Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 04.03.2018 Uruchomiony przez Maciek (08-03-2018 12:59:57) Uruchomiony z E:\TempSSD\Desktop\FRST Windows 7 Professional Service Pack 1 (X64) (2014-12-09 12:06:50) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-3188538164-421438474-1110416733-500 - Administrator - Disabled) Gość (S-1-5-21-3188538164-421438474-1110416733-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3188538164-421438474-1110416733-1002 - Limited - Enabled) Maciek (S-1-5-21-3188538164-421438474-1110416733-1000 - Administrator - Enabled) => C:\Users\Maciek ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-3188538164-421438474-1110416733-1000\...\uTorrent) (Version: 3.4.9.43295 - BitTorrent Inc.) 64 Bit HP CIO Components Installer (HKLM\...\{0EBC740B-4363-489B-8C27-98CE0740BA19}) (Version: 18.2.4 - Hewlett-Packard) Hidden Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated) Adobe Flash Player 28 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 28.0.0.161 - Adobe Systems Incorporated) Archiwizator WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - ) Avast Internet Security (HKLM-x32\...\Avast) (Version: 10.0.2206 - AVAST Software) Avast License by ZeNiX [2014-03-14] (HKLM-x32\...\Avast_2050_ZeNiX [2014-03-14]_is1) (Version: - ) AVR Jungo USB (HKLM-x32\...\{E8F8861D-98E0-43FF-9E48-AC236CC3BE4E}) (Version: 10.4 - Atmel) AVR QTouch Studio (HKLM-x32\...\{7BE9E558-BE53-4939-9565-A0BEA2F839D0}) (Version: 4.4.1 - Atmel) AVR Studio 4.19 (HKLM-x32\...\{C1AC4F7A-4B50-4903-882A-D61D3D13782D}) (Version: 4.19.730 - Atmel) Hidden AVR Studio 4.19 (HKLM-x32\...\{D5D88F8F-FDA4-4CF4-9F3E-3F40118C2120}) (Version: 4.19.730 - Atmel) AVR Studio 5.1 (HKLM-x32\...\{D574D18C-9D52-4B4B-9647-AE6B89FD3F70}) (Version: 5.1.148 - Atmel) ChomikBox (HKLM-x32\...\{C7B52FAF-58D8-438C-B810-F78C3C927504}) (Version: 2.0.8.0 - Chomikuj.pl) Document Express DjVu Plug-in (HKLM\...\{63D38589-F9D9-4851-A37F-E142A8D14A32}) (Version: 6.1.35472 - Cuminas Corporation) doPDF (HKLM\...\{B80AFB51-7CD1-43F7-9D26-E496C5CD0453}) (Version: 8.2.929 - Softland) Hidden doPDF 8 (HKLM-x32\...\{599893a2-098b-4db8-8bc2-5e5f51edc0e1}) (Version: 8.2.929 - Softland) EAGLE 7.2.0 (HKLM-x32\...\EAGLE 7.2.0) (Version: 7.2.0 - CadSoft Computer GmbH) e-pity 8.0.16 za rok 2016 (HKLM-x32\...\{80D8170E-5590-218-B9ED-E24E4C99A11D}_is1) (Version: 8.0.16 - e-file sp. z o.o. sp.k.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 64.0.3282.186 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software) Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden HP HD Webcam Driver (HKLM-x32\...\Sunplus SPUVCb) (Version: 3.4.8.16 - SunplusIT) HP Hotkey Support (HKLM-x32\...\{C97CC14E-4789-4FC5-BC75-79191F7CE009}) (Version: 4.5.9.1 - Hewlett-Packard Company) HP Mouse Suite 2.3 (HKLM\...\{00BBA545-EC0D-4A70-83F6-3D2CC5CAEEFC}) (Version: 2.3 - Hewlett-Packard) HP ProtectTools Security Manager (HKLM\...\HPProtectTools) (Version: 6.08.1017 - Hewlett-Packard Company) HP Support Assistant (HKLM-x32\...\{904822F1-6C7D-4B91-B936-6A1C0810544C}) (Version: 7.7.34.34 - Hewlett-Packard Company) HP Webcam (HKLM-x32\...\{1D61E881-43CD-447B-9E6B-D2C6138B2862}) (Version: 1.0.26.3 - Roxio) HxD Hex Editor wersja 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz) IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6341.0 - IDT) Intel Android Device USB driver (HKLM\...\Intel Android Device USB driver) (Version: 1.10.0 - Intel) Intel PROSet Wireless (HKLM-x32\...\ProInst) (Version: - ) Hidden Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 19.2 - Intel) Intel(R) PROSet/Wireless for Bluetooth(R) 3.0 + High Speed (HKLM\...\{FE3DEA5D-60D7-4C92-A71F-1E1F2F4615FC}) (Version: 14.2.0.0216 - Intel Corporation) Intel(R) Update Manager (HKLM-x32\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation) Intel® SSD Toolbox (HKLM-x32\...\{06D085C8-1F00-11B2-96A7-8f0CE39193ED}) (Version: 3.4.6.400 - Intel Corporation) IPCWebComponents 3.1.0.9 (HKLM-x32\...\{4740E1B2-51CF-4083-8976-D6B3B5A5064F}_is1) (Version: 3.1.0.9 - ) JMicron 1394 Filter Driver (HKLM-x32\...\{13C96625-28E4-4c58-ADE0-CDAFC64752EB}) (Version: 1.00.25.03 - JMicron Technology Corp.) JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.72.4 - JMicron Technology Corp.) K-Lite Codec Pack 10.9.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.9.5 - ) KONICA MINOLTA PagePro 1400W (HKLM\...\KONICA MINOLTA PagePro 1400W) (Version: - ) Logic (HKLM\...