Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 09.01.2019 01 Uruchomiony przez Oliwka (11-01-2019 19:25:24) Uruchomiony z C:\Users\Oliwka\Downloads Windows 7 Professional Service Pack 1 (X64) (2015-01-22 20:32:22) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-3846079345-1508119535-3097016961-500 - Administrator - Disabled) Gość (S-1-5-21-3846079345-1508119535-3097016961-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3846079345-1508119535-3097016961-1002 - Limited - Enabled) Oliwka (S-1-5-21-3846079345-1508119535-3097016961-1001 - Administrator - Enabled) => C:\Users\Oliwka ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - ) A309 DeviceStage 1.0.0.1 (HKLM-x32\...\A309 DeviceStage) (Version: 1.0.0.1 - AVerMedia TECHNOLOGIES, Inc.) Adobe Flash Player 21 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 21.0.0.242 - Adobe Systems Incorporated) Adobe Flash Player 25 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated) Adobe Reader XI (11.0.16) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.16 - Adobe Systems Incorporated) Apple Application Support (32-bit) (HKLM-x32\...\{26356515-5821-40FA-9C3D-9785052A1062}) (Version: 4.3.1 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{C2651553-6CA3-4822-B2E6-BC4ACA6E0EA2}) (Version: 4.3.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) Archiwizator WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - ) Audacity 2.1.1 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team) Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.8.2356 - AVAST Software) Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 70.1.973.110 - AVAST Software) AVerMedia A309 (MiniCard, DVB-T) 1.0.64.61 (HKLM-x32\...\AVerMedia A309 (MiniCard, DVB-T)) (Version: 1.0.64.61 - AVerMedia TECHNOLOGIES, Inc.) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Canon MG5300 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5300_series) (Version: - Canon Inc.) CyberLink PowerDVD 13 (HKLM-x32\...\InstallShield_{3CFDF154-7E60-4E98-A8DF-C693A4F8E6B6}) (Version: 13.0.2720.57 - CyberLink Corp.) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.46.1.0328 - DT Soft Ltd) Detektor Winampa (HKU\S-1-5-21-3846079345-1508119535-3097016961-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc) Galeria fotografii (HKLM-x32\...\{77655DF6-A143-4A25-A5F8-127C8CE63EDA}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden High-Definition Video Playback (HKLM-x32\...\{9193490D-5229-4FC4-9BB9-A6D63C09574A}) (Version: 11.1.11100.4.196 - Nero AG) Hidden HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.5192 - HP Photo Creations) HP Photosmart 6510 series Badanie ulepszeń produktu (HKLM\...\{3049A55E-CF5F-4D40-B266-6A8450CCF136}) (Version: 24.0.342.0 - Hewlett-Packard Co.) HP Photosmart 6510 series Podstawowe oprogramowanie urządzenia (HKLM\...\{C8FFA53F-F110-44D7-BA42-F4380E04380E}) (Version: 24.0.342.0 - Hewlett-Packard Co.) HP Update (HKLM-x32\...\{85DF2EED-08BC-46FB-90DA-28B0D0A8E8A8}) (Version: 5.003.000.004 - Hewlett-Packard) iTunes (HKLM\...\{58D7E5F7-BAD1-49C5-93C8-B655736EDA00}) (Version: 12.4.0.119 - Apple Inc.) McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.569.1 - McAfee, Inc.) McAfee True Key (HKLM\...\TrueKey) (Version: 5.2.167.1 - McAfee, LLC) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Movie Maker (HKLM-x32\...\{DAE8CC57-EBF5-4D46-8572-9A0C769D6F16}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Nero 11 (HKLM-x32\...\{5CB79EE7-301F-4AE7-A76D-D27BF8942E0A}) (Version: 11.2.00400 - Nero AG) Nero Backup Drivers (HKLM\...\{D600D357-5CB9-4DE9-8FD4-14E208BD1970}) (Version: 1.0.11100.8.0 - Nero AG) NVIDIA Oprogramowanie systemu PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation) NVIDIA Sterownik graficzny 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation) Opera Stable 30.0.1835.59 (HKLM-x32\...\Opera 30.0.1835.59) (Version: 30.0.1835.59 - Opera Software) Origin (HKLM-x32\...\Origin) (Version: 8.4.1.210 - Electronic Arts, Inc.) PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.) Podstawowe programy Windows Live (HKLM-x32\...