Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 28-03-2021 Uruchomiony przez DOMOWY (29-03-2021 20:18:51) Uruchomiony z C:\Users\DOMOWY\Desktop Windows 7 Home Premium Service Pack 1 (X64) (2017-04-29 18:01:50) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-3982927073-1380822547-1866706166-500 - Administrator - Disabled) DOMOWY (S-1-5-21-3982927073-1380822547-1866706166-1000 - Administrator - Enabled) => C:\Users\DOMOWY Gość (S-1-5-21-3982927073-1380822547-1866706166-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3982927073-1380822547-1866706166-1002 - Limited - Enabled) UpdatusUser (S-1-5-21-3982927073-1380822547-1866706166-1003 - Limited - Enabled) => C:\Users\UpdatusUser ZUZA (S-1-5-21-3982927073-1380822547-1866706166-1004 - Limited - Enabled) => C:\Users\ZUZA ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-3982927073-1380822547-1866706166-1000\...\uTorrent) (Version: 3.5.5.45790 - BitTorrent Inc.) 7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 21.001.20145 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.89 - Adobe Systems Incorporated) Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.465 - Adobe) Any Video Converter 6.2.2 (HKLM-x32\...\Any Video Converter) (Version: 6.2.2 - Anvsoft) Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.2.0.40 - Atheros Communications) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.6795 - CDBurnerXP) ChomikBox (HKLM-x32\...\{8E4185CC-4FF3-46B9-A4DB-5B850B71ABC4}) (Version: 2.0.8.2 - Chomikuj.pl) Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden Diagnostyka drukarki Samsung (HKLM-x32\...\Samsung Printer Diagnostics) (Version: 1.0.4.28 - Samsung Electronics Co., Ltd.) Duplicate File Finder wersja 7.1.0.1 (HKLM-x32\...\Duplicate File Finder_is1) (Version: 7.1.0.1 - ) e-Deklaracje Desktop (HKLM-x32\...\{7246AA61-4951-F539-2CD1-255F42CF5CF7}) (Version: 13.0.0 - Ministerstwo Finansów) Hidden e-Deklaracje Desktop (HKLM-x32\...\e-Deklaracje.A1909296681C7ACEFE45687D3A64758C8659BF46.1) (Version: 13.0.0 - Ministerstwo Finansów) FormatFactory 4.3.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.3.0.0 - Free Time) Free FLAC to MP3 Converter 1.4 (HKLM-x32\...\{A54C01BD-1277-4722-B42B-EC9800A90B1E}_is1) (Version: 1.4 - PolySoft Solutions) Free Screen Video Recorder (HKLM-x32\...\Free Screen Video Recorder_is1) (Version: 3.0.45.1027 - Digital Wave Ltd) Free Video Flip and Rotate version 2.2.1.805 (HKLM-x32\...\Free Video Flip and Rotate_is1) (Version: 2.2.1.805 - DVDVideoSoft Ltd.) FreeOCR v5.4 (HKLM-x32\...\freeocr_is1) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 89.0.4389.90 - Google LLC) HP Deskjet 2540 series — podstawowe oprogramowanie urządzenia (HKLM\...\{642A855A-F7A6-429C-9818-DF41AE1982BE}) (Version: 32.2.188.47710 - Hewlett-Packard Co.) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation) Java 8 Update 281 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180281F0}) (Version: 8.0.2810.9 - Oracle Corporation) K-Lite Codec Pack 5.9.0 (64-bit) (HKLM\...\KLiteCodecPack64_is1) (Version: 5.9.0 - ) KME NEVO (4.0.9.0) (HKLM-x32\...\NEVO_nsis) (Version: 4.0.9.0 - KME) Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes) Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation) Microsoft .NET Framework 4.8 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.8.03761 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.63 - Microsoft Corporation) Microsoft Office Professional Plus 2016 - pl-pl (HKLM\...\ProPlusRetail - pl-pl) (Version: 16.0.12527.21686 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3982927073-1380822547-1866706166-1000\...\OneDriveSetup.exe) (Version: 21.030.0211.0002 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-3982927073-1380822547-1866706166-1000\...\Teams) (Version: 1.4.00.2879 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Mozilla Firefox 87.0 (x64 pl) (HKLM\...\Mozilla Firefox 87.0 (x64 pl)) (Version: 87.0 - Mozilla) MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team) NVIDIA Sterownik 3D Vision 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.54 - NVIDIA Corporation) NVIDIA Sterownik graficzny 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.54 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12527.21686 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12527.21686 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12527.21686 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0415-0000-0000000FF1CE}) (Version: 16.0.12527.21686 - Microsoft Corporation) Hidden Oracle VM VirtualBox 6.0.12 (HKLM\...