Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x86) Wersja: 15-03-2017 Uruchomiony przez HP-reg (09-04-2017 20:12:42) Uruchomiony z d:\Temp\pobrane z netu Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) (2014-07-07 18:02:01) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-1801674531-507921405-1177238915-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Administrator.HP Gość (S-1-5-21-1801674531-507921405-1177238915-501 - Limited - Enabled) HP-reg (S-1-5-21-1801674531-507921405-1177238915-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\HP-reg Pomocnik (S-1-5-21-1801674531-507921405-1177238915-1000 - Limited - Disabled) SUPPORT_388945a0 (S-1-5-21-1801674531-507921405-1177238915-1002 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Malwarebytes (Enabled - Up to date) {D4AC7077-9720-47B0-8B38-DFAF3AA21DB6} AV: Avast Antivirus (Enabled - Up to date) {7591db91-41f0-48a3-b128-1a293fd8233d} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 1.1.3 (HKLM\...\{A4046FE1-986B-4463-B4DD-CFA473A7056B}_is1) (Version: - PDFZilla) ACID Music Studio 8.0 (HKLM\...\{E97C937C-AE21-453D-86A0-A231507543D1}) (Version: 8.0.178 - Sony) ActMask Document Converter Pro (HKLM\...\ActMask Document Converter Pro_is1) (Version: 3.3 - ActMask Co.,Ltd) Adobe Audition 2.0 (HKLM\...\Adobe Audition 2.0) (Version: 2.0 - Adobe Systems Incorporated) Adobe Flash Player 25 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 25.0.0.127 - Adobe Systems Incorporated) Adobe Flash Player 25 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 25.0.0.127 - Adobe Systems Incorporated) Adobe Reader XI (11.0.08) - Polish (HKLM\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated) Aktualizacja dla systemu Windows XP (KB2808679) (HKLM\...\KB2808679) (Version: 1 - Microsoft Corporation) Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB2909210) (HKLM\...\KB2909210-IE8) (Version: 1 - Microsoft Corporation) Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB2936068) (HKLM\...\KB2936068-IE8) (Version: 1 - Microsoft Corporation) Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB2964358) (HKLM\...\KB2964358-IE8) (Version: 1 - Microsoft Corporation) Aktualizacja zabezpieczeń dla systemu Windows XP (KB2868038) (HKLM\...\KB2868038) (Version: 1 - Microsoft Corporation) Alesis USB Audio driver (HKLM\...\USB_AUDIO_DEusb-audio.deAlesis) (Version: - ) AmpliTube LE (HKLM\...\{216EAAD9-D733-4141-BEAF-2C0B6F6B1D04}) (Version: 1.1.0 - ) ARIA Engine v1.6.0.6 (HKLM\...\ARIA Engine_is1) (Version: v1.6.0.6 - Plogue Art et Technologie, Inc) Atmosphere Deluxe v7.1 (HKLM\...\Atmosphere Deluxe_is1) (Version: - Vectormedia Software) Audacity 2.1.1 (HKLM\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team) Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 17.3.2291 - AVAST Software) AVG PC Tuneup 2011 (HKLM\...\{50316C0A-CC2A-460A-9EA5-F486E54AC17D}_is1) (Version: 10.0.0.24 - AVG) Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.) Bullzip PDF Printer 10.10.0.2307 (HKLM\...\Bullzip PDF Printer_is1) (Version: 10.10.0.2307 - Bullzip) Cakewalk Audio FX Pack 1 (HKLM\...\Cakewalk Audio FX Pack 1) (Version: - ) Cakewalk Audio FX Pack 2 (HKLM\...\Cakewalk Audio FX Pack 2) (Version: - ) Cakewalk VST Adapter 4 (HKLM\...\Cakewalk VST Adapter 4) (Version: - ) Citrix Online Launcher (HKLM\...\{09DA5EE2-7E46-4DC4-96F9-BFEE50D40659}) (Version: 1.0.408 - Citrix) Corel Applications (HKLM\...\Corel Applications) (Version: - ) CrystalDiskInfo 7.0.5 Shizuku Edition (HKLM\...