Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 25-06-2017 01 Uruchomiony przez alfa1 (26-06-2017 12:08:35) Uruchomiony z C:\Users\alfa1\Downloads Windows 8.1 (Update) (X64) (2015-03-13 13:37:08) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-1405297173-1497940689-1013170819-500 - Administrator - Disabled) alfa1 (S-1-5-21-1405297173-1497940689-1013170819-1001 - Administrator - Enabled) => C:\Users\alfa1 Gość (S-1-5-21-1405297173-1497940689-1013170819-501 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Kaspersky Internet Security (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Kaspersky Internet Security (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Kaspersky Internet Security (Enabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 26.0.0.118 - Adobe Systems Incorporated) Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.131 - Adobe Systems Incorporated) AMIS 3.1.3 (U.S. English) (HKLM-x32\...\AMIS) (Version: 3.1.3 - DAISY Consortium) Arduino (HKLM-x32\...\Arduino) (Version: 1.8.2 - Arduino LLC) CCleaner (HKLM\...\CCleaner) (Version: 5.31 - Piriform) Citrix Online Launcher (HKLM-x32\...\{1EFF9E6C-76E1-43F9-81FB-BC8C037B0902}) (Version: 1.0.258 - Citrix) Classic Shell (HKLM\...\{840C85B7-D3D6-4143-9AF9-DAE80FD54CFC}) (Version: 4.1.0 - IvoSoft) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 5.0.1.0407 - Disc Soft Ltd) EasyBCD 2.2 (HKLM-x32\...\EasyBCD) (Version: 2.2 - NeoSmart Technologies) easySoft-Pro 6 (HKLM-x32\...\{6881452E-947B-4512-BD3E-0017FBF5C71C}) (Version: 6.80.5046 - Eaton Industries GmbH) Eaton Software (HKLM-x32\...\Eaton Software) (Version: 1.2.9 - Eaton) e-pity 8.0.22 za rok 2016 (HKLM-x32\...\{80D8170E-5590-218-B9ED-E24E4C99A11D}_is1) (Version: 8.0.22 - e-file sp. z o.o. sp.k.) FastStone Image Viewer 5.3 (HKLM-x32\...\FastStone Image Viewer) (Version: 5.3 - FastStone Soft) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.109 - Google Inc.) Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden GoToMeeting 8.7.0.7155 (HKU\S-1-5-21-1405297173-1497940689-1013170819-1001\...\GoToMeeting) (Version: 8.7.0.7155 - CitrixOnline) HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software) Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab) Kaspersky Internet Security (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{1CF84962-50F8-48CA-9082-B70F3A02C686}) (Version: 17.0.0.611 - Kaspersky Lab) Kaspersky Secure Connection (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden Kaspersky Security Scan (HKLM-x32\...\InstallWIX_{D1282694-0693-41A8-ABC1-6D1FFC1F65C5}) (Version: 16.0.0.1344 - Kaspersky Lab) Kaspersky Security Scan (x32 Version: 16.0.0.1344 - Kaspersky Lab) Hidden Kaspersky Software Updater (HKLM-x32\...\InstallWIX_{DEEDA858-A9B4-4212-8873-2F2CE2706E68}) (Version: 2.0.0.623 - Kaspersky Lab) Kaspersky Software Updater (x32 Version: 2.0.0.623 - Kaspersky Lab) Hidden LEGO MINDSTORMS EV3 (HKLM-x32\...\LEGO_SW.{5B0CB826-E499-4E6B-94F0-75B6327ED934}) (Version: 1.0.0 - The LEGO Group) LEGO MINDSTORMS EV3 Home Content (x32 Version: 1.2.30 - The LEGO Group) Hidden LEGO MINDSTORMS EV3 Home Edition (x32 Version: 1.2.30 - The LEGO Group) Hidden LEGO MINDSTORMS EV3 Home English Support (x32 Version: 1.2.30 - The LEGO Group) Hidden LEGO MINDSTORMS EV3 Uninstaller (x32 Version: 1.0.11 - The LEGO Group) Hidden LEGO MINDSTORMS NXT x64 Driver (HKLM\...\{A0831C28-A6FA-49A3-86AE-B5AE3C9EE19C}) (Version: 1.20.115.0 - LEGO) LibreCAD (HKLM-x32\...\LibreCAD) (Version: 2.0.7 - LibreCAD Team) LibreOffice 5.3.3.2 (HKLM-x32\...