Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 21.11.2018 Uruchomiony przez STUD (23-11-2018 11:51:26) Uruchomiony z C:\Users\STUD\Documents Windows 7 Home Premium Service Pack 1 (X64) (2012-02-03 23:48:07) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-4003353032-2260459889-897377641-500 - Administrator - Disabled) Gość (S-1-5-21-4003353032-2260459889-897377641-501 - Limited - Enabled) ms (S-1-5-21-4003353032-2260459889-897377641-1005 - Limited - Enabled) STUD (S-1-5-21-4003353032-2260459889-897377641-1000 - Administrator - Enabled) => C:\Users\STUD UpdatusUser (S-1-5-21-4003353032-2260459889-897377641-1002 - Limited - Enabled) => C:\Users\UpdatusUser.STUDMEX ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189} AV: Norton Security (Enabled - Up to date) {E3FDBD9F-8140-1400-F32B-8B58923F7C4D} AS: Norton Security (Enabled - Up to date) {589C5C7B-A77A-1B8E-C99B-B02AE9B836F0} AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Norton Security (Enabled) {DBC63CBA-CB2F-1558-D874-226D6CEC3B36} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov) Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 19.008.20081 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.2.0.2070 - Adobe Systems Incorporated) Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.) Adobe Creative Suite 5.5 Production Premium (HKLM-x32\...\{F3E41C2A-3A29-476D-9685-3F8055AF696A}) (Version: 5.5 - Adobe Systems Incorporated) Adobe Flash Player 31 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 31.0.0.153 - Adobe Systems Incorporated) Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.153 - Adobe Systems Incorporated) Adobe Pixel Bender Toolkit 2 (HKLM-x32\...\{D5CC77BE-BC5B-424E-8E45-DF60AFF7BE9C}) (Version: 2.0 - Adobe Systems Incorporated) Adobe Story (HKLM-x32\...\com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.0.571 - Adobe Systems Incorporated) Aktualizacje NVIDIA 1.12.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.12.12 - NVIDIA Corporation) ALLPlayer Pilot (HKLM-x32\...\{146BDBDD-ACD9-4B04-A286-C27471841E8E}_is1) (Version: 2.0 - ALLPlayer Group, Ltd.) ALLPlayer V7.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLPlayer Group, Ltd.) Apple Application Support (32-bit) (HKLM-x32\...\{A50679D9-6CBD-4FCD-BACB-62EF3894F6F3}) (Version: 4.0.3 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{1F72FDD5-A069-45B4-928F-D0F16492DC69}) (Version: 4.0.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{FD244E19-6EFE-4A2D-948A-0D45D4C168BE}) (Version: 9.0.0.26 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) AQ7932 Emulation Software (HKLM-x32\...\{8C5CA77B-36E6-4CD1-91C1-AB512FC15073}) (Version: 1.0.0.1 - ) Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.14.1.0 - Asmedia Technology) Asterisk Key 10.0 (HKLM-x32\...\asterisk key) (Version: - ) Backup and Sync from Google (HKLM\...\{608EBDC6-D18A-4CF6-AD54-EE6B71D29065}) (Version: 3.43.1584.4446 - Google, Inc.) Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.2.0.65 - Atheros Communications) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) booking (HKLM-x32\...\{13D4CD54-EA09-4FDB-B979-8B2BC0F020CA}_is1) (Version: 2.0.704 - booking) Bullzip PDF Printer 8.2.0.1406 (HKLM\...\Bullzip PDF Printer_is1) (Version: 8.2.0.1406 - Bullzip) CCleaner (HKLM\...\CCleaner) (Version: 5.09 - Piriform) Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden Crystal Reports XI Runtime (HKLM-x32\...\{B53F189B-5098-4246-AE76-E8A95206C07E}) (Version: 11.5.12.1838 - SAP Business Objects) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden DesignPro 5 (HKLM-x32\...\{DF57E946-4885-4EEA-A958-D5F82CB21B99}) (Version: 5.0.1056 - Avery Dennison) Hidden DesignPro 5 (HKLM-x32\...\InstallShield_{DF57E946-4885-4EEA-A958-D5F82CB21B99}) (Version: 5.0.1056 - Avery Dennison) DivX Setup (HKLM\...\DivX Setup) (Version: 3.0.0.253 - DivX, LLC) DLOADX v1.16.005 (HKLM-x32\...\DLOADX_is1) (Version: - Satel sp. z o.o.) Drv (HKLM-x32\...\{DA71A94B-3617-4935-8BBE-1566B2174C95}) (Version: 1.00.0000 - My Company Name) Galeria fotografii (HKLM-x32\...\{77655DF6-A143-4A25-A5F8-127C8CE63EDA}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden GDR 5203 for SQL Server 2014 (KB3194714) (64-bit) (HKLM\...\KB3194714) (Version: 12.2.5203.0 - Microsoft Corporation) GDR 5207 for SQL Server 2014 (KB4019093) (64-bit) (HKLM\...\KB4019093) (Version: 12.2.5207.0 - Microsoft Corporation) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.102 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden HP LaserJet Pro MFP M127-M128 (HKLM-x32\...\{3b050369-8d19-413d-9dec-84ff278472eb}) (Version: 15.0.15309.1258 - Hewlett-Packard) HP Support Assistant (HKLM-x32\...