Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 11.03.2019 Uruchomiony przez DAREK (12-03-2019 11:02:53) Uruchomiony z C:\Users\DAREK\Desktop Windows 10 Pro Wersja 1809 17763.316 (X64) (2019-01-20 12:47:46) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2638145126-2244756467-1449166150-500 - Administrator - Disabled) DAREK (S-1-5-21-2638145126-2244756467-1449166150-1001 - Administrator - Enabled) => C:\Users\DAREK Gość (S-1-5-21-2638145126-2244756467-1449166150-501 - Limited - Disabled) Konto domyślne (S-1-5-21-2638145126-2244756467-1449166150-503 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-2638145126-2244756467-1449166150-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 7-Zip 16.02 (x64) (HKLM\...\7-Zip) (Version: 16.02 - Igor Pavlov) AccelerometerP11 (HKLM-x32\...\{87434D51-51DB-4109-B68F-A829ECDCF380}) (Version: 2.00.10.33 - STMicroelectronics) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 19.010.20098 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.89 - Adobe Systems Incorporated) Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.142 - Adobe Systems Incorporated) Aktualizacja produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0415-0000-0000000FF1CE}_PROPLUS_{04E205D6-88B1-4652-B162-42DF2C3B1228}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0415-0000-0000000FF1CE}_PROPLUS_{442ECBCF-94A7-48CC-8CD9-D31FFFD5FA86}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0415-0000-0000000FF1CE}_PROPLUS_{128A36ED-21BE-4547-9FFE-5B85AEC735DD}) (Version: - Microsoft) AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD) ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach) Audacity 2.0.2 (HKLM-x32\...\Audacity_is1) (Version: 2.0.2 - Audacity Team) BEHRINGER FCA1616 USB2.0 Driver v6.13.0.0 (HKLM-x32\...\BEHRINGER FCA1616 USB2.0 Driver v6.13.0.0) (Version: 6.13.0.0 - BEHRINGER) BEHRINGER X-UF USB2.0 Driver v6.13.0.0 (HKLM-x32\...\BEHRINGER X-UF USB2.0 Driver v6.13.0.0) (Version: 6.13.0.0 - BEHRINGER) ChomikBox (HKLM-x32\...\{71736AF6-BA4B-4F3C-8496-C325B97869BA}) (Version: 2.0.8.1 - Chomikuj.pl) Dell ControlVault Host Components Installer 64 bit (HKLM\...\{55E79447-F6B0-46CB-9F58-F82DAC9C2286}) (Version: 2.1.2.187 - Broadcom Corporation) Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.1206.101.112 - ALPS ELECTRIC CO., LTD.) Easy CD-DA Extractor 2010 (HKLM-x32\...\Easy CD-DA Extractor 2010) (Version: 2010.6 - Poikosoft) e-Deklaracje Desktop (HKLM-x32\...\{4244C656-167B-E312-9A4B-60647E23C2DF}) (Version: 11.0.1 - Ministerstwo Finansow) Hidden e-Deklaracje Desktop (HKLM-x32\...\e-Deklaracje.A1909296681C7ACEFE45687D3A64758C8659BF46.1) (Version: 11.0.1 - Ministerstwo Finansow) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation) FFmpeg v0.6.2 for Audacity (HKLM-x32\...\FFmpeg for Audacity_is1) (Version: - ) FileZilla Client 3.40.0 (HKLM-x32\...\FileZilla Client) (Version: 3.40.0 - Tim Kosse) FLAC Installer 1.1.2a (remove only) (HKLM-x32\...\FLAC) (Version: 1.1.2a - Mike Wren, Cyberial Multimedia) foobar2000 v0.9.4.1 (HKLM-x32\...\foobar2000) (Version: 0.9.4.1 - Peter Pawlowski) Gadu-Gadu 10 (HKLM-x32\...\Gadu-Gadu 10_is1) (Version: - ) GM4 Gaming Mouse Driver (HKLM-x32\...\{CF557142-1F8B-426E-8BC5-CA336A3CA377}) (Version: - ) IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6324.0 - IDT) Java 8 Update 201 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180201F0}) (Version: 8.0.2010.9 - Oracle Corporation) Java 8 Update 201 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180201F0}) (Version: 8.0.2010.9 - Oracle Corporation) LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - ) Light 49.0 (x64 en-US) (HKLM\...\Light 49.0 (x64 en-US)) (Version: 49.0 - Light) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2638145126-2244756467-1449166150-1001\...