Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 31-08-2016 Uruchomiony przez Stefan (08-09-2016 20:49:35) Uruchomiony z C:\Users\Stefan\Desktop Windows 7 Home Premium Service Pack 1 (X64) (2014-10-04 11:26:05) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2469171809-464102732-1853336734-500 - Administrator - Disabled) Gość (S-1-5-21-2469171809-464102732-1853336734-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2469171809-464102732-1853336734-1002 - Limited - Enabled) Stefan (S-1-5-21-2469171809-464102732-1853336734-1001 - Administrator - Enabled) => C:\Users\Stefan ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - ) ActiveCheck component for HP Active Support Library (x32 Version: 3.0.0.3 - Hewlett-Packard) Hidden AdFender (HKLM-x32\...\AdFender) (Version: 1.83 - AdFender, Inc.) Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.) Archiwizator WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - ) ATI Catalyst Install Manager (HKLM\...\{9A11B072-9CE7-ABB9-2F65-EC971A7B839D}) (Version: 3.0.816.0 - ATI Technologies, Inc.) AuthenTec TrueAPI (Version: 1.2.1.33 - AuthenTec, Inc.) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.05 - Piriform) dreamboxEDIT -- The one and only settings editor for your Dreambox (HKLM-x32\...\dreamboxEDIT) (Version: - ) DreamStream E2 (HKLM-x32\...\845CCCCA-B77C-43EA-9A43-62DACEA4F902) (Version: 0.4.0 (Beta 14a) - Thomas "LazyT" Löwe) DVBViewer Pro Demo (HKLM-x32\...\DVBViewer Pro Demo_is1) (Version: 5.6.4 - CM&V) ESU for Microsoft Windows 7 (HKLM-x32\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard) Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden HP 3D DriveGuard (HKLM\...\{A2B01DF0-2C4A-4334-AC40-3E185C657722}) (Version: 4.1.16.1 - Hewlett-Packard Company) HP DVB-T TV Tuner 8.0.64.43 (HKLM-x32\...\HP DVB-T TV Tuner) (Version: 8.0.64.43 - ) HP On Screen Display (HKLM-x32\...\{ED1BD69A-07E3-418C-91F1-D856582581BF}) (Version: 1.3.5 - Hewlett-Packard Company) HP Quick Launch (HKLM-x32\...\{53B17A98-5BF0-40BC-AAFF-850A357975AC}) (Version: 2.7.2 - Hewlett-Packard Company) HP SimplePass 2011 (HKLM-x32\...\{BCFAA37D-A6DB-43BF-A351-43F183E52D07}) (Version: 5.1.0.495 - Hewlett-Packard) HP Software Framework (HKLM-x32\...\{A2FFB12E-4A66-478C-814C-26A9F54A2E17}) (Version: 4.5.10.1 - Hewlett-Packard Company) HP Support Solutions Framework (HKLM-x32\...\{2AD02988-163A-45E2-AC71-530B080D1A73}) (Version: 12.5.32.37 - HP) HPAsset component for HP Active Support Library (x32 Version: 3.0.2.2 - Hewlett-Packard) Hidden IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6381.0 - IDT) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Display Audio Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 6.14.00.3074 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation) Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed (HKLM\...\{37EC048A-81A2-452A-8D1F-3BE2018E767D}) (Version: 15.1.0.0096 - Intel Corporation) Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{C7B40C35-85AE-4303-9EEA-1A1EA779664D}) (Version: 1.0.2.0511 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.6.0.1002 - Intel Corporation) Intel(R) WiDi (HKLM-x32\...\{0DD706AF-B542-438C-999E-B30C7F625C8D}) (Version: 2.1.39.0 - Intel Corporation) Intel(R) Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version: - ) IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan) Kingo ROOT version 1.4.0.2390 (HKLM-x32\...\{AE7675D6-0B31-494F-ABFA-822E1A0FDF17}_is1) (Version: 1.4.0.2390 - Kingosoft Technology Ltd.) Malwarebytes Anti-Malware wersja 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) MSVC80_x64 (Version: 1.0.1.0 - Nokia) Hidden MSVC80_x86 (x32 Version: 1.0.1.0 - Nokia) Hidden NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.8 - Notepad++ Team) Odkurzacz (HKLM-x32\...\Odkurzacz 14.2_is1) (Version: 14.2.0.4492 - FranmoSoftware - Maciej Opaliński) OpenOffice 4.1.1 (HKLM-x32\...\{B5373BA3-BAD7-4EAC-A9D2-B66B41B82C57}) (Version: 4.11.9775 - Apache Software Foundation) Oprogramowanie Intel® PROSet/Wireless WiFi (HKLM\...\{E2D0B67F-8032-4E11-87C6-C8C721D331B3}) (Version: 15.01.0500.0903 - Intel Corporation) Pakiet sterowników systemu Windows - eMPIA Technology Inc, (emAudio) MEDIA (08/31/2007 5.7.0831.0) (HKLM\...\1B8C0FE57993F0D33DD0A689D44B5B3D8954B0F7) (Version: 08/31/2007 5.7.0831.0 - eMPIA Technology Inc,) Philips SPC315NC Webcam (HKLM-x32\...\{D95F0670-EBA8-46B2-8ABE-9DDA2BC3DC7E}) (Version: 1.0.0.0 - ) PokerStars.eu (HKLM-x32\...