Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 06.06.2018 01
- Uruchomiony przez Kuba (16-06-2018 14:13:49)
- Uruchomiony z C:\Users\Kuba\Downloads
- Windows 7 Ultimate Service Pack 1 (X64) (2016-08-27 16:37:56)
- Tryb startu: Normal
- ==========================================================
- ==================== Konta użytkowników: =============================
- Administrator (S-1-5-21-2599105244-4264042397-500321054-500 - Administrator - Disabled)
- Gość (S-1-5-21-2599105244-4264042397-500321054-501 - Limited - Disabled)
- Kuba (S-1-5-21-2599105244-4264042397-500321054-1000 - Administrator - Enabled) => C:\Users\Kuba
- ==================== Centrum zabezpieczeń ========================
- (Załączenie wejścia w fixlist spowoduje jego usunięcie.)
- AV: Kaspersky Free (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
- AS: Kaspersky Free (Enabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}
- AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- ==================== Zainstalowane programy ======================
- (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.)
- . . . (HKLM\...\{DB52A2D0-CAA1-4ED1-B122-29E7EDDE187F}) (Version: 2.1.28.3 - Intel) Hidden
- Adobe Flash Player 30 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 30.0.0.113 - Adobe Systems Incorporated)
- AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.1.1 - Advanced Micro Devices, Inc.)
- Antares Autotune VST RTAS TDM v5.08 (HKLM-x32\...\Antares Autotune VST RTAS TDM_is1) (Version: - Team AiR 2007)
- ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
- Audacity 2.2.2 (HKLM-x32\...\Audacity_is1) (Version: 2.2.2 - Audacity Team)
- Auto-Tune EFX VST (HKLM-x32\...\{95292902-411B-4390-BCBD-8EA445F9456C}) (Version: 1.0.0 - Antares Audio Technologies)
- Auto-Tune-8.1-vst3 (HKLM-x32\...\{417267F2-7228-4F20-B14B-0C3DC8A29E14}_is1) (Version: - Phúc Thái)
- Camtasia Studio 8 (HKLM-x32\...\{45F34E54-DAD9-405B-A4F6-B12B0A46B984}) (Version: 8.4.1.1745 - TechSmith Corporation)
- CCleaner (HKLM\...\CCleaner) (Version: 5.43 - Piriform)
- Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.28.51 - Conexant)
- Cool Edit Pro 2.1 (HKLM-x32\...\Cool Edit Pro 2.1) (Version: - )
- DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.0.0221 - Disc Soft Ltd)
- Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform)
- Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
- Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
- FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line)
- FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
- Google Chrome (HKLM-x32\...\Google Chrome) (Version: 67.0.3396.87 - Google Inc.)
- Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
- Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
- Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.34 - Intel Corporation)
- Intel® Driver Update Utility (HKLM-x32\...\{fe2eebd3-ee15-4538-bb19-b627e3f2a911}) (Version: 2.6.1.4 - Intel)
- Interlok driver setup x64 (HKLM\...\{25613C10-27D2-410B-942B-D922D5C3A7BE}) (Version: 5.8.13 - PACE Anti-Piracy)
- iZotope Nectar 2 Production Suite (HKLM-x32\...\iZotope Nectar 2 Production Suite_is1) (Version: 2.04 - iZotope, Inc.)
- Kaspersky Free (HKLM-x32\...\{718613F4-492D-4272-ACC3-D04A8EF0F883}) (Version: 19.0.0.1088 - Kaspersky Lab) Hidden
- Kaspersky Free (HKLM-x32\...\InstallWIX_{718613F4-492D-4272-ACC3-D04A8EF0F883}) (Version: 19.0.0.1088 - Kaspersky Lab)
- Kaspersky Secure Connection (HKLM-x32\...\{F10AA188-7166-430E-8810-FEAB2AD73DE3}) (Version: 19.0.0.1088 - Kaspersky Lab) Hidden
- Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{F10AA188-7166-430E-8810-FEAB2AD73DE3}) (Version: 19.0.0.1088 - Kaspersky Lab)
- Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
- League of Legends (HKLM-x32\...\{EA8630BD-0DCC-4154-B972-AAA6C8989E1A}) (Version: 4.2.1 - Riot Games) Hidden
- League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
- Lenovo pointing device (HKLM\...\Elantech) (Version: 11.4.31.1 - ELAN Microelectronic Corp.)
