Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 19-11-2016 01 Uruchomiony przez kyzio (19-11-2016 23:23:03) Uruchomiony z C:\Users\kyzio\Downloads Windows 10 Education Wersja 1607 (X64) (2016-08-26 16:13:33) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-3932415501-2318436411-3286246222-500 - Administrator - Disabled) Gość (S-1-5-21-3932415501-2318436411-3286246222-501 - Limited - Disabled) Konto domyślne (S-1-5-21-3932415501-2318436411-3286246222-503 - Limited - Disabled) kyzio (S-1-5-21-3932415501-2318436411-3286246222-1001 - Administrator - Enabled) => C:\Users\kyzio ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) . . . (Version: 2.1.28.3 - Intel) Hidden . . . (x32 Version: 2.6.1.4 - Intel) Hidden µTorrent (HKU\S-1-5-21-3932415501-2318436411-3286246222-1001\...\uTorrent) (Version: 3.4.9.42951 - BitTorrent Inc.) A360 Desktop (HKLM\...\{7758802D-9486-4883-9927-CCAC366A3BA4}) (Version: 7.2.3.1800 - Autodesk) ACA & MEP 2016 Object Enabler (Version: 7.8.41.0 - Autodesk) Hidden ACA & MEP 2017 Object Enabler (Version: 7.9.48.0 - Autodesk) Hidden ACAD Private (Version: 20.1.49.0 - Autodesk) Hidden Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated) Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated) Advance Concrete 2015.1 (Version: 15.1.0 - Autodesk) Hidden Age of Empires III - Complete Collection (HKLM-x32\...\Age of Empires III - Complete Collection_Origami_is1) (Version: 1.0 - R.G. Origami, Seraph1) Akamai NetSession Interface (HKU\S-1-5-21-3932415501-2318436411-3286246222-1001\...\Akamai) (Version: - Akamai Technologies, Inc) Aplikacja na pulpit firmy Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 6.2.0.174 - Autodesk) ArCADia PLUS 10.1 PL (64-bit) (HKLM\...\{33F43A35-8D03-422E-A1F4-EFDAF8A8E504}) (Version: 10.1.2117.3 - ArCADiasoft Chudzik sp. j.) ArCADiasoft-Menadżer licencji (HKLM-x32\...\{C9031AD8-E1D6-4C3D-9408-6ADE7E320CD0}) (Version: 2.5.0.1 - ArCADiasoft Chudzik sp. j.) AutoCAD 2016 — Polski (Polish) (Version: 20.1.49.0 - Autodesk) Hidden AutoCAD 2016 (Version: 20.1.49.0 - Autodesk) Hidden AutoCAD 2016 Language Pack – Polski (Polish) (Version: 20.1.49.0 - Autodesk) Hidden AutoCAD 2017 (Version: 21.0.52.0 - Autodesk) Hidden AutoCAD 2017 Language Pack – Polski (Polish) (Version: 21.0.52.0 - Autodesk) Hidden AutoCAD Architecture 2017 Language Shared — Polski (Polish) (Version: 7.9.48.0 - Autodesk) Hidden AutoCAD Architecture 2017 Shared (Version: 7.9.48.0 - Autodesk) Hidden AutoCAD Civil 3D Matterhorn Private Pack (Version: 11.0.659.0 - Autodesk) Hidden Autodesk A360 Collaboration for Revit 2017 (HKLM\...\Autodesk A360 Collaboration for Revit 2017) (Version: 17.0.416.0 - Autodesk) Autodesk A360 Collaboration for Revit 2017 (Version: 17.0.416.0 - Autodesk) Hidden Autodesk Advance Concrete 2015.1 (HKLM-x32\...\Advance Concrete 2015.1) (Version: 15.1.0 - Autodesk) Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-4291-8714-7A3B761D2783}) (Version: 6.3.0.15 - Autodesk) Autodesk Advanced Material Library Image Library 2017 (HKLM-x32\...\{8ED2ED41-4455-449D-993C-751C039089B9}) (Version: 15.11.3.0 - Autodesk) Autodesk App Manager 2016-2017 (HKLM-x32\...\{C0954809-F5DC-426C-847E-8409DE14E4C0}) (Version: 2.2.0 - Autodesk) Autodesk AutoCAD 2016 — Polski (Polish) (HKLM\...\AutoCAD 2016 — Polski (Polish)) (Version: 20.1.49.0 - Autodesk) Autodesk AutoCAD Civil 3D 2017 - Polski (Polish) (HKLM\...\Autodesk AutoCAD Civil 3D 2017 - Polski (Polish)) (Version: 11.0.659.0 - Autodesk) Autodesk AutoCAD Civil 3D 2017 - Polski (Polish) (Version: 11.0.659.0 - Autodesk) Hidden Autodesk AutoCAD Civil 3D 2017 (Version: 11.0.659.0 - Autodesk) Hidden Autodesk AutoCAD Civil 3D 2017 64 Bit Object Enabler on Revit 2017 - Language Neutral (HKLM\...\{156BC6AE-3FE4-4D6D-9CC5-2D15E6F0C130}) (Version: 659.0 - Autodesk, Inc.) Autodesk AutoCAD Civil 3D 2017 Language Pack — Polski (Polish) (Version: 11.0.659.0 - Autodesk) Hidden Autodesk AutoCAD Map 3D 2017 (Version: 20.0.009.5 - Autodesk) Hidden Autodesk AutoCAD Map 3D 2017 Language Pack - Polski (Polish) (Version: 20.0.009.5 - Autodesk) Hidden Autodesk AutoCAD Performance Feedback Tool 1.2.5 (HKLM-x32\...\{8600F844-9AA5-412E-B6F2-F9C6CBCFD268}) (Version: 1.2.5.0 - Autodesk) Autodesk BIM 360 Glue AutoCAD 2016 Add-in 64 bit (HKLM\...\{4BEE127E-95C4-434D-ABAC-65155192BB24}) (Version: 4.35.1742 - Autodesk) Autodesk BIM 360 Revit 2017 Add-in 64 bit (HKLM\...