Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 29-01-2017 Uruchomiony przez Agnieszka (03-02-2017 16:34:20) Uruchomiony z C:\Users\Agnieszka\Desktop\kubaWalkaZwirusem Windows 8.1 (Update) (X64) (2015-05-14 00:42:20) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-3942667054-2751492886-1119013112-500 - Administrator - Disabled) Agnieszka (S-1-5-21-3942667054-2751492886-1119013112-1001 - Administrator - Enabled) => C:\Users\Agnieszka Gość (S-1-5-21-3942667054-2751492886-1119013112-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3942667054-2751492886-1119013112-1003 - Limited - Enabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: ESET Endpoint Antivirus 6.1.2227.3 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: ESET Endpoint Antivirus 6.1.2227.3 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 1.1.0.240 (HKLM-x32\...\SIMPLE Gastronomy Centrala_is1) (Version: - ) 3.19.3.3531 (HKLM-x32\...\SIMPLE Gastronomy_is1) (Version: - ) 64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 15.023.20056 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.4.0.2710 - Adobe Systems Incorporated) Apple Application Support (32-bit) (HKLM-x32\...\{7FA9ECCF-A2DE-4DA1-BFF3-81260DBDA68F}) (Version: 4.1.2 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{691F30EB-9009-475A-B8A9-E1BF39598FD5}) (Version: 4.1.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.) Bing Bar (HKLM-x32\...\{3611CA6C-5FCA-4900-A329-6A118123CCFC}) (Version: 7.1.355.0 - Microsoft Corporation) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.56.52 - Conexant) Copy (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden Dependency Package Update (Version: 1.6.26.00 - Lenovo Inc.) Hidden Dependency Package Update (Version: 1.6.29.00 - Lenovo Inc.) Hidden Dependency Package Update (Version: 1.6.38.00 - Lenovo Inc.) Hidden Dependency Package Update (x32 Version: 1.6.32.00 - Lenovo Group Limited) Hidden Dependency Package Update (x32 Version: 1.6.38.00 - Lenovo Group Limited) Hidden Dependency Package Update (x32 Version: 1.6.38.01 - Lenovo Group Limited) Hidden Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden DisplayLink Core Software (HKLM\...\{58F4C39B-D946-4A45-A314-DEFC2AFDF397}) (Version: 7.5.54609.0 - DisplayLink Corp.) DJ_AIO_06_K209a-z_SW_Min (x32 Version: 140.0.851.000 - Hewlett-Packard) Hidden Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.5.1.1 - Dolby Laboratories Inc) Dropbox (HKU\S-1-5-21-3942667054-2751492886-1119013112-1001\...\Dropbox) (Version: 19.4.12 - Dropbox, Inc.) EPSON Printer Software (HKLM\...\EPSON Printer and Utilities) (Version: - SEIKO EPSON Corporation) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - ) ESET Endpoint Antivirus (HKLM\...\{D1F442C4-3C2E-41F6-9FB2-06381CE5BCF3}) (Version: 6.1.2227.3 - ESET, spol. s r.o.) ExpressCache (HKLM\...\{44EAE7F6-8BBF-4C3F-A573-3CD5A3C067FA}) (Version: 1.3.110.0 - Condusiv Technologies) GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.) Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.) Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP) HP Deskjet Ink Advant K209a-z All-in-One Driver Software 14.0 Rel. 6 (HKLM\...\{1415243E-E8F2-4260-8779-5B136C06BF8F}) (Version: 14.0 - HP) HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP) HP LaserJet Professional P1100-P1560-P1600 Series (HKLM\...\HP LaserJet Professional P1100-P1560-P1600 Series) (Version: - ) HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden Integrated Camera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10239 - Realtek Semiconductor Corp.) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4414 - Intel Corporation) Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology(patch version 17.0.1419.2) (HKLM\...\{302600C1-6BDF-4FD1-1405-148929CC1385}) (Version: 17.0.1405.0464 - Intel Corporation) Internet Manager (HKLM-x32\...\Internet Manager) (Version: 22.001.18.05.49 - Huawei Technologies Co.,Ltd) ISD Tablet (HKLM\...\ISD Tablet Driver) (Version: 7.1.2-8 - Wacom Technology Corp.) iTunes (HKLM\...\{FBEB98F8-64E4-4FA3-A15E-4A9F42FF962E}) (Version: 12.3.2.35 - Apple Inc.) K209a-z (x32 Version: 140.0.851.000 - Hewlett-Packard) Hidden Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 2.12 - ) Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.38.00 - Lenovo Group Limited) Lenovo HID HW Radio Driver 1.0.0.58 (HKLM\...\{E5325F32-D15A-4131-B029-4A5B7609E532}_is1) (Version: 1.0.0.58 - Lenovo) Lenovo Patch Utility (x32 Version: 1.3.2.6 - Lenovo Group Limited) Hidden Lenovo Patch Utility 64 bit (Version: 1.3.2.6 - Lenovo Group Limited) Hidden Lenovo Peer Connect SDK (HKLM\...