Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x86) Wersja: 02-07-2016 Uruchomiony przez flower (2016-07-05 19:39:31) Uruchomiony z C:\Users\flower\AppData\Local\temp\scoped_dir4476_26870 Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2015-10-07 16:58:07) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-277916205-3838748793-3997461421-500 - Administrator - Disabled) flower (S-1-5-21-277916205-3838748793-3997461421-1000 - Administrator - Enabled) => C:\Users\flower Gość (S-1-5-21-277916205-3838748793-3997461421-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-277916205-3838748793-3997461421-1002 - Limited - Enabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-277916205-3838748793-3997461421-1000\...\uTorrent) (Version: 3.4.6.42094 - BitTorrent Inc.) Adobe Flash Player 22 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated) Adobe Photoshop CS3 (HKLM\...\Adobe_2ac78060bc5856b0c1cf873bb919b58) (Version: 10.0 - Adobe Systems Incorporated) Adobe Photoshop CS3 PL (HKLM\...\Adobe Photoshop CS3 PL) (Version: - ) Adobe Reader XI (11.0.13) - Polish (HKLM\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated) C9 (HKLM\...\C9(Continent of the Ninth Seal)_is1) (Version: - WEBZEN) CCleaner (HKLM\...\CCleaner) (Version: 5.10 - Piriform) CGS15_IPM_T2 (Version: 15.0 - Corel Corporation) Hidden Cisco EAP-FAST Module (Version: 2.2.14 - Cisco Systems, Inc.) Hidden Cisco LEAP Module (Version: 1.0.19 - Cisco Systems, Inc.) Hidden Cisco PEAP Module (Version: 1.1.6 - Cisco Systems, Inc.) Hidden Corel Applications (HKLM\...\Corel Applications) (Version: - ) Corel Graphics - Windows Shell Extension (HKLM\...\_{8616305F-122C-4341-9C37-47A9CD322AB2}) (Version: 17.1.0.572 - Corel Corporation) Corel Graphics - Windows Shell Extension (Version: 17.1.572 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Capture (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Common (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Connect (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Custom Data (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Draw (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Filters (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - FontNav (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - PHOTO-PAINT (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Photozoom Plugin (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - PL (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Redist (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Setup Files (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - VBA (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - VideoBrowser (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - VSTA (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - WT (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Capture (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Common (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Connect (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Custom Data (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Draw (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - EN (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Filters (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - FontNav (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - IPM Content (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - IPM T (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - PHOTO-PAINT (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Photozoom Plugin (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Redist (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Setup Files (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - VBA (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - VideoBrowser (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Writing Tools (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 (HKLM\...\_{C5D9CECB-A66F-473F-B406-5C8C2DCA4DF0}) (Version: 17.0.0.491 - Corel Corporation) CorelDRAW Graphics Suite X7 (Version: 17.0 - Corel Corporation) Hidden CorelDRAW(R) Graphics Suite X5 (HKLM\...\_{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}) (Version: 15.0.0.488 - Corel Corporation) D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0115 - Disc Soft Ltd) Dell Mobile Broadband Utility (HKLM\...\Dell Mobile Broadband Utility) (Version: 3.00.59.018 - Novatel Wireless) Dell Mobile Broadband Utility (Version: 3.00.59.018 - Novatel Wireless Inc.) Hidden Dell System Detect (HKU\S-1-5-21-277916205-3838748793-3997461421-1000\...