Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 17-12-2016 Uruchomiony przez janou (18-12-2016 09:45:33) Uruchomiony z E:\Pobrane Windows 7 Professional Service Pack 1 (X64) (2016-08-18 12:44:11) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2629472346-4294126388-1045716372-500 - Administrator - Disabled) Gość (S-1-5-21-2629472346-4294126388-1045716372-501 - Limited - Disabled) janou (S-1-5-21-2629472346-4294126388-1045716372-1000 - Administrator - Enabled) => C:\Users\janou ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Ableton Live 9 Suite (HKLM\...\{2E533C18-7395-4EAB-B5F5-1891FC591D79}) (Version: 9.0.0.0 - Ableton) ActivePerl 5.24.0 Build 2400 (64-bit) (HKLM\...\{C89FA3E7-29C4-4A60-AFB9-40E04715AE78}) (Version: 5.24.2400 - ActiveState) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated) Adobe Flash Player 23 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 23.0.0.207 - Adobe Systems Incorporated) Adobe Flash Player 23 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated) Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.1 - Adobe Systems Incorporated) Adobe Photoshop 7.0 CE (HKLM-x32\...\Adobe Photoshop 7.0 CE) (Version: 7.0 CE - Adobe Systems, Inc.) AIMP (HKLM-x32\...\AIMP) (Version: v4.11.1841, 09.10.2016 - AIMP DevTeam) ALLPlayer Pilot (HKLM-x32\...\{146BDBDD-ACD9-4B04-A286-C27471841E8E}_is1) (Version: 1.4 - ALLPlayer Group, Ltd.) ALLPlayer V7.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLPlayer Group, Ltd.) Ansel (Version: 375.86 - NVIDIA Corporation) Hidden Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software) BitTorrent (HKU\S-1-5-21-2629472346-4294126388-1045716372-1000\...\BitTorrent) (Version: 7.9.9.42974 - BitTorrent Inc.) Camera Stream Controller (HKLM-x32\...\Camera Stream Controller) (Version: 1.0.0.122 - VIVOTEK INC.) Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.11.1 - Canon Inc.) Canon IJ Scan Utility OCR Dictionary (HKLM-x32\...\Canon_IJ_Scan_Utility_OCR_Dictionary) (Version: 1.0.0.3 - Canon Inc.) Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.2.0 - Canon Inc.) Canon RAW Codec (HKLM-x32\...\Canon RAW Codec) (Version: 1.11.0.75 - Canon Inc.) Canon Utilities Digital Photo Professional 4 (HKLM-x32\...\Digital Photo Professional 4 (x64)) (Version: 4.4.30.2 - Canon Inc.) Canon Utilities EOS Utility 2 (HKLM-x32\...\EOS Utility 2) (Version: 2.14.20.0 - Canon Inc.) CanoScan LiDE 120 Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ2415) (Version: 1.02 - Canon Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.23 - Piriform) ChomikBox (HKLM-x32\...\{71736AF6-BA4B-4F3C-8496-C325B97869BA}) (Version: 2.0.8.1 - Chomikuj.pl) DeepSkyStacker (HKLM-x32\...\{18435829-4E75-4CD1-9796-A62DBBAE2ED7}) (Version: 3.2.0 - ) eosmsgV5 (HKLM-x32\...\{E99C0135-0559-4047-A97B-8CE406643A37}) (Version: 5.1.7 - Shen Zhen CammsG CO.LTD) FluxCenter-64-bit (HKLM\...\{EA3A52C9-5C77-4AF8-96D9-E94C65D668D4}) (Version: 1.2.3.44498 - Flux:: sound and picture development) Focusrite USB 4.11.0.107 (HKLM\...\Focusrite USB_is1) (Version: 4.11.0.107 - Focusrite Audio Engineering Ltd.) Gaming Mouse (HKLM-x32\...\{A7B243AA-6D4C-4575-A873-6F01A1EFC5E2}}_is1) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.) Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden GoPro (Version: 0.1.2733 - GoPro, Inc.) Hidden GoPro for Desktop (HKLM-x32\...\{88734dc7-c200-4ad3-b29f-bb5e436cb30f}) (Version: 1.4.0.2733 - GoPro, Inc.) GoPro Studio (x32 Version: 5.9.2733 - GoPro, Inc.) Hidden Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 4.0.0.36 - Intel Corporation) IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.42 - Irfan Skiljan) LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - ) Malwarebytes Anti-Malware wersja 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Microsoft .NET Framework 4.6.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01590 - Microsoft Corporation) Microsoft Camera Codec Pack (HKLM\...\{7C19409A-4C5A-49E9-B601-07383E4B6E37}) (Version: 6.3.9723.0 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation) Mixed in Key (x32 Version: 8.0.1342.0 - Mixed In Key LLC) Hidden Mixed In Key 8 (HKU\S-1-5-21-2629472346-4294126388-1045716372-1000\...\{87cf4f0d-2e39-41df-976b-a9f901136052}) (Version: 8.0.1342.0 - Mixed In Key LLC) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.5.1 - Mozilla) Mozilla Thunderbird 45.5.1 (x86 pl) (HKLM-x32\...