Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 06-06-2020 Uruchomiony przez gabinet (14-06-2020 20:28:06) Uruchomiony z C:\Users\gabinet\Downloads Windows 7 Professional Service Pack 1 (X64) (2016-06-23 18:14:30) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-1448829807-2397916996-3138991478-500 - Administrator - Disabled) gabinet (S-1-5-21-1448829807-2397916996-3138991478-1000 - Administrator - Enabled) => C:\Users\gabinet Gabservis (S-1-5-21-1448829807-2397916996-3138991478-1002 - Administrator - Enabled) => C:\Users\Gabservis Gość (S-1-5-21-1448829807-2397916996-3138991478-501 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Avast Antivirus (Disabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Disabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12} FW: Avast Antivirus (Disabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 7-Zip 19.00 (HKLM-x32\...\{23170F69-40C1-2701-1900-000001000000}) (Version: 19.00.00.0 - Igor Pavlov) 7-Zip 19.00 (HKLM-x32\...\7-Zip) (Version: 19.00 - Igor Pavlov) 7-Zip 19.00 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1900-000001000000}) (Version: 19.00.00.0 - Igor Pavlov) 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 20.006.20034 - Adobe Systems Incorporated) Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.387 - Adobe) Avast Premium Security (HKLM-x32\...\Avast Antivirus) (Version: 20.4.2410 - Avast Software) Badanie mające na celu poprawę produktów HP LaserJet MFP M129-M134 (HKLM\...\{C7EFF1B7-0DE4-45DB-BC70-489FAE355723}) (Version: 44.3.2667.18234 - HP Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform) CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.3.5605 - CyberLink Corp.) CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.4.5613 - CyberLink Corp.) eKopia w Chmurze (HKLM-x32\...\{7D32FDEC-B36E-44BD-86B2-70C64A5D7A4F}) (Version: 3.7.22.121 - Asseco Poland S.A.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.97 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP) HP Dropbox Plugin (HKLM-x32\...\{8A92F0ED-5B2A-49A4-8D91-3C7436BA5998}) (Version: 36.0.102.68541 - HP) HP EmailSMTP Plugin (HKLM-x32\...\{769FD3B5-22E4-458E-9EE8-84D131500526}) (Version: 43.0.0.0 - HP) HP ESU for Microsoft Windows 7 (HKLM-x32\...\{B9947FC1-4DC3-43CC-8106-8C9E43D6F349}) (Version: 3.3.1 - Hewlett-Packard Company) HP FTP Plugin (HKLM-x32\...\{84DE24E4-9E84-4EEA-9943-0234F6792527}) (Version: 43.0.0.0 - HP) HP Google Drive Plugin (HKLM-x32\...\{4B30A834-E2F8-4C3C-BEE1-7D9D2647D8F5}) (Version: 36.0.102.68541 - HP) HP Hotkey Support (HKLM-x32\...\{F50E6249-63F5-4940-8E13-471A210D293E}) (Version: 6.2.5.1 - Hewlett-Packard Company) HP LaserJet MFP M129-M134 — podstawowe oprogramowanie urządzenia (HKLM\...\{270D724F-235C-4558-BD8D-36ADC1CA1EF6}) (Version: 44.3.2667.18234 - HP Inc.) HP OneDrive Plugin (HKLM-x32\...\{B02B7BBE-91AF-4063-86B7-66F1A04967AC}) (Version: 36.0.0.0 - HP) HP Setup (HKLM-x32\...\{438363A8-F486-4C37-834C-4955773CB3D3}) (Version: 9.1.15453.4066 - Hewlett-Packard Company) HP SharePoint Plugin (HKLM-x32\...\{6C46CDF1-AFBC-426C-8920-207BC1D64D8D}) (Version: 43.0.0.0 - HP) HP SoftPaq Download Manager (HKLM-x32\...\{fc153673-e23b-4908-93b9-164cc056a3c4}) (Version: 4.3.19.0 - HP) HP Software Setup (HKLM-x32\...\{83421C73-4679-40F0-B590-20846CB893E0}) (Version: 9.0.1 - HP) HP Support Assistant (HKLM-x32\...\{4780AF24-213D-4187-86F2-0014A6D6077B}) (Version: 8.8.26.13 - HP Inc.) HP Support Solutions Framework (HKLM-x32\...\{2E46645F-B215-4CBA-AF65-CDB924BE6C92}) (Version: 12.16.22.11 - HP Inc.) HP System Default Settings (HKLM-x32\...\{A66E1AC5-F4A9-4DB0-ACB0-90419A8F98D5}) (Version: 1.2.9.2 - HP Inc.) I.R.I.S OCR (HKLM-x32\...\{A7B72F81-1A99-4DB0-B287-13A366D22E17}) (Version: 15.2.10.1114 - HP Inc.) Intel(R) Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4821 - Intel Corporation) LibreOffice 6.1.6.3 (HKLM-x32\...\{9F8EA3F4-2D2D-4830-BF0B-6EA2A14EA0C0}) (Version: 6.1.6.3 - The Document Foundation) LM129 (HKLM-x32\...