\{C7C4A0C6-8483-4065-851D-CBE5DC17D046}) (Version: 5.3.3.2 - The Document Foundation) LinuxLive USB Creator (HKLM-x32\...\LinuxLive USB Creator) (Version: 2.9 - Thibaut Lauziere) Makeblock Board Driver 1.1 (HKLM\...\{2C496F36-2241-4DEF-9C45-E4C2CEC5E998}_is1) (Version: - Maker Works) Malwarebytes (wersja 3.1.2.1733) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes) mBlock (HKLM-x32\...\{1E9DFEBB-4088-4693-A521-C755318BD492}_is1) (Version: 3.4.6 - Maker Works Technology Co. Ltd.,) Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation) Microsoft ReportViewer 2010 Redistributable (HKLM-x32\...\{C19B3EB6-B54C-3204-A4DF-88432E0C79F7}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation) Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{4E968D9C-21A7-4915-B698-F7AEB913541D}) (Version: 10.50.1447.4 - Microsoft Corporation) Microsoft SQL Server System CLR Types (HKLM-x32\...\{2A2F3AE8-246A-4252-BB26-1BEB45627074}) (Version: 10.50.1447.4 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Runtime - 10.0.30319 (HKLM-x32\...\{6A86554B-8928-30E4-A53C-D7337689134D}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Shell (Integrated) - ENU (HKLM-x32\...\{012D26C3-E12A-3BDA-8ECE-DF14E721A507}) (Version: 10.0.30319 - Microsoft Corporation) Mobilt Bredband (HKLM-x32\...\{AEFF9E60-3E93-41EE-9895-311F7D1C5FFD}) (Version: 1.0.0.2 - ZTE Corporation) Mozilla Firefox 54.0 (x86 pl) (HKLM-x32\...\Mozilla Firefox 54.0 (x86 pl)) (Version: 54.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 54.0.0.6368 - Mozilla) MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden nanoCAD 5.0 (HKLM-x32\...\{6D4250F7-DB33-4530-A9BD-A9D66BA34586}) (Version: 5.0.2520.2000 - Nanosoft) NI .NET Framework 4.0 (x32 Version: 4.01.49154 - National Instruments) Hidden NI EulaDepot (x32 Version: 3.20.363 - National Instruments) Hidden NI MDF Support (x32 Version: 3.20.363 - National Instruments) Hidden NI Security Update (KB 67L8LCQW) (64-bit) (Version: 1.0.29.0 - National Instruments) Hidden NI Security Update (KB 67L8LCQW) (x32 Version: 1.0.29.0 - National Instruments) Hidden NI Uninstaller (x32 Version: 3.20.363 - National Instruments) Hidden NI VC2008MSMs x64 (Version: 9.0.401 - National Instruments) Hidden NI VC2008MSMs x86 (x32 Version: 9.0.401 - National Instruments) Hidden Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia) Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.54.0 - Nokia) Nokia Suite (x32 Version: 3.8.54.0 - Nokia) Hidden NOL3Starter 1.1.1.7 (HKLM-x32\...\NOL3Starter_is1) (Version: 1.1.1.7 - ComArch SA) Notowania 4 Pro (HKLM-x32\...\{D31E5FB8-D906-4053-A780-E45260B8F436}) (Version: 4.2.127.0 - Statica) Notowania OnLine 3 BM Alior Bank (HKLM-x32\...\Notowania OnLine 3 BM Alior Bank_is1) (Version: - COMARCH S.A.) Pakiet sterowników systemu Windows - Arduino LLC (www.arduino.cc) Arduino USB Driver (01/04/2013 1.0.0.0) (HKLM\...\1E3EA5624DD04BEFECF3FFF6D3A21CCE9CD70A91) (Version: 01/04/2013 1.0.0.0 - Arduino LLC (www.arduino.cc)) Pakiet sterowników systemu Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia) PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia) PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.3 - pdfforge) Poedit (HKLM-x32\...\{68EB2C37-083A-4303-B5D8-41FA67E50B8F}_is1) (Version: 1.8.11 - Vaclav Slavik) Program Cennikowy Eaton (HKLM-x32\...\Program Cennikowy Eaton) (Version: - ) S4A version 1.6 (HKLM-x32\...\{808AE0C9-3836-4C70-99EA-112C534CD432}_is1) (Version: 1.6 - Citilab (Cornellŕ)) SafeZone Stable 3.55.2393.607 (x32 Version: 3.55.2393.607 - Avast Software) Hidden Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype™ 7.37 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.37.103 - Skype Technologies S.A.) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.6.0 - Synaptics Incorporated) TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.56083 - TeamViewer) TwinCAT 2.11 x64 Engineering (HKLM\...\{21DE65CE-E653-4E50-9BA2-19E582953E73}) (Version: 2.11.2254.0 - Beckhoff Automation) TwinCAT PLC HMI Web (HKLM-x32\...\{782B7C46-6BA9-409E-9F35-9AA71B26EA25}) (Version: 1.9.23 - Beckhoff) VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0A21F5A4-8541-4FB5-89C5-C5DA09BC34E4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-06-13] (Piriform Ltd) Task: {104A6670-B849-4F46-A059-2C53A4EA95FD} - System32\Tasks\G2MUpdateTask-S-1-5-21-1405297173-1497940689-1013170819-1001 => C:\Users\alfa1\AppData\Local\Citrix\GoToMeeting\7155\g2mupdate.exe [2017-06-13] (Citrix Online, a division of Citrix Systems, Inc.) Task: {121970AC-8C10-4755-9498-D17ADBEC5788} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated) Task: {19C0B6D6-B188-4ECF-88A7-9476E920F7D7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-06] (Google Inc.) Task: {2E66EE1A-150A-4E29-89E5-D2315EB511AA} - System32\Tasks\e-pity2016a_styczen => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [2017-04-13] (e-file sp. z o.o. sp. k.) Task: {60A9034B-3E3F-4C14-98E9-44FF61B20C1B} - System32\Tasks\{1C13C2A6-D397-48FD-9C66-BB75F1091BED} => pcalua.exe -a D:\Y-226\U2v2_1_4.exe -d D:\Y-226 Task: {67363862-4046-4826-B881-F047DDA7BA8A} - System32\Tasks\{03633650-BBA8-4B82-902C-05C96380E87E} => pcalua.exe -a D:\DEMO32.exe -d D:\ Task: {7B5A7A7E-FABD-4EEC-BC84-6805A358F91E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-06-16] (Adobe Systems Incorporated) Task: {8B74D835-69E1-43F9-8997-34934A74B5FC} - System32\Tasks\e-pity2016a_kwiecien => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [2017-04-13] (e-file sp. z o.o. sp. k.) Task: {A1A67017-0A3F-40BF-B62F-CE1CF8571238} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\Windows\system32\MRT.exe [2017-06-14] (Microsoft Corporation) Task: {B1C21A6A-4389-4701-A4A2-6F2B9937A878} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-04-19] (AVAST Software) Task: {C278ADE3-F71D-4214-9E37-88442A7221AD} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe Task: {E40AA7A6-E35F-4789-9F93-1F6D0B4A071B} - System32\Tasks\SafeZone scheduled Autoupdate 1477840722 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-05-17] (Avast Software) Task: {F335080D-54E1-4EE6-97D3-7A479A339FEE} - System32\Tasks\G2MUploadTask-S-1-5-21-1405297173-1497940689-1013170819-1001 => C:\Users\alfa1\AppData\Local\Citrix\GoToMeeting\7155\g2mupload.exe [2017-06-13] (Citrix Online, a division of Citrix Systems, Inc.) Task: {FF808639-6CE0-489F-AE23-A37F3028FE65} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-06] (Google Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-1405297173-1497940689-1013170819-1001.job => C:\Users\alfa1\AppData\Local\Citrix\GoToMeeting\7155\g2mupdate.exe Task: C:\Windows\Tasks\G2MUploadTask-S-1-5-21-1405297173-1497940689-1013170819-1001.job => C:\Users\alfa1\AppData\Local\Citrix\GoToMeeting\7155\g2mupload.exe ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2015-08-10 21:50 - 2015-08-10 21:50 - 00463416 _____ () C:\TwinCAT\EventLogger\TcEventLogger.exe 2017-06-17 06:03 - 2017-05-25 14:11 - 02270664 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll 2017-06-13 15:08 - 2017-06-13 15:08 - 00069632 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll 2015-05-09 20:05 - 2013-04-01 10:37 - 00418560 _____ () C:\Program Files (x86)\Mobilt Bredband\CheckNDISPort_df.exe 