- Malwarebytes (wersja 3.5.1.2522) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
- Microsoft .NET Framework 4.6 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.6.00081 - Microsoft Corporation)
- Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
- Microsoft DirectX SDK (March 2009) (HKLM-x32\...\Microsoft DirectX SDK (March 2009)) (Version: 9.26.1590.0 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
- Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{e6e75766-da0f-4ba2-9788-6ea593ce702d}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
- Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
- MTA:SA v1.5.5 (HKLM-x32\...\MTA:SA 1.5) (Version: v1.5.5 - Multi Theft Auto)
- Need for Speed™ Carbon (HKLM-x32\...\{259C0ABB-A3B2-4D70-008F-BF7EE491B70B}) (Version: - )
- NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
- OBS Studio (HKLM-x32\...\OBS Studio) (Version: 21.0.1 - OBS Project)
- OEM Application Profile (HKLM-x32\...\{B4B7FD8F-06FC-E277-4F29-8F75F8281D8F}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
- Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
- Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.39053 - Realtek Semiconductor Corp.)
- REALTEK Wireless LAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4123-B2B9-173F09590E16}) (Version: 1.00.0187 - REALTEK Semiconductor Corp.)
- REAPER (x64) (HKLM\...\REAPER) (Version: - )
- Sp5 (HKLM-x32\...\{560F47F7-EB23-44B1-AAFC-667F1CD8FE5C}) (Version: 5.1.4324.0 - Microsoft) Hidden
- Sp5Intl (HKLM-x32\...\{FD4B33E1-24AE-4535-AA7B-162B30FB57CD}) (Version: 5.1.4324.0 - Microsoft) Hidden
- Sp5TTInt (HKLM-x32\...\{E415C943-37E5-473F-8BAE-043C56734124}) (Version: 5.1.4324.0 - Microsoft) Hidden
- SpCommon (HKLM-x32\...\{6C3959C6-943E-44B3-BAAD-570B04B134E5}) (Version: 5.1.4324.0 - Microsoft) Hidden
- SpPhones (HKLM-x32\...\{4DFF1415-4C29-44A8-BFD4-2BCE249C4991}) (Version: 6.0.3122.0 - Microsoft) Hidden
- Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
- TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
- The T-Pain Effect Bundle (HKLM-x32\...\The T-Pain Effect Bundle_is1) (Version: 1.02 - iZotope, Inc.)
- Vulkan Run Time Libraries 1.0.21.0 (HKLM\...\VulkanRT1.0.21.0) (Version: 1.0.21.0 - LunarG, Inc.)
- Vulkan Run Time Libraries 1.0.65.0 (HKLM\...\VulkanRT1.0.65.0) (Version: 1.0.65.0 - LunarG, Inc.) Hidden
- WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
- World of Tanks (HKU\S-1-5-21-2599105244-4264042397-500321054-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
- X-Mouse Button Control 2.14 (HKLM-x32\...\X-Mouse Button Control) (Version: 2.14 - Highresolution Enterprises)
- ==================== Niestandardowe rejestracje CLSID (filtrowane): ==========================
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
- CustomCLSID: HKU\S-1-5-21-2599105244-4264042397-500321054-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
- CustomCLSID: HKU\S-1-5-21-2599105244-4264042397-500321054-1000_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
- CustomCLSID: HKU\S-1-5-21-2599105244-4264042397-500321054-1000_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
- CustomCLSID: HKU\S-1-5-21-2599105244-4264042397-500321054-1000_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
- CustomCLSID: HKU\S-1-5-21-2599105244-4264042397-500321054-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
- CustomCLSID: HKU\S-1-5-21-2599105244-4264042397-500321054-1000_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
- ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku
- ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku
- ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2016-03-08] (Piriform Ltd)
- ContextMenuHandlers1: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\ShellEx.dll [2018-06-16] (AO Kaspersky Lab)
- ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (Alexander Roshal)
- ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
- ContextMenuHandlers2: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\ShellEx.dll [2018-06-16] (AO Kaspersky Lab)
- ContextMenuHandlers4: [Convert] -> {9f95ca1a-e80e-4c0f-acd1-4c9b7900b982} => C:\Program Files (x86)\Microsoft DirectX SDK (March 2009)\Utilities\bin\x64\TxView.dll [2009-03-16] (Microsoft Corporation)
- ContextMenuHandlers4: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\ShellEx.dll [2018-06-16] (AO Kaspersky Lab)
- ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2018-01-12] (Advanced Micro Devices, Inc.)
- ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2016-12-06] (Intel Corporation)
- ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2016-03-08] (Piriform Ltd)
- ContextMenuHandlers6: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\ShellEx.dll [2018-06-16] (AO Kaspersky Lab)
- ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (Alexander Roshal)
- ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
- ==================== Zaplanowane zadania (filtrowane) =============
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
- Task: {1BB4C2AC-46DA-42EE-A0EC-4D923229743D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-05-24] (Piriform Ltd)
- Task: {1F093210-5B46-4B18-859B-3B2B981BDBBE} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2018-06-14] (AVAST Software)
- Task: {2C15BF2B-1D34-472C-8A07-F260C45686E2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-06-16] (Google Inc.)
- Task: {33A4FA48-57C4-4B68-BB72-CB95314122D4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-06-16] (Google Inc.)
- Task: {7859DE09-3AE7-4D8A-942D-80EDEC0663E3} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation)
- Task: {B810A59A-1E2B-4FA2-9785-EDC3DFBD39F4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-05-24] (Piriform Ltd)
- Task: {E7ED2B49-EF4A-422C-A3EC-E2BDA29761C7} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2599105244-4264042397-500321054-1000
- Task: {E8158C49-5A96-46E6-AE3E-B9136CB26488} - System32\Tasks\AVG\Overseer => C:\Program Files\AVG\Antivirus\setup\overseer.exe
- (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
- ==================== Skróty & WMI ========================
- (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.)
- ==================== Załadowane moduły (filtrowane) ==============
- 2016-08-31 11:38 - 2016-08-31 11:57 - 000076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
- 2018-05-24 19:51 - 2018-05-24 19:51 - 000090496 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll
- 2018-06-16 00:22 - 2018-06-16 00:22 - 000863600 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\kpcengine.2.3.dll
- 2018-03-20 22:47 - 2017-10-25 13:22 - 000114664 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
- 2018-03-20 22:47 - 2017-10-25 13:22 - 000108008 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
- 2018-03-20 22:47 - 2017-10-25 13:22 - 000024040 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
- 2018-03-20 22:47 - 2017-10-25 13:22 - 000048104 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
- ==================== Alternate Data Streams (filtrowane) =========
- (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.)
- ==================== Tryb awaryjny (filtrowane) ===================
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.)
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
- ==================== Powiązania plików (filtrowane) ===============
- (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.)
- ==================== Internet Explorer - Witryny zaufane i z ograniczeniami ===============
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.)
- ==================== Hosts - zawartość: ===============================
- (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.)
- 2009-07-14 04:34 - 2017-11-21 21:03 - 000000027 ____N C:\Windows\system32\Drivers\etc\hosts
- 127.0.0.1 localhost
- ==================== Inne obszary ============================
- (Obecnie brak automatycznej naprawy dla tej sekcji.)
- HKU\S-1-5-21-2599105244-4264042397-500321054-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Kuba\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
- DNS Servers: 192.168.1.1
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
- Zapora systemu Windows [funkcja włączona]
- ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy ==
- MSCONFIG\startupfolder: C:^Users^Kuba^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^irfwserst.vbe => C:\Windows\pss\irfwserst.vbe.Startup
- MSCONFIG\startupfolder: C:^Users^Kuba^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^traceons.vbs => C:\Windows\pss\traceons.vbs.Startup
- MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
- MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
- MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
- MSCONFIG\startupreg: Discord => C:\Users\Kuba\AppData\Local\Discord\app-0.0.297\Discord.exe
- MSCONFIG\startupreg: StartCN => "C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe" atlogon
- MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
- MSCONFIG\startupreg: World of Tanks => "D:\ WoT\WargamingGameUpdater.exe"
- MSCONFIG\startupreg: XMouseButtonControl => C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe /notportable
