Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 01.01.2019 Uruchomiony przez m.szafarz (05-01-2019 23:12:02) Uruchomiony z C:\Install\Virusy-Ratunek\FRST Windows 7 Professional Service Pack 1 (X64) (2018-02-03 06:49:50) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-701309301-3949570393-247020288-500 - Administrator - Disabled) Gość (S-1-5-21-701309301-3949570393-247020288-501 - Limited - Disabled) m.szafarz (S-1-5-21-701309301-3949570393-247020288-1001 - Administrator - Enabled) => C:\Users\m.szafarz uGosia (S-1-5-21-701309301-3949570393-247020288-1002 - Limited - Enabled) => C:\Users\uGosia uMirek (S-1-5-21-701309301-3949570393-247020288-1003 - Limited - Enabled) => C:\Users\uMirek UpdatusUser (S-1-5-21-701309301-3949570393-247020288-1000 - Limited - Enabled) => C:\Users\UpdatusUser ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Kaspersky Anti-Virus (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8} AS: Kaspersky Anti-Virus (Enabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 19.010.20069 - Adobe Systems Incorporated) Adobe Flash Player 10 ActiveX (HKLM-x32\...\{B7B3E9B3-FB14-4927-894B-E9124509AF5A}) (Version: 10.0.32.18 - Adobe Systems, Inc.) Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 376.91 - NVIDIA Corporation) Hidden Bizagi Modeler (HKLM-x32\...\{135a8251-132e-4bbe-ab14-c284f1e790e5}) (Version: 3.1.0011 - Bizagi Limited) Hidden Bizagi Modeler (HKLM-x32\...\InstallShield_{135a8251-132e-4bbe-ab14-c284f1e790e5}) (Version: 3.1.0011 - Bizagi Limited) Broadcom InConcert Maestro (HKLM\...\{57DD35E9-D9BB-4089-BB05-EF933C586CB3}) (Version: 1.0.1.1500 - Broadcom Corporation) Burn.Now 4.5 (HKLM-x32\...\{A3BE3F1E-2472-4211-8735-E8239BE49D9F}) (Version: 4.5.0 - Corel Corporation) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform) Complete Internet Repair 5.1.0.3955 (HKLM\...\Complete Internet Repair_is1) (Version: 5.1.0.3955 - Rizonesoft) Conexant 20672 SmartAudio HD (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.32.23.5 - Conexant) Corel Burn.Now Lenovo Edition (HKLM-x32\...\InstallShield_{A3BE3F1E-2472-4211-8735-E8239BE49D9F}) (Version: 4.5.0 - Corel Corporation) Corel DVD MovieFactory 7 (HKLM-x32\...\{50F68032-B5B7-4513-9116-C978DBD8F27A}) (Version: 7.0.0 - Corel Corporation) Hidden Corel DVD MovieFactory Lenovo Edition (HKLM-x32\...\InstallShield_{50F68032-B5B7-4513-9116-C978DBD8F27A}) (Version: 7.0.0 - Corel Corporation) Corel WinDVD (HKLM-x32\...\{5C1F18D2-F6B7-4242-B803-B5A78648185D}) (Version: 10.0.5.828 - Corel Inc.) Create Recovery Media (HKLM-x32\...\{50DC5136-21E8-48BC-97E5-1AD055F6B0B6}) (Version: 1.20.0.00 - Lenovo Group Limited) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Direct DiscRecorder (HKLM-x32\...\{F2004B8D-7791-4B35-A3FA-D8CA8BB4DD81}) (Version: 1.00.0000 - Corel Corporation) Hidden Direct DiscRecorder (HKLM-x32\...\InstallShield_{F2004B8D-7791-4B35-A3FA-D8CA8BB4DD81}) (Version: 1.00.0000 - Corel Corporation) Hidden Disable AMT Profile Synchronization Pop-up for Windows XP/Vista/7 (HKLM\...\DisableAMTPopup) (Version: 1.00 - ) DWG FastView - Polski (HKLM-x32\...\DWG FastView_pl_pl) (Version: - Gstarsoft Co.,Ltd) Excel 2007 - praktyczny kurs obsługi (poziom podstawowy i średni) (HKLM-x32\...\Excel 2007 - praktyczny kurs obsługi (poziom podstawowy i średni)) (Version: - ) Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych (HKLM-x32\...\{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}) (Version: 15.4.5722.2 - Microsoft Corporation) FreeCommander XE (HKLM-x32\...\FreeCommander XE_is1) (Version: - Marek Jasinski) Galeria fotografii usługi Windows Live (HKLM-x32\...\{CB3F59BB-7858-41A1-A7EA-4B8A6FC7D431}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden GanttProject (HKLM-x32\...