\{A26EBAD5-9591-407F-9D6C-C7A4F3DFE506}) (Version: 4.37.6853 - Autodesk) Autodesk Content Service (HKLM\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk) Autodesk Content Service (Version: 3.2.0.0 - Autodesk) Hidden Autodesk Content Service Language Pack (Version: 3.2.0.0 - Autodesk) Hidden Autodesk Featured Apps 2016-2017 (HKLM-x32\...\{27C15055-713B-4D0E-881F-19598A2DFD59}) (Version: 2.2.0 - Autodesk) Autodesk License Service (x64) - 3.1 (HKLM\...\{EB6FE58F-8576-4272-BB9C-6B47D9EDFA4D}) (Version: 3.1.26.0 - Autodesk) Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.15 - Autodesk) Autodesk Material Library 2017 (HKLM-x32\...\{8FB9F735-D64C-4991-8D91-4CDDAB1ABDEE}) (Version: 15.11.3.0 - Autodesk) Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.15 - Autodesk) Autodesk Material Library Base Resolution Image Library 2017 (HKLM-x32\...\{3FBFBC43-9882-43FA-B979-2D53896747B3}) (Version: 15.11.3.0 - Autodesk) Autodesk Material Library Low Resolution Image Library 2017 (HKLM-x32\...\{360AC116-6CD4-4E7D-8174-28D47B05E898}) (Version: 15.11.3.0 - Autodesk) Autodesk Material Library Medium Resolution Image Library 2017 (HKLM-x32\...\{CB6E007E-701D-42CD-AF0E-4BE9C36C7F7C}) (Version: 15.11.3.0 - Autodesk) Autodesk ReCap 360 (HKLM\...\Autodesk ReCap 360) (Version: 3.0.0.52 - Autodesk) Autodesk ReCap 360 (Version: 3.0.0.52 - Autodesk) Hidden Autodesk Revit 2017 (HKLM\...\Autodesk Revit 2017) (Version: 17.0.416.0 - Autodesk) Autodesk Revit 2017 (HKLM\...\Revit 2017) (Version: - ) Autodesk Revit Content Libraries 2017 - Polski (Polish) (HKLM\...\Autodesk Revit Content Libraries 2017 - Polski (Polish)) (Version: 17.0.416.0 - Autodesk) Autodesk Revit Content Libraries 2017 - Polski (Polish) (HKLM\...\Revit Content Libraries 2017 - Polski (Polish)) (Version: - ) Autodesk Revit MEP Imperial Content v2.0 (HKLM\...\{F2538944-3E07-4E97-B41A-FC48AB53EE9D}) (Version: 2.0 - Autodesk) Autodesk Revit MEP Metric Content v2.0 (HKLM\...\{DEF775C7-84BF-4730-976A-FE3747F1757C}) (Version: 2.0 - Autodesk) Autodesk Robot Structural Analysis Professional 2016 - Polish regional settings (Version: 2016.0.0.5650 - Autodesk) Hidden Autodesk Robot Structural Analysis Professional 2016 (HKLM\...\Autodesk Robot Structural Analysis Professional 2016) (Version: 2016.0.0.5650 - Autodesk, Inc.) Autodesk Robot Structural Analysis Professional 2016 (Version: 2016.0.0.5650 - Autodesk, Inc.) Hidden Autodesk Vehicle Tracking 2017 (64 bit) Core (Version: 7.5.1705.0 - Autodesk, Inc.) Hidden Autodesk Workflows 2017 (HKLM\...\{23A13F78-5B67-441A-ABF9-48BE8B5455DB}) (Version: 15.11.13.0 - Autodesk, Inc.) AVG (HKLM\...\AvgZen) (Version: 1.111.2.45832 - AVG Technologies) AVG (Version: 16.131.7924 - AVG Technologies) Hidden AVG 2016 (Version: 16.0.4664 - AVG Technologies) Hidden AVG Protection (HKLM\...\AVG) (Version: 2016.131.7924 - AVG Technologies) AVG Zen (Version: 1.111.9 - AVG Technologies) Hidden Bridge Building Game (HKLM-x32\...\Bridge Building Game) (Version: - ) call of duty 2 (HKLM-x32\...\{AC41C56A-CAF0-4748-894E-9FB6E74B42A0}) (Version: 1.0.0 - Activision) CCleaner (HKLM\...\CCleaner) (Version: 5.15 - Piriform) Construction-Simulator 2015 (HKLM\...\Steam App 289950) (Version: - weltenbauer. Software Entwicklung GmbH) Dell System Detect (HKU\S-1-5-21-3932415501-2318436411-3286246222-1001\...\58d94f3ce2c27db0) (Version: 7.11.0.6 - Dell) Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 19.0.15.2 - Synaptics Incorporated) Dynamo 0.9.1 (HKLM\...\{85626FB3-CAF9-49C1-AA28-E3C75164BD6F}) (Version: 0.9.1.4062 - Autodesk) EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.8.0.0 - Electronic Arts) FARO LS 1.1.502.0 (64bit) (HKLM-x32\...\{66D83FE0-D798-4B38-86FE-FB48151E5AEF}) (Version: 5.2.0.35213 - FARO Scanner Production) FARO LS 1.1.505.0 (64bit) (HKLM-x32\...\{8834451B-6209-4E02-9EF4-4EF9E3C1F70F}) (Version: 5.5.0.44203 - FARO Scanner Production) FMW 1 (Version: 1.132.1 - AVG Technologies) Hidden FormIt 360 Converter For Revit 2017 (HKLM\...\{637211B6-D2E9-474A-BF06-4F61F1254104}) (Version: 1.9.0.0 - Autodesk) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.) Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden Huawei E5573 (HKLM-x32\...