\{56D27851-B9A6-430F-875A-E2D7A3802C7B}) (Version: 8.6.18.11 - HP Inc.) HP Support Solutions Framework (HKLM-x32\...\{DCF221F2-7258-42E7-8DEE-5794DC2258CA}) (Version: 12.9.24.3 - HP Inc.) HP Touchpoint Analytics Client (HKLM\...\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}) (Version: 4.0.2.1439 - HP Inc.) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPDXP (HKLM-x32\...\{EF292659-1504-4F78-A737-471E50D8E0A1}) (Version: 3.0.26.40 - HP) Hidden HPLJDXPHelper (HKLM-x32\...\{010788AB-706E-4604-A46B-6785EAB64B5E}) (Version: 140.069.007 - HP) Hidden HPLJProMFPM127M128 (HKLM-x32\...\{B5409C23-DE0C-4B48-8C8A-50AE38694955}) (Version: 1.00.0000 - Hewlett-Packard) HPLJUTCore (HKLM-x32\...\{B445502B-2F83-4873-90F1-06059F71A46A}) (Version: 014.000.0001 - HP) Hidden HPLJUTM127_128 (HKLM-x32\...\{2C886751-51BD-4A8C-B33A-B4C513AB5B9A}) (Version: 008.000.0001 - HP) Hidden hppLaserJetService (HKLM-x32\...\{0C4C3664-157A-4D69-B474-31EBF2EE1AE3}) (Version: 009.033.00926 - Hewlett-Packard) Hidden hppM125LaserJetService (HKLM-x32\...\{18D5B189-DBDD-4E57-A84B-58C7700E9BB0}) (Version: 001.032.00682 - Hewlett-Packard) Hidden hpStatusAlerts (HKLM-x32\...\{7504A7B0-003E-4875-A454-B627E127E9D9}) (Version: 100.040.00218 - Hewlett Packard) Hidden hpStatusAlertsM127-M128 (HKLM-x32\...\{10D7EBAF-A550-48CD-8511-7D947184EE44}) (Version: 080.046.00112 - Hewlett-Packard) Hidden IC_Katalog ONLINE (HKU\S-1-5-21-4003353032-2260459889-897377641-1000\...\8fe0a249888b2f6b) (Version: 2.42.0.0 - Inter Cars) Image Resizer for Windows (64 bit) (HKLM\...\{617CA6E9-D5FB-4017-8130-82E68C56C34D}) (Version: 3.0.4802.35565 - Brice Lambson) Hidden Image Resizer for Windows (HKLM-x32\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson) Intel(R) Network Connections 16.5.2.0 (HKLM\...\PROSetDX) (Version: 16.5.2.0 - Intel) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.6.0.1002 - Intel Corporation) Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation) K-Lite Codec Pack 9.2.0 (64-bit) (HKLM\...\KLiteCodecPack64_is1) (Version: 9.2.0 - ) LibreCAD (HKLM-x32\...\LibreCAD) (Version: 2.1.3 - LibreCAD Team) LibreOffice 6.0.4.2 (HKLM\...\{CBC4E8DF-CCBD-4260-A6A5-B682BA706DC4}) (Version: 6.0.4.2 - The Document Foundation) LJDXPHelperUI (HKLM-x32\...\{DEB23FB1-04FF-44AC-98B5-EEB243D65A28}) (Version: 140.069.007 - HP) Hidden Magic Bullet LUT Buddy 64-bit (HKLM\...\{04596C9E-F180-410D-86EA-F61DEE5FB9F4}) (Version: 1.0.0 - Red Giant Software) Hidden Magic Bullet LUT Buddy 64-bit (HKLM-x32\...\InstallShield_{04596C9E-F180-410D-86EA-F61DEE5FB9F4}) (Version: 1.0.0 - Red Giant Software) MergeModules (HKLM-x32\...\{0752C418-CD9D-475D-BAB7-70B691D2D844}) (Version: 1.0.0 - Optixsoft) MergeModules (HKLM-x32\...\{C60BDE12-2A82-42BB-B087-DCC3B60B1E4B}) (Version: 1.0.0 - Default Company Name) MergeModules64 (HKLM\...\{CDE8B7DD-D8A5-4577-B176-21A76B41C661}) (Version: 1.0.0 - Optixsoft) Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation) Microsoft .NET Framework 4.7.2 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.7.03062 - Microsoft Corporation) Microsoft GIF Animator (HKLM-x32\...\GIF Animator) (Version: - ) Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{A22EED3F-6DB6-4987-8023-6C6B7030E554}) (Version: 12.2.5000.0 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{6292D514-17A4-403F-98F9-E150F10C043D}) (Version: 10.3.5500.0 - Microsoft Corporation) Microsoft SQL Server 2012 Native Client (HKLM\...\{C20DACBE-19F2-47FF-AD22-BBB493499346}) (Version: 11.2.5643.3 - Microsoft Corporation) Microsoft SQL Server 2014 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation) Microsoft SQL Server 2014 Setup (English) (HKLM\...\{6E21CC8A-5447-4C98-ABE6-9D0BCE8D540A}) (Version: 12.2.5207.0 - Microsoft Corporation) Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{E8C99927-8E6E-4B6B-B80C-1B8B23B1767D}) (Version: 12.2.5000.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{366CD715-2FF4-40B4-A8B4-A05E5D21A945}) (Version: 12.2.5000.0 - Microsoft Corporation) Moduł Szybka instalacja pakietu Microsoft Office 2010 (HKLM\...\{90140000-006D-0415-1000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation) Hidden Moduł Szybka instalacja pakietu Microsoft Office 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.6120.5004 - Microsoft Corporation) Movie Maker (HKLM-x32\...\{DAE8CC57-EBF5-4D46-8572-9A0C769D6F16}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 58.0.1 (x64 pl) (HKLM\...\Mozilla Firefox 58.0.1 (x64 pl)) (Version: 58.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 58.0.1.6602 - Mozilla) Mozilla Thunderbird 52.9.1 (x86 pl) (HKLM-x32\...