Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 13.03.2019 01 Uruchomiony przez Rostov (15-03-2019 13:36:12) Uruchomiony z C:\Users\Rostov\Desktop\FRST Windows 7 Home Premium Service Pack 1 (X64) (2011-12-23 19:14:36) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-764258043-3443933537-1065429426-500 - Administrator - Disabled) => C:\Users\Administrator Gość (S-1-5-21-764258043-3443933537-1065429426-501 - Limited - Disabled) => C:\Users\Gość Rostov (S-1-5-21-764258043-3443933537-1065429426-1000 - Administrator - Enabled) => C:\Users\Rostov ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Kaspersky Internet Security (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8} AS: Kaspersky Internet Security (Enabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Kaspersky Internet Security (Enabled) {32888857-01C3-7AB6-E095-11CC1854D0A3} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 7-Zip 18.06 (x64) (HKLM\...\7-Zip) (Version: 18.06 - Igor Pavlov) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 19.010.20098 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 28.0.0.127 - Adobe Systems Incorporated) Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.156 - Adobe Systems Incorporated) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.156 - Adobe Systems Incorporated) Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.5.195 - Adobe Systems, Inc.) Advanced Audio FX Engine (HKLM-x32\...\Advanced Audio FX Engine) (Version: 1.12.05 - Creative Technology Ltd) AIMP (HKLM-x32\...\AIMP) (Version: v4.51.2084, 01.12.2018 - AIMP DevTeam) Arena 3.5.1 (HKLM-x32\...\Arena 3.5.1_is1) (Version: - ) Aspell Polish Dictionary-0.50-2 (HKLM-x32\...\Aspell Polish Dictionary_is1) (Version: - GNU) Attribute Changer 5.10 (HKLM-x32\...\Attribute Changer) (Version: 5.10 - Romain Petges) Attribute Changer 8.60 (HKLM\...\{27263813-8BDE-4CD2-84D3-02536743428A}_is1) (Version: 8.60 - Romain Petges) Audacity 2.1.3 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.3 - Audacity Team) Audacity 2.3.0 (HKLM-x32\...\Audacity_is1) (Version: 2.3.0 - Audacity Team) Avidemux 2.6 - 64bits (HKLM-x32\...\Avidemux 2.6 - 64bits (64-bit)) (Version: 2.6.8.9046 - ) Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.2.0.83 - Atheros Communications) calibre 64bit (HKLM\...\{A9CFF5B2-9CF6-4903-ACD1-CE9CFDFD6206}) (Version: 3.34.0 - Kovid Goyal) CCleaner (HKLM\...\CCleaner) (Version: 5.55 - Piriform) ChomikBox (HKLM-x32\...\{C7B52FAF-58D8-438C-B810-F78C3C927504}) (Version: 2.0.8.0 - Chomikuj.pl) Core Temp 1.0 RC9 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden dBpoweramp (HKLM-x32\...\dBpoweramp) (Version: Release 16.2 - Illustrate) dBpoweramp AAC Encoder (HKLM-x32\...\dBpoweramp AAC Encoder) (Version: Release 2.1 - Illustrate) dBpoweramp FLAC Codec (HKLM-x32\...\dBpoweramp FLAC Codec) (Version: Release 14 (FLAC 1.2.1) - Illustrate) dBpoweramp m4a FDK (AAC) Encoder (HKLM-x32\...\dBpoweramp m4a FDK (AAC) Encoder) (Version: Release 3 (FDK v0.1.3) - Illustrate) Debugging Tools for Windows (x64) (HKLM\...\{DBFC6AAE-DCCB-4C23-B01C-3EDDDC03298B}) (Version: 6.12.2.633 - Microsoft Corporation) Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform) Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc) Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.) Dell Support Center (HKLM\...\{0090A87C-3E0E-43D4-AA71-A71B06563A4A}) (Version: 3.1.5907.16 - PC-Doctor, Inc.) Hidden Dell Support Center (HKLM\...\Dell Support Center) (Version: 3.1.5907.16 - Dell Inc.) Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.1207.101.225 - ALPS ELECTRIC CO., LTD.) Dell VideoStage (HKLM-x32\...\{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}) (Version: 1.2.0.1712 - CyberLink Corp.) Hidden Dell VideoStage (HKLM-x32\...\InstallShield_{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}) (Version: 1.2.0.1712 - CyberLink Corp.) Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 2.00.46 - Creative Technology Ltd) Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Dell Inc.) DriverAgent by eSupport.com (HKLM\...\DriverAgent.exe) (Version: - ) EaseUS Partition Master 10.5 Trial Edition (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version: - EaseUS) e-Deklaracje Desktop (HKLM-x32\...\{8C910244-680E-9C07-1376-2CD1161B3135}) (Version: 4.0.5 - Ministerstwo Finansow) Hidden e-Deklaracje Desktop (HKLM-x32\...\e-Deklaracje.A1909296681C7ACEFE45687D3A64758C8659BF46.1) (Version: 4.0.5 - Ministerstwo Finansow) e-mikrofirma (HKLM-x32\...\{FD8B3CEE-530D-4E86-BA16-E3A78A315147}) (Version: 1.1.0.0 - Aplikacje Krytyczne sp. z o. o.) Evernote v. 6.17.6 (HKLM-x32\...\{A957B0DA-2045-11E9-B0CF-005056951CAD}) (Version: 6.17.6.8292 - Evernote Corp.) Everything 1.2.1.371 (HKLM-x32\...\Everything) (Version: - ) Exif Pilot 4.7 (HKLM-x32\...\Exif Pilot_is1) (Version: 4.7 - Two Pilots) FastStone Image Viewer 6.9 (HKLM-x32\...\FastStone Image Viewer) (Version: 6.9 - FastStone Soft) FFmpeg (Windows) for Audacity wersja 2.2.2 (HKLM-x32\...\{9C7E31E3-017F-434C-AC40-24431A354A1E}_is1) (Version: 2.2.2 - ) foobar2000 v0.9.4.5 (HKLM-x32\...\foobar2000) (Version: 0.9.4.5 - Peter Pawlowski) Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych (HKLM-x32\...\{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}) (Version: 15.4.5722.2 - Microsoft Corporation) Galeria fotografii usługi Windows Live (HKLM-x32\...\{CB3F59BB-7858-41A1-A7EA-4B8A6FC7D431}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden GG (HKU\S-1-5-21-764258043-3443933537-1065429426-1000\...\GG) (Version: 12 - GG Network S.A.) GIMP 2.8.20 (HKLM\...\GIMP-2_is1) (Version: 2.8.20 - The GIMP Team) G'MIC for GIMP (Qt version) wersja 2.0.3_pre (HKLM-x32\...\G'MIC for GIMP (Qt version)_is1) (Version: 2.0.3_pre - ) GNU Aspell 0.50-3 (HKLM-x32\...\GNU Aspell_is1) (Version: - GNU) Google Chrome (HKU\S-1-5-21-764258043-3443933537-1065429426-1000\...