Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 19-01-2021 Uruchomiony przez Bogusław Wierzbicki (19-01-2021 13:44:55) Uruchomiony z C:\Users\sserv\Downloads Windows 10 Pro Wersja 20H2 19042.746 (X64) (2020-11-25 08:00:51) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2405121837-3688630295-1865600989-500 - Administrator - Disabled) Bogusław Wierzbicki (S-1-5-21-2405121837-3688630295-1865600989-1002 - Administrator - Enabled) => C:\Users\sserv Gość (S-1-5-21-2405121837-3688630295-1865600989-501 - Limited - Disabled) Konto domyślne (S-1-5-21-2405121837-3688630295-1865600989-503 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-2405121837-3688630295-1865600989-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated) Aktualizacja produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0415-0000-0000000FF1CE}_ENTERPRISE_{04E205D6-88B1-4652-B162-42DF2C3B1228}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0415-0000-0000000FF1CE}_ENTERPRISE_{442ECBCF-94A7-48CC-8CD9-D31FFFD5FA86}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0415-0000-0000000FF1CE}_ENTERPRISE_{128A36ED-21BE-4547-9FFE-5B85AEC735DD}) (Version: - Microsoft) Autodesk DWG TrueView 2018 - English (HKLM\...\DWG TrueView 2018 - English) (Version: 22.0.50.0 - Autodesk) CCleaner (HKLM\...\CCleaner) (Version: 5.76 - Piriform) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden doPDF (HKLM\...\{5D661934-15D6-403F-926B-890EC66D7851}) (Version: 9.6.248 - Softland) Hidden doPDF 9 (HKLM-x32\...\{fba18efe-a3f6-4ef2-98f1-3d5c555cedf7}) (Version: 9.6.248 - Softland) doPDF 9 add-in for Microsoft Office (x64) (HKLM\...\{BA272241-AC31-4BA9-A08C-22099A0E6B7C}) (Version: 9.6.248 - Softland) doPDF 9 add-in for Microsoft Office (x86) (HKLM-x32\...\{CF797B99-63B3-4D03-9E01-42A40F0EC1D8}) (Version: 9.6.248 - Softland) doPDF 9 Printer Driver (HKLM\...\{63D95795-1B84-4972-89B6-88B3632831FB}) (Version: 9.6.248 - Softland) DWG TrueView 2018 - English (HKLM\...\{28B89EEF-1028-0409-0100-CF3F3A09B77D}) (Version: 22.0.50.0 - Autodesk) Hidden ESET Endpoint Antivirus (HKLM\...\{FC49AD36-7CE8-450F-B4BA-2004FA627485}) (Version: 7.3.2032.0 - ESET, spol. s r.o.) HP Color LaserJet Pro MFP M177 (HKLM-x32\...\{78461e2a-5016-4b73-967b-20581efe6a2e}) (Version: 15.0.16259.1230 - Hewlett-Packard) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPCLJProMFPM177 (HKLM-x32\...\{1120F88C-2B16-43F6-86FC-E9A42A999217}) (Version: 0.00.0001 - Hewlett-Packard) HPDXP (HKLM-x32\...\{C1223A79-3983-4877-B162-75031E7CE322}) (Version: 3.0.26.39 - HP) Hidden HPLJDXPHelper (HKLM-x32\...\{010788AB-706E-4604-A46B-6785EAB64B5E}) (Version: 140.069.007 - HP) Hidden HPLJUTCore (HKLM-x32\...\{06C9D648-CFC6-48CC-A11B-C4A21BEDDAF1}) (Version: 018.000.0001 - HP) Hidden HPLJUTM177 (HKLM-x32\...\{B2654649-4D7B-43DC-8A05-867933FA54E3}) (Version: 008.000.0001 - HP) Hidden hppLaserJetService (HKLM-x32\...\{0C4C3664-157A-4D69-B474-31EBF2EE1AE3}) (Version: 009.033.00926 - Hewlett-Packard) Hidden hppM176LaserJetService (HKLM-x32\...\{C79999B9-4522-470B-8A71-2355AA0C8B9B}) (Version: 001.032.00682 - Hewlett-Packard) Hidden hpStatusAlerts (HKLM-x32\...\{32DE03E8-D0B3-4D13-A885-D3EDFC959EEC}) (Version: 180.040.00267 - HP Development Company, L.P.) Hidden hpStatusAlertsM177 (HKLM-x32\...\{092FCD1C-5203-4BD1-B4F4-0F0C6B237A6A}) (Version: 080.046.00111 - Hewlett-Packard) Hidden IrfanView 4.54 (64-bit) (HKLM\...\IrfanView64) (Version: 4.54 - Irfan Skiljan) Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden LJDXPHelperUI (HKLM-x32\...\{DEB23FB1-04FF-44AC-98B5-EEB243D65A28}) (Version: 140.069.007 - HP) Hidden Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.75 - Microsoft Corporation) Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - ) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-19\...\OneDriveSetup.exe) (Version: 19.002.0107.0005 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-20\...