Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 16-10-2017
Uruchomiony przez Rafał (17-10-2017 00:14:43)
Uruchomiony z C:\Users\Rafał\Downloads\Programy
Windows 8.1 (Update) (X64) (2016-10-11 18:08:08)
Tryb startu: Normal
==========================================================


==================== Konta użytkowników: =============================


==================== Centrum zabezpieczeń ========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie.)


==================== Zainstalowane programy ======================

(W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.)

µTorrent (HKLM-x32\...\uTorrent) (Version: 3.2.3.28705 - BitTorrent Inc.)
µTorrent (HKU\S-1-5-21-886091981-26357939-1909133584-1001\...\uTorrent) (Version: 3.4.9.42923 - BitTorrent Inc.)
4K Video Downloader 4.2 (HKLM-x32\...\4K Video Downloader_is1) (Version: 4.2.1.2185 - Open Media LLC)
Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.170 - Adobe Systems Incorporated)
Adobe Illustrator CC 2015 (HKLM-x32\...\{5680D629-B263-49CC-821E-3CEBD4507B51}) (Version: 19.0 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
AIMP (HKLM-x32\...\AIMP) (Version: v4.12.1878, 25.12.2016 - AIMP DevTeam)
Aktualizacje NVIDIA 15.3.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 15.3.33 - NVIDIA Corporation) Hidden
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 378.66 - NVIDIA Corporation) Hidden
ATLAS.ti (HKLM-x32\...\{B7E953D4-FD01-4F06-B2CF-F8D453FB8BD2}) (Version: 7.5.15.0 - ATLAS.ti Scientific Software Development GmbH)
Backup and Sync from Google (HKLM-x32\...\{A30E2377-AFC5-4EF3-A1E1-ECBC3843C73B}) (Version: 3.36.6884.5911 - Google, Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform)
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 58.0.3029.113 - Comodo)
COMODO Internet Security Premium (HKLM\...\{4F6FC44D-AE9F-472B-8F00-B8388BC9AA04}) (Version: 10.0.1.6294 - COMODO Security Solutions Inc.) Hidden
COMODO Internet Security Premium (HKLM\...\COMODO Internet Security) (Version: 10.0.1.6294 - COMODO Security Solutions Inc.)
COMODO Secure Shopping (HKLM-x32\...\{D15DF9B0-3A98-4BEF-B7D5-FC3AEA421657}) (Version: 1.1.99.0 - COMODO) Hidden
COMODO Secure Shopping (HKLM-x32\...\Comodo Secure_Shopping_list_uninstall) (Version: 1.1.421657.99 - Comodo)
Corel AfterShot 3 - ICA x64 (HKLM\...\{FE875B02-11A1-4D1E-B57A-8DE2C00C0B51}) (Version: 3.2 - Corel Corporation) Hidden
Corel AfterShot 3 - IPM Content x64 (HKLM\...\{3E064BED-C9D8-4BEF-A2EE-8D67E99C3932}) (Version: 3.2 - Corel Corporation) Hidden
Corel AfterShot 3 - IPM x64 (HKLM\...\{5059B47C-4D7B-46E9-9D7A-1E2FCF5DDBED}) (Version: 3.2.0.205 - Corel Corporation) Hidden
Corel AfterShot 3 x64 (HKLM\...\{FB96A937-BCF7-4AD6-B6D2-216FF162A744}) (Version: 3.0 - Corel Corporation) Hidden
Corel AfterShot 3(64-bit) (HKLM\...\_{FE875B02-11A1-4D1E-B57A-8DE2C00C0B51}) (Version: 3.2.0.205 - Corel Corporation)
Corel Update Manager (HKLM\...\{B6C0FB43-0C9B-46E6-93E4-DF171ED80C53}) (Version: 2.4.244 - Corel corporation) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.7.5.60 - Dell Inc.)
Dell Data Vault (HKLM\...\{2E55EEFD-2162-4A7D-9158-EDB0305603A6}) (Version: 4.4.2.0 - Dell Inc.) Hidden
Dell Digital Delivery (HKLM-x32\...\{693A23FB-F28B-4F7A-A720-4C1263F97F43}) (Version: 3.1.1002.0 - Dell Products, LP)
Dell Product Registration (HKLM-x32\...\{24F2AD94-CC1B-4294-B184-D4D31A3186A7}) (Version: 2.42.0012 - Aviata Inc.)
Dell SupportAssistAgent (HKLM-x32\...\{A10101BE-714B-42EE-B88B-5D3725B61425}) (Version: 1.4.2.2 - Dell)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 18.1.34.40 - Synaptics Incorporated)
Dell Update (HKLM-x32\...\{D9D0E75C-F791-402A-98E2-A2F43E7B0CE3}) (Version: 1.1.1054.0 - Dell Inc.)
Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.)
Dishonored 2 (HKLM\...\Dishonored 2_is1) (Version: 1.0 - )
FIFA18 version 1.0 (HKLM\...\FIFA18_is1) (Version: 1.0 - STEAMPUNKS) <==== UWAGA
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
HitFilm Express 2017 (HKLM\...\{01DF9929-F932-49CB-BDFE-6FC20F724056}) (Version: 5.0.6718.07202 - FXHOME)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Malwarebytes (wersja 3.2.2.2029) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2029 - Malwarebytes)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MPC-HC 1.7.10 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.10 - MPC-HC Team)
NVIDIA GeForce Experience 2.1.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.1 - NVIDIA Corporation)
NVIDIA Oprogramowanie systemu PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NVIDIA Sterownik 3D Vision 378.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 378.66 - NVIDIA Corporation)
NVIDIA Sterownik graficzny 378.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 378.66 - NVIDIA Corporation)
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Panel sterowania NVIDIA 378.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 378.66 - NVIDIA Corporation) Hidden
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.314 - Qualcomm Atheros Communications)
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.1.18 - Dell Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.39054 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7161 - Realtek Semiconductor Corp.)
REAPER (HKLM-x32\...\REAPER) (Version:  - )
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 3.1.100 - NVIDIA Corporation) Hidden
Total War - WARHAMMER II version 1.0 (HKLM\...\Total War - WARHAMMER II_is1) (Version: 1.0 - STEAMPUNKS)
WinRAR 5.31 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)

