Addition_14-12-2015_09-33-53.txt

Jak skutecznie usunąć yoursites123?

Witam. Mnie też niestety dopadło yoursites123 i niestety po wielu próbach nie mogę usunąć tego cholerstwa. Pomoże ktoś?:)

Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:13-12-2015
Uruchomiony przez wprzybysz (2015-12-14 09:32:54)
Uruchomiony z C:\Users\wprzybysz\Downloads
Windows 8.1 (X64) (2014-10-09 17:32:47)
Tryb startu: Normal
==========================================================


==================== Konta użytkowników: =============================

Administrator (S-1-5-21-371952122-2311419433-1421729925-500 - Administrator - Disabled)
Gość (S-1-5-21-371952122-2311419433-1421729925-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-371952122-2311419433-1421729925-1003 - Limited - Enabled)
wprzybysz (S-1-5-21-371952122-2311419433-1421729925-1001 - Administrator - Enabled) = & gt; C:\Users\wprzybysz

==================== Centrum zabezpieczeń ========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Zainstalowane programy ======================

(W fixlist dozwolone tylko załączanie programów adware z flagą " Hidden " w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.)

µTorrent (HKU\S-1-5-21-371952122-2311419433-1421729925-1001\...\uTorrent) (Version: 3.4.6.41506 - BitTorrent Inc.)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
Aktualizacja produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0415-0000-0000000FF1CE}_ENTERPRISE_{04E205D6-88B1-4652-B162-42DF2C3B1228}) (Version: - Microsoft)
Aktualizacja produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0415-0000-0000000FF1CE}_ENTERPRISE_{442ECBCF-94A7-48CC-8CD9-D31FFFD5FA86}) (Version: - Microsoft)
Aktualizacja produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0415-0000-0000000FF1CE}_ENTERPRISE_{128A36ED-21BE-4547-9FFE-5B85AEC735DD}) (Version: - Microsoft)
Alcor Micro USB Card Reader Driver (HKLM-x32\...\InstallShield_{5CA55DFC-2008-460F-B7A7-FB92100C4494}) (Version: 20.4.10117.43857 - Alcor Micro Corp.)
Alcor Micro USB Card Reader Driver (x32 Version: 20.4.10117.43857 - Alcor Micro Corp.) Hidden
Apple Application Support (32-bit) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.3.4 - ASUS)
ASUS Screen Saver (HKLM-x32\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 2.0.3 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 2.2.14 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.01.0003 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 3.1.9 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0034 - ASUS)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.4.2233 - AVAST Software)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CDRWIN 10 (HKLM-x32\...\{317618F1-DDBA-4E67-0001-F3AF1185D4A5}) (Version: 10.0.14.106 - Engelmann Media GmbH)
CyberLink MediaStory (HKLM-x32\...\InstallShield_{55762F9A-FCE3-45d5-817B-051218658423}) (Version: 1.0.1314 - CyberLink Corp.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.80 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company)
installAPK (Remove Only) (HKLM-x32\...\installAPK) (Version: - )
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\FFD10ECE-F715-4a86-9BD8-F6F47DA5DA1C) (Version: 7.1.0.2105 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3496 - Intel Corporation)
iTunes (HKLM\...\{6CF1A7E2-8001-4870-9F18-3C6CDD6FE9E3}) (Version: 12.2.1.16 - Apple Inc.)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft PowerPoint 2013 - pl-pl (HKLM\...\PowerPointRetail - pl-pl) (Version: 15.0.4771.1004 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-371952122-2311419433-1421729925-1001\...\SkyDriveSetup.exe) (Version: 16.4.6012.0828 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
NVIDIA Graphics Driver 333.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 333.17 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4771.1004 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4771.1004 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4771.1004 - Microsoft Corporation) Hidden
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation)
SpyHunter (HKLM-x32\...\{4FC9DA9D-F608-454E-8191-D7EFFDCC5726}) (Version: 4.1.11 - Enigma Software Group USA, LLC)
The Sims 2 Ultimate Collection version 1.17.0.66 (HKLM-x32\...\The Sims 2 Ultimate Collection_is1) (Version: 1.17.0.66 - Mr DJ)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.1.2.301 - ASUS Cloud Corporation)
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.9550 - Broadcom Corporation)
Windows Driver Package - ASUS (ATP) Mouse (03/18/2014 6.0.0.35) (HKLM\...\DAA6E0EEB715139C1CEA332C78AB4609FB3C211B) (Version: 03/18/2014 6.0.0.35 - ASUS)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS)
WinRAR 5.20 (32-bitowy) (HKLM-x32\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)