\GanttProject) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.) Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.57 - Google Inc.) Hidden Integrated Camera Driver Installer Package Ver.1.1.0.1147 (HKLM-x32\...\{B2CA6F37-1602-4823-81B5-0384B6888AA6}) (Version: 1.1.0.1147 - RICOH) Integrated Camera TWAIN (HKLM-x32\...\{9CA0DEE4-E84B-466F-9B96-FC255F3A929F}) (Version: 1.0.11.1223 - Chicony Electronics Co.,Ltd.) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Identity Protection Technology 1.1.2.0 (HKLM-x32\...\{C01A86F5-56E7-101F-9BC9-E3F1025EB779}) (Version: 1.1.2.0 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2538 - Intel Corporation) IrfanView 4.51 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.51 - Irfan Skiljan) Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Kaspersky Anti-Virus (HKLM-x32\...\{718613F4-492D-4272-ACC3-D04A8EF0F883}) (Version: 19.0.0.1088 - Kaspersky Lab) Hidden Kaspersky Anti-Virus (HKLM-x32\...\InstallWIX_{718613F4-492D-4272-ACC3-D04A8EF0F883}) (Version: 19.0.0.1088 - Kaspersky Lab) Kaspersky Secure Connection (HKLM-x32\...\{F10AA188-7166-430E-8810-FEAB2AD73DE3}) (Version: 19.0.0.1088 - Kaspersky Lab) Hidden Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{F10AA188-7166-430E-8810-FEAB2AD73DE3}) (Version: 19.0.0.1088 - Kaspersky Lab) Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 1.00 - ) Lenovo Patch Utility 64 bit (HKLM\...\{0369F866-2CE0-4EB9-B426-88FA122C6E82}) (Version: 1.3.0.9 - Lenovo Group Limited) Lenovo Registration (HKLM-x32\...\{6707C034-ED6B-4B6A-B21F-969B3606FBDE}) (Version: 1.0.4 - Lenovo Inc.) Lenovo Service Bridge (HKU\S-1-5-21-701309301-3949570393-247020288-1003\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 4.0.6.5 - Lenovo) Lenovo System Interface Driver (HKLM\...\LENOVO.SMIIF) (Version: 1.05 - ) Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0074 - Lenovo) Lenovo ThinkVantage Toolbox (HKLM\...\PC-Doctor for Windows) (Version: 6.0.5802.24 - PC-Doctor, Inc.) Lenovo User Guide (HKLM-x32\...\{13F59938-C595-479C-B479-F171AB9AF64F}) (Version: 1.0.0008.00 - Lenovo) Lenovo Warranty Information (HKLM-x32\...\{FD4EC278-C1B1-4496-99ED-C0BE1B0AA521}) (Version: 1.0.0005.00 - Lenovo) Lenovo Welcome (HKLM-x32\...\Lenovo Welcome_is1) (Version: 2.02.003.0 - Lenovo) LibreOffice 6.1 Help Pack (Polish) (HKLM-x32\...\{052D1205-AEB8-4010-820D-34519659BB5A}) (Version: 6.1.3.2 - The Document Foundation) LibreOffice 6.1.3.2 (HKLM-x32\...\{5DF17376-7AD9-48A6-812F-D305593C2D12}) (Version: 6.1.3.2 - The Document Foundation) Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden MFC RunTime files (HKLM-x32\...\{70C592EC-AE9B-4734-928B-676E824FB41E}) (Version: 1.0.0 - Extensoft) Hidden Microsoft .NET Framework 4.7.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.7.02558 - Microsoft Corporation) Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation) Microsoft Office Professional Plus 2013 - pl-pl (HKLM\...\ProPlusRetail - pl-pl) (Version: 15.0.5015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 64.0 (x64 pl) (HKLM\...\Mozilla Firefox 64.0 (x64 pl)) (Version: 64.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 59.0 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) NVIDIA nView 148.47 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 148.47 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 312.69 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 312.69 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.24.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.24.2 - NVIDIA Corporation) NVIDIA Sterownik graficzny 312.69 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 312.69 - NVIDIA Corporation) Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.5015.1000 - Microsoft Corporation) Hidden Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.5015.1000 - Microsoft Corporation) Hidden Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0415-0000-0000000FF1CE}) (Version: 15.0.5015.1000 - Microsoft Corporation) Hidden On Screen Display (HKLM\...