\{8FFD72FC-4FFA-472D-9F76-AEC85F602F9D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Podstawowe programy Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.) Testy B 2016 (HKLM-x32\...\{51c8ad09-d9b5-478f-8dfe-6a5e040d7e7c}_is1) (Version: 6.2.5.108 - Grupa IMAGE Sp. z o.o.) The Sims 4: City Living (HKLM\...\dGhlc2ltczRjaXR5bGl2aW5n_is1) (Version: 1 - ) The Sims" 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.0.631 - Electronic Arts) The Sims™ 3 Collections (HKLM-x32\...\{3E254887-AB06-4385-9C5C-D4AD8DC6EA79}_is1) (Version: . - .) The Sims™ 3 Wymarzone Podróże (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.17.2 - Electronic Arts) The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.25.136.1020 - Electronic Arts Inc.) welcome (HKLM-x32\...\{51865D9D-8F63-46F2-87AB-9E72F93B618C}) (Version: 11.0.22900.0.0 - Nero AG) Hidden Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc) WinZip (HKLM-x32\...\WinZip) (Version: 8.1 (4331) - WinZip Computing, Inc.) Your Uninstaller! 2006 Version 5 (HKLM-x32\...\Your Uninstaller! 2006_is1) (Version: 5.0 - URSoft, Inc.) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-12-19] (AVAST Software) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-12-19] (AVAST Software) ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) ContextMenuHandlers1-x32: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-12-19] (AVAST Software) ContextMenuHandlers1-x32-x32: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2004-01-25] () ContextMenuHandlers1-x32-x32-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files (x86)\WinZip\WZSHLSTB.DLL [2001-11-27] (WinZip Computing, Inc.) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-12-19] (AVAST Software) ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) ContextMenuHandlers4-x32-x32: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2004-01-25] () ContextMenuHandlers4-x32-x32-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files (x86)\WinZip\WZSHLSTB.DLL [2001-11-27] (WinZip Computing, Inc.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2014-07-02] (NVIDIA Corporation) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-12-19] (AVAST Software) ContextMenuHandlers6-x32: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2004-01-25] () ContextMenuHandlers6-x32-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files (x86)\WinZip\WZSHLSTB.DLL [2001-11-27] (WinZip Computing, Inc.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0C865BCE-9862-4176-B029-89D841B93846} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-23] (AVAST Software) Task: {0D0FEEFE-C92D-45A5-877F-08940DAF33DB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.) Task: {17A7402D-8712-45D1-BFA4-77A9902F1224} - System32\Tasks\Opera scheduled Autoupdate 1421961670 => C:\Program Files (x86)\Opera\launcher.exe [2015-06-10] (Opera Software) Task: {1DB18449-22E8-46EE-B496-3D889FFD96C1} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-23] (AVAST Software) Task: {2A225B4B-782B-4F29-8053-3BFDBCE42607} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.) Task: {36528E69-FEE0-45D8-B0CF-A4598BE76D5F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated) Task: {4CACD80C-487E-40B7-A5B5-5064F06AF91E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-06-06] (Adobe Systems Incorporated) Task: {8F54DECC-6104-4573-B3DC-45E3BF7A36F6} - System32\Tasks\HPCustParticipation HP Photosmart 6510 series => C:\Program Files\HP\HP Photosmart 6510 series\Bin\HPCustPartic.exe [2011-05-25] (Hewlett-Packard Co.) Task: {92FFD5F7-EE34-4D54-B6AE-1759597FFCEA} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_171_pepper.exe [2017-06-06] (Adobe Systems Incorporated) Task: {99457638-165D-43A2-A43C-44FEAEE85071} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-12-19] (AVAST Software) Task: {DBE6D32E-2A10-4CED-A7EB-B8E954917DF0} - System32\Tasks\HP Photo Creations Messager => C:\ProgramData\HP Photo Creations\MessageCheck.exe [2011-02-15] () Task: {DD17B6D5-F224-4C92-BE54-194335EFEF33} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-12-29] (AVAST Software) Task: {EA1BA7ED-74B2-47F5-AE7D-F2DD6AE14352} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {F859F619-67CF-435C-BE42-A974228825A4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\HP