Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:09-01-2015 Uruchomiony przez Robert (2018-12-16 18:12:13) Uruchomiony z C:\Users\Robert\Downloads Windows 10 Home (X64) (2018-06-22 18:33:13) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-884423482-3915767466-712464105-500 - Administrator - Disabled) Gość (S-1-5-21-884423482-3915767466-712464105-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-884423482-3915767466-712464105-1003 - Limited - Enabled) Konto domyślne (S-1-5-21-884423482-3915767466-712464105-503 - Limited - Disabled) Robert (S-1-5-21-884423482-3915767466-712464105-1001 - Administrator - Enabled) => C:\Users\Robert WDAGUtilityAccount (S-1-5-21-884423482-3915767466-712464105-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-884423482-3915767466-712464105-1001\...\uTorrent) (Version: 3.5.4.44846 - BitTorrent Inc.) 3.5.9.1175 (HKLM-x32\...\{6E0B9419-A8D9-402F-BC56-1A10EA5677C1}_is1) (Version: - ) Acrylic Wi-Fi Home v3.0 (HKU\S-1-5-21-884423482-3915767466-712464105-1001\...\{3706FB7A-11FB-44C4-AD94-2B29878D75DC}_is1) (Version: 3.0 - Tarlogic Security S.L.) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 19.010.20064 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 29.0.0.112 - Adobe Systems Incorporated) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.101 - Adobe Systems Incorporated) Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.101 - Adobe Systems Incorporated) Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated) Advanced Renamer (HKLM-x32\...\Advanced Renamer_is1) (Version: 3.73 - Hulubulu Software) ALLPlayer Pilot (HKLM-x32\...\{146BDBDD-ACD9-4B04-A286-C27471841E8E}_is1) (Version: 1.2 - ALLPlayer Group, Ltd.) AMD Catalyst Install Manager (HKLM\...\{59523785-63F4-FD2B-5993-964641531A45}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Avira (HKLM-x32\...\{be662a4c-fac0-4208-a45f-6eaf881f2ba3}) (Version: 1.2.125.20160 - Avira Operations GmbH & Co. KG) Avira (x32 Version: 1.2.125.20160 - Avira Operations GmbH & Co. KG) Hidden Avira Scout (HKLM-x32\...\Avira Scout) (Version: 17.6.3071.2851 - Avira Operations GmbH & Co. KG) Avira Software Updater (HKLM-x32\...\{186C2342-9D09-419C-AEC6-CF99B523F1E3}) (Version: 2.0.6.6321 - Avira Operations GmbH & Co. KG) CardRecovery 6.10 (HKLM-x32\...\{88D68A69-D247-466B-90DD-575F6BE16230}_is1) (Version: - WinRecovery Software) CCleaner (HKLM\...\CCleaner) (Version: 5.24 - Piriform) CCSDK (HKLM-x32\...\{AE75190B-11B4-4F90-8254-DAB275CF2557}_is1) (Version: 1.1.0.7 - Lenovo) ChomikBox (HKLM-x32\...\{45B8131C-E239-4BE0-A92B-0E7FE1BBF83E}) (Version: 2.0.8.2 - Chomikuj.pl) Colin McRae Rally 2 (HKLM-x32\...\{19B72AA9-985A-11D4-9C8A-00D0B75D1498}) (Version: - ) ConvertHelper 3.2 (HKLM\...\{27CC6AB1-E72B-4179-AF1A-EAE507EBAF52}}_is1) (Version: - DownloadHelper) Deep Fritz 14 64-bit (HKLM\...\{678EE564-7768-4E8C-9EEA-35954C4FF423}) (Version: 14.0.0.0 - ChessBase) Dependency Package Update (x32 Version: 1.6.32.00 - Lenovo Group Limited) Hidden Dictate (HKLM-x32\...\{8475267E-D7DF-4A6D-A126-2C6B519E6F74}) (Version: 5.00.0000 - Microsoft) Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.6.3.1 - Dolby Laboratories Inc) EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS) EaseUS Partition Master 12.5 Trial Edition (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version: - EaseUS) EasyBCD 2.3 (HKLM-x32\...\EasyBCD) (Version: 2.3 - NeoSmart Technologies) e-Deklaracje Desktop (HKLM-x32\...\e-Deklaracje.A1909296681C7ACEFE45687D3A64758C8659BF46.1) (Version: 10.0.1 - Ministerstwo Finansow) e-Deklaracje Desktop (x32 Version: 10.0.1 - Ministerstwo Finansow) Hidden FileZilla Client 3.17.0.1 (HKLM-x32\...\FileZilla Client) (Version: 3.17.0.1 - Tim Kosse) FORScan wersja 2.3.12.beta (HKLM-x32\...\{63310483-6490-44CD-B351-8F66C2923070}_is1) (Version: 2.3.12.beta - Alexey Savin) Foxit Advanced PDF Editor 3 (HKLM-x32\...\B521582C-6BE3-491D-BCC8-FFB8301298E9_is1) (Version: 3.0.5.0 - Foxit Corporation) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.) Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.33.17 - Google Inc.) Hidden Haali Media Splitter (HKLM-x32\...\HaaliMkx) (Version: - ) HaoZip (HKLM\...\HaoZip_is1) (Version: 5.5.1.10498 - Ruichuang Network Technology Co.,Ltd) Hard Disk Low Level Format Tool 4.40 (HKLM-x32\...\Hard Disk Low Level Format Tool_is1) (Version: - HDDGURU) Hetman Data Recovery Pack (HKLM-x32\...\Hetman Data Recovery Pack) (Version: - ) Instrukcje użytkownika (x32 Version: 3.0.0.3 - Lenovo) Hidden Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.30.1072 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4624 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.6.3.1001 - Intel Corporation) Intel(R) Wireless Bluetooth(R)(patch version 17.1.1449.356) (HKLM\...\{302600C1-6BDF-4FD1-1411-148929CC1385}) (Version: 17.1.1411.0506 - Intel Corporation) IVONA 2 (HKLM-x32\...\IVONA 2) (Version: 1.6.3 - IVO Software Sp. z o.o.) JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH) K-Lite Codec Pack 11.8.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.8.0 - ) KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.0.1.5 - PandoraTV) Lenovo EasyCamera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 6.3.9600.11105 - Realtek Semiconductor Corp.) Lenovo Patch Utility (x32 Version: 1.3.2.6 - Lenovo Group Limited) Hidden Lenovo Patch Utility 64 bit (Version: 1.3.2.6 - Lenovo Group Limited) Hidden Mezzmo (HKU\S-1-5-21-884423482-3915767466-712464105-1001\...\Mezzmo) (Version: 4.1.3.0 - Conceiva Pty. Ltd.) Microsoft Office Language Pack 2013 - Polish/Polski (HKLM\...\Office15.OMUI.pl-pl) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 16.0.11029.20108 - Microsoft Corporation) Microsoft Office Professional Plus 2016 - pl-pl (HKLM\...\ProPlusRetail - pl-pl) (Version: 16.0.11029.20108 - Microsoft Corporation) Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-884423482-3915767466-712464105-1001\...\OneDriveSetup.exe) (Version: 18.212.1021.0008 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50709.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Minimal ADB and Fastboot version 1.4.2 (HKLM-x32\...\{1901BAF7-7E78-4041-BC88-D0EE5DD1DFD9}_is1) (Version: 1.4.2 - Sam Rodberg) MKVToolNix 9.6.0 (64bit) (HKLM-x32\...