2015-05-09 20:05 - 2013-04-01 10:37 - 00440648 _____ () C:\Program Files (x86)\Mobilt Bredband\CancelAutoPlay_df.exe 2016-06-28 00:19 - 2016-06-28 00:19 - 00865232 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\kpcengine.2.3.dll 2014-11-19 12:48 - 2014-11-19 12:48 - 08507232 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtGui4.dll 2014-11-19 12:48 - 2014-11-19 12:48 - 02354016 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtCore4.dll 2014-11-19 12:48 - 2014-11-19 12:48 - 01014624 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtNetwork4.dll 2014-11-19 12:48 - 2014-11-19 12:48 - 00364384 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtXml4.dll 2014-11-19 12:48 - 2014-11-19 12:48 - 02480992 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtDeclarative4.dll 2014-11-19 12:48 - 2014-11-19 12:48 - 01346912 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtScript4.dll 2014-11-19 12:48 - 2014-11-19 12:48 - 00206176 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtSql4.dll 2014-11-19 12:48 - 2014-11-19 12:48 - 02653024 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtXmlPatterns4.dll 2014-11-19 12:48 - 2014-11-19 12:48 - 00033120 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qgif4.dll 2014-11-19 12:48 - 2014-11-19 12:48 - 00035680 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qico4.dll 2014-11-19 12:48 - 2014-11-19 12:48 - 00207200 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qjpeg4.dll 2014-11-19 12:48 - 2014-11-19 12:48 - 11166560 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtWebKit4.dll 2014-11-19 12:48 - 2014-11-19 12:48 - 00276832 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\phonon4.dll 2014-11-11 10:21 - 2014-11-11 10:21 - 00392552 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\ssoengine.dll 2014-11-11 10:21 - 2014-11-11 10:21 - 00059752 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\securestorage.dll 2014-11-19 12:47 - 2014-11-19 12:47 - 00438624 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\NService.dll 2014-11-19 12:48 - 2014-11-19 12:48 - 00446304 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\sqldrivers\qsqlite4.dll 2014-11-19 12:48 - 2014-11-19 12:48 - 00520544 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtMultimediaKit1.dll 2014-11-19 12:48 - 2014-11-19 12:48 - 00720736 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtOpenGL4.dll 2014-11-19 12:46 - 2014-11-19 12:46 - 00606560 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\CommonUpdateChecker.dll 2014-11-19 12:48 - 2014-11-19 12:48 - 00093024 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\qjson.dll 2017-05-31 11:41 - 2017-05-31 11:41 - 01982976 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll 2016-11-26 23:42 - 2016-11-26 23:42 - 00332104 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater\dblite.dll 2016-12-21 20:21 - 2016-12-21 20:21 - 45077376 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater\libcef.dll 2016-11-26 23:37 - 2016-11-26 23:37 - 00418512 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater\ipm_service.dll 2016-12-21 20:21 - 2016-12-21 20:21 - 01650560 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater\libglesv2.dll 2016-12-21 20:21 - 2016-12-21 20:21 - 00082304 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater\libegl.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData\TEMP:56E2E879 [120] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 _____ C:\Windows\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-1405297173-1497940689-1013170819-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Theme1\img13.