\OnScreenDisplay) (Version: 6.73.01 - ) Oprogramowanie Intel(R) PROSet/Wireless WiFi (HKLM\...\{290D4DB2-F1B4-4B8E-918D-D71EF29A001B}) (Version: 14.00.1000 - Intel Corporation) Pakiet sterowników systemu Windows - Intel (e1cexpress) Net (12/21/2010 11.8.84.0) (HKLM\...\6D23A494E9A245843FB8584D9307D3E328DF8613) (Version: 12/21/2010 11.8.84.0 - Intel) Pakiet sterowników systemu Windows - Intel (MEIx64) System (10/19/2010 7.0.0.1144) (HKLM\...\90FD26A77B849AE03FF5F07A1CDA7F950406A8D8) (Version: 10/19/2010 7.0.0.1144 - Intel) Pakiet sterowników systemu Windows - Intel System (09/10/2010 9.2.0.1011) (HKLM\...\0CDBDD444A1F5FFEA227B4E7DCE195F11F08240A) (Version: 09/10/2010 9.2.0.1011 - Intel) Pakiet sterowników systemu Windows - Intel System (09/10/2010 9.2.0.1011) (HKLM\...\A513FC5E5A08D4EF27F234E91E0E942A0234210B) (Version: 09/10/2010 9.2.0.1011 - Intel) Pakiet sterowników systemu Windows - Intel System (10/04/2010 9.2.0.1015) (HKLM\...\FE1BEBFD475BB832AAF104F5C63348E98A9286DF) (Version: 10/04/2010 9.2.0.1015 - Intel) Pakiet sterowników systemu Windows - Intel USB (09/16/2010 9.2.0.1013) (HKLM\...\D97688B8E3830BF9820E15EB8D9552DCBF988CFD) (Version: 09/16/2010 9.2.0.1013 - Intel) Pakiet sterowników systemu Windows - Lenovo 1.61.00.11 (11/11/2010 1.61.00.11) (HKLM\...\466E9B20D871055D6D3CDA2CDD1D355E978A61AF) (Version: 11/11/2010 1.61.00.11 - Lenovo) Pakiet sterowników systemu Windows - Synaptics (SynTP) Mouse (03/24/2011 15.2.19.0) (HKLM\...\5DF942712DC7660AE4A1B04809A1C3F67B0CA27C) (Version: 03/24/2011 15.2.19.0 - Synaptics) Panel sterowania NVIDIA 312.69 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 312.69 - NVIDIA Corporation) Hidden PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.3.2 - pdfforge GmbH) Poczta usługi Windows Live (HKLM-x32\...\{64376910-1860-4CEF-8B34-AA5D205FC5F1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Podstawowe programy Windows Live (HKLM-x32\...\{7A9D47BA-6D50-4087-866F-0800D8B89383}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Podstawowe programy Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation) Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) Power Manager (HKLM-x32\...\{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}) (Version: 6.68.15 - Lenovo Group Limited) RapidBoot (HKLM\...\{5E2652DF-743F-482B-A593-C95F431A5769}) (Version: 1.10 - Lenovo) Rapport (HKLM-x32\...\{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}) (Version: 3.5.1930.100 - Trusteer) Hidden Registry Patch to Enable Maximum Power Saving on WiFi Adapters for Windows 7 (HKLM\...\EnablePS) (Version: 1.00 - ) RICOH_Media_Driver_v2.13.18.02 (HKLM-x32\...\{FE041B02-234C-4AAA-9511-80DF6482A458}) (Version: 2.13.18.02 - RICOH) ScanSoft PaperPort 11 (HKLM-x32\...\{D7659F54-7502-4312-AA24-F103C92C26F5}) (Version: 11.1.0000 - Nuance Communications, Inc.) Screen Capturer (HKLM-x32\...\Screen Capturer) (Version: 1.0.4.42 - ScreenCapturer.com) Skype (wersja 8.17) (HKLM-x32\...\Skype_is1) (Version: 8.17 - Skype Technologies S.A.) Skype™ 7.3 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.) ThinkPad Bluetooth with Enhanced Data Rate Software (HKLM\...\{C6C9D5F7-630C-4125-8C4E-94AF77C1896E}) (Version: 6.4.0.1500 - Broadcom Corporation) ThinkPad FullScreen Magnifier (HKLM\...\ThinkPad FullScreen Magnifier) (Version: 2.42 - ) ThinkPad Modem Adapter (HKLM\...\CNXT_MODEM_HDA_HSF) (Version: 7.80.5.0 - Conexant Systems) ThinkPad Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.61.00.11 - ) ThinkPad UltraNav Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.19.24 - ) ThinkPad UltraNav Utility (HKLM-x32\...