\MKVToolNix) (Version: 9.6.0 - Moritz Bunkus) Mozilla Firefox 64.0 (x64 pl) (HKLM\...\Mozilla Firefox 64.0 (x64 pl)) (Version: 64.0 - Mozilla) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Narzędzia sprawdzające pakietu Microsoft Office 2013 — polski (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Obsługa programów Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) OEM Application Profile (HKLM-x32\...\{1D464EFF-EC8B-F225-2F74-F74143200DDF}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.11029.20108 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.11029.20108 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (Version: 16.0.11029.20108 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (x32 Version: 16.0.11029.20108 - Microsoft Corporation) Hidden Office 2016 KMS Activator Ultimate v1.2 Final (HKLM\...\Office 2016 KMS Activator Ultimate v1.2 Final_is1) (Version: v1.2 Final - ) Online Application (x32 Version: 2.7.0 - Microleaves) Hidden Oprogramowanie Intel® PROSet/Wireless (HKLM-x32\...\{03929cf1-3ae4-4765-b8b3-32b8e2e26a8d}) (Version: 19.60.0 - Intel Corporation) Oprogramowanie mikroukładu Intel® (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) PrivaZer (HKLM-x32\...\PrivaZer) (Version: 3.0.12.0 - Goversoft LLC) PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.36.826.2014 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7469 - Realtek Semiconductor Corp.) RS Photo Recovery 4.5 (HKLM-x32\...\RS Photo Recovery) (Version: - ) Rzeźnik MPEGów 1.1.991 (HKLM-x32\...\Rzeźnik MPEGów 1.1.991_is1) (Version: 1.1.991 - Marcin Grenda) Service Pack 1 for Microsoft Office 2013 Language Pack (KB2817427) 64-Bit Edition (Version: - Microsoft) Hidden Sp5 (x32 Version: 5.1.4324.0 - Microsoft) Hidden Sp5Intl (x32 Version: 5.1.4324.0 - Microsoft) Hidden Sp5TTInt (x32 Version: 5.1.4324.0 - Microsoft) Hidden SpCommon (x32 Version: 5.1.4324.0 - Microsoft) Hidden SpPhones (x32 Version: 6.0.3122.0 - Microsoft) Hidden SubEdit-Player (HKLM-x32\...\SubEdit-Player_is1) (Version: 4072 - Artur Sikora) Subtitle Workshop 6.0b (HKLM-x32\...\SubtitleWorkshop) (Version: - ) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.17.7 - Synaptics Incorporated) UESDK (HKLM-x32\...\{EB3F6640-58AE-4886-B8BA-466B6939A933}_is1) (Version: 1.0.3.6 - Lenovo) Unchecky v1.2 (HKLM-x32\...\Unchecky) (Version: 1.2 - Reason Software Company Inc.) Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0415-1000-0000000FF1CE}_Office15.OMUI.pl-pl_{67847964-08E2-4A8F-B09D-B08D5CE69250}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3118281) 64-Bit Edition (HKLM\...\{90150000-012B-0415-1000-0000000FF1CE}_Office15.OMUI.pl-pl_{E34F92E8-F338-4749-BE58-E77D605FE648}) (Version: - Microsoft) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation) User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo) VBATools - Podziel na arkusze (HKLM-x32\...\{7D275505-9D5E-4EBC-91E7-042ECDA53980}) (Version: 8.00 - VBATools) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.3 - VideoLAN) WinRAR 5.21 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) Wondershare Data Recovery 6.0.2.16 (HKLM-x32\...\Wondershare Data Recovery_is1) (Version: 6.0.2.16 - Wondershare) Wondershare Data Recovery(Build 5.0.0.5) (HKLM-x32\...\{FEA3976F-D621-45F3-AFBD-E812A1F2F00D}_is1) (Version: 5.0.0.5 - Wondershare Software Co.,Ltd.) Wondershare Helper Compact 2.5.2 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare) Wtyczka e-Deklaracje (HKLM-x32\...\{81BF6353-3C5B-4E6E-A566-7E162A00BF72}_is1) (Version: 4.3.0 - Ministerstwo Finansów) ZAR X (HKLM\...\{85DA9B81-D7F9-4165-8E62-F776B57213F8}_is1) (Version: - www.z-a-recovery.com) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-884423482-3915767466-712464105-1001_Classes\CLSID\{021E4F06-9DCC-49AD-88CF-ECC2DA314C8A}\localserver32 -> C:\Users\Robert\AppData\Local\Microsoft\OneDrive\18.212.1021.0008\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-884423482-3915767466-712464105-1001_Classes\CLSID\{389510b7-9e58-40d7-98bf-60b911cb0ea9}\localserver32 -> C:\Users\Robert\AppData\Local\Microsoft\OneDrive\18.212.1021.0008\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-884423482-3915767466-712464105-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Robert\AppData\Local\Microsoft\OneDrive\18.212.1021.0008\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-884423482-3915767466-712464105-1001_Classes\CLSID\{94269C4E-071A-4116-90E6-52E557067E4E}\localserver32 -> C:\Users\Robert\AppData\Local\Microsoft\OneDrive\18.212.1021.0008\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-884423482-3915767466-712464105-1001_Classes\CLSID\{9489FEB2-1925-4D01-B788-6D912C70F7F2}\localserver32 -> C:\Users\Robert\AppData\Local\Microsoft\OneDrive\18.212.1021.0008\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-884423482-3915767466-712464105-1001_Classes\CLSID\{A926714B-7BFC-4D08-A035-80021395FFA8}\localserver32 -> C:\Users\Robert\AppData\Local\Microsoft\OneDrive\18.212.1021.0008\FileCoAuth.exe (Microsoft Corporation) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0054C35B-A1A8-4A3B-94AA-13E016689DFA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-12-14] (Microsoft Corporation) Task: {042D8A51-5878-4000-9C10-C04AFF122A1F} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleCommand Task: {04B3E894-DE5B-4C4A-9AA7-CA8F7CE43583} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Cellular => C:\Windows\system32\ProvTool.exe [2018-04-12] (Microsoft Corporation) Task: {0A7AA876-862F-4F81-AA4B-B73950FA632C} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndScanForUpdates Task: {1497A60C-4807-41E6-93C7-D919F08E77EA} - System32\Tasks\AviraScoutUpdateTaskMachineCore => C:\Program Files (x86)\Avira\Scout Update\ScoutUpdate.exe [2016-11-19] (Avira Operations GmbH & Co. KG) Task: {15DE3092-A101-487A-94A4-F88B30A01EF6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-12-14] (Microsoft Corporation) Task: {19A4E570-A141-47AB-81CB-302B4C1962C5} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-12-14] (Microsoft Corporation) Task: {1BE936D4-EE40-4F04-84E0-18FFD27C0A6A} - System32\Tasks\Microsoft\Windows\Chkdsk\SyspartRepair => C:\Windows\system32\bcdboot.exe [2018-04-12] (Microsoft Corporation) Task: {1CC0C748-3507-4B3B-8851-33BD8BA28E47} - System32\Tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition => C:\Windows\system32\ClipRenew.exe [2018-04-12] (Microsoft Corporation) Task: {1E798D6C-1A39-4078-B6A8-7A38DD5CD4E4} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\Program Files\rempl\sedlauncher.exe [2018-12-02] (Microsoft Corporation) Task: {1F7631E3-53F6-4352-895E-38DD5F763332} - System32\Tasks\Online Application V2G4 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () Task: {20969B1A-5020-4B14-AB52-E3B56BC62F52} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto Task: {2231CAFE-FABE-41F5-A0B3-842D9319DBF9} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierinstall => C:\Windows\system32\AppHostRegistrationVerifier.exe [2018-06-22] (Microsoft Corporation) Task: {27838F52-A06E-4ADC-B46A-0F7BB0C3D786} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated) Task: {294EF281-56B6-4F71-8115-BAC2919EF034} - System32\Tasks\Microsoft\Windows\EDP\EDP App Launch Task Task: {29F3A47A-C0DC-48D8-ACAF-89413EE0731D} - System32\Tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr => C:\Windows\System32\UNP\UpdateNotificationMgr.exe [2018-07-15] (Microsoft Corporation) Task: {2BB692C1-F60F-479E-ADC2-1CAF9422A2AC} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitorToastTask Task: {2DBD790D-172A-4CFA-B3F7-824D7509680F} - System32\Tasks\Microsoft\Windows\PushToInstall\Registration => Sc.exe start pushtoinstall registration Task: {2F0B1161-F6F5-48EC-AE8E-560D7EDEA6AD} - System32\Tasks\AutoPico Daily Restart => C:\Users\Robert\AppData\Local\Temp\RarSFX0\AutoPico.exe <==== UWAGA Task: {3EDD53F5-8E41-4901-8562-1F6065875528} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-12-07] (Microsoft Corporation) Task: {430852CB-A87C-492E-A659-075C7BF1710C} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndContinueUpdates Task: {47C584B7-6C36-4B35-9893-096228ED40FF} - System32\Tasks\AviraScoutUpdateTaskMachineUA => C:\Program Files (x86)\Avira\Scout Update\ScoutUpdate.exe [2016-11-19] (Avira Operations GmbH & Co. KG) Task: {4A4254BF-738F-4089-9034-1635E746BFE5} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS\AutoKMS.exe [2016-06-10] () Task: {511AF402-E0EA-42DC-81B0-6C6E65ECDE60} - System32\Tasks\Microsoft\Windows\Subscription\LicenseAcquisition => C:\Windows\system32\ClipRenew.exe [2018-04-12] (Microsoft Corporation) Task: {51D31EBF-545E-411D-A21A-CB34004CC384} - System32\Tasks\Microsoft\Windows\ExploitGuard\ExploitGuard MDM policy Refresh Task: {541BA5BF-1736-4A3E-B1E5-CE1C9EE13043} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdates Task: {577C3956-E492-42A5-AEFB-FDC54A537C64} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePolicyChange Task: {57A7E0DF-F70E-43B1-AA2C-5BA67DBBE753} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefreshTask Task: {5BD62B53-5BFC-4445-965C-C9EBE2EA897A} - System32\Tasks\Updater_Online_Application => C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe [2017-11-02] (Microleaves) Task: {5DB4FD20-4FF2-4C58-9801-ADD6F0149633} - System32\Tasks\Microsoft\Windows\EDP\EDP Inaccessible Credentials Task Task: {62331915-A3E9-4B6E-9686-86034377E8CF} - System32\Tasks\Microsoft\Windows\USB\Usb-Notifications Task: {64E58285-017D-4BE4-8B21-D1C4F7BDC529} - System32\Tasks\Online Application V2G3 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () Task: {65A34F07-723D-4150-B109-13BD1AE3DFAA} - System32\Tasks\Microsoft\Windows\InstallService\SmartRetry Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\Windows\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] () Task: {664E7AD0-25AB-43B9-B907-027AB5D8BE02} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_Plugin.exe [2018-12-15] (Adobe Systems Incorporated) Task: {6DE4F7DC-0B8D-404A-A6C9-83241658F8CA} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierdaily => C:\Windows\system32\AppHostRegistrationVerifier.exe [2018-06-22] (Microsoft Corporation) Task: {7138D0D3-1873-4A77-86CF-4840F491C90F} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTask => C:\Windows\System32\XblGameSaveTask.exe [2018-04-12] (Microsoft Corporation) Task: {7193F4E1-99AE-4B26-8A19-8F08A5455965} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceWnsFallback Task: {749E286C-C205-4C7C-B742-BE5023BF06DE} - System32\Tasks\Microsoft\Windows\PushToInstall\LoginCheck => Sc.exe start pushtoinstall login Task: {78BABCCD-20B8-49B7-B4F8-87490C41C875} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdatesAsUser Task: {791B4847-88FA-4A0D-829E-193D08FF788D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-12-07] (Microsoft Corporation) Task: {7EAE5A6B-00F4-4B9F-A255-E1C163B587A1} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\LocateCommandUserSession Task: {7F806701-5EFE-4335-8731-9629FC5DF663} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon => C:\Windows\System32\XblGameSaveTask.exe [2018-04-12] (Microsoft Corporation) Task: {893C6AF5-1391-440B-AEC2-7D918CD821C9} - System32\Tasks\Online Application V2G2 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () Task: {8CCDCCC3-88F0-4860-84BE-5AC16A1C6FA9} - System32\Tasks\Microsoft\Windows\SharedPC\Account Cleanup => Rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance Task: {8F255F88-A87A-495F-B828-A4AFEC70BDB0} - System32\Tasks\Microsoft\Windows\DirectX\DXGIAdapterCache => C:\Windows\system32\dxgiadaptercache.exe [2018-04-12] (Microsoft Corporation) Task: {94947F49-99DA-4142-8C64-880CA4DC2683} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-12-15] (Adobe Systems Incorporated) Task: {96D4C584-E692-4192-AA78-353B044B6F2B} - System32\Tasks\PrivaZer_SkipUAC => C:\Program Files (x86)\PrivaZer\PrivaZer.exe [2016-11-19] (Goversoft LLC) Task: {97900FD1-9A44-4472-8DEB-8FAD091B8B77} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_pepper.exe [2018-12-15] (Adobe Systems Incorporated) Task: {97DA0A80-2E79-48B4-A683-F135D1830BC4} - System32\Tasks\Online Application V2G5 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () Task: {97E8D66D-0085-423C-BA11-DD777A1258AB} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask => C:\Windows\system32\MDMAgent.exe [2018-04-12] (Microsoft Corporation) Task: {9CC3C7EF-89C8-4C31-A9F5-240501CF1D0F} - System32\Tasks\Online Application V2G6 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () Task: {A167F6E0-ED47-419C-807E-2A11ECBA98D4} - System32\Tasks\Microsoft\Windows\WaaSMedic\PerformRemediation Task: {A305A840-EC8B-4C66-8EA8-5FF15F129CD2} - System32\Tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask => C:\Windows\system32\speech_onecore\common\SpeechModelDownload.exe [2018-04-12] (Microsoft Corporation) Task: {ABA72A26-6CFA-4A7C-AA89-089FE56FCAFB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-14] (Google Inc.) Task: {B0952E0A-C54F-4E8B-95E9-90E560086B37} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleWnsCommand Task: {B14C88F4-4AAC-4F00-A94E-8EA180D7AEDC} - System32\Tasks\Microsoft\Windows\DiskFootprint\StorageSense Task: {B2F4AC84-A8D0-4524-9363-BFF5A5911A00} - System32\Tasks\Microsoft\Windows\BrokerInfrastructure\BgTaskRegistrationMaintenanceTask Task: {B4D5BAAF-B501-49D9-B1BE-B29EC28EACE8} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-884423482-3915767466-712464105-1001 => C:\Users\Robert\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [2018-12-03] (Microsoft Corporation) Task: {BF12FF2C-F43E-4D1D-BFEA-D4E408242258} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-12-14] (Microsoft Corporation) Task: {BF7F3D79-9C8C-4863-A7AC-0DC8EB0FCB29} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA Task: {BFE8D815-035F-419B-8351-481EAB0EA801} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-11-15] (Piriform Ltd) Task: {C2098BE2-A29A-4EB1-97F6-F0C57E086D4F} - System32\Tasks\Microsoft\Windows\Speech\HeadsetButtonPress => C:\Windows\system32\speech_onecore\common\SpeechRuntime.exe [2018-06-22] (Microsoft Corporation) Task: {C7DBF5DA-A0DD-4B52-8DD9-687ED35DF382} - System32\Tasks\Online Application V2G1 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () Task: {CDA5D686-5D6C-4730-9907-B66710DC3670} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceLocationRightsChange Task: {D010978C-B666-4072-B7F3-DD6340CDD629} - System32\Tasks\Microsoft\Windows\EDP\StorageCardEncryption Task Task: {D1CC320B-9A47-4DB4-AFE4-2BCE1A964E7A} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\ReconcileLanguageResources Task: {D6F26FA0-206B-48A4-A029-69C21E2C0ACA} - System32\Tasks\gEpJaMmuIFXZexb => Rundll32.exe "C:\Users\Robert\AppData\Local\Temp\QWDLQEfXvxWAmuRrS\ViZzpFGDJruoexVX\FtJcTDQ.dll",#1 /adp SFMZ7OEMZ2HGMZ6BEMZ9QFMZ3GEMZ4MFMZ5KGMZ6CEMZ3NEMZ4TEMZ4REMZ6UFMZ1ZFMZ5PFMZ0 /site_id 751 Task: {DA77C4E6-B759-44EF-83F1-DA1BD13D8A51} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-12-14] (Microsoft Corporation) Task: {DD710A69-86C6-4932-97B1-01FB13ACFEF1} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceProtectionStateChanged Task: {E0862994-9083-482D-A921-27B4860FFA21} - System32\Tasks\Microsoft\Windows\Printing\EduPrintProv => C:\Windows\system32\eduprintprov.exe [2018-04-12] (Microsoft Corporation) Task: {E5CD58EE-4778-48D1-A0E0-33E4BE8E2C2A} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-12-14] (Microsoft Corporation) Task: {EF48E29D-9E4A-4D9B-BB9B-2754C54BB9BC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-14] (Google Inc.) Task: {EFA86FF7-22AE-4997-AFD9-E89E1BF9B7D6} - System32\Tasks\Microsoft\Windows\Device Information\Device => C:\Windows\system32\devicecensus.exe [2018-04-12] (Microsoft Corporation) Task: {F955A09C-E83A-4AD5-9ABC-7D5D7A055117} - System32\Tasks\Microsoft\Windows\EDP\EDP Auth Task Task: {FC779438-B7FD-4774-AA55-4DE2A4B098A4} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker MDM policy Refresh (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\gEpJaMmuIFXZexb.job => C:\Users\Robert\AppData\Local\Temp\QWDLQEfXvxWAmuRrS\ViZzpFGDJruoexVX\FtJcTDQ.dll <==== UWAGA Task: C:\WINDOWS\Tasks\Online Application V2G1.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe Task: C:\WINDOWS\Tasks\Online Application V2G2.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe Task: C:\WINDOWS\Tasks\Online Application V2G3.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe Task: C:\WINDOWS\Tasks\Online Application V2G4.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe Task: C:\WINDOWS\Tasks\Online Application V2G5.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe Task: C:\WINDOWS\Tasks\Online Application V2G6.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe Task: C:\WINDOWS\Tasks\Updater_Online_Application.job => C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2018-04-12 00:34 - 2018-04-12 00:34 - 00491744 _____ () C:\Windows\System32\InputHost.dll 2017-11-02 11:51 - 2017-11-02 11:51 - 00199864 _____ () C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe 2018-04-12 00:34 - 2018-04-12 00:34 - 00491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2018-04-12 00:34 - 2018-04-12 00:34 - 00472064 _____ () C:\Windows\ShellExperiences\TileControl.dll 2018-12-13 13:10 - 2018-11-09 03:17 - 02759680 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll 2018-04-12 00:34 - 2018-04-12 00:34 - 00491744 _____ () C:\WINDOWS\SYSTEM32\InputHost.dll 2018-12-13 13:11 - 2018-12-08 08:33 - 02185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2015-06-08 09:05 - 2014-10-22 09:15 - 00410096 _____ () C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe 2014-06-02 08:07 - 2014-06-02 08:07 - 00062464 _____ () C:\Program Files (x86)\Conceiva\Mezzmo\HS_REGEX.dll 2014-06-02 08:07 - 2014-06-02 08:07 - 00839680 _____ () C:\Program Files (x86)\Conceiva\Mezzmo\LIBEAY32.dll 2014-06-02 08:07 - 2014-06-02 08:07 - 00159744 _____ () C:\Program Files (x86)\Conceiva\Mezzmo\SSLEAY32.dll 2014-07-17 06:09 - 2014-07-17 06:09 - 00034304 _____ () C:\Program Files (x86)\Conceiva\Mezzmo\extension-functions.dll 2014-10-10 08:37 - 2014-10-10 08:37 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318} => ""="Media" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318} => "SafeBootDrivers"="1" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AudioEndpointBuilder => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AudioSrv => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HdAudAddService.Sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HdAudBus.Sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetSetupSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SerCx2.