==================== Niestandardowe rejestracje CLSID (filtrowane): ==========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

CustomCLSID: HKU\S-1-5-21-886091981-26357939-1909133584-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Rafał\AppData\Local\Microsoft\OneDrive\17.3.6998.0830\amd64\FileSyncShell64.dll => Brak pliku
CustomCLSID: HKU\S-1-5-21-886091981-26357939-1909133584-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Rafał\AppData\Local\Microsoft\OneDrive\17.3.6998.0830\amd64\FileSyncShell64.dll => Brak pliku
CustomCLSID: HKU\S-1-5-21-886091981-26357939-1909133584-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Rafał\AppData\Local\Microsoft\OneDrive\17.3.6998.0830\amd64\FileSyncShell64.dll => Brak pliku
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-09-15] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-09-15] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-09-15] (Google)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [DBARFileBackuped] -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\Windows\system32\mscoree.dll [2013-08-22] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DBARFileNotBackuped] -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\Windows\system32\mscoree.dll [2013-08-22] (Microsoft Corporation)
ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2016-12-26] (AIMP DevTeam)
ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvAppExt.dll [2014-01-08] (Atheros Commnucations)
ContextMenuHandlers1: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2017-08-29] (COMODO)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-09-15] (Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-08] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-08] (Alexander Roshal)
ContextMenuHandlers2: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2017-08-29] (COMODO)
ContextMenuHandlers3: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Brak pliku
ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ShellContextExt.dll [2014-01-08] (Qualcomm®Atheros®)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes)
ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2016-12-26] (AIMP DevTeam)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-09-15] (Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2014-02-04] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-02-10] (NVIDIA Corporation)
ContextMenuHandlers6: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2017-08-29] (COMODO)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-08] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-08] (Alexander Roshal)

==================== Zaplanowane zadania (filtrowane) =============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

