Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 01-01-2017 Uruchomiony przez Mariolka (05-01-2017 14:11:50) Uruchomiony z E:\Pobrane Windows 7 Ultimate Service Pack 1 (X64) (2016-03-16 13:20:21) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-887697183-1252705721-1128697598-500 - Administrator - Disabled) fifa (S-1-5-21-887697183-1252705721-1128697598-1002 - Administrator - Enabled) => C:\Users\fifa Gość (S-1-5-21-887697183-1252705721-1128697598-501 - Limited - Disabled) Mariolka (S-1-5-21-887697183-1252705721-1128697598-1000 - Administrator - Enabled) => C:\Users\Mariolka ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-887697183-1252705721-1128697598-1000\...\uTorrent) (Version: 3.4.9.42973 - BitTorrent Inc.) 7-Zip 16.04 (HKLM-x32\...\7-Zip) (Version: 16.04 - Igor Pavlov) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.144 - Adobe Systems Incorporated) Adobe Content Viewer (HKLM-x32\...\com.adobe.dmp.contentviewer) (Version: 1.4.0 - Adobe Systems Incorporated) Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated) Adobe InDesign CS5.5 (HKLM-x32\...\{857CC5F0-040E-1016-A173-D55ADD80C260}) (Version: 7.5 - Adobe Systems Incorporated) Adobe Muse (HKLM-x32\...\AdobeMuse) (Version: 7.0.314 - Adobe Systems Incorporated) Adobe Update Management Tool (HKLM-x32\...\{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1) (Version: 7.0 - PainteR) Apple Application Support (32-bit) (HKLM-x32\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{9BC93467-75D1-4AA4-BD58-D9C51D88DFAB}) (Version: 5.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 2.2.8 - ASUS) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0031 - ASUS) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software) Axure RP 8 (x32 Version: 8.0.0.3297 - Axure Software Solutions, Inc.) Hidden Axure RP Pro 6.5 (x32 Version: 6.5.0.3049 - Axure Software Solutions, Inc.) Hidden Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Cool Edit Pro 2.1 (HKLM-x32\...\Cool Edit Pro 2.1) (Version: - ) Corel Graphics - Windows Shell Extension (HKLM-x32\...\_{B922902F-E9E9-4AD9-B87D-7F62FA9EA1AD}) (Version: 15.2.0.661 - Corel Corporation) Corel Graphics - Windows Shell Extension (x32 Version: 15.2.661 - Corel Corporation) Hidden Corel Graphics - Windows Shell Extension 64 Bit (Version: 15.2.661 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Capture (x32 Version: 15.2 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Common (x32 Version: 15.2 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Connect (x32 Version: 15.2 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Custom Data (x32 Version: 15.2 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Draw (x32 Version: 15.2 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Filters (x32 Version: 15.2 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - FontNav (x32 Version: 15.2 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - IPM (x32 Version: 15.2 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - PHOTO-PAINT (x32 Version: 15.2 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Photozoom Plugin (x32 Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - PL (x32 Version: 15.2 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Redist (x32 Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Setup Files (x32 Version: 15.2 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - VBA (x32 Version: 15.2 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - VideoBrowser (x32 Version: 15.2 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - VSTA (x32 Version: 15.2 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - WT (x32 Version: 15.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 (x32 Version: 15.2 - Corel Corporation) Hidden CorelDRAW(R) Graphics Suite X5 (HKLM-x32\...\_{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}) (Version: 15.2.0.661 - Corel Corporation) Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.3.0.0152 - Disc Soft Ltd) Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform) FIFA 12 (c) EA version 1 (HKLM-x32\...\FIFA 12 (c) EA_is1) (Version: 1 - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.) Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2963 - Intel Corporation) Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.7.248 - Intel Corporation) iTunes (HKLM\...\{554C62C7-E6BB-40F1-892B-F0AE02D3C135}) (Version: 12.5.3.17 - Apple Inc.) LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - ) Mediatek Bluetooth (HKLM\...\{9ACFC67B-786F-CC9B-847A-D0350FF6F5E0}) (Version: 11.0.752.0 - Nazwa firmy) Microsoft .NET Framework 4.5.2 Hotfix Rollup (KB3011114) (HKLM\...\{8AB1C38E-8622-3F81-B3D8-C5DD2D70830E}) (Version: 4.5.52279 - Microsoft Corporation) Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft) MoorHunt 2.1.16.3 (HKLM-x32\...