\{E572CA5C-A60B-4C3B-9E9E-1302BBE4DBEE}) (Version: 6.0.12 - Oracle Corporation) PhoenixSuit (HKLM-x32\...\{EBF1BED9-4321-40D7-8837-177AE54C457C}) (Version: 1.0.5 - AllWinnertech) Przypominacz JT 3.3.1 (HKLM-x32\...\Przypominacz JT 3.3.1_is1) (Version: 3.3.1 - Janusz Tomczak) Python 3.8.6 (64-bit) (HKU\S-1-5-21-3982927073-1380822547-1866706166-1000\...\{fef707d7-d438-4dd9-bb0f-5788ee658f4f}) (Version: 3.8.6150.0 - Python Software Foundation) Python 3.8.6 Add to Path (64-bit) (HKLM\...\{0CD35A78-6567-46C1-BC82-E258D6C3D66C}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Core Interpreter (64-bit) (HKLM\...\{DE282FFC-F4AD-416A-8479-F3C72F94C967}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Development Libraries (64-bit) (HKLM\...\{59704C10-77A1-4D72-A97B-8FB2A933985B}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Documentation (64-bit) (HKLM\...\{558E2EFE-87D5-4E3F-B050-D4DEC548EA02}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Executables (64-bit) (HKLM\...\{7F55BD37-4437-47EE-8C82-3103E19DB114}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 pip Bootstrap (64-bit) (HKLM\...\{28B1EC39-1C9F-482C-BFF7-4D347CE5ADED}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Standard Library (64-bit) (HKLM\...\{04BA74DE-13BE-477C-8FE5-19F247C0D555}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Tcl/Tk Support (64-bit) (HKLM\...\{79C40B8F-BC99-4FFF-8E1E-F05D246E772C}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Test Suite (64-bit) (HKLM\...\{3968C4C7-904D-4571-BC22-1CD8B87549D7}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Utility Scripts (64-bit) (HKLM\...\{0A041F8F-4124-46CC-B021-AB8E70A873EC}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python Launcher (HKLM-x32\...\{3B82A91D-DB48-4160-94D2-0B8C6D2B1710}) (Version: 3.8.7205.0 - Python Software Foundation) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8117 - Realtek Semiconductor Corp.) Realtek PCI-E Wireless LAN Driver (HKLM-x32\...\InstallShield_{70714FB7-4084-4202-A599-2D5935DECB67}) (Version: Drv_3.00.0015 - REALTEK Semiconductor Corp.) Revo Uninstaller Pro 2.5.8 (HKLM\...\Revo Uninstaller Pro_is1) (Version: 2.5.8 - ) Roblox Player (HKLM-x32\...\roblox-player-admin) (Version: - Roblox Corporation) Roblox Player for ZUZA (HKU\S-1-5-21-3982927073-1380822547-1866706166-1004\...\roblox-player) (Version: - Roblox Corporation) Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.05.81.00(2015-05-25) - Samsung Electronics Co., Ltd.) Samsung Easy Wireless Setup (HKLM-x32\...\Easy Wireless Setup) (Version: 3.70.18.0 - Samsung Electronics Co., Ltd.) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.) Scratch 2 Offline Editor (HKLM-x32\...\{6E988774-5309-E02E-7EA8-F19CB65C2063}) (Version: 255 - Massachusetts Institute of Technology) Hidden Scratch 2 Offline Editor (HKLM-x32\...\edu.media.mit.Scratch2Editor) (Version: 461 - Massachusetts Institute of Technology) Skype (wersja 8.62) (HKLM-x32\...\Skype_is1) (Version: 8.62 - Skype Technologies S.A.) Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.20042.6 - Samsung Electronics Co., Ltd.) Hidden Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.20042.6 - Samsung Electronics Co., Ltd.) Sony Channel Editor (wersja 1.2) (HKLM-x32\...\{A60B1C02-DF63-43A3-8F45-7B2C6EC065F3}_is1) (Version: 1.2 - Sony Visual Products Europe) Streaming Audio Recorder wersja 3.4.5 (HKLM-x32\...\Streaming Audio Recorder_is1) (Version: 3.4.5 - ) TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.3.2682 - TeamViewer) UltraISO Premium V9.5 (HKLM-x32\...\UltraISO_is1) (Version: - ) Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.67 - Samsung Electronics CO., LTD.) UnityPDF version 1.0.1.0 (HKLM-x32\...\{DBA31E1D-4CD2-4E8E-9EEB-ADBE24D8C04F}_is1) (Version: 1.0.1.0 - UnityPDF) VdhCoApp 1.6.0 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper) VoipConnect (HKLM-x32\...\VoipConnect_is1) (Version: 4.14 build 778 - Finarea S.A. Switzerland) Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) Windows Driver Package - Android (WUDFRd) WPD (04/07/2011 5.2.5326.4762) (HKLM\...