\73f463568823ebbe) (Version: 6.6.0.2 - Dell) DW WLAN Card Utility (HKLM\...\DW WLAN Card Utility) (Version: 6.30.9.44 - Dell Inc.) FIFA 13 (HKLM\...\{A29E18C2-7AB1-4b6b-848C-5D5E2C85F0C0}) (Version: 1.1.0.0 - Electronic Arts) Galeria fotografii (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team) Google Chrome (HKLM\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.) Google Update Helper (Version: 1.3.30.3 - Google Inc.) Hidden HP Deskjet 3520 series — badanie mające na celu poprawę produktów (HKLM\...\{BBCC839C-17FE-4897-ACFC-CD342D596DDD}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Deskjet 3520 series — podstawowe oprogramowanie urządzenia (HKLM\...\{1E19C516-9CE5-48F2-BB36-D2239458F7D1}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Deskjet 3520 series Pomoc (HKLM\...\{B15746C1-344B-40F8-A54E-85AD2AD8E81E}) (Version: 27.0.0 - Hewlett Packard) HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.7702 - HP) HP Support Assistant (HKLM\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.2.8.25 - Hewlett-Packard Company) HP Support Solutions Framework (HKLM\...\{2AD02988-163A-45E2-AC71-530B080D1A73}) (Version: 12.4.18.7 - HP) HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) InstallVC90Support (Version: 1.01.0000 - Novatel Wireless) Hidden Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3040 - Intel Corporation) Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation) IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.41 - Irfan Skiljan) League of Legends (HKLM\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (Version: 3.0.1 - Riot Games) Hidden LG United Mobile Drivers (HKLM\...\{7BF5C379-41FF-4C6D-842C-DF82D74C2B14}) (Version: 3.7.2.0 - LG Electronics) Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{887868A2-D6DE-3255-AA92-AA0B5A59B874}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2012 (HKLM\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation) Movie Maker (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden NCSOFT Game Launcher (HKLM\...\NCLauncher_NCWest) (Version: - NCSOFT) NVIDIA PhysX (HKLM\...\{DEA314C4-0929-4250-BC92-98E4C105F28D}) (Version: 9.10.0129 - NVIDIA Corporation) OpenOffice 4.1.2 (HKLM\...\{E0ED9630-38E3-418F-A615-A9B2B5758BE5}) (Version: 4.12.9782 - Apache Software Foundation) Opera Stable 38.0.2220.31 (HKLM\...\Opera 38.0.2220.31) (Version: 38.0.2220.31 - Opera Software) Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (Version: 11.0.51108 - Microsoft Corporation) Hidden PDF Settings (Version: 1.0 - Adobe Systems Incorporated) Hidden Podstawowe programy Windows Live (HKLM\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Podstawowe programy Windows Live (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden PokerStars.eu (HKLM\...\PokerStars.eu) (Version: - PokerStars.eu) Polski pakiet językowy dla programu Microsoft .NET Framework 4.5 PLK (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50709 - Microsoft Corporation) Qualcomm Gobi 2000 Package for Dell (HKLM\...\{55958FAE-1862-4EE5-96BB-B9309CACE1C0}) (Version: 1.1.170 - QUALCOMM) Skype™ 7.24 (HKLM\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.) Star Wars Jedi Knight Jedi Academy (HKLM\...\{1EECBA68-8BE4-4076-94DF-E9ED206B1D21}) (Version: - ) TeamSpeak 3 Client (HKU\S-1-5-21-277916205-3838748793-3997461421-1000\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH) WinRAR 5.21 (32-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (Version: 11.0.51108 - Microsoft Corporation) Hidden ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {14D7D935-2DAF-436D-8EE9-40E837ABC6B5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-05-09] (Hewlett-Packard) Task: {28FBB98B-FDB5-4FB8-BC94-D4864E049806} - System32\Tasks\BirdsarahUpdateTaskMachineUA => C:\Program Files\Birdsarah\Update\BirdsarahUpdate.exe [2016-06-23] () <==== UWAGA Task: {3D144361-6875-48DD-84D2-60DB2CF965DF} - System32\Tasks\Browser Updater Task(Core) => C:\Program Files\TXQQBrowser\Update\79667643458BB9779B58EFADD7956111\Update\BrowserUpdate.exe [2016-04-25] (Tencent) <==== UWAGA Task: {3DF43766-1CBB-45F6-9A1C-5902C40ACE8A} - System32\Tasks\BirdsarahUpdateTaskMachineCore => C:\Program Files\Birdsarah\Update\BirdsarahUpdate.exe [2016-06-23] () <==== UWAGA Task: {41A9FC58-449C-4513-B0C7-AD4169E4B713} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-21] (Adobe Systems Incorporated) Task: {4FEEAA0B-B99B-44E8-B187-733AB0693B85} - System32\Tasks\HPCustParticipation HP Deskjet 3520 series => C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.) Task: {4FF162EE-593A-4CB1-9160-6FB182560572} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2016-06-08] (HP Inc.) Task: {5A439439-4E95-428F-8FF4-24E363C025E7} - System32\Tasks\ToolrainUpdateTaskMachineCore => C:\Program Files\Toolrain\Update\ToolrainUpdate.exe [2016-06-28] () <==== UWAGA Task: {663BEA05-1B37-407C-BBFC-59215CAE71C4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-09-16] (Piriform Ltd) Task: {677A1871-91E4-49BA-ACFC-ECA98564DB05} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company) Task: {810B2E5E-A875-40DA-A4C0-CD80505F299D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-05-04] (Hewlett-Packard) Task: {857FFBAA-EA32-4BDF-A004-27EA1AC796F4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-26] (Google Inc.) Task: {87059BCE-4EF5-4A4C-BB76-65920BBF1DA1} - System32\Tasks\Opera scheduled Autoupdate 1450001187 => C:\Program Files\Opera\launcher.exe [2016-06-13] (Opera Software) Task: {874150DE-87F6-4106-BA3D-30DC7640113C} - System32\Tasks\Sorawardanagck Manager => C:\Program Files\Sorawardanagck\SorawardanagckmanagerTsk.exe [2016-05-10] () <==== UWAGA Task: {8791DAAE-D370-4BF0-BB35-AD7196894EFF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company) Task: {B8DD29FD-DAC2-4DE1-898A-645BCEC8EE09} - System32\Tasks\{079291FA-C1DE-4BF9-8EE6-333EB93931CB} => pcalua.exe -a C:\Windows\system32\pcwrun.exe -c "C:\Program Files\Novatel Wireless\MobiLink3\MobiLink3.exe" Task: {B9448298-925D-4BF9-B444-5D1416B3358E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-26] (Google Inc.) Task: {C4F61493-AEB8-4FC1-ACCA-196E830884FB} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-06-15] (HP Inc.) Task: {E7D74D11-DFB8-443A-A4C5-6902B56B4FDA} - System32\Tasks\ToolrainUpdateTaskMachineUA => C:\Program Files\Toolrain\Update\ToolrainUpdate.exe [2016-06-28] () <==== UWAGA Task: {EC3C77B9-89D1-4690-A766-3A6DBE966F71} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-06-15] (HP Inc.) Task: {F27CE1E4-21A9-4CBE-AA74-93CEE6CA1C8C} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_22_0_0_192_pepper.exe [2016-06-21] (Adobe Systems Incorporated) Task: {F41C7158-7BB7-4768-8877-AD9A1A8C9872} - System32\Tasks\HPCeeScheduleForflower => C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\system32\Macromed\Flash\FlashUtil32_22_0_0_192_pepper.exe Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\HPCeeScheduleForflower.job => C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) Shortcut: C:\Users\flower\AppData\Local\Microsoft\Windows\GameExplorer\{82FCF0E1-87D5-479A-99D8-D57B74949DC1}\SupportTasks\1\Pomoc techniczna.lnk -> hxxp://support.lucasarts.com/ (Brak pliku) Shortcut: C:\Users\flower\AppData\Local\Microsoft\Windows\GameExplorer\{82FCF0E1-87D5-479A-99D8-D57B74949DC1}\SupportTasks\0\Więcej gier od firmy Microsoft.lnk -> hxxp://www.swjediacademy.com/ (Brak pliku) Shortcut: C:\Users\flower\AppData\Local\Microsoft\Windows\GameExplorer\{0CA77E57-6F12-4073-9893-D7FB4763D252}\SupportTasks\1\Pomoc techniczna.lnk -> hxxp://support.microsoft.com/directory/ (Brak pliku) Shortcut: C:\Users\flower\AppData\Local\Microsoft\Windows\GameExplorer\{0CA77E57-6F12-4073-9893-D7FB4763D252}\SupportTasks\0\Więcej gier od firmy Microsoft.lnk -> hxxp://www.microsoft.com/games/age2/ (Brak pliku) Shortcut: C:\Users\flower\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files\Toolrain\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\flower\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk -> C:\Program Files\Toolrain\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\flower\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5d696d521de238c3\Google Chrome.lnk -> C:\Program Files\Toolrain\Application\chrome.exe (Google Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files\Toolrain\Application\chrome.exe (Google Inc.) ShortcutWithArgument: C:\Users\flower\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files\Toolrain\Application\chrome.exe (Google Inc.) -> C:\Program Files\Google\Chrome\Application\chrome.exe ShortcutWithArgument: C:\Users\flower\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\1bd7cef869b57013\Birdsarah.lnk -> C:\Program Files\Toolrain\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData ==================== Załadowane moduły (filtrowane) ============== 2010-07-22 11:40 - 2010-07-22 11:40 - 00091984 _____ () C:\Program Files\Novatel Wireless\Novacore\Server\NvtlSrvr.exe 2015-09-16 21:34 - 2015-09-16 21:34 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll 2016-06-16 14:41 - 2016-06-16 14:41 - 67945512 _____ () C:\Program Files\Opera\38.0.2220.31\opera.dll 2016-06-16 14:41 - 2016-06-16 14:40 - 02203176 _____ () C:\Program Files\Opera\38.0.2220.31\libglesv2.dll 2016-06-16 14:41 - 2016-06-16 14:40 - 00087080 _____ () C:\Program Files\Opera\38.0.2220.31\libegl.dll 2016-06-23 13:12 - 2016-06-23 06:03 - 00428416 _____ () C:\ProgramData\Birdsarah\Birdsarah.exe 2016-06-29 21:23 - 2016-06-28 15:23 - 00424832 _____ () C:\ProgramData\Toolrain\Toolrain.exe 2016-06-21 10:29 - 2016-06-21 10:29 - 17595072 _____ () C:\Windows\system32\Macromed\Flash\pepflashplayer32_22_0_0_192.