Photo Creations Messager.job => C:\ProgramData\HP Photo Creations\MessageCheck.exe ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2016-04-22 00:07 - 2016-04-22 00:07 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2016-04-22 00:07 - 2016-04-22 00:07 - 001337144 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2018-05-15 08:05 - 2018-05-15 08:05 - 000008192 _____ () C:\Windows\SysWOW64\srvany.exe 2018-05-15 08:05 - 2018-05-15 08:05 - 000151552 _____ () C:\Windows\KMService.exe 2018-12-19 18:44 - 2018-12-19 18:44 - 000728792 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll 2015-01-22 22:06 - 2014-07-02 19:55 - 000116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2018-12-19 18:59 - 2018-12-12 06:11 - 005237216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libglesv2.dll 2018-12-19 18:59 - 2018-12-12 06:11 - 000117216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libegl.dll 2018-12-19 18:44 - 2018-12-19 18:44 - 000919256 _____ () C:\Program Files\AVAST Software\Avast\anen.dll 2018-12-19 18:44 - 2018-12-19 18:44 - 000596696 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll 2018-12-19 18:44 - 2018-12-19 18:44 - 000496344 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll 2018-12-19 18:44 - 2018-12-19 18:44 - 001112280 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll 2018-12-19 18:44 - 2018-12-19 18:44 - 000150744 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll 2019-01-11 19:13 - 2019-01-11 19:13 - 005739664 _____ () C:\Program Files\AVAST Software\Avast\defs\19011102\algo.dll 2018-03-16 10:03 - 2018-03-16 10:03 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2019-01-04 17:06 - 000000079 _____ C:\Windows\system32\drivers\etc\hosts 0.0.0.1 mssplus.mcafee.com ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\Skype\Phone\ HKU\S-1-5-21-3846079345-1508119535-3097016961-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Oliwka\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == Załączenie wejścia w fixlist spowoduje jego usunięcie. ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Corporation) FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Corporation) FirewallRules: [{3A09028F-5550-43B2-AE74-5A6E2A33F84E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) FirewallRules: [{D3E48D68-33B3-4A78-AA8D-7D289BBDBB7B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) FirewallRules: [{B61A9A8C-AED4-4988-94AA-B3A4BF020B10}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13.exe (CyberLink Corp.) FirewallRules: [{2833D72A-A5C7-45EB-BBB3-A7DDA58039F7}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe (CyberLink) FirewallRules: [{5327A23A-047D-40FC-B237-CBAE9DD2AA19}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe (CyberLink Corp.) FirewallRules: [{558D2C94-01E2-491C-AA36-D551D169CEC5}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13ML.exe (CyberLink Corp.) FirewallRules: [{D4F563B3-DE18-4B2A-A538-6B0F9915C2CF}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Movie\PowerDVD.exe (CyberLink Corp.) FirewallRules: [{4E573030-3781-4FC9-9693-2F0907050A93}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Movie\PowerDVD Cinema\PowerDVDCinema13.exe (CyberLink Corp.) FirewallRules: [{BF2D0DB2-4925-41EB-9AD4-EDBFEF4918BD}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft, Inc.) FirewallRules: [{57395E93-5921-4C05-B1E5-715A337D29DB}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft, Inc.) FirewallRules: [{045E0FE5-EAA3-4A5E-9B00-3CFF5021A09C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.) FirewallRules: [{9219DADB-B26C-4C9C-97BC-4F4DA1DE46CD}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation) FirewallRules: [{F4A6A714-2D93-431F-8D98-501E9FC65EA2}] => (Allow) LPort=2869 FirewallRules: [{4B228984-64E7-4637-AFB4-739434DBFC34}] => (Allow) LPort=1900 FirewallRules: [TCP Query User{EB3200FA-B29C-48BD-94C1-DBA5269033F3}C:\program files\utorrent.exe] => (Allow) C:\program files\utorrent.exe Brak pliku FirewallRules: [UDP Query User{EA636586-8876-43A6-91CE-96F2AE1E2BB6}C:\program files\utorrent.exe] => (Allow) C:\program files\utorrent.exe Brak pliku FirewallRules: [TCP Query