Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 22-05-2017 Uruchomiony przez ciel$ki (23-05-2017 22:13:59) Uruchomiony z C:\Users\ciel$ki\Desktop Windows 7 Professional N Service Pack 1 (X64) (2017-02-16 19:11:04) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-4077199080-139621893-1852969529-500 - Administrator - Disabled) ciel$ki (S-1-5-21-4077199080-139621893-1852969529-1000 - Administrator - Enabled) => C:\Users\ciel$ki Gość (S-1-5-21-4077199080-139621893-1852969529-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-4077199080-139621893-1852969529-1002 - Limited - Enabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-4077199080-139621893-1852969529-1000\...\uTorrent) (Version: 3.5.0.43580 - BitTorrent Inc.) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated) Adobe Flash Player 25 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 25.0.0.171 - Adobe Systems Incorporated) Akamai NetSession Interface (HKU\S-1-5-21-4077199080-139621893-1852969529-1000\...\Akamai) (Version: - Akamai Technologies, Inc) Aktualizacje NVIDIA 25.0.0.0 (Version: 25.0.0.0 - NVIDIA Corporation) Hidden Ansel (Version: 378.66 - NVIDIA Corporation) Hidden Aplikacja na pulpit firmy Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.5.154 - Autodesk) Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.14.4.0 - Asmedia Technology) ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.50 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0040 - ASUS) Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.8.8 - Atheros Communications Inc.) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0015 - ASUS) AutoCAD 2014 — Polski (Polish) (Version: 19.1.18.0 - Autodesk) Hidden AutoCAD 2014 Language Pack – Polski (Polish) (Version: 19.1.18.0 - Autodesk) Hidden Autodesk 360 (HKLM\...\{52B28CAD-F49D-47BA-9FFE-29C2E85F0D0B}) (Version: 4.0.27.1 - Autodesk) Autodesk App Manager (HKLM-x32\...\{C070121A-C8C5-4D52-9A7D-D240631BD433}) (Version: 1.1.0 - Autodesk) Autodesk AutoCAD 2014 — Polski (Polish) (HKLM\...\AutoCAD 2014 — Polski (Polish)) (Version: 19.1.18.0 - Autodesk) Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk) Autodesk Content Service (x32 Version: 3.1.3.0 - Autodesk) Hidden Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden Autodesk Featured Apps (HKLM-x32\...\{F732FEDA-7713-4428-934B-EF83B8DD65D0}) (Version: 1.1.0 - Autodesk) Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.19.0 - Autodesk) Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk) Autodesk Robot Structural Analysis Professional 2016 - Polish regional settings (Version: 2016.0.0.5650 - Autodesk) Hidden Autodesk Robot Structural Analysis Professional 2016 (HKLM\...\Autodesk Robot Structural Analysis Professional 2016) (Version: 2016.0.0.5650 - Autodesk, Inc.) Autodesk Robot Structural Analysis Professional 2016 (Version: 2016.0.0.5650 - Autodesk, Inc.) Hidden Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.4.2294 - AVAST Software) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) CCleaner (HKLM\...\CCleaner) (Version: 5.29 - Piriform) Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment) f.lux (HKU\S-1-5-21-4077199080-139621893-1852969529-1000\...\Flux) (Version: - ) FARO LS 1.1.501.0 (64bit) (HKLM-x32\...\{8A470330-70B2-49AD-86AF-79885EF9898A}) (Version: 5.1.0.30630 - FARO Scanner Production) FARO LS 1.1.501.0 (HKLM-x32\...\{8F196892-666A-4A40-8587-6AE38F78A5C2}) (Version: 5.1.0.30630 - FARO Scanner Production) foobar2000 v1.3.14 (HKLM-x32\...\foobar2000) (Version: 1.3.14 - Peter Pawlowski) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.) Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment) Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation) KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.1.5.8 - PandoraTV) Malwarebytes (wersja 3.0.6.1469) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes) Mathcad 14 (HKLM-x32\...