\{F7E838CD-3D98-4848-ACBC-B55DD504306E}) (Version: 1.1.34 - Saleae LLC) LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.100 - LSI Corporation) Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation) Microsoft Office 2010 dla Użytkowników Domowych i Małych Firm (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.6029.1000 - Microsoft Corporation) Microsoft Office 2010 Service Pack 1 (SP1) (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{047B0968-E622-4FAA-9B4B-121FA109EDDE}) (Version: - Microsoft) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{4E968D9C-21A7-4915-B698-F7AEB913541D}) (Version: 10.50.1447.4 - Microsoft Corporation) Microsoft SQL Server System CLR Types (HKLM-x32\...\{2A2F3AE8-246A-4252-BB26-1BEB45627074}) (Version: 10.50.1447.4 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Runtime - 10.0.30319 (HKLM-x32\...\{6A86554B-8928-30E4-A53C-D7337689134D}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Shell (Isolated) - ENU (HKLM-x32\...\{D64B6984-242F-32BC-B008-752806E5FC44}) (Version: 10.0.30319 - Microsoft Corporation) Minimal ADB and Fastboot version 1.1.3 (HKLM-x32\...\{DE46417A-9E9E-4BCD-BBDD-DA21943193BB}_is1) (Version: 1.1.3 - ) ModbusMaster (HKLM-x32\...\{2E94BD07-AA97-424E-B4E6-F59743286614}) (Version: 1.2.2 - Farrellton Solar) ModbusSlave (HKLM-x32\...\{321EC5B0-9F56-4A34-A831-BACEB066FCED}) (Version: 1.2.2 - Farrellton Solar) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.8.0.6273 - Mozilla) Mozilla Thunderbird 45.8.0 (x86 pl) (HKLM-x32\...\Mozilla Thunderbird 45.8.0 (x86 pl)) (Version: 45.8.0 - Mozilla) National Instruments Software (HKLM-x32\...\NI Uninstaller) (Version: - National Instruments) Nexus Root Toolkit (HKLM-x32\...\Nexus Root Toolkit) (Version: 2.1.9 - WugFresh) NI Authentication 1.0 (64-bit) (HKLM\...\{6F11F8FE-35DE-4CAE-9D73-2C394DCFD889}) (Version: 1.0.58.0 - National Instruments) Hidden NI Authentication 1.0 (HKLM-x32\...\{B4D09BE5-59C1-434C-85D9-DBF135A44CB6}) (Version: 1.0.73.0 - National Instruments) Hidden NI Certificates Deployment Support (HKLM-x32\...\{82D29FE9-9F5A-4EF7-BBA1-EF107DDB2E64}) (Version: 1.02.49152 - National Instruments) Hidden NI EULA Depot (HKLM-x32\...\{06E0B0D7-8971-48A1-9789-3A2F955DFD88}) (Version: 2.80.301 - National Instruments) Hidden NI MDF Support (HKLM-x32\...\{1814BD68-741C-429B-9EA7-C6D1385777C8}) (Version: 2.80.301 - National Instruments) Hidden NI mDNS Responder 1.4 for Windows 64-bit (HKLM\...\{AFA1743D-9773-459A-A0B1-7473C56BCE62}) (Version: 1.40.49154 - National Instruments) Hidden NI mDNS Responder 1.4.0 (HKLM-x32\...\{4837A574-F095-45A1-AF87-958DBC336DD5}) (Version: 1.40.49154 - National Instruments) Hidden NI SSL Support (64-bit) (HKLM\...\{B45EAADF-545B-40B5-9F9F-78981FCD0DF1}) (Version: 10.0.22.0 - National Instruments) Hidden NI SSL Support (HKLM-x32\...\{4058873D-3915-449A-9879-17149E06EA2F}) (Version: 10.0.22.0 - National Instruments) Hidden NI System Web Server 1.0 (HKLM-x32\...\{E9A1C394-7F4D-4548-920C-6665C5E5EF5F}) (Version: 10.0.278.0 - National Instruments) Hidden NI System Web Server Base 1.0 (64-bit) (HKLM\...\{3D59804B-BF69-4088-9793-A2F9775DB5A5}) (Version: 1.0.59.0 - National Instruments) Hidden NI System Web Server Base 1.0 (HKLM-x32\...\{2254CBFE-56BB-47BD-9958-5103AA58C5F7}) (Version: 1.0.104.0 - National Instruments) Hidden NI Trace Engine (64-bit) (HKLM\...\{9E3B041A-3151-4C51-9ABC-25D9DEAFB421}) (Version: 10.0.237.0 - National Instruments) Hidden NI Trace Engine (HKLM-x32\...\{3AC465DB-700E-4A68-9AC9-33F61A2E7ABA}) (Version: 10.0.237.0 - National Instruments) Hidden NI Uninstaller (HKLM-x32\...\{984329A3-A4C3-44AC-8251-707A200FCECD}) (Version: 2.80.301 - National Instruments) Hidden NI VC2008MSMs x64 (HKLM\...\{945CF655-4A32-4667-B085-70A9D53C5A86}) (Version: 9.0.201 - National Instruments) Hidden NI VC2008MSMs x86 (HKLM-x32\...\{EC8BF669-EFEA-40D9-8894-9074E407FC07}) (Version: 9.0.201 - National Instruments) Hidden NI Xerces Delay Load 2.7.1 (HKLM-x32\...\{08133ED0-B6EB-49CD-B0EF-60502E41D15E}) (Version: 2.7.123.0 - National Instruments) Hidden NI Xerces Delay Load 2.7.1 64-bit (HKLM\...\{0CADBEE0-59CA-4382-9A67-BA5CB07B6EFC}) (Version: 2.7.128.0 - National Instruments) Hidden NI-DIM 1.11.0f0 (HKLM-x32\...\{501DACFF-9399-4DBC-AA59-F35C9C6970D2}) (Version: 1.110.49152 - National Instruments) Hidden NI-DIM 1.11.0f0 for 64 Bit Windows (HKLM\...