Task: {065EF658-77B2-4837-990B-8AA80DBA5049} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe [2017-09-26] (Corel Corporation)
Task: {1CF04B0B-D27D-4CAD-892A-D77B2C69EF0C} - System32\Tasks\SafeZone scheduled Autoupdate 1479649039 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe
Task: {26EA6BC2-31E5-455A-BCA2-C84F7D124411} - System32\Tasks\Dell\Dell Product Registration Update => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [2014-10-31] (Aviata Inc)
Task: {2815BE5B-F5E9-401D-81AE-D1ED1E47F971} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-06] (Piriform Ltd)
Task: {5AC67092-F67C-4EFF-825C-88827A8364BF} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation)
Task: {646F8BCF-37C5-485D-86A3-3CC2779EDC2E} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-08-29] (COMODO)
Task: {6B1A48B7-C8F5-4934-9805-05B7F5407ABF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-10-16] (Adobe Systems Incorporated)
Task: {6CACCBBE-6A29-4D20-8626-5112F011B18E} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2017-08-29] (COMODO)
Task: {703DB337-CF41-453C-A2EB-01BF44B10AA6} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-07-12] (AVAST Software)
Task: {73E07990-DAFE-41AB-97DB-75BAEDFFB3D4} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-08-29] (COMODO)
Task: {79C06A0F-BDAC-4397-BD62-46C870285ECB} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: {7BA4A075-D6F1-4516-9726-D23A25744BAF} - System32\Tasks\Dell\Dell Product Registration => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [2014-10-31] (Aviata Inc)
Task: {83F70E08-A512-470E-8B53-1B7CDE696D0C} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-08-29] (COMODO)
Task: {8659D3BA-B8AA-48E9-9253-83953E381FAF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-09] (Google Inc.)
Task: {872FE94A-88A5-4CE3-B737-5A6A9595C244} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {88F8A770-49DA-4805-810D-58E66B4E41E7} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-08-29] (COMODO)
Task: {90898426-91BD-4D1D-8C13-1437B8163B40} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-08-29] (COMODO)
Task: {90DD8F09-00ED-4D2E-837D-FBDB4C7F47CB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {C5AD9F31-CA27-49B2-A9D0-9304E66B2B0B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-09] (Google Inc.)
Task: {D0AA08D5-CB29-4F49-8633-8C676AA56EAE} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2017-04-25] (Dell Inc.)
Task: {D49B9351-6B93-41A6-96B9-F35CF3F1C914} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_170_pepper.exe [2017-10-16] (Adobe Systems Incorporated)

(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)


==================== Skróty & WMI ========================

(Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.)


ShortcutWithArgument: C:\Users\Rafał\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\deb74e6ef302b553\Speed Dial [FVD] - New Tab Page, 3D, Sync.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=llaficoajjainaijghjlofdfmbjpebpa