\PokerStars.eu) (Version: - PokerStars.eu) PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.41.216.2011 - Realtek) Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.83 - Realtek Semiconductor Corp.) Recovery Manager (x32 Version: 2.0.0 - Hewlett-Packard) Hidden Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.19.0 - Renesas Electronics Corporation) Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.19.0 - Renesas Electronics Corporation) Hidden SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.51.0 - SAMSUNG Electronics Co., Ltd.) Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.) Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.15.10.201507101148 - Sony Mobile Communications Inc.) Sony PC Companion 2.10.303 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.303 - Sony) SopCast 3.9.3 (HKLM-x32\...\SopCast) (Version: 3.9.3 - www.sopcast.com) Synaptics TouchPad Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.11.0 - Synaptics Incorporated) TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.45862 - TeamViewer) Total Commander 64-bit (Remove or Repair) (HKLM-x32\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH) USB Audio/Video Driver (HKLM-x32\...\InstallShield_{050B869F-8ABE-447F-BDA0-374B49E10811}) (Version: 1.00.0000 - Nazwa firmy) USB Audio/Video Driver (x32 Version: 1.00.0000 - Nazwa firmy) Hidden Validity WBF DDK (HKLM\...\{79174AF2-6CB1-42F5-981E-66DCA49391D0}) (Version: 4.3.205.0 - Validity Sensors, Inc.) Viber (HKU\S-1-5-21-2469171809-464102732-1853336734-1001\...\Viber) (Version: 5.2.0.2546 - Viber Media Inc) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) Wise Disk Cleaner 9.06 (HKLM-x32\...\Wise Disk Cleaner_is1) (Version: 9.06 - WiseCleaner.com, Inc.) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {197A1FA9-EEBE-405C-9608-916C95B76225} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-08-03] (HP Inc.) Task: {94D1AD16-C892-4F93-9E93-7CDD82C28E60} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-05-09] (Hewlett-Packard) Task: {B7BB40EB-618B-4B9E-B316-55DA6BFD1E50} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-04-23] (Piriform Ltd) Task: {D5ED73C3-0940-46E7-8561-82B4DEA3141A} - System32\Tasks\Odkurzacz => C:\Program Files (x86)\Odkurzacz\odkurzacz.exe [2016-09-07] (FranmoSoftware) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2014-05-01 16:13 - 2014-05-01 16:13 - 00470016 _____ () C:\Users\Stefan\AppData\Local\MEGAsync\ShellExtX64.dll 2014-10-04 13:00 - 2011-04-15 05:16 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2005-08-19 18:35 - 2005-08-19 18:35 - 00077908 _____ () C:\Program Files (x86)\USB_video_device\Utility\RemoteTool\BDARemote.exe 2015-04-08 21:53 - 2015-04-08 21:53 - 00050688 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll 2016-09-08 20:47 - 2016-09-08 20:47 - 00098816 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\win32api.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00110080 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\pywintypes27.dll 2016-09-08 20:47 - 2016-09-08 20:47 - 00364544 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\pythoncom27.dll 2016-09-08 20:47 - 2016-09-08 20:47 - 00320512 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\win32com.shell.shell.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00776704 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\_hashlib.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 01176576 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\wx._core_.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00806400 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\wx._gdi_.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00816128 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\wx._windows_.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 01067008 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\wx._controls_.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00733184 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\wx._misc_.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00682496 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\pysqlite2._sqlite.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00088064 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\_ctypes.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00119808 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\win32file.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00108544 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\win32security.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00007168 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\hashobjs_ext.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00017920 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\thumbnails_ext.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00088064 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\usb_ext.