\{75C87855-9CBB-4892-B1A9-74C73A19CACA}_is1) (Version: 1.0.0.7 - Lenovo) Lenovo Power Management Driver (Version: 1.67.12.18 - Lenovo) Hidden Lenovo QuickControl (HKLM-x32\...\{4855C42F-5197-4AAD-A50D-5066D2CC4647}) (Version: 2.20 - Lenovo Group Limited) Lenovo Settings - Camera Audio (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 4.3.30.280 - Lenovo Corporation) Lenovo Settings - Location Awareness (HKLM-x32\...\{C79D4402-E622-4922-9C02-89F9080BF081}_is1) (Version: 1.5.0.3 - Lenovo Group Limited) Lenovo Settings Dependency Package (HKLM\...\{3694BA2E-BE31-4B7E-886B-A0B559E69D4D}_is1) (Version: 2.4.0.21 - Lenovo Group Limited) Lenovo Settings Mobile Hotspot (HKLM\...\{42603F7D-B08D-436B-B0D8-3E2DEF1AFD41}_is1) (Version: 2.3.0.90 - Lenovo) Lenovo Settings Service (HKLM\...\{8C6F1EBA-17F1-4481-B688-9777E63E985F}_is1) (Version: 2.4.0.9 - Lenovo Group Limited) Lenovo Settings UMDF driver (HKLM\...\{2BDC7413-65EA-4B99-8C4B-02F11075BE6D}_is1) (Version: 1.2.0.7 - Lenovo Group Limited) Lenovo SHAREit (HKLM-x32\...\Lenovo SHAREit_is1) (Version: 2.0.4.0 - Lenovo Group Limited) Lenovo Solution Center (HKLM\...\{437CF75F-0102-4D1E-8685-E48D92A61D9B}) (Version: 2.5.002.00 - Lenovo Group Limited) Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.07.0037 - Lenovo) Lenovo Transition (HKLM\...\{660FFFA1-BC46-4B79-A3B5-E51D8964FF1F}) (Version: 1.0.002.00 - Lenovo Group Limited) Lenovo USB Graphics (HKLM\...\{E6B1FE9A-CB1E-4096-A0AF-163419CB971C}) (Version: 7.5.54614.0 - Lenovo) Lenovo USB3.0 to DVI VGA Monitor Adapter (HKLM-x32\...\{454D32AD-C149-49BE-9F2E-8C089C3D6620}) (Version: 1.07.17 - Lenovo) Lenovo User Guide (HKLM-x32\...\{13F59938-C595-479C-B479-F171AB9AF64F}) (Version: 1.0.0012.00 - Lenovo Group Limited) Lenovo Warranty Information (HKLM-x32\...\{FD4EC278-C1B1-4496-99ED-C0BE1B0AA521}) (Version: 1.0.0011.00 - Lenovo) MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden Metric Collection SDK (x32 Version: 1.1.0008.00 - Lenovo Group Limited) Hidden Metric Collection SDK 35 (x32 Version: 1.2.0001.00 - Lenovo Group Limited) Hidden Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) On Screen Display (HKLM\...\OnScreenDisplay) (Version: 8.33.00 - ) Oprogramowanie Intel® PROSet/Wireless (HKLM-x32\...\{544ecb18-5d76-44bb-ac33-8d06719e39e7}) (Version: 19.20.0 - Intel Corporation) RapidBoot HDD Accelerator (HKLM-x32\...\Fastboot) (Version: 2.1.1.0 - Lenovo) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.21260 - Realtek Semiconductor Corp.) Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP) SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.0.7.109 - Synaptics Incorporated) ThinkPad OneLink Dock (HKLM-x32\...\{8E1CACF5-2493-4950-9AD5-189903FE57E7}) (Version: 1.08.25 - Lenovo) Thinkpad USB 3.0 Ethernet Adapter Driver (HKLM-x32\...\{D8102684-7BA1-4948-88B9-535F84E6E588}) (Version: 8.8.911.2013 - Lenovo) ThinkVantage Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.79.00.03 - Lenovo) Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.52a - Ghisler Software GmbH) TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Web Components (HKLM-x32\...\{03B13AF8-9625-478A-AF0E-205337B9415A}_is1) (Version: - ) WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden Wielki słownik angielsko-polski i polsko-angielski PWN-OXFORD (HKLM-x32\...\{1035B082-201E-466E-9084-D096589C05CD}) (Version: 3.0.0 - WN PWN SA) Windows Driver Package - Intel Corporation (iaStorA) HDC (08/01/2013 12.8.0.1016) (HKLM\...\C8A921233C0C441A4E4EAABC2AB08C872FD77A6E) (Version: 08/01/2013 12.8.0.1016 - Intel Corporation) Windows Driver Package - Intel hdc (07/25/2013 9.4.0.1023) (HKLM\...\87403FF3ADDFA1770936C9436A187AC3B9FBC8DE) (Version: 07/25/2013 9.4.0.1023 - Intel) Windows Driver Package - Intel System (07/25/2013 9.4.0.1023) (HKLM\...\BDBD400472735932E15286ACD00A1DA1856D2B6D) (Version: 07/25/2013 9.4.0.1023 - Intel) Windows Driver Package - Intel System (08/21/2013 9.4.0.1027) (HKLM\...\FC58A12A405BF6933FC97269FF68C969D128F381) (Version: 08/21/2013 9.4.0.1027 - Intel) Windows Driver Package - Intel USB (07/31/2013 9.4.0.1025) (HKLM\...\A6995A77D26D0B0292A9C3B4878836D232899FE0) (Version: 07/31/2013 9.4.0.1025 - Intel) Windows Driver Package - Lenovo 1.67.04.05 (12/17/2013 1.67.04.05) (HKLM\...\68ECF461D6E85BB67AFC110D2FEBF1955C9F26B5) (Version: 12/17/2013 1.67.04.05 - Lenovo) Windows Driver Package - Synaptics (SmbDrv) System (02/25/2014 18.0.7.34) (HKLM\...\BBCACF7AB7B74509B9506D886F8848A6F9948752) (Version: 02/25/2014 18.0.7.34 - Synaptics) Windows Driver Package - Synaptics (SynTP) Mouse (02/25/2014 18.0.7.34) (HKLM\...