Additional scan result of Farbar Recovery Scan Tool (x64) Version:17-08-2015 Ran by Beata (2015-08-18 20:09:43) Running from C:\Users\Beata\Desktop\frst Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1787715553-791404484-3848445291-500 - Administrator - Disabled) Beata (S-1-5-21-1787715553-791404484-3848445291-1001 - Administrator - Enabled) => C:\Users\Beata Gość (S-1-5-21-1787715553-791404484-3848445291-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1787715553-791404484-3848445291-1003 - Limited - Enabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.199 - Adobe Systems Incorporated) Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated) Adobe Reader XI (11.0.12) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated) ALLPlayer V6.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLPlayer Group, Ltd.) AMD Catalyst Install Manager (HKLM\...\{6E2E5B9E-BCCC-066F-BBB5-4DCA7289E2CD}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.3.2225 - AVAST Software) CCleaner (HKLM\...\CCleaner) (Version: 5.07 - Piriform) Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.28.50 - Conexant) CyberLink MediaStory (HKLM-x32\...\InstallShield_{55762F9A-FCE3-45d5-817B-051218658423}) (Version: 1.0.1314 - CyberLink Corp.) CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.) CyberLink PowerDirector 10 (Version: 10.0.0.2810 - Nazwa firmy) Hidden Dependency Package Update (Version: 1.6.25.00 - Lenovo Inc.) Hidden Dependency Package Update (Version: 1.6.29.00 - Lenovo Inc.) Hidden Dependency Package Update (Version: 1.6.36.00 - Lenovo Inc.) Hidden Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.5.1.1 - Dolby Laboratories Inc) Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.0.0.35 - Lenovo) Energy Manager (x32 Version: 1.0.0.35 - Lenovo) Hidden Hightail for Lenovo (HKLM\...\{2F10E937-F6D7-4174-8AB9-B299E8FC5CEC}) (Version: 2.4.97.2857 - Hightail, Inc.) HP Deskjet 3520 series — podstawowe oprogramowanie urządzenia (HKLM\...\{2AF6DE35-EF82-42D5-86CA-9DE53EA29318}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Deskjet 3520 series Setup Guide (HKLM-x32\...\{AEEDCEB7-00B8-4BE1-B492-AB04803D5F1E}) (Version: 27.0.0 - Hewlett Packard) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) Instrukcje użytkownika (x32 Version: 3.0.0.3 - Lenovo) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3379 - Intel Corporation) Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology(patch version 17.0.1407.2) (HKLM\...\{302600C1-6BDF-4FD1-1401-148929CC1385}) (Version: 17.0.1401.0428 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.0.1098 - Intel Corporation) Java 7 Update 71 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417071FF}) (Version: 7.0.710 - Oracle) Już w szkole, klasa 3, semestr 2 (HKLM-x32\...\Już w szkole, klasa 3, semestr 2) (Version: - ) Lenovo Browser Guard (HKLM-x32\...\LenovoBrowserGuard) (Version: 2.16.60.37 - ClientConnect LTD) <==== ATTENTION Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.25.00 - Lenovo Group Limited) Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10249 - Realtek Semiconductor Corp.) Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.) Lenovo Mobile Phone Wireless Import (HKLM-x32\...\InstallShield_{DFB2E0D6-8DDE-49A4-B8F7-03C14DACCBA6}) (Version: 1.1.1.9 - Lenovo) Lenovo Mobile Phone Wireless Import (x32 Version: 1.1.1.9 - Lenovo) Hidden Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.2105 - CyberLink Corp.) Lenovo OneKey Recovery (Version: 8.0.0.2105 - CyberLink Corp.) Hidden Lenovo Photo Master (HKLM-x32\...\InstallShield_{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 1.0.1823.01 - CyberLink Corp.) Lenovo Photo Master (x32 Version: 1.0.1823.01 - CyberLink Corp.) Hidden Lenovo pointing device (HKLM\...\Elantech) (Version: 11.4.31.1 - ELAN Microelectronic Corp.) Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5630.52 - CyberLink Corp.) Lenovo PowerDVD10 (x32 Version: 10.0.5630.52 - CyberLink Corp.) Hidden Lenovo SHAREit (HKLM-x32\...\Lenovo SHAREit_is1) (Version: 2.0.5.0 - Lenovo Group Limited) Lenovo Solution Center (HKLM\...\{4C2B6F96-3AED-4E3F-8DCE-917863D1E6B1}) (Version: 2.7.003.00 - Lenovo Group Limited) Lenovo VeriFace (HKLM\...