- ==================== Reguły Zapory systemu Windows (filtrowane) ===============
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
- FirewallRules: [{B2DCDB8B-0E0F-41DB-B32A-A11D0F5655B4}] => (Allow) LPort=53
- FirewallRules: [{C87912DB-85DD-45B2-916E-ACF4BE512F26}] => (Allow) LPort=67
- FirewallRules: [{5A59DC85-1C12-451F-BD1E-CAF0D9EEF4AC}] => (Allow) LPort=68
- FirewallRules: [{2BAFC4FD-FC35-47A2-9044-672750DD978B}] => (Allow) LPort=53
- FirewallRules: [{903D5F36-ADF5-4643-A7D4-91012894ECA3}] => (Allow) LPort=53
- FirewallRules: [{FAE4F449-02E0-4219-A6A9-5D8A6CE6E286}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
- FirewallRules: [{A9A83FF3-BF54-4747-B317-6AF34B9C0B25}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
- FirewallRules: [{F221E749-1DDE-414E-B06B-CFEB3C38B197}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
- FirewallRules: [{3128AAEF-A2C0-4844-A8BB-6B9200017429}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
- FirewallRules: [{A48255E4-781E-4918-9888-675EB4A20E8F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{5F943544-308D-428D-B02C-CB7E3FAD590D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{BB46484E-2240-4124-9489-7479DF37B59D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
- FirewallRules: [{678512A3-8E00-4140-B2E0-6AEE2ED2373C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
- FirewallRules: [{6BF04518-B9C1-440A-9164-B8AD33F30F73}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
- FirewallRules: [{456D6B32-6125-44BA-9921-A6BA318887F9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
- FirewallRules: [{6BD752CF-59BC-4EA0-A99B-08A4A57513AA}] => (Allow) LPort=8317
- FirewallRules: [{E6DF50E5-2DF8-43DB-B38B-CD0A6DCE1B25}] => (Allow) D:\ WoT\WoTLauncher.exe
- FirewallRules: [{FBAB1E8B-268E-4DB8-9E05-BB84FD5CBB5F}] => (Allow) D:\ WoT\WoTLauncher.exe
- FirewallRules: [{5BAA497B-8474-47C7-B36A-7C12ACD37012}] => (Allow) D:\ WoT\worldoftanks.exe
- FirewallRules: [{8A8AFB81-E788-48BB-B309-FB3DEEE7D53A}] => (Allow) D:\ WoT\worldoftanks.exe
- FirewallRules: [TCP Query User{A0F32BDA-037A-4954-8B90-1AD520D23537}C:\ dis\dead island game of the year edition\deadislandgame.exe] => (Allow) C:\ dis\dead island game of the year edition\deadislandgame.exe
- FirewallRules: [UDP Query User{126995C4-48AC-42CA-B005-186D25709ACD}C:\ dis\dead island game of the year edition\deadislandgame.exe] => (Allow) C:\ dis\dead island game of the year edition\deadislandgame.exe
- FirewallRules: [TCP Query User{CF1CFCA5-DB98-46DD-960D-40A0FA55F031}C:\program files (x86)\galactic cafe\the stanley parable\thestanleyparable.exe] => (Allow) C:\program files (x86)\galactic cafe\the stanley parable\thestanleyparable.exe
- FirewallRules: [UDP Query User{16BE78D3-3DFC-4F79-8CF9-413E28ECD848}C:\program files (x86)\galactic cafe\the stanley parable\thestanleyparable.exe] => (Allow) C:\program files (x86)\galactic cafe\the stanley parable\thestanleyparable.exe
- FirewallRules: [TCP Query User{8FB3B415-477E-4498-8991-C7063C3D5F59}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe
- FirewallRules: [UDP Query User{FAEFF94D-D4FA-425C-B3CE-AA41DC3A087C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe
- FirewallRules: [TCP Query User{72469007-86F2-4B49-839D-8C9FF90606D4}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe
- FirewallRules: [UDP Query User{0D7DA611-E150-4A02-B95A-D911934B19E5}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe
- FirewallRules: [{18E07C88-D75A-4422-AB37-E412B5610EC3}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
- FirewallRules: [{EAC4EB7D-1C08-4FC3-8ABC-1E95B8ABD134}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
- FirewallRules: [{5AB0AD14-3541-47F0-9ADB-F62AA24967E3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- ==================== Punkty Przywracania systemu =========================
- 14-06-2018 14:52:16 Installed ESET NOD32 Antivirus
- 14-06-2018 17:03:37 Installed ESET NOD32 Antivirus
- 15-06-2018 09:08:12 Installed ESET NOD32 Antivirus
- 15-06-2018 09:27:18 Usunięto: Microsoft Visual C++ 2005 Redistributable
- 15-06-2018 09:27:50 Usunięte Gothic II Złota Edycja
- 15-06-2018 09:32:33 Removed Native Instruments Controller Editor
- 15-06-2018 23:11:44 Removed Java 8 Update 121
- 15-06-2018 23:28:22 Windows Live Essentials
- 15-06-2018 23:28:45 WLSetup
- 16-06-2018 00:01:20 Malwarebytes Anti-Rootkit Restore Point
- ==================== Wadliwe urządzenia w Menedżerze urządzeń =============
- Name: Kontroler Ethernet
- Description: Kontroler Ethernet
- Class Guid:
- Manufacturer:
- Service:
- Problem: : The drivers for this device are not installed. (Code 28)
- Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