\{895C2A25-8CB1-4DFE-9816-030841464F74}) (Version: 1.110.49152 - National Instruments) Hidden NI-ORB 1.9.3f0 (HKLM-x32\...\{98B874D4-D8A4-40BE-B82A-36E902C84289}) (Version: 1.94.49152 - National Instruments) Hidden NI-ORB 1.9.3f0 for 64 Bit Windows (HKLM\...\{4E07E126-991F-4BA4-A0B9-35A54DAB3B33}) (Version: 1.94.49152 - National Instruments) Hidden NI-PAL 2.6.1f0 (HKLM-x32\...\{176F809F-FECD-4F6F-AB68-8C2D021EDEEA}) (Version: 10.71.49152 - National Instruments) Hidden NI-PAL 2.6.1f0 for 64 Bit Windows (HKLM\...\{EEEB32C2-9064-4630-B8C0-63D874705C6B}) (Version: 10.71.49152 - National Instruments) Hidden NI-RPC 4.2.0f0 (HKLM-x32\...\{89FC36E5-5C62-499B-8207-9014C484F65C}) (Version: 4.20.49152 - National Instruments) Hidden NI-RPC 4.2.0f0 for 64 Bit Windows (HKLM\...\{1C4F2A17-1B60-4575-8CB1-1555CF0D5206}) (Version: 4.20.49152 - National Instruments) Hidden NI-VISA Runtime 5.0.3 (HKLM-x32\...\{85BA3FCF-AA00-4151-B97D-84A221E8198A}) (Version: 5.03.49152 - National Instruments) Hidden NI-VISA x64 support .. (HKLM\...\{12DAEC8B-9D92-4486-8D9D-8D9D1A97DFA0}) (Version: 5.03.49152 - National Instruments) Hidden novaPDF 8 Printer Driver (HKLM\...\{48CFCB4B-0488-4711-B54E-E8E3F5929166}) (Version: 8.2.929 - Softland) NVIDIA nView 141.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 141.36 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation) NVIDIA Sterownik graficzny 341.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.95 - NVIDIA Corporation) NVIDIA WMI 2.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVWMI) (Version: 2.18.0 - NVIDIA Corporation) Opera Stable 51.0.2830.40 (HKLM-x32\...\Opera 51.0.2830.40) (Version: 51.0.2830.40 - Opera Software) Oprogramowanie Intel(R) PROSet/Wireless WiFi (HKLM\...\{25FBDA9A-E868-4B3B-B9FF-D923818511A1}) (Version: 14.2.0000 - Intel Corporation) Oracle VM VirtualBox 5.0.30 (HKLM\...\{7586FA2D-03B9-4074-84B7-E0049597BF84}) (Version: 5.0.30 - Oracle Corporation) Panel sterowania NVIDIA 341.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 341.95 - NVIDIA Corporation) Hidden Parrot Software Update Tool (HKLM-x32\...\Parrot Flash Update Wizard) (Version: - ) Primary Setup Tool (HKLM-x32\...\{DC21A3F7-30CB-4EC4-8A84-FCEA6810982B}) (Version: 04.02.0000 - Siemens AG) Hidden Primary Setup Tool V4.2 (HKLM-x32\...\{DC21A3F7-30CB-4EC4-8A84-FCEA6810982B}PST_AUTSW) (Version: 04.02.0000 - Siemens AG) Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.32.0 - Renesas Electronics Corporation) Hidden Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.32.0 - Renesas Electronics Corporation) SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.14.0 - SAMSUNG Electronics Co., Ltd.) SIMATIC Device Drivers (HKLM\...\{CCC01ADD-3A54-15D6-92A8-00A0245B3AC6}) (Version: 01.02.0400 - Siemens AG) Hidden SSD Fresh (HKLM-x32\...\SSD Fresh_is1) (Version: 2015 - Abelssoft) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.18.23 - Synaptics Incorporated) Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH) Ultrascope for DS1000 Series (HKLM-x32\...\{FA62496B-5554-4EF3-9406-862773CDB112}) (Version: 1.1.3 - ) UnHackMe 9.60 (HKLM-x32\...\UnHackMe_is1) (Version: - Greatis Software, LLC.) UsbFix (HKLM-x32\...\Usbfix) (Version: 7.945 - El Desaparecido - www.usbfix.net - www.sosvirus.net) Validity Fingerprint Sensor Driver (HKLM\...\{697E5298-CF76-43A3-AC9D-6AE2FA0F2B43}) (Version: 4.3.226.0 - Validity Sensors, Inc.) VISA Shared Components 64-Bit (HKLM\...\{F71335BF-CF6B-4ACC-ABCE-BA9DF2031DB8}) (Version: 1.3.1 - IVI Foundation Inc.) Hidden VISA Shared Components 64-Bit (HKLM-x32\...\VISASharedComponents) (Version: - ) WinAVR 20100110 (remove only) (HKLM-x32\...\WinAVR-20100110) (Version: 20100110 - ) Windows Driver Package - Saleae LLC (WinUSB) USB (08/20/2013 6.0.6000.16388) (HKLM\...\BD9EADEC31DCD1E266A1735E4DC87B51EA97A9D6) (Version: 08/20/2013 6.0.6000.16388 - Saleae LLC) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-04-22] (AVAST Software) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-04-22] (AVAST Software) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2008-06-20] () ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2008-09-16] (Alexander Roshal) ContextMenuHandlers3: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-04-22] (AVAST Software) ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2008-06-20] () ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2008-09-16] (Alexander Roshal) ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\Program