\78917410BE8040E4932D812DC4AE7CA774A40096) (Version: 04/07/2011 5.2.5326.4762 - Android) Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00001) (HKLM\...\450B7CBC371CAEC6A328083977AA7A09E7AE5D29) (Version: 08/27/2012 7.0.0000.00001 - Google, Inc.) ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-3982927073-1380822547-1866706166-1000_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\DOMOWY\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20289.5\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3982927073-1380822547-1866706166-1000_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\DOMOWY\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll => Brak pliku ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Bluetooth Suite\BtvAppExt.dll [2010-10-27] (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] ContextMenuHandlers1: [BTMSentToExt] -> {0A7D34C2-E9DA-48A1-9E34-0CDFC2DE3B44} => C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2011-10-18] (Intel Corporation - Mobile Wireless Group -> Intel Corporation) ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll -> Brak pliku ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2009-10-22] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll [2010-10-27] (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-17] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Brak pliku ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2009-10-22] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) ContextMenuHandlers4: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll -> Brak pliku ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2015-06-01] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-17] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Brak pliku ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2010-08-12] (VS Revo Group -> VS Revo Group) ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2009-10-22] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) ContextMenuHandlers6: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll -> Brak pliku ==================== Codecs (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Drivers32: [msacm.l3acm] => C:\Windows\system32\l3codecp.acm [182272 2009-07-14] (Microsoft Windows -> Fraunhofer Institut Integrierte Schaltungen IIS) HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\system32\ff_vfw.dll [92160 2012-02-15] () [Brak podpisu cyfrowego] ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\":: WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99] WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate] ==================== Załadowane moduły (filtrowane) ============= 2020-05-19 20:58 - 2010-12-27 13:12 - 000538324 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Przypominacz JT\freetype6.dll 2020-05-19 20:58 - 2017-02-18 15:43 - 000112640 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Przypominacz JT\JT.dll 2020-05-19 20:58 - 2011-11-22 09:48 - 001294335 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Przypominacz JT\libcairo-2.dll 2020-05-19 20:58 - 2009-01-31 21:42 - 000143096 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Przypominacz JT\libexpat-1.dll 2020-05-19 20:58 - 2010-02-05 20:55 - 000279059 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Przypominacz JT\libfontconfig-1.dll 2020-05-19 20:58 - 2010-08-17 15:38 - 000230529 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Przypominacz JT\libpng14-14.dll 2020-05-19 20:58 - 2010-08-20 10:18 - 000100352 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Przypominacz JT\zlib1.dll 2014-09-08 14:38 - 2014-09-08 14:38 - 000051200 _____ () [Brak podpisu cyfrowego] C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll 2017-04-30 17:44 - 2016-08-10 13:07 - 002847744 ____N () [Brak podpisu cyfrowego] C:\Windows\system32\DlgSearchEngine.dll 2017-04-30 17:44 - 2015-01-29 13:02 - 000022528 _____ () [Brak podpisu cyfrowego] C:\Windows\System32\us005lm.dll 2017-11-02 21:58 - 2015-03-12 04:43 - 000022528 _____ () [Brak podpisu cyfrowego] C:\Windows\System32\us013lm.dll 2010-10-27 17:18 - 2010-10-27 17:18 - 000060576 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\AthCopyHook.dll 2010-10-27 17:19 - 2010-10-27 17:19 - 000044704 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\BPP.DLL 2010-10-27 17:19 - 2010-10-27 17:19 - 000043680 