==================== Załadowane moduły (filtrowane) ==============

2014-10-28 21:08 - 2017-02-10 00:57 - 000134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-01-08 02:00 - 2014-01-08 02:00 - 000011264 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2014-01-08 01:58 - 2014-01-08 01:58 - 000086016 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Modules\Map\MAP.dll
2014-01-08 02:03 - 2014-01-08 02:03 - 000012928 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ActivateDesktop.exe
2017-09-15 09:49 - 2017-09-15 09:49 - 040258552 _____ () C:\Program Files (x86)\Google\Drive\googledrivesync.exe
2015-07-31 09:58 - 2015-07-31 09:58 - 008901800 _____ () C:\Program Files\Microsoft Office\Office16\1033\GrooveIntlResource.dll
2017-08-29 05:57 - 2017-08-29 05:57 - 000156352 _____ () C:\Program Files\COMODO\COMODO Internet Security\cmdwrhlp.dll
2017-08-29 05:56 - 2017-08-29 05:56 - 000107200 _____ () C:\Program Files\COMODO\COMODO Internet Security\cavwpps.dll
2017-08-29 05:56 - 2017-08-29 05:56 - 000244928 _____ () C:\Program Files\COMODO\COMODO Internet Security\cmdcomps.dll
2017-07-20 16:03 - 2017-07-20 16:03 - 000073920 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
2017-10-15 17:04 - 2017-05-20 00:00 - 000111104 _____ () E:\Games\Dishonored 2\amd_ags_x64.dll
2017-10-15 17:04 - 2017-05-20 00:00 - 000678400 _____ () E:\Games\Dishonored 2\steam_api64.dll
2017-10-15 17:04 - 2017-05-20 00:00 - 000036864 _____ () E:\Games\Dishonored 2\steamclient64.dll
2017-09-26 01:35 - 2017-09-21 09:29 - 002692440 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\swiftshader\libglesv2.dll
2017-09-26 01:35 - 2017-09-21 09:29 - 000138584 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\swiftshader\libegl.dll
2017-10-16 12:02 - 2017-10-16 12:02 - 031229440 _____ () C:\Windows\system32\Macromed\Flash\pepflashplayer64_27_0_0_170.dll
2014-10-28 21:01 - 2013-12-10 17:27 - 001242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2017-10-16 19:15 - 2017-10-16 19:15 - 000088064 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\_ctypes.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000918528 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\_hashlib.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000098816 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\win32api.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000110080 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\pywintypes27.dll
2017-10-16 19:15 - 2017-10-16 19:15 - 000364544 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\pythoncom27.dll
2017-10-16 19:15 - 2017-10-16 19:15 - 000686080 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\unicodedata.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000320512 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\win32com.shell.shell.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 001177088 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\wx._core_.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000806912 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\wx._gdi_.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000816640 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\wx._windows_.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 001067520 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\wx._controls_.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000733696 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\wx._misc_.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000736256 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\pysqlite2._sqlite.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000119808 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\win32file.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000108544 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\win32security.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000007168 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\hashobjs_ext.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000017920 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\thumbnails_ext.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000082432 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\usb_ext.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000013824 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\common.time34.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000018432 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\win32event.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000088576 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\windows.volumes.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000017408 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\windows.winwrap.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000167936 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\win32gui.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000046080 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\_socket.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 001309696 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\_ssl.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000129536 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\_elementtree.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000127488 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\pyexpat.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000038912 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\win32inet.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000077824 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\wx._html2.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000036864 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\_psutil_windows.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000524248 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\windows._lib_cacheinvalidation.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000011264 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\win32crypt.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000218624 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\PIL._imaging.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000027648 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\_multiprocessing.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000020480 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\_yappi.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000035840 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\win32process.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000024064 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\win32pipe.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000010240 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\select.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000025600 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\win32pdh.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000058880 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\windows.device_monitor.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000017408 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\win32profile.pyd
2017-10-16 19:15 - 2017-10-16 19:15 - 000022528 _____ () C:\Users\Rafał\AppData\Local\Temp\_MEI31602\win32ts.pyd

==================== Alternate Data Streams (filtrowane) =========

(Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.)

AlternateDataStreams: C:\Windows\NvContainerRecovery.bat:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\asycfilt.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\D3DCompiler_40.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\d3dx10_40.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\D3DX9_40.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\DafPrintProvider.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\mfmjpegdec.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\mfmp4srcsnk.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\mispace.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\nvcompiler.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\nvcuda.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\nvcuvid.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\nvd3dumx.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\nvdispco6437866.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\nvdispgenco6437866.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\nvEncodeAPI64.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\nvfatbinaryLoader.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\NvFBC64.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\NvIFR64.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\NvIFROpenGL.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\nvinitx.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\nvoglv64.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\nvopencl.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\nvptxJitCompiler.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\nvwgf2umx.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\OpenCL.DLL:$CmdTcID [130]
AlternateDataStreams: C:\Windows\system32\rdpcorets.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\rdpudd.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\storagewmi.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\tdc.ocx:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\ucrtbase.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\WinSCard.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\wisp.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\wmitomi.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\WsmWmiPl.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\xvid.ax:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\xvidcore.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\xvidvfw.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\asycfilt.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\crypt32.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\D3DCompiler_40.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\d3dx10_40.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\D3DX9_40.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\DafPrintProvider.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\KernelBase.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\mfmjpegdec.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\mfmp4srcsnk.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\mispace.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\netlogon.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\nvapi.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\nvcompiler.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\nvcuda.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\nvcuvid.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\nvd3dum.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\nvEncodeAPI.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\nvfatbinaryLoader.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\NvFBC.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\NvIFR.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\NvIFROpenGL.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\nvinit.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\nvoglv32.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\nvopencl.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\nvptxJitCompiler.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\nvStreaming.exe:$CmdTcID [130]
AlternateDataStreams: C:\Windows\SysWOW64\nvwgf2um.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\oleaut32.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\OpenCL.DLL:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\samlib.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\storagewmi.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\tdc.ocx:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\ucrtbase.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\wincorlib.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\WindowsCodecs.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\WinSCard.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\WinTypes.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\wisp.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\wmitomi.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\WsmSvc.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\WsmWmiPl.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\xvid.ax:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\xvidcore.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\SysWOW64\xvidvfw.dll:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\Drivers\BasicRender.sys:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\Drivers\dfsc.sys:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\Drivers\dxgkrnl.sys:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\Drivers\dxgmms1.sys:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\Drivers\ndis.sys:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\Drivers\nvlddmkm.sys:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\Drivers\scfilter.sys:$CmdTcID [130]
AlternateDataStreams: C:\Windows\system32\Drivers\spaceport.sys:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\Drivers\WdBoot.sys:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\Drivers\WdFilter.sys:$CmdTcID [64]
AlternateDataStreams: C:\Windows\system32\Drivers\WdNisDrv.sys:$CmdTcID [130]