\OneDriveSetup.exe) (Version: 19.002.0107.0005 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2405121837-3688630295-1865600989-1002\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{0BCA8FBE-0C1C-4C65-98A3-5D34AAF41737}) (Version: 2.70.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 84.0.2 - Mozilla) Mozilla Thunderbird 78.6.0 (x86 pl) (HKLM-x32\...\Mozilla Thunderbird 78.6.0 (x86 pl)) (Version: 78.6.0 - Mozilla) NVIDIA Sterownik graficzny 432.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 432.00 - NVIDIA Corporation) OpenOffice 4.1.8 (HKLM-x32\...\{963FD672-F116-4AE3-AE25-84B576E610A7}) (Version: 4.18.9803 - Apache Software Foundation) Pakiet zgodności dla systemu Office 2007 (HKLM-x32\...\{90120000-0020-0415-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6070 - Realtek Semiconductor Corp.) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinRAR 5.91 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH) Packages: ========= Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.49.2.0_x86__kgqvnymyfvs32 [2020-12-15] (king.com) Dodatek Aparat multimediów dla aplikacji Zdjęcia -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-09-22] (Microsoft Corporation) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_122.1.778.0_x64__v10z8vjag6ke6 [2020-12-21] (HP Inc.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-06-18] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-06-18] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1102.0_x64__8wekyb3d8bbwe [2021-01-14] (Microsoft Studios) [MS Ad] NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.959.0_x64__56jybvy8sckqj [2020-11-30] (NVIDIA Corp.) ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-2405121837-3688630295-1865600989-1002_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Program Files\Autodesk\DWG TrueView 2018 - English\en-US\dwgviewrficn.dll (Autodesk, Inc -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-2405121837-3688630295-1865600989-1002_Classes\CLSID\{B6EB585B-B467-4E46-A9C7-48D7D6FD26CB}\localserver32 -> C:\Program Files\Autodesk\DWG TrueView 2018 - English\dwgviewr.exe (Autodesk, Inc -> Autodesk, Inc.) ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2017-02-15] (Autodesk, Inc -> Autodesk, Inc.) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Brak pliku ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> Brak pliku ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Brak pliku ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-01-19] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Brak pliku ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Brak pliku ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_90685a092bcf58c7\nvshext.dll [2019-10-04] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Brak pliku ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-01-19] (Malwarebytes Corporation -> Malwarebytes) ==================== Codecs (filtrowane) ==================== ==================== Skróty & WMI ======================== ==================== Załadowane moduły (filtrowane) ============= 2009-09-16 18:44 - 2009-09-16 18:44 - 000153088 _____ (Hewlett Packard) [Brak podpisu cyfrowego] C:\WINDOWS\System32\hptcpmib.dll 2009-09-16 18:45 - 2009-09-16 18:45 - 000331264 _____ (Hewlett Packard) [Brak podpisu cyfrowego] C:\WINDOWS\System32\HpTcpMon.dll 2009-09-16 11:44 - 2009-09-16 11:44 - 000132096 _____ (Hewlett Packard) [Brak podpisu cyfrowego] C:\WINDOWS\System32\hpzjrd01.dll 2014-06-24 23:31 - 2014-06-24 23:31 - 000041472 _____ (Hewlett-Packard Company) [Brak podpisu cyfrowego] [Plik w użyciu] C:\Program Files (x86)\HP\HPLaserJetService\HPHTTPProxy.dll 2014-06-24 23:31 - 2014-06-24 23:31 - 000073728 _____ (Hewlett-Packard Company) [Brak podpisu cyfrowego] [Plik w użyciu] C:\Program Files (x86)\HP\HPLaserJetService\HPTools.dll 2014-06-24 23:31 - 2014-06-24 23:31 - 