User{0E57C50A-C647-4BBB-8DC9-946FE5753122}C:\windows\syswow64\ftp.exe] => (Block) C:\windows\syswow64\ftp.exe (Microsoft Corporation) FirewallRules: [UDP Query User{11B96069-D81B-45E0-975C-CD1FD4A09F54}C:\windows\syswow64\ftp.exe] => (Block) C:\windows\syswow64\ftp.exe (Microsoft Corporation) FirewallRules: [{0BE41870-2821-493D-8D55-1EB8B093910D}] => (Allow) C:\Program Files\HP\HP Photosmart 6510 series\Bin\DeviceSetup.exe (Hewlett-Packard Co.) FirewallRules: [{4C17104E-870D-4350-AF24-62788BA21B8B}] => (Allow) C:\Program Files\HP\HP Photosmart 6510 series\Bin\HPNetworkCommunicator.exe (Hewlett-Packard Co.) FirewallRules: [{6E2A5BB9-6150-4834-9BEA-8FAE39BF7126}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) FirewallRules: [{2EE0E25D-45BB-4612-BCAF-65EDBBCD1323}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) FirewallRules: [{1442EABE-BD5E-46BE-A701-29259A430476}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc.) FirewallRules: [{FA0C560C-6FA1-47F0-9514-B935ED7757C8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc.) FirewallRules: [{4D30BF42-50A7-4384-AA97-86D696D92B96}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc.) FirewallRules: [{25650B49-0719-4E2E-95C4-A3416043F497}] => (Allow) C:\Program Files\The Sims 4 City Living\Game\Bin\TS4.exe (Electronic Arts Inc.) FirewallRules: [{87B5547B-2BC2-456B-BEE9-A98E44A974D3}] => (Allow) C:\Program Files\The Sims 4 City Living\Game\Bin\TS4.exe (Electronic Arts Inc.) FirewallRules: [{6A964D3A-A90B-420A-B7B3-E6CFD84F83EE}] => (Allow) C:\Program Files\The Sims 4 City Living\Game\Bin\TS4_x64.exe (Electronic Arts Inc.) FirewallRules: [{F6A8872B-A3B0-479E-8AD4-847B4B21E376}] => (Allow) C:\Program Files\The Sims 4 City Living\Game\Bin\TS4_x64.exe (Electronic Arts Inc.) FirewallRules: [{0ACE47C3-8845-46BF-8D51-D657EA84C21F}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software) FirewallRules: [{7247C450-5578-481B-9AFD-EFB48DE7CD54}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software) FirewallRules: [{25AC2000-D684-413C-8057-E46B3D0F1411}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) FirewallRules: [{E96FEA81-9667-484B-B441-B1C8B719A272}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software) FirewallRules: [{6CD58108-137A-4695-BF74-834FF00EFBF5}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software) FirewallRules: [{D2DB8D3B-4D4F-4B0D-8D8A-CEE028A3747F}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software) ==================== Punkty Przywracania systemu ========================= 31-07-2018 19:42:40 Zaplanowany punkt kontrolny 30-08-2018 17:35:26 Zaplanowany punkt kontrolny 09-09-2018 10:22:40 Zaplanowany punkt kontrolny 27-09-2018 17:21:26 Zaplanowany punkt kontrolny 19-12-2018 19:25:30 Zaplanowany punkt kontrolny 29-12-2018 15:47:38 Zaplanowany punkt kontrolny 06-01-2019 19:19:53 Zaplanowany punkt kontrolny 11-01-2019 18:59:48 Operacja przywracania ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: FingerPrinter Reader Description: FingerPrinter Reader Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (01/11/2019 07:20:47 PM) (Source: MsiInstaller) (EventID: 11316) (User: ZARZĄDZANIE NT) Description: Product: Avast Update Helper -- Error 1316. A network error occurred while attempting to read from the file: C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\GoogleUpdateHelper.msi Error: (01/11/2019 07:18:39 PM) (Source: MsiInstaller) (EventID: 11500) (User: Oliwka-Komputer) Description: Produkt: Microsoft Office Professional Plus 2010 — Błąd 1500.Inna instalacja jest w toku. Należy ją ukończyć przed kontynuowaniem tej instalacji. Error: (01/11/2019 07:18:35 PM) (Source: MsiInstaller) (EventID: 11500) (User: Oliwka-Komputer) Description: Produkt: Microsoft Office Professional Plus 2010 — Błąd 1500.Inna instalacja jest w toku. Należy ją ukończyć przed kontynuowaniem tej instalacji. Error: (01/11/2019 07:17:00 PM) (Source: MsiInstaller) (EventID: 11316) (User: ZARZĄDZANIE NT) Description: Product: Avast Update Helper -- Error 1316. A network error occurred while attempting to read from the file: C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\GoogleUpdateHelper.msi Error: (01/11/2019 