\Huawei E5573) (Version: 22.001.27.00.1202 - Huawei Technologies Co.,Ltd) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4454 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{234AC5AF-C674-452D-BF73-FE9ABF2D5DBB}) (Version: 19.11.1639.0649 - Intel Corporation) Intel® Driver Update Utility (HKLM-x32\...\{fe2eebd3-ee15-4538-bb19-b627e3f2a911}) (Version: 2.6.1.4 - Intel) IronPython 2.7.3 (HKLM-x32\...\{1EBADAEA-1A0F-40E3-848C-0DD8C5E5A10D}) (Version: 2.7.31000.0 - IronPython Team) Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.15 - Oracle Corporation) Kalkulator parametrów geotechnicznych gruntów metodą B - v. 1.1 (HKLM-x32\...\Kalkulator parametrów geotechnicznych gruntów metodą B_is1) (Version: - SPECBUD) Konstruktor 6.4 (HKLM-x32\...\{40ACFEA9-326B-40B0-B07D-A64D5931F6DF}) (Version: 6.4.10.2 - ArCADiasoft Chudzik sp. j.) LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.541 - LogMeIn, Inc.) LogMeIn Hamachi (x32 Version: 2.2.0.541 - LogMeIn, Inc.) Hidden Manager (x32 Version: 4.0.1.25166 - 2015 pdfforge GmbH. All rights reserved) Hidden Maxx Audio Installer (x64) (Version: 2.6.6570.1 - Waves Audio Ltd.) Hidden Microsoft Access Runtime 2013 (HKLM\...\Office15.AccessRT) (Version: 15.0.4517.1004 - Microsoft Corporation) Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 16.0.7369.2038 - Microsoft Corporation) Microsoft Office Professional Plus 2016 - pl-pl (HKLM\...\ProPlusRetail - pl-pl) (Version: 16.0.7369.2038 - Microsoft Corporation) Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation) Microsoft Visual Basic PowerPacks 10.0 (HKLM-x32\...\{2D9F8079-7D50-3EFD-B3BD-ED642E4EE756}) (Version: 10.0.20911 - Microsoft) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.31119 - Microsoft Corporation) Mozilla Firefox 49.0.2 (x86 pl) (HKLM-x32\...\Mozilla Firefox 49.0.2 (x86 pl)) (Version: 49.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 49.0.2.6136 - Mozilla) MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation) Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7369.2038 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7369.2038 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (Version: 16.0.7369.2038 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7369.2038 - Microsoft Corporation) Hidden OpenOffice 4.0.1 (HKLM-x32\...\{DA0106A3-216E-48DE-9CF6-655DA8FC1D22}) (Version: 4.01.9714 - Apache Software Foundation) Origin (HKLM-x32\...\Origin) (Version: 10.2.1.38915 - Electronic Arts, Inc.) PDF Architect 4 (HKLM-x32\...\PDF Architect 4) (Version: 4.0.34.26215 - pdfforge GmbH) PDF Architect 4 Create Module (Version: 4.0.12.26604 - pdfforge GmbH) Hidden PDF Architect 4 Edit Module (Version: 4.0.12.26604 - pdfforge GmbH) Hidden PDF Architect 4 View Module (Version: 4.0.12.26604 - pdfforge GmbH) Hidden PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.3.0 - pdfforge GmbH) Personal Accelerator for Revit (HKLM\...\Personal Accelerator for Revit) (Version: 16.0.1109.0 - Autodesk) Personal Accelerator for Revit (Version: 16.0.1109.0 - Autodesk) Hidden Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31222 - Realtek Semiconduct Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7628 - Realtek Semiconductor Corp.) Results Connect (HKLM\...\{E9100151-C562-4B7C-B25F-1355E9ED9387}) (Version: 2016.0.0.16045 - Autodesk, Inc.) Revit 2017 (Version: 17.0.416.0 - Autodesk) Hidden Revit Content Libraries 2017 - Polski (Polish) (Version: 17.0.416.0 - Autodesk) Hidden SafeFinder (HKLM-x32\...\{8646AAF6-BF4F-4838-B50F-27B5546B5FBA}) (Version: 1.0.0.0 - Linkury) <==== UWAGA Secure Download Manager (HKLM-x32\...\{E040B65B-8683-4228-8C33-D44A141E40EA}) (Version: 3.1.60 - Kivuto Solutions Inc.) Skype™ 7.21 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.21.100 - Skype Technologies S.A.) Soldis PROJEKTANT 2016 (HKLM-x32\...\E94B1101-7675-4E37-9CB2-2E38A872154A) (Version: 8.6 - SOLDIS) Spotify (HKU\S-1-5-21-3932415501-2318436411-3286246222-1001\...\Spotify) (Version: 1.0.42.151.g19de0aa6 - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH) Transport Giant - Złota Edycja (HKLM-x32\...\{E3A64E20-EDA4-4B93-9176-FD3B4C7B085F}) (Version: 2.0 - ) Transport Giant (HKLM-x32\...\Transport Giant_is1) (Version: - ) Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{6DA2B636-698A-3294-BF4A-B5E11B238CDD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{8CCEA24C-51AE-3B71-9092-7D0C44DDA2DF}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{C3A57BB3-9AA6-3F6F-9395-6C062BDD5FC4}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{F6F09DD8-F39B-3A16-ADB9-C9E6B56903F9}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) WinDjView 2.1 (HKLM\...