==================== Niestandardowe rejestracje CLSID (filtrowane): ==========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

CustomCLSID: HKU\S-1-5-21-371952122-2311419433-1421729925-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 - & gt; C:\Windows\system32\igfxEM.exe (Intel Corporation)

==================== Punkty Przywracania systemu =========================

22-11-2015 14:09:25 Zaplanowany punkt kontrolny
02-12-2015 19:19:11 Zaplanowany punkt kontrolny
09-12-2015 12:05:48 Windows Update
11-12-2015 13:40:04 AA11
13-12-2015 12:26:04 AA11

==================== Hosts - zawartość: ===============================

(Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.)

2013-08-22 14:25 - 2015-12-13 12:34 - 00000828 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Zaplanowane zadania (filtrowane) =============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

Task: {089DB63A-A6E5-4FD7-97F9-1BEB399D5145} - System32\Tasks\ASUS USB Charger Plus = & gt; C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2014-03-27] (ASUSTek Computer Inc.)
Task: {0AFAF02C-1C57-4406-BE59-BB3BFE41C474} - System32\Tasks\Microsoft\Office\Office Automatic Updates = & gt; C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-10-13] (Microsoft Corporation)
Task: {0D8A891D-890C-4808-84D8-2F436AB14653} - \Microsoft\Windows\Application Experience\AitAgent - & gt; Brak pliku & lt; ==== UWAGA
Task: {1274336E-AB06-46B6-A48C-0671C5557CC6} - \Microsoft\Windows\TaskScheduler\Maintenance Configurator - & gt; Brak pliku & lt; ==== UWAGA
Task: {1687544D-7247-4F5A-965A-A6E920E55278} - \Microsoft\Windows\TaskScheduler\Manual Maintenance - & gt; Brak pliku & lt; ==== UWAGA
Task: {16F7EBDC-F673-4F49-A142-AD1E352A7E01} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB = & gt; C:\Windows\system32\MRT.exe [2015-12-09] (Microsoft Corporation)
Task: {4DAB5DBF-FC18-428D-AC9D-C0F1BFB1C84B} - System32\Tasks\ASUS Live Update2 = & gt; C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-03-23] (ASUSTeK Computer Inc.)
Task: {6F02587F-8A2B-4552-97F6-DEEF229E335B} - \Microsoft\Windows\TaskScheduler\Idle Maintenance - & gt; Brak pliku & lt; ==== UWAGA
Task: {84C5769F-09EA-4777-9EEF-A65AFB5EE0F8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor = & gt; C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-10-13] (Microsoft Corporation)
Task: {87A04C7B-C8F3-4A32-AC24-CE95164871DB} - System32\Tasks\ASUS Live Update1 = & gt; C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-03-23] (ASUSTeK Computer Inc.)
Task: {909C820A-7333-4EEC-9373-E8BD8C8E0837} - System32\Tasks\avast! Emergency Update = & gt; C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-09-25] (AVAST Software)
Task: {929BFC8D-4AFE-4FC0-A8FC-7E91C9586E23} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack = & gt; C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-10-28] (Microsoft Corporation)
Task: {957F3430-677A-4C1A-BCAF-3FC4D2BE4222} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn = & gt; C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-10-28] (Microsoft Corporation)
Task: {A3554A56-6E0A-4576-9717-C4390C9D58A4} - System32\Tasks\ASUS Splendid ACMON = & gt; C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2014-04-02] (ASUS)
Task: {B7992938-01F1-4F40-A0EC-0D23D2F0F152} - \Microsoft\Windows\TaskScheduler\Regular Maintenance - & gt; Brak pliku & lt; ==== UWAGA
Task: {BFCE1F4B-44F6-462A-8D90-3D744B90378C} - System32\Tasks\SpyHunter4Startup = & gt; C:\Program Files (x86)\Enigma Software Group\SpyHunter\Spyhunter4.exe [2015-12-13] (Enigma Software Group USA, LLC.)
Task: {C89A9888-8A8C-4C34-8EE2-999D9A6750F1} - System32\Tasks\AVAST Software\Avast settings backup = & gt; C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2015-12-09] (AVAST Software)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - \Microsoft\Windows\SettingSync\BackupTask - & gt; Brak pliku & lt; ==== UWAGA
Task: {D5D164DA-22D4-4C1B-A8A7-5D64077C6653} - System32\Tasks\Adobe Acrobat Update Task = & gt; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {D910109B-AA4E-445D-9840-733FAD4517D6} - System32\Tasks\Update Checker = & gt; C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2015-02-12] ()
Task: {E6716B76-A577-40E3-93BB-37F698DC7F65} - System32\Tasks\GoogleUpdateTaskMachineCore = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-03] (Google Inc.)
Task: {EE94D6A8-A7B2-4579-AF1E-41487181E36D} - System32\Tasks\ATK Package 36D18D69AFC3 = & gt; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2014-01-14] (ASUSTek Computer Inc.)
Task: {F6865195-9D39-4CF1-9B95-7DE3A5FDD161} - System32\Tasks\GoogleUpdateTaskMachineUA = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-03] (Google Inc.)
Task: {FCFF98F0-D8E4-41FD-9FD8-998296DBA9E5} - System32\Tasks\ASUS Smart Gesture Launcher = & gt; C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2014-03-31] (AsusTek)

