Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 26-10-2017 Uruchomiony przez Tomek (30-10-2017 21:56:58) Uruchomiony z C:\Users\Tomek\Desktop Windows 10 Pro Wersja 1703 15063.674 (X64) (2017-08-07 15:28:35) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-4141322210-4204212344-1410003689-500 - Administrator - Disabled) defaultuser0 (S-1-5-21-4141322210-4204212344-1410003689-1000 - Limited - Disabled) Gość (S-1-5-21-4141322210-4204212344-1410003689-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-4141322210-4204212344-1410003689-1008 - Limited - Enabled) Konto domyślne (S-1-5-21-4141322210-4204212344-1410003689-503 - Limited - Disabled) Tomek (S-1-5-21-4141322210-4204212344-1410003689-1001 - Administrator - Enabled) => C:\Users\Tomek ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Norton AntiVirus (Enabled - Up to date) {30744133-1E94-7B35-F4A3-82A5AEF1CBAA} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Norton AntiVirus (Enabled - Up to date) {8B15A0D7-38AE-74BB-CE13-B9D7D5768117} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated) Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.183 - Adobe Systems Incorporated) Akamai NetSession Interface (HKU\S-1-5-21-4141322210-4204212344-1410003689-1001\...\Akamai) (Version: - Akamai Technologies, Inc) Aktualizacje NVIDIA 28.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 28.0.0.0 - NVIDIA Corporation) Hidden Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 385.41 - NVIDIA Corporation) Hidden Backup and Sync from Google (HKLM-x32\...\{9AC75ED0-A54A-4AEA-9563-87572879D91C}) (Version: 3.36.6721.3394 - Google, Inc.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Bloody6 (HKLM-x32\...\Bloody3) (Version: 16.09.0013 - Bloody) f.lux (HKU\S-1-5-21-4141322210-4204212344-1410003689-1001\...\Flux) (Version: - f.lux Software LLC) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.) Google SketchUp 6 (HKLM-x32\...\{98736A65-3C79-49EC-B7E9-A3C77774B0E6}) (Version: 6.4.112 - Google) Hidden Google SketchUp 6 (HKLM-x32\...\{B3D8B2F8-3C2C-45BC-933E-8B60E78F6684}) (Version: 6.0.01539 - Google) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation) Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation) Killer Bandwidth Control Filter Driver (HKLM\...\{5B7A2B7B-CEA9-4E50-B0E4-E82F204CBE78}) (Version: 1.1.57.1125 - Rivet Networks) Hidden Killer E220x Drivers (HKLM\...\{77C95134-CA2D-4614-9C86-55B7A6A281AA}) (Version: 1.1.57.1125 - Rivet Networks) Hidden Killer Performance Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.57.1125 - Rivet Networks) LCN-PRO (HKLM-x32\...\{1518AAF8-2D2A-4A31-BDF5-05285F0B9803}) (Version: 6.3.6 - ) Logitech Options (HKLM\...\LogiOptions) (Version: - Logitech) Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.6213.1000 - Microsoft Corporation) Microsoft Office 365 ProPlus - pl-pl (HKLM\...\O365ProPlusRetail - pl-pl) (Version: 16.0.8528.2147 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-4141322210-4204212344-1410003689-1001\...\OneDriveSetup.exe) (Version: 17.3.6998.0830 - Microsoft Corporation) Microsoft Sync Framework 2.0 Core Components (x64) ENU (HKLM\...\{8CCBEC22-D2DB-4DC9-A58A-E1A1F3A38C8A}) (Version: 2.0.1578.0 - Microsoft Corporation) Microsoft Sync Framework 2.0 Provider Services (x64) ENU (HKLM\...\{03AC245F-4C64-425C-89CF-7783C1D3AB2C}) (Version: 2.0.1578.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2015 (HKLM-x32\...\{dd8b09df-3ef8-49f1-bd1a-65278435860b}) (Version: 14.0.23217 - Microsoft Corporation) Mozilla Firefox 55.0.3 (x86 pl) (HKLM-x32\...\Mozilla Firefox 55.0.3 (x86 pl)) (Version: 55.0.3 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 55.0.3.6445 - Mozilla) MSI Afterburner 4.3.0 (HKLM-x32\...\Afterburner) (Version: 4.3.0 - MSI Co., LTD) MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 1.0.1.18 - MSI) MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.12 - MSI) MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.19 - MSI) MSI(R) Intel(R) Extreme Tuning Utility (HKLM-x32\...\{5D85C662-99AB-4B25-A6F0-ABB9D702F552}) (Version: 6.0.2.102 - Intel Corporation) Hidden MSI(R) Intel(R) Extreme Tuning Utility (HKLM-x32\...\{bcbf202c-9746-4173-a49b-649bfd0adca6}) (Version: 6.0.2.102 - Intel Corporation) Norton AntiVirus (HKLM-x32\...