\CrystalDiskInfo_is1) (Version: 7.0.5 - Crystal Dew World) DreamStation DXi2 (HKLM\...\DreamStation DXi2) (Version: - ) Eassos PartitionGuru 4.9.1 (HKLM\...\{FC4FF5F4-2265-4E18-8BBC-12CBA9794388}_is1) (Version: - Eassos Co., Ltd.) eLicenser Control (HKLM\...\eLicenser Control) (Version: 6.7.1.8151 - Steinberg Media Technologies GmbH) E-MU USB Audio (HKLM\...\{1C99893D-BC98-4456-AA3E-B67AB42301A6}) (Version: 1.0 - ) Eusing Free Registry Defrag (HKLM\...\Eusing Free Registry Defrag) (Version: - ) Eusing Launcher (HKLM\...\Eusing Launcher) (Version: Eusing Software - Eusing Software) Finale 2000 (HKLM\...\Finale) (Version: - ) Flashtool (HKLM\...\Flashtool) (Version: 0.9.19.8 - Androxyde) Freelancer Desktop App version 1.2.0 (HKLM\...\Freelancer Desktop App_is1) (Version: 1.2.0 - Freelancer Technology Pty Limited) Garritan ARIA Player v1.606 (HKLM\...\__ARIA_1012___is1) (Version: v1.6.0.6 - Garritan) Google Chrome (HKLM\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.) Google Earth (HKLM\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google) Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (Version: 1.3.32.7 - Google Inc.) Hidden GoToMeeting 7.25.0.5742 (HKU\S-1-5-21-1801674531-507921405-1177238915-1003\...\GoToMeeting) (Version: 7.25.0.5742 - CitrixOnline) Guitar Pro 4.0 (HKLM\...\Guitar Pro 4.0) (Version: - ) HijackThis 1.99.1 (HKLM\...\HijackThis) (Version: 1.99.1 - Soeperman Enterprises Ltd.) iriver Music Manager (HKLM\...\{072D2077-9E22-4F7F-B817-A92CA6CCC843}) (Version: 2.00.000 - ) iriver Music Manager (HKLM\...\{5986F167-4C6C-4D03-9706-E1189B2A1462}) (Version: 3.2.0.0 - ) iZotope Audio Enhancer (HKLM\...\iZotope Audio Enhancer_is1) (Version: 1.00 - iZotope, Inc.) iZotope Nectar 2 Production Suite (HKLM\...\iZotope Nectar 2 Production Suite_is1) (Version: 2.04 - iZotope, Inc.) iZotope Ozone 6 Advanced (HKLM\...\iZotope Ozone 6 Advanced_is1) (Version: 6.01 - iZotope, Inc.) iZotope RX 4 (HKLM\...\iZotope RX 4_is1) (Version: 4.01 - iZotope, Inc.) Korg Legacy Collection v1.1.9 (HKLM\...\Korg Legacy Collection v1.1.9) (Version: - ) Live 6.0.10 (HKLM\...\Live 6.0.10) (Version: - ) Malwarebytes (wersja 3.0.6.1469) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes) McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.334.1 - McAfee, Inc.) Melodyne Runtime 4.1 (x86) (HKLM\...\{02875304-0DD9-465A-986E-A3438ACDC623}) (Version: 1.0.1 - Celemony Software GmbH ) Melodyne singletrack (HKLM\...\{16DF894D-FC3F-4B87-908D-671E201CD7A8}) (Version: 2.01.0202 - Celemony Software GmbH) MelodyneEssential 1.5 (HKLM\...\{9A17B0B6-AD89-4321-99E6-09D9ABFA254D}) (Version: 1.05.0300 - Celemony Software GmbH) Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation) Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - PLK (HKLM\...\{2AFF2951-86B1-3C53-B34D-B440F11E7D0A}) (Version: 2.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - PLK (HKLM\...\{5A0DDC27-88E5-3CAD-BC3D-28FFD05CA6B9}) (Version: 3.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft WinUsb 2.0 (HKLM\...\winusb0200) (Version: - Microsoft Corporation) MIDI-OX (HKLM\...\{A6457851-5EA9-45B0-AF1D-D2A0A4781CFB}) (Version: 7.02.372 - MIDIOX Computing) MixMeister BPM Analyzer 1.0 (HKLM\...\MixMeister BPM Analyzer_is1) (Version: - MixMeister Technology LLC) Mozilla Firefox 51.0.1 (x86 pl) (HKLM\...\Mozilla Firefox 51.0.1 (x86 pl)) (Version: 51.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 38.5.0 - Mozilla) Mozilla Thunderbird 38.5.0 (x86 pl) (HKLM\...