\8204BE335A7EB81A42BA39FE41BDB3301B14C2E5) (Version: 02/25/2014 18.0.7.34 - Synaptics) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-3942667054-2751492886-1119013112-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3942667054-2751492886-1119013112-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\windows\system32\igfxEM.exe (Intel Corporation) CustomCLSID: HKU\S-1-5-21-3942667054-2751492886-1119013112-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3942667054-2751492886-1119013112-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3942667054-2751492886-1119013112-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3942667054-2751492886-1119013112-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3942667054-2751492886-1119013112-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3942667054-2751492886-1119013112-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3942667054-2751492886-1119013112-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3942667054-2751492886-1119013112-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3942667054-2751492886-1119013112-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3942667054-2751492886-1119013112-1001_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3942667054-2751492886-1119013112-1001_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3942667054-2751492886-1119013112-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {1810B84E-D68B-443F-B389-DB51F93CFD67} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.) Task: {23577DC8-59BE-43CE-9921-51BF87A10398} - System32\Tasks\Lenovo\Lenovo Transition Launcher => C:\Program Files (x86)\Lenovo\Lenovo Transition\Transition.exe [2013-09-06] () Task: {2C3417BF-31F1-449F-9F3A-58527FD83F5D} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-07-01] () Task: {496FBB7B-1865-472C-9059-31D58A2AF2A9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.) Task: {533BC458-EC0C-4E33-BBFD-A4F7A881D636} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2014-07-01] (Lenovo) Task: {5943C165-16C3-4C6F-8C89-D8A51ED56A1A} - System32\Tasks\Lenovo\Lenovo Settings Power => Rundll32.exe "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.dll",PwrMgrBkGndMonitor Task: {6620DDC6-A074-4017-9113-395CAA1E4AC7} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-01] (Lenovo) Task: {848BB208-FB53-4A7D-858B-55F0BF1EBF33} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2016-09-10] () Task: {8F3A3709-3080-474D-B90A-5FC6CB9B0577} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-07-01] () Task: {9F5C1568-7750-48DA-8C70-50463DA559DB} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\windows\system32\MRT.exe [2017-01-20] (Microsoft Corporation) Task: {A0E9B1BB-7E29-41AD-888E-06510A68BBCE} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [2015-12-14] () Task: {A10B54C0-4162-4258-8906-BACEDEA3F902} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2014-07-01] (Lenovo) Task: {A7F06DD4-D0AE-4ABB-B4A4-093FA18A2F99} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-05-30] (Lenovo) Task: {B23196C6-D409-4BF4-8AC8-3CC14C898FD9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated) Task: {C63CAE57-5F00-4D01-9DEC-0E93D0E2E7AC} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2016-09-10] () Task: {D2ACD3CE-2DAB-4D6B-8FFF-E430A5FEAC9F} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => Rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)" Task: {D5855E09-4037-4595-8B7D-4A033EEA4D3F} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3942667054-2751492886-1119013112-1001Core => C:\Users\Agnieszka\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-06] (Dropbox, Inc.) Task: {EA20FE84-E5C7-4E14-B51E-D03AE9C6EE1A} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3942667054-2751492886-1119013112-1001UA => C:\Users\Agnieszka\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-06] (Dropbox, Inc.) Task: {F20D173F-9863-47A4-AE42-35D8E5F631C8} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.) Task: {F45AB6C0-F97F-4C14-8AFE-A0E25AF3E51A} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-07-01] (Lenovo) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3942667054-2751492886-1119013112-1001Core.job => C:\Users\Agnieszka\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3942667054-2751492886-1119013112-1001UA.job => C:\Users\Agnieszka\AppData\Local\Dropbox\Update\DropboxUpdate.