\Google Chrome) (Version: 72.0.3626.121 - Google Inc.) Google Chrome Canary (HKU\S-1-5-21-764258043-3443933537-1065429426-1000\...\Google Chrome SxS) (Version: 75.0.3734.0 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden Hot Keyboard Pro 4 (HKLM-x32\...\Hot Keyboard Pro_is1) (Version: 4.0 - Imposant) HP Deskjet 1050 J410 series — badanie mające na celu poprawę produktów (HKLM\...\{52A87876-4D1A-4524-9F06-53A490E6E34D}) (Version: 28.0.1313.0 - Hewlett-Packard Co.) HP Deskjet 1050 J410 series — podstawowe oprogramowanie urządzenia (HKLM\...\{B6A3D97D-484B-48B5-85C6-361D9FA25CDF}) (Version: 28.0.1313.0 - Hewlett-Packard Co.) HP Deskjet 1050 J410 series Pomoc (HKLM-x32\...\{5C90D8CF-F12A-41C6-9007-3B651A1F0D78}) (Version: 140.0.66.66 - Hewlett Packard) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.3781 - HP Photo Creations Powered by RocketLife) HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6341.0 - IDT) iMeme 1.0 (HKLM-x32\...\{66CA7D93-1FDD-4152-B241-42971934D8E0}_is1) (Version: - Michael Fogleman) ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2455 - Intel Corporation) Intel(R) Turbo Boost Technology Monitor 2.0 (HKLM\...\{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}) (Version: 2.1.23.0 - Intel) IrfanView (uninstall) (HKLM\...\IrfanView) (Version: - ) IrfanView 64 (remove only) (HKLM\...\IrfanView64) (Version: 4.42 - Irfan Skiljan) Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Kaspersky Internet Security (HKLM-x32\...\{718613F4-492D-4272-ACC3-D04A8EF0F883}) (Version: 19.0.0.1088 - Kaspersky Lab) Hidden Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{718613F4-492D-4272-ACC3-D04A8EF0F883}) (Version: 19.0.0.1088 - Kaspersky Lab) KeyTweak - Keyboard Remapper (remove only) (HKLM-x32\...\KeyTweak) (Version: - ) Komunikator WTW 1.20.0.4800 (HKLM\...\{1DF5019A-68B5-4ba1-8E59-E185C7B7FF11}) (Version: 1.20.0.4800 - K2T.eu) LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - ) Lizardtech DjVu Control (HKLM-x32\...\{105CFC7C-6992-11D5-BD9D-000102C10FD8}) (Version: - ) Lunarmedia Clock B. (HKLM-x32\...\Lunarmedia Clock B.) (Version: - ) Media Preview (HKLM\...\{52AFC3E1-0FAA-4C05-88FF-373911EA68F5}) (Version: 1.4.3.429 - BabelSoft) MediaInfo 0.7.97 (HKLM\...\MediaInfo) (Version: 0.7.97 - MediaArea.net) Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation) Microsoft .NET Framework 4.7.2 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.7.03062 - Microsoft Corporation) Microsoft Keyboard Layout Creator 1.4 (HKLM-x32\...\{99E66BC9-E4B6-485F-ABFC-31EFCE36DFDF}) (Version: 1.4.6000 - Microsoft Corp.) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio Code (HKLM\...\{EA457B21-F73E-494C-ACAB-524FDE069978}_is1) (Version: 1.31.1 - Microsoft Corporation) Microsoft Windows SDK for Windows 7 (7.1) (HKLM\...\SDKSetup_7.1.7600.0.30514) (Version: 7.1.7600.0.30514 - Microsoft Corporation) MiniTool Partition Wizard Free 9.1 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.) MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek) Mozilla Firefox 56.0.2 (x64 pl) (HKLM\...\Mozilla Firefox 56.0.2 (x64 pl)) (Version: 56.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 65.0.1.6981 - Mozilla) MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) NetWorx 5.5.5 (HKLM\...\NetWorx_is1) (Version: - Softperfect) oCam (wersja 460.0) (HKLM-x32\...\oCam_is1) (Version: 460.0 - hxxp://ohsoft.net/) Open SSL for PopTrayU (HKLM-x32\...\Open SSL for PopTrayU 1.0.2d) (Version: 1.0.2d - Jessica Brown) OpenOffice 4.1.4 (HKLM-x32\...\{BA41785F-1DB1-4CEA-830A-149E940786B8}) (Version: 4.14.9788 - Apache Software Foundation) Opera Stable 37.0.2178.43 (HKLM-x32\...\Opera 37.0.2178.43) (Version: 37.0.2178.43 - Opera Software) Opera Stable 39.0.2256.71 (HKLM-x32\...\Opera 39.0.2256.71) (Version: 39.0.2256.71 - Opera Software) Opera Stable 48.0.2685.35 (HKLM-x32\...\Opera 48.0.2685.35) (Version: 48.0.2685.35 - Opera Software) Opera Stable 58.0.3135.79 (HKLM-x32\...\Opera 58.0.3135.79) (Version: 58.0.3135.79 - Opera Software) PDF-XChange Viewer (HKLM\...\{9ED333F8-3E6C-4A38-BAFA-728454121CDA}) (Version: 2.5.312.1 - Tracker Software Products (Canada) Ltd.) Poczta usługi Windows Live (HKLM-x32\...\{64376910-1860-4CEF-8B34-AA5D205FC5F1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Podstawowe programy Windows Live (HKLM-x32\...\{7A9D47BA-6D50-4087-866F-0800D8B89383}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Podstawowe programy Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation) Poedit (HKLM-x32\...\{68EB2C37-083A-4303-B5D8-41FA67E50B8F}_is1) (Version: 2.0.6 - Vaclav Slavik) Polish (UK) 57 (HKLM\...\{2640F997-8BD4-4E10-AD8D-80339457FB71}) (Version: 1.0.3.40 - Company) PopTrayU 5.2.6 (HKLM-x32\...\PopTrayU) (Version: 5.2.6 - Jessica Brown) PRO Speed Test 2.0.5.5 (HKLM-x32\...\{5a5d921c-2517-4007-9804-050d4cceb3f7}}_is1) (Version: - V-SPEED Sp. z o.o.) <==== UWAGA Python 3.7.0a4 (64-bit) (HKU\S-1-5-21-764258043-3443933537-1065429426-1000\...\{1f27609b-f702-44da-bca7-c836ab37075b}) (Version: 3.7.104.0 - Python Software Foundation) Python 3.7.0a4 Add to Path (64-bit) (HKLM\...\{52FA5800-E535-4346-BF44-1254D869BC40}) (Version: 3.7.104.0 - Python Software Foundation) Hidden Python 3.7.0a4 Core Interpreter (64-bit) (HKLM\...\{C237EF2C-855C-4003-9442-12CEA8576DF6}) (Version: 3.7.104.0 - Python Software Foundation) Hidden Python 3.7.0a4 Development Libraries (64-bit) (HKLM\...\{3AA7D71A-FE09-4269-B204-9B68EC6C77D0}) (Version: 3.7.104.0 - Python Software Foundation) Hidden Python 3.7.0a4 Documentation (64-bit) (HKLM\...\{F88E9B2F-D249-4067-8DD7-D38D58CBF504}) (Version: 3.7.104.0 - Python Software Foundation) Hidden Python 3.7.0a4 Executables (64-bit) (HKLM\...\{347944F1-CE1B-4391-AB93-0CAFD0CCCC6B}) (Version: 3.7.104.0 - Python Software Foundation) Hidden Python 3.7.0a4 pip Bootstrap (64-bit) (HKLM\...\{59D5D25E-5C3D-45FD-AA3D-73AFAB41BCBA}) (Version: 3.7.104.0 - Python Software Foundation) Hidden Python 3.7.0a4 Standard Library (64-bit) (HKLM\...