\{E666A69B-A76D-43D5-AF28-4B2150A6EDE2}) (Version: 14.0.3.0 - PTC) Mathcad 14 Help (HKLM-x32\...\{205ACCD7-5342-4694-91F3-3A99E4FD5AA6}) (Version: 14 - Mathsoft) Mathcad 14 Resource Center (HKLM-x32\...\{EBD38AE9-D52D-448D-9DB4-4D5F66E1DAFC}) (Version: 14 - Mathsoft) Mathcad PDSi viewable support (HKLM-x32\...\Mathcad PDSi viewable support) (Version: 9.0.0 - Adobe Systems) Mathcad PDSi viewable support (x32 Version: 9.0.0 - Adobe Systems) Hidden Microsoft .NET Framework 4.6.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01590 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.31119 - Microsoft Corporation) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.3.3 - Notepad++ Team) NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NVIDIA Sterownik graficzny 378.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 378.66 - NVIDIA Corporation) NvNodejs (Version: 3.6.0.74 - NVIDIA Corporation) Hidden NvTelemetry (Version: 2.4.10.0 - NVIDIA Corporation) Hidden NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden Panel sterowania NVIDIA 378.66 (Version: 378.66 - NVIDIA Corporation) Hidden PowerISO (HKLM-x32\...\PowerISO) (Version: 6.8 - Power Software Ltd) PTC Diagnostic Tools (HKLM\...\{1813AEF6-64CD-4AE9-B2AA-4DB3F7E246F3}) (Version: 4.0.0.0 - PTC) PTC Mathcad Prime 4.0 (HKLM\...\{76F154D2-2092-41FC-956C-DC0B79D2B8CA}) (Version: 4.0.0 - PTC) Qualcomm Atheros WiFi Driver Installation Program (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 9.2 - Qualcomm Atheros) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6482 - Realtek Semiconductor Corp.) Results Connect (HKLM\...\{E9100151-C562-4B7C-B25F-1355E9ED9387}) (Version: 2016.0.0.16045 - Autodesk, Inc.) SafeZone Stable 3.55.2393.596 (x32 Version: 3.55.2393.596 - Avast Software) Hidden SHIELD Streaming (Version: 7.1.0370 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 3.6.0.74 - NVIDIA Corporation) Hidden SketchUp Import for AutoCAD 2014 (HKLM-x32\...\{644E9589-F73A-49A4-AC61-A953B9DE5669}) (Version: 1.1.0 - Autodesk) Skype™ 7.36 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.36.101 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-4077199080-139621893-1852969529-1000\...\Spotify) (Version: 1.0.55.487.g256699aa - Spotify AB) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.17.0 - Synaptics Incorporated) VLC media player (HKLM\...\VLC media player) (Version: 2.2.5.1 - VideoLAN) Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.) WinRAR 5.40 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-4077199080-139621893-1852969529-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> D:\Programy\Autodesk\AutoCAD\AutoCAD 2014\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-4077199080-139621893-1852969529-1000_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> D:\Programy\Autodesk\AutoCAD\AutoCAD 2014\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-4077199080-139621893-1852969529-1000_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> D:\Programy\Autodesk\AutoCAD\AutoCAD 2014\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-4077199080-139621893-1852969529-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> D:\Programy\Autodesk\AutoCAD\AutoCAD 2014\pl-PL\acadficn.dll (Autodesk, Inc.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0DDE0081-6A21-4255-AC3F-1FD2A87A4688} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-12-22] (ASUSTek Computer Inc.) Task: {1928A59D-8233-4CDA-9E3E-E1523863F923} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-16] (Google Inc.) Task: {3B0ED3C6-A618-42AF-9D5C-0C0EFD154D2D} - System32\Tasks\Avast Emergency Update => D:\Programy\Avast!