\Mozilla Thunderbird 45.5.1 (x86 pl)) (Version: 45.5.1 - Mozilla) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version: - Native Instruments) Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: - Native Instruments) NVIDIA Oprogramowanie systemu PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 375.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 375.86 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation) NVIDIA Sterownik graficzny 375.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 375.86 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) OpenVPN 2.3.14-I001 (HKLM\...\OpenVPN) (Version: 2.3.14-I001 - ) Opera Stable 42.0.2393.85 (HKLM-x32\...\Opera 42.0.2393.85) (Version: 42.0.2393.85 - Opera Software) Oprogramowanie mikroukładu Intel® (x32 Version: 10.0.27 - Intel(R) Corporation) Hidden Origin (HKLM-x32\...\Origin) (Version: 10.1.1.35466 - Electronic Arts, Inc.) Panel sterowania NVIDIA 375.86 (Version: 375.86 - NVIDIA Corporation) Hidden QNAP Qfinder Pro (HKLM-x32\...\QNAP_FINDER) (Version: 5.3.1.0706 - QNAP Systems, Inc.) QNAP QVR Client (HKLM-x32\...\QNAPQVR) (Version: 5.1.1.28060 - QNAP Systems, Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7806 - Realtek Semiconductor Corp.) RegiStax 6 (HKU\S-1-5-21-2629472346-4294126388-1045716372-1000\...\RegiStax 6) (Version: - ) Stellarium 0.15.0 (HKLM\...\Stellarium_is1) (Version: 0.15.0 - Stellarium team) Syncovery 7.25a (HKLM\...\Syncovery x64_is1) (Version: 7.25a - Super Flexible Software) TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - ) TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.66695 - TeamViewer) VFW_Codec32 (x32 Version: 0.1.160.0 - GoPro, Inc.) Hidden VFW_Codec64 (Version: 0.1.160.0 - GoPro, Inc.) Hidden Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) WinRAR 5.31 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {292D3546-F565-4E6F-8548-48510DFA30FB} - System32\Tasks\Opera scheduled Autoupdate 1472112824 => C:\Program Files (x86)\Opera\launcher.exe [2016-12-09] (Opera Software) Task: {40E51331-A33B-42D1-9E7C-E8D299F3A793} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-09-28] (Piriform Ltd) Task: {48CB393D-53F4-4296-BCCD-931E63F02499} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-18] (Google Inc.) Task: {56D297CE-2519-4B2B-9E4A-82E662350DD4} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_207_pepper.exe [2016-11-08] (Adobe Systems Incorporated) Task: {8789490E-61D6-400E-BBAD-C14F037B1B6C} - System32\Tasks\iSCSIAgentAutoStartup => C:\Program Files (x86)\QNAP\Qfinder\iSCSIAgent.exe [2016-07-06] () Task: {8F0252D7-A2F6-4A42-9460-3260B7330351} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated) Task: {95CAF61B-2810-47AE-89ED-5A3C5493B7A5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-08] (Adobe Systems Incorporated) Task: {A7BD6394-14F7-4684-9631-84D14D4AAF16} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-18] (Google Inc.) Task: {AAFB6684-87CC-4A26-B697-D9401D564F6C} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask => C:\Windows\system32\Wat\WatAdminSvc.exe [2016-08-18] () Task: {CA5E81A1-A217-424C-B07C-114BDEC252EF} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-08-21] (AVAST Software) Task: {DA9E8E5F-E527-4F95-9782-F62E85513B62} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-08-21] (AVAST Software) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_207_pepper.exe Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2016-08-18 21:21 - 2013-06-28 14:28 - 00084616 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE 2016-08-18 19:04 - 2016-11-10 23:38 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2010-01-30 01:40 - 2010-01-30 01:40 - 04254560 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2016-08-18 21:22 - 2012-06-07 09:11 - 00262656 _____ () C:\Program Files (x86)\GamingMouse\hid.exe 2016-08-18 21:22 - 2011-11-22 13:18 - 00256512 _____ () C:\Program Files (x86)\GamingMouse\trayicon.exe 2016-11-06 15:52 - 2016-11-06 15:52 - 00073728 _____ () C:\Program Files (x86)\QNAP\QVR\QVRService.exe 2016-10-25 19:56 - 2014-12-07 22:15 - 05883560 _____ () C:\Program Files\Syncovery\SyncoveryVSS.exe 2016-12-10 09:05 - 2016-12-08 09:03 - 02412888 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll 2016-12-10 09:05 - 2016-12-08 09:03 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll 2016-05-11 23:39 - 2016-05-11 23:39 - 00037808 _____ () C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe 2016-08-21 10:22 - 2016-08-21 10:22 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2016-12-17 16:09 - 2016-12-17 16:09 - 03131344 _____ () C:\Program Files\AVAST Software\Avast\defs\16121700\algo.dll 2016-08-21 10:22 - 2016-08-21 10:22 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2015-07-21 08:35 - 2015-07-21 08:35 - 00512000 _____ () C:\Program Files (x86)\Canon\EOS Utility\EDSDK.dll 2016-08-18 21:22 - 2011-11-22 13:18 - 00061440 _____ () C:\Program Files (x86)\GamingMouse\HidDevice.dll 2016-08-21 10:22 - 2016-08-21 10:22 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2016-08-18 21:22 - 2011-11-22 13:18 - 00249856 _____ () C:\Program Files (x86)\GamingMouse\language.dll 2016-11-06 15:52 - 2016-11-06 15:52 - 01025024 _____ () C:\Program Files (x86)\QNAP\QVR\QVRWebSocket.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2016-08-18 15:49 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2629472346-4294126388-1045716372-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\janou\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk => C:\Windows\pss\Adobe Gamma Loader.lnk.CommonStartup MSCONFIG\startupfolder: C:^Users^janou^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EOS Utility.lnk => C:\Windows\pss\EOS Utility.lnk.Startup MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" MSCONFIG\startupreg: ALLUpdate => "C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe" "sleep" MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices MSCONFIG\startupreg: GoPro Tray App => C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe MSCONFIG\startupreg: Logitech Download Assistant => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch MSCONFIG\startupreg: PowerPanel Personal Edition User Interaction => C:\Program Files (x86)\CyberPower PowerPanel Personal Edition\pppeuser.exe MSCONFIG\startupreg: QfinderPro => "C:\Program Files (x86)\QNAP\Qfinder\QfinderPro.exe" /min /auto ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [SPPSVC-In-TCP] => %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => %SystemRoot%\system32\sppsvc.exe FirewallRules: [TCP Query User{0D8ED36E-6C07-420C-B74B-F5F63AD98152}C:\program files (x86)\qnap\qfinder\qfinderpro.exe] => C:\program files (x86)\qnap\qfinder\qfinderpro.exe FirewallRules: [UDP Query User{CAA8CE50-69E0-4F55-91B3-0B1BE38419EB}C:\program files (x86)\qnap\qfinder\qfinderpro.exe] => C:\program files (x86)\qnap\qfinder\qfinderpro.exe FirewallRules: [{F01C400B-60EB-4292-B154-183233915C32}] => C:\Program Files (x86)\Canon\EOS Utility\EOSUPNPSV.exe FirewallRules: [{990E38C3-BFBE-4647-B59B-72DFED56CEC2}] => C:\Program Files (x86)\Canon\EOS Utility\EOSUPNPSV.exe FirewallRules: [{1A3F9121-9C82-40BE-B946-AB3C57A704C7}] => C:\Program Files\GoPro\GoPro Desktop App\GoPro.exe FirewallRules: [{E0C7687F-B791-4C02-86D4-753D3BC60CCB}] => C:\Program Files\GoPro\GoPro Desktop App\GoProMsgBus.exe FirewallRules: [{1E72CB7F-3C03-414F-901F-7BF841764B8B}] => C:\Program Files\GoPro\GoPro Desktop App\GoProIDService.exe FirewallRules: [{5CBA2EFE-E8F8-4112-9E0E-9ECAEF1DF605}] => C:\Program Files\GoPro\GoPro Desktop App\GoProLauncher.exe FirewallRules: [{689A3AC9-6E56-498B-A124-E425A7D20884}] => C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [{564E1957-4F6D-4220-A0B3-C9841DB82F84}] => C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [TCP Query User{2A3F19B2-C9DD-47CC-92C5-73A0CD371EB7}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe FirewallRules: [UDP Query User{E8EC42F1-03A5-4AA5-BC1E-6A8762E29437}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe FirewallRules: [TCP Query User{FFAD7F6D-5458-4532-843B-68696C28DEDA}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe FirewallRules: [UDP Query User{1F9396E6-4A1C-4440-A447-888E1970B7AA}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe FirewallRules: [{DDBBF475-B959-4CE3-B2E0-19E9560509CA}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{C3D38378-7248-4A60-9A35-E5ECD64A07C5}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{C7A1285D-5F3B-4A89-8DDD-509FA68D07AD}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{2990D38B-2BC2-42B0-B23D-A6653F0BD890}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [TCP