\Mozilla Thunderbird 38.5.0 (x86 pl)) (Version: 38.5.0 - Mozilla) MuseScore 1.3 (HKLM\...\MuseScore) (Version: 1.3.0 - Werner Schweer and Others) MuseScore 2 (HKLM\...\{D0969A82-E79E-45D9-95D2-B2824880F780}) (Version: 2.0.2 - Werner Schweer and Others) Nero 7 Ultra Edition (HKLM\...\{2D7D9D86-923A-41A8-919F-437332AB1045}) (Version: 7.02.2760 - Nero AG) Notepad++ (HKLM\...\Notepad++) (Version: 7 - Notepad++ Team) NVIDIA nView 136.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 136.53 - NVIDIA Corporation) NVIDIA Sterownik graficzny 309.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 309.00 - NVIDIA Corporation) OpenOffice 4.1.2 (HKLM\...\{E0ED9630-38E3-418F-A615-A9B2B5758BE5}) (Version: 4.12.9782 - Apache Software Foundation) Opera Stable 36.0.2130.80 (HKLM\...\Opera 36.0.2130.80) (Version: 36.0.2130.80 - Opera Software) PACE License Support Win32 (HKLM\...\InstallShield_{3165EA9B-36CC-499B-96FF-66FC30E10EF8}) (Version: 2.4.7.0852 - PACE Anti-Piracy, Inc.) PACE License Support Win32 (Version: 2.4.7.0852 - PACE Anti-Piracy, Inc.) Hidden Pakiet językowy programu Microsoft .NET Framework 3.5 z dodatkiem SP1 — PLK (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - plk) (Version: - Microsoft Corporation) Pakiet podstawowego dostawcy usług kryptograficznych kart inteligentnych Microsoft (HKLM\...\KB909520) (Version: - Microsoft Corporation) Panel sterowania NVIDIA 309.00 (Version: 309.00 - NVIDIA Corporation) Hidden Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Poprawka dla systemu Windows XP (KB932716-v2) (HKLM\...\KB932716-v2) (Version: 2 - Microsoft Corporation) Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.5958 - Realtek Semiconductor Corp.) Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group) RogueKiller (wersja 12.8.0.0) (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.8.0.0 - Adlice Software) SafeZone Stable 1.48.2066.101 (Version: 1.48.2066.101 - Avast Software) Hidden SafeZone Stable 1.48.2066.120 (Version: 1.48.2066.120 - Avast Software) Hidden Samsung Universal Print Driver 2 (HKLM\...\Samsung Universal Print Driver 2) (Version: 2.50.02.00 - Samsung Electronics Co., Ltd.) shortcircuit˛ (HKLM\...\shortcircuit2) (Version: - ) SideKick4.3.2 (HKLM\...\SideKick432 ID_mp1) (Version: - Twisted Lemon) Skype™ 7.31 (HKLM\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.31.104 - Skype Technologies S.A.) SmartScore X2 Midi Edition (HKLM\...\{CE8CA930-27D5-4FCB-A3B9-8A811408297F}) (Version: 10.5.8 - Musitek) SONAR LE (HKLM\...\SONAR LE) (Version: - ) Sony Mobile Update Engine (HKLM\...\Update Engine) (Version: 2.15.15.201510291138 - Sony Mobile Communications Inc.) Sony PC Companion 2.10.303 (HKLM\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.303 - Sony) Sony Preset Manager 2.0 (HKLM\...\{DB941B05-96AB-4AC9-B4CE-B428B9E049F3}) (Version: 2.0.93 - Sony) Sony Vocal Eraser (HKLM\...\Sony Vocal Eraser_is1) (Version: 1.00 - iZotope, Inc.) Sophos Virus Removal Tool (HKLM\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.6 - Sophos Limited) Sound Forge Audio Studio 10.0 (HKLM\...\{BC208D90-4643-11E3-987B-F04DA23A5C58}) (Version: 10.0.252 - Sony) SPLView 1.0.2.3 (HKLM\...\SPLView_is1) (Version: 1.0.2.3 - LVBPrint) Steinberg Cubase LE (HKLM\...\Steinberg Cubase LE) (Version: - ) Steinberg Cubase LE 5 (HKLM\...\{50C78780-1A54-4A5C-B3A7-FF828C62C5C2}) (Version: 5.1.2 - Steinberg Media Technologies GmbH) Steinberg Cubase Studio 4 (HKLM\...