001222656 _____ (Hewlett-Packard Company) [Brak podpisu cyfrowego] [Plik w użyciu] C:\Program Files (x86)\HP\HPLaserJetService\LEDMXMLObjects.dll 2014-06-24 23:31 - 2014-06-24 23:31 - 000034816 _____ (HP) [Brak podpisu cyfrowego] [Plik w użyciu] C:\Program Files (x86)\HP\HPLaserJetService\HPServiceCommunicator.dll 2009-09-16 18:45 - 2009-09-16 18:45 - 000317440 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] C:\WINDOWS\System32\HPTcpMUI.dll 2020-11-25 08:57 - 2020-11-25 08:57 - 000096256 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] C:\WINDOWS\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.762_none_11ecb0ab9b2caf3c\ATL80.DLL 2020-11-25 08:57 - 2020-11-25 08:57 - 001101824 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80.DLL 2019-07-01 13:01 - 2019-07-01 13:01 - 000018944 _____ (Softland) [Brak podpisu cyfrowego] C:\WINDOWS\System32\novamn9.dll ==================== Alternate Data Streams (filtrowane) ======== ==================== Tryb awaryjny (filtrowane) ================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer (filtrowane) ========== BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2019-03-19 05:49 - 2020-11-18 10:54 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2405121837-3688630295-1865600989-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\sserv\AppData\Roaming\Mozilla\Firefox\Tapeta pulpitu.bmp DNS Servers: 8.8.8.8 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{BDD17CD1-EEF0-4BFB-8967-7AD958D3A508}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{17200B62-D9C5-4213-847C-868BD1EF07E1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{CE81BED4-B643-4C49-B594-6BCD1ACFD380}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{A41EF539-6C16-482B-B329-A70196DDBB6D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{F7CCA65B-EA65-4690-ABFD-A050032E7A82}] => (Allow) LPort=8501 FirewallRules: [{C6B13045-F318-4818-B925-6D8C9C637D7F}] => (Allow) LPort=8501 FirewallRules: [{91F93243-7313-46E0-BF86-E0958D0B3C5F}] => (Allow) LPort=1900 FirewallRules: [{513B9FC1-FC0B-4478-A32E-4C8FFDF18152}] => (Allow) LPort=2869 FirewallRules: [{63FF2AFD-652C-43D4-BE8A-810F5DF12872}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{6CE85F41-BAD1-425F-93FA-93B6CBDC84FD}] => (Allow) C:\Program Files\HP\HP Color LaserJet Pro MFP M177\bin\SendAFax.exe (VistaName -> Hewlett-Packard Co.) [Brak podpisu cyfrowego] FirewallRules: [{9EBD801E-FDC5-47A9-954C-322FA222B4A8}] => (Allow) C:\Program Files\HP\HP Color LaserJet Pro MFP M177\Bin\HPNetworkCommunicatorCom.exe (VistaName -> Hewlett-Packard Co.) [Brak podpisu cyfrowego] FirewallRules: [{2F4F4835-9F31-49B3-8D48-6D55424B268E}] => (Allow) C:\Program Files\HP\HP Color LaserJet Pro MFP M177\bin\FaxPrinterUtility.exe (VistaName -> Hewlett-Packard Co.) [Brak podpisu cyfrowego] FirewallRules: [{2D0942D7-92DD-4D18-A7FC-9F85EB0A1827}] => (Allow) C:\Program Files (x86)\HP\HP Color LaserJet Pro MFP M177\bin\FaxApplications.exe (VistaName -> Hewlett-Packard Co.) [Brak podpisu cyfrowego] FirewallRules: [{4B627393-9829-4644-9C10-93878F810050}] => (Allow) C:\Program Files (x86)\HP\HP Color LaserJet Pro MFP M177\Bin\HPNetworkCommunicatorCom.exe (VistaName -> Hewlett-Packard Co.) [Brak podpisu cyfrowego] FirewallRules: [{0A56FF5E-5B9E-49DF-843E-710DBADDD189}] => (Allow) C:\Program Files (x86)\HP\HP Color LaserJet Pro MFP M177\bin\EWSProxy.exe (VistaName -> Hewlett-Packard Co.) [Brak podpisu cyfrowego] FirewallRules: [{720B61F7-7196-4F8A-B3CC-56F9839C3D3F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => Brak pliku ==================== Punkty Przywracania systemu ========================= 28-12-2020 10:21:52 Zaplanowany punkt kontrolny 05-01-2021 10:30:51 Zaplanowany punkt kontrolny 14-01-2021 11:32:11 Zaplanowany punkt kontrolny ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Dziennik System: ============= Error: (01/19/2021 