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\usbaudio.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96C-E325-11CE-BFC1-08002BE10318} => ""="Media" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96C-E325-11CE-BFC1-08002BE10318} => "SafeBootDrivers"="1" ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2013-08-22 14:25 - 2018-12-16 17:27 - 00003710 ____A C:\WINDOWS\system32\Drivers\etc\hosts 0x3132372E302E302E31202020202020206C6F63616C686F73740D0A0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000D0A0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000D0A0D0A2320756E636865636B795F626567696E0D0A232054686573652072756C657320776572652061646465642062792074686520556E636865636B792070726F6772616D20696E206F7264657220746F20626C6F636B206164766572746973696E6720736F667477617265206D6F64756C65730D0A302E302E302E3020302E302E302E3020232066697820666F72207472616365726F75746520616E64206E65747374617420646973706C617920616E6F6D616C790D0A302E302E302E3020747261636B696E672E6F70656E63616E64792E636F6D2E73332E616D617A6F6E6177732E636F6D0D0A302E302E302E30206D656469612E6F70656E63616E64792E636F6D0D0A302E302E302E302063646E2E6F70656E63616E64792E636F6D0D0A302E302E302E3020747261636B696E672E6F70656E63616E64792E636F6D0D0A302E302E302E30206170692E6F70656E63616E64792E636F6D0D0A302E302E302E30206170692E7265636F6D6D656E64656473772E636F6D0D0A302E302E302E302072702E796566656E657269322E636F6D0D0A302E302E302E30206F732E796566656E657269322E636F6D0D0A302E302E302E30206F73322E796566656E657269322E636F6D0D0A302E302E302E3020696E7374616C6C65722E626574746572696E7374616C6C65722E636F6D0D0A302E302E302E3020696E7374616C6C65722E66696C6562756C6C646F672E636F6D0D0A302E302E302E302064336F78746E31783362386437692E636C6F756466726F6E742E6E65740D0A302E302E302E3020696E6E6F2E62697372762E636F6D0D0A302E302E302E30206E7369732E62697372762E636F6D0D0A302E302E302E302063646E2E66696C65326465736B746F702E636F6D0D0A302E302E302E302063646E2E676F617465617374636163682E75730D0A302E302E302E302063646E2E677574746173746174646B2E75730D0A302E302E302E302063646E2E696E736B696E6D656469612E636F6D0D0A302E302E302E302063646E2E696E7374612E6F6962756E646C6573322E636F6D0D0A302E302E302E302063646E2E696E7374612E706C617962727974652E636F6D0D0A302E302E302E302063646E2E6C6C6F67657466617374636163682E75730D0A302E302E302E302063646E2E6D6F6E74696572612E636F6D0D0A302E302E302E302063646E2E6D7364776E6C642E636F6D0D0A302E302E302E302063646E2E6D7970636261636B75702E636F6D0D0A302E302E302E302063646E2E7070646F776E6C6F61642E636F6D0D0A302E302E302E302063646E2E72696365617465617374636163682E75730D0A302E302E302E302063646E2E73687961706F7461746F2E75730D0A302E302E302E302063646E2E736F6C696D62612E636F6D0D0A302E302E302E302063646E2E7475746F3470632E636F6D0D0A302E302E302E302063646E2E617070726F756E642E62697A0D0A302E302E302E302063646E2E626967737065656470726F2E636F6D0D0A302E302E302E302063646E2E62697370642E636F6D0D0A302E302E302E302063646E2E62697372762E636F6D0D0A302E302E302E302063646E2E63646E64702E636F6D0D0A302E302E302E302063646E2E646F776E6C6F61642E73776565747061636B732E636F6D0D0A302E302E302E302063646E2E6470646F776E6C6F61642E636F6D0D0A302E302E302E302063646E2E76697375616C6265652E6E65740D0A2320756E636865636B795F656E640D0A ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-884423482-3915767466-712464105-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Robert\AppData\Roaming\Microsoft\Windows Photo Viewer\Tapeta z Przeglądarki fotografii systemu Windows.jpg DNS Servers: 82.163.143.146 - 82.163.142.148 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: AxInstSV => 3 MSCONFIG\Services: HomeNetSvc => 2 MSCONFIG\Services: ModuleCoreService => 2 HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager" HKU\S-1-5-21-884423482-3915767466-712464105-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-884423482-3915767466-712464105-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-884423482-3915767466-712464105-1001\...\StartupApproved\Run: => "ALLUpdate" HKU\S-1-5-21-884423482-3915767466-712464105-1001\...\StartupApproved\Run: => "ALLPlayer WiFi Remote" HKU\S-1-5-21-884423482-3915767466-712464105-1001\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-884423482-3915767466-712464105-1001\...\StartupApproved\Run: => "ChomikBox" HKU\S-1-5-21-884423482-3915767466-712464105-1001\...\StartupApproved\Run: => "IROElauncher" HKU\S-1-5-21-884423482-3915767466-712464105-1001\...\StartupApproved\Run: => "Lync" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [WirelessDisplay-Infra-In-TCP] => (Allow) %systemroot%\system32\CastSrv.exe FirewallRules: [{4B94F82A-E356-41EE-BC8B-79275727A659}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [UDP Query User{48341AEB-CBDC-459B-BE2F-D704B0EC439D}C:\program files (x86)\avira\softwareupdater\avirasoftwareupdatertoastnotificationsbridge.exe] => (Block) C:\program files (x86)\avira\softwareupdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [TCP Query User{44FBB056-3917-4E6E-8E90-211D1378D460}C:\program files (x86)\avira\softwareupdater\avirasoftwareupdatertoastnotificationsbridge.exe] => (Block) C:\program files (x86)\avira\softwareupdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{391B9A0E-C532-4435-AA7E-9E7339A90EFF}] => (Allow) LPort=1900 FirewallRules: [{E4EA4960-3C73-4424-9FB1-BD7076CD0402}] => (Allow) LPort=2869 FirewallRules: [{FDC092ED-7B27-43AA-A23D-39C24B108D1C}] => (Allow) LPort=53168 FirewallRules: [{F0607087-F090-4E56-8EE7-A11AA6D2A090}] => (Allow) LPort=1900 FirewallRules: [{2C9B5E77-C7CD-4BAA-8CC2-0D7AAD72A981}] => (Allow) LPort=2869 FirewallRules: [{C9DE13FA-A7BD-4EE2-A325-455FF558ABCB}] => (Allow) LPort=53168 FirewallRules: [{C36894F6-8C7E-49CA-BC3A-BD80FE328804}] => (Allow) LPort=1900 FirewallRules: [{44941E5A-CE56-4EBB-9551-E236818D57EF}] => (Allow) LPort=2869 FirewallRules: [{27EB5474-2CC7-476A-B994-8511AC5BC929}] => (Allow) LPort=53168 FirewallRules: [{F8B7B978-FB72-4029-8FC1-7E244ABBF94D}] => (Allow) C:\Users\Robert\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{928D5F43-AA33-4747-B51E-C204AB1814AD}] => (Allow) C:\Users\Robert\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{B494A431-7361-4858-97BA-38B683D5A5A0}] => (Allow) C:\Users\Robert\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{CB2B4BC2-2093-4364-824E-F27FD2AEA797}] => (Allow) C:\Users\Robert\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{3BD03C2E-5B31-4C3C-A4B1-D9C13BD19A84}] => (Allow) C:\Users\Robert\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{F03AF8A5-828A-4620-9A41-6914723EC7A2}] => (Allow) C:\Users\Robert\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{8B138BC3-6A46-4277-9389-D65D68B9352D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{9293821B-34F5-4D57-9FBB-CAC5C0ADF518}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{420685EA-4432-442B-BDDB-A5804D4279C5}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [{B14B0C32-83FA-42B8-A09C-F8248FFF1D38}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [TCP Query User{D801037E-157E-409C-9B73-2EE1A25960B6}C:\program files (x86)\conceiva\mezzmo\mezzmo.exe] => (Allow) C:\program files (x86)\conceiva\mezzmo\mezzmo.exe FirewallRules: [UDP Query User{608201C0-9281-499E-965C-92189FD2BC6E}C:\program files (x86)\conceiva\mezzmo\mezzmo.exe] => (Allow) C:\program files (x86)\conceiva\mezzmo\mezzmo.exe FirewallRules: [{01A726FC-BE6B-41C5-A4F6-7B55B4C1F1ED}] => (Allow) C:\Program Files (x86)\Avira\Scout\Application\scout.exe FirewallRules: [{32021FDD-AC11-4C32-8E6B-BEAF819B0C58}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe FirewallRules: [{FCFA09B3-7C18-4E5D-8BE8-EB3E547713D3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{E13786EF-E110-428A-A6C3-96C681C4AD6F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{9D278E1A-8378-4D62-AD2C-0B015F1A0F00}] => (Allow) C:\Users\Robert\Downloads\KMSpico 10.1.8 FINAL + Portable (Office and Windows 10 Activator) [TechTools]\KMSpico 10.1.8 FINAL + Portable (Office and Windows 10 Activator) [TechTools.net]\Portable\KMSELDI.exe FirewallRules: [{3074427E-EE4E-4D46-A5E5-01FF608A32E2}] => (Allow) C:\Users\Robert\Downloads\KMSpico 10.1.8 FINAL + Portable (Office and Windows 10 Activator) [TechTools]\KMSpico 10.1.8 FINAL + Portable (Office and Windows 10 Activator) [TechTools.net]\Portable\KMSELDI.exe FirewallRules: [{D8AD0CD4-AE9C-4FE5-A992-CF0F91C8D48B}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{DD307793-FDC6-4E41-A0FE-8778EEE5FDCB}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{13B02194-7DB4-43B1-AC26-170D51DF360C}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{BE013458-2171-4315-B993-13681BA27D81}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{2F4C771A-FF9F-4BC2-AC52-7584B479DD7E}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{4BBC646B-C925-462A-97A5-565B045E28BD}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{D2D8BE39-0D07-4952-9375-EDAB0B8543F3}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{7C0F293B-B3A5-42F3-918C-9D147679A0F7}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{3585AABD-362F-480A-AE62-B828BA3F7436}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{77156BDB-49E1-4A7D-93C5-F6F0A0B812EC}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{FDAA4A89-DECE-4FC9-BA90-832C990D193C}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{2DD8CCE9-0845-4011-BD9B-E2AA20672831}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{D0B7589E-4EBD-43E9-9A8F-2AC1D7F88E3E}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{21CCCBEE-458E-4C73-9A56-5D92EA88E47A}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{CC1AFE25-37E9-4F4B-B84F-257A27A5485F}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{1D8615CC-81AA-4EEE-9592-94CE825057BD}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{93894967-0356-45E1-B6F2-882F88D71A18}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{4FE28574-CABE-4D59-9A4A-4BAE4BBB0E98}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{94E00BE2-BE56-4D67-A33B-CF6ED8193C4E}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{3DB253C6-0FB6-4AD7-A751-26FCF70F5335}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{B3678DCD-4304-45A3-97D0-F556A98F9919}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{C40D6CE9-CFD5-4B7B-9D06-873906E5F051}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{B72616DB-425F-4F6C-AD67-35527FE28C7A}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{3444B94A-FD6E-453F-AF03-CDE777C9561F}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{0EFABDCC-BABE-4EC1-818F-493217681AC3}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{0EC684B8-8BF3-497B-AEC4-9C4ED2B153C2}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{4BD21681-2195-4EF4-91A0-66FD1B4B2954}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{EC374D0F-9712-497B-A20E-92AAAE5D025C}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{84B1D411-7AF5-4496-9E6F-03A8B34F5496}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{6239A407-2647-467D-815A-9E2CB6C1F4AB}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{BACC09C5-69D8-4AFC-84FB-8DAFB40788FD}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{0AC32D40-2315-4F68-8932-3169652B0F6D}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{3E18F71F-54B8-4032-99BC-CE701B61DD0B}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{40F0F857-B27B-4553-A9D0-5365F736BDA4}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{DAEE949F-D373-4A1C-AA92-8CCB469ACA3B}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{392799EE-7585-4466-8121-95492950C10F}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{F458D501-7BFB-4E84-A890-828346134767}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{63D9E0DE-273F-4CAB-A6FD-100DB4328C64}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{93FF490C-1AAD-4D4D-86E2-0A64A15C0FCA}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{1ED03862-1635-4C88-8A59-703E5B6C265E}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{E34B3641-20F7-429C-8ACE-C106F036D8D9}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{F80C3C42-E4E4-487F-8E6C-0FFB92538FD2}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{184E19CC-0ED7-4306-B76C-F2B698F328F4}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{2BE58B81-C87F-4E91-BE48-FDD598D09640}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