\{17CBC505-D1AE-459D-B445-3D2000A85842}) (Version: 2.13.0 - Lenovo) ThinkVantage Access Connections (HKLM-x32\...\{8E537894-A559-4D60-B3CB-F4485E3D24E3}) (Version: 6.26.88 - Lenovo) ThinkVantage Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.73 - Lenovo) ThinkVantage AutoLock (HKLM\...\{E224B44B-B5EB-4af3-A80A-A255358E241A}_is1) (Version: 1.01 - Lenovo) ThinkVantage Communications Utility (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 2.11.0.0 - Lenovo) ThinkVantage Fingerprint Software (HKLM\...\{502EE63C-9A62-4330-8F8B-1EAB51B7BB46}) (Version: 5.9.4.6882 - UPEK Inc.) Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.12 - Ghisler Software GmbH) Trusteer Endpoint Protection (HKLM-x32\...\Rapport_msi) (Version: 3.5.1930.100 - Trusteer) VeraCrypt (HKLM-x32\...\VeraCrypt) (Version: 1.23-Hotfix-2 - IDRIX) VIPAccess (HKLM-x32\...\{E8D46836-CD55-453C-A107-A59EC51CB8DC}) (Version: 2.0.1.91 - VeriSign) Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) WhiteClick LLC (HKLM-x32\...\{C443A4A4-EA71-432E-AA2B-1A06C60A5A3F}) (Version: 4.1.3 - White) Word 2007 - praktyczny kurs obsługi (poziom podstawowy i średni) (HKLM-x32\...\Word 2007 - praktyczny kurs obsługi (poziom podstawowy i średni)) (Version: - ) Word 2007 - praktyczny kurs obsługi (poziom zaawansowany) (HKLM-x32\...\Word 2007 - praktyczny kurs obsługi (poziom zaawansowany)) (Version: - ) Xerox Phaser 3100MFP Drivers (HKLM-x32\...\{4ACE3E86-78B6-43A1-B104-E3F3006FC576}) (Version: 1.2.5 - ) Xerox Phaser3100 MFP (HKLM-x32\...\{ABDB5A8F-A163-4FD7-A8AE-E2695ACFEA90}) (Version: 1.2.5 - ) ZAR X (HKLM\...\{85DA9B81-D7F9-4165-8E62-F776B57213F8}_is1) (Version: - www.z-a-recovery.com) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ContextMenuHandlers1: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 19.0.0\x64\ShellEx.dll [2019-01-05] (AO Kaspersky Lab) ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation) ContextMenuHandlers2: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 19.0.0\x64\ShellEx.dll [2019-01-05] (AO Kaspersky Lab) ContextMenuHandlers4: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 19.0.0\x64\ShellEx.dll [2019-01-05] (AO Kaspersky Lab) ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\Program Files\NVIDIA Corporation\nview\nvshell.dll [2017-03-31] () ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2011-09-26] (Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2013-10-29] (NVIDIA Corporation) ContextMenuHandlers6: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 19.0.0\x64\ShellEx.dll [2019-01-05] (AO Kaspersky Lab) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {05200E3D-9951-41E4-B53C-77BC59C68251} - System32\Tasks\SystemToolsDailyTest => C:\Program Files\PC-Doctor\uaclauncher.exe Task: {329F5A9E-BF50-475F-B4D8-A4A83558C500} - System32\Tasks\MCP => C:\Program Files (x86)\LENOVO\Message Center Plus\MCPLaunch.exe Task: {479B55E6-4C0B-42CE-AB5F-3C4E2590C5AB} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated) Task: {5DDB4A8F-8756-4CAC-92A3-D5B773A6C32C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-01-05] (Google Inc.) Task: {67B8365D-468A-4F0C-9C0B-4ECCD7544D12} - System32\Tasks\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2017-03-31] () Task: {6F8192C9-856F-44B3-B21C-17CFC912D9B5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-01-05] (Google Inc.) Task: {6FD93F0E-B1BA-4C46-BA9D-6A2130781630} - System32\Tasks\AdwCleaner_onReboot => C:\Install\Virusy-Ratunek\adwcleaner_7.2.6.0_www.INSTALKI.pl.exe [2019-01-05] (Malwarebytes) Task: {7169D271-DCB9-4CB8-8029-18BC38DF6A5F} - System32\Tasks\Lenovo\Rejestracja produktu firmy Lenovo (uMirek) => C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe [2011-07-13] (Lenovo, Inc.) Task: {7CA62991-6BB6-4433-AE80-FC940992312E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2018-02-19] (Microsoft Corporation) Task: {85A5F185-D12D-49A2-9512-8D167795D014} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2018-10-22] () Task: {9F05BB0E-7209-469C-9F0F-09D1474E3379} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-09-16] (Piriform Ltd) Task: {A8902294-4980-4C27-9041-BC43EE768071} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2018-10-22] () Task: {AB3DA2D5-6704-40DB-8215-E210250D665C} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-12-12] (Microsoft Corporation) Task: {AC1C7FE0-8784-4027-9DED-35B523F90028} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-701309301-3949570393-247020288-1003 => C:\Users\uMirek\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [2018-10-29] (Lenovo Group Limited) Task: {BFC8D041-2533-4F89-AA5A-3CB325BF33D6} - System32\Tasks\PMTask => C:\Program Files (x86)\ThinkPad\Utilities\PwmIdTsv.exe [2018-05-16] (Lenovo Group Limited) Task: {CFE2E747-55E8-48A8-9330-27BBB3A3DA55} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2018-02-19] (Microsoft Corporation) Task: {D578D5AB-3B17-4148-94A8-31B4BDEA53EB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-12-12] (Microsoft Corporation) Task: {D5D67BA9-1B4C-41D5-99F5-2F70EA010A37} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-09-16] (Piriform Ltd) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job => C:\Program Files\PC-Doctor\uaclauncher.exeq-backgroundmon scripts\backgroundmon.xml Task: C:\Windows\Tasks\SystemToolsDailyTest.job => C:\Program Files\PC-Doctor\uaclauncher.exe ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2010-12-17 12:53 - 2010-12-17 12:53 - 001501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll 2018-05-03 10:42 - 2009-12-17 09:21 - 000071680 _____ () C:\Windows\System32\LF2GRPJL.DLL 2018-02-19 19:51 - 2017-01-17 03:25 - 000117440 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll 2010-02-11 03:05 - 2010-02-11 03:05 - 000010752 _____ () C:\Windows\SysWOW64\FUSServices.exe 2019-01-05 22:05 - 2018-05-16 06:08 - 000113960 _____ () C:\Program Files (x86)\ThinkPad\Utilities\US\PWMRT64V.DLL 2011-10-22 15:19 - 2010-10-26 21:40 - 000049056 _____ () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe 2011-10-22 15:22 - 2011-03-06 12:07 - 000094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2010-12-18 14:50 - 2010-12-18 14:50 - 000173856 _____ () C:\Program Files\ThinkPad\Bluetooth Software\btkeyind.dll 2010-02-11 03:23 - 2010-02-11 03:23 - 000024576 _____ () C:\Program Files (x86)\Xerox Companion Suite\MFFSUM.exe 2010-02-11 03:19 - 2010-02-11 03:19 - 000073728 _____ () C:\Program Files (x86)\Xerox Companion Suite\MFPrintServer.exe 2018-02-03 16:11 - 2013-10-29 01:53 - 000087328 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2019-01-05 16:14 - 2018-12-12 06:11 - 005237216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libglesv2.dll 2019-01-05 16:14 - 2018-12-12 06:11 - 000117216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libegl.dll 2018-05-03 10:42 - 2009-12-17 09:21 - 000020480 _____ () C:\Windows\system32\LF2GRPOW.exe 2010-02-11 03:16 - 2010-02-11 03:16 - 000438272 _____ () C:\Program Files (x86)\Xerox Companion Suite\MFServices.exe 2018-11-21 19:30 - 2018-10-22 19:38 - 001758536 _____ () C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe 2018-11-21 19:30 - 2018-10-22 19:38 - 000456512 _____ () C:\Program Files (x86)\Lenovo\System Update\tvsu.exe 2018-11-21 19:30 - 2018-10-22 19:38 - 000023880 _____ () C:\Program Files (x86)\Lenovo\System Update\SUService.exe 2018-11-21 19:30 - 2018-10-22 19:38 - 000027976 _____ () C:\Program Files (x86)\Lenovo\System