\NAV) (Version: 22.11.0.41 - Symantec Corporation) NVIDIA GeForce Experience 3.9.0.61 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.9.0.61 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 385.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 385.41 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.34.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.27 - NVIDIA Corporation) NVIDIA Sterownik graficzny 385.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 385.41 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.8528.2147 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.8528.2147 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0415-1000-0000000FF1CE}) (Version: 16.0.8326.2107 - Microsoft Corporation) Hidden OnePlus USB Drivers 1.00 (HKLM-x32\...\OnePlus USB Drivers 1.00) (Version: 1.00 - OnePlus, Inc) Oprogramowanie mikroukładu Intel® (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden Oracle VM VirtualBox 5.1.14 (HKLM\...\{6AE61854-0F78-49E3-ABCC-586FB43CE709}) (Version: 5.1.14 - Oracle Corporation) Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment) Panel sterowania NVIDIA 385.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 385.41 - NVIDIA Corporation) Hidden Polar FlowSync wersja 2.6.2 (HKLM-x32\...\{A1538F5C-7B65-4DB6-9FFB-FFC0DF2E85D8}_is1) (Version: 2.6.2 - Polar Electro Oy) Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8010 - Realtek Semiconductor Corp.) Revo Uninstaller 2.0.1 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.1 - VS Revo Group, Ltd.) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.2.0 - Rockstar Games) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SyncToy 2.1 (x64) (HKLM\...\{88DAAF05-5A72-46D2-A7C5-C3759697E943}) (Version: 2.1.0 - Microsoft) TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.83369 - TeamViewer) Vulkan Run Time Libraries 1.0.51.0 (HKLM\...\VulkanRT1.0.51.0) (Version: 1.0.51.0 - LunarG, Inc.) Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation) WinRAR 5.31 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-31] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-31] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-31] (Google) ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton AntiVirus\Engine\22.11.0.41\buShell.dll [2017-10-04] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton AntiVirus\Engine\22.11.0.41\buShell.dll [2017-10-04] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton AntiVirus\Engine\22.11.0.41\buShell.dll [2017-10-04] (Symantec Corporation) ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton AntiVirus\Engine\22.11.0.41\buShell.dll [2017-10-04] (Symantec Corporation) ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton AntiVirus\Engine\22.11.0.41\buShell.dll [2017-10-04] (Symantec Corporation) ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton AntiVirus\Engine\22.11.0.41\buShell.dll [2017-10-04] (Symantec Corporation) ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton AntiVirus\Engine\22.11.0.41\buShell.dll [2017-10-04] (Symantec Corporation) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-08-31] (Google) ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton AntiVirus\Engine\22.11.0.41\NavShExt.dll [2017-10-04] (Symantec Corporation) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\MOJE_PROGRAMY\winrar\rarext.dll [2016-02-08] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\MOJE_PROGRAMY\winrar\rarext32.dll [2016-02-08] (Alexander Roshal) ContextMenuHandlers2-x32: [AlcoholShellEx] -> {32020A01-506E-484D-A2A8-BE3CF17601C3} => C:\MOJE_PROGRAMY\Alcohol 120\AxShlex.dll [2014-09-06] (Alcohol Soft Development Team) ContextMenuHandlers2-x32: [AlcoholShellEx64] -> {AF67B665-D752-424E-9A03-C7C218F2844F} => C:\MOJE_PROGRAMY\Alcohol 120\AxShlEx64.dll [2014-09-06] (Alcohol Soft Development Team) ContextMenuHandlers2-x32: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton AntiVirus\Engine\22.11.0.41\NavShExt.dll [2017-10-04] (Symantec Corporation) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-08-31] (Google) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-08-22] (NVIDIA Corporation) ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton AntiVirus\Engine\22.11.0.41\buShell.dll [2017-10-04] (Symantec Corporation) ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton AntiVirus\Engine\22.11.0.41\NavShExt.dll [2017-10-04] (Symantec Corporation) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\MOJE_PROGRAMY\winrar\rarext.dll [2016-02-08] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\MOJE_PROGRAMY\winrar\rarext32.dll [2016-02-08] (Alexander Roshal) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {026FCF41-6B1A-4707-9D36-C5DF2A32C361} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-25] (Google Inc.) Task: {0C0150BA-CBB2-47FA-BBF6-8D9DCB0FE9FB} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2015-05-05] (Intel Corporation) Task: {0E5FA66E-6D45-4B66-B6AD-610FB56DE576} - System32\Tasks\Norton AntiVirus\Norton AntiVirus Error Processor => C:\Program Files\Norton AntiVirus\Engine\22.11.0.41\SymErr.exe [2017-10-04] (Symantec Corporation) Task: {0F6E6788-CF5C-4EA4-90F7-3F106F12D96C} - System32\Tasks\Norton AntiVirus\Norton AntiVirus Error Analyzer => C:\Program Files\Norton AntiVirus\Engine\22.11.0.41\SymErr.exe [2017-10-04] (Symantec Corporation) Task: {1B14F460-0317-47D9-BDD4-E128F8529861} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-08-18] (NVIDIA Corporation) Task: {21A7FA61-BB43-4971-8FDB-D14FD9C3CD8D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-08-18] (NVIDIA Corporation) Task: {4C4612F1-F2BF-4D08-94B9-B51CC38A1C5E} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-09-29] () Task: {55778283-1BB0-4DE0-847C-4DC46C431CE1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated) Task: {60BC5015-EC49-42F9-BA89-7625C044EADE} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-08-18] (NVIDIA Corporation) Task: {6374A3CE-8F64-4E8A-9CE1-DC8C70BCE2AB} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton AntiVirus\Upgrade.exe [2017-10-04] (Symantec Corporation) Task: {6730F3A3-874B-4674-9AF5-4DF62E72F0EC} - System32\Tasks\{04A2A27E-A366-43F6-9C4B-EFFBB71D247B} => C:\Windows\system32\pcalua.exe -a G:\OnePlus_setup.exe -d G:\ -c /s Task: {68B3A888-5503-4544-88D9-B4F3A07108A4} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-08-18] (NVIDIA Corporation) Task: {6EA76CCA-E5C3-4103-87EB-B4F49974B0C6} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-08-18] (NVIDIA Corporation) Task: {85F5E00B-887D-42C0-BE79-5185488EC720} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-08-18] (NVIDIA Corporation) Task: {886DA200-4D8E-43F2-B5D4-0F62CC903DC6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-08-18] (NVIDIA Corporation) Task: {9246691A-3B78-4103-A335-D581CFCFFA44} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton AntiVirus\Engine\22.11.0.41\WSCStub.exe [2017-10-04] (Symantec Corporation) Task: {9DA33A4C-97FA-42A5-BC6B-6F5A74D1745E} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-10-30] (Microsoft Corporation) Task: {AF6E3C86-32C7-4DC3-9E8A-6C251E7BE9E2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-10-30] (Microsoft Corporation) Task: {B1DC86DA-8A79-4FC8-968A-B3C809587CC9} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-09-29] () Task: {B28FCA5D-E95E-43D2-861D-D47EB8C4FF53} - System32\Tasks\Norton AntiVirus\Norton AntiVirus Autofix => C:\Program Files\Norton AntiVirus\Engine\22.11.0.41\SymErr.exe [2017-10-04] (Symantec Corporation) Task: {B32D83CC-D037-4283-A82B-4263E9D452BD} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-10-23] (Microsoft Corporation) Task: {B3E99B04-A0C2-441F-A5A3-68F93BD81852} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-10-23] (Microsoft Corporation) Task: {BDB8BBC1-5B5C-4D0D-830B-790FB2C8E13F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-10-30] (Microsoft Corporation) Task: {C56702D4-966B-41FC-9061-9B0E06B2E452} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-25] (Google Inc.) Task: {CF550F0B-11E0-4FAA-A589-B6A5B5CE8AE4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-10-25] (Adobe Systems Incorporated) Task: {D8DCB63D-FB87-4400-85AA-94BD4F481E2B} - System32\Tasks\{A032BA47-0805-4D9A-B45F-08988B0496E7} => C:\Windows\system32\pcalua.exe -a "C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" -c --lang=plPL --uid=battle.net --displayname="Battle.net" Task: {DF70D577-1288-4C4E-9890-B0F1EB15C400} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-08-18] (NVIDIA Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2016-04-12 11:27 - 2012-09-18 14:27 - 000192512 _____ () C:\WINDOWS\System32\zlhp1020.dll 2016-10-25 19:51 - 2012-09-18 14:27 - 000065024 _____ () C:\WINDOWS\system32\spool\PRTPROCS\x64\pphp1020.dll 2016-04-12 11:27 - 2012-09-18 14:27 - 003162624 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\suhp1020.dll 2016-04-12 11:27 - 2012-09-18 14:27 - 001236992 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\gchp1020.dll 2016-10-25 22:45 - 2017-08-18 05:36 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-03-18 21:58 - 2017-03-18 21:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2017-03-18 21:59 - 2017-03-20 04:59 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-08-31 16:18 - 2017-08-31 16:18 - 040257336 _____ () C:\Program Files (x86)\Google\Drive\googledrivesync.exe 2017-09-29 18:04 - 2017-09-21 08:29 - 004022616 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libglesv2.dll 2017-09-29 18:04 - 2017-09-21 08:29 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libegl.dll 2015-07-10 22:37 - 2015-07-10 22:37 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2017-10-30 21:22 - 2017-10-30 21:22 - 000088064 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\_ctypes.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000918528 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\_hashlib.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000098816 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\win32api.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000110080 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\pywintypes27.dll 2017-10-30 21:22 - 2017-10-30 21:22 - 000364544 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\pythoncom27.dll 2017-10-30 21:22 - 2017-10-30 21:22 - 000686080 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\unicodedata.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000320512 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\win32com.shell.shell.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 001177088 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\wx._core_.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000806912 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\wx._gdi_.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000816640 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\wx._windows_.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 001067520 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\wx._controls_.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000733696 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\wx._misc_.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000736256 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\pysqlite2._sqlite.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000119808 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\win32file.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000108544 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\win32security.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000007168 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\hashobjs_ext.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000017920 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\thumbnails_ext.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000082432 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\usb_ext.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000013824 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\common.time34.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000018432 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\win32event.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000088576 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\windows.volumes.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000017408 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\windows.winwrap.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000167936 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\win32gui.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000046080 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\_socket.