Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:09-12-2015 Uruchomiony przez Zbigniew (2015-12-11 23:37:44) Uruchomiony z C:\Users\Zbigniew\Downloads Windows 7 Home Premium Service Pack 1 (X64) (2011-12-21 17:16:45) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-783652867-2950568372-415723759-500 - Administrator - Disabled) Gość (S-1-5-21-783652867-2950568372-415723759-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-783652867-2950568372-415723759-1002 - Limited - Enabled) Zbigniew (S-1-5-21-783652867-2950568372-415723759-1001 - Administrator - Enabled) => C:\Users\Zbigniew ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A} AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 16.0.0.273 - Adobe Systems Incorporated) Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.228 - Adobe Systems Incorporated) Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.235 - Adobe Systems Incorporated) Adobe Reader 9.1 - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated) Advanced Audio FX Engine (HKLM-x32\...\Advanced Audio FX Engine) (Version: 1.12.05 - Creative Technology Ltd) ATI AVIVO64 Codecs (Version: 11.6.0.50601 - ATI Technologies Inc.) Hidden ATI Catalyst Install Manager (HKLM\...\{EF5745D9-C0A7-4D40-2900-AD093F232827}) (Version: 3.0.778.0 - ATI Technologies, Inc.) Canon MG2100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2100_series) (Version: - ) ccc-core-static (x32 Version: 2010.0601.2152.37421 - Nazwa firmy) Hidden Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.) Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.) Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: - Dell) Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.47 - Dell) Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.) Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 1.40.05 - Creative Technology Ltd) DRUKI Gofin 2.2.19.0 (HKLM-x32\...\{852B928B-042E-4555-B59B-3473734906FF}) (Version: 2.2.19.0 - Wydawnictwo Podatkowe GOFIN sp. z o.o.) DW WLAN Card Utility (HKLM\...\DW WLAN Card Utility) (Version: 5.60.48.35 - Dell Inc.) Easy 7-Zip v0.1.2 (HKLM\...\{661BB54F-5E4A-45F0-8153-DDF10C2E3FB7}_is1) (Version: 0.1.2 - James Hoo) e-Deklaracje Desktop (HKLM-x32\...\e-Deklaracje.A1909296681C7ACEFE45687D3A64758C8659BF46.1) (Version: 7.0.3 - Ministerstwo Finansow) e-Deklaracje Desktop (x32 Version: 7.0.3 - Ministerstwo Finansow) Hidden Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google) HaftiX v. 6.2.3 (HKLM-x32\...\HaftiX) (Version: 6.2.3 - ) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.4.1002 - Intel Corporation) Java 7 Update 75 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217075FF}) (Version: 7.0.750 - Oracle) Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation) Live! Cam Avatar Creator (HKLM-x32\...\{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}) (Version: 4.6.3009.1 - Creative Technology Ltd) Microsoft .NET Framework 4.5.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Starter 2010 - Polski (HKLM-x32\...\{90140011-0066-0415-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft WSE 3.0 (HKLM-x32\...\{EDEA8AB7-7683-4ED2-AA19-E6C078064C0D}) (Version: 3.0.5305.0 - Microsoft Corporation) MioMore Desktop 7.50 (HKLM-x32\...\{A2804FE8-4101-48a0-AE1A-575B99014BF4}-Mio-7.50) (Version: 7.50.0110.129 - Mio Technology) Moduł Szybka instalacja pakietu Microsoft Office 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation) Moduł Szybka instalacja pakietu Microsoft Office 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Mozilla Firefox 42.0 (x86 pl) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 pl)) (Version: 42.0 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation) OpenOffice 4.1.1 (HKLM-x32\...\{B5373BA3-BAD7-4EAC-A9D2-B66B41B82C57}) (Version: 4.11.9775 - Apache Software Foundation) PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.1.2 - pdfforge) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.) Płatnik 10.01.001 (HKLM-x32\...\{05381030-963D-4779-BECA-0D7D49268EDB}) (Version: 10.01.001 - Asseco Poland S.A.) Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.5.0 - Dell Inc.) Roxio Burn (HKLM-x32\...\{B2E47DE7-800B-40BB-BD1F-9F221C3AEE87}) (Version: 1.01 - Roxio) Skype Toolbars (HKLM-x32\...\{981029E0-7FC9-4CF3-AB39-6F133621921A}) (Version: 1.0.4051 - Skype Technologies S.A.) Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.) Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.14.17.201412121559 - Sony Mobile Communications Inc.) Sony PC Companion 2.10.297 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.297 - Sony) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.0.1 - Synaptics Incorporated) WIDCOMM Bluetooth Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.1.1100 - Broadcom Corporation) Windows Driver Package - Broadcom Corporation (BTHUSB) Bluetooth (03/24/2010 6.3.0.2501) (HKLM\...\AF09E130E2FD4D1BEFD1B9132AE624BAE0364719) (Version: 03/24/2010 6.3.0.2501 - Broadcom Corporation) WRF (Płatnik) 1.03.002 (HKLM-x32\...\{460BE803-88CF-4FD2-9082-2450A5959959}) (Version: 1.03.002 - Asseco Poland S.A.) WRFKL 1.02.001 H (HKLM-x32\...