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\BTBIP.DLL 2010-10-27 17:19 - 2010-10-27 17:19 - 000029856 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\BtFileStore.dll 2010-10-27 17:19 - 2010-10-27 17:19 - 000030368 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\BtFileStoreOpp.dll 2010-10-27 17:19 - 2010-10-27 17:19 - 000207520 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\BtObexFt.dll 2010-10-27 17:19 - 2010-10-27 17:19 - 000208544 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\BTOBEXOP.dll 2010-10-27 17:19 - 2010-10-27 17:19 - 000180896 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\BtvAppExt.dll 2010-10-27 17:19 - 2010-10-27 17:19 - 000305312 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\filetransfer.dll 2010-10-27 17:19 - 2010-10-27 17:19 - 000071840 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\goep.dll 2010-10-27 17:19 - 2010-10-27 17:19 - 000078496 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\GOEP_bpp.DLL 2010-10-27 17:19 - 2010-10-27 17:19 - 000073376 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\GOEP_SINGLE.DLL 2010-10-27 17:19 - 2010-10-27 17:19 - 000078496 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\Handsfree.dll 2010-10-27 17:19 - 2010-10-27 17:19 - 000119456 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\L2capLib.dll 2010-10-27 17:19 - 2010-10-27 17:19 - 000118944 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\ObjPush.dll 2010-10-27 17:19 - 2010-10-27 17:19 - 002232992 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\OutLookLib.dll 2010-10-27 17:19 - 2010-10-27 17:19 - 000081056 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\RfcommLib.dll 2010-10-27 17:19 - 2010-10-27 17:19 - 000425632 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll 2010-10-27 17:19 - 2010-10-27 17:19 - 000140448 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\skypeagent.dll 2010-10-27 17:19 - 2010-10-27 17:19 - 000066720 _____ (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\Sync.dll 2020-05-19 20:58 - 2010-09-12 07:22 - 000152489 _____ (Free Software Foundation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Przypominacz JT\intl.dll 2017-04-29 21:05 - 2016-10-04 16:51 - 000076800 _____ (Igor Pavlov) [Brak podpisu cyfrowego] C:\Program Files\7-Zip\7-zip.dll 2011-09-27 08:42 - 2011-09-27 08:42 - 002787328 _____ (Intel Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Intel\Bluetooth\Resources\plk.dll 2017-05-01 13:36 - 2017-05-01 13:36 - 000113152 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] C:\Windows\WinSxS\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.762_none_ca3f79d486b08636\ATL80.DLL 2017-05-01 13:36 - 2017-05-01 13:36 - 001656320 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] C:\Windows\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_c46a533c8a667ee7\MFC80.DLL 2017-05-01 13:36 - 2017-05-01 13:36 - 001652736 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] C:\Windows\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_c46a533c8a667ee7\MFC80U.DLL 2017-04-29 22:37 - 2016-12-29 14:29 - 000339072 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\_nvstapisvr64.dll 2020-05-19 20:58 - 2011-11-17 13:53 - 000333729 _____ (Red Hat Software) [Brak podpisu cyfrowego] C:\Program Files (x86)\Przypominacz JT\libpango-1.0-0.dll 2020-05-19 20:58 - 2011-11-17 13:53 - 000104729 _____ (Red Hat Software) [Brak podpisu cyfrowego] C:\Program Files (x86)\Przypominacz JT\libpangocairo-1.0-0.dll 2020-05-19 20:58 - 2011-11-17 13:53 - 000815421 _____ (Red Hat Software) [Brak podpisu cyfrowego] C:\Program Files (x86)\Przypominacz JT\libpangoft2-1.0-0.dll 2020-05-19 20:58 - 2011-11-17 13:53 - 000108945 _____ (Red Hat Software) [Brak podpisu cyfrowego] C:\Program Files (x86)\Przypominacz JT\libpangowin32-1.0-0.dll 2014-07-21 12:07 - 2014-07-21 12:07 - 000123904 _____ (Samsung Electronics Co., Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Samsung\Easy Printer Manager\SmartScreenPrint\CDAKEYMonitor64.dll 2020-05-19 20:58 - 2011-07-19 08:42 - 001242929 _____ (The GLib developer community) [Brak podpisu cyfrowego] C:\Program Files (x86)\Przypominacz JT\libglib-2.0-0.dll 2020-05-19 20:58 - 2011-07-19 08:50 - 000036986 _____ (The GLib developer community) [Brak podpisu cyfrowego] C:\Program Files (x86)\Przypominacz