\Lenovo VeriFace) (Version: 5.0.13.5261 - Lenovo) Metric Collection SDK 35 (x32 Version: 1.2.0001.00 - Lenovo Group Limited) Hidden Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Mozilla Firefox 39.0 (x86 pl) (HKLM-x32\...\Mozilla Firefox 39.0 (x86 pl)) (Version: 39.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.4.0 - Mozilla) Mozilla Thunderbird 31.7.0 (x86 pl) (HKLM-x32\...\Mozilla Thunderbird 31.7.0 (x86 pl)) (Version: 31.7.0 - Mozilla) OEM Application Profile (HKLM-x32\...\{315F1A48-D883-B234-7C79-15873574ACC1}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Oprogramowanie Intel® PROSet/Wireless (HKLM-x32\...\{eff1d9d1-41fa-49ef-a986-082bfe49c293}) (Version: 16.8.0 - Intel Corporation) Pakiet sterowników systemu Windows - Lenovo (ACPIVPC) System (02/17/2013 9.52.0.776) (HKLM\...\35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E) (Version: 02/17/2013 9.52.0.776 - Lenovo) Pakiet sterowników systemu Windows - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo) Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.10525 - CyberLink Corp.) PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.39052 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek) Skype™ 7.1 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.1.105 - Skype Technologies S.A.) User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo) WinRAR 5.20 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== Restore Points ========================= 27-07-2015 15:39:48 Windows Update 16-08-2015 21:15:36 Windows Update ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {2E1F8840-4BCE-4256-86BD-E75437CDC661} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2015-02-13] () Task: {2FF722F6-3A40-4724-BF10-2B8CADDE4395} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2014-10-16] (Lenovo) Task: {35B6AF64-6510-4C59-9DB6-69D82C763135} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2014-10-16] (Lenovo) Task: {383548F3-596D-4B41-820B-B0197FB32BE0} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-10-16] () Task: {3D15CB21-1B4A-4E3B-820E-66B0B40F382A} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-10-16] () Task: {45B80B98-3FA8-4231-B442-3002527DC3E2} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-08-17] (AVAST Software) Task: {48851813-10E8-4D1F-A119-F489E1E99A85} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-05-30] (Lenovo) Task: {93988DFA-5B57-4BCD-A64E-38F956CD1A27} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated) Task: {A156A8D5-69C0-4F28-85C0-502A3E003324} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE [2013-03-08] (CyberLink Corp.) Task: {D22DEDC6-12FE-4FD8-A504-8E1E86F6846A} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [2014-05-21] () Task: {D8259374-2165-44BC-AF90-629CC3C1758B} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-16] (Adobe Systems Incorporated) Task: {E79034F1-B0D9-479F-BAC7-45580EF10021} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-06-01] (Piriform Ltd) Task: {F210CF70-8907-4989-8869-010A72E7B4A2} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-10-16] (Lenovo) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\AutoKMS.job => C:\Windows\AutoKMS\AutoKMS.exe ==================== Loaded Modules (Whitelisted) ============== 2014-09-03 16:33 - 2012-04-24 12:43 - 00390632 ____N () C:\Program Files\CyberLink\Shared files\RichVideo64.exe 2014-09-03 16:37 - 2014-09-03 16:37 - 00068368 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe 2014-09-03 16:37 - 2014-09-03 16:37 - 00669288 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfDataStorageInterface.dll 2015-07-04 12:47 - 2015-07-04 12:47 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\ErrorReporting.dll 2014-09-03 15:50 - 2010-10-26 06:40 - 00049056 _____ () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe 2015-08-17 09:37 - 2015-08-17 09:37 - 00102864 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2015-08-17 09:37 - 2015-08-17 09:37 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2015-08-18 13:47 - 2015-08-18 13:47 - 02961920 _____ () C:\Program Files\AVAST Software\Avast\defs\15081800\algo.dll 2014-09-03 15:47 - 2013-09-16 21:20 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2015-08-17 09:38 - 2015-08-17 09:38 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Users\Beata\OneDrive:ms-properties ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1787715553-791404484-3848445291-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Beata\Pictures\water.jpg DNS Servers: 89.231.1.206 - 217.172.224.160 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) HKLM\...