Update\uncserver.exe 2019-01-05 16:30 - 2019-01-05 16:30 - 000864112 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 19.0.0\kpcengine.2.3.dll 2011-10-22 15:24 - 2010-04-06 08:05 - 002085888 _____ () C:\Program Files\Lenovo\AutoLock\cv210.dll 2011-10-22 15:24 - 2010-04-06 08:04 - 002201088 _____ () C:\Program Files\Lenovo\AutoLock\cxcore210.dll 2010-02-11 03:23 - 2010-02-11 03:23 - 000794624 _____ () C:\Program Files (x86)\Xerox Companion Suite\Utility32.dll 2010-02-10 21:13 - 2010-02-10 21:13 - 000069632 _____ () C:\Program Files (x86)\Xerox Companion Suite\QTrace.dll 2010-02-11 03:22 - 2010-02-11 03:22 - 000241664 _____ () C:\Program Files (x86)\Xerox Companion Suite\Advanced.dll 2010-02-11 03:22 - 2010-02-11 03:22 - 000086016 _____ () C:\Program Files (x86)\Xerox Companion Suite\SuString.dll 2010-02-11 03:11 - 2010-02-11 03:11 - 000503808 _____ () C:\Program Files (x86)\Xerox Companion Suite\PlugInU.dll 2010-02-11 03:08 - 2010-02-11 03:08 - 000815104 _____ () C:\Program Files (x86)\Xerox Companion Suite\Utility32U.dll 2010-02-11 03:07 - 2010-02-11 03:07 - 000245760 _____ () C:\Program Files (x86)\Xerox Companion Suite\AdvancedU.dll 2010-02-11 03:07 - 2010-02-11 03:07 - 000086016 _____ () C:\Program Files (x86)\Xerox Companion Suite\SuStringU.dll 2010-02-11 03:09 - 2010-02-11 03:09 - 000417792 _____ () C:\Program Files (x86)\Xerox Companion Suite\ControlsU.dll 2010-02-11 03:08 - 2010-02-11 03:08 - 000135168 _____ () C:\Program Files (x86)\Xerox Companion Suite\GraphicsU.dll 2010-02-11 03:08 - 2010-02-11 03:08 - 000245760 _____ () C:\Program Files (x86)\Xerox Companion Suite\ProtocolU.dll 2010-02-11 03:08 - 2010-02-11 03:08 - 000118784 _____ () C:\Program Files (x86)\Xerox Companion Suite\RouterU.dll 2010-02-11 03:15 - 2010-02-11 03:15 - 000323584 _____ () C:\Program Files (x86)\Xerox Companion Suite\FAXU.dll 2010-02-11 03:12 - 2010-02-11 03:12 - 000356352 _____ () C:\Program Files (x86)\Xerox Companion Suite\TiffU.dll 2010-02-11 03:12 - 2010-02-11 03:12 - 000049152 _____ () C:\Program Files (x86)\Xerox Companion Suite\Pdg32U.dll 2010-02-11 03:10 - 2010-02-11 03:10 - 000368640 _____ () C:\Program Files (x86)\Xerox Companion Suite\AddressBookU.dll 2010-02-11 03:09 - 2010-02-11 03:09 - 000131072 _____ () C:\Program Files (x86)\Xerox Companion Suite\ComponentsU.dll 2010-02-11 03:12 - 2010-02-11 03:12 - 000053248 _____ () C:\Program Files (x86)\Xerox Companion Suite\DigitalizerU.dll 2010-02-11 03:12 - 2010-02-11 03:12 - 000032768 _____ () C:\Program Files (x86)\Xerox Companion Suite\PrintFaxU.dll 2010-02-11 03:12 - 2010-02-11 03:12 - 000032768 _____ () C:\Program Files (x86)\Xerox Companion Suite\MFServiceTR29U.dll 2010-02-11 03:16 - 2010-02-11 03:16 - 000212992 _____ () C:\Program Files (x86)\Xerox Companion Suite\SMSU.dll 2015-06-02 14:51 - 2015-06-02 14:51 - 000545792 _____ () C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll 2010-02-11 03:11 - 2010-02-11 03:11 - 000061440 _____ () C:\Program Files (x86)\Xerox Companion Suite\MFServiceAPIU.dll 2010-02-11 03:10 - 2010-02-11 03:10 - 000143360 _____ () C:\Program Files (x86)\Xerox Companion Suite\DeviceU.dll 2010-02-11 03:10 - 2010-02-11 03:10 - 000143360 _____ () C:\Program Files (x86)\Xerox Companion Suite\Hal\XMLDIUSBU.dll 2010-02-11 03:11 - 2010-02-11 03:11 - 000024576 _____ () C:\Program Files (x86)\Xerox Companion Suite\MFServiceTSU.dll 2010-02-11 03:11 - 2010-02-11 03:11 - 000036864 _____ () C:\Program Files (x86)\Xerox Companion Suite\MFServiceMONU.dll 2010-02-11 03:11 - 2010-02-11 03:11 - 000053248 _____ () C:\Program Files (x86)\Xerox Companion Suite\MFServiceHTTPU.dll 2010-02-11 03:15 - 2010-02-11 03:15 - 000028672 _____ () C:\Program Files (x86)\Xerox Companion Suite\MFServiceFOLDERU.