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{D71D798B-51AE-47F1-B914-D276961FCE75}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{C123D363-51D6-429C-8BE6-C3C6939A71FD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{03B23356-4754-42E3-9FC5-F3A2D9A23C52}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{8357E074-6323-40B6-8E50-EC5EFB766E9C}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [TCP Query User{74A73111-F7CB-4B1B-AACB-9C4568B81391}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{80974ABB-1C34-45E5-89D0-5A100A85C238}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{E92E014D-5478-40E7-9AC6-FFD713452B10}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{3A28E506-F9E3-4E7F-8BB7-063D18F761ED}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [{881EF050-A37F-4DFD-AD82-C7D3A5E25466}] => (Allow) C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe FirewallRules: [{2969BAF8-80A5-445C-9903-C5DA2673200B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{1772883F-3693-4508-86FB-61511B587302}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{34260B5F-6838-4A7E-82AD-2E94B05364D5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{599C7B09-0219-4F1C-9685-7C04F90A08A5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [TCP Query User{8EF9BC14-BE79-4B33-B3B9-AC150FDA66AC}C:\program files (x86)\s4a\s4a.exe] => (Block) C:\program files (x86)\s4a\s4a.exe FirewallRules: [UDP Query User{564608A5-85D0-4FFB-8017-C796A0A6F730}C:\program files (x86)\s4a\s4a.exe] => (Block) C:\program files (x86)\s4a\s4a.exe FirewallRules: [TCP Query User{DEE97562-A187-447C-A641-0867014B4FC6}C:\program files (x86)\mblock\mblock.exe] => (Block) C:\program files (x86)\mblock\mblock.exe FirewallRules: [UDP Query User{CD9220CD-15DC-41FB-8BB1-B49902F88458}C:\program files (x86)\mblock\mblock.exe] => (Block) C:\program files (x86)\mblock\mblock.exe FirewallRules: [TCP Query User{3C8EBF87-9D78-4632-A716-6C22E519E49A}C:\program files (x86)\mblock\arduino\java\bin\java.exe] => (Block) C:\program files (x86)\mblock\arduino\java\bin\java.exe FirewallRules: [UDP Query User{81F88723-BAC5-4287-9D1F-7E495E2E641C}C:\program files (x86)\mblock\arduino\java\bin\java.exe] => (Block) C:\program files (x86)\mblock\arduino\java\bin\java.exe FirewallRules: [{4B014E28-EA26-4982-9A3A-634FCB54D47D}] => (Allow) C:\Program Files (x86)\Common Files\NOL3Starter\NOL3Starter.exe FirewallRules: [{94E7B7DD-DBD6-4E58-BBA9-7F1F92FA8095}] => (Allow) C:\Program Files (x86)\Common Files\NOL3Starter\NOL3Starter.exe FirewallRules: [UDP Query User{68E46633-8DC3-499C-A590-8A85F5FE92AD}C:\Program Files (x86)\LEGO Software\LEGO MINDSTORMS EV3 Home Edition\MindstormsEV3.exe] => (Allow) C:\Program Files (x86)\LEGO Software\LEGO MINDSTORMS EV3 Home Edition\MindstormsEV3.exe FirewallRules: [TCP Query User{F468232A-782C-4386-AF14-03CFA72EB0FB}C:\Program Files (x86)\LEGO Software\LEGO MINDSTORMS EV3 Home Edition\MindstormsEV3.exe] => (Allow) C:\Program Files (x86)\LEGO Software\LEGO MINDSTORMS EV3 Home Edition\MindstormsEV3.exe FirewallRules: [TCP Query User{A94C4801-5B41-4C44-8DA4-38A29A2401E4}C:\program files (x86)\lego software\lego mindstorms ev3 home edition\mindstormsev3.exe] => (Allow) C:\program files (x86)\lego software\lego mindstorms ev3 home edition\mindstormsev3.exe FirewallRules: [UDP Query User{8FCFCE88-A4D3-4668-8B95-515BDEE68C4B}C:\program files (x86)\lego software\lego mindstorms ev3 home edition\mindstormsev3.exe] => (Allow) C:\program files (x86)\lego software\lego mindstorms ev3 home edition\mindstormsev3.exe