Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 21.11.2018 Uruchomiony przez konra (21-11-2018 19:28:53) Uruchomiony z C:\Users\konra\Desktop Windows 10 Home Wersja 1803 17134.407 (X64) (2018-07-24 12:00:47) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-259903427-1242804089-591409174-500 - Administrator - Disabled) Gość (S-1-5-21-259903427-1242804089-591409174-501 - Limited - Disabled) konra (S-1-5-21-259903427-1242804089-591409174-1001 - Administrator - Enabled) => C:\Users\konra Konto domyślne (S-1-5-21-259903427-1242804089-591409174-503 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-259903427-1242804089-591409174-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-259903427-1242804089-591409174-1001\...\uTorrent) (Version: 3.5.4.44498 - BitTorrent Inc.) 7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov) ACA & MEP 2016 Object Enabler (HKLM\...\{5783F2D7-F004-0000-5102-0060B0CE6BBA}) (Version: 7.8.41.0 - Autodesk) Hidden ACAD Private (HKLM\...\{5783F2D7-F001-0000-3102-0060B0CE6BBA}) (Version: 20.1.49.0 - Autodesk) Hidden ACADE Private (HKLM\...\{5783F2D7-F007-0000-3102-0060B0CE6BBA}) (Version: 13.0.50.0 - Autodesk) Hidden Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 19.008.20081 - Adobe Systems Incorporated) Akamai NetSession Interface (HKU\S-1-5-21-259903427-1242804089-591409174-1001\...\Akamai) (Version: - Akamai Technologies, Inc) Aktualizacje NVIDIA 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation) ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.18 - ASUS) AutoCAD 2016 — Polski (Polish) (HKLM\...\{5783F2D7-F001-0415-2102-0060B0CE6BBA}) (Version: 20.1.49.0 - Autodesk) Hidden AutoCAD 2016 (HKLM\...\{5783F2D7-F001-0000-0102-0060B0CE6BBA}) (Version: 20.1.49.0 - Autodesk) Hidden AutoCAD 2016 Language Pack - English (HKLM\...\{5783F2D7-F001-0409-1102-0060B0CE6BBA}) (Version: 20.1.49.0 - Autodesk) Hidden AutoCAD 2016 Language Pack – Polski (Polish) (HKLM\...\{5783F2D7-F001-0415-1102-0060B0CE6BBA}) (Version: 20.1.49.0 - Autodesk) Hidden AutoCAD Electrical 2016 - English (HKLM\...\{5783F2D7-F007-0409-2102-0060B0CE6BBA}) (Version: 13.0.50.0 - Autodesk) Hidden AutoCAD Electrical 2016 (HKLM\...\{5783F2D7-F007-0000-0102-0060B0CE6BBA}) (Version: 13.0.50.0 - Autodesk) Hidden AutoCAD Electrical 2016 Content Language Pack - English (HKLM\...\{5783F2D7-F007-0409-6102-0060B0CE6BBA}) (Version: 13.0.50.0 - Autodesk) Hidden AutoCAD Electrical 2016 Content Pack (HKLM\...\{5783F2D7-F007-0000-5102-0060B0CE6BBA}) (Version: 13.0.50.0 - Autodesk) Hidden AutoCAD Electrical 2016 Language Pack - English (HKLM\...\{5783F2D7-F007-0409-1102-0060B0CE6BBA}) (Version: 13.0.50.0 - Autodesk) Hidden Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-4291-8714-7A3B761D2783}) (Version: 6.3.0.15 - Autodesk) Autodesk App Manager 2016 (HKLM-x32\...\{4ECF9E00-2978-46AF-BD80-455EFEAB7A93}) (Version: 2.0.0 - Autodesk) Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 5.0.142.14 - Autodesk) Autodesk AutoCAD 2016 — Polski (Polish) (HKLM\...\AutoCAD 2016 — Polski (Polish)) (Version: 20.1.49.0 - Autodesk) Autodesk AutoCAD Electrical 2016 - English (HKLM\...\AutoCAD Electrical 2016 - English) (Version: 13.0.50.0 - Autodesk) Autodesk AutoCAD Electrical Mobile Data (HKLM-x32\...\{C9019AAA-2C7A-4845-A168-6306A51BB606}) (Version: 1.1.0 - Autodesk) Autodesk AutoCAD Performance Feedback Tool 1.2.4 (HKLM-x32\...\{4E20873D-BC20-495C-AFD9-B18877B7F9BB}) (Version: 1.2.4.0 - Autodesk) Autodesk BIM 360 Glue AutoCAD 2016 Add-in 64 bit (HKLM\...\{4BEE127E-95C4-434D-ABAC-65155192BB24}) (Version: 4.35.1742 - Autodesk) Autodesk Content Service (HKLM\...\{A37CDB58-AAE8-0000-8C13-E0F7BACB0D5F}) (Version: 3.2.0.0 - Autodesk) Hidden Autodesk Content Service (HKLM\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk) Autodesk Content Service Language Pack (HKLM\...\{A37CDB58-AAE8-0001-8C13-E0F7BACB0D5F}) (Version: 3.2.0.0 - Autodesk) Hidden Autodesk Featured Apps 2016 (HKLM-x32\...