Query User{787F3FF4-2E1E-4AA0-AA51-65F133127B65}C:\program files (x86)\qnap\qfinder\qfinderpro.exe] => C:\program files (x86)\qnap\qfinder\qfinderpro.exe FirewallRules: [UDP Query User{78AB9160-9152-411B-BAC3-9673590C221F}C:\program files (x86)\qnap\qfinder\qfinderpro.exe] => C:\program files (x86)\qnap\qfinder\qfinderpro.exe FirewallRules: [{D3AD0FB0-C211-47A1-BA11-A6A9E10D2887}] => C:\Users\janou\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{FD021CC7-EA76-4351-80D4-32FEEC7B2117}] => C:\Users\janou\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{40B9127F-ED4B-4D67-93E9-C7F07150AC39}] => C:\Users\janou\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{A2F3BB65-D17B-4ECA-B8DE-19C1ABE7172D}] => C:\Users\janou\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{228A2FF5-EA6D-4489-B577-05E42D09A23E}] => C:\Users\janou\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{A1A36EA9-523D-46A9-8BE9-7E7BADA815BF}] => C:\Users\janou\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [TCP Query User{B88D0C4D-4DF5-4044-B33F-D99F5BBCE7E0}C:\program files (x86)\internet explorer\iexplore.exe] => C:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [UDP Query User{3A3FECE1-C096-414D-8A38-0F6797135F60}C:\program files (x86)\internet explorer\iexplore.exe] => C:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [{98BD7562-4553-4A06-9F6D-95897D3E0B62}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Punkty Przywracania systemu ========================= 11-12-2016 13:42:16 Instalacja pakietu sterownika urządzenia: TAP-Windows Provider V9 Karty sieciowe 14-12-2016 17:42:59 Windows Update 15-12-2016 15:45:08 Windows Update ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (12/18/2016 09:37:12 AM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: ZARZĄDZANIE NT) Description: Nie można ponownie uaktywnić filtru zdarzeń z zapytaniem „SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99” w przestrzeni nazw „//./root/CIMV2” z powodu błędu 0x80041003. Do czasu rozwiązania tego problemu nie będzie można dostarczać zdarzeń za pośrednictwem tego filtru. Error: (12/18/2016 09:36:41 AM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error: (12/18/2016 08:48:48 AM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: ZARZĄDZANIE NT) Description: Nie można ponownie uaktywnić filtru zdarzeń z zapytaniem „SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99” w przestrzeni nazw „//./root/CIMV2” z powodu błędu 0x80041003. Do czasu rozwiązania tego problemu nie będzie można dostarczać zdarzeń za pośrednictwem tego filtru. Error: (12/18/2016 08:48:16 AM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error: (12/18/2016 06:56:58 AM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: ZARZĄDZANIE NT) Description: Nie można ponownie uaktywnić filtru zdarzeń z zapytaniem „SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99” w przestrzeni nazw „//./root/CIMV2” z powodu błędu 0x80041003. Do czasu rozwiązania tego problemu nie będzie można dostarczać zdarzeń za pośrednictwem tego filtru. Error: (12/18/2016 06:56:27 AM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error: (12/17/2016 04:08:42 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: ZARZĄDZANIE NT) Description: Nie można ponownie uaktywnić filtru zdarzeń z zapytaniem „SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99” w przestrzeni nazw „//./root/CIMV2” z powodu błędu 0x80041003. Do czasu rozwiązania tego problemu nie będzie można dostarczać zdarzeń za pośrednictwem tego filtru. Error: (12/17/2016 04:08:11 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error: (12/16/2016 02:06:09 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: ZARZĄDZANIE NT) Description: Nie można ponownie uaktywnić filtru zdarzeń z zapytaniem „SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99” w przestrzeni nazw „//./root/CIMV2” z powodu błędu 0x80041003. Do czasu rozwiązania tego problemu nie będzie można dostarczać zdarzeń za pośrednictwem tego filtru. Error: (12/16/2016 02:05:38 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Dziennik System: ============= Error: (12/18/2016 09:37:12 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: cdrom