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00012800 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\common.time34.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00018432 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\win32event.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00167936 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\win32gui.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00046080 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\_socket.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 01208320 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\_ssl.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00128512 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\_elementtree.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00127488 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\pyexpat.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00038912 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\win32inet.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00036864 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\_psutil_windows.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00525208 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\windows._lib_cacheinvalidation.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00011264 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\win32crypt.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00077312 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\wx._html2.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00027136 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\_multiprocessing.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00020480 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\_yappi.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00035840 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\win32process.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00686080 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\unicodedata.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00078848 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\wx._animate.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00123392 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\wx._wizard.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00024064 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\win32pipe.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00010240 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\select.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00025600 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\win32pdh.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00017408 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\win32profile.pyd 2016-09-08 20:47 - 2016-09-08 20:47 - 00022528 ____R () C:\Users\Stefan\AppData\Local\Temp\_MEI32562\win32ts.pyd 2014-10-05 18:31 - 2014-10-05 18:31 - 00172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\2c3ee4339f14af1e4dfc45a8964dedfb\IsdiInterop.ni.dll 2014-10-04 12:59 - 2011-05-20 10:05 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2016-09-08 20:46 - 00000035 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2469171809-464102732-1853336734-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{2DAB4251-31BC-42B9-9976-286983022BDB}] => (Allow) C:\Program Files (x86)\Intel Corporation\Intel WiDi\WiDiApp.exe FirewallRules: [{46A24C98-30A2-4AB5-BE9D-9D25C6D25B11}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [TCP Query User{EDE75602-3AAE-4ACD-B078-B05C2FB8071C}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe FirewallRules: [UDP Query User{92F26C6E-FD04-4178-B7FA-827DD974FDB5}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe FirewallRules: [{26B61885-C19D-4B18-BC24-26AF2CA929DA}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [{0D2C1474-8898-45C9-A82C-69337A82E47F}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [{65C0C37E-1024-4629-B283-E44C0FA2D55D}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe FirewallRules: [{A6EE7A04-6132-40E6-80A1-36BD47378537}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{26A4A1DB-C600-484B-A64B-A818121B6774}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [UDP Query User{61993CD7-BC65-4D15-A0B7-6CC6C951A37F}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [{714F88CF-FC23-4423-8630-443CB0C0F6B7}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TelnetServer-TlntSvr-TCP-In] => (Allow) %systemroot%\system32\tlntsvr.exe FirewallRules: [TelnetServer-Tlntadmn-RPC-In] => (Allow) %systemroot%\system32\tlntsvr.exe FirewallRules: [TCP Query