\Mozilla Thunderbird 52.9.1 (x86 pl)) (Version: 52.9.1 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Napisy24 (HKLM-x32\...\{D1985DBC-F09E-4317-91B8-932AD0FD4A27}_is1) (Version: 1.9.2 - Napisy24.pl) Norton Security (HKLM-x32\...\NGC) (Version: 22.16.2.22 - Symantec Corporation) NVIDIA Oprogramowanie systemu PhysX 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 314.07 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 314.07 - NVIDIA Corporation) OpenOffice 4.1.5 (HKLM-x32\...\{7076105B-6FE8-464A-AC28-FFBB2686B68F}) (Version: 4.15.9789 - Apache Software Foundation) Optixsoft SOR Shell Extension (HKLM-x32\...\SOR Shell Extension) (Version: - ) OTDR Project File Editor For Multi-fiber Measurement (HKLM-x32\...\{3D44078A-784C-4973-A594-0812E2693511}) (Version: 1.0.0.1 - ) OTDR Viewer (HKLM-x32\...\{FB1015D5-B946-40B7-83D2-125115ECED0E}) (Version: 1.0.1 - Yokogawa Meters & Instruments Corporation) Pakiet sterowników Eko (HKLM-x32\...\Samsung Eco Driver Pack) (Version: 2.01.10.00 (2015-05-28) - Samsung Electronics Co., Ltd.) Panel sterowania NVIDIA 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 350.12 - NVIDIA Corporation) Hidden PDF Settings CS5 (HKLM-x32\...\{A78FE97A-C0C8-49CE-89D0-EDD524A17392}) (Version: 10.0 - Adobe Systems Incorporated) Hidden PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.16.0 - Prolific Technology Inc.) Podstawowe programy Windows Live (HKLM-x32\...\{8FFD72FC-4FFA-472D-9F76-AEC85F602F9D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Podstawowe programy Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Przegląd podręcznika użytkownika (HKLM-x32\...\View User Guide) (Version: 4.0.0.9 - ) PuTTY release 0.68 (64-bit) (HKLM\...\{DB149DDE-903A-4B5E-93C4-46BBEC48F0C2}) (Version: 0.68.0.0 - Simon Tatham) PxMergeModule (HKLM-x32\...\{024521CF-C07E-4F8E-8481-0D75695E03AF}) (Version: 1.00.0000 - Your Company Name) Hidden QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7503 - Realtek Semiconductor Corp.) Reason Core Security (HKLM-x32\...\Reason Core Security) (Version: 2.1.0.9 - Reason Software Company Inc.) Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 2.00.01.11 - Samsung Electronics Co., Ltd.) Samsung Printer Center (HKLM-x32\...\Samsung Printer Center) (Version: 1.0.0.28 - Samsung Electronics Co., Ltd.) Samsung Printer Diagnostics (HKLM-x32\...\Samsung Printer Diagnostics) (Version: 1.0.2.5 - Samsung Electronics Co., Ltd.) Samsung Scan Process Machine (HKLM-x32\...\Samsung Scan Process Machine) (Version: 1.03.05.28 - Samsung Electronics Co., Ltd.) Hidden Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.61.0 - Samsung Electronics Co., Ltd.) Service Pack 2 for SQL Server 2014 (KB3171021) (64-bit) (HKLM\...\KB3171021) (Version: 12.2.5000.0 - Microsoft Corporation) Skype™ 7.3 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.) SQL Server 2014 Common Files (HKLM\...\{BD1CD96B-FE4B-4EAE-83D4-6EF55AB5779C}) (Version: 12.2.5000.0 - Microsoft Corporation) Hidden SQL Server 2014 Common Files (HKLM\...\{F7012F84-80F5-4C25-852E-B1BA03276FE6}) (Version: 12.2.5000.0 - Microsoft Corporation) Hidden SQL Server 2014 Database Engine Services (HKLM\...\{17531BCD-C627-46A2-9F1E-7CC920E0E94A}) (Version: 12.2.5000.0 - Microsoft Corporation) Hidden SQL Server 2014 Database Engine Services (HKLM\...\{5082A9F3-AEE5-4639-9BA7-C19661BA7331}) (Version: 12.2.5000.0 - Microsoft Corporation) Hidden SQL Server 2014 Database Engine Shared (HKLM\...\{ACC530B8-B6B4-40D6-B59B-152468CF47D0}) (Version: 12.2.5000.0 - Microsoft Corporation) Hidden SQL Server 2014 Database Engine Shared (HKLM\...\{D1B847A9-B06B-4264-9EF0-78E6E1571E65}) (Version: 12.2.5000.0 - Microsoft Corporation) Hidden SQL Server Browser for SQL Server 2014 (HKLM-x32\...\{3204DE95-97D2-4261-A286-98A262E171D4}) (Version: 12.2.5000.0 - Microsoft Corporation) Sql Server Customer Experience Improvement Program (HKLM\...\{6476DB81-F263-4C04-8574-AAD31136C304}) (Version: 12.2.5000.0 - Microsoft Corporation) Hidden Stylowy pakiet sterownika (HKLM-x32\...\Samsung Stylish UI Pack) (Version: 1.01.74.00 (2015-02-09) - Samsung Electronics Co., Ltd.) TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.2.26558 - TeamViewer) Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.52a - Ghisler Software GmbH) Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.67 - Samsung Electronics CO., LTD.) USB Compound Device (HKLM\...\USB Compound Device) (Version: - ) VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) WF-Mag dla Windows (HKLM-x32\...