Error: (12/18/2016 09:37:11 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Origin Web Helper Service z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (12/18/2016 09:37:11 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Origin Web Helper Service. Error: (12/18/2016 09:35:57 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Office Software Protection Platform niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (12/18/2016 09:35:57 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Ochrona oprogramowania niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 120000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (12/18/2016 09:35:57 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa GoPro Device Detection Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (12/18/2016 09:35:57 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Usługa udostępniania w sieci programu Windows Media Player niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (12/18/2016 09:35:57 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Windows Search niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (12/18/2016 09:35:57 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa SyncoveryVSSService niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (12/18/2016 09:35:57 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa QVRService niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 3000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. CodeIntegrity: =================================== Date: 2016-08-27 18:42:04.682 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\FreeOTFE\amd64\FreeOTFEHashWhirlpool.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-08-27 18:42:04.652 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\FreeOTFE\amd64\FreeOTFEHashWhirlpool.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-08-27 18:42:04.579 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\FreeOTFE\amd64\FreeOTFEHashTiger.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-08-27 18:42:04.547 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\FreeOTFE\amd64\FreeOTFEHashTiger.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-08-27 18:42:04.473 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\FreeOTFE\amd64\FreeOTFEHashSHA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-08-27 18:42:04.442 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\FreeOTFE\amd64\FreeOTFEHashSHA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-08-27 18:42:04.368 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\FreeOTFE\amd64\FreeOTFEHashRIPEMD.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-08-27 18:42:04.338 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\FreeOTFE\amd64\FreeOTFEHashRIPEMD.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-08-27 18:42:04.265 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\FreeOTFE\amd64\FreeOTFEHashMD.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-08-27 18:42:04.235 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\FreeOTFE\amd64\FreeOTFEHashMD.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-4690K CPU @ 3.50GHz Procent pamięci w użyciu: 59% Całkowita pamięć fizyczna: 8140.76 MB Dostępna pamięć fizyczna: 3305.27 MB Całkowita pamięć wirtualna: 16279.71 MB Dostępna pamięć wirtualna: 10617.83 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:119.24 GB) (Free:38.36 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano odczytując BCD)] Drive d: (Gry Stacjonarny) (Fixed) (Total:111.79 GB) (Free:75.11 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive e: () (Fixed) (Total:931.51 GB) (Free:482.35 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive f: (USB DISK) (Removable) (Total:7.21 GB) (Free:5.04 GB) FAT32 ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: 3227C2A8) Partition 1: (Active) - (Size=119.2 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 0002DE53) Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: E00CA999) Partition 1: (Active) - (Size=111.8 GB) - (Type=07 NTFS) ======================================================== Disk: 3 (MBR Code: Windows XP) (Size: 7.2 GB) (Disk ID: E339E127) Partition 1: (Not Active) - (Size=7.2 GB) - (Type=0C) ==================== Koniec Addition.txt ============================