\OneDriveSetup.exe) (Version: 19.012.0121.0011 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Mozilla Firefox 65.0.2 (x64 pl) (HKLM\...\Mozilla Firefox 65.0.2 (x64 pl)) (Version: 65.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.4.0 - Mozilla) Mozilla Thunderbird 60.5.3 (x64 pl) (HKLM\...\Mozilla Thunderbird 60.5.3 (x64 pl)) (Version: 60.5.3 - Mozilla) MX5 (HKLM-x32\...\Maxthon5) (Version: 5.2.6.1000 - Maxthon International Limited) Odinstaluj drukarkę EPSON BX620FWD Series (HKLM\...\EPSON BX620FWD Series) (Version: - SEIKO EPSON Corporation) Oracle VM VirtualBox 5.2.26 (HKLM\...\{28CBFD88-CBF3-482C-978E-DB437CCEDFC8}) (Version: 5.2.26 - Oracle Corporation) PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) R.A.T.M (HKLM\...\{71104E4A-9C5C-48D8-A761-1DB20DB5D79F}) (Version: 7.0.47.1 - Mad Catz Inc) RAVCORE GAMING MOUSE -TYPHOON (HKLM-x32\...\{5B589F03-EBCE-4710-8D61-8D6E7A44663A}_is1) (Version: 1.0 - ) Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics Corporation) Hidden Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics Corporation) Saffire MixControl 3.7 (HKLM\...\Saffire PRO 40_is1) (Version: 3.7 - Focusrite Audio Engineering Ltd.) Smaart 7 (HKLM-x32\...\5E8913DE-2A67-4521-9616-BB9D0FE164B9) (Version: 7.2.1 - Rational Acoustics, LLC) TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.1.18533 - TeamViewer) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) VideoPad Video Editor (HKLM-x32\...\VideoPad) (Version: 6.00 - NCH Software) Vivaldi (HKU\S-1-5-21-2638145126-2244756467-1449166150-1001\...\Vivaldi) (Version: 2.3.1440.60 - Vivaldi Technologies AS.) VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN) Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.7.6.0 - Azureus Software, Inc.) Winamp (remove only) (HKLM-x32\...\Winamp) (Version: - ) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-2638145126-2244756467-1449166150-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6} CustomCLSID: HKU\S-1-5-21-2638145126-2244756467-1449166150-1001_Classes\CLSID\{BCA9D37C-CA60-4160-9115-97A00F24702D}\localserver32 -> C:\Users\DAREK\AppData\Local\Vivaldi\Application\2.3.1440.60\notification_helper.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers1: [EzCddax] -> {37DDAAA7-7B07-4e1e-8C37-B46B63AF2925} => C:\Program Files\Easy CD-DA Extractor 2010\ezcddax64.dll [2010-06-30] (Poikosoft -> ) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers4: [EzCddax] -> {37DDAAA7-7B07-4e1e-8C37-B46B63AF2925} => C:\Program Files\Easy CD-DA Extractor 2010\ezcddax64.dll [2010-06-30] (Poikosoft -> ) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [Brak podpisu cyfrowego] ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {2D720372-8BCE-45DE-8901-33CA46E96F20} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Task: {4623E505-0DF9-4FA3-9B3E-2DF726D46663} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_142_pepper.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {54209AA1-709C-42D3-B7AB-92BEBD319143} - System32\Tasks\Maxthon5 Update => C:\Program Files (x86)\Maxthon5\Bin\Maxthon.exe (Maxthon Technology Co, Ltd. -> Maxthon International ltd.) Task: {8F3F8059-AFF6-4D6D-A253-E8E46973310A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {A86B63E2-70D7-45E8-BF4C-5FE4D80ED4D8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) Task: {BB14EB4B-3731-42DC-9B21-3F6A7F4A8551} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) Task: {D7006BBF-6F7F-46CF-9BD6-B1914F579CA9} - System32\Tasks\TYPHG8-TaskPlan => C:\Program Files\TYPHOON Mouse\TYPHOON.exe (Ravcore) [Brak podpisu cyfrowego] Task: {E1189855-125F-4ED9-8244-1190E5367C7E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) Task: {EF306E85-5E49-4971-98C6-C3FBBEF31EBC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)