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2015-06-12 16:24 - 2012-08-31 14:03 - 00288768 _____ () C:\windows\System32\HP1100LM.DLL 2015-06-12 16:24 - 2012-08-31 15:02 - 00074240 _____ () C:\windows\system32\spool\PRTPROCS\x64\HP1100PP.DLL 2015-12-17 18:38 - 2015-12-17 18:38 - 00085800 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-12-17 18:38 - 2015-12-17 18:38 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2015-06-09 20:56 - 2016-04-14 06:50 - 00110080 ____N () C:\Program Files (x86)\ThinkPad\Utilities\PL\PWMRT64V.DLL 2013-09-06 02:28 - 2013-09-06 02:28 - 00292200 _____ () C:\Program Files (x86)\Lenovo\Lenovo Transition\Transition.exe 2011-03-14 16:27 - 2011-03-14 16:27 - 00346976 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe 2015-05-19 20:59 - 2015-05-19 20:58 - 00224096 _____ () C:\ProgramData\Internet Manager\OnlineUpdate\ouc.exe 2013-09-06 02:28 - 2013-09-06 02:28 - 00106856 _____ () C:\Program Files (x86)\Lenovo\Lenovo Transition\TransitionServer.exe 2014-12-21 19:33 - 2016-04-14 06:50 - 00107008 ____N () C:\Program Files (x86)\ThinkPad\Utilities\US\PWMRT64V.dll 2015-06-09 20:56 - 2016-04-14 06:50 - 00110080 ____N () C:\Program Files (x86)\ThinkPad\Utilities\PL\PWMRT64V.dll 2014-12-21 19:00 - 2013-09-18 19:25 - 01185080 _____ () C:\Program Files\Tablet\ISD\libxml2.dll 2016-10-26 11:06 - 2010-10-26 11:40 - 00049056 _____ () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe 2014-12-21 18:56 - 2013-10-29 01:48 - 00915968 ____N () C:\Program Files (x86)\Lenovo\OneLink Dock\onelinkpromgn.exe 2016-10-26 09:57 - 2016-09-10 11:13 - 00028544 _____ () C:\Program Files (x86)\Lenovo\System Update\SUService.exe 2014-12-21 19:33 - 2015-05-12 14:14 - 00469720 _____ () C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe 2014-12-21 19:33 - 2015-05-12 14:14 - 00013016 _____ () C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe 2014-12-21 19:28 - 2014-12-21 19:28 - 00033520 ____N () C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBServiceps.dll 2013-09-06 02:28 - 2013-09-06 02:28 - 00097128 _____ () C:\Program Files (x86)\Lenovo\Lenovo Transition\Config\1366\TransitionLib.dll 2013-09-06 02:28 - 2013-09-06 02:28 - 00101224 _____ () C:\Program Files (x86)\Lenovo\Lenovo Transition\LUpdatePackage.dll 2015-05-19 20:59 - 2015-05-19 20:58 - 00011362 _____ () C:\ProgramData\Internet Manager\OnlineUpdate\mingwm10.dll 2015-05-19 20:59 - 2015-05-19 20:58 - 00043008 _____ () C:\ProgramData\Internet Manager\OnlineUpdate\libgcc_s_dw2-1.dll 2015-05-19 20:59 - 2015-05-19 20:58 - 02415104 _____ () C:\ProgramData\Internet Manager\OnlineUpdate\QtCore4.dll 2015-05-19 20:59 - 2015-05-19 20:58 - 01148416 _____ () C:\ProgramData\Internet Manager\OnlineUpdate\QtNetwork4.dll 2016-08-02 13:28 - 2016-08-02 13:28 - 00797696 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\Windows.Networking\e1a2f3f274995f1f847c00f962657943\Windows.Networking.ni.dll 2015-05-14 10:34 - 2015-05-14 10:34 - 01282048 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\Windows.Devices\bf5509cf3a0d2e3afbd0c33e9153ecbd\Windows.Devices.ni.dll 2016-08-02 12:51 - 2016-08-02 12:51 - 00228864 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\Windows.Foundation\f7e726805e56676bd7b8662a3d842b0e\Windows.Foundation.ni.dll 2017-02-03 09:06 - 2017-01-30 15:12 - 00801600 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\dropbox_watchdog.dll 2017-02-03 09:07 - 2017-01-14 00:53 - 00035792 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\_multiprocessing.pyd 2017-02-03 09:07 - 2017-01-14 00:53 - 00100296 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\_ctypes.pyd 2017-02-03 09:07 - 2017-01-14 00:53 - 00018888 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\select.pyd 2017-02-03 09:07 - 2017-01-30 15:14 - 00019776 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\tornado.speedups.pyd 2017-02-03 09:07 - 2017-01-14 00:53 - 00694224 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\unicodedata.pyd 2017-02-03 09:06 - 2017-01-30 15:14 - 00020824 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.pyd 2017-02-03 09:07 - 2017-01-14 00:54 - 00123856 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\_cffi_backend.pyd 2017-02-03 09:06 - 2017-01-30 15:14 - 01682768 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.pyd 2017-02-03 09:06 - 2017-01-30 15:14 - 00020816 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.pyd 2017-02-03 09:06 - 2017-01-14 00:53 - 00145864 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\pyexpat.pyd 2017-02-03 09:06 - 2017-01-14 00:54 - 00019408 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\faulthandler.pyd 2017-02-03 09:06 - 2017-01-14 00:53 - 00116688 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\pywintypes27.dll 2017-02-03 09:07 - 2017-01-14 00:56 - 00105928 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\win32api.pyd 2017-02-03 09:07 - 2017-01-30 15:14 - 00022864 