Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 24.10.2018 Uruchomiony przez TES1 (30-10-2018 17:33:37) Uruchomiony z C:\progra Windows 7 Professional Service Pack 1 (X64) (2018-10-11 09:16:02) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2714874936-2885573605-2700010397-500 - Administrator - Disabled) Gość (S-1-5-21-2714874936-2885573605-2700010397-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2714874936-2885573605-2700010397-1002 - Limited - Enabled) TES1 (S-1-5-21-2714874936-2885573605-2700010397-1000 - Administrator - Enabled) => C:\Users\TES1 ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Microsoft Security Essentials (Enabled - Up to date) {108DAC43-C256-20B7-BB05-914135DA5160} AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AS: Microsoft Security Essentials (Enabled - Up to date) {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov) Adobe Flash Player 31 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 31.0.0.122 - Adobe Systems Incorporated) Adobe Reader X (10.1.11) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.11 - Adobe Systems Incorporated) Ashampoo WinOptimizer 2014 v.1.0.0 (HKLM-x32\...\{4209F371-99CD-68CB-1C29-9910F8F9BD96}_is1) (Version: 1.0.0 - Ashampoo GmbH & Co. KG) CCleaner (HKLM\...\CCleaner) (Version: 5.47 - Piriform) CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.7035 - CDBurnerXP) COMODO Antivirus (HKLM\...\{8EA744C0-284B-491A-B97A-1606DE5FDE68}) (Version: 11.0.0.6710 - COMODO Security Solutions Inc.) Hidden COMODO Antivirus (HKLM\...\COMODO Internet Security) (Version: 11.0.0.6710 - COMODO Security Solutions Inc.) Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 69.0.3497.81 - Comodo) CrystalDiskInfo 7.8.3 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.8.3 - Crystal Dew World) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden DeepBurner v1.9.0.228 (HKLM-x32\...\{2ADE2157-7A5E-122C-B51D-EB8A01B15943}) (Version: - ) Eraser 6.2.0.2982 (HKLM\...\{DFCF78CC-3DAD-4C1E-8BC6-94DC5B73461E}) (Version: 6.2.2982 - The Eraser Project) FreeCommander XE (HKLM-x32\...\FreeCommander XE_is1) (Version: - Marek Jasinski) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.77 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software) Internet Security Essentials (HKLM-x32\...\ComodoIse) (Version: 1.3.447691.139 - Comodo) IrfanView 4.51 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.51 - Irfan Skiljan) Java(TM) 6 Update 22 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216022FF}) (Version: 6.0.220 - Oracle) Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.8.18993 - McAfee, Inc.) Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden Messenger Companion (HKLM-x32\...\{50816F92-1652-4A7C-B9BC-48F682742C4B}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation) Mozilla Firefox 62.0.3 (x64 pl) (HKLM\...\Mozilla Firefox 62.0.3 (x64 pl)) (Version: 62.0.3 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 62.0.3 - Mozilla) OpenOffice 4.1.5 (HKLM-x32\...\{7076105B-6FE8-464A-AC28-FFBB2686B68F}) (Version: 4.15.9789 - Apache Software Foundation) OpenOffice 4.1.5 Language Pack (Polish) (HKLM-x32\...\{C263EE24-DF40-4CE0-8E98-58EA1B0A379E}) (Version: 4.15.9789 - Apache Software Foundation) Opera Stable 56.0.3051.40 (HKU\S-1-5-21-2714874936-2885573605-2700010397-1000\...\Opera 56.0.3051.40) (Version: 56.0.3051.40 - Opera Software) Opera Stable 56.0.3051.43 (HKU\S-1-5-21-2714874936-2885573605-2700010397-1000\...\Opera 56.0.3051.43) (Version: 56.0.3051.43 - Opera Software) Paragon Backup & Recovery™ 16 Free (HKLM\...\{0C1628E2-3E6C-4C51-942A-FB5B2D5F5285}) (Version: 10.2.1.1326 - Paragon Software) Hidden Paragon Backup & Recovery™ 16 Free (HKLM-x32\...\{eac511e7-0450-4964-b4a0-88d00f78902b}) (Version: 10.2.1.1326 - Paragon Software GmbH) Paragon UIM (HKLM\...\{56EECD69-F428-41C4-ADF6-6CDEE14DDF3F}) (Version: 20.0.0.4 - Paragon Software) Hidden Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Speedtest by Ookla (HKLM\...\{83BDD24D-5643-4BC0-9AA5-B5D073D76C26}) (Version: 1.1.23.001 - Ookla) VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) WizFile v2.05 (HKLM\...