(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Skróty =============================

(Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.)

ShortcutWithArgument: C:\Users\wprzybysz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - & gt; C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) - & gt; hxxp://www.yoursites123.com/?type=sc & ts=1449822319 & z=5a92a01b826103b8b5d8aadg8z8zet0b7o2o3cageo & from=ient07021 & uid=TOSHIBAXMQ01ABD100_64R2S2CZSXX64R2S2CZS & lt; ==== UWAGA
ShortcutWithArgument: C:\Users\wprzybysz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - & gt; C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) - & gt; hxxp://www.yoursites123.com/?type=sc & ts=1449822319 & z=5a92a01b826103b8b5d8aadg8z8zet0b7o2o3cageo & from=ient07021 & uid=TOSHIBAXMQ01ABD100_64R2S2CZSXX64R2S2CZS & lt; ==== UWAGA
ShortcutWithArgument: C:\Users\wprzybysz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - & gt; C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) - & gt; hxxp://www.yoursites123.com/?type=sc & ts=1449822319 & z=5a92a01b826103b8b5d8aadg8z8zet0b7o2o3cageo & from=ient07021 & uid=TOSHIBAXMQ01ABD100_64R2S2CZSXX64R2S2CZS & lt; ==== UWAGA
ShortcutWithArgument: C:\Users\wprzybysz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - & gt; C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) - & gt; hxxp://www.yoursites123.com/?type=sc & ts=1449822319 & z=5a92a01b826103b8b5d8aadg8z8zet0b7o2o3cageo & from=ient07021 & uid=TOSHIBAXMQ01ABD100_64R2S2CZSXX64R2S2CZS & lt; ==== UWAGA
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - & gt; C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) - & gt; hxxp://www.yoursites123.com/?type=sc & ts=1449822319 & z=5a92a01b826103b8b5d8aadg8z8zet0b7o2o3cageo & from=ient07021 & uid=TOSHIBAXMQ01ABD100_64R2S2CZSXX64R2S2CZS & lt; ==== UWAGA