\{A5FB086B-B602-4452-8FE9-DF6BFBCE3D09}) (Version: 4.1.1.749 - Steinberg Media Technologies GmbH) Steinberg Cubase VST32 (HKLM\...\Steinberg Cubase VST32) (Version: - ) Steinberg HALionOne (HKLM\...\{E70E7159-93B1-470D-9FBD-D8E9EF34B538}) (Version: 1.1.0.457 - Steinberg Media Technologies GmbH) Steinberg HALionOne Essential Set (HKLM\...\{C04D5974-F528-4347-A494-EAF56124CC1A}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH) Steinberg HALionOne GM Drum Set (HKLM\...\{AC997F93-0757-4ED4-A701-F40C2D654D09}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH) Steinberg HALionOne GM Set (HKLM\...\{F057965A-D974-4C64-ADB1-4381CD4B8956}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH) Steinberg HALionOne Studio Drum Set (HKLM\...\{865D9ED1-EAC2-436D-AFA7-0B750EB5AAAB}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH) Steinberg HALionOne Studio Set (HKLM\...\{D23CBFDA-C46B-4920-BA70-FC7878A3F05A}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH) Steinberg Mastering Edition v1.0 (HKLM\...\Mastering Edition) (Version: - ) Studio Devil BVC 1.1 (HKLM\...\Studio Devil BVC - Acid Music Studio Edition_is1) (Version: - StudioDevil) TL-WN321G Wireless Utility (HKLM\...\{1FF78023-EFA4-491F-9F5A-284DE97AA326}) (Version: 1.0.3.0 - TP-LINK) TruePianos Amber Lite (ACID Music Studio) 1.5.0 (HKLM\...\TruePianos Amber Lite (ACID Music Studio)_is1) (Version: - 4Front Technologies) Tweaking.com - Windows Repair (HKLM\...\Tweaking.com - Windows Repair) (Version: 3.4.2 - Tweaking.com) TX16Wx Software Sampler 2 (x86) (HKLM\...\{15052FBF-6436-4BAB-AC9D-D138F75E6B7A}) (Version: 2.401.3763.2512 - CWITEC) vanBasco's Karaoke Player (HKLM\...\VMidi) (Version: - ) Vegas Movie Studio HD 11.0 (HKLM\...\{74E5BE40-C54E-11E1-ABC3-F04DA23A5C58}) (Version: 11.0.79 - Sony) Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN) WaveLab Lite (HKLM\...\WaveLabLite) (Version: 2.6.0.243 - Steinberg) Waves L3 16 (HKLM\...\Waves L3 16) (Version: 1.0 - Team AiR) WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden Windows 7 USB/DVD Download Tool (HKLM\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation) WinXP Manager (HKLM\...\{7A9208AC-A613-45DB-83A6-89CF1910DDEC}) (Version: 4.8.52 - Yanicsoft) XAMPP (HKLM\...\xampp) (Version: 5.6.24-1 - Bitnami) XML Paper Specification Shared Components Language Pack 1.0 (Version: - Microsoft Corporation) Hidden ZEN Media Explorer (HKLM\...\ZEN (MTP) Media Explorer) (Version: - ) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\Avast Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\Opera scheduled Autoupdate 1461256674.job => C:\Program Files\Opera\launcher.exe Task: C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1478282688.job => C:\Program Files\AVAST Software\SZBrowser\launcher.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) Shortcut: C:\Documents and Settings\All Users\Menu Start\Programy\Twisted Lemon\SideKick4.3.2 on the Web.lnk -> hxxp://www.twistedlemon.nl ==================== Załadowane moduły (filtrowane) ============== 2014-07-07 21:04 - 2011-04-11 07:26 - 00024064 _____ () C:\WINDOWS\system32\spe__l.dll 2017-04-04 10:29 - 2017-04-04 10:29 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2017-04-04 10:29 - 2017-04-04 10:29 - 00176480 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll 2017-04-09 18:03 - 2017-04-09 18:03 - 06022832 _____ () C:\Program Files\AVAST Software\Avast\defs\17040900\algo.dll 2017-04-04 10:29 - 2017-04-04 10:29 - 00653520 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2016-11-04 