Files\NVIDIA Corporation\nview\nvshell.dll [2016-04-29] () ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-01-29] (NVIDIA Corporation) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-04-22] (AVAST Software) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2008-06-20] () ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2008-09-16] (Alexander Roshal) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {1BFBC51D-914B-4D63-A113-C3A4B7FC3C56} - System32\Tasks\doPDF Update => C:\Program Files\Softland\novaPDF 8\Driver\UpdateApplication.exe [2015-02-27] () Task: {1CC5D13E-5E7F-4A98-9AC7-5414A521D574} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFReport.exe [2016-02-18] (Hewlett-Packard) Task: {2483306F-EB6E-432B-A447-49E6746034BB} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated) Task: {269D87E2-847E-40AB-868D-F8CEA5081337} - System32\Tasks\Opera scheduled Autoupdate 1420888634 => C:\Program Files (x86)\Opera\launcher.exe [2018-02-22] (Opera Software) Task: {311E942A-5254-4733-9DC3-B5E86B415002} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2018-02-11] (AVAST Software) Task: {3988090B-027C-47D0-BD58-4373926E6BD9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-08-21] (Hewlett-Packard Company) Task: {3F5CD9EC-DCD8-4EB4-A172-023112E4C72E} - System32\Tasks\UnHackMe Task Scheduler => C:\Program Files (x86)\UnHackMe\hackmon.exe [2018-01-31] (Greatis Software) Task: {40387627-B247-42EF-9C8C-B396C832B049} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-08-21] (Hewlett-Packard Company) Task: {40ABA3CA-4002-4A30-BF84-4E4366683453} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-03-02] (Adobe Systems Incorporated) Task: {5D7BE2F7-910F-4169-85C5-CC0EEAAC121E} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2018-01-10] (AVAST Software) Task: {7DE1F05A-1808-4A59-9473-E501622320B3} - System32\Tasks\{BECEAB9A-E515-4739-BA42-D3250A73C00D} => C:\Windows\system32\pcalua.exe -a "C:\swsetup\sp61783\NB_xx60-xx65_1.00\x64_win7\Driver - Keyboard, Mouse and Input Devices\HP Hotkey Support\sp53796\Drivers\HksButton\hpInstDrv.exe" -d "C:\swsetup\sp61783\NB_xx60-xx65_1.00\x64_win7\Driver - Keyboard, Mouse and Input Devices\HP Hotkey Support\sp53796\Drivers\HksButton" Task: {7E02D3E8-DAC7-4A51-825A-AA049ED88470} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_28_0_0_161_pepper.exe [2018-03-02] (Adobe Systems Incorporated) Task: {7EF35CF2-C034-49B4-BA2F-7995D4478B7B} - System32\Tasks\e-pity2016a_styczen => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [2017-03-09] (e-file sp. z o.o. sp. k.) Task: {A23E3DA6-63D3-4EC4-9C75-100AFBE05BF4} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation) Task: {A34BA8BD-C01B-4147-ABA3-EAB5592646EE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2018-01-30] (HP Inc.) Task: {AD97EC70-80AA-4DA0-851D-9FEECED84BAC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2017-09-20] (HP Inc.) Task: {C3A76216-D328-4890-90FF-1E8AF2BAA17B} - System32\Tasks\{16A5AB52-68E3-4A06-9531-9BE2393ED266} => C:\Windows\system32\pcalua.exe -a E:\TempSSD\Downloads\VirtualBox-5.0.30-112061-Win.exe -d E:\TempSSD\Downloads Task: {CAD30899-6336-4806-8A19-1414353A28EE} - System32\Tasks\{0FA457CB-AE49-493A-8426-043F62B32CD0} => C:\Windows\system32\pcalua.exe -a "E:\TempSSD\Desktop\AntiWPA 3.3.exe" -d E:\TempSSD\Desktop Task: {CB934FB4-3EE6-4125-A956-9B9224DF805E} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation) Task: {CE2702BA-897C-4287-A36F-8AA29B5E2007} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.) Task: {D7FD5B80-12C9-4F0A-91FE-250B599C22DA} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [2017-12-07] (AVAST Software) Task: {D98CCE62-268A-48B2-8B22-D47EA3F97D0D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.) Task: {F9F5EF86-B0F1-4002-8BFE-9FEA92DD086F} - System32\Tasks\e-pity2016a_kwiecien => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [2017-03-09] (e-file sp. z o.o. sp. k.