\{D42F37CD-9AF9-4435-A474-B387C5BB6B47}) (Version: 2.0.0 - Autodesk) Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.15 - Autodesk) Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.15 - Autodesk) Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.8.2356 - AVAST Software) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.102 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden IrfanView 4.51 (64-bit) (HKLM\...\IrfanView64) (Version: 4.51 - Irfan Skiljan) Microsoft Access database engine 2010 (English) (HKLM\...\{90140000-00D1-0409-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Office 365 ProPlus - pl-pl (HKLM\...\O365ProPlusRetail - pl-pl) (Version: 16.0.9126.2315 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-259903427-1242804089-591409174-1001\...\OneDriveSetup.exe) (Version: 18.192.0920.0015 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) NVIDIA Sterownik graficzny 359.46 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 359.46 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.9126.2315 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.9126.2315 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.9126.2315 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0415-0000-0000000FF1CE}) (Version: 16.0.9126.2315 - Microsoft Corporation) Hidden Origin (HKLM-x32\...\Origin) (Version: 10.5.30.15625 - Electronic Arts, Inc.) Panel sterowania NVIDIA 359.46 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 359.46 - NVIDIA Corporation) Hidden PDF Combiner (HKLM-x32\...\{58B73FC3-D169-4DEE-A68F-86389A9EAAA3}) (Version: 1.8.0.0 - Michal Jankowski - www.jankowskimichal.pl) pdf2cad v11 (HKLM\...\pdf2cad v11) (Version: 11.0.0.0 - Visual Integrity) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7571 - Realtek Semiconductor Corp.) SAP Crystal Reports runtime engine for .NET Framework (64-bit) (HKLM\...\{F9B436DD-8D48-430E-BA89-F85DFA452C55}) (Version: 13.0.9.1312 - SAP) SketchUp Import 2016 (HKLM-x32\...\{C769FB7C-1F55-4B31-9A2A-21CEC50F4F92}) (Version: 2.0.0 - Autodesk) Spotify (HKU\S-1-5-21-259903427-1242804089-591409174-1001\...\Spotify) (Version: 1.0.93.244.g1e3a05e7 - Spotify AB) SQLite ODBC Driver for Win64 (remove only) (HKLM-x32\...\SQLite ODBC Driver for Win64) (Version: - ) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{C5FDDED7-DEC7-48B4-AFD8-DFB8A0FD199A}) (Version: 2.51.0.0 - Microsoft Corporation) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.4 - VideoLAN) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-259903427-1242804089-591409174-1001_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-259903427-1242804089-591409174-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-259903427-1242804089-591409174-1001_Classes\CLSID\{5370C727-1451-4700-A960-77630950AF6D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-259903427-1242804089-591409174-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation) CustomCLSID: HKU\S-1-5-21-259903427-1242804089-591409174-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2016\pl-PL\acadficn.dll (Autodesk, Inc.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-10-25] (AVAST Software) ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc.) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2015-02-06] (Autodesk) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-10-25] (AVAST Software) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-10-25] (AVAST Software) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-07-30] (Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-02-15] (NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-10-25] (AVAST Software) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {10ADBFD3-6D23-41E8-A607-1A8CB9CF61F8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-03] (Microsoft Corporation) Task: {1DFEB9DB-5FC1-48D5-934B-A8E61D4BE208} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-11-21] (AVAST Software) Task: {26F0580B-951B-40F3-A10B-30F47706BF54} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-07-24] (Google Inc.) Task: {281383F0-EF3D-4DC1-BCC7-E53C1D93FD2E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-07-24] (Google Inc.) Task: {4045D284-6C7C-4E95-8D31-640464B7E3B9} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-11-20] (Microsoft Corporation) Task: {438E5DC2-4F56-448E-83EB-60876F8D7D1B} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-11-10] (Realtek Semiconductor) Task: {55E58D60-EEE2-46EE-A954-B02B3E35EC7B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated) Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] () Task: {663D0BFE-1D52-4041-BB8E-C741823FAEAC} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2017-03-09] (AsusTek) Task: {6A61F639-3383-47C4-A5D4-EE79BA1277E8} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-20] (Microsoft Corporation) Task: {81CAAFE5-873C-4AFE-BB2A-2DA84DB23A45} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2018-11-08] (AVAST Software) Task: {9E2FBF1B-C76A-4F7E-BF54-C598D95AD8A4} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-03] (Microsoft Corporation) Task: {B37CAE89-44A2-4734-8AA4-89F023B4AC75} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-11-20] (Microsoft Corporation) Task: {CDFDC853-BA52-42C6-9DC7-A4A2ADEB83DD} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-11-10] (Realtek Semiconductor) Task: {CF8217E2-FC85-4698-BE88-713F90AB4BDD} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-20] (Microsoft Corporation) Task: {F12092AF-70DF-4B53-B54C-12EBC4716DCD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-11-20] (Microsoft Corporation) Task: {F7C224E3-FC39-460D-85A3-C578E9407642} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-11-10] (Realtek Semiconductor) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2018-07-24 13:08 - 2016-02-15 08:25 - 000133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll 2018-04-12 00:34 - 2018-04-12 00:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll 2018-11-15 18:52 - 2018-11-01 07:55 - 002185216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-11-06 20:44 - 2018-11-06 20:44 - 000194048 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll 2018-11-06 20:44 - 2018-11-06 20:44 - 002538056 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2018-11-06 20:44 - 2018-11-06 20:44 - 001754112 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll 2018-08-12 19:45 - 2016-02-24 05:48 - 000062024 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll 2018-08-12 19:45 - 2016-02-24 05:47 - 000110664 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll 2018-07-24 14:34 - 2018-07-24 14:34 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2018-10-25 19:04 - 2018-10-25 19:04 - 000598232 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) HKU\S-1-5-21-259903427-1242804089-591409174-1001\Software\Classes\.scr: AutoCADScriptFile => C:\WINDOWS\system32\notepad.exe "%1" ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-259903427-1242804089-591409174-1001\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-259903427-1242804089-591409174-1001\...\webcompanion.com -> hxxp://webcompanion.com ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2018-04-12 00:38 - 2018-11-15 18:39 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-259903427-1242804089-591409174-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\konra\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img_7060.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == Załączenie wejścia w fixlist spowoduje jego usunięcie. ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{EA96377C-799D-413B-9D7D-EE3D11D3C728}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{8D18A5FF-3B73-4974-AF98-EFC3F9B33CA1}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{F2CF4563-F1DA-452C-AD8B-2787761C344F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{6F5CA676-CA5E-4565-9F33-84291C7FA4B8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{766531DA-2883-46CF-ABCA-97E80551AB8B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [TCP Query User{24432949-0102-4EA6-BA05-9F8B58764FA5}C:\users\konra\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\konra\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{03E757B9-CE7B-4079-905B-4C1374F69DEB}C:\users\konra\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\konra\appdata\local\akamai\netsession_win.exe