FirewallRules: [{AD10C628-6072-4FED-91C8-76289287B203}] => (Block) C:\program files (x86)\lego software\lego mindstorms ev3 home edition\mindstormsev3.exe FirewallRules: [{482E292A-0C39-4960-9A8D-76E4390BC085}] => (Block) C:\program files (x86)\lego software\lego mindstorms ev3 home edition\mindstormsev3.exe FirewallRules: [{189E3D73-75A0-420E-B002-C024C8DBF133}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596\SZBrowser.exe FirewallRules: [TCP Query User{72ECD24D-ACC0-406E-912A-D6BDEE02188D}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe FirewallRules: [UDP Query User{C18BFE84-5341-4BA2-9FDB-A627D7EF2B34}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe FirewallRules: [{70CC99FE-1192-4A4D-9DAF-378BF1088F92}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.607\SZBrowser.exe FirewallRules: [{93F294AD-A2E8-40EE-9390-7325B9C6BF4C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Punkty Przywracania systemu ========================= ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Kontroler O2Micro OZ711EZ1/MZ1 MemoryCardBus Description: Kontroler O2Micro OZ711EZ1/MZ1 MemoryCardBus Class Guid: {4d36e977-e325-11ce-bfc1-08002be10318} Manufacturer: O2Micro Service: pci Problem: : This device cannot find enough free resources that it can use. If you want to use this device, you will need to disable one of the other devices on this system. (Code12) Resolution: Two devices have been assigned the same input/output (I/O) ports, the same interrupt, or the same Direct Memory Access channel (either by the BIOS, the operating system, or a combination of the two). This error message can also appear if the BIOS did not allocate enough resources to the device (for example, if a universal serial bus (USB) controller does not get an interrupt from the BIOS because of a corrupt Multiprocessor System (MPS) table). You can use Device Manager to determine where the conflict is and disable the conflicting device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (06/18/2017 12:56:09 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3016) (User: ZARZĄDZANIE NT) Description: Cannot update Object List value of SYSTEM\CurrentControlSet\Services\WmiApRpl\Performance key. The first DWORD in the Data section contains the error code and the second DWORD contains the updated value. Error: (06/18/2017 12:56:09 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3016) (User: ZARZĄDZANIE NT) Description: Cannot update First Help value of SYSTEM\CurrentControlSet\Services\WmiApRpl\Performance key. The first DWORD in the Data section contains the error code and the second DWORD contains the updated value. Error: (06/18/2017 12:56:09 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3016) (User: ZARZĄDZANIE NT) Description: Cannot update First Counter value of SYSTEM\CurrentControlSet\Services\WmiApRpl\Performance key. The first DWORD in the Data section contains the error code and the second DWORD contains the updated value. Error: (06/18/2017 12:56:09 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3016) (User: ZARZĄDZANIE NT) Description: Cannot update Last Help value of SYSTEM\CurrentControlSet\Services\WmiApRpl\Performance key. The first DWORD in the Data section contains the error code and the second DWORD contains the updated value. Error: (06/18/2017 12:56:09 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3016) (User: ZARZĄDZANIE NT) Description: Cannot update Last Counter value of SYSTEM\CurrentControlSet\Services\WmiApRpl\Performance key. The first DWORD in the Data section contains the error code