\MoorHunt_is1) (Version: - hxxp://moorhunt.pl) Narzędzia sprawdzające pakietu Microsoft Office 2016 — polski (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Pakiet sterowników systemu Windows - ASUS (ATP) Mouse (11/20/2013 1.0.0.194) (HKLM\...\8BA9C239ED04E09F06755E1497239BEFC08085C2) (Version: 11/20/2013 1.0.0.194 - ASUS) PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden Qualcomm Atheros WiFi Driver Installation Program (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 3.0 - Qualcomm Atheros) Ralink RT2860 Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}) (Version: 2.2.2.2 - Ralink) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.61.612.2012 - Realtek) Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.27015 - Realtek Semiconductor Corp.) Regi (Version: 1.00.0000 - InterVideo Inc.) Hidden SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden ScanWizard 5 (HKLM-x32\...\{B08D262E-D902-11D5-9C28-0080C85A0C2D}) (Version: - ) Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.) System Cleaner 7 (HKLM-x32\...\System Cleaner 7) (Version: 7.6.30.710 - Pointstone Software, LLC) Tablet Wacom (HKLM\...\Wacom Tablet Driver) (Version: 6.3.15-2 - Wacom Technology Corp.) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH) Testy B 2016 (HKLM-x32\...\{51c8ad09-d9b5-478f-8dfe-6a5e040d7e7c}_is1) (Version: 6.2.5.115 - Grupa IMAGE Sp. z o.o.) The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.0.615 - Electronic Arts) WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.) WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.) WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) ZBrush 4R6 (HKLM-x32\...\ZBrush 4R6 4R6) (Version: 4R6 - Pixologic) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-887697183-1252705721-1128697598-1000_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\Mariolka\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll => Brak pliku ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {1F76893F-9F93-4D7C-9ACA-FC4F44671167} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2013-09-09] (ASUSTek Computer Inc.) Task: {282EE8C9-6EB8-4ECC-B0CC-2AD1B6E546DF} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.) Task: {3EB6D2D2-CF65-4E56-BCEC-1DF11FD1B87F} - System32\Tasks\AdobeAAMUpdater-1.0-JestęMariolkę-Mariolka => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe Task: {437B7F74-68B0-42AD-8142-92834AAE55E5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation) Task: {470273A6-F4C7-4B3F-BCF4-E892F3CD28BD} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-10-15] (AVAST Software) Task: {4A9E2D58-C990-4F58-9A87-9E426A442228} - System32\Tasks\{83D2A3CD-CE19-4DF8-9B4B-0D889A70E297} => pcalua.exe -a C:\Users\Mariolka\Downloads\MoorHunt\ADOBE.MUSE.CC.7.0.314.PAINTER.AND.SINAZ\AdobeAIRInstaller.exe -d C:\Users\Mariolka\Downloads\MoorHunt\ADOBE.MUSE.CC.7.0.314.PAINTER.AND.SINAZ Task: {5EB4AAB5-914B-433A-9290-3B0760C3F03B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe Task: {66C8B86A-DDF5-4198-817B-95A3E438DF79} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation) Task: {9BDB8847-13F2-42F0-A6B4-2AC2124ECABD} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2013-12-12] (AsusTek) Task: {A0BF5CFD-A00E-4C4F-B758-D6CE93BA8541} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-16] (Google Inc.) Task: {C5996260-BD05-4F6D-B041-CD882C7CB525} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-16] (Google Inc.) Task: {D1AA079B-5528-4244-97DD-B3F16DA2C45E} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-10-15] (AVAST Software) Task: {D58351D8-7E43-4976-8693-C091B74CB807} - System32\Tasks\SafeZone scheduled Autoupdate 1476536757 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software) Task: {E403FA88-CEA7-470B-BDBB-BF936FBF5B8E} - System32\Tasks\{B453F40E-424F-44CF-8E53-3A2D461EFF44} => E:\Instalki programów\FIFA 12\Game\fifasetup\fifaconfig.exe [2011-09-19] (Electronic Arts Canada) Task: {E992C511-D0C9-45EC-83BF-3D34757D4162} - System32\Tasks\AdobeAAMUpdater-1.0-JESTEMJOLKA-Mariolka => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe Task: {F9F1387A-EBC8-4B0E-97B3-2B59569F5EDF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\Mariolka\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData ==================== Załadowane moduły (filtrowane) ============== 2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2016-10-05 18:17 - 2016-10-05 18:17 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2013-12-16 15:45 - 2013-12-16 15:45 - 00016632 _____ () C:\Windows\system32\BsHelpCSps.dll 2013-12-16 15:46 - 2013-12-16 15:46 - 00029432 _____ () C:\Windows\system32\BsTrace.dll 2012-10-20 17:38 - 2012-10-20 17:38 - 00311808 _____ () C:\Program Files (x86)\Pointstone\System Cleaner 7\SDShlExt-x64.dll 