FirewallRules: [{65F5BB9D-24D4-4633-9DD4-0D57D6CA20EB}] => (Allow) LPort=53954 FirewallRules: [{0EA98444-4829-4C72-BA6C-B3D178F23F84}] => (Allow) LPort=5000 FirewallRules: [{85FA5C16-88E4-4595-961D-DB7683C77DF6}] => (Allow) C:\Users\konra\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{02025032-0586-494F-8B1C-AE8C39804899}] => (Allow) C:\Users\konra\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{371E35A7-527F-41E9-BF18-0CAC360DA173}] => (Allow) LPort=50248 FirewallRules: [TCP Query User{32F1AC01-E651-4A1B-8717-91976AE6C962}D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\cortex\win64\cx1920.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\cortex\win64\cx1920.exe FirewallRules: [UDP Query User{FF845037-C7AA-463E-BB7E-2F64F8536840}D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\cortex\win64\cx1920.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\cortex\win64\cx1920.exe FirewallRules: [TCP Query User{DCB65A8A-F96A-4745-8771-592E4BA61EF1}D:\ansys\ansys inc\ansys student\shared files\licensing\winx64\ansysli_client.exe] => (Allow) D:\ansys\ansys inc\ansys student\shared files\licensing\winx64\ansysli_client.exe FirewallRules: [UDP Query User{116FA2F4-27F2-4644-A8CD-E6B08727AEAA}D:\ansys\ansys inc\ansys student\shared files\licensing\winx64\ansysli_client.exe] => (Allow) D:\ansys\ansys inc\ansys student\shared files\licensing\winx64\ansysli_client.exe FirewallRules: [TCP Query User{486F51A4-A1D2-4292-9339-4D36D0F4D860}D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\win64\2d_host\fl1920.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\win64\2d_host\fl1920.exe FirewallRules: [UDP Query User{A942FF37-C1FD-4C2F-80F4-D4F62E56BA20}D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\win64\2d_host\fl1920.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\win64\2d_host\fl1920.exe FirewallRules: [TCP Query User{91B96E8E-C920-4561-A341-B994C6D8EC77}D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\multiport\mpi\win64\ibmmpi\bin\mpirun.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\multiport\mpi\win64\ibmmpi\bin\mpirun.exe FirewallRules: [UDP Query User{598375F2-70B9-4565-82D4-00EA401E8634}D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\multiport\mpi\win64\ibmmpi\bin\mpirun.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\multiport\mpi\win64\ibmmpi\bin\mpirun.exe FirewallRules: [TCP Query User{8803D31B-7F91-42FE-AA85-8A20FD356437}D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\multiport\mpi\win64\ibmmpi\bin\mpid.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\multiport\mpi\win64\ibmmpi\bin\mpid.exe FirewallRules: [UDP Query User{70DF3E2E-70C1-4F9E-9778-613BB1D2AAA0}D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\multiport\mpi\win64\ibmmpi\bin\mpid.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\multiport\mpi\win64\ibmmpi\bin\mpid.exe FirewallRules: [TCP Query User{38499B4F-EF73-4EF8-A5A4-5A44C01B3544}D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\win64\2d_node\fl_mpi1920.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\win64\2d_node\fl_mpi1920.exe FirewallRules: [UDP Query User{1A533E0E-7763-4563-ABE4-107FEEB74209}D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\win64\2d_node\fl_mpi1920.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\win64\2d_node\fl_mpi1920.exe FirewallRules: [TCP Query User{9D1AE774-C7DF-459A-81F2-E61479BCAE71}D:\ansys\ansys inc\ansys student\v192\framework\bin\win64\ansysfww.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\framework\bin\win64\ansysfww.exe FirewallRules: [UDP Query User{397D88BA-17F1-413E-AAA2-9E4D18413F67}D:\ansys\ansys inc\ansys student\v192\framework\bin\win64\ansysfww.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\framework\bin\win64\ansysfww.exe FirewallRules: [TCP Query User{045ED9E4-47A5-4210-B99A-68882BDAB2FC}D:\ansys\ansys inc\ansys student\v192\scdm\spaceclaim.