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2019-01-05 18:43 - 000000027 _____ C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-701309301-3949570393-247020288-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\m.szafarz\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg HKU\S-1-5-21-701309301-3949570393-247020288-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\uMirek\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == Załączenie wejścia w fixlist spowoduje jego usunięcie. MSCONFIG\startupreg: chrome => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --headless --disable-gpu --remote-debugging-port=9222 http://mi-ner-nis-de-6.info/cdn-1006.html?t=0.4 ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Corporation) FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Corporation) FirewallRules: [{75F8BCAA-3EB8-4938-8877-50FD6A072116}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation) FirewallRules: [{8ABEAC30-61C8-43AE-9E0C-260D1F386956}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation) FirewallRules: [{C4B4D57B-FB92-4ADE-9BD0-124882496329}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation) FirewallRules: [{8EDC1B01-2CC3-44DC-984D-3F8E70C7B54C}] => (Allow) LPort=2869 FirewallRules: [{15297D0B-F108-4DEB-B34E-FB5651AE02F5}] => (Allow) LPort=1900 FirewallRules: [{03577A08-1C94-4590-9E80-075558584AFF}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation) FirewallRules: [{6223FFE4-7BE7-43EA-A775-E362F98CD748}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe (Microsoft Corporation) FirewallRules: [{CAC02D5D-5842-47B2-AF1D-7FA94F565499}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) FirewallRules: [{4073414C-782D-4E3F-B243-096FC7C82A96}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) FirewallRules: [{3EDB93BE-E9CA-45BD-9818-4B3E628D7DF1}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe (Microsoft Corporation) FirewallRules: [{983EC691-68F6-4F8A-9017-18C9CB3166E0}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe (Microsoft Corporation) FirewallRules: [{F3823DF5-C518-48E0-A5AC-05912D70AA5A}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe (Microsoft Corporation) FirewallRules: [{F534FF70-BCB6-41E8-8632-00E26D48608B}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe (Microsoft Corporation) FirewallRules: [{D9779E7B-573F-492F-BFDF-2B84DD0FD5CC}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe (Microsoft Corporation) FirewallRules: [{3EBEDB12-56F3-4DA0-9412-DF4C30243A25}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.) FirewallRules: [{958786D2-31CD-4810-92B2-694773BFA0A9}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.) FirewallRules: [{0E97FFED-A8C0-484D-8EBA-C88574FACAA4}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.) FirewallRules: [{FF1B5571-5BCF-4819-A8F5-22EE2D54C3D0}] => (Allow) C:\Program Files (x86)\Xerox Companion Suite\MFServices.exe () FirewallRules: [{F2B44667-5659-4D93-AECE-A047211777E8}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Ltd) FirewallRules: [{EC4397CC-521D-4C13-B1EB-B596AA496489}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Ltd) FirewallRules: [{48B56CA8-6AFB-477E-8C5F-A1A08D1292EF}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe () FirewallRules: [{743CFB7C-A2EA-4054-B550-93CF96CFF2D6}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe () FirewallRules: [{41E2B777-40AE-4203-A0B8-B69A1A47CEF1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) FirewallRules: [{055DA526-11EE-453A-8281-44911DF9173F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation) FirewallRules: [{0A233097-B690-43FB-AF1B-25AD0DFE424E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation) ==================== Punkty Przywracania systemu ========================= 05-01-2019 18:25:57 