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 001309696 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\_ssl.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000129536 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\_elementtree.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000127488 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\pyexpat.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000038912 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\win32inet.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000077824 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\wx._html2.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000036864 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\_psutil_windows.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000524248 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\windows._lib_cacheinvalidation.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000011264 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\win32crypt.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000218624 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\PIL._imaging.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000027648 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\_multiprocessing.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000020480 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\_yappi.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000035840 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\win32process.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000024064 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\win32pipe.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000010240 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\select.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000025600 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\win32pdh.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000058880 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\windows.device_monitor.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000017408 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\win32profile.pyd 2017-10-30 21:22 - 2017-10-30 21:22 - 000022528 _____ () C:\Users\Tomek\AppData\Local\Temp\_MEI161682\win32ts.pyd 2017-04-13 12:48 - 2015-11-19 14:56 - 001759232 _____ () C:\MOJE_PROGRAMY\Polar FlowSync\polar20.dll 2016-10-25 22:45 - 2017-08-18 05:36 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-4141322210-4204212344-1410003689-1001\...\sharepoint.com -> hxxps://studentwat-files.sharepoint.com ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2016-10-22 19:32 - 2016-10-22 19:31 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-4141322210-4204212344-1410003689-1001\Control Panel\Desktop\\Wallpaper -> DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == HKLM\...\StartupApproved\Run: => "ShadowPlay" HKLM\...\StartupApproved\Run32: => "Command Center" HKU\S-1-5-21-4141322210-4204212344-1410003689-1001\...\StartupApproved\StartupFolder: => "Wysyłanie do programu OneNote.lnk" HKU\S-1-5-21-4141322210-4204212344-1410003689-1001\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-4141322210-4204212344-1410003689-1001\...\StartupApproved\Run: => "Bloody2" HKU\S-1-5-21-4141322210-4204212344-1410003689-1001\...\StartupApproved\Run: => "WarThunderLauncher" HKU\S-1-5-21-4141322210-4204212344-1410003689-1001\...\StartupApproved\Run: => "Gaijin.Net Agent" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{FA3B37C7-4882-4A8E-A0DF-6A4780EA1953}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{C384ABD4-514E-4168-AA86-F15598A79D51}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{39D8E208-BC45-4BF5-AEF1-752AE9425C0B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{CFF18ADB-B85D-4C81-BE76-0D1F83DCB88D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{6CF91D34-2B61-484A-BCAD-1DBDFCB43B1B}] => (Allow) C:\MOJE_PROGRAMY\TeamViewer\TeamViewer_Service.exe FirewallRules: [{72F964A1-24CF-4B94-9D41-C3E0104BF1C2}] => (Allow) C:\MOJE_PROGRAMY\TeamViewer\TeamViewer_Service.exe FirewallRules: [{E1CE16DF-6F0C-4D96-B9A6-F04872403938}] => (Allow) C:\MOJE_PROGRAMY\TeamViewer\TeamViewer.exe FirewallRules: [{C46F5E5D-B38D-4905-A987-B6DA17DBC9C1}] => (Allow) C:\MOJE_PROGRAMY\TeamViewer\TeamViewer.exe FirewallRules: [{8971A96B-ED77-4D11-9278-EB3D98630024}] => (Allow) LPort=5000 FirewallRules: [{B61EEA44-EBD1-4B8E-8463-9EC700F37FEA}] => (Allow) LPort=49779 FirewallRules: [UDP Query User{99F6F841-E59E-4649-8001-FCA2A3C40BD7}C:\users\tomek\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\tomek\appdata\local\akamai\netsession_win.exe FirewallRules: [TCP Query User{6964F6E6-A7FC-49B7-B539-71A289C24E78}C:\users\tomek\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\tomek\appdata\local\akamai\netsession_win.exe FirewallRules: [{7E2FFF4D-AC16-4468-857A-6B1502FB1DAE}] => (Allow) LPort=5354 FirewallRules: [{33046691-8CFB-42D7-BBFF-A13BA6A5CB74}] => (Allow) LPort=5354 FirewallRules: [{98662A1D-250F-4B34-98BA-30FAB79BACA5}] => (Allow) LPort=5354 FirewallRules: [{2CDAD6D4-06E7-4A2A-8C4B-553BA8A0E391}] => (Allow) LPort=5354 FirewallRules: [{C64355FC-8161-4B15-8CBE-BD26F9A322D4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{370071EA-7741-4865-8CC4-BDB69C7C8E22}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [UDP Query User{D8E21EC3-4A93-4C94-9420-C57B0A8BFD4A}D:\gry_programy\battle\overwatch\overwatch.exe] => (Allow) D:\gry_programy\battle\overwatch\overwatch.exe FirewallRules: [TCP Query User{68E26030-A8C0-4FFE-BFF0-8F11DC459CFF}D:\gry_programy\battle\overwatch\overwatch.exe] => (Allow) D:\gry_programy\battle\overwatch\overwatch.exe FirewallRules: [{B128BED0-6438-43B8-A859-1900E88F4DAB}] => (Allow) LPort=7437 FirewallRules: [{F17A6515-E142-4FBD-B2E3-BC99A4076522}] => (Allow) D:\GRY_PROGRAMY\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{A374D787-0584-4ABB-9050-46074C4F807E}] => (Allow) D:\GRY_PROGRAMY\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{D8D384D4-B806-4395-84D5-3B863A37632D}] => (Allow) C:\MOJE_PROGRAMY\steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{07678EC0-17AB-43B8-9E0A-919713B9C8DA}] => (Allow) C:\MOJE_PROGRAMY\steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{770B5E21-AAE3-40D1-939C-C269A89CB7FA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{5D4AF2F3-5B8D-40BF-AE3F-E780CDE72F6A}] => (Allow) LPort=8090 FirewallRules: [{306A3AB9-62A9-4764-A337-4CEB7A3974B6}] => (Allow) LPort=20443 FirewallRules: [{70F27A48-69F3-4766-A711-848AC79C85FB}] => (Allow) LPort=33333 FirewallRules: [{C0F1D003-C0A5-42A7-A3C3-EEE4601D5F7D}] => (Allow) LPort=6881 FirewallRules: [{4A9FED54-4541-4FE1-9498-60A4F57D0041}] => (Allow) LPort=27022 FirewallRules: [{31CB9CCD-389E-40BE-B012-F52E8DCDEA35}] => (Allow) LPort=7853 FirewallRules: [{114D032E-C4B5-4132-899C-BF2B11743D10}] => (Allow) LPort=7852 FirewallRules: [{EA37B719-8E19-4C84-8CFE-758F4423E580}] => (Allow) LPort=7850 FirewallRules: [{15C01E08-8B8F-4B7D-8F2B-AFDEBB499D60}] => (Allow) LPort=3478 FirewallRules: [{3854C2D3-7D90-4FA2-AB7A-53DEB218CDE8}] => (Allow) LPort=20010 FirewallRules: [{9FE473B6-9147-4169-AF07-91488B356320}] => (Allow) LPort=443 FirewallRules: [{80C40A29-D778-4CB5-A930-A6271D68632F}] => (Allow) LPort=80 FirewallRules: [{9B850E92-8832-4083-9F59-7336238AAA8D}] => (Allow) C:\MOJE_PROGRAMY\steam\Steam.exe FirewallRules: [{F8E823B3-28C5-4AAC-9B94-5AE161A9B81D}] => (Allow) C:\MOJE_PROGRAMY\steam\Steam.exe FirewallRules: [{EDCC460A-B100-455D-A600-26EFD154A10F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{A77B22E4-F6A5-407B-AC88-DE872960C6DF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{E13AF57C-616B-42D3-9623-22DB50D7120C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [TCP Query User{B2D5921A-FA3F-4D33-B025-F87A1C43C407}D:\gry_programy\gtav\gta5.exe] => (Allow) D:\gry_programy\gtav\gta5.exe FirewallRules: [UDP Query User{EA6A7A24-FF44-41A7-88DF-83DCE9FE2194}D:\gry_programy\gtav\gta5.exe] => (Allow) D:\gry_programy\gtav\gta5.exe FirewallRules: [TCP Query User{1BB8391E-A2BF-483E-BFA5-722437874F40}C:\users\tomek\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\tomek\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{1D958C84-9F36-4002-868F-EC04C88B7069}C:\users\tomek\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\tomek\appdata\local\akamai\netsession_win.exe FirewallRules: [{E115386A-20F5-4247-8A2B-7F1A508C821F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{2CA447C3-872C-477A-BFB0-3CD4A0260256}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{437B066C-DF2D-4FB3-8442-771CF3720EA4}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{B9B7576C-08FF-4B27-BB13-62757840AE7B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{8326B296-D480-4BCD-85F4-B5944C61ABF1}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{BCEDD67E-7926-4DE9-8382-E5480317BE2E}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE FirewallRules: [{5F4AEF9F-17BB-4130-BE80-27B292933DC6}] => (Allow) C:\MOJE_PROGRAMY\TeamViewer\TeamViewer.exe FirewallRules: [{495F7EF6-DB28-4B66-823A-7BACA0484A13}] => (Allow) C:\MOJE_PROGRAMY\TeamViewer\TeamViewer.exe FirewallRules: [{D2E869F8-DB73-4616-A894-80E88B12845D}] => (Allow) C:\MOJE_PROGRAMY\TeamViewer\TeamViewer_Service.exe FirewallRules: [{F2D96937-52E8-4863-8321-67AF34C898A1}] => (Allow) C:\MOJE_PROGRAMY\TeamViewer\TeamViewer_Service.exe FirewallRules: [{9531FA0C-0C1B-4DC1-90C0-215F789BB446}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{2070CF61-2DD4-428A-B562-A3CE25D42B1C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Punkty Przywracania systemu ========================= 30-10-2017 21:46:07 Installed SyncToy 2.1 (x64) ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Standardowa klawiatura PS/2 Description: Standardowa klawiatura PS/2 Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Klawiatury standardowe) Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (10/30/2017 09:25:42 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "c:\program files (x86)\oneplus usb drivers\tool_ia64.exe". Nie można odnaleźć zestawu zależnego Microsoft.Windows.Common-Controls,language="*",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (10/30/2017 09:22:53 PM) (Source: MsiInstaller) (EventID: 11310) (User: TOMET-PC) Description: Produkt: Akamai NetSession Interface - Błąd 1310. Błąd zapisu w pliku: C:\Users\Tomek\AppData\Local\Akamai\admintool.exe. Błąd systemu 0. Sprawdź, czy masz dostęp do tego katalogu. Error: (10/30/2017 09:22:39 PM) (Source: MsiInstaller) (EventID: 11310) (User: TOMET-PC) Description: Produkt: Akamai NetSession Interface - Błąd 1310. Błąd zapisu w pliku: C:\Users\Tomek\AppData\Local\Akamai\admintool.exe. Błąd systemu 0. Sprawdź, czy masz dostęp do tego katalogu. Error: (10/28/2017 07:06:27 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "c:\program files (x86)\oneplus usb drivers\tool_ia64.exe". Nie można odnaleźć zestawu zależnego Microsoft.Windows.Common-Controls,language="*",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (10/28/2017 07:03:01 PM) (Source: MsiInstaller) (EventID: 11310) (User: TOMET-PC) Description: Produkt: Akamai NetSession Interface - Błąd 1310. Błąd zapisu w pliku: C:\Users\Tomek\AppData\Local\Akamai\admintool.exe. Błąd systemu 0. Sprawdź, czy masz dostęp do tego katalogu. Error: (10/28/2017 07:02:47 PM) (Source: MsiInstaller) (EventID: 11310) (User: TOMET-PC) Description: Produkt: Akamai NetSession Interface - Błąd 1310. Błąd zapisu w pliku: C:\Users\Tomek\AppData\Local\Akamai\admintool.exe. Błąd systemu 0. Sprawdź, czy masz dostęp do tego katalogu. Error: (10/27/2017 04:58:25 PM) (Source: MsiInstaller) (EventID: 11310) (User: TOMET-PC) Description: Produkt: Akamai NetSession Interface - Błąd 1310. Błąd zapisu w pliku: C:\Users\Tomek\AppData\Local\Akamai\admintool.exe. Błąd systemu 0. Sprawdź, czy masz dostęp do tego katalogu. Error: (10/27/2017 04:58:11 PM) (Source: MsiInstaller) (EventID: 11310) (User: TOMET-PC) Description: Produkt: Akamai NetSession Interface - Błąd 1310. Błąd zapisu w pliku: C:\Users\Tomek\AppData\Local\Akamai\admintool.exe. Błąd systemu 0. Sprawdź, czy masz dostęp do tego katalogu. Error: (10/27/2017 08:47:46 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "c:\program files (x86)\oneplus usb drivers\tool_ia64.exe". Nie można odnaleźć zestawu zależnego Microsoft.Windows.Common-Controls,language="*",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (10/27/2017 08:44:43 AM) (Source: MsiInstaller) (EventID: 11310) (User: TOMET-PC) Description: Produkt: Akamai NetSession Interface - Błąd 1310. Błąd zapisu w pliku: C:\Users\Tomek\AppData\Local\Akamai\admintool.exe. Błąd systemu 0. Sprawdź, czy masz dostęp do tego katalogu. Dziennik System: ============= Error: (10/28/2017 07:12:34 PM) (Source: volsnap) (EventID: 36) (User: ) Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit. Error: (10/27/2017 02:02:06 AM) (Source: DCOM) (EventID: 10010) (User: TOMET-PC) Description: Serwer {F9717507-6651-4EDB-BFF7-AE615179BCCF} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (10/27/2017 02:02:06 AM) (Source: DCOM) (EventID: 10010) (User: TOMET-PC) Description: Serwer {F9717507-6651-4EDB-BFF7-AE615179BCCF} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (10/27/2017 02:02:06 AM) (Source: DCOM) (EventID: 10010) (User: TOMET-PC) Description: Serwer {F9717507-6651-4EDB-BFF7-AE615179BCCF} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (10/27/2017 02:02:06 AM) (Source: DCOM) (EventID: 10010) (User: TOMET-PC) Description: Serwer {F9717507-6651-4EDB-BFF7-AE615179BCCF} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (10/27/2017 02:02:06 AM) (Source: DCOM) (EventID: 10010) (User: TOMET-PC) Description: Serwer {F9717507-6651-4EDB-BFF7-AE615179BCCF} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (10/27/2017 02:02:06 AM) (Source: DCOM) (EventID: 10010) (User: TOMET-PC) Description: Serwer {F9717507-6651-4EDB-BFF7-AE615179BCCF} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (10/27/2017 02:02:06 AM) (Source: DCOM) (EventID: 10010) (User: TOMET-PC) Description: Serwer {F9717507-6651-4EDB-BFF7-AE615179BCCF} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (10/27/2017 02:02:06 AM) (Source: DCOM) (EventID: 10010) (User: TOMET-PC) Description: Serwer {F9717507-6651-4EDB-BFF7-AE615179BCCF} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (10/27/2017 02:02:06 AM) (Source: DCOM) (EventID: 10010) (User: TOMET-PC) Description: Serwer {F9717507-6651-4EDB-BFF7-AE615179BCCF} nie zarejestrował się w modelu DCOM w wymaganym czasie. CodeIntegrity: =================================== Date: 2017-08-10 22:55:17.492 Description: Windows is unable to verify the image integrity of the file \Device\CdRom0\CDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-08-10 22:55:16.490 Description: Windows is unable to verify the image integrity of the file \Device\CdRom0\CDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-08-10 22:55:05.725 Description: Windows is unable to verify the image integrity of the file \Device\CdRom0\CDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-08-10 22:55:04.723 Description: Windows is unable to verify the image integrity of the file \Device\CdRom0\CDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-08-10 22:52:36.962 Description: Windows is unable to verify the image integrity of the file \Device\CdRom0\CDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-08-10 22:52:35.960 Description: Windows is unable to verify the image integrity of the file \Device\CdRom0\CDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-08-10 22:52:28.828 Description: Windows is unable to verify the image integrity of the file \Device\CdRom0\CDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-08-10 22:52:27.826 Description: Windows is unable to verify the image integrity of the file \Device\CdRom0\CDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-08-10 22:52:18.688 Description: Windows is unable to verify the image integrity of the file \Device\CdRom0\CDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-08-10 22:52:17.683 Description: Windows is unable to verify the image integrity of the file \Device\CdRom0\CDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-4690K CPU @ 3.50GHz Procent pamięci w użyciu: 47% Całkowita pamięć fizyczna: 8141.01 MB Dostępna pamięć fizyczna: 4280.46 MB Całkowita pamięć wirtualna: 9421.01 MB Dostępna pamięć wirtualna: 4306.74 MB ==================== Dyski ================================ Drive c: (OS) (Fixed) (Total:110.83 GB) (Free:73.22 GB) NTFS Drive d: (Data) (Fixed) (Total:931.51 GB) (Free:415.26 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 111.8 GB) (Disk ID: 3DB455FB) Partition: GPT. ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 3B5330CF) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================