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-277916205-3838748793-3997461421-1000\...\dell.com -> dell.com ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:04 - 2015-12-29 23:17 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-277916205-3838748793-3997461421-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\flower\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) MSCONFIG\startupfolder: C:^Users^flower^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Rejestrowanie produktów Corela.lnk => C:\Windows\pss\Rejestrowanie produktów Corela.lnk.Startup MSCONFIG\startupreg: Broadcom Wireless Manager UI => C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start MSCONFIG\startupreg: MobiLink 3 => C:\Program Files\Novatel Wireless\MobiLink3\MobiLink3.exe MSCONFIG\startupreg: uTorrent => "C:\Users\flower\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [TCP Query User{EBFFED75-E68F-4623-9E40-6C1BBB781A1B}C:\users\flower\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\flower\appdata\roaming\utorrent\utorrent.exe FirewallRules: [UDP Query User{E415604F-F0F0-416E-9BFC-967C604A78D5}C:\users\flower\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\flower\appdata\roaming\utorrent\utorrent.exe FirewallRules: [TCP Query User{9445F068-85C4-49C2-B4D6-C15C4E73D661}C:\games\fifa 13\game\fifa13.exe] => (Block) C:\games\fifa 13\game\fifa13.exe FirewallRules: [UDP Query User{A38D9B6E-29C7-435F-A87A-AD0A8AAC663D}C:\games\fifa 13\game\fifa13.exe] => (Block) C:\games\fifa 13\game\fifa13.exe FirewallRules: [{798AEDD1-CC7C-4150-99FD-F777E6F37050}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\DeviceSetup.exe FirewallRules: [{3313D088-FD30-411C-80D8-6B7BF18FA7C5}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicator.exe FirewallRules: [{096FF478-333E-44A6-B0EF-63BB4D4310D4}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [TCP Query User{B13DFBE5-59A7-4271-91B4-B88237F87D6F}D:\ieembed.exe] => (Allow) D:\ieembed.exe FirewallRules: [UDP Query User{A9869F3B-0E35-47F1-95D9-D7455FF61E6D}D:\ieembed.exe] => (Allow) D:\ieembed.exe FirewallRules: [{7051BB96-8D38-4825-B49F-46DCF371B1DE}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe FirewallRules: [{A728DD63-72CB-48D0-A1B1-996AE1BE726C}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe FirewallRules: [{9979FDDC-6733-4811-BBE3-9F636530AEBF}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs\CorelDrw.exe FirewallRules: [{5F75194F-3470-4781-8A83-6870A830DE59}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs\CorelPP.exe FirewallRules: [{510102A5-8DB2-415B-AA88-363EE54F640F}] => (Allow) C:\Program Files\Toolrain\Update\ToolrainUpdate.exe FirewallRules: [{361DB842-4F61-49D0-8CA4-8BF4C5213E00}] => (Allow) C:\Program Files\Toolrain\Application\chrome.exe FirewallRules: [{A4E4AE8A-7C21-4752-8731-A22E6F5E8655}] => (Allow) C:\ProgramData\Toolrain\Toolrain.exe ==================== Punkty Przywracania systemu ========================= 12-06-2016 15:00:31 Zaplanowany punkt kontrolny 02-07-2016 20:30:50 Zaplanowany punkt kontrolny 03-07-2016 14:37:52 Removed LogMeIn Hamachi 03-07-2016 14:39:07 Removed HP Deskjet 3520 series Setup Guide 03-07-2016 14:40:06 ??????? Counter-Strike 1.6 03-07-2016 14:42:23 Removed Black Desert Character Creator 03-07-2016 14:43:24 Removed Blade & Soul 05-07-2016 19:09:51 Windows Update 05-07-2016 19:29:31 Windows Update ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Name: Kontroler magistrali zarządzania systemem Description: Kontroler magistrali zarządzania systemem Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Kontroler PCI Simple Communications Description: Kontroler PCI Simple Communications Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Kontroler pamięci masowej Description: Kontroler pamięci masowej Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (07/05/2016 07:02:41 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/05/2016 06:49:29 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/05/2016 01:11:14 PM) (Source: Protexis Licensing Service) (EventID: 