Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 21.01.2018 Uruchomiony przez user (25-01-2018 09:27:37) Uruchomiony z C:\Users\user\Downloads Windows 7 Professional Service Pack 1 (X64) (2014-07-16 12:58:15) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2052047121-4088128527-1503522172-500 - Administrator - Disabled) Gość (S-1-5-21-2052047121-4088128527-1503522172-501 - Limited - Disabled) user (S-1-5-21-2052047121-4088128527-1503522172-1000 - Administrator - Enabled) => C:\Users\user ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: G Data AntiVirus (Enabled - Up to date) {545C8713-0744-B079-87F8-349A6D5C8CF0} AS: G Data AntiVirus (Enabled - Up to date) {EF3D66F7-217E-BFF7-BD48-0FE816DBC64D} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 18.009.20050 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.178 - Adobe Systems Incorporated) Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.137 - Adobe Systems Incorporated) Aliens vs Predator (HKLM-x32\...\Aliens vs Predator_is1) (Version: - ) ALLPlayer V7.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLPlayer Group, Ltd.) Battlefield Bad Company 2 version 1.0.0 (HKLM-x32\...\Battlefield Bad Company 2_is1) (Version: 1.0.0 - GTX Box Team) Beniamin Net 5.0 (HKLM-x32\...\BeniaminNetApp2_is1) (Version: 05.00.56 - beniamin.pl) Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.) Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.) Create Recovery Media (HKLM-x32\...\{50DC5136-21E8-48BC-97E5-1AD055F6B0B6}) (Version: 1.20.0.00 - Lenovo Group Limited) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd) DisplayLink Core Software (HKLM\...\{58F4C39B-D946-4A45-A314-DEFC2AFDF397}) (Version: 7.5.54609.0 - DisplayLink Corp.) D-Link DWM-157 v1.0.7CPG (HKLM-x32\...\Broad Mobi HSPA Modem Normal Version_is1) (Version: - ) Fallout New Vegas Ultimate Edition version 1.4.0.525 (HKLM-x32\...\Fallout New Vegas Ultimate Edition_is1) (Version: 1.4.0.525 - Mr DJ) G Data AntiVirus (HKLM-x32\...\{B9FC0A7D-FA1D-4347-ABED-AD8AD5305633}) (Version: 25.0.1.4 - G Data Software AG) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 63.0.3239.132 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.1.6.2 - Hi-Rez Studios) Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1168 - Intel Corporation) Intel(R) Network Connections 18.1.59.0 (HKLM\...\PROSetDX) (Version: 18.1.59.0 - Intel) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4264 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.0.1098 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation) Java 8 Update 77 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218077F0}) (Version: 8.0.770.3 - Oracle Corporation) Lenovo AutoLock (HKLM\...\{E224B44B-B5EB-4af3-A80A-A255358E241A}_is1) (Version: 1.62.0.3 - Lenovo) Lenovo Bluetooth Lock (HKLM\...\Lenovo Bluetooth Lock_is1) (Version: 1.0.0430 - Lenovo) Lenovo Patch Utility 64 bit (HKLM\...\{ABE4638D-D208-4061-9F26-E3E11E3A1E0C}) (Version: 1.3.1.1 - Lenovo Group Limited) Lenovo Registration (HKLM-x32\...\{6707C034-ED6B-4B6A-B21F-969B3606FBDE}) (Version: 1.0.3 - Lenovo Inc.) Lenovo SHAREit (HKLM-x32\...\Lenovo SHAREit_is1) (Version: 1.0.10.0 - Lenovo Group Limited) Lenovo Solution Center (HKLM\...\{2F45A217-E9C7-4984-B0AC-5BE31FF4712B}) (Version: 2.4.003.00 - Lenovo Group Limited) Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.07.0022 - Lenovo) Lenovo USB Graphics (HKLM\...\{E6B1FE9A-CB1E-4096-A0AF-163419CB971C}) (Version: 7.5.54614.0 - Lenovo) Lenovo USB3.0 to DVI VGA Monitor Adapter (HKLM-x32\...\{454D32AD-C149-49BE-9F2E-8C089C3D6620}) (Version: 1.07.17 - Lenovo) Lenovo User Guide (HKLM-x32\...