\WinDjView) (Version: 2.1 - Andrew Zhezherun) Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation) WinRAR 5.31 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) World of Tanks (HKU\S-1-5-21-3932415501-2318436411-3286246222-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-3932415501-2318436411-3286246222-1001_Classes\CLSID\{000D0E00-0000-0000-C000-000000000046}\localserver32 -> C:\Program Files\INTERsoft\ArCADia PLUS 10.1 PL\Icad.exe (ArCADiasoft Chudzik sp. j.) CustomCLSID: HKU\S-1-5-21-3932415501-2318436411-3286246222-1001_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3932415501-2318436411-3286246222-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3932415501-2318436411-3286246222-1001_Classes\CLSID\{314AC707-0C11-4B4C-8CB1-564B3EE6BE5F}\localserver32 -> C:\Program Files\INTERsoft\ArCADia PLUS 10.1 PL\Icad.exe (ArCADiasoft Chudzik sp. j.) CustomCLSID: HKU\S-1-5-21-3932415501-2318436411-3286246222-1001_Classes\CLSID\{49E0BE0A-39E0-4932-B7BE-F249D56ACD31}\InprocServer32 -> csp16.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-3932415501-2318436411-3286246222-1001_Classes\CLSID\{5370C727-1451-4700-A960-77630950AF6D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3932415501-2318436411-3286246222-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2016\pl-PL\acadficn.dll (Autodesk, Inc.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0D890DEA-F83A-4127-9DE7-D225C470B8FA} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-14] (Adobe Systems Incorporated) Task: {2135ECB4-10C7-4D62-B03E-3A7412A099FA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-02-12] (Piriform Ltd) Task: {566A3785-B43D-4453-8074-CC790D8F6BB8} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe Task: {5DFAAF1F-C8A2-4C82-AE54-A6EC00B8F3B6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-10-09] (Microsoft Corporation) Task: {5E2FA792-7B66-42DC-8421-DDDB564E3210} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated) Task: {7E86A552-B131-4D40-8C7F-FD51B28AB7D1} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2016-11-08] (Microsoft Corporation) Task: {949CCBA3-CD3B-4E3A-8D5F-672F6DBB5192} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS\AutoKMS.exe Task: {951C5FC1-C41D-4494-BF50-E85BE14674FA} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Brak pliku <==== UWAGA Task: {A7A29592-2C63-4095-9D99-831EFA5FD14D} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation) Task: {AA80C6FF-B90F-43E8-820E-970BE94442F3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-08] (Microsoft Corporation) Task: {D886305A-DCD4-42C3-AA92-5BC2A55E3A38} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-08] (Microsoft Corporation) Task: {E78DC76F-DEB0-4D97-A612-45508A49039E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-06] (Google Inc.) Task: {EFEE6934-1C83-48EA-BF4A-15A02710990A} - System32\Tasks\USER_ESRV_SVC_WILLAMETTE => Wscript.exe //B //NoLogo "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\task.vbs" Task: {F8B577CD-929A-488D-A751-599EB466FBF6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-06] (Google Inc.) Task: {FCA62B92-5EE3-4A8C-AACB-A9B330E0DDDB} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-10-23] (Realtek Semiconductor) Task: {FF9B8829-3C19-4D4C-B83C-8B618E72F92F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-10-09] (Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\kyzio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> %SNP% ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> %SNF% ==================== Załadowane moduły (filtrowane) ============== 2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-09-29 21:43 - 2016-09-15 18:25 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-07-08 13:53 - 2015-09-23 03:24 - 00242264 _____ () C:\ProgramData\MobileBrServ\mbbservice.exe 2016-06-08 18:04 - 2016-06-08 18:04 - 00117400 _____ () C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe 2016-09-29 21:43 - 2016-09-15 18:25 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll 2016-10-02 12:17 - 2016-10-02 12:17 - 00959168 _____ () C:\Users\kyzio\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64\ClientTelemetry.dll 2015-11-10 11:40 - 2016-05-10 09:50 - 