\AvEmUpdate.exe [2017-05-07] (AVAST Software) Task: {639267E7-03A6-4FF2-91DA-43907E0DE544} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-05-03] (NVIDIA Corporation) Task: {69717A22-B9C6-44FC-B63D-A23D1F245917} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-05-07] (AVAST Software) Task: {74B62C37-BE0B-4FB8-8CFD-B8D4D67ACB72} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-05-03] (NVIDIA Corporation) Task: {7699B797-C964-4D5F-AF2F-D9915D5E0D7C} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2011-11-15] (ASUS) Task: {7D1C1CF9-6574-444E-AA0A-DEF2F24C5CAB} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation) Task: {7F7F52F7-19CF-4DE4-A785-ECF1E22949FA} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation) Task: {9CE1C0CB-7240-4F2E-87E0-51ED0DBC0866} - System32\Tasks\CCleanerSkipUAC => D:\Programy\CCleaner\CCleaner.exe [2017-04-11] (Piriform Ltd) Task: {A8FEC844-6444-4510-ADC2-7E399AC4D2EF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated) Task: {AB17FC56-B9D6-4801-AC55-1B1F91373B59} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-05-03] (NVIDIA Corporation) Task: {BFB9B0BA-08A9-4FD7-A32F-B02483CAB9E0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-22] (Adobe Systems Incorporated) Task: {CE06B955-5BE0-44B2-A75E-E96B2747BAEB} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation) Task: {D0471232-DE59-42A4-8F0C-F4A6A22CE85D} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation) Task: {D2359743-4A1C-4E58-B3AB-FF16D2C9FFA9} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03] (NVIDIA Corporation) Task: {EB22FF6E-9E2E-4A87-89F6-B82C1BAC18A7} - System32\Tasks\SafeZone scheduled Autoupdate 1494177283 => D:\Programy\SZBrowser\launcher.exe [2017-03-22] (Avast Software) Task: {FA4059C9-E235-43D1-82CD-F73CEF678A1F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-16] (Google Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2017-02-18 15:58 - 2017-02-10 02:52 - 00018880 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll 2017-02-18 16:05 - 2017-02-10 00:57 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2017-03-08 04:42 - 2017-03-08 04:42 - 00230064 _____ () D:\Programy\Notepad++\NppShell_06.dll 2010-07-14 17:11 - 2010-07-14 17:11 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll 2017-02-18 16:05 - 2017-05-03 22:21 - 01267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-05-07 19:06 - 2017-03-22 10:24 - 02271520 _____ () D:\PROGRAMY\ANTI-MALWARE\PoliciesControllerImpl.dll 2011-07-21 19:59 - 2017-02-16 21:34 - 00057640 _____ () C:\Program Files\Synaptics\SynTP\SynTPEnhPS.dll 2015-06-01 22:00 - 2015-06-01 22:00 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll 2017-05-09 20:42 - 2017-05-09 11:13 - 03767640 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libglesv2.dll 2017-05-09 20:42 - 2017-05-09 11:13 - 00100696 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libegl.dll 2017-05-23 21:18 - 2016-09-09 11:27 - 00380928 _____ () C:\Users\ciel$ki\Downloads\gm\rmq2tm48.exe 2017-05-07 19:09 - 2017-05-07 19:09 - 00170216 _____ () D:\Programy\Avast!\JsonRpcServer.dll 2017-05-07 19:09 - 2017-05-07 19:09 - 00176992 _____ () D:\Programy\Avast!\event_routing_rpc.dll 2017-05-07 19:09 - 2017-05-07 19:09 - 00223224 _____ () D:\Programy\Avast!\tasks_core.dll 2017-05-23 11:33 - 2017-05-23 11:33 - 06085688 _____ () D:\Programy\Avast!\defs\17052300\algo.dll 2017-05-07 19:09 - 2017-05-07 19:09 - 00684656 _____ () D:\Programy\Avast!\ffl2.dll 2017-05-07 19:09 - 2017-05-07 19:09 - 00230632 _____ () D:\Programy\Avast!\streamback.dll 2017-02-18 15:58 - 2017-02-10 02:52 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll 2017-04-10 10:29 - 2017-03-10 12:48 - 00061944 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_Service-head.dll 2017-04-10 10:29 - 2017-03-10 12:48 - 00110584 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson0.dll 2017-05-07 19:09 - 2017-05-07 19:09 - 00997896 _____ () D:\Programy\Avast!