\{A98C53C1-D7D5-43FE-82F4-EACD66292004}) (Version: 1.02.001 H - Asseco Poland S.A.) WRFSL 1.02.001 J (HKLM-x32\...\{98A95680-71E0-4C6B-B3D0-384193FCA4F6}) (Version: 1.02.001 J - Asseco Poland S.A.) Wtyczka e-Deklaracje (HKLM-x32\...\{81BF6353-3C5B-4E6E-A566-7E162A00BF72}_is1) (Version: 4.1.0 - Ministerstwo Finansów) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Punkty Przywracania systemu ========================= 24-10-2015 11:17:08 Windows Update 27-10-2015 19:41:27 Windows Update 31-10-2015 18:57:46 Windows Update 03-11-2015 20:18:55 Windows Update 08-11-2015 11:11:32 Windows Update 12-11-2015 21:32:13 Windows Update 12-11-2015 22:22:21 Windows Update 13-11-2015 13:21:57 Windows Update 16-11-2015 21:20:24 Windows Update 22-11-2015 18:24:33 Windows Update 25-11-2015 18:27:38 Windows Update 29-11-2015 11:47:02 Windows Update 03-12-2015 19:01:26 Windows Update 06-12-2015 21:02:15 Windows Update 11-12-2015 22:53:24 Windows Update ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {1E3C3B7F-F410-4A6A-A080-D96B7F86009B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.) Task: {37E21D30-BCE7-4428-8434-C7B1D047C1C1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.) Task: {6558DC18-0CCB-45B1-8038-6E7568DA524D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-11] (Adobe Systems Incorporated) Task: {F460B39B-2EE8-4FF8-A32C-8517493A9A55} - System32\Tasks\{E4427224-3079-400E-8AFA-269F2729D808} => pcalua.exe -a C:\Users\Zbigniew\AppData\Roaming\mystartsearch\UninstallManager.exe -c -ptid=cor (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\Zbigniew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft WSE 3.0\WSE on the Web.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449654288&z=2e5e8c2133f565e17cce9f2g9z7z1teq7w5z8ofb7w&from=ient07021&uid=WDCXWD5000BEVT-75A0RT0_WD-WXD1A90J9041J9041 <==== UWAGA ShortcutWithArgument: C:\Users\Zbigniew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449654288&z=2e5e8c2133f565e17cce9f2g9z7z1teq7w5z8ofb7w&from=ient07021&uid=WDCXWD5000BEVT-75A0RT0_WD-WXD1A90J9041J9041 <==== UWAGA ShortcutWithArgument: C:\Users\Zbigniew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449654288&z=2e5e8c2133f565e17cce9f2g9z7z1teq7w5z8ofb7w&from=ient07021&uid=WDCXWD5000BEVT-75A0RT0_WD-WXD1A90J9041J9041 <==== UWAGA ShortcutWithArgument: C:\Users\Zbigniew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449654288&z=2e5e8c2133f565e17cce9f2g9z7z1teq7w5z8ofb7w&from=ient07021&uid=WDCXWD5000BEVT-75A0RT0_WD-WXD1A90J9041J9041 <==== UWAGA ShortcutWithArgument: C:\Users\Zbigniew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (2).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449654288&z=2e5e8c2133f565e17cce9f2g9z7z1teq7w5z8ofb7w&from=ient07021&uid=WDCXWD5000BEVT-75A0RT0_WD-WXD1A90J9041J9041 <==== UWAGA ShortcutWithArgument: C:\Users\Zbigniew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449654288&z=2e5e8c2133f565e17cce9f2g9z7z1teq7w5z8ofb7w&from=ient07021&uid=WDCXWD5000BEVT-75A0RT0_WD-WXD1A90J9041J9041 <==== UWAGA ShortcutWithArgument: C:\Users\Zbigniew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449654288&z=2e5e8c2133f565e17cce9f2g9z7z1teq7w5z8ofb7w&from=ient07021&uid=WDCXWD5000BEVT-75A0RT0_WD-WXD1A90J9041J9041 <==== UWAGA ShortcutWithArgument: C:\Users\Zbigniew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449654288&z=2e5e8c2133f565e17cce9f2g9z7z1teq7w5z8ofb7w&from=ient07021&uid=WDCXWD5000BEVT-75A0RT0_WD-WXD1A90J9041J9041 <==== UWAGA ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449654288&z=2e5e8c2133f565e17cce9f2g9z7z1teq7w5z8ofb7w&from=ient07021&uid=WDCXWD5000BEVT-75A0RT0_WD-WXD1A90J9041J9041 <==== UWAGA ==================== Załadowane moduły (filtrowane) ============== 2009-12-29 20:19 - 2009-12-29 20:19 - 00173344 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll 2010-10-27 21:00 - 2010-08-12 00:19 - 00781536 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe 2010-10-27 21:00 - 2010-07-21 16:35 - 00161088 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe 2009-10-15 09:10 - 2009-10-15 09:10 - 00498160 _____ () C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe 2015-01-04 23:38 - 2015-06-10 10:13 - 00113024 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe 2010-10-27 21:00 - 2010-08-12 00:19 - 00056544 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\STCoreXml.dll 2010-10-27 21:00 - 2010-08-12 00:19 - 00113888 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\PSTVdsDisk.dll 2010-10-27 21:00 - 2010-08-12 00:19 - 00126176 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\STLog.dll 2010-10-27 21:00 - 2010-08-12 00:19 - 01121504 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\LibXml2.dll 2010-10-27 21:00 - 2010-08-12 00:19 - 00077024 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\zlib1.dll 2010-10-27 21:00 - 2010-08-12 00:19 - 00232672 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\STFiles.dll 2010-10-27 21:00 - 2010-08-12 00:19 - 00072928 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\STRegistry.dll 2010-10-27 21:00 - 2010-08-12 00:19 - 00109792 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\STPE.dll 