JT\libgmodule-2.0-0.dll 2020-05-19 20:58 - 2011-07-19 08:53 - 000341594 _____ (The GLib developer community) [Brak podpisu cyfrowego] C:\Program Files (x86)\Przypominacz JT\libgobject-2.0-0.dll 2020-05-19 20:58 - 2011-07-19 08:50 - 000044287 _____ (The GLib developer community) [Brak podpisu cyfrowego] C:\Program Files (x86)\Przypominacz JT\libgthread-2.0-0.dll 2017-12-13 00:34 - 2017-11-23 15:12 - 001224704 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] D:\Programy Portable ze skrótami w menu start\Foxmail 7.2\libeay32.dll 2017-12-13 00:34 - 2017-11-23 15:12 - 000278528 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] D:\Programy Portable ze skrótami w menu start\Foxmail 7.2\ssleay32.dll 2017-04-30 17:44 - 2017-06-14 13:08 - 000043520 _____ (Windows (R) Codename Longhorn DDK provider) [Brak podpisu cyfrowego] C:\Windows\system32\spool\PRTPROCS\x64\us005pc.dll 2017-11-02 21:58 - 2015-08-20 03:14 - 000043520 _____ (Windows (R) Codename Longhorn DDK provider) [Brak podpisu cyfrowego] C:\Windows\system32\spool\PRTPROCS\x64\us013pc.dll 2017-04-30 17:44 - 2017-06-14 13:08 - 001304576 _____ (Windows (R) Server 2003 DDK provider) [Brak podpisu cyfrowego] C:\Windows\system32\spool\DRIVERS\x64\3\us005.dll ==================== Alternate Data Streams (filtrowane) ======== (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData\TEMP:0E08FC17 [100] ==================== Tryb awaryjny (filtrowane) ================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer (Wersja 11) (filtrowane) ========== HKU\S-1-5-21-3982927073-1380822547-1866706166-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.msn.com/?OCID=IE11FREDHP&PC=UF01 SearchScopes: HKU\S-1-5-21-3982927073-1380822547-1866706166-1000 -> {57EDFBBE-E4DC-431C-ACFA-E2E064CA01C5} URL = hxxp://www.google.com/search?q={searchTerms} BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-10-08] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_281\bin\ssv.dll [2021-01-21] (Oracle America, Inc. -> Oracle Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2021-03-13] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_281\bin\jp2ssv.dll [2021-01-21] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-10-08] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2010-10-27] (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2021-03-13] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-08] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2021-02-06 20:55 - 000000934 _____ C:\Windows\system32\drivers\etc\hosts 127.0.0.1 apowersoft.com 127.0.0.1 support.apowersoft.com 127.0.0.1 127.0.0.1 ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\ HKU\S-1-5-21-3982927073-1380822547-1866706166-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\DOMOWY\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg HKU\S-1-5-21-3982927073-1380822547-1866706166-1004\Control Panel\Desktop\\Wallpaper -> C:\Users\ZUZA\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.178.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) MSCONFIG\startupfolder: C:^Users^DOMOWY^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Wysyłanie do programu OneNote.lnk => C:\Windows\pss\Wysyłanie do programu OneNote.lnk.Startup ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{EDC22BE4-BC57-4526-B90E-82AF81C9D9F0}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{8540D0E9-75ED-4583-8E53-7E5D5E96B418}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{B1309A4C-E9D5-436E-8097-ACC0906A4710}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Center\SamsungPrinterCenter.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) FirewallRules: [TCP Query User{33C05C44-02C4-4FA4-A169-F73F26D17911}C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe] => (Allow) C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe (Finarea SA -> VoipConnect) FirewallRules: [UDP Query User{DFE1AEBD-5E9F-4282-9FA1-4FE4959B0A19}C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe] => (Allow) C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe (Finarea SA -> VoipConnect) FirewallRules: [{EABE4415-12FF-4DC9-A4E5-AAC83C85A475}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{4BDF8AFC-6F34-4483-B0B9-1C674083167D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{2C51966A-4583-418C-BA27-3AEC54738103}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> ) FirewallRules: [{CBED184F-4F9D-49B7-B911-A78CDDAAE0EF}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> ) FirewallRules: [{D95C32EA-B6E0-4940-9A7E-0624E1094D2D}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) FirewallRules: [{8A19562A-84F8-4BBC-B507-26D6DC34858B}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) FirewallRules: [{5346B15D-169A-4FFB-883B-A8A397E79EEC}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) FirewallRules: [{B50D1CC5-3E96-4F01-B378-255F57BECC41}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe (Samsung Electronics Co., Ltd.) [Brak podpisu cyfrowego] FirewallRules: [{0528CA0D-D08C-4886-9D8B-BE31CEABF68D}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) FirewallRules: [{C941A66F-6D54-4D0C-B0DE-5434426CADD3}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe (Samsung Electronics CO., LTD. -> ScanProcess) FirewallRules: [{2BC4C5A8-6E28-4582-A271-FD3679DF2E09}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe (Samsung Electronics CO., LTD. -> Scan2PCNotify) FirewallRules: [TCP Query User{2E03B054-549A-4882-BE8C-8E25800A87E6}C:\program files (x86)\samsung\easy printer manager\ids.application.exe] => (Block) C:\program files (x86)\samsung\easy printer manager\ids.application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) FirewallRules: [UDP Query User{1EE7E442-9711-4FAC-9FE7-4AB1E77ADEF6}C:\program files (x86)\samsung\easy printer manager\ids.application.exe] => (Block) C:\program files (x86)\samsung\easy printer manager\ids.application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) FirewallRules: [{7030684C-2044-4B94-B204-7C65C98C1F46}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [Brak podpisu cyfrowego] FirewallRules: [{CB0D7D6C-9085-4221-95E5-8581A9D58194}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) FirewallRules: [{971F7ACC-4633-47A5-9482-9B080772FCCE}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) FirewallRules: [{1A51A489-1BD0-4434-B6AE-FD72668C577E}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [Brak podpisu cyfrowego] FirewallRules: [{8A2AC171-BE60-4C61-999F-521AAE7059E4}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [Brak podpisu cyfrowego] FirewallRules: [{CC206506-50D2-433F-A035-6D99907A5ED9}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) FirewallRules: [{A7829319-E702-4D79-93E5-5BC9FF6A7667}] => (Block) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Wondershare software CO., LIMITED -> Wondershare) FirewallRules: [{1A603866-035F-4DB9-830D-3735CB1E6EAD}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{ADEAA212-338E-4C5A-9004-6E877E186CD4}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{D4EBAD62-691A-4A7C-93FB-91CD8C60D552}] => (Allow) C:\Users\DOMOWY\AppData\Local\Temp\7zS1F33\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP) FirewallRules: [{1B2E1B2B-F378-46DF-87AC-EF0502566A1A}] => (Allow) C:\Users\DOMOWY\AppData\Local\Temp\7zS1F33\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP) FirewallRules: [TCP Query User{4CE9FCB5-0A19-4AB9-B1FF-7AD38769563A}C:\program files (x86)\lenovo moto smart assistant\lenovo moto smart assistant.exe] => (Allow) C:\program files (x86)\lenovo moto smart assistant\lenovo moto smart assistant.exe => Brak pliku FirewallRules: [UDP Query User{4F03AB33-5E46-45EB-AB3E-59D048A1E8CB}C:\program files (x86)\lenovo moto smart assistant\lenovo moto smart assistant.exe] => (Allow) C:\program files (x86)\lenovo moto smart assistant\lenovo moto smart assistant.exe => Brak pliku FirewallRules: [{25402487-ECBF-4770-A21B-FF48D7E9C6B4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{F15902EF-3E2F-4BE9-A8B7-CA51F79FC474}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{80E4B6B9-4757-4CA7-84EF-71637908E254}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{B0B61BD0-2E3D-4011-897A-9ABEA23FA237}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{C7EEDED8-4293-4705-9C62-900EE123671B}] => (Allow) C:\Users\DOMOWY\AppData\Roaming\Zoom\bin\Zoom.exe => Brak pliku FirewallRules: [{38A88AA1-1941-4BF5-9280-1F552E7E3412}] => (Allow) C:\Users\DOMOWY\AppData\Roaming\Zoom\bin\airhost.exe => Brak pliku FirewallRules: [TCP Query