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\winffi.crt.compiled._winffi_crt.pyd 2017-02-03 09:06 - 2017-01-30 15:14 - 00052544 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.pyd 2017-02-03 09:06 - 2017-01-30 15:14 - 00038712 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\fastpath.pyd 2017-02-03 09:06 - 2017-01-14 00:53 - 00392144 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\pythoncom27.dll 2017-02-03 09:06 - 2017-01-14 00:56 - 00020936 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\mmapfile.pyd 2017-02-03 09:07 - 2017-01-14 00:56 - 00024528 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\win32event.pyd 2017-02-03 09:07 - 2017-01-14 00:57 - 00116176 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\win32security.pyd 2017-02-03 09:07 - 2017-01-30 15:14 - 00381760 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\win32com.shell.shell.pyd 2017-02-03 09:07 - 2017-01-14 00:56 - 00124880 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\win32file.pyd 2017-02-03 09:07 - 2017-01-30 15:14 - 00026456 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\winffi.kernel32.compiled._winffi_kernel32.pyd 2017-02-03 09:07 - 2017-01-14 00:56 - 00024016 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\win32clipboard.pyd 2017-02-03 09:07 - 2017-01-14 00:56 - 00175560 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\win32gui.pyd 2017-02-03 09:07 - 2017-01-14 00:57 - 00030160 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\win32pipe.pyd 2017-02-03 09:07 - 2017-01-14 00:57 - 00043472 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\win32process.pyd 2017-02-03 09:07 - 2017-01-14 00:57 - 00048592 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\win32service.pyd 2017-02-03 09:07 - 2017-01-14 00:56 - 00057808 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\win32evtlog.pyd 2017-02-03 09:07 - 2017-01-14 00:57 - 00024016 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\win32profile.pyd 2017-02-03 09:06 - 2017-01-30 15:14 - 00246608 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\breakpad.client.windows.handler.pyd 2017-02-03 09:06 - 2017-01-30 15:14 - 00027488 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\dropbox.infinite.win.compiled._driverinstallation.pyd 2017-02-03 09:07 - 2017-01-14 00:55 - 00241104 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\_jpegtran.pyd 2017-02-03 09:06 - 2017-01-30 15:14 - 00022336 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.pyd 2017-02-03 09:07 - 2017-01-14 00:57 - 00028616 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\win32ts.pyd 2017-02-03 09:06 - 2017-01-30 15:14 - 01826104 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.pyd 2017-02-03 09:07 - 2017-01-14 00:54 - 00083912 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\sip.pyd 2017-02-03 09:06 - 2017-01-30 15:14 - 01972536 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.pyd 2017-02-03 09:06 - 2017-01-30 15:14 - 03928896 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.pyd 2017-02-03 09:06 - 2017-01-30 15:14 - 00531264 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.pyd 2017-02-03 09:07 - 2017-01-30 15:14 - 00025432 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.pyd 2017-02-03 09:06 - 2017-01-30 15:14 - 00133432 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.pyd 2017-02-03 09:06 - 2017-01-30 15:14 - 00224064 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.pyd 2017-02-03 09:06 - 2017-01-30 15:14 - 00207680 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.pyd 2017-02-03 09:07 - 2017-01-30 15:14 - 00021840 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\winffi.user32.compiled._winffi_user32.pyd 2017-02-03 09:07 - 2017-01-30 15:14 - 00022872 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd 2017-02-03 09:07 - 2017-01-30 15:14 - 00021848 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\winffi.winerror.compiled._winffi_winerror.pyd 2017-02-03 09:07 - 2017-01-30 15:14 - 00022872 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\winffi.wininet.compiled._winffi_wininet.pyd 2017-02-03 09:07 - 2017-01-14 00:57 - 00350152 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\winxpgui.pyd 2017-02-03 09:06 - 2017-01-30 15:14 - 00103232 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\PyQt5.QtWinExtras.pyd 2017-02-03 09:07 - 2017-01-30 15:14 - 00023896 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\winverifysignature.compiled._VerifySignature.pyd 2017-02-03 09:06 - 2017-01-30 15:14 - 00025936 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.pyd 2017-02-03 09:06 - 2017-01-14 00:51 - 00036296 