==================== Tryb awaryjny (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== Powiązania plików (filtrowane) ===============

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.)


==================== Internet Explorer - Witryny zaufane i z ograniczeniami ===============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.)


==================== Hosts - zawartość: ==========================

(Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.)

2013-08-22 15:25 - 2017-10-15 00:42 - 000013472 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1	gf.tools.avast.com
127.0.0.1	pair.ff.avast.com
127.0.0.1	ipm-provider.ff.avast.com
127.0.0.1	ipm-provider.ff.avast.com
127.0.0.1	ipm-provider.ff.avast.com
127.0.0.1	id.avast.com
127.0.0.1	v4618535.iavs9x.u.avast.com
127.0.0.1	v4618535.ivps9x.u.avast.com
127.0.0.1	v4618535.ivps9tiny.u.avast.com
127.0.0.1	v4618535.vpsnitro.u.avast.com
127.0.0.1	v4618535.vpsnitrotiny.u.avast.com
127.0.0.1	v4618535.iavs5x.u.avast.com
127.0.0.1	v7.stats.avast.com
127.0.0.1	v7.stats.avast.com
127.0.0.1	v7event.stats.avast.com
127.0.0.1	sm00.avast.com
127.0.0.1	submit5.avast.com
127.0.0.1	geoip.avast.com
127.0.0.1	w9448963.iavs9x.u.avast.com
127.0.0.1	w9448963.ivps9x.u.avast.com
127.0.0.1	w9448963.ivps9tiny.u.avast.com
127.0.0.1	w9448963.vpsnitro.u.avast.com
127.0.0.1	w9448963.vpsnitrotiny.u.avast.com
127.0.0.1	w9448963.iavs5x.u.avast.com
127.0.0.1	v7.stats.avast.com
127.0.0.1	v7.stats.avast.com
127.0.0.1	v7event.stats.avast.com
127.0.0.1	sm00.avast.com
127.0.0.1	submit5.avast.com
127.0.0.1	geoip.avast.com

Wykryto więcej niż wyliczono: 332 linii.


==================== Inne obszary ============================

(Obecnie brak automatycznej naprawy dla tej sekcji.)

HKU\S-1-5-21-886091981-26357939-1909133584-1001\Control Panel\Desktop\\Wallpaper -> E:\Program Files (x86)\GALERIA\OBRAZKI\okladka.png
DNS Servers: 31.11.202.254 - 37.8.214.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
mpsdrv => Usługa "Zapora systemu Windows" nie jest uruchomiona.
MpsSvc => Usługa "Zapora systemu Windows" nie jest uruchomiona.
bfe => Usługa "Zapora systemu Windows" nie jest uruchomiona.

==================== MSCONFIG/TASK MANAGER - Wyłączone elementy ==

HKLM\...\StartupApproved\Run: => "WavesSvc"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}"
HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run: => "Malwarebytes TrayApp"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKU\S-1-5-21-886091981-26357939-1909133584-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-886091981-26357939-1909133584-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-886091981-26357939-1909133584-1001\...\StartupApproved\Run: => "RESTART_STICKY_NOTES"
HKU\S-1-5-21-886091981-26357939-1909133584-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-886091981-26357939-1909133584-1001\...\StartupApproved\Run: => "Xvid"
HKU\S-1-5-21-886091981-26357939-1909133584-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-886091981-26357939-1909133584-1001\...\StartupApproved\Run: => "BitTorrent"

==================== Reguły Zapory systemu Windows (filtrowane) ===============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