19:36 - 2016-11-04 19:36 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2017-04-07 21:27 - 2007-09-17 11:36 - 01720320 ____N () C:\Program Files\Creative Professional\E-MU USB Audio\QtCore4.dll 2017-04-07 21:27 - 2006-10-20 19:20 - 00204800 ____N () C:\Program Files\Creative Professional\E-MU USB Audio\QtXml4.dll 2017-04-07 21:27 - 2006-10-20 19:25 - 03969024 ____N () C:\Program Files\Creative Professional\E-MU USB Audio\QtGui4.dll 2014-07-07 20:12 - 2009-04-22 12:58 - 01298432 _____ () C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe 2014-07-07 20:11 - 2007-11-28 04:32 - 01163264 _____ () C:\Program Files\TP-LINK\TL-WN321G\COMMON\acAuth.dll 2017-03-22 13:12 - 2017-04-02 14:05 - 01736992 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll 2017-04-04 10:29 - 2017-04-04 10:29 - 00134920 _____ () c:\Program Files\AVAST Software\Avast\vaarclient.dll 2017-04-04 10:29 - 2017-04-04 10:29 - 00230632 _____ () c:\Program Files\AVAST Software\Avast\StreamBack.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\Documents and Settings\All Users\Dane aplikacji\PACE:3AA2BDCEA6A9432F [217] AlternateDataStreams: C:\Documents and Settings\All Users\Dane aplikacji\TEMP:0B4227B4 [150] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCT_SKMScan => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SophosVirusRemovalTool => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\msiserver => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SCT_SKMScan => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SophosVirusRemovalTool => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2008-04-15 13:00 - 2017-03-07 16:47 - 00000056 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 localhost 0.0.0.1 mssplus.mcafee.com ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-1801674531-507921405-1177238915-1003\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\HP-reg\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp DNS Servers: 192.168.0.1 Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) DomainProfile\AuthorizedApplications: [C:\Program Files\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe] => Enabled:Samsung Universal Print Driver 2 StandardProfile\AuthorizedApplications: [C:\Program Files\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe] => Enabled:Samsung Universal Print Driver 2 StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\dpvsetup.exe] => Enabled:Microsoft DirectPlay Voice Test StandardProfile\AuthorizedApplications: [C:\Program Files\Bonjour\mDNSResponder.exe] => Enabled:Usługa Bonjour StandardProfile\AuthorizedApplications: [C:\Program Files\Google\Chrome\Application\chrome.exe] => Enabled:Google Chrome StandardProfile\AuthorizedApplications: [C:\Program Files\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe] => Enabled:Update Engine StandardProfile\AuthorizedApplications: [C:\Program Files\Skype\Phone\Skype.exe] => Enabled:Skype StandardProfile\AuthorizedApplications: [C:\Program Files\Mozilla Firefox\firefox.exe] => Enabled:Firefox (C:\Program Files\Mozilla Firefox) DomainProfile\GloballyOpenPorts: [139:TCP] => Enabled:@xpsp2res.dll,-22004 DomainProfile\GloballyOpenPorts: [445:TCP] => Enabled:@xpsp2res.dll,-22005 DomainProfile\GloballyOpenPorts: [137:UDP] => Enabled:@xpsp2res.dll,-22001 DomainProfile\GloballyOpenPorts: [138:UDP] => Enabled:@xpsp2res.dll,-22002 StandardProfile\GloballyOpenPorts: [139:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22004 