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\librsync.dll 2017-02-03 09:06 - 2017-01-30 15:14 - 00084288 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL 2017-02-03 09:06 - 2017-01-14 01:02 - 00017864 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\libEGL.dll 2017-02-03 09:06 - 2017-01-14 01:02 - 01631184 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\libGLESv2.dll 2017-02-03 09:06 - 2017-01-30 15:14 - 00042816 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\PyQt5.QtWebChannel.pyd 2017-02-03 09:06 - 2017-01-30 15:14 - 00171336 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineWidgets.pyd 2017-02-03 09:06 - 2017-01-30 15:14 - 00357688 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.pyd 2017-02-03 09:07 - 2017-01-14 00:57 - 00060880 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\win32print.pyd 2017-02-03 09:07 - 2017-01-30 15:14 - 00026456 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\winffi.winhttp.compiled._winffi_winhttp.pyd 2017-02-03 09:06 - 2017-01-30 15:14 - 00546104 _____ () C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.pyd 2014-12-21 18:54 - 2013-09-16 20:19 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2015-12-14 15:28 - 2015-12-14 15:28 - 00078808 _____ () C:\Program Files\Lenovo\iMController\AutoUpdate.exe 2015-12-14 15:28 - 2015-12-14 15:28 - 00020952 _____ () C:\Program Files\Lenovo\iMController\LegacyFeatures.exe 2015-12-14 15:28 - 2015-12-14 15:28 - 00026584 _____ () C:\Program Files\Lenovo\iMController\PluginCommunication.exe 2016-08-02 12:51 - 2016-08-02 12:51 - 01130496 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\Windows.App640a3541#\6e37f358bf8363dad51e2333292d61a9\Windows.ApplicationModel.ni.dll 2016-08-02 13:28 - 2016-08-02 13:28 - 00808448 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\Windows.Storage\f0a2c10499402eff632a7a7df0b4afef\Windows.Storage.ni.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\Users\Agnieszka\Desktop\SAMcatering_2015.pdf:com.dropbox.attributes [168] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-3942667054-2751492886-1119013112-1001\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\Lenovo\RedBurst.jpg DNS Servers: 37.8.214.2 - 31.11.202.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja wyłączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [vm-monitoring-nb-session] => LPort=139 FirewallRules: [{640FCC9F-A17F-4243-9489-CDCC696D7010}] => C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe FirewallRules: [{6E66457B-0EAC-4EA1-A2B7-B0D9673F26A9}] => C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe FirewallRules: [{5933ACC2-DDE7-42ED-9C99-E1CFD8704ED8}] => C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe FirewallRules: [{616F88CD-A26F-4776-B3AD-72989670E1A9}] => C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe FirewallRules: [{DDF60713-D1A6-4FC5-B556-74B4A816B269}] => C:\Program Files (x86)\Maxthon\Bin\MxUp.exe FirewallRules: [{39A989D7-BAEC-4AC4-97F0-C9C7F39DE66E}] => C:\Program Files (x86)\Maxthon\Bin\MxUp.exe FirewallRules: [{DCE89729-235D-4A9C-ABB6-D377AEA5E6AF}] => C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe FirewallRules: [{A5D3151F-7794-40F6-9BF0-D67C5B97E1FE}] => C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe FirewallRules: [{783708F5-561B-4152-8089-92EDFFC19C4A}] => C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{1F31DD34-A7D0-4218-97F5-D0E3B3E2D558}] => C:\Users\Agnieszka\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [TCP Query User{044AC2D9-FEC1-422B-8CCC-ED3EE046490C}C:\users\agnieszka\appdata\roaming\dropbox\bin\dropbox.exe] => C:\users\agnieszka\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [UDP Query User{708BFFDB-92A3-4B62-B0B0-0C3A5EAA3F62}C:\users\agnieszka\appdata\roaming\dropbox\bin\dropbox.exe] => C:\users\agnieszka\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [{FC9DEDF0-E165-4642-9716-B22C2738F00A}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe FirewallRules: [{4E7D75A5-E885-4DDA-9CEA-A9E6F556DF72}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe FirewallRules: [{D3E25ED4-21E9-46B5-A510-CA9D88A364D7}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe FirewallRules: [{7440F1C5-626D-46C1-8FA3-A566795EAD80}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe FirewallRules: [{56E5AED7-0288-4E6B-91AD-E4E44CF07C60}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe FirewallRules: [{53925AFD-466C-4534-9856-839519C260CF}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe FirewallRules: [{78950DC7-6F46-4AAD-B227-3D762560DF18}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe FirewallRules: [{CCF96341-BD04-4695-BF6D-0FF9DD7916D3}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe FirewallRules: [{585E1FB2-341B-49B4-9C46-5676A6F65639}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe FirewallRules: [{5298B814-3116-4427-A81F-E6475B24540C}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe FirewallRules: [{76C8E28C-EC14-4F7C-863E-62995816FA44}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe FirewallRules: [{BD55CF42-1600-46AA-B311-0D976B7FBFD9}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe FirewallRules: [{F748CE12-2A40-4F2E-B955-1DBC3E10080E}] => C:\Program Files (x86)\HP\hp software update\hpwucli.exe FirewallRules: [{764B07D0-3614-4B20-B37F-FEE0F1ADA923}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{BE26E60F-C4F1-4780-98E3-C9366E9DD030}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{0DA8E98E-8B14-4DFA-8BD8-804CD4D9D1BA}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{66902EE2-7CAB-4FA2-B680-4EE34F1A518B}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{A2DE2BA2-4E65-4432-A5B8-50E0DE802DF8}] => C:\Program Files\iTunes\iTunes.exe FirewallRules: [{C698A047-9FAA-4A4E-911C-2EF6A1E72DCD}] => C:\ProgramData\Google\update\GoogleUpdate.exe FirewallRules: [{A451E3E0-FE83-4E71-BC48-AD110277C783}] => C:\Program Files (x86)\Lenovo\System Update\uncserver.exe FirewallRules: [{3C6695A9-CB37-4F24-80F5-74678CCADEB5}] => C:\Program Files (x86)\Lenovo\System Update\uncserver.exe FirewallRules: [{09988716-3255-4F27-9E9D-8AF105903E54}] => C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{72C17BF0-F523-4BDB-A25A-DB7213185E5C}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Punkty Przywracania systemu ========================= 18-01-2017 13:50:02 Windows Update 29-01-2017 16:11:21 Zaplanowany punkt kontrolny 31-01-2017 21:41:08 Restore Point Created by FRST 03-02-2017 16:22:15 Restore Point Created by FRST ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (02/03/2017 04:22:14 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Odmowa dostępu. . To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym. Operacja: Zbieranie danych modułu zapisującego Kontekst: Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220} Nazwa modułu zapisującego: System Writer Identyfikator wystąpienia modułu zapisującego: {bf538a45-7de7-44ae-ab3a-8e82c83de277} Error: (02/03/2017 12:00:29 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: EXCEL.EXE, wersja: 12.0.6762.5000, sygnatura czasowa: 0x582bce08 Nazwa modułu powodującego błąd: EXCEL.EXE, wersja: 12.0.6762.5000, sygnatura czasowa: 0x582bce08 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000291a6 Identyfikator procesu powodującego błąd: 0xb94 Godzina uruchomienia aplikacji powodującej błąd: 0x01d27dfc4fb55dd8 Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE Ścieżka modułu powodującego błąd: C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE Identyfikator raportu: f9287eed-e9ff-11e6-8362-4851b774291b Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (02/03/2017 11:59:55 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: EXCEL.EXE, wersja: 12.0.6762.5000, sygnatura czasowa: 0x582bce08 Nazwa modułu powodującego błąd: EXCEL.EXE, wersja: 12.0.6762.5000, sygnatura czasowa: 0x582bce08 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0002643c Identyfikator procesu powodującego błąd: 0xb94 Godzina uruchomienia aplikacji powodującej błąd: 0x01d27dfc4fb55dd8 Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE Ścieżka modułu powodującego błąd: C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE Identyfikator raportu: e4c3bf79-e9ff-11e6-8362-4851b774291b Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (02/03/2017 09:03:20 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: Z powodu wystąpienia problemu dane Programu poprawy jakości obsługi klienta nie zostały wysłane do firmy Microsoft. (Błąd 80070005). Error: (02/02/2017 10:18:26 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 13188 Error: (02/02/2017 10:18:26 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 13188 Error: (02/02/2017 10:18:26 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (02/01/2017 03:45:30 PM) (Source: Desktop Window Manager) (EventID: 9020) (User: ) Description: Menedżer okien pulpitu napotkał błąd krytyczny (0x8898008d). Error: (02/01/2017 09:41:39 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: Z powodu wystąpienia problemu dane Programu poprawy jakości obsługi klienta nie zostały wysłane do firmy Microsoft. (Błąd 80070005). Error: (01/31/2017 09:41:07 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Odmowa dostępu. . To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym. Operacja: Zbieranie danych modułu zapisującego Kontekst: Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220} Nazwa modułu zapisującego: System Writer Identyfikator wystąpienia modułu zapisującego: {b5830996-0fcb-46ca-b328-c9589f2fb5a2} Dziennik System: ============= Error: (02/03/2017 04:30:44 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Lenovo QuickControl Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (02/03/2017 04:30:31 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Internet Manager. OUC z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (02/03/2017 04:30:31 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Internet Manager. OUC. Error: (02/03/2017 04:29:41 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: Nastąpiło nieoczekiwane zatrzymanie modułu rozszerzalności sieci WLAN. Ścieżka modułu: C:\windows\System32\IWMSSvc.dll Error: (02/03/2017 04:29:41 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: Nastąpiło nieoczekiwane zatrzymanie modułu rozszerzalności sieci WLAN. Ścieżka modułu: C:\windows\System32\IWMSSvc.dll Error: (02/03/2017 04:29:40 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: Nastąpiło nieoczekiwane zatrzymanie modułu rozszerzalności sieci WLAN. Ścieżka modułu: C:\windows\System32\IWMSSvc.dll Error: (02/03/2017 04:29:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Lenovo Settings Power Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (02/03/2017 04:29:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Usługa udostępniania w sieci programu Windows Media Player niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (02/03/2017 04:29:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa LocationTaskManager niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (02/03/2017 04:29:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa lnvDiscoveryWinSvc niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. CodeIntegrity: =================================== Date: 2017-01-30 20:45:32.556 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Elex-tech\YAC\iSafeSrvMon64.dll that did not meet the Windows signing level requirements. Date: 2017-01-30 15:34:59.873 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Elex-tech\YAC\iSafeSrvMon64.dll that did not meet the Windows signing level requirements. Date: 2017-01-30 14:51:58.827 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Elex-tech\YAC\iSafeSrvMon64.dll that did not meet the Windows signing level requirements. Date: 2017-01-30 14:44:01.173 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Elex-tech\YAC\iSafeSrvMon64.dll that did not meet the Windows signing level requirements. Date: 2017-01-30 14:18:26.253 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Elex-tech\YAC\iSafeSrvMon64.dll that did not meet the Windows signing level requirements. Date: 2017-01-30 13:04:49.978 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Elex-tech\YAC\iSafeSrvMon64.dll that did not meet the Windows signing level requirements. Date: 2017-01-30 13:04:49.734 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Elex-tech\YAC\iSafeSrvMon64.dll that did not meet the Windows signing level requirements. Date: 2017-01-30 12:36:26.111 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Elex-tech\YAC\iSafeSrvMon64.dll that did not meet the Windows signing level requirements. Date: 2017-01-30 12:09:12.190 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Elex-tech\YAC\iSafeSrvMon64.dll that did not meet the Windows signing level requirements. Date: 2017-01-30 12:02:39.939 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Elex-tech\YAC\iSafeSrvMon64.dll that did not meet the Windows signing level requirements. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i3-4010U CPU @ 1.70GHz Procent pamięci w użyciu: 60% Całkowita pamięć fizyczna: 4006.86 MB Dostępna pamięć fizyczna: 1594.84 MB Całkowita pamięć wirtualna: 6694.86 MB Dostępna pamięć wirtualna: 3921.93 MB ==================== Dyski ================================ Drive c: (Windows8_OS) (Fixed) (Total:450.88 GB) (Free:337.29 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive d: () (Removable) (Total:29.11 GB) (Free:14.63 GB) FAT32 ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: 658E0480) Partition: GPT. ======================================================== Disk: 1 (Size: 14.9 GB) (Disk ID: 885B093E) Partition: GPT. ======================================================== Disk: 2 (Size: 29.1 GB) (Disk ID: 1FE076E6) Partition 1: (Active) - (Size=29.1 GB) - (Type=0C) ==================== Koniec Addition.txt ============================