\WizFile_is1) (Version: 2.05 - Antibody Software) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\progra\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers1: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2018-09-13] (COMODO) ContextMenuHandlers1: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (The Eraser Project) ContextMenuHandlers2: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2018-09-13] (COMODO) ContextMenuHandlers2: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (The Eraser Project) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\progra\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers4: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (The Eraser Project) ContextMenuHandlers5: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (The Eraser Project) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2014-03-20] (Intel Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\progra\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers6: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2018-09-13] (COMODO) ContextMenuHandlers6: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (The Eraser Project) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0813BCCC-8C2E-4E6B-A330-04525B2F4850} - System32\Tasks\{C6DE61B3-E891-4465-97F3-1C530251292E} => C:\Windows\system32\pcalua.exe -a "E:\Różne\Progra.komp\Eraser 6.2.0.2982.exe" -d E:\Różne\Progra.komp Task: {134DF429-B1A5-4A6E-B28A-2A4CBDD55CAC} - System32\Tasks\Opera scheduled Autoupdate 1539337648 => C:\Users\TES1\AppData\Local\Programs\Opera\launcher.exe [2018-10-05] (Opera Software) Task: {1688EB52-BEC1-455F-A8AF-4F5577B21248} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [2018-09-13] (COMODO) Task: {288B54F9-C606-4651-B02A-3E53C7FDDA16} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2018-09-13] (COMODO) Task: {28991286-258F-4790-ABCD-3FC7C9F8AE8B} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2018-09-13] (COMODO) Task: {298B06E2-327E-46C9-AC6A-A6D4FBCC2580} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2018-10-29] (AVAST Software) Task: {4450E13E-744E-4392-9178-25EB2F2E1FF8} - System32\Tasks\ByteFence => C:\Program Files\ByteFence\ByteFence.exe [2018-07-24] (Byte Technologies LLC) <==== UWAGA Task: {57DEC37D-19FE-4D8F-B319-ABF31909C323} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-10-19] (Google Inc.) Task: {66D79B83-0398-4B4C-B0A0-890900511B17} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2018-09-13] (COMODO) Task: {7A525662-946A-471C-AD52-1D51FFE37CB6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-09-19] (Piriform Ltd) Task: {7E7B2BE0-4E35-428B-9F0F-E2A286F13978} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-09-19] (Piriform Ltd) Task: {8C81E48F-0B07-43EB-ACC1-7D55D5ACC62B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-10-24] (Adobe Systems Incorporated) Task: {96CB51EB-E24D-48FB-AD59-E2BEBD7A487E} - System32\Tasks\{00E9F834-E52D-465D-BD49-E3018036D475} => C:\Windows\system32\pcalua.exe -a C:\Users\TES1\Downloads\adguardInstaller.exe -d C:\Users\TES1\Downloads Task: {B3C70271-C1A8-4C6D-8FD2-35174D47A1D4} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2018-09-13] (COMODO) Task: {B4CD321B-43FF-4411-834E-B1F0C7BCE9A0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-10-19] (Google Inc.) Task: {DE7424F9-ECD4-4B9B-9465-8D99CCE605FA} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2018-09-13] (COMODO) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2018-09-13 15:01 - 2018-09-13 15:01 - 000245952 _____ () C:\Program Files\COMODO\COMODO Internet Security\cmdcomps.dll 2018-09-13 15:00 - 2018-09-13 15:00 - 000107200 _____ () C:\Program Files\COMODO\COMODO Internet Security\cavwpps.dll 2015-02-12 09:12 - 2014-03-20 19:34 - 000094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2018-07-24 10:40 - 2018-07-24 10:40 - 000821528 ____N () c:\program files\bytefence\x64\rsLggrServer_x64.dll 2017-09-07 09:39 - 2017-09-07 09:39 - 000073920 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav 2018-07-24 10:40 - 2018-07-24 10:40 - 000119064 ____N () C:\Program Files\ByteFence\x64\lz4_x64.dll 2017-04-25 14:23 - 2017-04-25 14:23 - 002242448 _____ () C:\Windows\System32\vimsdk.dll 2017-04-25 14:23 - 2017-04-25 14:23 - 000135056 _____ () C:\Windows\System32\vimbase.dll 2017-02-08 15:36 - 2017-02-08 15:36 - 000233984 _____ () C:\Program Files\Paragon Software\Backup and Recovery 16 Free\program\libxslt.dll 2017-02-08 14:20 - 2017-02-08 14:20 - 001437184 _____ () C:\Program Files\Paragon Software\Backup and Recovery 16 Free\program\libxml2.dll 2017-02-08 14:19 - 2017-02-08 14:19 - 000081920 _____ () C:\Program Files\Paragon Software\Backup and Recovery 16 Free\program\libexslt.dll 2016-10-26 09:26 - 2016-10-26 09:26 - 000294400 _____ () C:\Program Files\Paragon Software\Backup and Recovery 16 Free\program\plugins\designer\qaxwidget.dll 2016-10-26 09:26 - 2016-10-26 09:26 - 000227328 _____ () C:\Program Files\Paragon Software\Backup and Recovery 16 Free\program\plugins\designer\qt3supportwidgets.dll 2017-04-25 10:50 - 2017-04-25 10:50 - 000812544 _____ () C:\Program Files\Paragon Software\Backup and Recovery 16 Free\program\sqlite3.dll 2018-10-22 11:46 - 2018-02-09 13:41 - 002199656 _____ () C:\progra\Everything\Everything-1.4.1.895.x64\Everything.exe 2017-12-12 01:50 - 2017-12-12 01:50 - 000988160 _____ () C:\Program Files (x86)\OpenOffice 4\program\libxml2.dll 2017-12-12 01:50 - 2017-12-12 01:50 - 000170496 _____ () C:\Program Files (x86)\OpenOffice 4\program\libxslt.dll 2017-12-12 01:50 - 2017-12-12 01:50 - 000136192 _____ () C:\Program Files (x86)\OpenOffice 4\program\libxmlsec-mscrypto.dll 2017-12-12 01:50 - 2017-12-12 01:50 - 000303616 _____ () C:\Program Files (x86)\OpenOffice 4\program\libxmlsec.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2018-10-15 12:52 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2714874936-2885573605-2700010397-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\TES1\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 156.154.70.25 - 156.154.71.25 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == Załączenie wejścia w fixlist spowoduje jego usunięcie. ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{1653ADFA-07BC-4EEC-98D8-15BBC0B7E68A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{91F4BA39-A854-4874-8932-562B66D66707}] => (Allow) LPort=2869 FirewallRules: [{07611995-341E-4F99-B6D8-5917AB2AB7D2}] => (Allow) LPort=1900 FirewallRules: [{709A1AFC-628C-467A-9179-CA0AE382E69F}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{B6E5125C-F452-446F-A6A4-999371483F4B}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe FirewallRules: [{04F8C6A7-17AC-4E5D-AD75-92E9303E2BA9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{82AC5119-E428-49A8-800B-B589C0AD6D05}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{31A1C8DB-E2F1-4FDE-8A8D-98A1C2A11B15}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [{E90DAA28-0135-4A35-ACC3-F1E255DBF13B}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [{9DE7D6E0-5909-4408-8B89-476857D0BA56}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [{1CCA4D99-DE0E-40E0-BD8A-F1F5C75005F2}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [TCP Query User{BBED7AB0-8E84-4735-BCA1-58427C8AEB4E}C:\progra\vlc\vlc.exe] => (Block) C:\progra\vlc\vlc.exe FirewallRules: [UDP Query User{6B70EFEE-0524-478C-9EA7-3208A8BB04E8}C:\progra\vlc\vlc.exe] => (Block) C:\progra\vlc\vlc.exe FirewallRules: [{EAA062AD-5D58-4C96-BBF9-4A02E7006584}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Punkty Przywracania systemu ========================= 23-10-2018 16:51:10 Windows Update 29-10-2018 16:32:42 Windows Update 30-10-2018 12:04:08 Installing COMODO Antivirus 30-10-2018 15:23:04 Instalacja pakietu sterownika urządzenia: Paragon Software Group 30-10-2018 15:23:44 Instalacja pakietu sterownika urządzenia: Paragon Software Group Universal Image Mounter 30-10-2018 15:24:02 Instalacja pakietu sterownika urządzenia: Paragon Software Group ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: adgnetworktdidrv Description: adgnetworktdidrv Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: adgnetworktdidrv Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (10/30/2018 02:08:00 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: AvastUI.exe, wersja: 18.7.4041.389, sygnatura czasowa: 0x5bc708e8 Nazwa modułu powodującego błąd: KERNELBASE.dll, wersja: 6.1.7601.24231, sygnatura czasowa: 0x5b6db2d4 Kod wyjątku: 0xe06d7363 Przesunięcie błędu: 0x0000c54f Identyfikator procesu powodującego błąd: 0xd90 Godzina uruchomienia aplikacji powodującej błąd: 0x01d4705181f5733f Ścieżka aplikacji powodującej błąd: C:\Program Files\AVAST Software\Avast\AvastUI.exe Ścieżka modułu powodującego błąd: C:\Windows\syswow64\KERNELBASE.dll Identyfikator raportu: d31edcd5-dc44-11e8-9978-c81f6612e4b4 Error: (10/30/2018 12:20:47 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: AvastUI.exe, wersja: 18.7.4041.389, sygnatura czasowa: 0x5bc708e8 Nazwa modułu powodującego błąd: KERNELBASE.dll, wersja: 6.1.7601.24231, sygnatura czasowa: 0x5b6db2d4 Kod wyjątku: 0xe06d7363 Przesunięcie błędu: 0x0000c54f Identyfikator procesu powodującego błąd: 0x81c Godzina uruchomienia aplikacji powodującej błąd: 0x01d470425eecd7ab Ścieżka aplikacji powodującej błąd: C:\Program Files\AVAST Software\Avast\AvastUI.exe Ścieżka modułu powodującego błąd: C:\Windows\syswow64\KERNELBASE.dll Identyfikator raportu: d8bea20b-dc35-11e8-9978-c81f6612e4b4 Error: (10/30/2018 12:17:50 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (10/30/2018 12:16:43 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "C:\Users\TES1\AppData\Local\chromium\Application\chrome.exe". Nie można odnaleźć zestawu zależnego 63.0.3223.0,language="*",type="win32",version="63.0.3223.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (10/30/2018 12:05:39 PM) (Source: WinMgmt) (EventID: 24) (User: ) Description: Event provider CisWmi attempted to register query "SELECT * FROM CisFileRatingChange" whose target class "CisFileRatingChange" in //./root/cis namespace does not exist. The query will be ignored. Error: (10/30/2018 12:05:39 PM) (Source: WinMgmt) (EventID: 24) (User: ) Description: Event provider CisWmi attempted to register query "SELECT * FROM CisStatusChange" whose target class "CisStatusChange" in //./root/cis namespace does not exist. The query will be ignored. Error: (10/30/2018 12:05:39 PM) (Source: WinMgmt) (EventID: 24) (User: ) Description: Event provider CisWmi attempted to register query "SELECT * FROM CisNotification" whose target class "CisNotification" in //./root/cis namespace does not exist. The query will be ignored. Error: (10/30/2018 12:05:39 PM) (Source: WinMgmt) (EventID: 24) (User: ) Description: Event provider CisWmi attempted to register query "SELECT * FROM FwAlert" whose target class "FwAlert" in //./root/cis namespace does not exist. The query will be ignored. Dziennik System: ============= Error: (10/30/2018 12:17:27 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: adgnetworktdidrv Error: (10/30/2018 12:07:27 PM) (Source: Disk) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\Harddisk1\DR1. Error: (10/30/2018 12:07:24 PM) (Source: Disk) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\Harddisk1\DR1. Error: (10/30/2018 12:07:23 PM) (Source: Disk) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\Harddisk1\DR1. Error: (10/30/2018 12:07:22 PM) (Source: Disk) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\Harddisk1\DR1. Error: (10/30/2018 11:56:26 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: adgnetworktdidrv Error: (10/30/2018 11:10:55 AM) (Source: Microsoft Antimalware) (EventID: 3002) (User: ) Description: Event-ID 3002 Error: (10/30/2018 11:10:43 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: adgnetworktdidrv ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz Procent pamięci w użyciu: 76% Całkowita pamięć fizyczna: 8094.07 MB Dostępna pamięć fizyczna: 1925.99 MB Całkowita pamięć wirtualna: 16186.3 MB Dostępna pamięć wirtualna: 8560.25 MB ==================== Dyski ================================ Drive c: (Windows) (Fixed) (Total:351.56 GB) (Free:299.63 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano odczytując BCD)] Drive e: () (Removable) (Total:14.55 GB) (Free:6.01 GB) FAT32 Drive f: (ZAPAS) (Fixed) (Total:6.28 GB) (Free:6.21 GB) NTFS Drive g: (KOPIE_ZAP) (Fixed) (Total:97.66 GB) (Free:5.77 GB) NTFS Drive h: (VERBATIM HD) (Fixed) (Total:931.28 GB) (Free:857.9 GB) FAT32 \\?\Volume{100af743-c7f1-11e8-bc0f-806e6f6e6963}\ (System) (Fixed) (Total:10.26 GB) (Free:0.12 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 1 (Protective MBR) (Size: 14.6 GB) (Disk ID: 00000000) Partition: GPT. ======================================================== Disk: 2 (Size: 931.5 GB) (Disk ID: E0D9F8F0) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=0C) ==================== Koniec Addition.txt ============================