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) Shortcut: C:\Users\Maciek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Lаunсh Intеrnet Ехрlоrеr Вrowser.lnk -> C:\Users\Maciek\AppData\Roaming\Browsers\exe.erolpxei.bat (Brak pliku) <==== Cyrillic ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disk-cache-size=104857600 ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disk-cache-size=104857600 ==================== Załadowane moduły (filtrowane) ============== 2015-05-15 09:17 - 2016-04-29 10:47 - 002701880 _____ () C:\Windows\system32\nvwmi64.exe 2015-05-15 09:17 - 2016-01-29 11:49 - 000135224 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2011-07-27 20:07 - 2011-07-27 20:07 - 001501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll 2011-07-18 16:48 - 2011-07-18 16:48 - 000156216 _____ () C:\Program Files\Hewlett-Packard\Pre-Boot Security for HP ProtectTools\BIOSDomainPlugin.dll 2011-05-30 20:58 - 2011-05-30 20:58 - 000209744 _____ () C:\Windows\system32\PassThroughOTP.dll 2010-12-01 09:35 - 2010-12-01 09:35 - 000172032 _____ () C:\ProgramData\HP Wi-Fi Mobile Mouse Config\AstroS.exe 2015-02-27 11:49 - 2015-02-27 11:49 - 000137368 _____ () C:\Program Files\Softland\novaPDF 8\Server\AgileDotNetRT64.dll 2015-02-27 11:49 - 2015-02-27 11:49 - 000034592 _____ () C:\Program Files\Softland\novaPDF 8\Server\CryptUtil.dll 2015-02-27 11:49 - 2015-02-27 11:49 - 000026912 _____ () C:\Program Files\Softland\novaPDF 8\Server\WAFServicePlugin.dll 2013-07-04 18:27 - 2013-07-04 18:27 - 000848096 _____ () C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\sn_regbase.dll 2015-04-22 13:51 - 2015-04-22 13:51 - 000388208 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxDDU.dll 2015-04-22 13:51 - 2015-04-22 13:51 - 005846160 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxRT.dll 2014-12-09 22:40 - 2008-06-20 00:41 - 000062464 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll 2015-05-15 09:17 - 2016-04-29 10:47 - 000710288 _____ () C:\Program Files\NVIDIA Corporation\nview\nvshell.dll 2015-04-22 13:53 - 2014-03-14 07:00 - 000695808 _____ () C:\Program Files\AVAST Software\Avast\VERSION.dll 2018-03-08 00:35 - 2018-03-08 00:35 - 005892920 _____ () C:\Program Files\AVAST Software\Avast\defs\18030706\algo.dll 2015-04-22 13:51 - 2015-04-22 13:51 - 004491192 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\x86\VBoxRT-x86.dll 2013-07-09 10:41 - 2013-07-09 10:41 - 000766688 _____ () C:\Windows\SysWOW64\sn_regbase.dll 2016-08-13 08:15 - 2016-08-13 08:15 - 000008704 _____ () C:\Users\Maciek\AppData\Roaming\Thunderbird\Profiles\54nvnlu3.default\extensions\mintrayr@tn123.ath.cx\lib\tray_x86-msvc.dll 2015-04-22 13:51 - 2015-04-22 13:51 - 038561576 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2010-10-12 15:04 - 2010-10-12 15:04 - 000079360 _____ () C:\ProgramData\HP Wi-Fi Mobile Mouse Config\PelComm.dll 2011-01-14 09:13 - 2011-01-14 09:13 - 000047104 _____ () C:\ProgramData\HP Wi-Fi Mobile Mouse Config\PelDrv.dll 2010-09-24 08:26 - 2010-09-24 08:26 - 000044544 _____ () C:\ProgramData\HP Wi-Fi Mobile Mouse Config\PelHooks.dll 2011-04-11 09:12 - 2011-04-11 09:12 - 000105984 _____ () C:\ProgramData\HP Wi-Fi Mobile Mouse Config\PelUtil.dll 2010-06-22 11:31 - 2010-06-22 11:31 - 000028672 _____ () C:\ProgramData\HP Wi-Fi Mobile Mouse Config\PelMagnf.dll 2018-03-04 12:58 - 2018-03-04 12:58 - 082935384 _____ () C:\Program Files (x86)\Opera\51.0.2830.40\opera_browser.dll 2018-03-04 12:58 - 2018-03-04 12:58 - 003733592 _____ () C:\Program Files (x86)\Opera\51.0.2830.40\libglesv2.dll 2018-03-04 12:58 - 2018-03-04 12:58 - 000086616 _____ () C:\Program Files (x86)\Opera\51.0.2830.40\libegl.dll 2018-02-06 19:34 - 2018-03-02 11:14 - 017841152 _____ () C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_28_0_0_161.dll ==================== Alternate Data Streams (filtrowane) ========= ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2018-03-07 09:53 - 000000098 _____ C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-3188538164-421438474-1110416733-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Maciek\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\startupreg: ChomikBox => C:\Program Files (x86)\ChomikBox\chomikbox.exe ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{3E1271C2-1029-4523-B1C9-0787350DEA19}] => (Allow) C:\Users\Maciek\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{6D641FEE-AFE6-44D2-9792-E53DE6028DE4}] => (Allow) C:\Users\Maciek\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{16EF6E91-A727-43EF-B69E-7B67E3655D2C}E:\tempssd\utorrent\utorrent.exe] => (Allow) E:\tempssd\utorrent\utorrent.exe FirewallRules: [UDP Query User{5E323C3E-585D-433D-B480-151A86CB3DC8}E:\tempssd\utorrent\utorrent.exe] => (Allow) E:\tempssd\utorrent\utorrent.exe FirewallRules: [TCP Query User{7889496A-A142-4B11-8982-E125A9CD39FF}E:\tempssd\desktop\semestr 2 mgr\rak\wp-portable-3-5\bin\apache2\bin\httpd-wpp.exe] => (Allow) E:\tempssd\desktop\semestr 