00384496 _____ () C:\WINDOWS\system32\igfxTray.exe 2016-09-21 08:37 - 2016-09-07 05:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2016-11-08 22:35 - 2016-11-02 11:30 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2016-11-08 22:35 - 2016-11-02 11:21 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-11-08 22:35 - 2016-11-02 11:15 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-11-08 22:35 - 2016-11-02 11:14 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2016-11-08 22:35 - 2016-11-02 11:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-11-08 22:35 - 2016-11-02 11:17 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2016-11-19 20:05 - 2016-06-08 18:07 - 00458904 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv.exe 2016-11-19 20:05 - 2016-06-08 18:18 - 00709272 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_modeler.dll 2016-11-19 20:05 - 2016-06-08 18:17 - 00188568 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\foreground_window_input.dll 2016-11-19 20:05 - 2016-06-08 18:12 - 00416408 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe 2016-11-19 20:05 - 2016-06-08 18:15 - 00130712 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_process_input.dll 2016-11-19 20:05 - 2016-06-08 18:16 - 00025752 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_system_power_state_input.dll 2016-11-19 20:05 - 2016-06-08 18:16 - 00059544 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_quality_and_reliability_input.dll 2016-11-19 20:05 - 2016-06-08 18:16 - 00194712 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\acpi_battery_input.dll 2016-11-19 20:05 - 2016-06-08 18:17 - 00159896 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\sema_thermal_input.dll 2016-11-19 20:05 - 2016-06-08 18:17 - 00158360 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\wifi_input.dll 2016-11-19 20:05 - 2016-06-08 18:16 - 00050840 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\devices_use_input.dll 2016-11-19 20:05 - 2016-06-08 18:15 - 00032920 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_disktrace_input.dll 2016-11-17 17:29 - 2016-11-17 17:29 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2016-11-17 17:29 - 2016-11-17 17:29 - 00178688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2016-11-17 17:29 - 2016-11-17 17:29 - 41609728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2016-05-06 17:17 - 2016-07-01 07:39 - 00061968 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_Service-head.dll 2016-05-06 17:17 - 2016-07-01 07:39 - 00110608 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson0.dll 2016-11-19 22:21 - 2016-11-19 22:21 - 00275968 _____ () c:\program files (x86)\ferdispatufose\vihitiondalucknodifier.dll 2016-10-24 12:02 - 2016-10-26 20:53 - 02493440 _____ () C:\Program Files (x86)\Origin\libGLESv2.dll 2016-11-19 22:34 - 2016-11-19 22:34 - 40500224 _____ () C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll 2016-11-19 15:47 - 2016-11-08 21:29 - 01819240 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libglesv2.dll 2016-11-19 15:47 - 2016-11-08 21:29 - 00093288 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libegl.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) HKLM\...\.scr: Icad.load.scr => Notepad.exe "%1" <===== UWAGA HKU\S-1-5-21-3932415501-2318436411-3286246222-1001\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1" ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2015-10-30 08:24 - 2016-11-19 22:19 - 00001006 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 www.czzsyzgm.com 127.0.0.1 www.czzsyzxl.com 127.0.0.1 union.baidu2019.com ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-3932415501-2318436411-3286246222-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\kyzio\Pictures\tapety\Bridge-Wallpaper-1.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == HKLM\...\StartupApproved\Run: => "pac" HKLM\...\StartupApproved\Run32: => "ADSKAppManager" HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui" HKLM\...\StartupApproved\Run32: => "RzWizard" HKLM\...\StartupApproved\Run32: => "Autodesk Desktop App" HKU\S-1-5-21-3932415501-2318436411-3286246222-1001\...\StartupApproved\Run: => "Autodesk Sync" HKU\S-1-5-21-3932415501-2318436411-3286246222-1001\...