\{04F5CDB6-698E-4B02-87AD-5C8353217917}) (Version: 3.7.104.0 - Python Software Foundation) Hidden Python 3.7.0a4 Tcl/Tk Support (64-bit) (HKLM\...\{767A9C9C-AAB3-4364-A287-0BC6F4717658}) (Version: 3.7.104.0 - Python Software Foundation) Hidden Python 3.7.0a4 Test Suite (64-bit) (HKLM\...\{AB162684-2E4A-435C-9100-9E8454413464}) (Version: 3.7.104.0 - Python Software Foundation) Hidden Python 3.7.0a4 Utility Scripts (64-bit) (HKLM\...\{E6AF7FCC-01FD-4702-B569-485066BF85D3}) (Version: 3.7.104.0 - Python Software Foundation) Hidden Python Launcher (HKLM-x32\...\{BD41F6DE-5ED0-47F2-AB86-2C142730EE9C}) (Version: 3.7.6217.0 - Python Software Foundation) Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.09.25 - Dell Inc.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.45.516.2011 - Realtek) Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30126 - Realtek Semiconductor Corp.) ReNamer (HKLM-x32\...\ReNamer_is1) (Version: 6.5.0.0 - den4b Team) Revo Uninstaller 2.0.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.5 - VS Revo Group, Ltd.) SharpKeys (HKLM-x32\...\{58D335B6-B3C6-4465-AEC3-6442BC323723}) (Version: 2.1.1000 - RandyRants.com) SlimDrivers (HKLM-x32\...\{DD350F3A-3620-4185-A5E2-88A6437C8415}) (Version: 2.2.24428 - SlimWare Utilities, Inc.) SMPlayer 0.8.6 (x64) (HKLM\...\SMPlayer) (Version: 0.8.6 - Ricardo Villalba) Sound Blaster Play! 2 Extras (HKLM-x32\...\{DBAE4081-D97A-48C7-8698-CD5CE616C005}) (Version: - ) Spotify (HKU\S-1-5-21-764258043-3443933537-1065429426-1000\...\Spotify) (Version: 1.1.2.285.ga97985ef - Spotify AB) SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk) swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden System Requirements Lab for Intel (HKLM-x32\...\{63B7AC7E-0178-4F4F-A79B-08D97ADD02D7}) (Version: 4.5.11.0 - Husdawg, LLC) The Bat! Professional v5.2.2 (HKLM-x32\...\{D1519491-C883-463C-A605-8C8969B2DAA9}) (Version: 5.2.2.0 - Ritlabs) Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.0 - Ghisler Software GmbH) Unity Web Player (HKU\S-1-5-21-764258043-3443933537-1065429426-1000\...\UnityWebPlayer) (Version: 5.3.6f1 - Unity Technologies ApS) VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software) VisiPics V1.31 (HKLM-x32\...\VisiPics_is1) (Version: - Ozone) VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN) Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp) Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation) Wtyczka e-Deklaracje (HKLM-x32\...\{B999C8C7-659D-4722-B9FA-0B03E9546A25}) (Version: 6.0.1 - Ministerstwo Finansów) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) HKU\S-1-5-21-764258043-3443933537-1065429426-1000\...\ChromeHTML: -> C:\Users\Rostov\AppData\Local\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) CustomCLSID: HKU\S-1-5-21-764258043-3443933537-1065429426-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Rostov\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => Brak pliku CustomCLSID: HKU\S-1-5-21-764258043-3443933537-1065429426-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\Rostov\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-764258043-3443933537-1065429426-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Rostov\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-764258043-3443933537-1065429426-1000_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04}\InprocServer32 -> C:\Users\Rostov\AppData\Local\Google\Update\1.3.33.3\psuser_64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-764258043-3443933537-1065429426-1000_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\Rostov\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-764258043-3443933537-1065429426-1000_Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\localserver32 -> C:\Users\Rostov\AppData\Local\Google\Chrome\Application\72.0.3626.121\notification_helper.exe (Google LLC -> Google Inc.) CustomCLSID: HKU\S-1-5-21-764258043-3443933537-1065429426-1000_Classes\CLSID\{A804CF1A-91E5-4F0C-9E8C-DB39E74056DD}\InprocServer32 -> C:\Users\Rostov\AppData\Local\Google\Update\1.3.33.23\psuser_64.dll (Google Inc -> Google Inc.) CustomCLSID: HKU\S-1-5-21-764258043-3443933537-1065429426-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\Rostov\AppData\Local\Google\Update\1.3.32.8\psuser_64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-764258043-3443933537-1065429426-1000_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\Rostov\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll (GG Network S.A.) [Brak podpisu cyfrowego] CustomCLSID: HKU\S-1-5-21-764258043-3443933537-1065429426-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Rostov\AppData\Local\Google\Update\1.3.33.23\psuser_64.dll (Google Inc -> Google Inc.) CustomCLSID: HKU\S-1-5-21-764258043-3443933537-1065429426-1000_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4}\InprocServer32 -> C:\Users\Rostov\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-764258043-3443933537-1065429426-1000_Classes\CLSID\{FA372A6E-149F-4E95-832D-8F698D40AD7F}\localserver32 -> C:\Users\Rostov\AppData\Local\Google\Chrome SxS\Application\75.0.3734.0\notification_helper.exe (Google LLC -> Google Inc.) ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2014-03-20] (GG Network S.A.) [Brak podpisu cyfrowego] ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2014-03-20] (GG Network S.A.) [Brak podpisu cyfrowego] ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2014-03-20] (GG Network S.A.) [Brak podpisu cyfrowego] ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2014-03-20] (GG Network S.A.) [Brak podpisu cyfrowego] ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-12-30] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers1: [ACShell] -> {D3F9A525-8824-497A-BE36-B23E22F141FC} => C:\Program Files\Attribute Changer\acshell.dll [2016-12-30] (Romain Petges) [Brak podpisu cyfrowego] ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP3\System\aimp_menu64.dll [2018-12-12] (Artem Izmaylov -> AIMP DevTeam) ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvAppExt.dll [2011-05-20] (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] ContextMenuHandlers1: [BB FlashBack 2] -> {A8065B9E-193F-4797-B62D-8F6321E7FCCB} => -> Brak pliku ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2015-03-11] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers1: [HotKeyboard] -> {9493BF10-6A0A-11D3-AFB2-00C06C397814} => C:\Program Files (x86)\Hot Keyboard Pro\HkShExt64.dll [2013-01-11] (Imposant -> Imposant) ContextMenuHandlers1: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\x64\ShellEx.dll [2019-02-15] (Kaspersky Lab -> AO Kaspersky Lab) ContextMenuHandlers2: [ACShell] -> {D3F9A525-8824-497A-BE36-B23E22F141FC} => C:\Program Files\Attribute Changer\acshell.dll [2016-12-30] (Romain Petges) [Brak podpisu cyfrowego] ContextMenuHandlers2: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\x64\ShellEx.dll [2019-02-15] (Kaspersky Lab -> AO Kaspersky Lab) ContextMenuHandlers3: [ACShell] -> {D3F9A525-8824-497A-BE36-B23E22F141FC} => C:\Program Files\Attribute Changer\acshell.dll [2016-12-30] (Romain Petges) [Brak podpisu cyfrowego] ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ShellContextExt.dll [2011-05-20] (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-12-30] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers4: [ACShell] -> {D3F9A525-8824-497A-BE36-B23E22F141FC} => C:\Program Files\Attribute Changer\acshell.dll [2016-12-30] (Romain Petges) [Brak podpisu cyfrowego] ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP3\System\aimp_menu64.dll [2018-12-12] (Artem Izmaylov -> AIMP DevTeam) ContextMenuHandlers4: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\x64\ShellEx.dll [2019-02-15] (Kaspersky Lab -> AO Kaspersky Lab) ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> Brak pliku ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\windows\system32\igfxpph.dll [2000-01-01] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-12-30] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2015-03-11] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers6: [HotKeyboard] -> {9493BF10-6A0A-11D3-AFB2-00C06C397814} => C:\Program Files (x86)\Hot Keyboard Pro\HkShExt64.dll [2013-01-11] (Imposant -> Imposant) ContextMenuHandlers6: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\x64\ShellEx.dll [2019-02-15] (Kaspersky Lab -> AO Kaspersky Lab) ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> Brak pliku ContextMenuHandlers1_S-1-5-21-764258043-3443933537-1065429426-1000: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} => C:\Users\Rostov\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll [2014-03-20] (GG Network S.A.) [Brak podpisu cyfrowego] ContextMenuHandlers4_S-1-5-21-764258043-3443933537-1065429426-1000: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} => C:\Users\Rostov\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll [2014-03-20] (GG Network S.A.) [Brak podpisu cyfrowego] ContextMenuHandlers5_S-1-5-21-764258043-3443933537-1065429426-1000: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} => C:\Users\Rostov\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll [2014-03-20] (GG Network S.A.) [Brak podpisu cyfrowego] ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {03C6C646-AE41-49AA-A34A-BD97D90E02C1} - System32\Tasks\{198BBED9-A127-4C4E-8EE4-1340C2CB829F} => C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe (Adobe Systems Incorporated -> Adobe Systems Inc.) Task: {0C7C0CA7-D0F7-49BB-B943-7F4DC543188B} - System32\Tasks\{F57CEA52-F9BC-4EC9-B2E7-3708161098B1} => C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe (Adobe Systems Incorporated -> Adobe Systems Inc.) Task: {0F398C55-E9B8-43FC-8A19-BEE65A7321AC} - System32\Tasks\{1D346A55-F2F4-4730-A8F0-2F814DA399E3} => C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe (Adobe Systems Incorporated -> Adobe Systems Inc.) Task: {164CD6C5-6101-4C6F-AC46-15884EDCD660} - System32\Tasks\Core Temp Autostart Rostov => C:\Program Files\Core Temp\Core Temp.exe (ALCPU -> ) Task: {166A88F9-ABA5-40FD-A3B7-915AC845AD69} - System32\Tasks\{E2104177-E4C4-4577-839B-D0DF2A5E0F83} => C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe (Adobe Systems Incorporated -> Adobe Systems Inc.) Task: {32D367BA-24E8-43EA-B3F1-DA08A6911CF0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Task: {359DAE2E-F3BB-4CF0-A1F0-5FE672603108} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Software Ltd) Task: {3CBD34FF-E634-4A89-B399-BC94A8AB1533} - System32\Tasks\{8715D018-9D72-4C72-A7CB-5B8E8DC0D933} => C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe (Adobe Systems Incorporated -> Adobe Systems Inc.) Task: {3EE43262-8A3A-465D-B279-8EDB186FA8A8} - System32\Tasks\{66A95DF7-5DD2-434F-9424-7304EFA4F7B6} => C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe (Adobe Systems Incorporated -> Adobe Systems Inc.) Task: {4901203B-42CB-4736-80B3-AE7F153671B8} - System32\Tasks\{F8E48505-CBAA-4147-BE1C-9044626726BA} => C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe (Adobe Systems Incorporated -> Adobe Systems Inc.) Task: {51534FD3-32AA-4F78-AAEF-5053DB61EF0F} - System32\Tasks\Opera scheduled Autoupdate 1391084469 => C:\Program Files (x86)\Opera\launcher.exe (Opera Software AS -> Opera Software) Task: {5803D660-79DC-40DF-9716-6A67CC5E16D8} - System32\Tasks\HPCustParticipation HP Deskjet 1050 J410 series => C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\HPCustPartic.exe (Hewlett Packard -> Hewlett-Packard Co.) Task: {584C87CE-F313-473C-B828-EC1504989B91} - System32\Tasks\{C34BAC7E-33C5-419F-91CB-63923530D051} => C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe (Adobe Systems Incorporated -> Adobe Systems Inc.) Task: {5A98D38E-BFB9-4C9A-A742-5FEB4B9201D8} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {5DFEC013-C475-4E96-9F72-3A895022C086} - System32\Tasks\{F193D7B3-6EEB-4132-827E-5DCBE9B667EA} => C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe (Adobe Systems Incorporated -> Adobe Systems Inc.) Task: {65070E2D-6983-4189-89CB-2AD8F70D8B6F} - System32\Tasks\{0AC4CA7F-83CE-410A-8687-277F7F1F178D} => C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe (Adobe Systems Incorporated -> Adobe Systems Inc.) Task: {6FB61742-58FD-47DD-A0B5-2C5A6E4E4A1C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-764258043-3443933537-1065429426-1000Core => C:\Users\Rostov\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.) Task: {76E0A870-AC11-4AD5-9D3B-5E57FC2FCD2A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) Task: {7874D708-CC1E-42F3-80E4-E8953901876A} - System32\Tasks\{5BF33B81-833C-44F8-8F79-24E78E498399} => C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe (Adobe Systems Incorporated -> Adobe Systems Inc.) Task: {892B8125-B0B5-4A31-A5E0-B8CC1D5071B7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.) Task: {8EE930DF-AA97-41B4-BF9D-55BF0EF1CBB0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.) Task: {954DDC3F-2055-4F66-9537-551BAB6CEF31} - System32\Tasks\{68ABBCC5-8459-4EEA-BCF5-112B04439E34} => C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe (Adobe Systems Incorporated -> Adobe Systems Inc.) Task: {A609F4EA-3AEA-4783-A330-805E56450F51} - System32\Tasks\Games\UpdateCheck_S-1-5-21-764258043-3443933537-1065429426-1000 Task: {A881C7CD-83B5-4504-81C2-D6C7F0622BE3} - System32\Tasks\{20F98C92-78F7-4BF9-BE2C-3A953DD0CE86} => C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe (Adobe Systems Incorporated -> Adobe Systems Inc.) Task: {BB84C6DC-4BE7-43F3-866D-C61D69BF527D} - System32\Tasks\{C8A90F69-20BC-4E1D-8031-0F83055F03B9} => C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe (Adobe Systems Incorporated -> Adobe Systems Inc.) Task: {C38BB02A-C2B5-4F4D-83CE-34C970E6D78D} - System32\Tasks\{962CF1C5-E3D7-4F74-9F6A-B60310475BB3} => C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe (Adobe Systems Incorporated -> Adobe Systems Inc.) Task: {D8A7F4E0-57E0-4F35-A24B-935AE0ED14DC} - System32\Tasks\{E0AEC1BB-D18F-487E-B84E-F3AE3F0F806E} => C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe (Adobe Systems Incorporated -> Adobe Systems Inc.) Task: {DE7C90AA-834B-477D-959F-E5410C40F22D} - System32\Tasks\{1EFFD9D2-D613-4EEF-9596-5543DEED4E5C} => C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe (Adobe Systems Incorporated -> Adobe Systems Inc.) Task: {E11E7269-2BA8-4DE0-976F-6A615AD5B7C5} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_156_Plugin.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {F5A62D16-77D9-4C64-845A-DBAFAB2D8993} - System32\Tasks\{38EC345B-172C-4097-9901-4BA9B60CA95A} => C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe (Adobe Systems Incorporated -> Adobe Systems Inc.) Task: {FB6BF612-17E2-4306-804A-4AA9B1BF53A7} - System32\Tasks\{68F43B7C-4382-4D08-85A4-D2CBF7EC9246} => C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe (Adobe Systems Incorporated -> Adobe Systems Inc.) Task: {FC01284F-DB24-4EDD-8B55-50CD32366EE4} - System32\Tasks\{8829FCBC-CE02-47E7-B909-F96F3E1C6477} => C:\windows\system32\pcalua.exe -a C:\Users\Rostov\AppData\Local\Temp\jre-8u111-windows-au.exe -d C:\windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== UWAGA Task: {FD2F3818-25B1-4F23-B4B2-D1095EE09899} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-764258043-3443933537-1065429426-1000UA => C:\Users\Rostov\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\":: WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99] WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate] Shortcut: C:\Users\Rostov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ministerstwo Finansów\Aplikacje Krytyczne sp. z o. o..lnk -> hxxp://akmf.pl Shortcut: C:\Users\Rostov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ministerstwo Finansów\Jednolity Plik Kontrolny.lnk -> hxxp://jpk.mf.gov.pl Shortcut: C:\Users\Rostov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ministerstwo Finansów\Ministerstwo Finansów.lnk -> hxxp://www.mf.gov.pl Shortcut: C:\Users\Rostov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\K2T\WTW\Forum.lnk -> hxxp://forum.k2t.eu Shortcut: C:\Users\Rostov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\K2T\WTW\Zgłoś błąd.lnk -> hxxp://bugtraq.k2t.eu Shortcut: C:\Users\Rostov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\K2T\WTW\Zgłoś propozycję.lnk -> hxxp://bugtraq.k2t.eu ShortcutWithArgument: C:\Users\Rostov\AppData\Local\Google\Chrome\Application\chrome.lnk -> C:\Users\Rostov\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> -incognito ==================== Załadowane moduły (filtrowane) ============== 2011-12-29 13:21 - 2006-04-22 17:08 - 000004608 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Hot Keyboard Pro\HkHook64_30.dll 2011-05-20 18:16 - 2011-05-20 18:16 - 000146592 _____ (Atheros Communications Inc. -> Atheros) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Ath_CoexAgent.exe 2011-05-20 18:15 - 2011-05-20 18:15 - 000080032 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe 2011-12-16 14:41 - 2011-12-16 14:41 - 001654784 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] C:\windows\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.5592_none_8448f49f328da8c3\MFC80U.DLL 2015-04-06 18:41 - 2014-03-20 15:18 - 002023936 _____ (GG Network S.A.) [Brak podpisu cyfrowego] C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll 2015-04-06 18:41 - 2014-03-20 15:18 - 001683456 _____ (GG Network S.A.) [Brak podpisu cyfrowego] C:\Users\Rostov\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll 2019-01-21 19:49 - 2018-12-30 08:00 - 000077824 _____ (Igor Pavlov) [Brak podpisu cyfrowego] C:\Program Files\7-Zip\7-zip.dll 2011-05-20 18:15 - 2011-05-20 18:15 - 000627360 _____ (Atheros Communications Inc. -> Atheros Communications) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe 2011-05-20 18:16 - 2011-05-20 18:16 - 000066720 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Sync.dll 2011-05-20 18:15 - 2011-05-20 18:15 - 000073888 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\GOEP_SINGLE.DLL 2011-05-20 18:15 - 2011-05-20 18:15 - 002234016 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\OutLookLib.dll 2011-05-20 18:15 - 2011-05-20 18:15 - 000119456 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\L2capLib.dll 2011-05-20 18:15 - 2011-05-20 18:15 - 000043680 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BTBIP.DLL 2011-05-20 18:16 - 2011-05-20 18:16 - 000081056 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\RfcommLib.dll 2011-05-20 18:15 - 2011-05-20 18:15 - 000044704 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BPP.DLL 2011-05-20 18:15 - 2011-05-20 18:15 - 000079520 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\GOEP_bpp.DLL 2011-05-20 18:15 - 2011-05-20 18:15 - 000079008 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Handsfree.dll 2011-05-20 18:15 - 2011-05-20 18:15 - 000207520 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtObexFt.dll 2011-05-20 18:15 - 2011-05-20 18:15 - 000029856 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtFileStore.dll 2011-05-20 18:15 - 2011-05-20 18:15 - 000208544 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BTOBEXOP.dll 2011-05-20 18:15 - 2011-05-20 18:15 - 000030368 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtFileStoreOpp.dll 2011-05-20 18:15 - 2011-05-20 18:15 - 000072864 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\goep.dll 2011-05-20 18:15 - 2011-05-20 18:15 - 000305824 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\filetransfer.dll 2011-12-16 14:40 - 2011-12-16 14:40 - 000113664 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] C:\windows\WinSxS\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.5592_none_8a1e1b372ed7b012\ATL80.DLL 2011-05-20 18:16 - 2011-05-20 18:16 - 000140448 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\skypeagent.dll 2011-12-16 14:41 - 2011-12-16 14:41 - 001658368 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] C:\windows\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.5592_none_8448f49f328da8c3\MFC80.DLL 2011-05-20 18:15 - 2011-05-20 18:15 - 000118944 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ObjPush.dll 2011-05-20 18:15 - 2011-05-20 18:15 - 000379552 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe 2015-04-01 17:42 - 2016-09-19 12:09 - 000813056 _____ () [Brak podpisu cyfrowego] C:\Program Files\NetWorx\sqlite.dll 2015-12-13 22:49 - 2015-12-13 22:49 - 007314432 _____ () [Brak podpisu cyfrowego] C:\Users\Rostov\D\PopTrayU\PopTrayU.exe 2012-09-11 17:25 - 2012-08-05 18:16 - 000013312 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Hot Keyboard Pro\hkhook40.dll 2015-11-13 23:52 - 2015-11-13 23:52 - 001362944 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] C:\Users\Rostov\D\PopTrayU\libeay32.dll 2015-11-13 23:52 - 2015-11-13 23:52 - 000357888 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] C:\Users\Rostov\D\PopTrayU\ssleay32.dll 2011-12-16 14:14 - 2011-02-01 11:53 - 000069632 _____ (Intel Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\StatusStrings.dll 2011-12-16 14:14 - 2011-02-01 11:57 - 001892352 _____ (Apache Software Foundation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\xerces-c_2_7.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-764258043-3443933537-1065429426-1000\...\dell.com -> dell.com ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2019-02-25 20:52 - 000425717 _____ C:\windows\system32\drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 localhost.localdomain 255.255.255.255 broadcasthost 127.0.0.1 local 127.0.0.1 goatse.cx # More information on sites such as 127.0.0.1 www.goatse.cx # these can be found in this article 127.0.0.1 oralse.cx # en.wikipedia.org/wiki/List_of_shock_sites 127.0.0.1 www.oralse.cx 127.0.0.1 goatse.ca 127.0.0.1 www.goatse.ca 127.0.0.1 oralse.ca 127.0.0.1 www.oralse.ca 127.0.0.1 goat.cx 127.0.0.1 www.goat.cx 127.0.0.1 shafou.com 127.0.0.1 www.shafou.com 127.0.0.1 1girl1pitcher.com 127.0.0.1 1girl1pitcher.org 127.0.0.1 1guy1cock.com 127.0.0.1 1man1jar.org 127.0.0.1 1man2needles.com 127.0.0.1 1priest1nun.com 127.0.0.1 1priest1nun.net 127.0.0.1 2girls1cup.cc 127.0.0.1 2girls1cup.com 127.0.0.1 2girls1cup-free.com 127.0.0.1 2girls1cup.nl 127.0.0.1 2girls1cup.ws 127.0.0.1 2girls1finger.com 127.0.0.1 2girls1finger.org Wykryto więcej niż wyliczono: 13358 linii. ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\ProgramData\Oracle\Java\javapath;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;c:\Program Files (x86)\Common Files\Roxio Shared\OEM\DLLShared\;c:\Program Files (x86)\Common Files\Roxio Shared\OEM\DLLShared\;c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\;c:\Program Files (x86)\Roxio\OEM\AudioCore\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files\Calibre2\;C:\Program Files\Microsoft VS Code\bin HKU\S-1-5-21-764258043-3443933537-1065429426-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Rostov\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Zapora systemu Windows [funkcja wyłączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == Załączenie wejścia w fixlist spowoduje jego usunięcie. MSCONFIG\startupreg: Spotify Web Helper => C:\Users\Rostov\AppData\Roaming\Spotify\Spotify.exe --autostart ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{DF893DCA-4D55-4C15-AD75-39B6DF5A132A}] => (Allow) C:\Program Files (x86)\Dell\VideoStage\VideoStage.exe (CyberLink -> CyberLink Corp.) FirewallRules: [{F2A7B660-43A2-4B7B-8BBA-980C8D161EEA}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{02CBE405-4E7D-40AB-953D-2818F0EEA517}] => (Allow) LPort=2869 FirewallRules: [{67AB18CC-5A5C-4944-8C64-2E085A37C8E8}] => (Allow) LPort=1900 FirewallRules: [{62C7AB2F-2ACA-48B0-8CDB-C66E76140EAC}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{49CE270E-1521-4378-AB87-1CFBDBAE3BDD}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{D737F54B-9586-4230-BAEF-0BCD28C5D9AD}] => (Allow) C:\Windows\SysWOW64\muzapp.exe Brak pliku FirewallRules: [{FE390974-BFD6-4AF1-811C-9D575CA5EB9A}] => (Allow) C:\Windows\SysWOW64\muzapp.exe Brak pliku FirewallRules: [TCP Query User{0117D405-D128-461F-BB9E-6F5319921249}C:\users\rostov\d\gg\gg.exe] => (Block) C:\users\rostov\d\gg\gg.exe (GG Network S.A. -> GG Network S.A.) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{2F2F6167-0FEA-4330-9C6F-0A07D70F2D04}C:\users\rostov\d\gg\gg.exe] => (Block) C:\users\rostov\d\gg\gg.exe (GG Network S.A. -> GG Network S.A.) [Brak podpisu cyfrowego] FirewallRules: [{BA24E3DD-4715-496B-9E03-C9823720E5A7}] => (Allow) C:\Program Files\NetWorx\networx.exe (SOFTPERFECT PTY. LTD. -> SoftPerfect) FirewallRules: [{1BAB7921-C558-489E-B50C-B49684DD034A}] => (Allow) C:\Program Files\K2T\WTW\wtw.exe (K2T.eu, Kaworu) [Brak podpisu cyfrowego] FirewallRules: [{9B68CC29-9E04-4567-851A-7CE65CA5CD95}] => (Allow) C:\Program Files\K2T\WTW\wtw.exe (K2T.eu, Kaworu) [Brak podpisu cyfrowego] FirewallRules: [{D72841A3-1FDF-4D31-9CB6-9B4DDCCCDA1D}] => (Allow) C:\Program Files\NetWorx\networx.exe (SOFTPERFECT PTY. LTD. -> SoftPerfect) FirewallRules: [{68CBBCE6-FE7F-461F-92C3-752B24160FDE}] => (Allow) C:\Program Files\NetWorx\networx.exe (SOFTPERFECT PTY. LTD. -> SoftPerfect) FirewallRules: [{AC823D0E-7A83-4E14-9F11-621FA2A3AADC}] => (Allow) C:\Program Files\NetWorx\networx.exe (SOFTPERFECT PTY. LTD. -> SoftPerfect) FirewallRules: [{03DE9080-D600-49F4-8F02-F6F9A9BD6476}] => (Allow) C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\USBSetup.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{0C59CE81-C5FF-4129-83CD-6667125CF5E5}] => (Allow) C:\Program Files\NetWorx\networx.exe (SOFTPERFECT PTY. LTD. -> SoftPerfect) FirewallRules: [{B062F0E3-4A2E-4307-9C75-7B063F162F34}] => (Allow) C:\Program Files\NetWorx\networx.exe (SOFTPERFECT PTY. LTD. -> SoftPerfect) FirewallRules: [{08EDBBD1-053C-42AF-ACF3-999F396C4E1D}] => (Allow) C:\Program Files\NetWorx\networx.exe (SOFTPERFECT PTY. LTD. -> SoftPerfect) FirewallRules: [{2A5BAF01-0770-4C8C-8CD5-23462446883B}] => (Allow) C:\Program Files\NetWorx\networx.exe (SOFTPERFECT PTY. LTD. -> SoftPerfect) FirewallRules: [{C0456E87-E4B5-4FCD-AFEA-12763F7D47ED}] => (Allow) C:\Program Files\NetWorx\networx.exe (SOFTPERFECT PTY. LTD. -> SoftPerfect) FirewallRules: [{D66D7A80-C9A7-482F-A89A-9A33FC924F02}] => (Allow) C:\Program Files\NetWorx\networx.exe (SOFTPERFECT PTY. LTD. -> SoftPerfect) FirewallRules: [{D91598D5-4D58-4942-BCCD-C12F2BD62B10}] => (Allow) C:\Program Files\NetWorx\networx.exe (SOFTPERFECT PTY. LTD. -> SoftPerfect) FirewallRules: [{AB3A9C73-1175-4C5A-84EA-F2B0FB759838}] => (Allow) C:\Program Files (x86)\FF43\firefox.exe Brak pliku FirewallRules: [{F4288020-FAA7-4FB1-B1FA-578132A5DDFE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{95D79F30-AFDD-465A-8778-A9F99FC16744}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{5C317A67-CD55-4432-85EF-9F539175C993}] => (Allow) C:\Program Files\NetWorx\networx.exe (SOFTPERFECT PTY. LTD. -> SoftPerfect) FirewallRules: [{639D5221-42AF-42C7-AC4D-E55055060A08}] => (Allow) C:\Program Files\NetWorx\networx.exe (SOFTPERFECT PTY. LTD. -> SoftPerfect) FirewallRules: [{C8242FA9-3B26-40C0-AB74-DB02DB311037}] => (Allow) C:\Program Files\NetWorx\networx.exe (SOFTPERFECT PTY. LTD. -> SoftPerfect) FirewallRules: [{5A56B095-2633-4419-8A9E-5CE4095BFA26}] => (Allow) C:\Program Files (x86)\Opera\47.0.2631.80\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{120E0FD6-4677-443F-B13B-F9C70A563D27}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{646956AA-00D8-4A7C-8D9C-3F4A9A657755}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{B4DDDE81-601B-432E-8867-B954D2DCDAB1}] => (Allow) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{74B173AF-9BB9-4658-98DA-E6DE6BB67DC3}] => (Allow) C:\Program Files (x86)\Opera\58.0.3135.79\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{A6F37698-67B3-4B25-800D-10670C7F5F34}] => (Allow) C:\Users\Rostov\AppData\Local\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) FirewallRules: [{98D1ACA7-7D58-4747-9EA0-FAED8DB651A9}] => (Allow) C:\Users\Rostov\AppData\Local\Google\Chrome SxS\Application\chrome.exe (Google LLC -> Google Inc.) ==================== Punkty Przywracania systemu ========================= 06-03-2019 19:40:05 Zaplanowany punkt kontrolny 14-03-2019 12:12:37 Windows Update 14-03-2019 13:31:00 Windows Update ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Zewnętrzne urządzenie Bluetooth Description: Zewnętrzne urządzenie Bluetooth Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (03/15/2019 01:23:52 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (03/15/2019 12:26:34 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (03/15/2019 11:39:33 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (03/14/2019 11:54:04 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (03/14/2019 07:50:03 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program AIMP.exe w wersji 4.5.1.2084 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 12a8 Godzina rozpoczęcia: 01d4da968fcd40e3 Godzina zakończenia: 10 Ścieżka aplikacji: C:\PROGRA~2\AIMP3\AIMP.exe Identyfikator raportu: f4066edd-4689-11e9-adc2-6427370fcc96 Error: (03/14/2019 05:09:41 PM) (Source: Windows Search Service) (EventID: 1019) (User: ) Description: Usługa wyszukiwania systemu Windows nie może przetworzyć listy lokalizacji dołączonych i wykluczonych. Błąd: <30, 0x80040d07, „ONEINDEX16://{S-1-5-21-764258043-3443933537-1065429426-1000}/”>. Error: (03/14/2019 05:08:49 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (03/14/2019 05:08:48 PM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: Nie można zainicjować indeksu. Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Dziennik System: ============= Error: (03/15/2019 01:23:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi WebcamMax, WDM Video Capture z powodu następującego błędu: Nie można uruchomić określonej usługi, ponieważ jest ona wyłączona lub ponieważ nie są włączone skojarzone z nią urządzenia. Error: (03/15/2019 01:23:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi MSCamSvc z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (03/15/2019 12:26:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi WebcamMax, WDM Video Capture z powodu następującego błędu: Nie można uruchomić określonej usługi, ponieważ jest ona wyłączona lub ponieważ nie są włączone skojarzone z nią urządzenia. Error: (03/15/2019 12:26:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi MSCamSvc z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (03/15/2019 12:26:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi HP Support Solutions Framework Service z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (03/15/2019 12:26:04 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą HP Support Solutions Framework Service. Error: (03/15/2019 11:43:50 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Usługa Windows Update zawiesiła się podczas uruchamiania. Error: (03/15/2019 11:38:55 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi WebcamMax, WDM Video Capture z powodu następującego błędu: Nie można uruchomić określonej usługi, ponieważ jest ona wyłączona lub ponieważ nie są włączone skojarzone z nią urządzenia. Windows Defender: =================================== Date: 2013-10-08 20:26:09.718 Description: Podczas skanowania produktu Windows Defender wykryto program szpiegujący lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: http://go.microsoft.com/fwlink/?linkid=37020&name=Tool:Win32/EICAR_Test_File&threatid=17463 Nazwa:Tool:Win32/EICAR_Test_File Id.:17463 Ważność:Poważny Kategoria:Narzędzie Znaleziona ścieżka:file:C:\Users\Rostov\Desktop\eicar.com;webfile:C:\Users\Rostov\Desktop\eicar.com|https://secure.eicar.org/eicar.com Typ wykrycia:Konkretne Źródło wykrycia:System Stan:Nieznane Użytkownik:ZARZĄDZANIE NT\SYSTEM Nazwa procesu: Date: 2012-07-30 16:21:13.207 Description: Skanowanie produktu Windows Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania:{764CB673-1485-41A7-ACAB-767006E4EDC8} Typ skanowania:Oprogramowanie antyszpiegowskie Parametry skanowania:Szybkie skanowanie Użytkownik:ZARZĄDZANIE NT\USŁUGA SIECIOWA Date: 2014-07-21 18:42:59.898 Description: Produkt Windows Defender napotkał błąd podczas próby załadowania podpisów i podejmie próbę powrotu do znanego zestawu dobrych podpisów. Podpisy objęte próbą:Bieżące Kod błędu:0x80070002 Opis błędu:Nie można odnaleźć określonego pliku. Wersja podpisu:0.0.0.0 Wersja aparatu:0.0.0.0 Date: 2014-07-21 17:42:12.931 Description: Produkt Windows Defender napotkał błąd podczas próby załadowania podpisów i podejmie próbę powrotu do znanego zestawu dobrych podpisów. Podpisy objęte próbą:Bieżące Kod błędu:0x80070002 Opis błędu:Nie można odnaleźć określonego pliku. Wersja podpisu:0.0.0.0 Wersja aparatu:0.0.0.0 Date: 2014-03-04 18:58:14.653 Description: Produkt Windows Defender napotkał błąd podczas próby załadowania podpisów i podejmie próbę powrotu do znanego zestawu dobrych podpisów. Podpisy objęte próbą:Bieżące Kod błędu:0x80070002 Opis błędu:Nie można odnaleźć określonego pliku. Wersja podpisu:0.0.0.0 Wersja aparatu:0.0.0.0 Date: 2013-11-20 12:48:17.729 Description: Produkt Windows Defender napotkał błąd podczas próby załadowania podpisów i podejmie próbę powrotu do znanego zestawu dobrych podpisów. Podpisy objęte próbą:Bieżące Kod błędu:0x80070002 Opis błędu:Nie można odnaleźć określonego pliku. Wersja podpisu:0.0.0.0 Wersja aparatu:0.0.0.0 Date: 2013-11-20 12:42:58.225 Description: Produkt Windows Defender napotkał błąd podczas próby załadowania podpisów i podejmie próbę powrotu do znanego zestawu dobrych podpisów. Podpisy objęte próbą:Bieżące Kod błędu:0x80070002 Opis błędu:Nie można odnaleźć określonego pliku. Wersja podpisu:0.0.0.0 Wersja aparatu:0.0.0.0 CodeIntegrity: =================================== Date: 2016-09-29 11:35:37.410 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IntcDAud.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-29 11:35:37.364 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IntcDAud.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-29 11:35:35.897 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\igdkmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-29 11:35:35.429 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\igdkmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-29 11:06:30.542 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IntcDAud.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-29 11:06:30.495 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IntcDAud.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-28 11:31:16.456 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IntcDAud.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-28 11:31:16.409 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IntcDAud.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-2430M CPU @ 2.40GHz Procent pamięci w użyciu: 80% Całkowita pamięć fizyczna: 4004.27 MB Dostępna pamięć fizyczna: 780.57 MB Całkowita pamięć wirtualna: 8006.69 MB Dostępna pamięć wirtualna: 4783.96 MB ==================== Dyski ================================ Drive c: (OS) (Fixed) (Total:451.01 GB) (Free:333.94 GB) NTFS \\?\Volume{44a04138-27e6-11e1-a202-806e6f6e6963}\ (Recovery) (Fixed) (Total:14.65 GB) (Free:6.99 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 428BD9B5) Partition 1: (Not Active) - (Size=100 MB) - (Type=DE) Partition 2: (Active) - (Size=14.6 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=451 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================