ComboFix created restore point 05-01-2019 21:36:28 Windows Update 05-01-2019 21:57:32 Installed Power Manager 05-01-2019 22:05:07 Installed Power Manager ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (01/05/2019 11:09:41 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (01/05/2019 10:22:44 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (01/05/2019 10:07:49 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (01/05/2019 09:13:02 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (01/05/2019 08:40:29 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (01/05/2019 08:27:56 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (01/05/2019 07:05:38 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (01/05/2019 06:21:37 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: MFFSUM.exe, wersja: 1.0.0.1, sygnatura czasowa: 0x4b737821 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x7485e514 Identyfikator procesu powodującego błąd: 0x13d4 Godzina uruchomienia aplikacji powodującej błąd: 0x01d4a51ae819311b Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\Xerox Companion Suite\MFFSUM.exe Ścieżka modułu powodującego błąd: unknown Identyfikator raportu: 5b3870ed-110e-11e9-af80-a088b4389f04 Dziennik System: ============= Error: (01/05/2019 10:21:42 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: Nastąpiło nieoczekiwane zatrzymanie modułu rozszerzalności sieci WLAN. Ścieżka modułu: C:\Windows\System32\IWMSSvc.dll Error: (01/05/2019 10:21:42 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: Nastąpiło nieoczekiwane zatrzymanie modułu rozszerzalności sieci WLAN. Ścieżka modułu: C:\Windows\System32\IWMSSvc.dll Error: (01/05/2019 10:21:33 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: Nastąpiło nieoczekiwane zatrzymanie modułu rozszerzalności sieci WLAN. Ścieżka modułu: C:\Windows\System32\IWMSSvc.dll Error: (01/05/2019 10:21:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Bluetooth Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 60000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (01/05/2019 10:21:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Usługa Kaspersky Secure Connection 3.0.0 niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (01/05/2019 10:21:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Windows Live ID Sign-in Assistant niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (01/05/2019 10:21:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Lenovo Microphone Mute niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (01/05/2019 10:21:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Intel(R) PROSet/Wireless Registry Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. CodeIntegrity: =================================== Date: 2019-01-05 18:42:42.889 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-01-05 18:42:42.764 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-2520M CPU @ 2.50GHz Procent pamięci w użyciu: 71% Całkowita pamięć fizyczna: 3979.23 MB Dostępna pamięć fizyczna: 1133.38 MB Całkowita pamięć wirtualna: 7956.61 MB Dostępna pamięć wirtualna: 4917.84 MB ==================== Dyski ================================ Drive c: (Windows7_OS) (Fixed) (Total:206.77 GB) (Free:14.26 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive q: (Lenovo_Recovery) (Fixed) (Total:15.62 GB) (Free:6.32 GB) NTFS \\?\Volume{1dd648c9-0901-11e8-8644-806e6f6e6963}\ (SYSTEM_DRV) (Fixed) (Total:1.17 GB) (Free:0.84 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 223.6 GB) (Disk ID: 97238FA7) Partition 1: (Active) - (Size=1.2 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=206.8 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=15.6 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================