\{A2D25501-6F44-4CE2-9EFA-C9E5A0658FA9}) (Version: 0.00.0005 - HP) Microsoft .NET Framework 4.7.2 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.7.03062 - Microsoft Corporation) Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) mMedica (HKLM-x32\...\MMEDICA) (Version: 6.6.8.1 - ASSECO POLAND SA) Mozilla Firefox 77.0.1 (x64 pl) (HKLM\...\Mozilla Firefox 77.0.1 (x64 pl)) (Version: 77.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 58.0.2 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.8.6 - Notepad++ Team) opensource (HKLM-x32\...\{3677D4D8-E5E0-49FC-B86E-06541CF00BBE}) (Version: 1.0.14960.3876 - Your Company Name) Hidden PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.9.0 - Prolific Technology INC) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.94.723.2015 - Realtek) Skype (wersja 8.60) (HKLM-x32\...\Skype_is1) (Version: 8.60 - Skype Technologies S.A.) Vulkan Run Time Libraries 1.0.3.1 (HKLM\...\VulkanRT1.0.3.1) (Version: 1.0.3.1 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.3.1 (HKLM\...\VulkanRT1.0.3.1-2) (Version: 1.0.3.1 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.3.1 (HKLM\...\VulkanRT1.0.3.1-3) (Version: 1.0.3.1 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.) ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-06-10] (Avast Software s.r.o. -> AVAST Software) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-06-10] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2020-04-21] (Notepad++ -> ) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-06-10] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-08-05] (CyberLink Corp. -> Cyberlink) ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-08-05] (CyberLink Corp. -> Cyberlink) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-06-10] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\windows\system32\igfxDTCM.dll [2017-12-22] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-06-10] (Avast Software s.r.o. -> AVAST Software) ==================== Codecs (filtrowane) ==================== ==================== Skróty & WMI ======================== ==================== Załadowane moduły (filtrowane) ============= 2016-11-18 18:32 - 2016-05-23 11:07 - 000531968 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\ASSECO\mMedica\DKLIB32.DLL 2016-11-18 18:32 - 2016-05-23 11:07 - 000045056 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\ASSECO\mMedica\xcrypt.dll 2016-11-18 18:32 - 2016-05-23 11:07 - 000098304 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\ASSECO\mMedica\xlibbz2.dll 2016-11-18 18:32 - 2019-09-19 08:28 - 000176128 _____ (Asseco Poland S.A. (TS)) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASSECO\mMedica\libpq.dll 2016-12-10 17:29 - 2016-09-27 19:46 - 000176128 _____ (Asseco Poland S.A. (TS)) [Brak podpisu cyfrowego] C:\Program Files (x86)\PostgreSQL\9.5\bin\LIBPQ.dll 2008-03-11 09:00 - 2008-03-11 08:00 - 000279040 _____ (CANON INC.) [Brak podpisu cyfrowego] C:\windows\System32\CNMLM9M.DLL 2016-11-25 20:03 - 2008-03-11 08:00 - 000027648 _____ (CANON INC.) [Brak podpisu cyfrowego] C:\windows\system32\spool\PRTPROCS\x64\CNMPD9M.DLL 2015-11-18 20:58 - 2014-06-11 19:53 - 000423936 _____ (Hewlett-Packard) [Brak podpisu cyfrowego] C:\windows\System32\hpbprtmon.dll 2014-06-11 19:53 - 2014-06-11 19:53 - 000442880 _____ (Hewlett-Packard) [Brak podpisu cyfrowego] C:\windows\system32\spool\DRIVERS\x64\3\hpbxjobsvr1401.dll 2016-12-10 14:32 - 2015-03-05 08:42 - 001896960 _____ (HP) [Brak podpisu cyfrowego] C:\windows\system32\spool\DRIVERS\x64\3\hpb6sy2782_x64gui.dll 2016-12-10 17:17 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [Brak podpisu cyfrowego] C:\Program Files\7-Zip\7-zip.dll 2016-11-18 18:32 - 2016-05-23 11:07 - 000229376 _____ (Peter Gutmann et al.