\{13F59938-C595-479C-B479-F171AB9AF64F}) (Version: 1.0.0008.00 - Lenovo) Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0005.00 - Lenovo Group Limited) Hidden Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation) Microsoft .NET Framework 4.7 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.7.02053 - Microsoft Corporation) Microsoft Office Standard 2013 (HKLM-x32\...\Office15.STANDARD) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 30.0 (x86 pl) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 pl)) (Version: 30.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla) Napisy24 (HKLM-x32\...\{D1985DBC-F09E-4317-91B8-932AD0FD4A27}_is1) (Version: 1.9.1 - Napisy24.pl) Narzędzia sprawdzające pakietu Microsoft Office 2013 — polski (HKLM-x32\...\{90150000-001F-0415-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Oprogramowanie mikroukładu Intel® (HKLM-x32\...\{e48a2f61-851a-4155-82f9-af1b04db8c3b}) (Version: 10.0.13 - Intel(R) Corporation) Hidden Pakiet sterowników systemu Windows - Intel (e1dexpress) Net (02/26/2013 12.6.47.0) (HKLM\...\F33A1BB12CD7108455BD796E038CD7B0B4732FBB) (Version: 02/26/2013 12.6.47.0 - Intel) Pakiet sterowników systemu Windows - Realtek (RSUSBVSTOR) USB (01/15/2013 6.2.9200.39041) (HKLM\...\1BF6C34D06CECEAB1E8454702C314EB0945E6DD6) (Version: 01/15/2013 6.2.9200.39041 - Realtek) Pakiet sterowników systemu Windows - Realtek Semiconductor Corp. (RTWlanE) Net (04/11/2014 2012.13.0402.2014) (HKLM\...\9FFE19AF2293D8E97AF008126C981E7959EC9FA5) (Version: 04/11/2014 2012.13.0402.2014 - Realtek Semiconductor Corp.) PCM3.0Agent (HKLM-x32\...\{0B0551FD-A800-4FF5-8809-DFF53DC50815}) (Version: 3.0.2014.0314 - Lenovo) Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) Power Manager (HKLM-x32\...\{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}_is1) (Version: 3.20.0008 - Lenovo Group Limited) PowerDVD Create (HKLM-x32\...\InstallShield_{DE485075-8CD3-4A1E-9ABC-6412EBA44872}) (Version: 10.0 - CyberLink Corp.) PowerDVD Create 10 (HKLM-x32\...\{D6E853EC-8960-4D44-AF03-7361BB93227C}) (Version: 10.0.1.2704 - CyberLink Corp.) Hidden Pro Evolution Soccer 2017 (HKLM-x32\...\{A3C10274-808C-4ADC-A13D-D94911180B58}_is1) (Version: - KONAMI) REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 3.810.810.031214 - REALTEK Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7111 - Realtek Semiconductor Corp.) Realtek USB Card Reader (HKLM-x32\...\{1E496A68-4943-424E-829D-5C3C85B7B8F2}) (Version: 6.2.9200.39041 - Realtek Semiconductor Corp.) REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.243 - REALTEK Semiconductor Corp.) Rescue and Recovery (HKLM-x32\...\{BDB3E73F-5ECA-441D-96E1-F1CFCF3D427D}) (Version: 4.51.0045.00 - Lenovo Group Limited) Smart Organizing Monitor (HKLM-x32\...\{77534F47-08D5-4A50-8249-403C9ECE9840}) (Version: 1.00.0000 - RICOH) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) ThinkVantage Communications Utility (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 3.0.42.0 - Lenovo) USB Enhanced Performance Keyboard (HKLM\...\{989DC5D9-A776-430D-9E16-D36E5B81CD86}) (Version: 2.0.1.9 - Lenovo) VC_CRT_x64 (HKLM\...\{54F2237F-018C-483B-8884-9FC0D88840C3}) (Version: 1.02.0000 - Intel Corporation) Hidden View Management Utility (HKLM\...\View Management Utility_is1) (Version: 3.0.1.20120921 - Lenovo Inc.) WaveEditor (HKLM-x32\...\{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 1.0.1.4514 - CyberLink Corp.) Hidden Wiedźmin 2 Edycja Rozszerzona (HKLM-x32\...