\StartupApproved\Run: => "Akamai NetSession Interface" HKU\S-1-5-21-3932415501-2318436411-3286246222-1001\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-3932415501-2318436411-3286246222-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-3932415501-2318436411-3286246222-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-3932415501-2318436411-3286246222-1001\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-3932415501-2318436411-3286246222-1001\...\StartupApproved\Run: => "Spotify Web Helper" HKU\S-1-5-21-3932415501-2318436411-3286246222-1001\...\StartupApproved\Run: => "Steam" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{C3B3B759-1370-40B3-9A71-F12BBEBF718D}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe FirewallRules: [{8454F8A5-8DD5-44AD-9FCB-19209B9D6A88}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe FirewallRules: [{787A1FF3-5236-4417-83D3-032776BB4B49}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe FirewallRules: [{32EADF7A-CFA2-4BE9-84D4-1B66B954D3ED}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe FirewallRules: [{123004FE-278D-44BF-8F58-EADB6750AC74}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{B31AB3D4-0C52-45BB-835C-6E7970397ADC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [UDP Query User{C62B6A5A-3A80-490E-B055-B9B4CCAABE79}C:\users\kyzio\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kyzio\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{B7D14E07-DAE4-4DE4-BE02-00E1F815B4E5}C:\users\kyzio\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kyzio\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{4992DA61-8399-4D91-A2D1-F35AC2EA2F67}C:\users\kyzio\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kyzio\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{F592BD5E-9E1D-4695-AA2B-DD0C8522295A}C:\users\kyzio\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kyzio\appdata\roaming\spotify\spotify.exe FirewallRules: [{9AD6BC06-0444-418D-AFF6-D9D046AACEC4}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [UDP Query User{5694386A-9F9B-4945-AAA9-97EBD22E4A5C}C:\users\kyzio\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\kyzio\appdata\roaming\utorrent\utorrent.exe FirewallRules: [TCP Query User{C9D768D6-71CD-4359-A4B6-BA4DEA4311FC}C:\users\kyzio\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\kyzio\appdata\roaming\utorrent\utorrent.exe FirewallRules: [UDP Query User{A148A4C4-6A0F-460E-9307-43BCBDFC114E}C:\users\kyzio\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\kyzio\appdata\roaming\utorrent\utorrent.exe FirewallRules: [TCP Query User{D706F077-29E6-448F-A6F2-601FCE23007E}C:\users\kyzio\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\kyzio\appdata\roaming\utorrent\utorrent.exe FirewallRules: [UDP Query User{D274AFCE-D848-4308-AE10-F65A2176853C}C:\users\kyzio\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\kyzio\appdata\local\akamai\netsession_win.exe FirewallRules: [TCP Query User{A4D7E758-124E-4196-9323-BE9B544E7542}C:\users\kyzio\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\kyzio\appdata\local\akamai\netsession_win.exe FirewallRules: [{5E16835C-5E88-4078-A11A-883257617B69}] => (Allow) LPort=50248 FirewallRules: [UDP Query User{2A7495C7-AFF7-4161-AA89-0BE5AA14606B}C:\users\kyzio\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\kyzio\appdata\local\akamai\netsession_win.exe FirewallRules: [TCP Query User{CE192882-C78C-4806-BE01-0FC81A64F727}C:\users\kyzio\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\kyzio\appdata\local\akamai\netsession_win.exe FirewallRules: [{0D852066-A29C-492B-96AA-81CA29D81B37}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{C92F4D43-125F-4A5D-AF37-051F4FB92D90}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{107A1AF4-66D0-4A94-BB06-DA2199034187}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{9F341638-E85F-4833-9CFD-BDED758A0CC4}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{A41DFA4B-F33C-4AEE-9D68-B6F85EF17C95}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ConSim2015\ConSim2015.exe FirewallRules: [{C991B4B8-26DB-4E1E-B641-BEB5F4FD4322}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ConSim2015\ConSim2015.exe FirewallRules: [{445C483E-DEF8-4CD3-B7FE-E7F8FECC9797}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{2FD431C2-E417-4395-8C92-87C2D30385FE}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{9B1B21EA-03DF-46A4-BAC3-7B8538A7F50A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{86C2AC71-177D-444B-9CDE-3C969F357C6B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{16204F0E-001B-431D-BF66-121F5C1DA5C9}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{2F1A8C23-C299-46DE-A50C-630990621CBA}] => (Allow) LPort=53989 