2013-12-16 15:45 - 2013-12-16 15:45 - 00371448 _____ () C:\Windows\system32\BsExtendFunc.dll 2016-03-21 23:53 - 2015-12-21 19:02 - 01349824 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll 2016-03-16 23:17 - 2013-02-21 12:01 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2016-12-12 20:28 - 2009-06-26 15:25 - 00356352 _____ () C:\Program Files (x86)\ScanWizard 5\ScannerFinder.exe 2016-10-15 14:02 - 2016-10-15 14:02 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2016-10-15 14:02 - 2016-10-15 14:02 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2017-01-05 14:07 - 2017-01-05 14:07 - 03133448 _____ () C:\Program Files\AVAST Software\Avast\defs\17010500\algo.dll 2013-12-16 15:44 - 2013-12-16 15:44 - 00031480 _____ () C:\Windows\SysWOW64\BsHelpCSps.dll 2013-12-16 15:44 - 2013-12-16 15:44 - 00641784 _____ () C:\Windows\SysWOW64\BlueSoleilCSps.dll 2016-12-12 20:28 - 2009-07-22 16:58 - 00258048 _____ () C:\Program Files (x86)\ScanWizard 5\SFRes.dll 2013-12-16 15:45 - 2013-12-16 15:45 - 00080120 _____ () C:\Windows\system32\BsProfilefunc.dll 2016-10-15 14:02 - 2016-10-15 14:02 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2016-12-15 08:37 - 2016-12-08 08:29 - 01829208 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll 2016-12-15 08:37 - 2016-12-08 08:29 - 00085848 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2016-03-22 15:47 - 00000035 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-887697183-1252705721-1128697598-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Mariolka\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 178.219.96.3 - 178.219.96.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{FA3C30A8-7294-4611-B14B-6DCF16F0ED62}] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe FirewallRules: [{74D1ACF3-0DFA-4CA6-8C41-48E5CE52C2C0}] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe FirewallRules: [{334FB237-6C44-4B1F-B819-F9F55816BE75}] => C:\Users\Mariolka\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{654776F7-E0CC-49B5-8E9B-245A1DD77F33}] => C:\Users\Mariolka\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{6B3E48BC-2146-47E6-B9C8-C631379C4AE6}] => C:\Users\Mariolka\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{7B27BCBE-5B81-4FCC-80A2-81CC837A80ED}] => C:\Users\Mariolka\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{EF127BD6-C9C1-4889-BAED-4C11BE92C32F}] => C:\Users\Mariolka\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{0E5BA11C-2D1C-48AF-86D8-AAC19194BF1B}] => C:\Users\Mariolka\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{06062E33-989F-48E3-93E8-421450543181}] => C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{7ADC7802-0999-4620-A596-420958D99C05}] => C:\Program Files\Microsoft Office\Office16\lync.exe FirewallRules: [{982BA508-F37F-4776-8802-FDA0E009F839}] => C:\Program Files\Microsoft Office\Office16\lync.exe FirewallRules: [{D2174263-5B24-43B2-AFB0-872C6E0CFBBB}] => C:\Program Files\Microsoft Office\Office16\UcMapi.exe FirewallRules: [{EFCEE851-1FE9-4BC5-B621-D6840A1DF5EA}] => C:\Program Files\Microsoft Office\Office16\UcMapi.exe FirewallRules: [TCP Query User{6010F804-B0B7-4DF0-AE8B-E2B46B0CBC6C}F:\programy\fifa 12\game\fifa.exe] => F:\programy\fifa 12\game\fifa.exe FirewallRules: [UDP Query User{92DE6604-EF70-48CE-A9F4-D79B5B2783AC}F:\programy\fifa 12\game\fifa.exe] => F:\programy\fifa 12\game\fifa.exe FirewallRules: [{4AFA5ACD-78AD-4A4B-8EE4-6008723EAA57}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{6C42375E-C521-48D6-9DDB-89A0696B1D07}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{0E55A1CB-5958-49AB-9D72-F35823788C2B}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{0416299C-96FB-4819-9814-03E8F0E5AD30}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [TCP Query User{5BEBC4B2-C635-44FF-A60A-427666571DC6}C:\program files (x86)\adobe muse\adobe muse.exe] => C:\program files (x86)\adobe muse\adobe muse.exe FirewallRules: [UDP Query User{07D64B10-61C9-413E-A804-CAC6B657794F}C:\program files (x86)\adobe muse\adobe muse.exe] => C:\program files (x86)\adobe muse\adobe muse.exe FirewallRules: [TCP Query User{D6128248-EE07-4D5C-B41B-CFAA16DE08C9}C:\program files (x86)\corel\dvd9\windvd.exe] => C:\program files (x86)\corel\dvd9\windvd.exe FirewallRules: [UDP Query User{E893E80C-8954-44AF-9C78-1C4405EDC0E4}C:\program files (x86)\corel\dvd9\windvd.exe] => C:\program files (x86)\corel\dvd9\windvd.exe FirewallRules: [{10247B9A-42BF-4103-A75D-D8008EA0068D}] => C:\Program Files\iTunes\iTunes.exe FirewallRules: [TCP Query User{23DCFC2E-7A90-4210-88C9-E07623394B36}C:\users\mariolka\appdata\roaming\spotify\spotify.exe] => C:\users\mariolka\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{D824C0EC-AD9E-47F3-A627-88A363B742C2}C:\users\mariolka\appdata\roaming\spotify\spotify.exe] => C:\users\mariolka\appdata\roaming\spotify\spotify.exe