\{C39AF0FF-1655-4861-B9FB-6085D3EB54DC}) (Version: 8.00.2 - Asseco Business Solutions S.A.) WinRAR 4.11 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-10-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-10-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-10-04] (Google) ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => D:\norton\Engine\22.16.2.22\buShell.dll [2018-11-03] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => D:\norton\Engine\22.16.2.22\buShell.dll [2018-11-03] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => D:\norton\Engine\22.16.2.22\buShell.dll [2018-11-03] (Symantec Corporation) ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2012-06-05] (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2012-06-05] (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2012-06-05] (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2012-06-05] (GG Network S.A.) ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => D:\norton\Engine\22.16.2.22\buShell.dll [2018-11-03] (Symantec Corporation) ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => D:\norton\Engine\22.16.2.22\buShell.dll [2018-11-03] (Symantec Corporation) ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => D:\norton\Engine\22.16.2.22\buShell.dll [2018-11-03] (Symantec Corporation) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Bluetooth Suite\BtvAppExt.dll [2011-03-13] (Atheros Commnucations) ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => D:\norton\Engine\22.16.2.22\buShell.dll [2018-11-03] (Symantec Corporation) ContextMenuHandlers1: [DivXShellExtensionItem] -> {48A8A3B0-57E8-4F2B-A49D-19E02B92377B} => C:\Program Files (x86)\Common Files\DivX Shared\DivXShellExtension64.dll [2017-05-25] (DivX, LLC) ContextMenuHandlers1: [DivXShellExtensionItem64] -> {6B49A276-0DBA-43F4-BC96-A841AD11B40B} => C:\Program Files (x86)\Common Files\DivX Shared\DivXShellExtension64.dll [2017-05-25] (DivX, LLC) ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-10-04] (Google) ContextMenuHandlers1: [Image Resizer] -> {51B4D7E5-7568-4234-B4BB-47FB3C016A69} => C:\Program Files\Image Resizer for Windows\ShellExtensions.dll [2013-02-23] (Brice Lambson) ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => D:\norton\Engine\22.16.2.22\NavShExt.dll [2018-11-03] (Symantec Corporation) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2012-02-17] () ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2012-02-17] () ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation) ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => D:\norton\Engine\22.16.2.22\NavShExt.dll [2018-11-03] (Symantec Corporation) ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll [2011-03-13] (Atheros Commnucations) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-10-04] (Google) ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2012-02-17] () ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2012-02-17] () ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2015-04-08] (NVIDIA Corporation) ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => D:\norton\Engine\22.16.2.22\buShell.dll [2018-11-03] (Symantec Corporation) ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => D:\norton\Engine\22.16.2.22\NavShExt.dll [2018-11-03] (Symantec Corporation) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2012-02-17] () ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2012-02-17] () ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {090EAF02-2104-485C-A1C7-9A2C6CE07648} - System32\Tasks\PandaUSBVaccine => C:\Program Files (x86)\Panda USB Vaccine\RunInteractiveWin.exe Task: {09DC8410-C5CA-44D4-AF99-2B06496FAA0A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-06] (Google Inc.) Task: {143B50E6-573D-4013-86F5-2487CFDE2EEF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater – Install HPSA => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.) Task: {182D8CFC-D1ED-4B7E-9574-78FF903CA3B1} - System32\Tasks\Norton Security\Norton Security Error Processor => D:\norton\Engine\22.16.2.22\SymErr.exe [2018-11-03] (Symantec Corporation) Task: {25F20573-B77C-4D56-A347-67F2EF2459D3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-11-21] (Adobe Systems Incorporated) Task: {3064FF91-E6BF-4F13-B26F-CA0C204DA280} - System32\Tasks\AdobeGCInvoker-1.0-MAR-ART-STUD => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-09-10] (Adobe Systems, Incorporated) Task: {37668E98-4936-4750-A111-3F7438338027} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [2018-11-03] (Symantec Corporation) Task: {3D0DBC34-36F7-4FC8-8B97-4078B2796123} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-06] (Google Inc.) Task: {3D3C1A05-83E3-40AB-B504-AD35FF1AA5A8} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-10-06] (Oracle Corporation) Task: {41112282-F82A-43B1-8E3E-D0995C227D7D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-05-04] (HP