- Name: Kontroler magistrali zarządzania systemem
- Description: Kontroler magistrali zarządzania systemem
- Class Guid:
- Manufacturer:
- Service:
- Problem: : The drivers for this device are not installed. (Code 28)
- Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
- Name: Kontroler PCI Simple Communications
- Description: Kontroler PCI Simple Communications
- Class Guid:
- Manufacturer:
- Service:
- Problem: : The drivers for this device are not installed. (Code 28)
- Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
- Name:
- Description:
- Class Guid:
- Manufacturer:
- Service:
- Problem: : The drivers for this device are not installed. (Code 28)
- Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
- ==================== Błędy w Dzienniku zdarzeń: =========================
- Dziennik Aplikacja:
- ==================
- Error: (06/16/2018 02:12:51 PM) (Source: lupdate) (EventID: 0) (User: )
- Description: Event-ID 0
- Error: (06/16/2018 02:12:51 PM) (Source: lupdate) (EventID: 0) (User: )
- Description: Event-ID 0
- Error: (06/16/2018 02:01:44 PM) (Source: lupdate) (EventID: 0) (User: )
- Description: Event-ID 0
- Error: (06/16/2018 01:57:24 PM) (Source: lupdate) (EventID: 0) (User: )
- Description: Event-ID 0
- Error: (06/16/2018 01:54:50 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
- Description: Nie można zainicjować indeksu.
- Szczegóły:
- Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801)
- Error: (06/16/2018 01:54:50 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
- Description: Nie można zainicjować aplikacji.
- Kontekst: aplikacja Windows
- Szczegóły:
- Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801)
- Error: (06/16/2018 01:54:50 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
- Description: Nie można zainicjować obiektu programu zbierającego.
- Kontekst: aplikacja Windows, wykaz SystemIndex
- Szczegóły:
- Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801)
- Error: (06/16/2018 01:54:50 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
- Description: Nie można zainicjować dodatku typu plug-in w <Search.TripoliIndexer>.
- Kontekst: aplikacja Windows, wykaz SystemIndex
- Szczegóły:
- Nie można odnaleźć elementu. (HRESULT : 0x80070490) (0x80070490)
- Dziennik System:
- =============
- Error: (06/16/2018 01:57:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: Nie można uruchomić usługi Usługa Kaspersky Secure Connection 3.0.0 z powodu następującego błędu:
- Potok został zakończony.
- Error: (06/16/2018 01:57:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
- Description: Usługa Ochrona oprogramowania niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 120000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie.
- Error: (06/16/2018 01:57:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
- Description: Usługa Usługa Kaspersky Secure Connection 3.0.0 niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie.
- Error: (06/16/2018 01:57:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: Usługa Digital Wave Update Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1.
- Error: (06/16/2018 01:57:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: Usługa Adobe Genuine Monitor Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1.
- Error: (06/16/2018 01:57:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: Usługa PnkBstrA niespodziewanie zakończyła pracę. Wystąpiło to razy: 1.
- Error: (06/16/2018 01:57:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: Usługa lupdate niespodziewanie zakończyła pracę. Wystąpiło to razy: 1.
- Error: (06/16/2018 01:57:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
- Description: Usługa Usługa buforowania czcionek platformy Windows Presentation Foundation, wersja 3.0.0.0 niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 0 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie.
- Windows Defender:
- ===================================
- Date: 2017-11-21 14:53:35.914
- Description:
- Podczas skanowania produktu Windows Defender wykryto program szpiegujący lub inne potencjalnie niechciane oprogramowanie.
- Aby uzyskać więcej informacji, zobacz:
- http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/Sasquor&threatid=226763
- Nazwa:BrowserModifier:Win32/Sasquor
- Id.:226763
- Ważność:Wysoki
- Kategoria:Program modyfikujący przeglądarkę
- Znaleziona ścieżka:file:c:\programdata\sun\java\extension.dll;service:W3PCC
- Typ wykrycia:Konkretne
- Źródło wykrycia:System
- Stan:Nieznane
- Użytkownik:ZARZĄDZANIE NT\SYSTEM
- Nazwa procesu:
- Date: 2017-11-19 19:21:15.792
- Description:
- Podczas skanowania produktu Windows Defender wykryto program szpiegujący lub inne potencjalnie niechciane oprogramowanie.