\StartupApproved\Run: => "BCSSync" HKU\S-1-5-21-1787715553-791404484-3848445291-1001\...\StartupApproved\Run: => "ALLUpdate" HKU\S-1-5-21-1787715553-791404484-3848445291-1001\...\StartupApproved\Run: => "DAEMON Tools Lite" HKU\S-1-5-21-1787715553-791404484-3848445291-1001\...\StartupApproved\Run: => "HP Deskjet 3520 series (NET)" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{66B70123-9502-4CBA-A1AA-D7D8E990310C}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{676D1F9F-A3F2-47AF-BD91-365355769D79}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe FirewallRules: [{3A553348-2A91-46B2-893E-703237D7CD7A}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe FirewallRules: [{DA5C5016-E725-4FA7-8D16-0B9798C11A2C}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE FirewallRules: [{556B2002-7E74-452A-93E1-8440194647E7}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe FirewallRules: [{A3CC6B3C-23F8-4A4E-A0A3-602C055B7193}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE FirewallRules: [{C303ADA2-C2B4-4253-8CA1-D8B8EB83876B}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\AdvPhotoEditor\PhotoDirector5.exe FirewallRules: [{9A95CDB1-010C-4D01-8DE8-349668A03817}] => (Allow) LPort=55100 FirewallRules: [{3AC3C3ED-AD20-44A1-972A-D9C033AF6700}] => (Allow) C:\Program Files\Lenovo PhotoMasterImport\PhotoMasterImport.exe FirewallRules: [TCP Query User{218282DC-9C6E-4502-943D-A24002549A5E}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe FirewallRules: [UDP Query User{DB8A4EF2-5F08-4FC0-9F07-C2B850BF3A90}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe FirewallRules: [TCP Query User{F39FBE12-C4D2-4C0E-BBC5-DBE771195CA7}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{3BA919F1-7401-4FAD-9B24-CCF5899DE265}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [{3960FA3F-D784-4B6A-9C11-090DE142D755}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{8F205C93-1FCC-4B57-B2FE-EBBE1DDEA84E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{D3CC2662-E66D-4872-8485-DE06E2AAA7CD}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\DeviceSetup.exe FirewallRules: [{A902BB52-92C6-4CA4-9D97-AC778BE4121C}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicator.exe FirewallRules: [{ACAD82C8-AD39-4B15-9382-A77540EB131C}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [TCP Query User{2AD293C3-F1AA-4F82-8CBC-6D750F8B23F9}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{9D12CF72-AB47-442E-9479-6058398EDE5B}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{D3263CA3-D646-45D4-8C89-CC5F20DDE2BC}C:\program files\java\jre7\bin\java.exe] => (Block) C:\program files\java\jre7\bin\java.exe FirewallRules: [UDP Query User{312660A5-168A-415B-A9D2-D72D67DC520A}C:\program files\java\jre7\bin\java.exe] => (Block) C:\program files\java\jre7\bin\java.exe FirewallRules: [TCP Query User{C094D281-9A80-41C2-AE39-46BB8BC3E661}C:\program files\java\jre7\bin\java.exe] => (Block) C:\program files\java\jre7\bin\java.exe FirewallRules: [UDP Query User{7042E128-DA47-4723-B1B9-40FCA510ED62}C:\program files\java\jre7\bin\java.exe] => (Block) C:\program files\java\jre7\bin\java.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (08/18/2015 05:23:54 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program WiseProgramUninstaller.exe w wersji 1.7.1.90 przestał współpracować z systemem Windows i został zamknięty. Aby sprawdzić, czy jest dostępnych więcej informacji na temat tego problemu, sprawdź historię problemu w aplecie Centrum akcji w Panelu sterowania. Identyfikator procesu: 151c Godzina rozpoczęcia: 01d0d9c98017fb32 Godzina zakończenia: 4294967295 Ścieżka aplikacji: C:\Users\Beata\Desktop\WPU\Wise Program Uninstaller\WiseProgramUninstaller.exe Identyfikator raportu: 2268ebdc-45bd-11e5-827a-303a64b059ef Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (08/18/2015 05:20:54 