Inc.) Task: {413DCE3F-36D0-4BA4-A079-49C9042DA607} - System32\Tasks\RCS Updater Task => C:\Program Files\Reason\Security\rsUpdt.exe [2017-03-13] () Task: {46445137-1CA5-4C89-87E1-508138C71B45} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.) Task: {4670A284-792D-4E99-904D-F9019661771C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-05-04] (HP Inc.) Task: {4843B2B8-8CBB-46C7-B709-174971168BFA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2018-08-30] (HP Inc.) Task: {4BCB3434-CBB7-480F-9835-8EB87D74AC7C} - System32\Tasks\{CC223726-525E-4B23-B86F-E7BA3B8F38EA} => C:\Users\STUD\Downloads\vuex6492(2).exe Task: {4EE8693F-0D72-479D-9273-BDBD46FB3F87} - System32\Tasks\HPCeeScheduleForSTUD => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-05-12] (HP Development Company, L.P.) Task: {50264938-944E-491E-B3D9-9E2928184B12} - System32\Tasks\RCS Updater Task 1 => C:\Program Files\Reason\Security\rsUpdt.exe [2017-03-13] () Task: {5DE4C5E3-2374-4EA0-A279-CCBC2D6C7A03} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2018-11-08] (HP Inc.) Task: {80926F8C-1BE0-4D43-BF01-B3BEBEF6FE29} - System32\Tasks\Reason Core Security => C:\Program Files\Reason\Security\rsUI.exe [2017-03-13] (Reason Software Company Inc.) Task: {8296F7EF-9B37-4128-B668-7E3A951CBEB6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-08-20] (Piriform Ltd) Task: {8A8BFB6F-C00B-4961-987A-FFE1CEB3E21E} - System32\Tasks\Reason Core Security Scheduled Scan => C:\Program Files\Reason\Security\rsUI.exe [2017-03-13] (Reason Software Company Inc.) Task: {8EB99A70-D7DF-4FAE-9B84-BE73C9B6B056} - System32\Tasks\Norton Security\Norton Security Error Analyzer => D:\norton\Engine\22.16.2.22\SymErr.exe [2018-11-03] (Symantec Corporation) Task: {9BB6598C-812C-41DE-ACE9-823DCE1DB1A9} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2017-11-16] () Task: {AC977DCD-ABD6-4BF9-B578-2392C2557310} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2018-11-09] (HP Inc.) Task: {B645FADE-4767-4C8B-8F28-D8A171B9E487} - System32\Tasks\Norton WSC Integration => D:\norton\Engine\22.16.2.22\WSCStub.exe [2018-11-03] (Symantec Corporation) Task: {B8956F46-15BB-40BE-B36E-08EBF7335D3A} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_153_Plugin.exe [2018-11-21] (Adobe Systems Incorporated) Task: {B9F06702-8951-4DCC-8A6B-B4E41B4EA2EB} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe Task: {C02E3116-58B8-4371-97EE-7D2F71DAE8E0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_CNB8J315X4 => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2018-11-09] (HP Inc.) Task: {D4CA8B30-9C76-473D-9FE9-447E837DAD18} - System32\Tasks\EPM Preload => C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2DotNetHandler.exe [2016-08-22] () Task: {DBA9086F-C9C0-4CF3-80F5-915AB055B6B3} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => C:\Program Files\Microsoft Security Client\\MpCmdRun.exe [2016-11-14] (Microsoft Corporation) Task: {EA4D6518-68A7-46AA-93DF-8D380B378DD8} - System32\Tasks\RCS Updater Task 0 => C:\Program Files\Reason\Security\rsUpdt.exe [2017-03-13] () Task: {F1C335D5-BBF8-4DF5-B961-98441D07B5CD} - System32\Tasks\Driver Booster SkipUAC (STUD) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe Task: {FDD17108-A403-4386-9358-0A3D43251672} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [2014-10-19] (Hewlett Packard) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\HPCeeScheduleForSTUD.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\STUD\AppData\Local\Google\Chrome\User Data\Program uruchamiający aplikacje Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list ShortcutWithArgument: C:\Users\STUD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Program uruchamiający aplikacje Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list ==================== Załadowane moduły (filtrowane) ============== 2012-02-04 09:51 - 2015-04-08 22:30 - 000116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2007-01-15 09:52 - 2007-01-15 09:52 - 000022016 _____ () C:\Windows\System32\cx21sl6.dll 2018-02-07 15:27 - 2014-11-25 12:16 - 000022528 _____ () C:\Windows\System32\us005lm.dll 2017-11-18 11:28 - 2018-03-01 10:39 - 000020208 _____ () C:\Windows\system32\spool\PRTPROCS\x64\TeamViewer_PrintProcessor.dll 2015-03-20 17:12 - 2015-03-20 17:12 - 000085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-09-23 15:47 - 2015-09-23 15:47 - 001328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2012-11-04 18:43 - 2012-11-04 23:20 - 000076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2016-05-25 13:38 - 2016-05-25 13:38 - 000129304 _____ () C:\Program Files\Reason\Security\x64\lz4_x64.dll 2018-02-07 15:26 - 2018-02-07 15:26 - 000143664 ____N () C:\Windows\SysWOW64\SecUPDUtilSvc.exe 2012-02-21 19:32 - 2012-02-17 20:55 - 000193536 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll 2014-09-08 13:39 - 2014-09-08 13:39 - 000464608 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe 2014-09-08 13:38 - 2014-09-08 13:38 - 000051200 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll 2018-10-04 19:44 - 2018-10-04 19:44 - 046459080 _____ () C:\Program Files\Google\Drive\googledrivesync.exe 2018-11-23 11:44 - 2018-11-23 11:44 - 000113664 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\_ctypes.