- Aby uzyskać więcej informacji, zobacz:
- http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/Sasquor&threatid=226763
- Nazwa:BrowserModifier:Win32/Sasquor
- Id.:226763
- Ważność:Wysoki
- Kategoria:Program modyfikujący przeglądarkę
- Znaleziona ścieżka:file:c:\programdata\sun\java\extension.dll;service:W3PCC
- Typ wykrycia:Konkretne
- Źródło wykrycia:System
- Stan:Nieznane
- Użytkownik:ZARZĄDZANIE NT\SYSTEM
- Nazwa procesu:C:\Windows\System32\svchost.exe
- Date: 2017-11-19 19:21:14.860
- Description:
- Podczas skanowania produktu Windows Defender wykryto program szpiegujący lub inne potencjalnie niechciane oprogramowanie.
- Aby uzyskać więcej informacji, zobacz:
- http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/Sasquor&threatid=226763
- Nazwa:BrowserModifier:Win32/Sasquor
- Id.:226763
- Ważność:Wysoki
- Kategoria:Program modyfikujący przeglądarkę
- Znaleziona ścieżka:file:c:\programdata\sun\java\extension.dll
- Typ wykrycia:Konkretne
- Źródło wykrycia:System
- Stan:Nieznane
- Użytkownik:ZARZĄDZANIE NT\SYSTEM
- Nazwa procesu:C:\Windows\System32\svchost.exe
- Date: 2017-11-13 14:26:32.440
- Description:
- Podczas skanowania produktu Windows Defender wykryto program szpiegujący lub inne potencjalnie niechciane oprogramowanie.
- Aby uzyskać więcej informacji, zobacz:
- http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/Sasquor&threatid=226763
- Nazwa:BrowserModifier:Win32/Sasquor
- Id.:226763
- Ważność:Wysoki
- Kategoria:Program modyfikujący przeglądarkę
- Znaleziona ścieżka:file:c:\programdata\sun\java\extension.dll;service:W3PCC
- Typ wykrycia:Konkretne
- Źródło wykrycia:System
- Stan:Nieznane
- Użytkownik:ZARZĄDZANIE NT\SYSTEM
- Nazwa procesu:
- Date: 2017-11-13 12:14:21.492
- Description:
- Podczas skanowania produktu Windows Defender wykryto program szpiegujący lub inne potencjalnie niechciane oprogramowanie.
- Aby uzyskać więcej informacji, zobacz:
- http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/Sasquor&threatid=226763
- Nazwa:BrowserModifier:Win32/Sasquor
- Id.:226763
- Ważność:Wysoki
- Kategoria:Program modyfikujący przeglądarkę
- Znaleziona ścieżka:file:c:\programdata\sun\java\extension.dll;service:W3PCC
- Typ wykrycia:Konkretne
- Źródło wykrycia:System
- Stan:Nieznane
- Użytkownik:ZARZĄDZANIE NT\SYSTEM
- Nazwa procesu:C:\Windows\System32\svchost.exe
- CodeIntegrity:
- ===================================
- Date: 2017-11-21 20:02:56.126
- Description:
- Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2017-11-21 20:02:56.097
- Description:
- Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2016-08-28 17:51:03.170
- Description:
- Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\EEL64A.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-08-28 17:51:03.155
- Description:
- Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\CX64AP86.dll because the set of per-page image hashes could not be found on the system.
- ==================== Statystyki pamięci ===========================
- Procesor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz
- Procent pamięci w użyciu: 46%
- Całkowita pamięć fizyczna: 4015.55 MB
- Dostępna pamięć fizyczna: 2137.67 MB
- Całkowita pamięć wirtualna: 8029.29 MB
- Dostępna pamięć wirtualna: 6107 MB
- ==================== Dyski ================================
- Drive c: () (Fixed) (Total:443.13 GB) (Free:296.48 GB) NTFS
- Drive d: () (Fixed) (Total:488.28 GB) (Free:447.45 GB) NTFS
- \\?\Volume{ae4e3a71-6c73-11e6-a6a0-806e6f6e6963}\ (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
- ==================== MBR & Tablica partycji ==================
- ========================================================
- Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 339081DE)
- Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
- Partition 2: (Not Active) - (Size=443.1 GB) - (Type=07 NTFS)
- Partition 3: (Not Active) - (Size=488.3 GB) - (Type=07 NTFS)
- ==================== Koniec Addition.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement