Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 01.01.2018 Uruchomiony przez Pentium (01-01-2018 15:20:13) Uruchomiony z C:\Users\Pentium\Desktop Windows 7 Ultimate Service Pack 1 (X64) (2015-10-23 11:15:52) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-310958543-235103612-3902852198-500 - Administrator - Disabled) Gość (S-1-5-21-310958543-235103612-3902852198-501 - Limited - Disabled) Pentium (S-1-5-21-310958543-235103612-3902852198-1000 - Administrator - Enabled) => C:\Users\Pentium ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: F-Secure Client Security 12.00 (Enabled - Up to date) {0F70A6C4-76E4-6A3B-2695-519F428B1C20} AS: F-Secure Client Security 12.00 (Enabled - Up to date) {B4114720-50DE-65B5-1C25-6AED390C569D} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: F-Secure Client Security 12.00 (Enabled) {374B27E1-3C8B-6B63-0DCA-F8AABC585B5B} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-310958543-235103612-3902852198-1000\...\uTorrent) (Version: 3.5.1.44332 - BitTorrent Inc.) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 18.009.20050 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 23.0.0.257 - Adobe Systems Incorporated) Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.126 - Adobe Systems Incorporated) Aktualizacje NVIDIA 31.0.1.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.0.1.0 - NVIDIA Corporation) Hidden Arbortext IsoView 7.1 (HKLM-x32\...\{807C9EBC-8414-48D5-8180-0BC6D3E0D3D5}) (Version: 7.1.40.09 - PTC) Hidden Arbortext IsoView 7.1 (HKLM-x32\...\InstallShield_{807C9EBC-8414-48D5-8180-0BC6D3E0D3D5}) (Version: 7.1.40.09 - PTC) ASUS GPU TweakII (HKLM-x32\...\{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.0.6.9 - ASUSTek COMPUTER INC.) Hidden ASUS GPU TweakII (HKLM-x32\...\InstallShield_{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.0.6.9 - ASUSTek COMPUTER INC.) ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.026 - ASUSTek Computer Inc.) CPUID CPU-Z 1.71 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) e-Deklaracje Desktop (HKLM-x32\...\{145486BA-033C-7D81-9949-E4BF0C2AD165}) (Version: 9.0.5 - Ministerstwo Finansow) Hidden e-Deklaracje Desktop (HKLM-x32\...\e-Deklaracje.A1909296681C7ACEFE45687D3A64758C8659BF46.1) (Version: 9.0.5 - Ministerstwo Finansow) EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.) ffdshow v1.3.4532 [2014-07-17] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4532.0 - ) F-Secure Client Security - DeepGuard (HKLM-x32\...\F-Secure HIPS) (Version: 5.0.580 - F-Secure Corporation) F-Secure Client Security - Kontrola urządzeń (HKLM-x32\...\F-Secure Device Control) (Version: 1.00.17507 - F-Secure Corporation) F-Secure Client Security - Ochrona przed wirusami i szpiegami (HKLM-x32\...\F-Secure Anti-Virus) (Version: 9.51.223 - F-Secure Corporation) F-Secure Client Security - Ochrona przeglądania (HKLM-x32\...\F-Secure Browsing Protection) (Version: 2.00.1360 - F-Secure Corporation) F-Secure Client Security - Osłona internetowa (HKLM-x32\...\F-Secure Internet Shield) (Version: 6.40 - F-Secure Corporation) F-Secure Client Security - Skanowanie poczty e-mail (HKLM-x32\...\F-Secure E-mail Scanning) (Version: 6.00.543 - F-Secure Corporation) F-Secure Client Security - Skanowanie ruchu w sieci Web (HKLM-x32\...\F-Secure Protocol Scanner) (Version: 3.00.453 - F-Secure Corporation) GOM Player (HKLM-x32\...\GOM Player) (Version: 2.3.24.5281 - GOM & Company) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 63.0.3239.84 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden HD Tune Pro 5.60 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software) HP Officejet 7610 series — podstawowe oprogramowanie urządzenia (HKLM\...\{E7C3AEEC-A93F-49A2-A1CF-C42C12F90EBF}) (Version: 29.1.971.39251 - Hewlett-Packard Co.) HP Officejet 7610 series Pomoc (HKLM-x32\...\{8B088CE1-706D-4319-A70F-8C52752D95DB}) (Version: 29.0.0 - Hewlett Packard) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP) Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1930 - Intel Corporation) Light Image Resizer 5.0.3.1 (HKLM-x32\...\{D5C093E0-D3DF-42D3-AFD6-CAAFB6985CBC}_is1) (Version: 5.0.3.1 - ObviousIdea) Malwarebytes (wersja 3.3.1.2183) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes) Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation) Microsoft .NET Framework 4.7 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.7.02053 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Windows Debugging Symbols (HKLM-x32\...\{46EA439E-2D16-49B6-AA80-00DE992FE7CE}) (Version: 7601 - Microsoft) Mozilla Firefox 57.0.3 (x64 pl) (HKLM\...\Mozilla Firefox 57.0.3 (x64 pl)) (Version: 57.0.3 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0 - Mozilla) Mozilla Thunderbird 45.8.0 (x86 pl) (HKLM-x32\...\Mozilla Thunderbird 45.8.0 (x86 pl)) (Version: 45.8.0 - Mozilla) MPEG2 Codec(libmpeg2/mad) (HKLM-x32\...\MPEG2 Codec(libmpeg2/mad)) (Version: - ) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Nero Burning ROM 2014 (HKLM-x32\...\{B0E4ACBC-4CFA-4B6D-9B7B-E13C171BCC23}) (Version: 15.0.05300 - Nero AG) Nero Info (HKLM-x32\...\{B791E0AB-87A9-41A4-8D98-D13C2E37D928}) (Version: 15.1.0030 - Nero AG) NVIDIA GeForce Experience 3.11.0.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.11.0.73 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation) NVIDIA Sterownik graficzny 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation) Panel sterowania NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) Prerequisite installer (HKLM-x32\...\{5909A89E-C97F-407C-AE2B-47BDED86BF5D}) (Version: 15.0.0005 - Nero AG) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) SketchUp 2014 (HKLM-x32\...\{F246092E-FA0B-47C8-9D3E-CF8C210293C8}) (Version: 14.1.1282 - Trimble Navigation Limited) The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.0.10.0 - GOG.com) TP-LINK TL-WN721N_TL-WN722N Driver (HKLM-x32\...\{86A7EED0-02D0-4D91-8183-8D2F23F5E6AE}) (Version: 1.3.1 - TP-LINK) V-Ray for SketchUp demo (HKLM-x32\...\V-Ray for SketchUp demo 2.00.24261) (Version: 2.00.24261 - Chaos Software, Ltd) Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden Windows Resource Kit Tools - SubInAcl.exe (HKLM-x32\...\{D3EE034D-5B92-4A55-AA02-2E6D0A6A96EE}) (Version: 5.2.3790.1164 - Microsoft Corporation) WinRAR 5.30 beta 6 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.6 - win.rar GmbH) XMedia Recode wersja 3.3.4.5 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.3.4.5 - XMedia Recode) Your Uninstaller! 7 (HKLM-x32\...\YU2010_is1) (Version: 7.4.2012.1 - URSoft, Inc.) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-02] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-02] (Alexander Roshal) ContextMenuHandlers3: [F-Secure Shell Extension] -> {23814B80-52A2-11D0-BC1A-004095606CB9} => C:\Program Files (x86)\F-Secure\Common\fpshx.dll [2015-06-11] (F-Secure Corporation) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2009-09-23] (Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-02] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-02] (Alexander Roshal) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {09743583-A418-4D70-8DFE-EB0D2B540AD4} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2013-10-16] (Nero AG) Task: {0A2961E5-E4C6-4C61-9949-52E12B1B1FF0} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe Task: {16596879-2FF5-490F-819E-03CF28520472} - System32\Tasks\Scheduled scanning task => C:\Program Files (x86)\F-Secure\Anti-Virus\fsav.exe [2017-10-12] (F-Secure Corporation) Task: {1FB5F4E8-9116-4D01-BDD8-6338B35AEF72} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-12] (Google Inc.) Task: {48BCA84B-6558-400D-8832-E461E4F5477D} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d => C:\Windows\system32\GWX\GWX.exe Task: {4B9CE97F-87A6-4839-BA00-412B33C8D29A} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-11-16] (NVIDIA Corporation) Task: {4D99A5E2-B5B7-4042-A3C2-83B8BC2009FC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated) Task: {4E4443C3-BEB0-41E9-B285-6BBC61CFCB0E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-11-16] (NVIDIA Corporation) Task: {539E9656-60A1-46A0-8E78-4D3E39EF0F5A} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d => C:\Windows\system32\GWX\GWX.exe Task: {610CEBD8-A068-48C2-9D3F-93C7F37E2057} - System32\Tasks\{FA4538D1-93D3-4FF7-A662-14BD22A3FF04} => C:\Program