FirewallRules: [{47160571-4586-4FFB-8202-06A03FE1EA32}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Punkty Przywracania systemu ========================= ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Karta tunelowania Teredo firmy Microsoft Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Name: Kontroler wideo 3W Description: Kontroler wideo 3W Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Kontroler PCI Simple Communications Description: Kontroler PCI Simple Communications Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (01/05/2017 02:14:31 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Odmowa dostępu. . To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym. Operacja: Zbieranie danych modułu zapisującego Kontekst: Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220} Nazwa modułu zapisującego: System Writer Identyfikator wystąpienia modułu zapisującego: {7937debf-fae8-4411-a594-5788aeb5cf6d} Error: (01/05/2017 10:04:15 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (01/05/2017 10:02:59 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 42808889 Error: (01/05/2017 10:02:59 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 42808889 Error: (01/05/2017 10:02:57 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (01/04/2017 06:58:53 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 2574 Error: (01/04/2017 06:58:53 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 2574 Error: (01/04/2017 06:58:53 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (01/04/2017 05:21:58 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (01/04/2017 05:21:30 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 27275917 Dziennik System: ============= Error: (01/03/2017 07:01:28 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: Serwer {FE9617F6-E606-42AA-BECC-0E9CDA246D63} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (01/03/2017 02:44:46 PM) (Source: atapi) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\Ide\IdePort0. Error: (01/03/2017 02:36:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi ASPI32 z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (01/02/2017 11:39:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi ASPI32 z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (01/02/2017 07:54:47 PM) (Source: NetBT) (EventID: 4321) (User: ) Description: Nie można zarejestrować nazwy „WORKGROUP :1d” w interfejsie o adresie IP 192.168.1.104. Komputer o adresie IP 192.168.1.7 nie zezwolił na przejęcie tej nazwy przez ten komputer. Error: (12/31/2016 01:22:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi ASPI32 z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (12/31/2016 01:21:56 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 13:20:17 na ‎2016-‎12-‎31 było nieoczekiwane. Error: (12/31/2016 01:20:05 PM) (Source: atapi) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\Ide\IdePort0. Error: (12/31/2016 01:11:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi ASPI32 z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (12/31/2016 01:11:29 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 13:10:33 na ‎2016-‎12-‎31 było nieoczekiwane. CodeIntegrity: =================================== Date: 2016-06-10 23:32:51.665 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-10 23:32:51.618 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-10 23:32:42.618 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-10 23:32:42.556 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-10 23:31:16.148 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-10 23:31:00.816 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-10 23:31:00.743 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-10 23:31:00.691 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-10 23:30:29.715 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-10 23:29:49.216 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i3-2365M CPU @ 1.40GHz Procent pamięci w użyciu: 51% Całkowita pamięć fizyczna: 3979.69 MB Dostępna pamięć fizyczna: 1937.86 MB Całkowita pamięć wirtualna: 7957.57 MB Dostępna pamięć wirtualna: 5047.91 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:97.56 GB) (Free:16.47 GB) NTFS Drive e: () (Fixed) (Total:368.1 GB) (Free:276.17 GB) NTFS Drive g: (EOS_DIGITAL) (Removable) (Total:7.45 GB) (Free:5.06 GB) FAT32 ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: DC1694AF) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=97.6 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=368.1 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Size: 7.5 GB) (Disk ID: 00000000) Partition: GPT. ==================== Koniec Addition.txt ============================