FirewallRules: [{836E733F-869C-493F-ABF3-1F29E972FA66}] => (Allow) LPort=5000 FirewallRules: [{564D16B8-B45B-44AB-BA5D-FA5ED19670E0}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe FirewallRules: [{EF244ACA-5718-472B-B4DF-C609AB42BF55}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe FirewallRules: [TCP Query User{443F5AB7-3D4A-40DF-8030-37D655CCE73C}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Allow) C:\program files (x86)\origin games\fifa 15\fifa15.exe FirewallRules: [UDP Query User{082D6D0F-0920-4C56-A3F7-7DD0EB37F265}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Allow) C:\program files (x86)\origin games\fifa 15\fifa15.exe FirewallRules: [{B08E86CA-C016-473B-A857-93C1E32D6D0D}] => (Block) C:\program files (x86)\origin games\fifa 15\fifa15.exe FirewallRules: [{274A2019-9A9C-49BA-90FB-2DDE541141AB}] => (Block) C:\program files (x86)\origin games\fifa 15\fifa15.exe FirewallRules: [TCP Query User{8BC84175-2C77-480A-A6A0-2CFAA77D02C0}C:\program files (x86)\come2down\games\call of duty\codmp.exe] => (Allow) C:\program files (x86)\come2down\games\call of duty\codmp.exe FirewallRules: [UDP Query User{0C903024-2ED1-4802-ACC2-FFD28250CB0A}C:\program files (x86)\come2down\games\call of duty\codmp.exe] => (Allow) C:\program files (x86)\come2down\games\call of duty\codmp.exe FirewallRules: [{71017EC6-42D9-4485-B83A-DD47763D9E65}] => (Allow) LPort=51222 FirewallRules: [{1D2CB718-74A2-4F60-AD6D-FB3360D41AB0}] => (Allow) LPort=5000 FirewallRules: [{87EA5B33-26A0-4701-87E5-7338D0ABA400}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{1B056468-0C7A-4873-8A8F-480F17E7742F}] => (Allow) C:\Users\kyzio\AppData\Local\Temp\is-H125G.tmp\download\MiniThunderPlatform.exe FirewallRules: [{AA5F6220-BE82-4CD0-9373-BE2AA780522E}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{A937F50A-CBD0-49F7-A269-06370CF116D0}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{38847BF5-0C77-45F3-A330-CFB51767C8DB}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{B400514C-F8C2-4218-BD18-1F91365EE081}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe ==================== Punkty Przywracania systemu ========================= 08-11-2016 23:52:42 Windows Update 18-11-2016 16:43:21 Zaplanowany punkt kontrolny 19-11-2016 19:30:26 Removed FARO LS 1.1.501.0 (64bit) ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (11/19/2016 10:25:37 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Błąd w pliku manifestu lub w pliku zasad "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" w wierszu 1. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0". Definicja to UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (11/19/2016 10:24:07 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "c:\program files\autodesk\revit 2017\FaroImporter.exe". Nie można odnaleźć zestawu zależnego FARO.LS,processorArchitecture="x86",publicKeyToken="1d23f5635ba800ab",type="win32",version="1.1.408.2". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (11/19/2016 10:23:46 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "c:\program files\autodesk\revit 2017\FaroImporter.exe". Nie można odnaleźć zestawu zależnego FARO.LS,processorArchitecture="x86",publicKeyToken="1d23f5635ba800ab",type="win32",version="1.1.408.2". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (11/19/2016 10:23:45 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "c:\program files\autodesk\revit 2017\FaroImporter.exe". Nie można odnaleźć zestawu zależnego FARO.LS,processorArchitecture="x86",publicKeyToken="1d23f5635ba800ab",type="win32",version="1.1.408.2". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (11/19/2016 10:23:37 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "c:\program files\autodesk\revit 2017\FaroImporter.exe". Nie można odnaleźć zestawu zależnego FARO.LS,processorArchitecture="x86",publicKeyToken="1d23f5635ba800ab",type="win32",version="1.1.408.2". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (11/19/2016 10:23:04 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Błąd w pliku manifestu lub w pliku zasad "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" w wierszu 1. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0". Definicja to UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (11/19/2016 10:22:39 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Błąd w pliku manifestu lub w pliku zasad "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" w wierszu 1. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0". Definicja to UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (11/19/2016 10:22:36 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Błąd w pliku manifestu lub w pliku zasad "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" w wierszu 1. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0". Definicja to UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (11/19/2016 10:21:02 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Błąd w pliku manifestu lub w pliku zasad "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" w wierszu 1. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0". Definicja to UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (11/19/2016 10:20:30 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "c:\program files\autodesk\revit 2017\FaroImporter.exe". Nie można odnaleźć zestawu zależnego FARO.LS,processorArchitecture="x86",publicKeyToken="1d23f5635ba800ab",type="win32",version="1.1.408.2". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Dziennik System: ============= Error: (11/19/2016 11:14:52 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} i identyfikatorem aplikacji APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} użytkownikowi ZARZĄDZANIE NT\SYSTEM o identyfikatorze zabezpieczeń SID (S-1-5-18) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (11/19/2016 11:13:29 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił następujący błąd: Odmowa dostępu. . Error: (11/19/2016 11:13:19 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił następujący błąd: Odmowa dostępu. . Error: (11/19/2016 11:12:58 PM) (Source: Microsoft-Windows-EnhancedStorage-EhStorTcgDrv) (EventID: 10) (User: ZARZĄDZANIE NT) Description: A TCG Command has returned an error. Desc: AuthenticateSession Param1: 0x1 Param2: 0x60000001c Param3: 0x900000006 Param4: 0x0 Status: 0x12 Error: (11/19/2016 11:12:45 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił następujący błąd: Odmowa dostępu. . Error: (11/19/2016 11:12:30 PM) (Source: Service Control Manager) (EventID: 7032) (User: ) Description: Menedżer sterowania usługami próbował podjąć akcję korekcyjną (Uruchom usługę ponownie) po nieoczekiwanym zakończeniu usługi Windows Search, ale ta akcja nie powiodła się przy następującym błędzie: Jedno wystąpienie usługi już działa. . Error: (11/19/2016 11:12:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Energy Server Service WILLAMETTE niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (11/19/2016 11:12:00 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Windows Search niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (11/19/2016 11:12:00 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Usługa buforowania czcionek platformy Windows Presentation Foundation, wersja 3.0.0.0 niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 0 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (11/19/2016 11:11:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Razer Wizard Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. CodeIntegrity: =================================== Date: 2016-09-30 23:00:20.955 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-09-23 15:41:58.326 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-09-18 12:33:57.053 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-09-04 13:18:16.397 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-08-31 11:19:31.000 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-08-27 18:53:07.121 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz Procent pamięci w użyciu: 27% Całkowita pamięć fizyczna: 8102.61 MB Dostępna pamięć fizyczna: 5851.84 MB Całkowita pamięć wirtualna: 9382.61 MB Dostępna pamięć wirtualna: 7132.2 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:232.33 GB) (Free:76.97 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 232.9 GB) (Disk ID: 01859718) Partition: GPT. ==================== Koniec Addition.txt ============================