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\scdm\spaceclaim.exe FirewallRules: [UDP Query User{B450C4A9-EC8E-4605-8D52-02BF3A3F3B26}D:\ansys\ansys inc\ansys student\v192\scdm\spaceclaim.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\scdm\spaceclaim.exe FirewallRules: [TCP Query User{507CB566-1825-48A6-B46E-3816807F4F99}D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\win64\2ddp_host\fl1920.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\win64\2ddp_host\fl1920.exe FirewallRules: [UDP Query User{32B8169B-A0B3-4A26-A101-D7118F0DD555}D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\win64\2ddp_host\fl1920.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\win64\2ddp_host\fl1920.exe FirewallRules: [TCP Query User{A0E904CE-368D-47C2-A6A7-EC1890B6B8CC}D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\win64\2ddp_node\fl_mpi1920.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\win64\2ddp_node\fl_mpi1920.exe FirewallRules: [UDP Query User{018E69A5-F8EB-4099-B15B-77E9686C1DB2}D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\win64\2ddp_node\fl_mpi1920.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\fluent\fluent19.2.0\win64\2ddp_node\fl_mpi1920.exe FirewallRules: [TCP Query User{985667C4-8A15-4972-B09E-6F748772B8B6}D:\ansys\ansys inc\ansys student\v192\commonfiles\help\helpviewer\ansyshelpviewer.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\commonfiles\help\helpviewer\ansyshelpviewer.exe FirewallRules: [UDP Query User{C1197625-774F-4365-8FB6-816C7FA16662}D:\ansys\ansys inc\ansys student\v192\commonfiles\help\helpviewer\ansyshelpviewer.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\commonfiles\help\helpviewer\ansyshelpviewer.exe FirewallRules: [{62A9DCE3-9C8B-4EDC-99CA-DD0DD2109E4B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [TCP Query User{8A5425E6-9820-447C-9AC7-8ECBF3D5F178}C:\users\konra\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\konra\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{871565D0-C02F-4E4E-9EAE-ED10296DECE7}C:\users\konra\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\konra\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{A800E89B-850E-4A73-B832-89AB6C2F8093}D:\ansys\ansys inc\ansys student\v192\aisol\bin\winx64\ansyswbu.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\aisol\bin\winx64\ansyswbu.exe FirewallRules: [UDP Query User{9A8F7E13-D42B-4DA5-AF84-388240423EEE}D:\ansys\ansys inc\ansys student\v192\aisol\bin\winx64\ansyswbu.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\aisol\bin\winx64\ansyswbu.exe FirewallRules: [TCP Query User{06EF8529-3C9B-4342-81B5-A99F96A50D63}D:\ansys\ansys inc\ansys student\v192\addins\act\bin\win64\ansys.act.browser.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\addins\act\bin\win64\ansys.act.browser.exe FirewallRules: [UDP Query User{80059CDC-6FCD-484F-9E9B-9FC55B027AFE}D:\ansys\ansys inc\ansys student\v192\addins\act\bin\win64\ansys.act.browser.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\addins\act\bin\win64\ansys.act.browser.exe FirewallRules: [TCP Query User{02BD9E29-F154-49FB-BE95-4325E157C199}D:\ansys\ansys inc\ansys student\v192\cfx\bin\winnt-amd64\postgui_ogl.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\cfx\bin\winnt-amd64\postgui_ogl.exe FirewallRules: [UDP Query User{CD6BAE27-3D18-4ADB-B858-CA98BA11C799}D:\ansys\ansys inc\ansys student\v192\cfx\bin\winnt-amd64\postgui_ogl.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\cfx\bin\winnt-amd64\postgui_ogl.exe FirewallRules: [TCP Query User{7EAB6825-80D4-40E7-9C28-02081CF931F9}D:\ansys\ansys inc\ansys student\v192\cfx\bin\winnt-amd64\postengine.