Files (x86)\NapiProjekt\napisy.exe [2013-09-30] () Task: {691676F1-A0FB-40B1-B0F2-CDD5A198E0DA} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-11-16] (NVIDIA Corporation) Task: {69691A51-B3E4-47FB-B7D7-FB8C2328980A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-11-16] (NVIDIA Corporation) Task: {6C7389D3-F3BC-4CFC-B878-3FC39BDCA719} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon-5d => C:\Windows\system32\GWX\GWX.exe Task: {6F3B9751-10B1-43F4-962B-2A9DA593BBB7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-12] (Google Inc.) Task: {719BA930-627B-4E4A-8324-F49C9E018A98} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d => C:\Windows\system32\GWX\GWX.exe Task: {84A1AA59-ABB2-4125-9419-8A76F32A4601} - C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfigAndContent Task: {84A1AA59-ABB2-4125-9419-8A76F32A4601} - C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): C:\Windows\system32\GWX\GWXDetector.exe Task: {8E7AFA1E-A2F9-4712-8178-B2B4A96B0771} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-11-16] (NVIDIA Corporation) Task: {B65FC367-B856-4581-8BB6-1F18F99832D9} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-11-16] (NVIDIA Corporation) Task: {BA2D40CA-EFA2-4FF5-A9F7-60442EF0A8FF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-11-16] (NVIDIA Corporation) Task: {C73323E5-848E-4C38-A524-6146FFB1632E} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Time-Weekend => C:\Windows\system32\GWX\GWX.exe Task: {D14059BD-43B4-4C65-9184-A183A44A6E91} - C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(1): %windir%\system32\GWX\GWXUXWorker.exe -> /ScheduleUpgradeReminderTime Task: {D14059BD-43B4-4C65-9184-A183A44A6E91} - C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(2): C:\Windows\system32\GWX\GWXDetector.exe Task: {D78CA2F7-31F6-4E00-A38B-FFA1C77662A2} - System32\Tasks\{83E5EC01-DBEB-40A1-AD17-21952B56AA51} => C:\Program Files (x86)\NapiProjekt\napisy.exe [2013-09-30] () Task: {DBA34255-411D-4AD6-ADF4-51B98ED31D71} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-11-16] (NVIDIA Corporation) Task: {E28A58CA-45F4-4A45-AAB3-4BA550E88471} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d => C:\Windows\system32\GWX\GWX.exe Task: {EE12F95C-2993-4EBF-A88C-7FE390BCB2CC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-12-12] (Adobe Systems Incorporated) Task: {F0E38D6B-37E3-4E64-B252-0184E9D6493B} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Time-5d => C:\Windows\system32\GWX\GWX.exe Task: {FA1FB223-DEDD-45F0-9E9C-FC79DEB3E446} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2014-03-25] (ASUSTek Computer Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Scheduled scanning task.job => C:\PROGRA~2\F-Secure\ANTI-V~1\fsav.exeI /HARD /POLICY /SCHED /REPORT C:\PROGRA~2\F-Secure\ANTI-V~1\report.txt ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2015-05-29 10:28 - 2015-05-29 10:28 - 000048640 _____ () C:\Windows\SysWOW64\ASGT.exe 2013-09-05 00:17 - 2013-09-05 00:17 - 004300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2017-10-03 19:30 - 2017-11-16 02:41 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-10-12 11:17 - 2015-06-11 21:20 - 000321576 _____ () c:\program files (x86)\f-secure\daas2\daas2_x64.dll 2017-10-03 19:30 - 2017-11-16 02:41 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-10-12 11:17 - 2015-06-11 21:20 - 000248872 _____ () c:\program files (x86)\f-secure\daas2\daas2.dll 2017-10-12 11:17 - 2015-06-11 20:51 - 000038400 _____ () C:\Program Files (x86)\F-Secure\Anti-Virus\FSAVHRES.eng ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData\TEMP:1CE11B51 [163] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2016-03-25 03:34 - 000000876 _____ C:\Windows\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-310958543-235103612-3902852198-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Pentium\AppData\Roaming\Mozilla\Firefox\Tapeta pulpitu.bmp DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Zapora systemu Windows [funkcja wyłączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\startupreg: UnlockerAssistant => "C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{B4DDAB46-8EDC-4696-A681-7D09196CD9D6}] => (Allow) C:\Users\Pentium\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{004E760D-0E32-4D57-84AB-CA3E7898DA70}] => (Allow) C:\Users\Pentium\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{740F8D4D-DF97-49C8-9FAF-EE7578019541}] => (Allow) C:\Users\Pentium\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{323BDC66-8E71-499A-8230-EE9EFBA10CAE}] => (Allow) C:\Users\Pentium\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{5B52BDE0-DB03-44FF-BB05-6D48A3F71C44}] => (Allow) C:\Users\Pentium\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{5CA9AC01-0D1D-4302-8DAA-3ADA6F4799D2}] => (Allow) C:\Users\Pentium\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [SNMP-In-UDP] => (Allow) %SystemRoot%\system32\snmp.exe FirewallRules: [SNMP-Out-UDP] => (Allow) %SystemRoot%\system32\snmp.exe FirewallRules: [SNMP-In-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe FirewallRules: [SNMP-Out-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe FirewallRules: [{AB268568-815D-4D16-9B07-2C2AFABFA4D7}] => (Allow) C:\Program Files\HP\HP Officejet 7610 series\bin\FaxApplications.exe FirewallRules: [{B1E2BEA9-F6E8-4DA8-B6FB-D2F48E84C1AB}] => (Allow) C:\Program Files\HP\HP Officejet 7610 series\bin\DigitalWizards.exe FirewallRules: [{8FB7543A-CA0A-4C97-B7A2-38049D65A7BA}] => (Allow) C:\Program Files\HP\HP Officejet 7610 series\bin\SendAFax.exe FirewallRules: [{25624589-29D2-4073-89BB-0FC196F990A4}] => (Allow) C:\Program Files\HP\HP Officejet 7610 series\Bin\DeviceSetup.exe FirewallRules: [{BCBA86D5-EB8B-4346-93E9-904D202D0475}] => (Allow) C:\Program Files\HP\HP Officejet 7610 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{43F995E5-7EB4-4BFE-8C03-D70B8E6A8FC8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{31B18751-BF51-4A8D-873F-C0F91E4F49A6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{9234E840-D831-4EA6-8EB1-6B4CEC65FC63}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{B55287F6-7F5C-47DE-8BE1-6D55142CA8FA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{AB22344D-EF8A-4B11-9400-009B0890314C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{6239CC9A-681D-45C8-9A86-F432EFA4DE6B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{66E0AFC4-0D07-4A6D-8910-EBBA982A962F}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [{C5C4A017-E937-43AF-9680-97902B56A80B}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [{311D4FCB-B54D-45F5-9791-4125C63EF3B8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{F70431EE-A5DC-4E4E-B7E5-096C3C2387DD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ==================== Punkty Przywracania systemu ========================= 24-12-2017 15:43:52 Before uninstalling V-Ray Online License Server 24-12-2017 15:51:11 Before uninstalling V-Ray Swarm 25-12-2017 14:25:20 Before uninstalling CrystalDiskInfo 7.1.1 25-12-2017 14:32:00 Before uninstalling GSmartControl 25-12-2017 14:36:16 Before uninstalling OCCT 4.5.1 25-12-2017 14:42:18 Before uninstalling LG PC Suite 25-12-2017 14:59:56 Before uninstalling LG Mobile Driver 25-12-2017 15:00:31 Usunięte LG Mobile Driver 25-12-2017 15:50:56 Before uninstalling VDownloader 4.5.2807 25-12-2017 18:52:13 Instalator modułów systemu Windows 25-12-2017 18:56:43 Installed SketchUp 2014 25-12-2017 19:19:06 Zainstalowano: Microsoft Visual C++ 2005 Redistributable 26-12-2017 11:53:00 Instalator modułów systemu Windows ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (01/01/2018 01:59:19 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (12/30/2017 07:53:33 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (12/30/2017 05:32:15 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (12/26/2017 01:47:57 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (12/26/2017 11:33:40 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (12/25/2017 02:19:53 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (12/25/2017 02:18:52 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Error: (12/24/2017 02:20:30 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program Explorer.EXE w wersji 6.1.7601.23537 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: e04 Godzina rozpoczęcia: 01d37cac444d18ff Godzina zakończenia: 63 Ścieżka aplikacji: C:\Windows\Explorer.EXE Identyfikator raportu: 331ebda8-e8ad-11e7-bd9a-001fd00a1c16 Error: (12/24/2017 12:41:43 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (12/23/2017 08:10:34 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: vray_adv_34004_sketchup_win.exe, wersja: 0.0.0.0, sygnatura czasowa: 0x58108f4c Nazwa modułu powodującego błąd: vray_adv_34004_sketchup_win.exe, wersja: 0.0.0.0, sygnatura czasowa: 0x58108f4c Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00000000001a84a8 Identyfikator procesu powodującego błąd: 0xd14 Godzina uruchomienia aplikacji powodującej błąd: 0x01d37c21a3d6fb20 Ścieżka aplikacji powodującej błąd: C:\Users\Pentium\Desktop\Vray 3.40.04 for SketchUp 2017\vray_adv_34004_sketchup_win.exe Ścieżka modułu powodującego błąd: C:\Users\Pentium\Desktop\Vray 3.40.04 for SketchUp 2017\vray_adv_34004_sketchup_win.exe Identyfikator raportu: f3666615-e814-11e7-b654-001fd00a1c16 Dziennik System: ============= Error: (01/01/2018 01:58:03 PM) (Source: SNMP) (EventID: 1500) (User: ) Description: Usługa SNMP napotkała błąd podczas dostępu do klucza rejestru SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration. Error: (12/30/2017 08:02:42 PM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: Usługa F-Secure Anti-Virus Firewall Daemon nie została poprawnie zamknięta po odebraniu kodu sterującego przed zamknięciem. Error: (12/30/2017 07:52:10 PM) (Source: SNMP) (EventID: 1500) (User: ) Description: Usługa SNMP napotkała błąd podczas dostępu do klucza rejestru SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration. Error: (12/30/2017 06:06:26 PM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: Usługa F-Secure Anti-Virus Firewall Daemon nie została poprawnie zamknięta po odebraniu kodu sterującego przed zamknięciem. Error: (12/30/2017 05:31:02 PM) (Source: SNMP) (EventID: 1500) (User: ) Description: Usługa SNMP napotkała błąd podczas dostępu do klucza rejestru SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration. Error: (12/26/2017 04:05:33 PM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: Usługa F-Secure Anti-Virus Firewall Daemon nie została poprawnie zamknięta po odebraniu kodu sterującego przed zamknięciem. Error: (12/26/2017 04:04:37 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: Serwer {F67FAD5C-21CB-453B-B6C3-FA8BA24F8BEF} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (12/26/2017 01:46:35 PM) (Source: SNMP) (EventID: 1500) (User: ) Description: Usługa SNMP napotkała błąd podczas dostępu do klucza rejestru SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration. Error: (12/26/2017 12:41:08 PM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: Usługa F-Secure Anti-Virus Firewall Daemon nie została poprawnie zamknięta po odebraniu kodu sterującego przed zamknięciem. Error: (12/26/2017 11:32:22 AM) (Source: SNMP) (EventID: 1500) (User: ) Description: Usługa SNMP napotkała błąd podczas dostępu do klucza rejestru SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Pentium(R) D CPU 3.00GHz Procent pamięci w użyciu: 33% Całkowita pamięć fizyczna: 4094.49 MB Dostępna pamięć fizyczna: 2720.41 MB Całkowita pamięć wirtualna: 8187.17 MB Dostępna pamięć wirtualna: 6410.71 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:97.65 GB) (Free:22.18 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano odczytując BCD)] Drive d: () (Fixed) (Total:135.23 GB) (Free:124.92 GB) NTFS Drive e: () (Fixed) (Total:463.02 GB) (Free:90.72 GB) NTFS Drive f: () (Fixed) (Total:399.99 GB) (Free:300.7 GB) NTFS Drive g: () (Fixed) (Total:500.01 GB) (Free:256.54 GB) NTFS Drive i: () (Fixed) (Total:499.99 GB) (Free:392.66 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 19A2222B) Partition 1: (Not Active) - (Size=463 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=1400 GB) - (Type=OF Extended) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 454FDFE5) Partition 1: (Active) - (Size=97.7 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=135.2 GB) - (Type=OF Extended) ==================== Koniec Addition.txt ============================