\AvChrome.dll 2017-05-07 19:09 - 2017-05-07 19:09 - 67717632 _____ () D:\Programy\Avast!\libcef.dll 2017-05-07 19:09 - 2017-05-07 19:09 - 00291824 _____ () D:\Programy\Avast!\gaming_mode_ui.dll 2012-02-06 20:32 - 2012-02-06 20:32 - 00009216 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll 2017-02-18 16:05 - 2017-05-03 22:21 - 01040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-03-11 14:40 - 2017-05-23 12:45 - 67117168 _____ () C:\Users\ciel$ki\AppData\Roaming\Spotify\libcef.dll 2017-03-11 14:40 - 2017-05-23 12:45 - 02253424 _____ () C:\Users\ciel$ki\AppData\Roaming\Spotify\libglesv2.dll 2017-03-11 14:40 - 2017-05-23 12:45 - 00086640 _____ () C:\Users\ciel$ki\AppData\Roaming\Spotify\libegl.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) HKU\S-1-5-21-4077199080-139621893-1852969529-1000\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1" ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 _____ C:\Windows\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-4077199080-139621893-1852969529-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\ciel$ki\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\startupreg: Acrobat Assistant 8.0 => "D:\Programy\MathCAD Prime\Mathcad PDSi\Acrobat\Acrotray.exe" MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\ciel$ki\AppData\Local\Akamai\netsession_win.exe" MSCONFIG\startupreg: Autodesk Desktop App => "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray MSCONFIG\startupreg: Autodesk Sync => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe MSCONFIG\startupreg: CCleaner Monitoring => "D:\Programy\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: Malwarebytes TrayApp => D:\PROGRAMY\ANTI-MALWARE\mbamtray.exe MSCONFIG\startupreg: ShadowPlay => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\ciel$ki\AppData\Roaming\Spotify\SpotifyWebHelper.exe" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{69145CC4-5059-4768-8AB5-985C361ED829}] => (Allow) C:\Users\ciel$ki\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D41178EE-22DB-4950-B649-744B6F37FD4C}] => (Allow) C:\Users\ciel$ki\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{6FB3933F-FBEA-4C33-B219-00DC13E2ECA8}] => (Allow) C:\Users\ciel$ki\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{38A08B8D-1128-4C6F-94DD-A06B7C22C3C0}] => (Allow) C:\Users\ciel$ki\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{93C076D0-0552-40C2-A53B-DFE003C32554}] => (Allow) C:\Users\ciel$ki\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{6FEF43C2-80BC-45FE-A8F1-B9C77157A3BB}] => (Allow) C:\Users\ciel$ki\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{F31AA7DD-8FE5-4803-A4AF-1629D13268AB}D:\gry\diablo iii\x64\diablo iii64.exe] => (Allow) D:\gry\diablo iii\x64\diablo iii64.exe FirewallRules: [UDP Query User{4C8CE864-E31E-4C0E-A0B1-2556BA58B38E}D:\gry\diablo iii\x64\diablo iii64.exe] => (Allow) D:\gry\diablo iii\x64\diablo iii64.exe FirewallRules: [{89880EE3-BE2E-4702-BCEB-FC29FB51879C}] => (Allow) D:\Programy\NapiProjekt\napisy.exe FirewallRules: [{FF3A3B2E-D519-44D8-B608-0A5155B88D65}] => (Allow) D:\Programy\NapiProjekt\napisy.exe FirewallRules: [{B040A861-7DC7-48B8-ACD0-95F252CF7B3C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{8946DB8E-0F7A-4CE6-A84B-6616C03FA850}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{8D4E5A25-C881-4845-97C6-FA78282C22FE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{F2170CCD-9E14-423E-9486-BA9830336A09}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{61177821-6646-4678-8B3F-364EFF84DF87}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [TCP Query