-bcaec582f204
Error: (06/20/2017 08:00:11 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: ZARZĄDZANIE NT)
Description: Pomijanie: nie można zweryfikować Eap method DLL path name. Błąd: identyfikator typu=43, identyfikator autora=9, identyfikator dostawcy=0, typ dostawcy=0
Error: (06/20/2017 08:00:11 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: ZARZĄDZANIE NT)
Description: Pomijanie: nie można zweryfikować Eap method DLL path name. Błąd: identyfikator typu=25, identyfikator autora=9, identyfikator dostawcy=0, typ dostawcy=0
Error: (06/20/2017 08:00:11 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: ZARZĄDZANIE NT)
Description: Pomijanie: nie można zweryfikować Eap method DLL path name. Błąd: identyfikator typu=17, identyfikator autora=9, identyfikator dostawcy=0, typ dostawcy=0
Error: (06/19/2017 09:57:57 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: ZARZĄDZANIE NT)
Description: Pomijanie: nie można zweryfikować Eap method DLL path name. Błąd: identyfikator typu=43, identyfikator autora=9, identyfikator dostawcy=0, typ dostawcy=0
Error: (06/19/2017 09:57:57 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: ZARZĄDZANIE NT)
Description: Pomijanie: nie można zweryfikować Eap method DLL path name. Błąd: identyfikator typu=25, identyfikator autora=9, identyfikator dostawcy=0, typ dostawcy=0
Error: (06/19/2017 09:57:57 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: ZARZĄDZANIE NT)
Description: Pomijanie: nie można zweryfikować Eap method DLL path name. Błąd: identyfikator typu=17, identyfikator autora=9, identyfikator dostawcy=0, typ dostawcy=0
Dziennik System:
=============
Error: (06/20/2017 08:52:24 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego:
prodrv06
prohlp02
prosync1
sfhlp01
Error: (06/20/2017 08:51:34 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Ładowanie sterownika \SystemRoot\SysWow64\drivers\prodrv06.sys zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika.
Error: (06/20/2017 08:39:38 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Menedżer sterowania usługami próbował podjąć akcję korekcyjną (Uruchom usługę ponownie) po nieoczekiwanym zakończeniu usługi Windows Search, ale ta akcja nie powiodła się przy następującym błędzie:
Jedno wystąpienie usługi już działa.
.
Error: (06/20/2017 08:39:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Usługa UC浏览器基础服务 niespodziewanie zakończyła pracę. Wystąpiło to razy: 1.
Error: (06/20/2017 08:39:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Usługa Windows Search niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie.
Error: (06/20/2017 08:39:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Usługa Usługa udostępniania w sieci programu Windows Media Player niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie.
Error: (06/20/2017 08:39:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Usługa Usługa bramy warstwy aplikacji niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 120000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie.
Error: (06/20/2017 08:39:07 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Usługa ForceWare IP service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1.
Error: (06/20/2017 08:39:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Usługa Malwarebytes Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 5000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie.
Error: (06/20/2017 08:39:07 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Usługa ForceWare Intelligent Application Manager (IAM) niespodziewanie zakończyła pracę. Wystąpiło to razy: 1.
CodeIntegrity:
===================================
Date: 2017-06-20 20:52:20.412
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\winhttp.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-06-20 20:52:20.224
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-06-20 20:52:20.037
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-06-20 20:52:19.850
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\winhttp.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-06-20 20:00:11.470
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\winhttp.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-06-20 20:00:11.283
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-06-20 20:00:11.096
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-06-20 20:00:10.908
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\winhttp.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-06-19 21:57:57.005
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\winhttp.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-06-19 21:57:56.786
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system.
==================== Statystyki pamięci ===========================
Procesor: AMD Athlon(tm) II X4 640 Processor
Procent pamięci w użyciu: 76%
Całkowita pamięć fizyczna: 4095.23 MB
Dostępna pamięć fizyczna: 949.84 MB
Całkowita pamięć wirtualna: 8188.64 MB
Dostępna pamięć wirtualna: 2490.76 MB
==================== Dyski ================================
Drive c: () (Fixed) (Total:390.62 GB) (Free:213.98 GB) NTFS
Drive d: () (Fixed) (Total:540.79 GB) (Free:110.23 GB) NTFS
Drive e: (GV-00020-10R) (CDROM) (Total:2.75 GB) (Free:0 GB) CDFS
==================== MBR & Tablica partycji ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: D0268E21)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=390.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=540.8 GB) - (Type=07 NTFS)
==================== Koniec Addition.txt ============================