01:33:43 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-N9BNBJ9) Description: Nie można uruchomić serwera DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Błąd: 2147942767 Błąd wystąpił podczas uruchamiania polecenia: C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683} Error: (01/19/2021 01:25:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Adobe Acrobat Update Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (01/19/2021 01:25:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa HP LaserJet Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (01/19/2021 01:25:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa novaPDF 9 Server niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 60000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (01/19/2021 01:25:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa NVIDIA Display Container LS niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 6000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (01/19/2021 01:06:40 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-N9BNBJ9) Description: Nie można uruchomić serwera DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Błąd: 2147942767 Błąd wystąpił podczas uruchamiania polecenia: C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683} Error: (01/19/2021 01:04:46 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-N9BNBJ9) Description: Nie można uruchomić serwera DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Błąd: 2147942767 Błąd wystąpił podczas uruchamiania polecenia: C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683} Error: (01/19/2021 01:03:55 PM) (Source: DCOM) (EventID: 10005) (User: ZARZĄDZANIE NT) Description: Model DCOM odebrał błąd 1115 podczas próby uruchomienia usługi SecurityHealthService z argumentami Niedostępny w celu uruchomienia serwera: {8C9C0DB7-2CBA-40F1-AFE0-C55740DD91A0} Windows Defender: =================================== Date: 2020-12-09 10:02:52.9840000Z Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {D92E5F04-2248-4CD2-9F43-7DDB6A82AE57} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM CodeIntegrity: =================================== Date: 2021-01-19 13:37:21.3440000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2021-01-19 13:37:21.3350000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2021-01-19 13:37:21.3130000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2021-01-19 13:33:41.8760000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2021-01-19 13:33:41.5630000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2021-01-19 13:33:41.5540000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2021-01-19 13:33:41.4020000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2021-01-19 13:33:41.3900000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== BIOS: Dell Inc. I01 07/12/2012 Płyta główna: Dell Inc. 0M9KCM Procesor: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz Procent pamięci w użyciu: 56% Całkowita pamięć fizyczna: 8142.68 MB Dostępna pamięć fizyczna: 3551.9 MB Całkowita pamięć wirtualna: 9422.68 MB Dostępna pamięć wirtualna: 4549.88 MB ==================== Dyski ================================ Drive c: (Windows) (Fixed) (Total:222.49 GB) (Free:152.84 GB) NTFS Drive e: (Dane) (Fixed) (Total:931.51 GB) (Free:920.85 GB) NTFS \\?\Volume{e82c5efa-0000-0000-0000-100000000000}\ (System) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS \\?\Volume{e82c5efa-0000-0000-0000-f0a537000000}\ (Recovery image) (Fixed) (Total:0.98 GB) (Free:0.52 GB) NTFS ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: E82C5EFA) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=222.5 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=1000 MB) - (Type=27) ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 8E996885) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt =======================