User{568C8871-D321-4DFC-BEAC-8552D7B6C008}C:\users\ciel$ki\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\ciel$ki\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{1469C09A-C099-4FFA-A7BD-1DCE4B099390}C:\users\ciel$ki\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\ciel$ki\appdata\local\akamai\netsession_win.exe FirewallRules: [{7B8B781C-EB16-4259-9CA0-0D4D633668F6}] => (Allow) LPort=50248 FirewallRules: [TCP Query User{528F5951-6ED3-4D75-A54F-D2897C37064D}C:\users\ciel$ki\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\ciel$ki\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{2AFE6F83-58F8-4E0C-B37B-109B18BF5971}C:\users\ciel$ki\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\ciel$ki\appdata\local\akamai\netsession_win.exe FirewallRules: [TCP Query User{50DFA068-7BD6-4FA9-B3D7-B7DC3F2A440F}C:\users\ciel$ki\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ciel$ki\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{50573557-EC8E-4C57-8B53-A924067CB48C}C:\users\ciel$ki\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ciel$ki\appdata\roaming\spotify\spotify.exe FirewallRules: [{0356482B-46A1-4633-800E-DFA1E280994D}] => (Allow) D:\Programy\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{F6D6A8FC-43F3-4D6E-8D57-FDD993483D3D}D:\gry\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe] => (Allow) D:\gry\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{DCA6C243-FAC7-45AF-B216-23FA6BA41E8B}D:\gry\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe] => (Allow) D:\gry\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe FirewallRules: [{70DDCB84-1334-4F5F-84F7-57AC3802F970}] => (Allow) D:\Programy\SZBrowser\3.55.2393.596\SZBrowser.exe FirewallRules: [{A8051362-1DC6-4DFA-86B3-8B869623A1E1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [TCP Query User{A7630A4D-3DB4-41E9-9FC4-0464EB7DB0FC}D:\gry\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Allow) D:\gry\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{EF476487-5835-43F7-9C02-35F5A653BB25}D:\gry\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Allow) D:\gry\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe ==================== Punkty Przywracania systemu ========================= ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Generic Bluetooth Adapter Description: Generic Bluetooth Adapter Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974} Manufacturer: GenericAdapter Service: BTHUSB Problem: : Windows has stopped this device because it has reported problems. (Code 43) Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (05/23/2017 04:01:59 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (05/23/2017 11:31:40 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (05/23/2017 08:42:33 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (05/22/2017 09:53:12 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (05/22/2017 06:09:50 PM) (Source: Application Error) (EventID: 1005) (User: ) Description: System Windows nie może uzyskać dostępu do pliku z jednej z następujących przyczyn: problem z połączeniem sieciowym; problem z dyskiem, na którym jest przechowywany plik; problem ze sterownikami magazynu zainstalowanymi na tym komputerze; brak dysku. System Windows zamknął program Proces hosta dla usług systemu Windows z powodu tego błędu. Program: Proces hosta dla usług systemu Windows Plik: Wartość błędu jest wyświetlona w sekcji Dodatkowe dane. Akcja użytkownika 1. Otwórz plik ponownie. Ta sytuacja może być przejściowym problemem, który sam się rozwiąże po ponownym uruchomieniu programu. 2. Jeśli nadal nie można uzyskać dostępu do pliku i - jest w sieci, administrator sieci powinien sprawdzić, czy nie ma problemu z siecią i czy można skontaktować się z serwerem. - jest na dysku wymiennym, na przykład dyskietce lub dysku CD-ROM, sprawdź, czy cały dysk jest włożony do komputera. 