2010-10-27 21:00 - 2010-08-12 00:19 - 00119008 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\STNLS.dll 2015-01-04 23:38 - 2012-04-30 10:57 - 00039936 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll 2015-01-04 23:38 - 2015-10-20 17:44 - 00242176 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll 2011-07-07 14:54 - 2011-07-07 14:54 - 00233984 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\Report.dll 2015-01-04 23:38 - 2013-05-20 11:58 - 00620718 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\sqlite3.dll 2015-01-04 23:38 - 2015-04-21 12:22 - 00053248 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\VObject.dll 2014-11-21 12:31 - 2014-11-21 12:31 - 00663040 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PhoneUpdate.dll 2014-10-28 20:07 - 2014-10-28 20:07 - 00170496 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\9419a7c2030ade01725f8fd9344e218d\IsdiInterop.ni.dll 2010-10-27 20:39 - 2010-06-08 16:44 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\Users\Zbigniew\Desktop\skierowanie.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Desktop\skierowanie.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\dowod osobisty str 1.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\dowod osobisty str 1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\dowod osobisty str 2.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\dowod osobisty str 2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\dowod osobisty.jpg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\dowod osobisty.jpg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\dowod rejestr str 1.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\dowod rejestr str 1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\dowod rejestr str 2.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\dowod rejestr str 2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\dowod rejestracyjny.jpg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\dowod rejestracyjny.jpg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\kwiatki.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\kwiatki.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\Marlenka pozowane.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\Marlenka pozowane.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\Marlenka pozowane1.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\Marlenka pozowane1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\Marlenka pozowane1a.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\Marlenka pozowane1a.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\Marlenka pozowane2.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\Marlenka pozowane2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\Marlenka pozowane2a.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\Marlenka pozowane2a.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\Marlenka pozowane_a.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\Marlenka pozowane_a.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\oswiadczenie str 1.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\oswiadczenie str 1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\oswiadczenie str 2.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\oswiadczenie str 2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\pismo do US.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\pismo do US.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\wniosek str1.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\wniosek str1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\wniosek str2.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\wniosek str2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\wniosek str3.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\wniosek str3.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\wniosek str4.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\wniosek str4.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\zal nr1.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\zal nr1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\zal nr2.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\zal nr2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\zal nr3.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\zal nr3.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\zal nr4.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\zal nr4.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} AlternateDataStreams: C:\Users\Zbigniew\Documents\zal nr5.jpeg:3or4kl4x13tuuug3Byamue2s4b AlternateDataStreams: C:\Users\Zbigniew\Documents\zal nr5.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-783652867-2950568372-415723759-1001\...