==================== Załadowane moduły (filtrowane) ==============

2014-10-09 17:59 - 2014-05-13 23:17 - 00118728 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-02-13 04:20 - 2015-02-13 04:20 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-05-15 15:26 - 2015-05-15 15:26 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-03-18 21:48 - 2014-03-18 21:48 - 00049368 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btwleapi.dll
2015-01-16 14:43 - 2015-10-13 04:34 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2014-02-24 11:59 - 2014-02-24 11:59 - 00109056 _____ () C:\Program Files (x86)\ASUS\WebStorage\2.1.2.301\ASUSWSHomeCloudAPI.dll
2015-09-25 09:32 - 2015-09-25 09:32 - 00103376 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-09-25 09:32 - 2015-09-25 09:32 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-12-12 21:23 - 2015-12-12 21:23 - 02803200 _____ () C:\Program Files\AVAST Software\Avast\defs\15121202\algo.dll
2015-12-13 11:50 - 2015-12-13 11:50 - 02803200 _____ () C:\Program Files\AVAST Software\Avast\defs\15121300\algo.dll
2014-10-09 17:54 - 2013-12-09 15:26 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-12-09 21:29 - 2015-12-04 22:32 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.80\libglesv2.dll
2015-12-09 21:29 - 2015-12-04 22:32 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.80\libegl.dll
2015-09-25 09:32 - 2015-09-25 09:32 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-04-02 14:46 - 2014-04-02 14:46 - 00117248 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2014-04-02 14:46 - 2014-04-02 14:46 - 00037936 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2014-04-02 14:46 - 2014-04-02 14:46 - 00018992 _____ () C:\Program Files (x86)\ASUS\Splendid\AMDColorEnhance.dll
2014-04-02 14:46 - 2014-04-02 14:46 - 00020528 _____ () C:\Program Files (x86)\ASUS\Splendid\AMDRegammaAndGamut.dll

==================== Alternate Data Streams (filtrowane) =========

(Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.)


==================== Tryb awaryjny (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość " AlternateShell " zostanie przywrócona.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc = & gt; " " = " "
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc = & gt; " " = " "

==================== EXE - Powiązania (filtrowane) ===============

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.)


==================== Internet Explorer - Witryny zaufane i z ograniczeniami ===============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.)


==================== Inne obszary ============================

(Obecnie brak automatycznej naprawy dla tej sekcji.)

HKU\S-1-5-21-371952122-2311419433-1421729925-1001\Control Panel\Desktop\\Wallpaper - & gt; C:\Users\wprzybysz\AppData\Roaming\Microsoft\Windows Photo Viewer\Tapeta z Przeglądarki fotografii systemu Windows.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System = & gt; (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Zapora systemu Windows [funkcja włączona]

==================== MSCONFIG/TASK MANAGER - Wyłączone elementy ==

(Obecnie brak automatycznej naprawy dla tej sekcji.)


==================== Reguły Zapory systemu Windows (filtrowane) ===============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

FirewallRules: [vm-monitoring-nb-session] = & gt; (Allow) LPort=139
FirewallRules: [{B5B598F7-525C-4265-BF01-6EF17A457622}] = & gt; (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{7B44B296-EC0A-4FDF-A6E0-F0BBF7FC1553}] = & gt; (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A20CBF03-59F9-4BE4-A171-EFB2A8B1727E}] = & gt; (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{D8F74278-5283-4854-B6A8-2A5764A3A112}] = & gt; (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{9764AC93-32FE-4F11-A404-DB3651368C29}] = & gt; (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F4ABECCB-5AF1-409F-8610-3FF30410B853}] = & gt; (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{92CEC992-21D9-4855-A394-47999AFFF9FD}] = & gt; (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{D1E83757-00E2-46C7-8DDF-06C6AEFCEE53}] = & gt; (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{FC43DD37-C126-4C8F-A68E-109053F3CACB}] = & gt; (Allow) C:\Users\wprzybysz\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [TCP Query User{599C493F-00CD-467A-8C54-9D6C55DB4537}C:\program files (x86)\skype\phone\skype.exe] = & gt; (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{7AF95A5F-1FCF-484D-91A1-B867ACD59BB2}C:\program files (x86)\skype\phone\skype.exe] = & gt; (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{C6AC62EC-6137-480E-8394-41CA09F135A8}] = & gt; (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{0FCB6D12-5794-4DB5-A6DE-80F495CE97EE}] = & gt; (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{079C84A0-7BBD-44CE-A2C3-1075B2B2D166}] = & gt; (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [TCP Query User{565DF5DF-6D6D-4BE8-81E7-25DA4520C2AC}C:\users\wprzybysz\appdata\roaming\utorrent\utorrent.exe] = & gt; (Allow) C:\users\wprzybysz\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{CFC4AB49-9F70-441C-8E0A-ED1D867B6A68}C:\users\wprzybysz\appdata\roaming\utorrent\utorrent.exe] = & gt; (Allow) C:\users\wprzybysz\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{1D9616C7-F9D2-4633-BC08-5F364CB82C03}] = & gt; (Allow) C:\Program Files (x86)\Mr DJ\The Sims 2 Ultimate Collection\The Sims 2 Mansion and Garden Stuff\TSBin\Sims2EP9.exe
FirewallRules: [{72112750-30E2-4019-85A7-237B9C210564}] = & gt; (Allow) C:\Program Files (x86)\Mr DJ\The Sims 2 Ultimate Collection\The Sims 2 Mansion and Garden Stuff\TSBin\Sims2EP9.exe
FirewallRules: [{500AAD12-7728-4C10-9970-1040F9018395}] = & gt; (Allow) C:\Program Files (x86)\Mr DJ\The Sims 2 Ultimate Collection\The Sims 2 Mansion and Garden Stuff\CSBin\TS2BodyShop.exe
FirewallRules: [{D124267E-B323-4DBC-8440-D04101184D03}] = & gt; (Allow) C:\Program Files (x86)\Mr DJ\The Sims 2 Ultimate Collection\The Sims 2 Mansion and Garden Stuff\CSBin\TS2BodyShop.exe
FirewallRules: [{31239FF7-C204-4D46-B1BE-3FB52F40188D}] = & gt; (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Wadliwe urządzenia w Menedżerze urządzeń =============