FirewallRules: [{2586FB21-0E49-4F3C-86B5-39F436840D80}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{FD5EEFBF-74A2-4D3A-849F-D06E0DFC749D}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{97C6F19A-84F5-46C0-B972-F36D0B132259}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{C2DBC4A5-CB48-4113-85E3-F2D6A33163FA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{B372AFFC-0D96-407F-B3EB-812BEEFC8DA1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{655D433B-C330-47BD-A847-58974C0C37FC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{5667FD33-8C9E-43F2-A00B-F60C6D31121C}] => (Allow) C:\Users\Rafał\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8C0C758A-8AC9-40CB-B3E4-5A12BB1D1508}] => (Allow) C:\Users\Rafał\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{80613351-430A-4C80-88D3-38785E9253A0}] => (Allow) C:\Users\Rafał\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5F148ED8-789A-49A3-87D6-925D71FBDD9D}] => (Allow) C:\Users\Rafał\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{91D03F82-00CC-41C5-B2D1-D4F6CC78847F}] => (Allow) C:\Users\Rafał\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5D3B771A-560A-483B-83C5-E32C26495649}] => (Allow) C:\Users\Rafał\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{0F8FE2DD-3B23-4FC9-A73B-99D434804C45}C:\users\rafał\appdata\roaming\utorrent\updates\3.4.9_43295.exe] => (Allow) C:\users\rafał\appdata\roaming\utorrent\updates\3.4.9_43295.exe
FirewallRules: [UDP Query User{04156BC2-DC09-4167-98C0-923B4AB83FD4}C:\users\rafał\appdata\roaming\utorrent\updates\3.4.9_43295.exe] => (Allow) C:\users\rafał\appdata\roaming\utorrent\updates\3.4.9_43295.exe
FirewallRules: [TCP Query User{A353EB73-240C-4364-B947-DC990F170A6C}C:\users\rafał\appdata\roaming\utorrent\updates\3.4.9_43295.exe] => (Allow) C:\users\rafał\appdata\roaming\utorrent\updates\3.4.9_43295.exe
FirewallRules: [UDP Query User{EF1BE935-C787-42A8-83DB-EFCF9360806B}C:\users\rafał\appdata\roaming\utorrent\updates\3.4.9_43295.exe] => (Allow) C:\users\rafał\appdata\roaming\utorrent\updates\3.4.9_43295.exe
FirewallRules: [TCP Query User{CDF29F28-382C-44B7-B00A-6CCCCF0E6D50}C:\users\rafał\appdata\roaming\utorrent\updates\3.4.9_43388.exe] => (Block) C:\users\rafał\appdata\roaming\utorrent\updates\3.4.9_43388.exe
FirewallRules: [UDP Query User{90110380-EEF7-436A-B9A1-4ADA1B9DF12A}C:\users\rafał\appdata\roaming\utorrent\updates\3.4.9_43388.exe] => (Block) C:\users\rafał\appdata\roaming\utorrent\updates\3.4.9_43388.exe
FirewallRules: [TCP Query User{A282CBFE-0C8A-41AD-94C5-0473B1D44D4B}C:\users\rafał\appdata\roaming\utorrent\updates\3.4.9_43388.exe] => (Allow) C:\users\rafał\appdata\roaming\utorrent\updates\3.4.9_43388.exe
FirewallRules: [UDP Query User{EAED95DB-8C59-485A-8B43-A844C3D11FA5}C:\users\rafał\appdata\roaming\utorrent\updates\3.4.9_43388.exe] => (Allow) C:\users\rafał\appdata\roaming\utorrent\updates\3.4.9_43388.exe
FirewallRules: [TCP Query User{FCE39E97-C005-4A18-A682-752A81B6B596}C:\users\rafał\appdata\roaming\utorrent\updates\3.5.0_43580.exe] => (Allow) C:\users\rafał\appdata\roaming\utorrent\updates\3.5.0_43580.exe
FirewallRules: [UDP Query User{E91436CD-A065-4A84-ABFA-9880EB6CF281}C:\users\rafał\appdata\roaming\utorrent\updates\3.5.0_43580.exe] => (Allow) C:\users\rafał\appdata\roaming\utorrent\updates\3.5.0_43580.exe
FirewallRules: [TCP Query User{B223DE60-AA61-4CF7-83F8-FC6C057A07D4}C:\users\rafał\appdata\roaming\utorrent\updates\3.5.0_43804.exe] => (Allow) C:\users\rafał\appdata\roaming\utorrent\updates\3.5.0_43804.exe
FirewallRules: [UDP Query User{14B3FFA9-C5A1-4A0C-9D03-C03EE20C38E0}C:\users\rafał\appdata\roaming\utorrent\updates\3.5.0_43804.exe] => (Allow) C:\users\rafał\appdata\roaming\utorrent\updates\3.5.0_43804.exe
FirewallRules: [{AFAD76E3-A6A1-441C-8B23-1BD5E563DD18}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe
FirewallRules: [{87055CF0-ABE8-400B-A1A2-BDFDF9E29D56}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe
FirewallRules: [{77D89296-9969-4F9C-A0BE-27AB9A49EAE2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{D95FECA8-B1C8-4E4B-A536-6D3B0BEEE705}E:\program files (x86)\fifa18\fifa18.exe] => (Allow) E:\program files (x86)\fifa18\fifa18.exe
FirewallRules: [UDP Query User{71382089-5D3F-415B-8A35-FE3E18D95923}E:\program files (x86)\fifa18\fifa18.exe] => (Allow) E:\program files (x86)\fifa18\fifa18.exe
FirewallRules: [{1C1B5293-FD7D-4D67-9C4F-596511AA69BD}] => (Allow) C:\Windows\system32\rundll32.exe
FirewallRules: [{A8EEF940-82BE-4B98-8596-AB6C3CA70E8E}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{15EFFB77-3B06-4672-8DA2-82822C15A976}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{11AF118F-E487-40C1-BBFC-E29B0387CFAC}] => (Allow) LPort=1688
FirewallRules: [{43B1306A-838F-45B5-A781-88F8363DA3F7}] => (Allow) LPort=1688
FirewallRules: [{2AFB23D0-235C-4742-B6E0-EF1BDCB025B4}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{60AE69F2-7B3B-4111-91CC-0DB1CC82E1FC}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{9768B80B-7CB5-4A1C-8D8F-455F816724EA}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{6D1E3733-25CA-4BE9-8C72-D89384EBA1FA}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{A5E84E43-DDD5-42BB-BBCD-D34794BC0A9F}] => (Allow) C:\WINDOWS\System32\rundll32.exe
FirewallRules: [{99CD0CEB-04A5-4310-BEE6-45FB5B5917E6}] => (Allow) C:\WINDOWS\System32\rundll32.exe
FirewallRules: [TCP Query User{98A89B3A-A572-4BC5-AE21-193658A085DD}E:\games\total war - warhammer ii\warhammer2.exe] => (Allow) E:\games\total war - warhammer ii\warhammer2.exe
FirewallRules: [UDP Query User{24D9D7AE-EC66-4314-A756-0F96E827D545}E:\games\total war - warhammer ii\warhammer2.exe] => (Allow) E:\games\total war - warhammer ii\warhammer2.exe