and the second DWORD contains the updated value. Error: (06/18/2017 12:56:09 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3016) (User: ZARZĄDZANIE NT) Description: Cannot update Last Help value of SOFTWARE\Microsoft\Windows NT\CurrentVersion\Perflib key. The first DWORD in the Data section contains the error code and the second DWORD contains the updated value. Error: (06/18/2017 12:56:09 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3016) (User: ZARZĄDZANIE NT) Description: Cannot update Last Counter value of SOFTWARE\Microsoft\Windows NT\CurrentVersion\Perflib key. The first DWORD in the Data section contains the error code and the second DWORD contains the updated value. Error: (06/17/2017 03:01:51 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: LogonUI.exe, wersja: 6.3.9600.17415, sygnatura czasowa: 0x5450541b Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.3.9600.18696, sygnatura czasowa: 0x59153753 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000000000003b6a9 Identyfikator procesu powodującego błąd: 0x30c Godzina uruchomienia aplikacji powodującej błąd: 0x01d2e769d1b504f3 Ścieżka aplikacji powodującej błąd: C:\Windows\system32\LogonUI.exe Ścieżka modułu powodującego błąd: C:\Windows\SYSTEM32\ntdll.dll Identyfikator raportu: 21099647-535d-11e7-8311-a43ae353518a Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (06/17/2017 06:44:34 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: LogonUI.exe, wersja: 6.3.9600.17415, sygnatura czasowa: 0x5450541b Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.3.9600.18696, sygnatura czasowa: 0x59153753 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000000000003b6a9 Identyfikator procesu powodującego błąd: 0x308 Godzina uruchomienia aplikacji powodującej błąd: 0x01d2e724538fe718 Ścieżka aplikacji powodującej błąd: C:\Windows\system32\LogonUI.exe Ścieżka modułu powodującego błąd: C:\Windows\SYSTEM32\ntdll.dll Identyfikator raportu: a88a50b0-5317-11e7-830a-8ac46f3b8b6b Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (06/16/2017 03:27:30 PM) (Source: ESENT) (EventID: 476) (User: ) Description: taskhostex (2624) WebCacheLocal: Weryfikacja odczytu strony bazy danych z pliku "C:\Users\alfa1\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat" na pozycji względnej 1212416 (0x0000000000128000) (strona bazy danych: 36 (0x24)) dla 32768 (0x00008000) bajtów nie powiodła się z powodu braku danych strony. Operacja odczytu zostanie zakończona z błędem -1019 (0xfffffc05). Jeśli ten stan będzie się utrzymywał, przywróć bazę danych z wcześniejszej kopii zapasowej. Ten problem jest prawdopodobnie spowodowany wadliwym sprzętem. Skontaktuj się z dostawcą sprzętu, aby uzyskać dalszą pomoc w diagnozowaniu problemu. Dziennik System: ============= ==================== Statystyki pamięci =========================== Procesor: Pentium(R) Dual-Core CPU T4200 @ 2.00GHz Procent pamięci w użyciu: 34% Całkowita pamięć fizyczna: 8120.95 MB Dostępna pamięć fizyczna: 5356.84 MB Całkowita pamięć wirtualna: 9400.95 MB Dostępna pamięć wirtualna: 6751.02 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:58.78 GB) (Free:15.96 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano odczytując BCD)] ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 238.5 GB) (Disk ID: CBEC6B34) Partition 1: (Active) - (Size=58.8 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=156.2 GB) - (Type=83) Partition 3: (Not Active) - (Size=19.5 GB) - (Type=83) Partition 4: (Not Active) - (Size=4.1 GB) - (Type=05) ==================== Koniec Addition.txt ============================