3. Sprawdź i napraw system plików, uruchamiając program CHKDSK. Aby uruchomić program CHKDSK, kliknij przycisk Start, kliknij polecenie Uruchom, wpisz polecenie CMD, a następnie kliknij przycisk OK. W wierszu polecenia wpisz polecenie CHKDSK /F, a następnie naciśnij klawisz ENTER. 4. Jeżeli problem nie ustąpi, przywróć plik z kopii zapasowej. 5. Ustal, czy można otworzyć inne pliki na tym samym dysku. Jeśli nie, dysk może być uszkodzony. Jeśli jest to dysk twardy, skontaktuj się z administratorem komputera lub dostawcą sprzętu komputerowego, aby uzyskać dalszą pomoc. Dodatkowe dane Wartość błędu: C0000185 Typ dysku: 0 Error: (05/22/2017 06:09:50 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: svchost.exe_WdiServiceHost, wersja: 6.1.7600.16385, sygnatura czasowa: 0x4a5bc3c1 Nazwa modułu powodującego błąd: perftrack.dll, wersja: 6.1.7601.18713, sygnatura czasowa: 0x54af4721 Kod wyjątku: 0xc0000006 Przesunięcie błędu: 0x0000000000049048 Identyfikator procesu powodującego błąd: 0x410 Godzina uruchomienia aplikacji powodującej błąd: 0x01d2d304ef7da4ef Ścieżka aplikacji powodującej błąd: C:\Windows\system32\svchost.exe Ścieżka modułu powodującego błąd: C:\Windows\system32\perftrack.dll Identyfikator raportu: 1506456a-3f09-11e7-b42e-3085a90f53a6 Error: (05/22/2017 04:10:51 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (05/19/2017 10:17:51 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (05/18/2017 10:01:46 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (05/18/2017 12:48:59 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program chrome.exe w wersji 58.0.3029.110 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 960 Godzina rozpoczęcia: 01d2cf4baf44e4ba Godzina zakończenia: 3 Ścieżka aplikacji: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe Identyfikator raportu: 9db1f084-3b52-11e7-97be-3085a90f53a6 Dziennik System: ============= Error: (05/23/2017 10:11:34 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: Usługa aswbIDSAgent zakończyła działanie; wystąpił specyficzny dla niej błąd %%-536753635. Error: (05/23/2017 09:51:41 PM) (Source: atapi) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\Ide\IdePort0. Error: (05/23/2017 09:51:41 PM) (Source: atapi) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\Ide\IdePort0. Error: (05/23/2017 09:51:41 PM) (Source: atapi) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\Ide\IdePort0. Error: (05/23/2017 09:51:41 PM) (Source: atapi) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\Ide\IdePort0. Error: (05/23/2017 09:28:23 PM) (Source: atapi) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\Ide\IdePort0. Error: (05/23/2017 09:28:23 PM) (Source: atapi) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\Ide\IdePort0. Error: (05/23/2017 09:28:23 PM) (Source: atapi) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\Ide\IdePort0. Error: (05/23/2017 09:28:23 PM) (Source: atapi) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\Ide\IdePort0. Error: (05/23/2017 09:28:23 PM) (Source: atapi) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\Ide\IdePort0. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i3-2310M CPU @ 2.10GHz Procent pamięci w użyciu: 73% Całkowita pamięć fizyczna: 3872.06 MB Dostępna pamięć fizyczna: 1022.07 MB Całkowita pamięć wirtualna: 7742.3 MB Dostępna pamięć wirtualna: 4062.54 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:74.9 GB) (Free:21.92 GB) NTFS Drive d: () (Fixed) (Total:390.76 GB) (Free:341.88 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 6804B8E4) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=74.9 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=390.8 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================