User{6B7B69F8-517D-450D-B02C-0EFA0AA072E3}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe FirewallRules: [UDP Query User{30A40C78-FE66-4885-9568-CC1EB2703A08}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe FirewallRules: [TCP Query User{A26F06D3-C5EC-4872-A9AF-8804087E71A6}C:\program files (x86)\dreamstream-e2\dreamstream.exe] => (Allow) C:\program files (x86)\dreamstream-e2\dreamstream.exe FirewallRules: [UDP Query User{E457FABD-9771-46E6-B5FB-A2E77342C425}C:\program files (x86)\dreamstream-e2\dreamstream.exe] => (Allow) C:\program files (x86)\dreamstream-e2\dreamstream.exe FirewallRules: [TCP Query User{248293A8-75A2-48B4-8BE6-3129FF3E666E}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe FirewallRules: [UDP Query User{D7C9818B-9B4C-4E49-82C0-F447C52807EC}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe FirewallRules: [TCP Query User{3D1EEB85-62F4-4971-BA23-70562B7A43E9}C:\program files\android\android studio\bin\studio64.exe] => (Allow) C:\program files\android\android studio\bin\studio64.exe FirewallRules: [UDP Query User{FF891E1E-5B0D-4FFC-B0B0-A4006181DEBD}C:\program files\android\android studio\bin\studio64.exe] => (Allow) C:\program files\android\android studio\bin\studio64.exe FirewallRules: [TCP Query User{92440D88-C9AD-4138-B3E6-2CAC218DA5AC}C:\program files\java\jdk1.7.0_79\bin\java.exe] => (Allow) C:\program files\java\jdk1.7.0_79\bin\java.exe FirewallRules: [UDP Query User{0A8C44E2-B0BC-4A83-A70D-DAB3A9E093BF}C:\program files\java\jdk1.7.0_79\bin\java.exe] => (Allow) C:\program files\java\jdk1.7.0_79\bin\java.exe FirewallRules: [{755F276B-794E-4B6D-9312-5D7186CE6F4D}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe FirewallRules: [{D32C26E9-6093-40E7-ADD0-E945853D57F1}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe FirewallRules: [{53C48A55-9498-49BF-9A18-75D6C3896600}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{8008A1AF-9048-4D50-8F2E-F408C3D39453}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{6AD2E54B-EA5E-4079-8B78-A8B7D30021CD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{7940560F-876D-4733-851A-267B911649A9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [TCP Query User{445FD686-83EE-46C4-AADC-13FBD98D259F}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe FirewallRules: [UDP Query User{151D4A70-337F-40B0-BDF2-89C09242E0CA}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe FirewallRules: [TCP Query User{2F484075-30DC-41BA-91F8-B17A84DD481E}C:\program files (x86)\dreamstream-e2\dreamstream.exe] => (Block) C:\program files (x86)\dreamstream-e2\dreamstream.exe FirewallRules: [UDP Query User{A3A52802-EE81-4718-8B4A-EDC6FDA16D7B}C:\program files (x86)\dreamstream-e2\dreamstream.exe] => (Block) C:\program files (x86)\dreamstream-e2\dreamstream.exe FirewallRules: [{8CF41820-E275-48B3-A9E8-7D91EAF1B1A5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{777AE576-CE49-43D4-A5F0-13A884026363}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe FirewallRules: [{A9EB676B-4BC8-41E6-9652-5F706A52F891}] => (Allow) C:\Program Files (x86)\LuDaShi\ComputerZTray.exe FirewallRules: [{F50F6F7B-8465-4C14-BA91-E22426153F9F}] => (Allow) C:\Program Files (x86)\LuDaShi\ComputerZTray.exe FirewallRules: [{F8D4DDB0-5D6E-4DFD-9742-E0CFCADBC0D8}] => (Allow) C:\Program Files (x86)\GreatMaker\MaohaWiFi\MaohaWifiSvr.exe FirewallRules: [{E4BC01D2-2ECA-4BFA-9FEC-9E35FBBD7F1E}] => (Allow) C:\Windows\explorer.exe FirewallRules: [{4B89DE17-C56B-493B-B87E-4484685EAF9C}] => (Allow) C:\Windows\system32\rundll32.exe FirewallRules: [{2898C511-C38F-4765-BF72-5A75A736F2FD}] => (Allow) C:\Windows\system32\rundll32.exe FirewallRules: [{00974779-495E-409E-B0DF-2B7210D1AB13}] => (Allow) C:\Windows\system32\rundll32.exe FirewallRules: [TCP Query User{AFBD216C-31E6-42E5-8E6F-07B9A81C6D30}C:\windows\syswow64\rundll32.exe] => (Block) C:\windows\syswow64\rundll32.exe FirewallRules: [UDP Query User{A96D617E-1FF1-4F66-A375-D2770B97A5D5}C:\windows\syswow64\rundll32.exe] => (Block) C:\windows\syswow64\rundll32.exe FirewallRules: [TCP Query User{45FA94B7-E67B-4D5A-88C7-53E6F0FCEF3C}C:\windows\syswow64\rundll32.exe] => (Block) C:\windows\syswow64\rundll32.exe FirewallRules: [UDP Query User{C1925E22-4E4A-404C-88E4-0F0E06EF51EC}C:\windows\syswow64\rundll32.exe] => (Block) C:\windows\syswow64\rundll32.exe StandardProfile\AuthorizedApplications: [C:\Windows\system32\rundll32.exe] => *:Enabled:rundll32 ==================== Punkty Przywracania systemu ========================= 08-09-2016 15:06:47 Removed Java SE Development Kit 7 Update 79 (64-bit) 08-09-2016 15:07:53 Removed Java 8 Update 25 08-09-2016 15:08:42 Removed Java 7 Update 79 (64-bit) 08-09-2016 15:09:49 Removed Visual Studio 2012 x64 Redistributables 08-09-2016 15:10:17 Removed Visual Studio 2012 x86 Redistributables 08-09-2016 15:10:58 Removed Adobe Reader XI (11.0.10) - Polish. 