06:54:26 PM) (Source: MsiInstaller) (EventID: 11316) (User: ZARZĄDZANIE NT) Description: Product: Avast Update Helper -- Error 1316. A network error occurred while attempting to read from the file: C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\GoogleUpdateHelper.msi Error: (01/11/2019 06:54:20 PM) (Source: Microsoft Office 14) (EventID: 2001) (User: ) Description: Microsoft Word: Rejected Safe Mode action : Poprawne uruchomienie produktu Word ostatnim razem nie powiodło się. Uruchomienie produktu Word w trybie awaryjnym umożliwi poprawienie lub wyodrębnienie problemu związanego z uruchamianiem, w celu pomyślnego uruchomienia programu. Niektóre funkcje mogą być w tym trybie wyłączone. Czy chcesz uruchomić produkt Word w trybie awaryjnym?. Rejected Safe Mode action : Microsoft Word. Error: (01/11/2019 06:03:13 PM) (Source: MsiInstaller) (EventID: 11316) (User: ZARZĄDZANIE NT) Description: Product: Avast Update Helper -- Error 1316. A network error occurred while attempting to read from the file: C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\GoogleUpdateHelper.msi Error: (01/11/2019 05:52:53 PM) (Source: MsiInstaller) (EventID: 11316) (User: ZARZĄDZANIE NT) Description: Product: Avast Update Helper -- Error 1316. A network error occurred while attempting to read from the file: C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\GoogleUpdateHelper.msi Dziennik System: ============= Error: (01/11/2019 07:08:25 PM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT) Description: Odebrano następujący alert krytyczny: 70. Error: (01/11/2019 07:06:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi McAfee True Key Scheduler z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (01/11/2019 07:06:21 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą McAfee True Key Scheduler. Error: (01/11/2019 07:06:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi McAfee True Key z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (01/11/2019 07:06:20 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą McAfee True Key. Error: (01/11/2019 07:06:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Service Installer TrueKey z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (01/11/2019 06:53:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi McAfee True Key Scheduler z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (01/11/2019 06:53:15 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą McAfee True Key Scheduler. CodeIntegrity: =================================== Date: 2019-01-02 13:18:55.293 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\PROGRA~3\McAfee\Update\Installs\pkg_truekeyclass\Download_Files\shared\mcinst\mcinst_cat\McInst.exe because the set of per-page image hashes could not be found on the system. Date: 2016-09-21 16:33:43.625 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswHdsKe.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-21 16:33:43.615 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswHdsKe.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-02-15 13:48:08.648 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-02-15 13:46:20.946 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-02-15 13:43:20.496 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-02-15 13:28:15.392 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-02-15 12:46:57.585 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM)2 Duo CPU T6600 @ 2.20GHz Procent pamięci w użyciu: 54% Całkowita pamięć fizyczna: 4090.93 MB Dostępna pamięć fizyczna: 1866.99 MB Całkowita pamięć wirtualna: 8180.05 MB Dostępna pamięć wirtualna: 5906.96 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:232.88 GB) (Free:48.5 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano odczytując BCD)] Drive d: (Dysk lokalny) (Fixed) (Total:232.88 GB) (Free:119.04 GB) NTFS Drive f: (The Sims 4 City Living) (CDROM) (Total:18.56 GB) (Free:0 GB) UDF ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 05F105F1) Partition 1: (Not Active) - (Size=232.9 GB) - (Type=0F Extended) Partition 2: (Active) - (Size=232.9 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================