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\cfx\bin\winnt-amd64\postengine.exe FirewallRules: [UDP Query User{26FA0F66-FA32-4587-BD19-3E299727E3DB}D:\ansys\ansys inc\ansys student\v192\cfx\bin\winnt-amd64\postengine.exe] => (Allow) D:\ansys\ansys inc\ansys student\v192\cfx\bin\winnt-amd64\postengine.exe FirewallRules: [{CF0F6F44-DEAA-4BBF-9A6B-52F91DB9FE7E}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [{2F0BEA85-C038-46A9-B700-5CFA08155D1F}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe ==================== Punkty Przywracania systemu ========================= UWAGA: Przywracanie systemu jest wyłączone ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (11/19/2018 08:24:06 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (11/19/2018 06:27:39 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program cx1920.exe w wersji 0.0.0.0 przestał współpracować z systemem Windows i został zamknięty. Aby sprawdzić, czy jest dostępnych więcej informacji na temat tego problemu, sprawdź historię problemu w oknie Zabezpieczenia i konserwacja w Panelu sterowania. Identyfikator procesu: 29ec Godzina rozpoczęcia: 01d4802c9556b582 Godzina zakończenia: 20 Ścieżka aplikacji: D:\Ansys\ANSYS Inc\ANSYS Student\v192\fluent\fluent19.2.0\cortex\win64\cx1920.exe Identyfikator raportu: 512e1129-68e4-40b8-a5a9-aaf25b799f27 Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (11/19/2018 08:44:56 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (11/17/2018 08:45:22 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (11/16/2018 11:06:17 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: svchost.exe_WpnUserService, wersja: 10.0.17134.1, sygnatura czasowa: 0xa38b9ab2 Nazwa modułu powodującego błąd: NotificationController.dll, wersja: 10.0.17134.165, sygnatura czasowa: 0xe0385185 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000000000007c686 Identyfikator procesu powodującego błąd: 0x1a78 Godzina uruchomienia aplikacji powodującej błąd: 0x01d47d156cea1ed3 Ścieżka aplikacji powodującej błąd: C:\WINDOWS\system32\svchost.exe Ścieżka modułu powodującego błąd: C:\Windows\System32\NotificationController.dll Identyfikator raportu: 126c7eed-d1bd-4cb4-b95b-50200affb52e Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (11/16/2018 08:36:14 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (11/15/2018 06:41:36 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (11/14/2018 01:36:40 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Dziennik System: ============= Error: (11/21/2018 07:20:50 PM) (Source: Disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk0\DR0 wystąpił zły blok. Error: (11/21/2018 07:20:49 PM) (Source: Disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk0\DR0 wystąpił zły blok. Error: (11/21/2018 07:20:49 PM) (Source: Disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk0\DR0 wystąpił zły blok. Error: (11/21/2018 07:20:49 PM) (Source: Disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk0\DR0 wystąpił zły blok. Error: (11/21/2018 07:20:48 PM) (Source: Disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk0\DR0 wystąpił zły blok. Error: (11/21/2018 07:20:47 PM) (Source: Disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk0\DR0 wystąpił zły blok. Error: (11/21/2018 07:20:46 PM) (Source: Disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk0\DR0 wystąpił zły blok. Error: (11/21/2018 07:20:45 PM) (Source: Disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk0\DR0 wystąpił zły blok. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz Procent pamięci w użyciu: 52% Całkowita pamięć fizyczna: 3981.63 MB Dostępna pamięć fizyczna: 1882.43 MB Całkowita pamięć wirtualna: 5261.63 MB Dostępna pamięć wirtualna: 3499.11 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:110.34 GB) (Free:66.12 GB) NTFS Drive d: (Dysk) (Fixed) (Total:443.21 GB) (Free:416.58 GB) NTFS Drive e: (Dysk) (Fixed) (Total:488.28 GB) (Free:487.37 GB) NTFS \\?\Volume{4d174fea-acfe-495c-b628-aac541497ad3}\ (Odzyskiwanie) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS \\?\Volume{8ee21f20-efe0-4c9c-8b51-39f754ffbe31}\ () (Fixed) (Total:0.89 GB) (Free:0.38 GB) NTFS \\?\Volume{64a10546-6075-4884-a138-e503fe59706e}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Protective MBR) (Size: 111.8 GB) (Disk ID: 00000000) Partition: GPT. ======================================================== Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ==================== Koniec Addition.txt ============================