StandardProfile\GloballyOpenPorts: [445:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22005 StandardProfile\GloballyOpenPorts: [137:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22001 StandardProfile\GloballyOpenPorts: [138:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22002 StandardProfile\GloballyOpenPorts: [1900:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22007 StandardProfile\GloballyOpenPorts: [2869:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22008 ==================== Punkty Przywracania systemu ========================= 04-03-2017 16:06:26 Punkt kontrolny systemu 06-03-2017 11:02:36 Punkt kontrolny systemu 07-03-2017 19:50:21 Punkt kontrolny systemu 09-03-2017 10:31:24 Punkt kontrolny systemu 10-03-2017 17:09:54 Punkt kontrolny systemu 11-03-2017 18:41:08 Punkt kontrolny systemu 13-03-2017 15:02:00 Punkt kontrolny systemu 14-03-2017 17:15:27 Punkt kontrolny systemu 15-03-2017 17:43:08 Punkt kontrolny systemu 16-03-2017 17:50:06 Punkt kontrolny systemu 16-03-2017 19:40:21 Installed Windows XP Wdf01009. 19-03-2017 16:38:05 Punkt kontrolny systemu 20-03-2017 17:26:04 Punkt kontrolny systemu 21-03-2017 18:44:38 Punkt kontrolny systemu 22-03-2017 19:09:02 Punkt kontrolny systemu 23-03-2017 19:17:50 Punkt kontrolny systemu 25-03-2017 18:52:29 Punkt kontrolny systemu 27-03-2017 15:26:36 Punkt kontrolny systemu 28-03-2017 15:40:01 Punkt kontrolny systemu 29-03-2017 16:49:07 Punkt kontrolny systemu 30-03-2017 18:05:59 Punkt kontrolny systemu 02-04-2017 13:28:48 Punkt kontrolny systemu 03-04-2017 14:56:21 Punkt kontrolny systemu 04-04-2017 10:31:38 Installed Windows XP Wdf01009. 04-04-2017 11:22:57 Operacja przywracania 04-04-2017 11:28:56 Operacja przywracania 05-04-2017 12:25:15 Punkt kontrolny systemu 06-04-2017 16:52:40 Punkt kontrolny systemu 06-04-2017 22:10:26 Operacja przywracania 06-04-2017 22:19:02 Operacja przywracania 06-04-2017 23:40:16 AVG Regisry Defrag - before defragmentation 07-04-2017 00:22:34 Installed Revoice Pro (32 bit). 07-04-2017 00:24:18 Removed Revoice Pro (32 bit). 07-04-2017 10:26:55 Operacja przywracania 07-04-2017 10:49:58 Operacja przywracania 07-04-2017 11:05:50 Operacja przywracania 07-04-2017 17:40:32 Operacja przywracania 07-04-2017 18:44:45 Operacja przywracania 07-04-2017 18:51:43 Operacja przywracania 07-04-2017 21:21:26 Removed E-MU USB Audio 07-04-2017 21:27:35 Installed E-MU USB Audio 09-04-2017 14:44:18 Punkt kontrolny systemu ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Kontroler Ethernet Description: Kontroler Ethernet Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318} Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Mysz zgodna z PS/2 Description: Mysz zgodna z PS/2 Class Guid: {4D36E96F-E325-11CE-BFC1-08002BE10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: avast! Firewall NDIS Filter Miniport Description: avast! Firewall NDIS Filter Miniport Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318} Manufacturer: ALWIL Software Service: aswNdis Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (03/31/2017 08:54:41 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 15774047 Error: (03/31/2017 08:54:41 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 15774047 Error: (03/31/2017 08:54:41 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (03/31/2017 08:54:39 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 15772094 Error: (03/31/2017 08:54:39 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 