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program WiseProgramUninstaller.exe w wersji 1.7.1.90 przestał współpracować z systemem Windows i został zamknięty. Aby sprawdzić, czy jest dostępnych więcej informacji na temat tego problemu, sprawdź historię problemu w aplecie Centrum akcji w Panelu sterowania. Identyfikator procesu: a18 Godzina rozpoczęcia: 01d0d9c88d43b98e Godzina zakończenia: 4294967295 Ścieżka aplikacji: C:\Users\Beata\Desktop\WPU\Wise Program Uninstaller\WiseProgramUninstaller.exe Identyfikator raportu: b71c448a-45bc-11e5-827a-303a64b059ef Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (08/18/2015 02:45:58 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: ZeroConfigService.exe, wersja: 16.7.0.0, sygnatura czasowa: 0x528d63f1 Nazwa modułu powodującego błąd: MurocApi.dll, wersja: 16.7.0.0, sygnatura czasowa: 0x528d62f3 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000000000002bcd8 Identyfikator procesu powodującego błąd: 0x9d4 Godzina uruchomienia aplikacji powodującej błąd: 0xZeroConfigService.exe0 Ścieżka aplikacji powodującej błąd: ZeroConfigService.exe1 Ścieżka modułu powodującego błąd: ZeroConfigService.exe2 Identyfikator raportu: ZeroConfigService.exe3 Pełna nazwa pakietu powodującego błąd: ZeroConfigService.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: ZeroConfigService.exe5 Error: (08/18/2015 01:51:05 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: ZeroConfigService.exe, wersja: 16.7.0.0, sygnatura czasowa: 0x528d63f1 Nazwa modułu powodującego błąd: MurocApi.dll, wersja: 16.7.0.0, sygnatura czasowa: 0x528d62f3 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000000000002bcd8 Identyfikator procesu powodującego błąd: 0xa3c Godzina uruchomienia aplikacji powodującej błąd: 0xZeroConfigService.exe0 Ścieżka aplikacji powodującej błąd: ZeroConfigService.exe1 Ścieżka modułu powodującego błąd: ZeroConfigService.exe2 Identyfikator raportu: ZeroConfigService.exe3 Pełna nazwa pakietu powodującego błąd: ZeroConfigService.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: ZeroConfigService.exe5 Error: (08/17/2015 09:27:48 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1511) (User: BEATA-KOMPUTER) Description: System Windows nie może znaleźć profilu lokalnego i loguje użytkownika przy użyciu profilu tymczasowego. Zmiany wprowadzone w profilu zostaną utracone po wylogowaniu. Error: (08/17/2015 09:27:47 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1515) (User: BEATA-KOMPUTER) Description: System Windows wykonał kopię zapasową tego profilu użytkownika. System Windows automatycznie spróbuje użyć profilu z kopii zapasowej przy następnym logowaniu tego użytkownika. Error: (08/17/2015 09:27:47 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1502) (User: BEATA-KOMPUTER) Description: System Windows nie może załadować profilu przechowywanego lokalnie. Przyczyną błędu może być brak wystarczających praw zabezpieczeń lub uszkodzony profil lokalny. SZCZEGÓŁY - Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. Error: (08/17/2015 09:27:47 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: ZARZĄDZANIE NT) Description: System Windows nie może załadować rejestru. Częstą przyczyną tego problemu jest za mała ilość pamięci lub brak wystarczających praw zabezpieczeń. SZCZEGÓŁY - Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. for C:\Users\Beata\ntuser.dat Error: (08/03/2015 12:58:53 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1500) (User: BEATA-KOMPUTER) Description: System Windows nie może wykonać logowania, ponieważ nie można załadować Twojego profilu. Sprawdź, czy masz połączenie z siecią i czy sieć działa poprawnie. SZCZEGÓŁY - Odmowa dostępu. Error: (08/03/2015 12:58:53 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: ZARZĄDZANIE NT) Description: System Windows nie może załadować rejestru. Częstą przyczyną tego problemu jest za mała ilość pamięci lub brak wystarczających praw zabezpieczeń. SZCZEGÓŁY - Odmowa dostępu. for C:\Users\TEMP\ntuser.dat System errors: ============= Error: (08/18/2015 05:32:35 PM) (Source: DCOM) (EventID: 10010) (User: BEATA-KOMPUTER) Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39} Error: (08/18/2015 05:32:11 PM) (Source: DCOM) (EventID: 10010) (User: BEATA-KOMPUTER) Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} Error: (08/18/2015 05:10:51 PM) (Source: volmgr) (EventID: 46) (User: ) Description: Inicjowanie zrzutu awaryjnego nie powiodło się! Error: (08/18/2015 05:11:17 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 15:03:16 na ‎2015-‎08-‎18 było nieoczekiwane. Error: (08/18/2015 05:10:46 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: ZARZĄDZANIE NT) Description: 32212254871145696 Error: (08/18/2015 03:03:16 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 14:56:58 na ‎2015-‎08-‎18 było nieoczekiwane. Error: (08/18/2015 03:02:44 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: ZARZĄDZANIE NT) Description: 32212256841144416 Error: (08/18/2015 02:56:58 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 14:53:05 na ‎2015-‎08-‎18 było nieoczekiwane. Error: (08/18/2015 02:56:24 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: ZARZĄDZANIE NT) Description: 32212256841144736 Error: (08/18/2015 02:53:05 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 14:44:48 na ‎2015-‎08-‎18 było nieoczekiwane. Microsoft Office: ========================= Error: (08/18/2015 05:23:54 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: WiseProgramUninstaller.exe1.7.1.90151c01d0d9c98017fb324294967295C:\Users\Beata\Desktop\WPU\Wise Program Uninstaller\WiseProgramUninstaller.exe2268ebdc-45bd-11e5-827a-303a64b059ef Error: (08/18/2015 05:20:54 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: WiseProgramUninstaller.exe1.7.1.90a1801d0d9c88d43b98e4294967295C:\Users\Beata\Desktop\WPU\Wise Program Uninstaller\WiseProgramUninstaller.exeb71c448a-45bc-11e5-827a-303a64b059ef Error: (08/18/2015 02:45:58 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: ZeroConfigService.exe16.7.0.0528d63f1MurocApi.dll16.7.0.0528d62f3c0000005000000000002bcd89d401d0d9b3b98a638aC:\Program Files\Intel\WiFi\bin\ZeroConfigService.exeC:\Program Files\Intel\WiFi\bin\MurocApi.dll12555425-45a7-11e5-8276-303a64b059ef Error: (08/18/2015 01:51:05 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: ZeroConfigService.exe16.7.0.0528d63f1MurocApi.dll16.7.0.0528d62f3c0000005000000000002bcd8a3c01d0d9ac22591718C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exeC:\Program Files\Intel\WiFi\bin\MurocApi.dll674fa3a9-459f-11e5-8274-303a64b059ef Error: (08/17/2015 09:27:48 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1511) (User: BEATA-KOMPUTER) Description: Error: (08/17/2015 09:27:47 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1515) (User: BEATA-KOMPUTER) Description: Error: (08/17/2015 09:27:47 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1502) (User: BEATA-KOMPUTER) Description: Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. Error: (08/17/2015 09:27:47 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: ZARZĄDZANIE NT) Description: Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. C:\Users\Beata\ntuser.dat Error: (08/03/2015 12:58:53 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1500) (User: BEATA-KOMPUTER) Description: Odmowa dostępu. Error: (08/03/2015 12:58:53 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: ZARZĄDZANIE NT) Description: Odmowa dostępu. C:\Users\TEMP\ntuser.dat ==================== Memory info =========================== Processor: Intel(R) Core(TM) i3-4005U CPU @ 1.70GHz Percentage of memory in use: 35% Total physical RAM: 3988.27 MB Available physical RAM: 2589.43 MB Total Virtual: 8084.27 MB Available Virtual: 6574.53 MB ==================== Drives ================================ Drive c: (Windows8_OS) (Fixed) (Total:449.7 GB) (Free:409.92 GB) NTFS ==>[system with boot components (obtained from reading drive)] Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:21.85 GB) NTFS Drive f: (Dysk lokalny) (Fixed) (Total:440 GB) (Free:439.3 GB) NTFS Drive g: (KINGSTON) (Removable) (Total:7.25 GB) (Free:2.68 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 65E5AFC0) Partition: GPT. ======================================================== Disk: 1 (Size: 7.3 GB) (Disk ID: 04030201) Partition 1: (Not Active) - (Size=7.2 GB) - (Type=07 NTFS) ==================== End of log ============================