\{D7556F86-8878-4AAD-8755-6146D4500EB0}_is1) (Version: 3.4 - CD Projekt RED) WinRAR 5.40 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-2052047121-4088128527-1503522172-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation) ContextMenuHandlers1: [AVK9CM] -> {CAF4C320-32F5-11D3-A222-004095200FF2} => C:\Program Files (x86)\G Data\AntiVirus\AVK\ShellExt64.dll [2013-12-19] (G Data Software AG) ContextMenuHandlers1: [BtSendToMenuEx] -> {CF24E6B8-F148-4BCB-9108-ADF313966E80} => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\DevMenuExt.dll [2014-01-06] (Realtek Semiconductor Corporation) ContextMenuHandlers1: [SHAREit.FileContextMenuExt] -> {430BD134-576D-4E75-87CD-0F5C6221A82B} => C:\Program Files (x86)\lenovo\SHAREit\ShellEx\ShellExt64.dll [2014-04-20] (Lenovo) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers4: [SHAREit.FileContextMenuExt] -> {430BD134-576D-4E75-87CD-0F5C6221A82B} => C:\Program Files (x86)\lenovo\SHAREit\ShellEx\ShellExt64.dll [2014-04-20] (Lenovo) ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-08-09] (Intel Corporation) ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\Windows\system32\igfxOSP.dll [2015-08-09] (Intel Corporation) ContextMenuHandlers6: [AVK9CM] -> {CAF4C320-32F5-11D3-A222-004095200FF2} => C:\Program Files (x86)\G Data\AntiVirus\AVK\ShellExt64.dll [2013-12-19] (G Data Software AG) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-09-19] (Alexander Roshal) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0BA3D8B9-DA56-4E50-9AE8-5083D1ACCD5D} - System32\Tasks\RtHDVBg_LENOVO_MICPKEY => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-11-13] (Realtek Semiconductor) Task: {0F520A3E-E831-4DB4-A9A0-90F92944C89A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-08] (Google Inc.) Task: {11C10409-6C7B-4CC2-AD2F-8A5BA69574FE} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-05-06] () Task: {176716A2-8800-4E80-954C-EB6791175FAE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-08] (Google Inc.) Task: {179F5E83-A2EF-47D8-9AEF-F0E5EB3D0DC9} - System32\Tasks\TVT\LaunchRnR => C:\Program Files (x86)\Lenovo\Rescue and Recovery\rrcmd.exe [2013-03-11] (Lenovo Limited Group Corporation) Task: {222C2B05-ACF5-4367-8FF7-BCF72F797595} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-01-09] (Adobe Systems Incorporated) Task: {29D95624-9831-4F3D-8E17-8E84C5E40686} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-05-06] () Task: {3419E596-0BDE-494A-B36E-B17D4AE81D70} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-21] (Microsoft Corporation) Task: {3F2F20B6-C883-4B17-97E2-1DDC77816CE0} - System32\Tasks\CLMLSvc => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2013-03-06] (CyberLink) Task: {44C96621-2B2F-464E-9D71-CCF57BF3EC6C} - System32\Tasks\{8A48F189-0CC5-43B8-81FA-B14C3CC76C19} => C:\Windows\system32\pcalua.exe -a C:\Users\user\Downloads\jxpiinstall.exe -d C:\Users\user\Downloads Task: {4AF09804-3A51-4BC0-BA46-B7D6B0E5F8C2} - System32\Tasks\TVT\UpdateRnR => C:\Program Files (x86)\Common Files\lenovo\Scheduler\tvtsetsched.exe [2013-03-11] () Task: {59B4C683-FDB1-497E-BABE-23959317647F} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)" Task: {5B16B9C5-5AE1-4A63-962C-2ECE1CB69352} - System32\Tasks\{C773FE0C-FC55-4055-8F70-9A071EB320FC} => C:\Users\user\Desktop\To Patryka proszę nie otwierać ;)\PokeMine.pl - 3,5GB.exe Task: {61680F39-1A87-4A32-8FE6-DE449260E38F} - System32\Tasks\PMTask => C:\Program Files (x86)\Lenovo\PowerMgr\PwmIdTsv.exe [2014-03-05] (Lenovo Group Limited) Task: {6991C388-B95A-4B5A-AB1D-9E7839D970FA} - System32\Tasks\TVT\ChangePWD => C:\Program Files (x86)\Lenovo\Rescue and Recovery\rrcmd.exe [2013-03-11] (Lenovo Limited Group Corporation) Task: {75B3A0A2-99E3-4BB2-BDA5-A6D179DAF34C} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-01] (Lenovo) Task: {7CD50052-5573-41FC-95F5-FE5B2D91AC30} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe Task: {B4256719-ACDD-4B18-8C7E-132936747900} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-05-06] (Lenovo) Task: {C2D6BDDC-0D48-4F2A-8580-016968A84A3F} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2014-05-06] (Lenovo) Task: {C9EF8C8A-0365-4548-8665-ECD6DBD4A72F} - System32\Tasks\{5D7F3BEB-CE04-4BAD-8F87-4803FD165084} => C:\Windows\system32\pcalua.exe -a C:\Users\user\Downloads\jxpiinstall(1).exe -d C:\Users\user\Downloads Task: {DB2C84C8-BDB5-4CF8-B7DE-3B67C7D814F8} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-10-24] (Realtek Semiconductor) Task: {E0377DC3-1B52-4E36-B196-8B19144BBA91} - System32\Tasks\Lenovo\LSC\LSCTaskService => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCTaskService.exe [2014-05-06] () Task: {E431FD6B-3EA6-499E-9185-B2E2CBF5BC95} - System32\Tasks\{6E23E21E-4F9C-4A90-98AD-E9FA108792A7} => C:\Windows\system32\pcalua.exe -a C:\Users\user\Downloads\jxpiinstall(2).exe -d C:\Users\user\Downloads Task: {EAF57E07-BC45-43F2-9D52-5803656860BF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-21] (Microsoft Corporation) Task: {F9D96A02-2D97-4A5B-BD72-07B7B1B19E4B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\sysadi43@gmail.com - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1" ==================== Załadowane moduły (filtrowane) ============== 2016-02-16 08:06 - 2016-02-16 08:06 - 002766784 _____ () C:\Windows\SysWOW64\bnmtfilter.exe 2014-06-20 17:48 - 2014-03-12 13:30 - 000092160 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe 2014-06-20 17:55 - 2014-03-03 15:34 - 000571712 _____ () C:\Program Files (x86)\Lenovo\PCM3.0Agent\SCCM_Agent.exe 2014-06-20 17:55 - 2014-03-05 07:55 - 000035688 _____ () C:\Program Files (x86)\Lenovo\PowerMgr\US\PWMRT64V.DLL 2014-06-20 17:48 - 2014-02-10 08:43 - 000269824 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\SkypePlugin.exe 2018-01-09 09:32 - 2018-01-03 10:20 - 004063064 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.132\libglesv2.dll 2018-01-09 09:32 - 2018-01-03 10:20 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.132\libegl.dll 2014-05-20 02:38 - 2014-05-20 02:38 - 000340088 ____N () C:\Program Files (x86)\Common Files\G Data\AVKProxy\PktIcpt2x64.dll 2014-06-20 17:56 - 2013-06-26 16:29 - 002207592 _____ () C:\Program Files\Lenovo\AutoLock\cxcore210.dll 2014-06-20 17:56 - 2013-06-26 16:29 - 002092392 _____ () C:\Program Files\Lenovo\AutoLock\cv210.dll 2017-08-08 12:46 - 2017-11-29 06:09 - 000781088 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2017-08-08 12:46 - 2016-09-01 02:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll 2017-08-08 12:46 - 2016-09-01 02:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2017-08-08 12:46 - 2016-09-01 02:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2017-08-08 12:46 - 2017-12-15 20:59 - 002558752 _____ () C:\Program Files (x86)\Steam\video.dll 2017-12-15 13:00 - 2017-11-04 02:54 - 005137696 _____ () C:\Program Files (x86)\Steam\libavcodec-57.dll 2017-12-15 13:00 - 2017-11-04 02:54 - 000847136 _____ () C:\Program Files (x86)\Steam\libavutil-55.dll 2017-12-15 13:00 - 2017-11-04 02:54 - 000695584 _____ () C:\Program Files (x86)\Steam\libavformat-57.dll 2017-12-15 13:00 - 2017-11-04 02:54 - 000351520 _____ () C:\Program Files (x86)\Steam\libavresample-3.dll 2017-12-15 13:00 - 2017-11-04 02:54 - 000783648 _____ () C:\Program Files (x86)\Steam\libswscale-4.dll 2017-08-08 12:46 - 2017-12-15 20:59 - 000904992 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2014-06-20 17:56 - 2011-08-02 19:58 - 002201088 _____ () C:\Program Files\Lenovo\Communications Utility\cxcore210.dll 2014-06-20 17:56 - 2011-08-02 19:58 - 002085888 _____ () C:\Program Files\Lenovo\Communications Utility\cv210.dll 2013-03-06 20:49 - 2013-03-06 20:49 - 000626240 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll 2013-03-06 20:52 - 2013-03-06 20:52 - 000015424 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll 2017-08-08 12:48 - 2017-09-07 03:04 - 000678400 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll 2017-08-08 12:48 - 2017-10-31 05:44 - 071471904 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll 2017-08-08 12:46 - 2015-09-25 00:52 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll 2014-02-19 17:51 - 2014-02-19 17:51 - 001241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2052047121-4088128527-1503522172-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\user\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\startupreg: ALLUpdate => "C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe" "sleep" MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun MSCONFIG\startupreg: HEXelon MAX => "C:\Users\user\Desktop\HEXelonMAX6\hexelon.exe" /auto MSCONFIG\startupreg: Napisy24Update => "C:\Program Files (x86)\Napisy24\Napisy24Update.exe" "sleep" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{72C6FF34-9076-4737-B53D-4D518DADF68F}] => (Allow) C:\Program Files (x86)\lenovo\SHAREit\SHAREit.exe FirewallRules: [{2B61D725-ECBB-4744-A922-E94FFC41291B}] => (Allow) C:\Program Files (x86)\lenovo\SHAREit\SHAREit.exe FirewallRules: [{29CFF1C8-318A-4572-939A-B310658AF1F8}] => (Allow) LPort=9191 FirewallRules: [{8217FDEC-D87A-4502-8C73-32D101F37457}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe FirewallRules: [{CFF79780-A97B-45D4-89BA-EA07789AB58F}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe FirewallRules: [{E5639675-241B-412F-B515-E87B359D6206}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{581382B6-0891-40F0-8E59-F1170AFFCF2D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{1ED2317C-97CF-4BE8-85DC-0B968BE59BDA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{2BDB8157-9B7F-498A-A342-741511293301}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{88E492DB-A4D9-4561-ACAB-955A92A238BC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe FirewallRules: [{B21693D7-73F2-432C-80C8-FA9D59415672}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe FirewallRules: [TCP Query User{E4CEBDC7-9C65-4A99-9F1A-94FF436A609C}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe FirewallRules: [UDP Query User{E11F8E3D-12B1-4C82-A864-34F95096CE22}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe FirewallRules: [{7A34E070-C1DD-485B-825F-BC926934817B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{31FBEB88-F43B-409A-8891-4888B13A1665}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{5CF0CE89-4819-4989-8EE0-D495F93AA1F1}] => (Allow) C:\Program Files (x86)\CDP Games\The Witcher 2 Enhanced Edition\Launcher.exe FirewallRules: [{C1B39063-D3EF-45DE-84C9-6F505BD263B3}] => (Allow) C:\Program Files (x86)\CDP Games\The Witcher 2 Enhanced Edition\bin\witcher2.exe FirewallRules: [TCP Query User{5BC9057A-37A8-48E6-BB06-B91E10246E2C}C:\users\user\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\user\appdata\roaming\utorrent\utorrent.exe FirewallRules: [UDP Query User{46D22F06-386B-44BB-839B-218C99E6CA60}C:\users\user\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\user\appdata\roaming\utorrent\utorrent.exe FirewallRules: [TCP Query User{A892F6E2-4448-4331-931D-EB689D790C91}C:\program files (x86)\steam\steamapps\common\newz\thenewz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\newz\thenewz.exe FirewallRules: [UDP Query User{D5EF4BA9-488C-435B-9FA3-EAFBC6AD7519}C:\program files (x86)\steam\steamapps\common\newz\thenewz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\newz\thenewz.exe FirewallRules: [TCP Query User{67B96E01-2F77-4C65-8EC4-85ED834FD28D}C:\program files (x86)\steam\steamapps\common\warface\mycomgames\mycomgames.