49) (User: ) Description: Failed to Release Mutex Error ID = Returned Error 1 Error: (07/05/2016 01:11:14 PM) (Source: Protexis Licensing Service) (EventID: 49) (User: ) Description: Failed to Release Mutex Error ID = Returned Error 288 Error: (07/05/2016 01:11:13 PM) (Source: Protexis Licensing Service) (EventID: 49) (User: ) Description: Failed to Release Mutex Error ID = Returned Error 1 Error: (07/05/2016 01:11:13 PM) (Source: Protexis Licensing Service) (EventID: 49) (User: ) Description: Failed to Release Mutex Error ID = Returned Error 288 Error: (07/05/2016 01:07:35 PM) (Source: Protexis Licensing Service) (EventID: 49) (User: ) Description: Failed to Release Mutex Error ID = Returned Error 1 Error: (07/05/2016 01:07:35 PM) (Source: Protexis Licensing Service) (EventID: 49) (User: ) Description: Failed to Release Mutex Error ID = Returned Error 288 Error: (07/05/2016 01:07:35 PM) (Source: Protexis Licensing Service) (EventID: 49) (User: ) Description: Failed to Release Mutex Error ID = Returned Error 1 Error: (07/05/2016 01:07:35 PM) (Source: Protexis Licensing Service) (EventID: 49) (User: ) Description: Failed to Release Mutex Error ID = Returned Error 288 Dziennik System: ============= Error: (07/04/2016 07:32:03 PM) (Source: Schannel) (EventID: 4102) (User: ZARZĄDZANIE NT) Description: Podczas próby uzyskania dostępu do prywatnego klucza uwierzytelnień SSL klient wystąpił błąd krytyczny. Kod błędu zwrócony przez moduł kryptograficzny: 0x8009030d. Stan błędu wewnętrznego: 10003. Error: (07/03/2016 06:50:12 PM) (Source: Tcpip) (EventID: 4199) (User: ) Description: System wykrył konflikt adresów między adresem IP 192.168.1.4 a komputerem o sieciowym adresie sprzętowym 52-69-43-A3-F4-06. W rezultacie mogą być zakłócone operacje sieciowe na tym komputerze. Error: (07/03/2016 02:35:02 PM) (Source: bowser) (EventID: 8003) (User: ) Description: Przeglądarka główna odebrała anons serwera z komputera 7311_NAS. Komputer ten zachowuje się tak, jakby był przeglądarką główną dla domeny w transporcie NetBT_Tcpip_{99A633A1-0BAC-411E-B236-1D384C269. Przeglądarka główna właśnie jest zatrzymywana albo wymuszany jest wybór. Error: (07/01/2016 06:22:48 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {995C996E-D918-4A8C-A302-45719A6F4EA7} Error: (07/01/2016 10:58:28 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Sorawardanagck Manager niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (07/01/2016 10:20:45 AM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: Usługa LogMeIn Hamachi Tunneling Engine jest oznaczona jako usługa interakcyjna. System jest jednak skonfigurowany tak, aby nie zezwalać na usługi interakcyjne, dlatego ta usługa może nie działać właściwie. Error: (06/30/2016 06:14:42 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {C332C124-340D-4430-AA0D-C75602876FCC} Error: (06/30/2016 06:14:12 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {FE9617F6-E606-42AA-BECC-0E9CDA246D63} Error: (06/30/2016 06:13:12 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C} Error: (06/30/2016 01:29:54 PM) (Source: Schannel) (EventID: 4102) (User: ZARZĄDZANIE NT) Description: Podczas próby uzyskania dostępu do prywatnego klucza uwierzytelnień SSL klient wystąpił błąd krytyczny. Kod błędu zwrócony przez moduł kryptograficzny: 0x8009030d. Stan błędu wewnętrznego: 10003. CodeIntegrity: =================================== Date: 2015-12-22 18:36:30.470 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2015-12-22 18:36:29.022 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2015-12-22 18:36:25.579 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2015-12-22 18:07:54.256 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2015-12-22 18:02:06.873 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2015-12-22 18:01:13.514 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2015-12-22 18:01:13.506 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2015-12-22 18:01:09.518 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2015-12-22 18:01:09.497 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2015-12-22 18:01:06.190 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i3-2310M CPU @ 2.10GHz Procent pamięci w użyciu: 52% Całkowita pamięć fizyczna: 3240.93 MB Dostępna pamięć fizyczna: 1551.95 MB Całkowita pamięć wirtualna: 6480.15 MB Dostępna pamięć wirtualna: 4548.69 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:232.79 GB) (Free:145.55 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: C0D2E534) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================