08-09-2016 15:44:40 RepairDNS Restore Point 2016-09-08 15:44:39 08-09-2016 15:46:20 RepairDNS Restore Point 2016-09-08 15:46:20 08-09-2016 15:50:26 Restore Point Created by FRST 08-09-2016 16:48:26 Restore Point Created by FRST 08-09-2016 17:00:55 RepairDNS Restore Point 2016-09-08 17:00:53 08-09-2016 20:15:49 Restore Point Created by FRST ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Name: Zewnętrzne urządzenie Bluetooth Description: Zewnętrzne urządzenie Bluetooth Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: hp CDDVDW TS-L633R Description: Stacja dysków CD-ROM Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318} Manufacturer: (Standardowe stacje dysków CD-ROM) Service: cdrom Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39) Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (09/08/2016 08:47:47 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/08/2016 08:45:49 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/08/2016 08:27:55 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/08/2016 08:22:07 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/08/2016 08:15:49 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Odmowa dostępu. . To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym. Operacja: Zbieranie danych modułu zapisującego Kontekst: Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220} Nazwa modułu zapisującego: System Writer Identyfikator wystąpienia modułu zapisującego: {fae701d4-1003-4b7e-b59e-c8eafa9db700} Error: (09/08/2016 08:14:25 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/08/2016 05:54:17 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/08/2016 05:41:04 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/08/2016 05:29:24 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/08/2016 04:55:21 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Dziennik System: ============= Error: (09/08/2016 08:45:07 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (09/08/2016 08:45:07 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (09/08/2016 08:45:07 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (09/08/2016 08:45:07 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (09/08/2016 08:45:07 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (09/08/2016 08:45:07 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (09/08/2016 08:45:07 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (09/08/2016 08:45:07 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (09/08/2016 08:45:07 PM) (Source: DCOM) (EventID: 10005) (User: ) Description: Model DCOM odebrał błąd 1084 podczas próby uruchomienia usługi WSearch z argumentami w celu uruchomienia serwera: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} Error: (09/08/2016 08:45:07 PM) (Source: DCOM) (EventID: 10005) (User: ) Description: Model DCOM odebrał błąd 1068 podczas próby uruchomienia usługi netprofm z argumentami w celu uruchomienia serwera: {A47979D2-C419-11D9-A5B4-001185AD2B89} CodeIntegrity: =================================== Date: 2016-09-07 21:11:03.440 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2016-09-07 21:11:03.424 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2016-09-07 21:10:39.337 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2016-09-07 21:10:39.321 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2016-09-07 21:10:19.337 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2016-09-07 21:10:19.337 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2016-09-07 21:09:49.540 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2016-09-07 21:09:49.540 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2016-09-07 21:08:49.230 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2016-09-07 21:08:49.214 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-2430M CPU @ 2.40GHz Procent pamięci w użyciu: 36% Całkowita pamięć fizyczna: 4043.86 MB Dostępna pamięć fizyczna: 2563.31 MB Całkowita pamięć wirtualna: 8085.91 MB Dostępna pamięć wirtualna: 6482.96 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:447.83 GB) (Free:234.99 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive d: (RECOVERY) (Fixed) (Total:17.64 GB) (Free:1.9 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 990190A5) Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=447.8 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=17.6 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=103 MB) - (Type=0C) ==================== Koniec Addition.txt ============================