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\mycomgames\mycomgames.exe FirewallRules: [UDP Query User{2957AE9C-22DB-4A3B-9323-29BE1A9EB511}C:\program files (x86)\steam\steamapps\common\warface\mycomgames\mycomgames.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\mycomgames\mycomgames.exe FirewallRules: [{DFE7334A-8347-42F2-88D3-D7D6C39BA2FC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Metin2\steam_launcher.exe FirewallRules: [{2BA714E2-8435-4443-B6D4-C224DB4B655D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Metin2\steam_launcher.exe FirewallRules: [{037F5A15-F218-4646-80C3-0AD9FFCB11F0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Metin2\config.exe FirewallRules: [{B2679E47-3A34-46D1-985F-704C93997C1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Metin2\config.exe FirewallRules: [TCP Query User{2BD59346-336B-4116-B82E-4F52D822231D}C:\users\user\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\user\appdata\roaming\utorrent\utorrent.exe FirewallRules: [UDP Query User{C539AF41-CB38-4BC3-B465-9A246C4AD0F5}C:\users\user\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\user\appdata\roaming\utorrent\utorrent.exe FirewallRules: [{B64A5873-7FAC-47CD-846A-A29C407AECDA}] => (Allow) C:\Program Files (x86)\Mr DJ\Fallout New Vegas Ultimate Edition\FalloutNVLauncher.exe FirewallRules: [{F0EA831E-9E99-47BF-B0A6-0BD7A2E2537B}] => (Allow) C:\Program Files (x86)\Mr DJ\Fallout New Vegas Ultimate Edition\FalloutNVLauncher.exe FirewallRules: [TCP Query User{7849CD5A-C6AD-4F2F-9A3D-C343ABE2001D}C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe FirewallRules: [UDP Query User{51E803FF-83E2-43D2-A944-F3C7111FF78A}C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe FirewallRules: [{D8FA7019-AE50-46EE-B3AE-27442A8D6E26}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Battlerite\Battlerite.exe FirewallRules: [{0C05D826-A56A-496E-B868-31994A0FDBA9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Battlerite\Battlerite.exe FirewallRules: [{8FAE25FB-A64D-4B3B-AF31-BEA005CDDD29}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{11FD0924-B8F4-4C4E-AAC5-CB241B0EC3A4}] => (Allow) C:\Windows\SysWOW64\lxbkcoms.exe FirewallRules: [{58E5278A-4765-4422-B5C3-878BAB0E29D6}] => (Allow) C:\Windows\SysWOW64\lxbkcoms.exe ==================== Punkty Przywracania systemu ========================= 13-01-2018 02:11:53 Windows Update 21-01-2018 01:33:39 Zaplanowany punkt kontrolny 25-01-2018 09:16:05 Restore Point Created by FRST ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (01/25/2018 09:22:32 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Dziennik System: ============= ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i3-4130 CPU @ 3.40GHz Procent pamięci w użyciu: 64% Całkowita pamięć fizyczna: 4010.29 MB Dostępna pamięć fizyczna: 1443.04 MB Całkowita pamięć wirtualna: 8018.76 MB Dostępna pamięć wirtualna: 5236.72 MB ==================== Dyski ================================ Drive c: (Windows7_OS) (Fixed) (Total:451.41 GB) (Free:201.05 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive q: (Lenovo_Recovery) (Fixed) (Total:12.88 GB) (Free:12.81 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: EE63BE32) Partition 1: (Active) - (Size=1.5 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=451.4 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=12.9 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================