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000080896 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\bz2.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 001792512 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\_hashlib.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000128512 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\win32api.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000137728 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\pywintypes27.dll 2018-11-23 11:44 - 2018-11-23 11:44 - 000548864 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\pythoncom27.dll 2018-11-23 11:44 - 2018-11-23 11:44 - 000689664 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\unicodedata.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000438784 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\win32com.shell.shell.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 001489408 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\wx._core_.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 001007104 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\wx._gdi_.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 001039872 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\wx._windows_.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 001325056 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\wx._controls_.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000916992 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\wx._misc_.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 001084416 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\pysqlite2._sqlite.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000149504 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\win32file.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000136192 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\win32security.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000007680 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\hashobjs_ext.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000020992 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\thumbnails_ext.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000118784 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\usb_ext.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000047616 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\_socket.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 002224640 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\_ssl.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000014848 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\common.time34.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000023040 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\win32event.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000034304 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\windows.conditional.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000020480 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\windows.winwrap.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000110080 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\windows.volumes.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000223232 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\win32gui.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000173568 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\_elementtree.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000169472 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\pyexpat.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000048128 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\win32inet.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000103424 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\wx._html2.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000046080 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\_psutil_windows.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000633272 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\windows._cacheinvalidation.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000011776 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\win32crypt.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000301568 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\PIL._imaging.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000032256 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\_multiprocessing.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 005752320 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\cello.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000026112 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\_yappi.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000044032 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\win32process.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000027648 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\win32pipe.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000010752 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\select.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000029696 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\win32pdh.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000038400 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\windows.connectivity.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000073216 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\windows.device_monitor.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000020480 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\win32profile.pyd 2018-11-23 11:44 - 2018-11-23 11:44 - 000026624 _____ () C:\Users\STUD\AppData\Local\Temp\_MEI69482\win32ts.pyd 2015-08-24 19:28 - 2015-08-24 19:28 - 000061440 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll 2018-11-09 22:23 - 2018-11-08 23:14 - 005020504 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.102\libglesv2.dll 2018-11-09 22:23 - 2018-11-08 23:14 - 000116056 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.102\libegl.dll 2018-11-15 03:38 - 2018-11-15 03:38 - 000172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\014e07271379e3fa3af218bd6fcc70c0\IsdiInterop.ni.dll 2012-02-04 07:51 - 2011-05-20 10:05 - 000059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com IE trusted site: HKU\S-1-5-19\...\clonewarsadventures.com -> clonewarsadventures.com IE trusted site: HKU\S-1-5-19\...\freerealms.com -> freerealms.com IE trusted site: HKU\S-1-5-19\...\soe.com -> soe.com IE trusted site: HKU\S-1-5-19\...\sony.com -> sony.com IE trusted site: HKU\S-1-5-20\...\clonewarsadventures.com -> clonewarsadventures.com IE trusted site: HKU\S-1-5-20\...\freerealms.com -> freerealms.com IE trusted site: HKU\S-1-5-20\...\soe.com -> soe.com IE trusted site: HKU\S-1-5-20\...\sony.com -> sony.com IE trusted site: HKU\S-1-5-21-4003353032-2260459889-897377641-1000\...\clonewarsadventures.com -> clonewarsadventures.com IE trusted site: HKU\S-1-5-21-4003353032-2260459889-897377641-1000\...\freerealms.com -> freerealms.com IE trusted site: HKU\S-1-5-21-4003353032-2260459889-897377641-1000\...\soe.com -> soe.com IE trusted site: HKU\S-1-5-21-4003353032-2260459889-897377641-1000\...\sony.com -> sony.com ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2018-07-09 09:51 - 000000027 _____ C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-4003353032-2260459889-897377641-1000\Control Panel\Desktop\\Wallpaper -> DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == Załączenie wejścia w fixlist spowoduje jego usunięcie. ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Punkty Przywracania systemu ========================= ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Generic USB Hub Description: Generic USB Hub Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Generic USB Hub) Service: asmthub3 Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Generic USB Hub Description: Generic USB Hub Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Generic USB Hub) Service: asmthub3 Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (11/23/2018 11:43:38 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (11/23/2018 11:38:11 AM) (Source: VSS) (EventID: 8194) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Odmowa dostępu. . To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym. Operacja: Zbieranie danych modułu zapisującego Kontekst: Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220} Nazwa modułu zapisującego: System Writer Identyfikator wystąpienia modułu zapisującego: {c2fa6ac3-e9a2-4b83-9412-138a81ab441e} Error: (11/23/2018 