2 mgr\rak\wp-portable-3-5\bin\apache2\bin\httpd-wpp.exe FirewallRules: [UDP Query User{0B2C473E-FAF4-4AA9-893D-437EAC8750C0}E:\tempssd\desktop\semestr 2 mgr\rak\wp-portable-3-5\bin\apache2\bin\httpd-wpp.exe] => (Allow) E:\tempssd\desktop\semestr 2 mgr\rak\wp-portable-3-5\bin\apache2\bin\httpd-wpp.exe FirewallRules: [TCP Query User{F8EA9E51-2381-4C8C-87C3-B7448FEDEE40}E:\tempssd\desktop\semestr 2 mgr\rak\wp-portable-3-5\bin\mysql\bin\mysqld-nt.exe] => (Allow) E:\tempssd\desktop\semestr 2 mgr\rak\wp-portable-3-5\bin\mysql\bin\mysqld-nt.exe FirewallRules: [UDP Query User{35084863-BEBD-47F1-B51E-D50BBD761231}E:\tempssd\desktop\semestr 2 mgr\rak\wp-portable-3-5\bin\mysql\bin\mysqld-nt.exe] => (Allow) E:\tempssd\desktop\semestr 2 mgr\rak\wp-portable-3-5\bin\mysql\bin\mysqld-nt.exe FirewallRules: [TCP Query User{88A77CCD-23B6-4826-8F27-F38A7352DA2C}C:\program files (x86)\atmel\avr studio 5.1\avrstudio5.exe] => (Allow) C:\program files (x86)\atmel\avr studio 5.1\avrstudio5.exe FirewallRules: [UDP Query User{E5E3F2AB-93DE-42D3-B334-8B48D9FD8705}C:\program files (x86)\atmel\avr studio 5.1\avrstudio5.exe] => (Allow) C:\program files (x86)\atmel\avr studio 5.1\avrstudio5.exe FirewallRules: [TCP Query User{477A4E1B-C124-4461-9DEA-717502C0EA65}E:\tempssd\downloads\dcplusplus-0.843\dcplusplus.exe] => (Allow) E:\tempssd\downloads\dcplusplus-0.843\dcplusplus.exe FirewallRules: [UDP Query User{BBE7B8B3-49B6-4CE6-86B0-5D53F8AFDE8F}E:\tempssd\downloads\dcplusplus-0.843\dcplusplus.exe] => (Allow) E:\tempssd\downloads\dcplusplus-0.843\dcplusplus.exe FirewallRules: [TCP Query User{FE3A21B9-D636-433A-8947-5DD103225721}C:\windows\splwow64.exe] => (Allow) C:\windows\splwow64.exe FirewallRules: [UDP Query User{77674268-EF9C-43DF-97A7-40384FBA0421}C:\windows\splwow64.exe] => (Allow) C:\windows\splwow64.exe FirewallRules: [TCP Query User{AE1A37DB-7283-4589-B1D9-9EEF96FC6EFD}C:\windows\system32\rundll32.exe] => (Allow) C:\windows\system32\rundll32.exe FirewallRules: [UDP Query User{828EE05E-4246-400A-B272-FB68065E1A1A}C:\windows\system32\rundll32.exe] => (Allow) C:\windows\system32\rundll32.exe FirewallRules: [TCP Query User{EE7B182B-E418-4CB3-91A1-F77E7ACAC112}F:\programy\dcplusplus-0.843\dcplusplus.exe] => (Allow) F:\programy\dcplusplus-0.843\dcplusplus.exe FirewallRules: [UDP Query User{0EC52829-77C3-4838-952A-00DCA66C9DA2}F:\programy\dcplusplus-0.843\dcplusplus.exe] => (Allow) F:\programy\dcplusplus-0.843\dcplusplus.exe FirewallRules: [TCP Query User{C0028D7A-C101-48C0-92C1-2FC23B003BAE}E:\tempssd\utorrent\utorrent.exe] => (Allow) E:\tempssd\utorrent\utorrent.exe FirewallRules: [UDP Query User{88D6E93E-96BE-40C6-B041-533CE401B704}E:\tempssd\utorrent\utorrent.exe] => (Allow) E:\tempssd\utorrent\utorrent.exe FirewallRules: [TCP Query User{0D63A249-EDD7-450F-8553-0D62B8568C28}E:\tempssd\desktop\semestr 2 mgr\rak\wp-portable-3-5\bin\mysql\bin\mysqld-nt.exe] => (Allow) E:\tempssd\desktop\semestr 2 mgr\rak\wp-portable-3-5\bin\mysql\bin\mysqld-nt.exe FirewallRules: [UDP Query User{0BEE0B71-1842-4BDE-B8E3-E8E056F9A6A0}E:\tempssd\desktop\semestr 2 mgr\rak\wp-portable-3-5\bin\mysql\bin\mysqld-nt.exe] => (Allow) E:\tempssd\desktop\semestr 2 mgr\rak\wp-portable-3-5\bin\mysql\bin\mysqld-nt.exe FirewallRules: [TCP Query User{A5472DDE-FD03-48C1-998C-8D33B98E2D25}E:\tempssd\desktop\semestr 2 mgr\rak\wp-portable-3-5\bin\apache2\bin\httpd-wpp.exe] => (Allow) E:\tempssd\desktop\semestr 2 mgr\rak\wp-portable-3-5\bin\apache2\bin\httpd-wpp.exe FirewallRules: [UDP Query User{435AAD87-A890-4A6B-9A62-3CBABC14BD9E}E:\tempssd\desktop\semestr 2 mgr\rak\wp-portable-3-5\bin\apache2\bin\httpd-wpp.exe] => (Allow) E:\tempssd\desktop\semestr 2 mgr\rak\wp-portable-3-5\bin\apache2\bin\httpd-wpp.exe FirewallRules: [TCP Query User{C957B8AD-2017-4CA9-8E95-EF2571C35E83}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe FirewallRules: [UDP Query User{A58D1A52-8D35-4F31-B533-1D698081F838}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe FirewallRules: [VirtualPC-In-UDP-1] => (Allow) %SystemRoot%\System32\vpc.exe FirewallRules: [VirtualPC-In-UDP-2] => (Allow) %SystemRoot%\System32\vpc.exe FirewallRules: [VirtualPC-In-TCP-1] => (Allow) %SystemRoot%\System32\vpc.exe FirewallRules: [{199EBFE0-428A-41F3-92C0-8AD33E29F201}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{11A8E6E7-7870-4CE6-8ED8-065E08EA483B}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{E81EFD5E-51AE-4B5F-9875-4D41E42CB61C}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{56A17BF1-B923-47E3-86DF-865E8A05AE6E}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{640590E3-79D9-454C-85CC-CBA1A389351B}] => (Allow) LPort=8501 FirewallRules: [{33344C5E-7FEF-4AFF-80DF-2A5FD529AA52}] => (Allow) LPort=8501 FirewallRules: [TCP Query User{34940419-95A5-4295-AA29-877A1AFFE04A}F:\dc\lantv v0.7\lantv.exe] => (Allow) F:\dc\lantv v0.7\lantv.exe FirewallRules: [UDP Query User{003C9A04-D5C6-480D-8877-D5382DC8D631}F:\dc\lantv v0.7\lantv.exe] => (Allow) F:\dc\lantv v0.7\lantv.exe FirewallRules: [{CD4A55A3-AC69-4910-B11D-11764353D2A1}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe FirewallRules: [{E9F3CA92-CAD3-46F6-BDA4-C9D733553497}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe FirewallRules: [TCP Query User{BBC266A6-419A-4D60-9F66-DB167EA4015F}C:\program files (x86)\farrellton solar\modbusslave\modbusslave.exe] => (Allow) C:\program files (x86)\farrellton solar\modbusslave\modbusslave.exe FirewallRules: [UDP Query User{6E774874-D209-46B5-8541-D3287F719589}C:\program files (x86)\farrellton solar\modbusslave\modbusslave.exe] => (Allow) C:\program files (x86)\farrellton solar\modbusslave\modbusslave.exe FirewallRules: [{8B256F5C-6D22-470A-B465-949F134F0EE3}] => (Allow) C:\Program Files (x86)\Sony Mobile\Emma\Emma.exe FirewallRules: [{FBF52766-1D82-4AF2-B45A-47033B6DFD3D}] => (Allow) C:\Program Files (x86)\Sony Mobile\Emma\Emma.exe FirewallRules: [{70DE987C-7546-4AD0-BCB8-E8C09E6C9724}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe FirewallRules: [{993A6BFE-F17A-4D87-8978-521DC8385555}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe FirewallRules: [TCP Query User{4F68DB7F-D074-4937-8445-5D97DF7413A6}C:\program files (x86)\easyaccess 2.0\weintek-p2p.exe] => (Allow) C:\program files (x86)\easyaccess 2.0\weintek-p2p.exe FirewallRules: [UDP Query User{16647783-8AC1-4411-A0E3-2F67E5127D8A}C:\program files (x86)\easyaccess 2.0\weintek-p2p.exe] => (Allow) C:\program files (x86)\easyaccess 2.0\weintek-p2p.exe FirewallRules: [{5058C409-D955-4341-B05B-5AA32A43BCB6}] => (Block) C:\program files (x86)\easyaccess 2.0\weintek-p2p.exe FirewallRules: [{FB314B13-C5EE-479D-BA4E-7BCF8A9F9595}] => (Block) C:\program files (x86)\easyaccess 2.0\weintek-p2p.exe FirewallRules: [TCP Query User{68E8E1F2-BCFC-4C65-B779-4EEF5EE29018}C:\program files (x86)\easyaccess 2.0\cmtviewer.exe] => (Allow) C:\program files (x86)\easyaccess 2.0\cmtviewer.exe FirewallRules: [UDP Query User{997F46FC-705B-4658-AEAD-FC8C07BC27F1}C:\program files (x86)\easyaccess 2.0\cmtviewer.exe] => (Allow) C:\program files (x86)\easyaccess 2.0\cmtviewer.exe FirewallRules: [{1363A7BE-39DF-4438-A92A-21CB15883507}] => (Block) C:\program files (x86)\easyaccess 2.0\cmtviewer.exe FirewallRules: [{DB91E24F-2634-4898-B3DF-32A1485E93F7}] => (Block) C:\program files (x86)\easyaccess 2.0\cmtviewer.exe FirewallRules: [TCP Query User{9E3DDA4D-4E46-41C4-BEAC-8A74E53A89C4}E:\tempssd\downloads\arduino-1.6.6-windows\arduino-1.6.6\java\bin\javaw.exe] => (Allow) E:\tempssd\downloads\arduino-1.6.6-windows\arduino-1.6.6\java\bin\javaw.exe FirewallRules: [UDP Query User{21219194-B10F-41E5-B0EB-3918B15F5D94}E:\tempssd\downloads\arduino-1.6.6-windows\arduino-1.6.6\java\bin\javaw.exe] => (Allow) E:\tempssd\downloads\arduino-1.6.6-windows\arduino-1.6.6\java\bin\javaw.exe FirewallRules: [{86D3E800-6FBF-492E-AD44-D7E21C623B53}] => (Allow) C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe FirewallRules: [{EBE45419-63C4-454A-A20B-071EECC90661}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{016FF99B-7915-4F63-8C16-110281CA21FA}] => (Allow) C:\Program Files (x86)\Opera\51.0.2830.40\opera.exe FirewallRules: [{85B34758-97A3-4a63-832A-9825D8777935}}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe FirewallRules: [{9187CF69-6824-487d-A9F0-AFF5C2C29BA9}}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe FirewallRules: [{85B34758-97A3-4a63-832A-9825D8777934}}] => (Allow) C:\Program Files (x86)\UnHackMe\regruninfo.exe FirewallRules: [{9187CF69-6824-487d-A9F0-AFF5C2C29BA8}}] => (Allow) C:\Program Files (x86)\UnHackMe\regruninfo.exe FirewallRules: [{7FB5227A-D581-46F7-96D9-DFD0BFACFABD}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe FirewallRules: [{D7CEEA52-FC1F-4201-84D1-2C1B3D74B0E9}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe FirewallRules: [{4538D278-AAB2-425A-A908-06BEB5C75581}] => (Allow) C:\Program Files (x86)\UnHackMe\RegRunInfo.exe FirewallRules: [{294AE0FE-2441-47A3-AF30-595DE64014D1}] => (Allow) C:\Program Files (x86)\UnHackMe\RegRunInfo.exe ==================== Punkty Przywracania systemu ========================= UWAGA: Przywracanie systemu jest wyłączone ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: TAP-Windows Adapter V9 Description: TAP-Windows Adapter V9 Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: TAP-Windows Provider V9 Service: tap0901 Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. Name: TAP-Windows Adapter V9 #2 Description: TAP-Windows Adapter V9 Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: TAP-Windows Provider V9 Service: tap0901 Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. Name: Zewnętrzne urządzenie Bluetooth Description: Zewnętrzne urządzenie Bluetooth Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (03/08/2018 12:53:01 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT) Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu. Error: (03/08/2018 12:53:01 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (03/08/2018 12:53:01 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Dziennik System: ============= Error: (03/08/2018 12:48:36 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Uruchom do aplikacji serwera COM z identyfikatorem klasy CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} i identyfikatorem aplikacji APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} użytkownikowi ZARZĄDZANIE NT\USŁUGA LOKALNA o identyfikatorze zabezpieczeń SID (S-1-5-19) z adresu LocalHost (użycie LRPC). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (03/08/2018 12:48:30 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Uruchom do aplikacji serwera COM z identyfikatorem klasy CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} i identyfikatorem aplikacji APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} użytkownikowi ZARZĄDZANIE NT\SYSTEM o identyfikatorze zabezpieczeń SID (S-1-5-18) z adresu LocalHost (użycie LRPC). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (03/08/2018 12:46:56 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: Nastąpiło nieoczekiwane zatrzymanie modułu rozszerzalności sieci WLAN. Ścieżka modułu: C:\Windows\System32\IWMSSvc.dll Error: (03/08/2018 12:46:56 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: Nastąpiło nieoczekiwane zatrzymanie modułu rozszerzalności sieci WLAN. Ścieżka modułu: C:\Windows\System32\IWMSSvc.dll Error: (03/08/2018 12:46:55 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: Nastąpiło nieoczekiwane zatrzymanie modułu rozszerzalności sieci WLAN. Ścieżka modułu: C:\Windows\System32\IWMSSvc.dll Error: (03/08/2018 12:45:35 PM) (Source: Service Control Manager) (EventID: 7032) (User: ) Description: Menedżer sterowania usługami próbował podjąć akcję korekcyjną (Uruchom usługę ponownie) po nieoczekiwanym zakończeniu usługi Windows Search, ale ta akcja nie powiodła się przy następującym błędzie: Jedno wystąpienie usługi już działa. . ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i7-2630QM CPU @ 2.00GHz Procent pamięci w użyciu: 20% Całkowita pamięć fizyczna: 16334.36 MB Dostępna pamięć fizyczna: 13017.05 MB Całkowita pamięć wirtualna: 17356.54 MB Dostępna pamięć wirtualna: 13649.88 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:111.69 GB) (Free:18.65 GB) NTFS Drive d: (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive e: () (Fixed) (Total:79.98 GB) (Free:5.36 GB) NTFS Drive f: () (Fixed) (Total:613.55 GB) (Free:185.09 GB) NTFS Drive g: (HP_TOOLS) (Fixed) (Total:4.99 GB) (Free:1.86 GB) FAT32 Drive i: (RMPREPUSB) (Removable) (Total:3.68 GB) (Free:0.29 GB) NTFS \\?\Volume{36278503-7f9a-11e4-a4ff-806e6f6e6963}\ (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.03 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: 336898B8) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=80 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=613.5 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=5 GB) - (Type=0C) ======================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 951716DC) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (Size: 3.7 GB) (Disk ID: AA5FF571) Partition 1: (Active) - (Size=3.7 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=32 KB) - (Type=21) ==================== Koniec Addition.txt ============================