{A2EFAC14-68CC-4463-9B00-D330AA0E1FB2}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{25627901-7B96-4AA0-B1BC-72C75ADD546F}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{C33BAB96-477D-4C18-B03F-0638F5A418D6}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{17688097-5B33-4E4D-AE43-56A865753DB8}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{BFE66F43-A18C-40D8-BFE8-0401275CDD8B}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{41D4BF29-B58B-4A2B-B2E1-ADE5270857D2}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{9FFB0A0C-EFE2-44F8-8CA8-B18CAC5211DD}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{E2CE195E-CE92-438A-84B7-CEF551C82893}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{8C785A1F-64E3-4C6A-8937-FD116470E28A}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{3688944E-7BE3-48B4-9AD8-0D67AF544732}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{B4811AD9-108D-4C38-8CC9-1C19F9B9A8D8}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{665F2F44-9714-4CBD-AB20-36BFC3656F5B}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{644228D0-870A-4015-84DB-234482C2E605}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{F13C25C0-1760-4653-A859-58F38B18451C}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{8C3C7DF2-431E-4218-8AB2-D8B79305F4A4}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{817E6708-7A4F-4F40-85BC-EF34D17AE0EC}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{0199874E-AC86-496D-8913-C72502AF760B}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{65281E1D-2381-4D5C-9126-DCA2E0242084}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{298A0E8A-A230-4C1C-8567-6D52F81D4584}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{91EBB002-5901-4ED2-9908-6631529EE043}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{04056CF1-A9B3-49A7-896D-7B0D850BA439}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{6F4C93A9-2968-47D3-8604-48D00232516F}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{D5F7D7BC-546B-47A2-842C-AC4B0295A720}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{E36B4F48-EAF3-4C47-B3D5-1D90F949FDC2}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{8B1290D9-2EA8-441F-896D-03DA61514B6B}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{622D7156-1D41-474E-915D-10D403EC7E33}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{35626113-424A-4B59-8AFE-37C16BCC8F31}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{35A2383F-DE5C-49FE-A08A-6462146BD908}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{2E15DAD7-84C8-4332-B85D-22AF070F8CF5}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{C15ACEAD-BA42-4AFA-AFB2-E0CB88BF45B2}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{B098925A-3306-4924-B61F-F083967E0F80}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{E34B4201-EB88-4B26-B68A-7AC13252980B}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{A0075E4D-858C-4650-AB21-54A922DB5603}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{C2F002B0-660C-4638-95A8-76C6B92AE9EA}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{2FB44314-E4AD-4175-9161-6CD31AA2BC58}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{D2BA3B1B-F64F-40CC-8BEF-0C1E35775981}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{5D1ACF38-1685-4AA8-9354-402D9B53C185}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{4DB778A2-BE1B-44EE-8365-8075F56865E4}] => (Allow) C:\Program Files (x86)\P2PEnhance\p2penhance.exe FirewallRules: [{BABA7ED5-FB05-4A5B-9C6D-1880DC6EDF7D}] => (Allow) C:\Program Files (x86)\P2PEnhance\p2penhance.exe FirewallRules: [{EDF1F1C7-23C8-44AD-AFE1-EEE3516BE596}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{9056F7D5-808A-4A7C-9BBB-D0094AE14774}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{243B9C0E-6876-4CD2-B3CD-D146F4C69965}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{83635202-B826-4C6B-BF1A-CC9E603624D8}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{017BD310-AFE8-4004-8854-D1305B3D50ED}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{B4BA96BA-8CD6-45DC-B9DD-4E804B128B63}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe FirewallRules: [{0A2D8062-7D32-4FA7-8CD7-B62C3934AB32}] => (Allow) C:\WINDOWS\AutoKMS\AutoKMS.exe FirewallRules: [{4DBF1A3B-88BC-4309-9B62-B5A12FA6DD2F}] => (Allow) C:\WINDOWS\AutoKMS\AutoKMS.exe ==================== Punkty Przywracania systemu ========================= 16-12-2018 17:00:41 Operacja przywracania ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (12/16/2018 05:49:12 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: AutoKMS.exe, wersja: 2.5.0.0, sygnatura czasowa: 0x52aef33f Nazwa modułu powodującego błąd: KERNELBASE.dll, wersja: 10.0.17134.441, sygnatura czasowa: 0x428de48c Kod wyjątku: 0xe0434352 Przesunięcie błędu: 0x000000000003a388 Identyfikator procesu powodującego błąd: 0x104c Godzina uruchomienia aplikacji powodującej błąd: 0xAutoKMS.exe0 Ścieżka aplikacji powodującej błąd: AutoKMS.exe1 Ścieżka modułu powodującego błąd: AutoKMS.exe2 Identyfikator raportu: AutoKMS.exe3 Pełna nazwa pakietu powodującego błąd: AutoKMS.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: AutoKMS.exe5 Error: (12/16/2018 05:49:12 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Aplikacja: AutoKMS.exe Wersja architektury: v4.0.30319 Opis: proces został przerwany z powodu nieobsłużonego wyjątku. Informacje o wyjątku: System.ApplicationException w ..() w ..(., System.String, Boolean, System.String, Int32, System.String, Boolean, Boolean, Boolean, Boolean, Boolean, Boolean, System.String, System.String) w ..(Int32, System.String, System.String, Boolean, Boolean, Boolean, Boolean, ., Boolean, System.String, System.String, Boolean, Boolean) w ..(.) w ..() Error: (12/16/2018 05:47:59 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: CCSDK.exe, wersja: 1.1.0.7, sygnatura czasowa: 0x544746d0 Nazwa modułu powodującego błąd: CCSDK.exe, wersja: 1.1.0.7, sygnatura czasowa: 0x544746d0 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000353f9 Identyfikator procesu powodującego błąd: 0x9cc Godzina uruchomienia aplikacji powodującej błąd: 0xCCSDK.exe0 Ścieżka aplikacji powodującej błąd: CCSDK.exe1 Ścieżka modułu powodującego błąd: CCSDK.exe2 Identyfikator raportu: CCSDK.exe3 Pełna nazwa pakietu powodującego błąd: CCSDK.