\papavero.pl -> hxxps://www.papavero.pl ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-783652867-2950568372-415723759-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Zbigniew\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{A610DFDA-35D4-47AE-B019-C730E7F38715}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{EC147D7C-A994-4E05-9271-3E3CA6876A3A}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe FirewallRules: [{B8ADD250-636D-424B-A11B-376A89795867}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe FirewallRules: [{C925B644-96D2-40FB-BBE6-7763F25F2976}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe FirewallRules: [{301CA847-59DE-4830-8A0D-159100361BFE}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe FirewallRules: [{B3F1272E-5D33-4FBE-971B-0C95CD361AC7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{EDA87791-3D5D-4CA1-8E9A-056979B16CEE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{E50D8486-537C-4554-8C36-B642FA1C1AB5}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{06DE7CB1-CD65-47C4-A65E-8A4B493C20A4}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [{5B301547-0CAF-4C4F-82A0-751A0A00588C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{3C307FAD-9D2F-4696-89FA-1494A3BA5BF0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: tcfd_vt_1_10_0_24 Description: tcfd_vt_1_10_0_24 Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: tcfd_vt_1_10_0_24 Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (12/11/2015 10:12:22 PM) (Source: CVHSVC) (EventID: 100) (User: ) Description: Tylko informacje. (Stream product id=0x0066): Streaming Failed Error: (12/11/2015 10:11:49 PM) (Source: CVHSVC) (EventID: 100) (User: ) Description: Tylko informacje. Too many failures while downloading ranges: 2 Error: (12/11/2015 10:09:46 PM) (Source: Aktualizacja Programu Płatnik) (EventID: 0) (User: ) Description: Nie można uruchomić usługi. Nieprawidłowe dojście Error: (12/11/2015 09:35:40 PM) (Source: CVHSVC) (EventID: 100) (User: ) Description: Tylko informacje. (Stream product id=0x0066): Streaming Failed Error: (12/11/2015 09:35:01 PM) (Source: CVHSVC) (EventID: 100) (User: ) Description: Tylko informacje. Too many failures while downloading ranges: 2 Error: (12/11/2015 09:32:36 PM) (Source: Aktualizacja Programu Płatnik) (EventID: 0) (User: ) Description: Nie można uruchomić usługi. Nieprawidłowe dojście Error: (12/09/2015 10:45:46 AM) (Source: CVHSVC) (EventID: 100) (User: ) Description: Tylko informacje. (Stream product id=0x0066): Streaming Failed Error: (12/09/2015 10:45:16 AM) (Source: CVHSVC) (EventID: 100) (User: ) Description: Tylko informacje. Too many failures while downloading ranges: 2 Error: (12/09/2015 10:43:18 AM) (Source: Aktualizacja Programu Płatnik) (EventID: 0) (User: ) Description: Nie można uruchomić usługi. Nieprawidłowe dojście Error: (12/08/2015 07:50:48 AM) (Source: CVHSVC) (EventID: 100) (User: ) Description: Tylko informacje. (Stream product id=0x0066): Streaming Failed Dziennik System: ============= Error: (12/11/2015 10:10:09 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: tcfd_vt_1_10_0_24 Error: (12/11/2015 10:08:35 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: ) Description: Produkt %ZARZĄDZANIE NT60 napotkał błąd podczas próby aktualizacji podpisów. Nowa wersja podpisu: Poprzednia wersja podpisu: 1.211.2215.0 Źródło aktualizacji: %ZARZĄDZANIE NT59 Etap aktualizacji: 4.8.0204.00 Ścieżka źródła: 4.8.0204.01 Typ podpisu: %ZARZĄDZANIE NT602 Typ aktualizacji: %ZARZĄDZANIE NT604 Użytkownik: ZARZĄDZANIE NT\SYSTEM Bieżąca wersja aparatu: %ZARZĄDZANIE NT605 Poprzednia wersja aparatu: %ZARZĄDZANIE NT606 Kod błędu: %ZARZĄDZANIE NT607 Opis błędu: %ZARZĄDZANIE NT608 Error: (12/11/2015 09:42:50 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Usługa Windows Update zawiesiła się podczas uruchamiania. Error: (12/11/2015 09:39:35 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Usługa Intel(R) Management & Security Application User Notification Service zawiesiła się podczas uruchamiania. Error: (12/11/2015 09:33:15 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: tcfd_vt_1_10_0_24 Error: (12/09/2015 10:43:35 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: tcfd_vt_1_10_0_24 Error: (12/08/2015 07:48:39 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: tcfd_vt_1_10_0_24 Error: (12/06/2015 09:43:20 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: tcfd_vt_1_10_0_24 Error: (12/06/2015 09:42:22 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 21:41:27 na ‎2015-‎12-‎06 było nieoczekiwane. Error: (12/06/2015 08:56:17 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Usługa Usługa udostępniania w sieci programu Windows Media Player zawiesiła się podczas uruchamiania. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i3 CPU M 370 @ 2.40GHz Procent pamięci w użyciu: 54% Całkowita pamięć fizyczna: 3958.68 MB Dostępna pamięć fizyczna: 1800.14 MB Całkowita pamięć wirtualna: 7915.57 MB Dostępna pamięć wirtualna: 5516.84 MB ==================== Dyski ================================ Drive c: (OS) (Fixed) (Total:451.01 GB) (Free:373.95 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano odczytując BCD)] ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: 74D682C4) Partition 1: (Not Active) - (Size=100 MB) - (Type=DE) Partition 2: (Active) - (Size=14.6 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=451 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================