==================== Błędy w Dzienniku zdarzeń: =========================

Dziennik Aplikacja:
==================
Error: (12/14/2015 09:19:25 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m- & gt; NextScheduledSPRetry 37804688

Error: (12/14/2015 09:19:25 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m- & gt; NextScheduledEvent 37804688

Error: (12/14/2015 09:19:25 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (12/13/2015 10:50:07 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m- & gt; NextScheduledSPRetry 46844

Error: (12/13/2015 10:50:07 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m- & gt; NextScheduledEvent 46844

Error: (12/13/2015 10:50:07 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (12/13/2015 10:49:27 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m- & gt; NextScheduledSPRetry 6203

Error: (12/13/2015 10:49:27 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m- & gt; NextScheduledEvent 6203

Error: (12/13/2015 10:49:27 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (12/13/2015 04:02:45 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m- & gt; NextScheduledSPRetry 14141


Dziennik System:
=============
Error: (12/14/2015 09:22:44 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi nvsvc.

Error: (12/14/2015 09:22:14 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi nvsvc.

Error: (12/14/2015 09:21:44 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi nvsvc.

Error: (12/14/2015 09:21:14 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi nvsvc.

Error: (12/14/2015 09:20:44 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi nvsvc.

Error: (12/14/2015 09:20:14 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi nvsvc.

Error: (12/14/2015 09:19:44 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi nvsvc.

Error: (12/13/2015 10:50:18 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi nvsvc.

Error: (12/13/2015 10:49:48 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi nvsvc.

Error: (12/13/2015 01:57:10 PM) (Source: DCOM) (EventID: 10010) (User: wiki)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}


CodeIntegrity:
===================================
Date: 2015-12-13 13:22:11.560
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-03-28 10:34:52.025
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-03-28 10:34:51.784
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Statystyki pamięci ===========================

Procesor: Intel(R) Core(TM) i3-4030U CPU @ 1.90GHz
Procent pamięci w użyciu: 44%
Całkowita pamięć fizyczna: 3979.05 MB
Dostępna pamięć fizyczna: 2216.45 MB
Całkowita pamięć wirtualna: 5037.23 MB
Dostępna pamięć wirtualna: 2849.35 MB

==================== Dyski ================================

Drive c: (OS) (Fixed) (Total:372.6 GB) (Free:253.55 GB) NTFS == & gt; [system z komponentami startowymi (pozyskano odczytując dysk)]
Drive d: (Data) (Fixed) (Total:537.8 GB) (Free:415.24 GB) NTFS

==================== MBR & Tablica partycji ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 94D4D194)

Partition: GPT.

==================== Koniec Addition.txt ============================