11:04:24 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: Explorer.EXE, wersja: 6.1.7601.23537, sygnatura czasowa: 0x57c44efe Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.24291, sygnatura czasowa: 0x5be7857f Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000000000032b04 Identyfikator procesu powodującego błąd: 0x7d8 Godzina uruchomienia aplikacji powodującej błąd: 0x01d48313a42d3fa6 Ścieżka aplikacji powodującej błąd: C:\Windows\Explorer.EXE Ścieżka modułu powodującego błąd: C:\Windows\SYSTEM32\ntdll.dll Identyfikator raportu: 26f2a7d6-ef07-11e8-83aa-c8600075b569 Error: (11/23/2018 11:04:08 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (11/21/2018 04:03:33 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (11/20/2018 11:20:03 PM) (Source: MSSQL$WFMSQL) (EventID: 18204) (User: MAR-ART) Description: BackupDiskFile::OpenMedia: Backup device 'D:\wfmagarch\Archiwum_WAPRO_DEMO_20181120_2319.ape' failed to open. Operating system error 2(Nie można odnaleźć określonego pliku.). Error: (11/19/2018 09:33:44 AM) (Source: MSSQL$WFMSQL) (EventID: 18204) (User: MAR-ART) Description: BackupDiskFile::OpenMedia: Backup device 'D:\wfmagarch\Archiwum_WAPRO_DEMO_20181119_0933.ape' failed to open. Operating system error 2(Nie można odnaleźć określonego pliku.). Error: (11/19/2018 09:31:32 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Dziennik System: ============= Error: (11/23/2018 11:45:56 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi NVIDIA Update Service Daemon z powodu następującego błędu: Usługa nie została uruchomiona z powodu nieudanego logowania. Error: (11/23/2018 11:45:56 AM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Usługa nvUpdatusService nie może zalogować się jako .\UpdatusUser za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu: Błąd logowania: określone hasło konta wygasło. Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC). Error: (11/23/2018 11:44:54 AM) (Source: volsnap) (EventID: 36) (User: ) Description: Wykonywanie kopii w tle woluminu C: zostało przerwane, ponieważ nie można powiększyć magazynu kopii w tle z powodu limitu wprowadzonego przez użytkownika. Error: (11/23/2018 11:43:49 AM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Uruchom do aplikacji serwera COM z identyfikatorem klasy CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} i identyfikatorem aplikacji APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} użytkownikowi ZARZĄDZANIE NT\SYSTEM o identyfikatorze zabezpieczeń SID (S-1-5-18) z adresu LocalHost (użycie LRPC). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (11/23/2018 11:42:29 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi DbgMsg z powodu następującego błędu: Nastąpiło zablokowanie ładowania sterownika Error: (11/23/2018 11:42:29 AM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Ładowanie sterownika \SystemRoot\SysWow64\drivers\dbgmsg9x.sys zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika. Error: (11/23/2018 11:06:33 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi NVIDIA Update Service Daemon z powodu następującego błędu: Usługa nie została uruchomiona z powodu nieudanego logowania. Error: (11/23/2018 11:06:33 AM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Usługa nvUpdatusService nie może zalogować się jako .\UpdatusUser za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu: Błąd logowania: określone hasło konta wygasło. Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC). CodeIntegrity: =================================== Date: 2018-07-09 10:51:14.136 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-07-09 10:51:13.995 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-09-26 15:09:11.177 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system. Date: 2016-09-26 10:22:38.741 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system. Date: 2016-09-26 09:51:40.186 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system. Date: 2016-09-25 20:15:15.020 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system. Date: 2016-09-25 19:46:02.770 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system. Date: 2016-09-25 14:34:37.327 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz Procent pamięci w użyciu: 27% Całkowita pamięć fizyczna: 16351.15 MB Dostępna pamięć fizyczna: 11879.96 MB Całkowita pamięć wirtualna: 32700.45 MB Dostępna pamięć wirtualna: 27805.79 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:97.43 GB) (Free:1.16 GB) NTFS Drive d: (Nowy) (Fixed) (Total:833.86 GB) (Free:785.14 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) ==================== Koniec Addition.txt ============================