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: CCSDK.exe5 Error: (12/16/2018 05:47:58 PM) (Source: System Restore) (EventID: 8206) (User: ) Description: Wybrany punkt przywracania został uszkodzony lub usunięty podczas przywracania (Windows Update). Error: (12/16/2018 05:30:14 PM) (Source: lupdate) (EventID: 0) (User: ) Description: lupdateloopTime is failed w/err 0x00000298 Error: (12/16/2018 05:28:53 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: AutoKMS.exe, wersja: 2.5.0.0, sygnatura czasowa: 0x52aef33f Nazwa modułu powodującego błąd: KERNELBASE.dll, wersja: 10.0.17134.441, sygnatura czasowa: 0x428de48c Kod wyjątku: 0xe0434352 Przesunięcie błędu: 0x000000000003a388 Identyfikator procesu powodującego błąd: 0x820 Godzina uruchomienia aplikacji powodującej błąd: 0xAutoKMS.exe0 Ścieżka aplikacji powodującej błąd: AutoKMS.exe1 Ścieżka modułu powodującego błąd: AutoKMS.exe2 Identyfikator raportu: AutoKMS.exe3 Pełna nazwa pakietu powodującego błąd: AutoKMS.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: AutoKMS.exe5 Error: (12/16/2018 05:28:52 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Aplikacja: AutoKMS.exe Wersja architektury: v4.0.30319 Opis: proces został przerwany z powodu nieobsłużonego wyjątku. Informacje o wyjątku: System.ApplicationException w ..() w ..(., System.String, Boolean, System.String, Int32, System.String, Boolean, Boolean, Boolean, Boolean, Boolean, Boolean, System.String, System.String) w ..(Int32, System.String, System.String, Boolean, Boolean, Boolean, Boolean, ., Boolean, System.String, System.String, Boolean, Boolean) w ..(.) w ..() Error: (12/16/2018 04:52:42 PM) (Source: lupdate) (EventID: 0) (User: ) Description: lupdateloopTime is failed w/err 0x00000456 Error: (12/16/2018 04:21:02 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: ic-0.feb3fb73eeec48.exe, wersja: 7.0.0.0, sygnatura czasowa: 0x2a425e19 Nazwa modułu powodującego błąd: ntdll.dll, wersja: 10.0.17134.471, sygnatura czasowa: 0xfe852bc4 Kod wyjątku: 0xc0000374 Przesunięcie błędu: 0x000d8499 Identyfikator procesu powodującego błąd: 0x2e08 Godzina uruchomienia aplikacji powodującej błąd: 0xic-0.feb3fb73eeec48.exe0 Ścieżka aplikacji powodującej błąd: ic-0.feb3fb73eeec48.exe1 Ścieżka modułu powodującego błąd: ic-0.feb3fb73eeec48.exe2 Identyfikator raportu: ic-0.feb3fb73eeec48.exe3 Pełna nazwa pakietu powodującego błąd: ic-0.feb3fb73eeec48.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: ic-0.feb3fb73eeec48.exe5 Error: (12/16/2018 04:17:54 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: Dassu.exe, wersja: 7.0.0.0, sygnatura czasowa: 0x2a425e19 Nazwa modułu powodującego błąd: ntdll.dll, wersja: 10.0.17134.471, sygnatura czasowa: 0xfe852bc4 Kod wyjątku: 0xc0000374 Przesunięcie błędu: 0x000d8499 Identyfikator procesu powodującego błąd: 0x16a0 Godzina uruchomienia aplikacji powodującej błąd: 0xDassu.exe0 Ścieżka aplikacji powodującej błąd: Dassu.exe1 Ścieżka modułu powodującego błąd: Dassu.exe2 Identyfikator raportu: Dassu.exe3 Pełna nazwa pakietu powodującego błąd: Dassu.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: Dassu.exe5 Dziennik System: ============= Error: (12/16/2018 06:00:47 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: właściwe dla aplikacjiLokalnyAktywacja{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}ZARZĄDZANIE NTUSŁUGA LOKALNAS-1-5-19LocalHost (użycie LRPC)NiedostępnyNiedostępny Error: (12/16/2018 05:51:49 PM) (Source: DCOM) (EventID: 10016) (User: BRABUS) Description: właściwe dla aplikacjiLokalnyAktywacja{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}BrabusRobertS-1-5-21-884423482-3915767466-712464105-1001LocalHost (użycie LRPC)NiedostępnyNiedostępny Error: (12/16/2018 05:48:16 PM) (Source: DCOM) (EventID: 10016) (User: BRABUS) Description: właściwe dla aplikacjiLokalnyAktywacja{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}BrabusRobertS-1-5-21-884423482-3915767466-712464105-1001LocalHost (użycie LRPC)NiedostępnyNiedostępny Error: (12/16/2018 05:48:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa CCSDK niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (12/16/2018 05:47:53 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: właściwe dla aplikacjiLokalnyAktywacja{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}ZARZĄDZANIE NTUSŁUGA LOKALNAS-1-5-19LocalHost (użycie LRPC)NiedostępnyNiedostępny Error: (12/16/2018 05:27:13 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi P2PEnhance z powodu następującego błędu: %%2 Error: (12/16/2018 04:52:19 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: właściwe dla aplikacjiLokalnyUruchomWindows.SecurityCenter.WscBrokerManagerNiedostępnyZARZĄDZANIE NTSYSTEMS-1-5-18LocalHost (użycie LRPC)NiedostępnyNiedostępny Error: (12/16/2018 04:50:05 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: właściwe dla aplikacjiLokalnyAktywacja{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}ZARZĄDZANIE NTUSŁUGA LOKALNAS-1-5-19LocalHost (użycie LRPC)NiedostępnyNiedostępny Error: (12/16/2018 04:48:38 PM) (Source: DCOM) (EventID: 10010) (User: BRABUS) Description: {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474} Error: (12/16/2018 04:36:45 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: właściwe dla aplikacjiLokalnyAktywacja{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}ZARZĄDZANIE NTUSŁUGA LOKALNAS-1-5-19LocalHost (użycie LRPC)NiedostępnyNiedostępny ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz Procent pamięci w użyciu: 29% Całkowita pamięć fizyczna: 8105.84 MB Dostępna pamięć fizyczna: 5693.4 MB Całkowita pamięć wirtualna: 9385.84 MB Dostępna pamięć wirtualna: 7201.98 MB ==================== Dyski ================================ Drive c: (Windows8_OS) (Fixed) (Total:891.67 GB) (Free:3.99 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:4.11 GB) NTFS Drive v: (Disc) (CDROM) (Total:2.03 GB) (Free:0 GB) CDFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: F7E6B931) Partition: GPT. ==================== Koniec Addition.txt ============================