==================== Punkty Przywracania systemu =========================

Niepowodzenie przy listowaniu punktów przywracania
Sprawdź usługę "winmgmt" lub napraw WMI.


==================== Wadliwe urządzenia w Menedżerze urządzeń =============

Niepowodzenie przy listowaniu urządzeń. Sprawdź usługę "winmgmt" lub napraw WMI.


==================== Błędy w Dzienniku zdarzeń: =========================

Niepowodzenie przy uruchamianiu usługi "eventlog", nie można odczytać zdarzeń.

Wyst�pi� b��d systemu 123.

Nazwa pliku, nazwa katalogu lub sk�adnia etykiety woluminu jest niepoprawna.


==================== Statystyki pamięci =========================== 

Procesor: Intel(R) Core(TM) i7-4510U CPU @ 2.00GHz
Procent pamięci w użyciu: 34%
Całkowita pamięć fizyczna: 8095.82 MB
Dostępna pamięć fizyczna: 5267.8 MB
Całkowita pamięć wirtualna: 16287.82 MB
Dostępna pamięć wirtualna: 12811.57 MB

==================== Dyski ================================

Drive c: (Dysk) (Fixed) (Total:488.82 GB) (Free:278.2 GB) NTFS
Drive e: (Dysk) (Fixed) (Total:433.88 GB) (Free:119.44 GB) NTFS

==================== MBR & Tablica partycji ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: D08D7FA9)

Partition: GPT.

==================== Koniec  Addition.txt ============================