User{8C0F4EA7-F8D0-45AA-A656-6924AE8A0B31}C:\users\domowy\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\domowy\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{1CA1B42F-4DF1-45D3-9E54-30119B6F1088}C:\users\domowy\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\domowy\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{8BD8880D-345E-4307-A032-4E319586146E}] => (Allow) C:\Users\DOMOWY\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{46AE9B9F-47AD-46F7-8CA1-9AD1D0EC76C8}] => (Allow) C:\Users\DOMOWY\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{0C7FE993-F693-4196-906A-2748AA9CCBCE}] => (Allow) LPort=18701 FirewallRules: [{6DB5636B-73F5-4B92-ABC2-CC0E53EB6FB7}] => (Allow) LPort=18701 FirewallRules: [{779283C1-117D-4E67-A8FA-024FC68FDBF9}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A4A49EE4-9BFB-44D6-8EA2-89D756402EC7}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{7596ACD4-4AAE-4B03-B319-0005B56C6D0D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{7ECB9EA2-3EBF-44C9-B3FF-B7B2A590D58D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{E419D772-6E1B-4D8C-AC71-B574339675BD}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{98793B15-D1AA-49D1-9580-EED38572D64A}] => (Allow) C:\Users\DOMOWY\AppData\Local\Temp\7zS100D\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP) FirewallRules: [{B7DCBF82-0C18-45F5-B01C-665313EB1761}] => (Allow) C:\Users\DOMOWY\AppData\Local\Temp\7zS100D\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP) FirewallRules: [{893EC0C6-3354-408F-A2A5-234C80FB21F5}] => (Allow) C:\Users\DOMOWY\AppData\Local\Temp\7zS1093\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.) FirewallRules: [{28DF7BC8-2FF7-4FE8-A89E-16D8F4217CD7}] => (Allow) C:\Users\DOMOWY\AppData\Local\Temp\7zS1093\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.) FirewallRules: [{4C22C217-000A-4A30-A37F-A11817E0879E}] => (Allow) C:\Users\DOMOWY\AppData\Local\Temp\7zS2547\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.) FirewallRules: [{DA2F50EC-4010-4C13-BFF7-6C2B7981BF6C}] => (Allow) C:\Users\DOMOWY\AppData\Local\Temp\7zS2547\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.) FirewallRules: [{BB1A1A6C-E2F7-47EB-A9C2-3CE5C0985326}] => (Allow) C:\Program Files\HP\HP Deskjet 2540 series\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{28D1B3FF-96D4-4A60-9BB0-11CC7387A923}] => (Allow) LPort=5357 FirewallRules: [{6D2D6126-7C66-4365-B226-72A01807B5DF}] => (Allow) C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{02A6F431-6D5D-4B04-A103-C880A1A1AD57}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{90DF2E43-D67B-442A-AACB-274300F4DC06}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{86E44496-F05E-43D3-99B4-AD452B5E3663}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Punkty Przywracania systemu ========================= 28-03-2021 00:14:01 Revo Uninstaller Pro's restore point - EasyDuplicateFinder v4.5 28-03-2021 13:04:54 Revo Uninstaller Pro's restore point - EasyDuplicateFinder v4.5 28-03-2021 20:53:28 Revo Uninstaller Pro's restore point - Duplicate Media Finder DEMO 8.001 (32 bits) 28-03-2021 21:57:53 Revo Uninstaller Pro's restore point - VisiPics V1.31 28-03-2021 22:08:35 Revo Uninstaller Pro's restore point - Duplicate Cleaner Free 4.1.2 ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ Name: Zewnętrzne urządzenie Bluetooth Description: Zewnętrzne urządzenie Bluetooth Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Zewnętrzne urządzenie Bluetooth Description: Zewnętrzne urządzenie Bluetooth Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (03/29/2021 08:06:31 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Błąd w pliku manifestu lub w pliku zasad "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" w wierszu 1. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0". Definicja to UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (03/29/2021 08:06:31 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Błąd w pliku manifestu lub w pliku zasad "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" w wierszu 1. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0". Definicja to UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (03/29/2021 03:12:21 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Błąd w pliku manifestu lub w pliku zasad "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" w wierszu 1. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0". Definicja to UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (03/29/2021 03:12:21 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Błąd w pliku manifestu lub w pliku zasad "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" w wierszu 1. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0". Definicja to UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (03/29/2021 03:02:26 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Błąd w pliku manifestu lub w pliku zasad "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" w wierszu 1. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0". Definicja to UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (03/29/2021 03:02:26 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Błąd w pliku manifestu lub w pliku zasad "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" w wierszu 1. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0". Definicja to UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (03/28/2021 10:09:26 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Błąd w pliku manifestu lub w pliku zasad "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" w wierszu 1. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0". Definicja to UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (03/28/2021 10:09:26 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Błąd w pliku manifestu lub w pliku zasad "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" w wierszu 1. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0". Definicja to UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Dziennik System: ============= Error: (03/29/2021 03:03:46 PM) (Source: bowser) (EventID: 8003) (User: ) Description: Przeglądarka główna odebrała anons serwera z komputera ABC-KOMPUTER. Komputer ten zachowuje się tak, jakby był przeglądarką główną dla domeny w transporcie NetBT_Tcpip_{FAD0A32A-9E31-414A-8AF8-64F4466A6DB6}. Przeglądarka główna właśnie jest zatrzymywana albo wymuszany jest wybór. Error: (03/28/2021 09:22:49 PM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT) Description: Odebrano następujący alert krytyczny: 70. Error: (03/28/2021 07:25:34 PM) (Source: bowser) (EventID: 8003) (User: ) Description: Przeglądarka główna odebrała anons serwera z komputera ABC-KOMPUTER. Komputer ten zachowuje się tak, jakby był przeglądarką główną dla domeny w transporcie NetBT_Tcpip_{FAD0A32A-9E31-414A-8AF8-64F4466A6DB6}. Przeglądarka główna właśnie jest zatrzymywana albo wymuszany jest wybór. Error: (03/28/2021 12:46:23 PM) (Source: bowser) (EventID: 8003) (User: ) Description: Przeglądarka główna odebrała anons serwera z komputera ABC-KOMPUTER. Komputer ten zachowuje się tak, jakby był przeglądarką główną dla domeny w transporcie NetBT_Tcpip_{FAD0A32A-9E31-414A-8AF8-64F4466A6DB6}. Przeglądarka główna właśnie jest zatrzymywana albo wymuszany jest wybór. Error: (03/28/2021 12:44:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi MSCamSvc z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (03/28/2021 12:44:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi HOSTNT z powodu następującego błędu: Nastąpiło zablokowanie ładowania sterownika Error: (03/28/2021 12:44:01 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Ładowanie sterownika \SystemRoot\SysWow64\Drivers\HOSTNT.SYS zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika. Error: (03/28/2021 12:43:59 PM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: Sterownik wykrył błąd wewnętrzny sterownika na \Device\VBoxNetLwf. ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. K73SV.210 11/16/2011 Płyta główna: ASUSTeK Computer Inc. K73SV Procesor: Intel(R) Core(TM) i3-2330M CPU @ 2.20GHz Procent pamięci w użyciu: 61% Całkowita pamięć fizyczna: 8104.14 MB Dostępna pamięć fizyczna: 3093.95 MB Całkowita pamięć wirtualna: 16206.43 MB Dostępna pamięć wirtualna: 10733.38 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:119.14 GB) (Free:17.24 GB) NTFS Drive d: (Nowy) (Fixed) (Total:465.76 GB) (Free:173.42 GB) NTFS \\?\Volume{44763f79-2d05-11e7-8ed4-806e6f6e6963}\ (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 85AB92A2) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=119.1 GB) - (Type=07 NTFS) ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 14A5D04B) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt =======================