15772094 Error: (03/31/2017 08:54:39 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (03/31/2017 08:54:35 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 15767531 Error: (03/31/2017 08:54:35 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 15767531 Error: (03/31/2017 08:54:35 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (03/31/2017 04:31:52 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 4328 Dziennik System: ============= Error: (04/09/2017 07:55:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi LiveUpdate z powodu następującego błędu: System nie może odnaleźć określonej ścieżki. Error: (04/09/2017 07:55:15 PM) (Source: 0) (EventID: 4311) (User: ) Description: Event-ID 4311 Error: (04/09/2017 07:54:59 PM) (Source: NETLOGON) (EventID: 3095) (User: ) Description: Ten komputer jest skonfigurowany jako członek grupy roboczej, a nie domeny. W tej konfiguracji usługa Netlogon nie musi być uruchamiana. Error: (04/09/2017 06:25:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi LiveUpdate z powodu następującego błędu: System nie może odnaleźć określonej ścieżki. Error: (04/09/2017 06:25:19 PM) (Source: 0) (EventID: 4311) (User: ) Description: Event-ID 4311 Error: (04/09/2017 06:25:03 PM) (Source: NETLOGON) (EventID: 3095) (User: ) Description: Ten komputer jest skonfigurowany jako członek grupy roboczej, a nie domeny. W tej konfiguracji usługa Netlogon nie musi być uruchamiana. Error: (04/09/2017 06:23:55 PM) (Source: DCOM) (EventID: 10005) (User: ZARZĄDZANIE NT) Description: Model DCOM odebrał błąd „%%1084 = Tej usługi nie można uruchomić w trybie awaryjnym” podczas próby uruchomienia usługi EventSystem z argumentami „” w celu uruchomienia serwera: {1BE1F766-5536-11D1-B726-00C04FB926AF} Error: (04/09/2017 06:22:43 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: aswbidsdriver aswbidsh aswblog aswbuniv aswRvrt aswSnx aswSP aswVmm ESProtectionDriver Fips HWiNFO32 intelppm Error: (04/09/2017 06:22:17 PM) (Source: DCOM) (EventID: 10005) (User: ZARZĄDZANIE NT) Description: Model DCOM odebrał błąd „%%1084 = Tej usługi nie można uruchomić w trybie awaryjnym” podczas próby uruchomienia usługi EventSystem z argumentami „” w celu uruchomienia serwera: {1BE1F766-5536-11D1-B726-00C04FB926AF} Error: (04/09/2017 06:21:54 PM) (Source: 0) (EventID: 4311) (User: ) Description: Event-ID 4311 ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM)2 CPU 6400 @ 2.13GHz Procent pamięci w użyciu: 42% Całkowita pamięć fizyczna: 3583.32 MB Dostępna pamięć fizyczna: 2068.37 MB Całkowita pamięć wirtualna: 5463.91 MB Dostępna pamięć wirtualna: 4005.04 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:107.42 GB) (Free:57.06 GB) NTFS ==>[dysk z komponentami startowymi (Windows XP)] Drive d: () (Fixed) (Total:125.45 GB) (Free:68.26 GB) NTFS Drive h: (dysk h- i d) (Fixed) (Total:97.66 GB) (Free:23.66 GB) NTFS Drive i: (sklad) (Fixed) (Total:540.89 GB) (Free:54.58 GB) NTFS Drive j: (instalki) (Fixed) (Total:292.97 GB) (Free:63.92 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 174F9D6C) Partition 1: (Active) - (Size=107.4 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=125.5 GB) - (Type=OF Extended) Partition 3: (Not Active) - (Size=9 MB) - (Type=06) ======================================================== Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: B8D8E10F) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=42) ==================== Koniec Addition.txt ============================