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASSECO\mMedica\xcr.dll 2016-11-18 18:32 - 2016-05-23 11:07 - 000950272 _____ (Sygnity SA) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASSECO\mMedica\sgmail4.dll ==================== Alternate Data Streams (filtrowane) ======== ==================== Tryb awaryjny (filtrowane) ================== ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer - Witryny zaufane i z ograniczeniami ========== ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2019-01-04 11:46 - 000000824 _____ C:\windows\system32\drivers\etc\hosts ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\HP\IdrsOCR_15.2.10.1114\ HKU\S-1-5-21-1448829807-2397916996-3138991478-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\gabinet\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 - 194.204.159.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: eKopia_w_Chmurze => 2 MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Avast Cleanup Premium.lnk => C:\windows\pss\Avast Cleanup Premium.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^eKopia w Chmurze.lnk => C:\windows\pss\eKopia w Chmurze.lnk.CommonStartup ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{FC228B61-64FE-45F2-9939-6A860F71723B}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{4B64630D-BA6A-43C1-B8FE-7D335F6B0CA0}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe (CyberLink Corp. -> CyberLink) FirewallRules: [{E617F566-17E9-408F-B92F-AAB5B8C2A7A5}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{F62ABC37-F60F-419E-9EB5-16C78E0C8B17}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{D87F07F1-2B8F-4A62-813A-46E486557174}] => (Allow) LPort=5432 FirewallRules: [{A85D8AB4-8AE6-48C4-85DB-782B82E07C3E}] => (Allow) C:\Program Files (x86)\eKopia w Chmurze\Opero.Client.ClientService.exe (Xopero Software -> Xopero Software sp. z o.o.) FirewallRules: [{9C2F1625-C0B3-429A-821F-855394FB9CE1}] => (Allow) C:\Program Files (x86)\eKopia w Chmurze\Opero.Client.ClientApplication.exe (Xopero Software -> Xopero Software sp. z o.o.) FirewallRules: [{E2C0818A-0C9D-4816-8AE9-AA10DFA5EBB3}] => (Allow) LPort=5432 FirewallRules: [{7752247B-9BB1-4491-9D6A-05688AD35469}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{7E23AE35-FAF1-4F34-81F4-4826F356FD57}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{07DA1253-0998-4CBD-942C-3FEC2CF14EB7}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{50F00519-6BCF-4740-B33E-BAF9BBBBB257}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{D9529D5C-65C1-43B1-9EF7-E038BFD2E788}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe => Brak pliku FirewallRules: [{0B1A6324-4981-4365-A3EA-D21124C03992}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe => Brak pliku FirewallRules: [{B2EFB24A-4B7F-4498-A006-41094C721138}] => (Allow) C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe => Brak pliku FirewallRules: [{E4B723F4-7E40-4F51-8475-DD6E25E5E564}] => (Allow) C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe => Brak pliku FirewallRules: [{33807332-6D8B-42F9-B2D8-456AFFADE1AD}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{DFBD4CE8-E899-46EF-94C2-842460A3E394}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{6DFF6FF1-6736-4234-846B-C1A817EF4EC0}] => (Allow) C:\Users\gabinet\AppData\Local\Temp\7zS12F3\HP.EasyStart.exe => Brak pliku FirewallRules: [{2B7CF3C6-54E4-430F-B05E-4C251BA5BD4C}] => (Allow) C:\Program Files\HP\HP LaserJet MFP M129-M134\bin\EWSProxy.exe (Hewlett Packard -> HP Inc.) FirewallRules: [{21DAD319-2D6A-495B-8EE0-FF8472A9553B}] => (Allow) C:\Program Files\HP\HP LaserJet MFP M129-M134\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.) FirewallRules: [{19F61D53-D4EF-4C0E-88E9-77DA735EEAF5}] => (Allow) LPort=5357 FirewallRules: [{437B6693-FAC5-4B4F-96B1-98381D634200}] => (Allow) C:\Program Files\HP\HP LaserJet MFP M129-M134\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.) FirewallRules: [{FC8F6959-CDB8-47D5-AD48-F546C7299F09}] => (Allow) C:\Program Files\HP\HP LaserJet MFP M129-M134\bin\FaxApplications.exe (Hewlett Packard -> HP Inc.) FirewallRules: [{8F770194-6706-4805-B91A-9FD750797135}] => (Allow) C:\Program Files\HP\HP LaserJet MFP M129-M134\bin\DigitalWizards.exe (Hewlett Packard -> HP Inc.) FirewallRules: [{F5E8B727-D798-45D9-BBF0-DF43018250B7}] => (Allow) C:\Program Files\HP\HP LaserJet MFP M129-M134\bin\SendAFax.exe (Hewlett Packard -> HP Inc.) FirewallRules: [{6B7C1198-52EC-4C5D-AEB1-EA853FADEB3F}] => (Allow) C:\Program Files\HP\HP LaserJet MFP M129-M134\bin\FaxPrinterUtility.exe (Hewlett Packard -> HP Inc.) FirewallRules: [{58D20795-1AA8-446E-9DBD-D91D6296AD58}] => (Allow) G:\instale\AnyDesk.exe (philandro Software GmbH -> ) FirewallRules: [{5377FA56-2BA3-4CA2-B93D-CE700CC07D9D}] => (Allow) G:\instale\AnyDesk.exe (philandro Software GmbH -> ) FirewallRules: [{BBC89007-919B-4B3A-B972-E85E4EEE1230}] => (Allow) G:\instale\AnyDesk.exe (philandro Software GmbH -> ) FirewallRules: [{BDBAEAFC-4CDA-4EF6-8183-66801D619831}] => (Allow) G:\instale\AnyDesk.exe (philandro Software GmbH -> ) FirewallRules: [{9D688FA0-E50C-44BC-B395-9A2259A3A43A}] => (Allow) G:\instale\AnyDesk.exe (philandro Software GmbH -> ) FirewallRules: [{ED575AFD-3245-414B-BADC-50BC1B0468D3}] => (Allow) G:\instale\AnyDesk.exe (philandro Software GmbH -> ) FirewallRules: [{4E33B994-4848-496B-AA89-7E07DB407AFC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{AA1B34F8-425D-422E-8A04-322212735DF0}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{61E7DBE4-1803-4F81-AB34-159E460EA076}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) ==================== Punkty Przywracania systemu ========================= 10-06-2020 14:00:34 Zaplanowany punkt kontrolny 14-06-2020 14:43:56 Removed Avast Driver Updater 14-06-2020 14:46:33 Removed Bonjour 14-06-2020 15:18:16 Windows Update 14-06-2020 15:32:36 Removed Adobe Acrobat Reader DC - Polish. 14-06-2020 15:44:59 Windows Update 14-06-2020 19:00:02 Kopia zapasowa systemu Windows ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ Name: TP-LINK 300Mbps Wireless N Adapter Description: TP-LINK 300Mbps Wireless N Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: TP-LINK Service: athr Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (06/14/2020 06:40:14 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: Z powodu wystąpienia problemu dane Programu poprawy jakości obsługi klienta nie zostały wysłane do firmy Microsoft. (Błąd 80004005). Error: (06/14/2020 06:00:39 PM) (Source: mmService) (EventID: 0) (User: ) Description: Event-ID 0 Error: (06/14/2020 06:00:39 PM) (Source: mmService) (EventID: 0) (User: ) Description: Event-ID 0 Error: (06/14/2020 06:00:39 PM) (Source: mmService) (EventID: 0) (User: ) Description: Event-ID 0 Error: (06/14/2020 05:29:56 PM) (Source: mmService) (EventID: 0) (User: ) Description: Event-ID 0 Error: (06/14/2020 05:28:55 PM) (Source: mmService) (EventID: 0) (User: ) Description: Event-ID 0 Error: (06/14/2020 04:35:14 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: MBAMInstallerService.exe, wersja: 4.0.0.268, sygnatura czasowa: 0x5eceb453 Nazwa modułu powodującego błąd: ole32.dll, wersja: 6.1.7601.24537, sygnatura czasowa: 0x5dce0bdd Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000000000040cc2 Identyfikator procesu powodującego błąd: 0x584 Godzina uruchomienia aplikacji powodującej błąd: 0x01d64258e75774cd Ścieżka aplikacji powodującej błąd: C:\Program Files\Malwarebytes\Anti-Malware\MBAMInstallerService.exe Ścieżka modułu powodującego błąd: C:\windows\system32\ole32.dll Identyfikator raportu: 41fba5ef-ae4c-11ea-8d84-3464a9309b60 Error: (06/14/2020 03:00:15 PM) (Source: mmService) (EventID: 0) (User: ) Description: Event-ID 0 Dziennik System: ============= Error: (06/14/2020 06:13:22 PM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT) Description: Odebrano następujący alert krytyczny: 40. Error: (06/14/2020 06:13:22 PM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT) Description: Odebrano następujący alert krytyczny: 70. Error: (06/14/2020 06:03:38 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Uruchom do aplikacji serwera COM z identyfikatorem klasy CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} i identyfikatorem aplikacji APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} użytkownikowi ZARZĄDZANIE NT\SYSTEM o identyfikatorze zabezpieczeń SID (S-1-5-18) z adresu LocalHost (użycie LRPC). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (06/14/2020 05:59:48 PM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT) Description: Odebrano następujący alert krytyczny: 40. Error: (06/14/2020 05:59:48 PM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT) Description: Odebrano następujący alert krytyczny: 70. Error: (06/14/2020 05:49:54 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Uruchom do aplikacji serwera COM z identyfikatorem klasy CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} i identyfikatorem aplikacji APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} użytkownikowi ZARZĄDZANIE NT\SYSTEM o identyfikatorze zabezpieczeń SID (S-1-5-18) z adresu LocalHost (użycie LRPC). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (06/14/2020 05:35:43 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Uruchom do aplikacji serwera COM z identyfikatorem klasy CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} i identyfikatorem aplikacji APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} użytkownikowi ZARZĄDZANIE NT\SYSTEM o identyfikatorze zabezpieczeń SID (S-1-5-18) z adresu LocalHost (użycie LRPC). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (06/14/2020 05:29:21 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Centrum zabezpieczeń zakończyła działanie; wystąpił następujący błąd: %%16389 CodeIntegrity: =================================== Date: 2016-11-12 20:36:02.056 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-11-12 20:36:01.900 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. Date: 2016-06-28 01:00:53.540 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-06-28 01:00:53.384 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. Date: 2016-06-28 00:46:40.727 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-06-28 00:46:40.181 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. Date: 2016-06-28 00:26:39.620 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-06-28 00:26:39.510 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. ==================== Statystyki pamięci =========================== BIOS: HP N03 Ver. 02.11 06/05/2017 Płyta główna: HP 8061 Procesor: Intel(R) Core(TM) i5-6500 CPU @ 3.20GHz Procent pamięci w użyciu: 83% Całkowita pamięć fizyczna: 8088.59 MB Dostępna pamięć fizyczna: 1327.3 MB Całkowita pamięć wirtualna: 16175.32 MB Dostępna pamięć wirtualna: 8931.94 MB ==================== Dyski ================================ Drive c: (Windows ) (Fixed) (Total:626.38 GB) (Free:550.09 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive d: (HP_RECOVERY) (Fixed) (Total:15.21 GB) (Free:1.67 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive e: (HP_TOOLS) (Fixed) (Total:0.09 GB) (Free:0.02 GB) FAT32 Drive f: (HBCD 15.2) (CDROM) (Total:0.58 GB) (Free:0 GB) CDFS Drive g: (Nowy) (Fixed) (Total:88.59 GB) (Free:40.99 GB) NTFS Drive k: (kopie) (Fixed) (Total:200.14 GB) (Free:178.89 GB) NTFS \\?\Volume{e43fa9ab-a91a-11e6-b9bf-3464a9309b60}\ (SYSTEM ) (Fixed) (Total:1 GB) (Free:0.3 GB) NTFS \\?\Volume{e8c89ff9-de62-11e6-9a48-b393f7c53966}\ (SERVIS_TEST) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32 \\?\Volume{04827c71-0ccd-11e9-bd39-f9e2fb1bb161}\ (kopie) (RAMDisk) (Total:200.14 GB) (Free:193.75 GB) NTFS ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 10C222D9) Partition 1: (Not Active) - (Size=993 KB) - (Type=42) Partition 2: (Active) - (Size=1 GB) - (Type=42) Partition 3: (Not Active) - (Size=626.4 GB) - (Type=42) Partition 4: (Not Active) - (Size=304.1 GB) - (Type=42) ==================== Koniec Addition.txt =======================