Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 17-04-2017 01 Uruchomiony przez jjcie (17-04-2017 19:41:36) Uruchomiony z C:\Users\jjcie\Downloads Windows 10 Home Wersja 1607 (X64) (2017-03-21 20:30:35) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-4259783707-2282555008-1561178269-500 - Administrator - Disabled) defaultuser0 (S-1-5-21-4259783707-2282555008-1561178269-1000 - Limited - Disabled) => C:\Users\defaultuser0 Gość (S-1-5-21-4259783707-2282555008-1561178269-501 - Limited - Disabled) jjcie (S-1-5-21-4259783707-2282555008-1561178269-1001 - Administrator - Enabled) => C:\Users\jjcie Konto domyślne (S-1-5-21-4259783707-2282555008-1561178269-503 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AV: McAfee VirusScan (Enabled - Up to date) {8BCDACFA-D264-3528-5EF8-E94FD0BC1FBC} AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: McAfee VirusScan (Enabled - Up to date) {30AC4D1E-F45E-3AA6-6448-D23DAB3B5501} FW: McAfee Firewall (Enabled) {B3F62DDF-980B-3470-75A7-407A2E6F58C7} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-4259783707-2282555008-1561178269-1001\...\uTorrent) (Version: 3.5.0.43580 - BitTorrent Inc.) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated) Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.127 - Adobe Systems Incorporated) Aktualizacje NVIDIA 23.23.30.0 (Version: 23.23.30.0 - NVIDIA Corporation) Hidden Ansel (Version: 378.92 - NVIDIA Corporation) Hidden Aplikacja Blizzard (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Aslain's WoT Modpack (wersja 9.17.1.35) (HKLM-x32\...\Aslains_WoT_Modpack_Installer_is1) (Version: 9.17.1.35 - Aslain) BayHubTech Flash Memory Card Windows Driver (HKLM-x32\...\InstallShield_{357682C3-2295-45C5-B7DD-8109E66656EC}) (Version: 3.4.00.30 - BayHub Technology LTD.) BayHubTech Flash Memory Card Windows Driver (Version: 3.4.00.30 - BayHub Technology LTD.) Hidden CCSDK Customer Engagement Service (HKLM-x32\...\{AE75190B-11B4-4F90-8254-DAB275CF2557}_is1) (Version: 1.3.0.3 - Lenovo) Cheat Engine 6.6 (HKLM-x32\...\Cheat Engine 6.6_is1) (Version: - Cheat Engine) Chivalry: Medieval Warfare (HKLM\...\Steam App 219640) (Version: - Torn Banner Studios) CodeBlocks (HKU\S-1-5-21-4259783707-2282555008-1561178269-1001\...\CodeBlocks) (Version: 16.01 - The Code::Blocks Team) Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve) Crusader Kings II (HKLM\...\Steam App 203770) (Version: - Paradox Development Studio) Crusader.Kings.II.v2.7.Incl.Monks.and.Mystics.DLC wersja 2.7 (HKLM-x32\...\{A76B8064-E349-40A7-A257-FE0DC6CA7908}}_is1) (Version: 2.7 - Ali213.net) CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.6812 - CyberLink Corp.) CyberLink PowerDVD 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.1.6408 - CyberLink Corp.) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0230 - Disc Soft Ltd) Discord (HKU\S-1-5-21-4259783707-2282555008-1561178269-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.) Dolby Audio X2 Windows API SDK (HKLM\...\{AA950AA4-CD9B-4D81-B6C0-BFABB7A24261}) (Version: 0.7.5.65 - Dolby Laboratories, Inc.) Dolby Audio X2 Windows APP (HKLM\...\{D765CF7F-14F9-4C80-B06C-10E68F10EBCC}) (Version: 0.7.2.62 - Dolby Laboratories, Inc.) Europa Universalis IV (HKLM\...\Steam App 236850) (Version: - Paradox Development Studio) EVE Online (HKU\S-1-5-21-4259783707-2282555008-1561178269-1001\...\{8a4485fd-5094-4832-8517-85972f88debe}) (Version: 1.0.0 - CCP) Gaming Mouse (HKLM-x32\...\{A7B243AA-6D4C-4575-A873-6F01A1EFC5E2}}_is1) (Version: - ) GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Gwent (0.8.72.1) (HKLM-x32\...\1971477531_is1) (Version: 0.1.1.318 - GOG.com) Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) Hearts of Iron IV version Hearts of Iron IV (HKLM-x32\...\Hearts of Iron IV_is1) (Version: Hearts of Iron IV - ) Innkeeper (HKU\S-1-5-21-4259783707-2282555008-1561178269-1001\...\Innkeeper) (Version: 0.4.3 - Curse Inc.) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1177 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4474 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.0.1042 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{2D99FCC8-CC4E-4ECC-8BD0-E76896DE73FB}) (Version: 19.00.1621.3340 - Intel Corporation) Intel® RealSense™ Depth Camera Manager Beta (x86): dptf_com (x32 Version: 2.2.0.52404 - Intel Corporation) Hidden Intel® RealSense™ Depth Camera Manager F200 Gold (x86): Intel® RealSense™ 3D camera IO module (x32 Version: 1.4.27.52404 - Intel Corporation) Hidden Intel® RealSense™ Depth Camera Manager F200 Gold (x86): Intel® RealSense™ Depth Camera Manager Service (x32 Version: 1.4.27.52404 - Intel Corporation) Hidden Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation) League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games) League of Legends (x32 Version: 4.2.1 - Riot Games) Hidden Lenovo App Explorer (HKU\S-1-5-21-4259783707-2282555008-1561178269-1001\...\Host App Service) (Version: 0.272.1.559 - SweetLabs for Lenovo) Lenovo Nerve Sense (HKLM\...\{DCB4DFB5-93CA-4BDD-9D08-CE880626B46E}_is1) (Version: 2.1.13.12 - Lenovo) Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.4706 - CyberLink Corp.) Lenovo OneKey Recovery (Version: 8.1.0.4706 - CyberLink Corp.) Hidden Lenovo Photo Master (HKLM-x32\...\{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 2.5.5720.01 - CyberLink Corp.) Lenovo Product Demo (HKLM-x32\...\{AF211959-175F-4052-8404-DD0FDBB3540B}) (Version: 1.0.5 - Lenovo) Lenovo System Interface Foundation (HKLM\...\{C2E5CA37-C862-4A69-AC6D-24F450A20C16}) (Version: 1.0.071.04 - Lenovo) LenovoUtility (HKLM-x32\...\InstallShield_{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}) (Version: 3.0.0.4 - Lenovo) LenovoUtility (x32 Version: 3.0.0.4 - Lenovo) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.558 - LogMeIn, Inc.) LogMeIn Hamachi (x32 Version: 2.2.0.558 - LogMeIn, Inc.) Hidden Malwarebytes (wersja 3.0.6.1469) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes) McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 14.0 R13 - McAfee, Inc.) Menedżer kamery z technologią wykrywania głębi Intel® RealSense™ F200 (HKLM-x32\...\ARP_for_prd_dcm_runtime_1.4.27.52404) (Version: 1.4.27.52404 - Intel Corporation) Microsoft Office 365 - pl-pl (HKLM\...\O365HomePremRetail - pl-pl) (Version: 16.0.7870.2031 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-4259783707-2282555008-1561178269-1001\...\OneDriveSetup.exe) (Version: 17.3.6798.0207 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation) Microsoft Visual Studio 2017 (HKLM-x32\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.5.30308.1 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Mozilla Firefox 52.0.2 (x86 pl) (HKLM-x32\...\Mozilla Firefox 52.0.2 (x86 pl)) (Version: 52.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.2.6291 - Mozilla) MsmPackage (x32 Version: 1.00.0000 - lenovo) Hidden Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.3.3 - Notepad++ Team) NVIDIA GeForce Experience 3.4.0.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.4.0.70 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 378.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 378.92 - NVIDIA Corporation) NVIDIA Sterownik graficzny 378.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 378.92 - NVIDIA Corporation) NvNodejs (Version: 3.4.0.70 - NVIDIA Corporation) Hidden NvTelemetry (Version: 2.3.16.0 - NVIDIA Corporation) Hidden NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7870.2024 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7668.2066 - Microsoft Corporation) Hidden Oprogramowanie Intel® PROSet/Wireless (HKLM-x32\...\{bc883058-299e-461f-8e52-4f1dbb355f86}) (Version: 19.0.1 - Intel Corporation) Oprogramowanie mikroukładu Intel® (x32 Version: 10.1.1.13 - Intel(R) Corporation) Hidden Panel sterowania NVIDIA 378.92 (Version: 378.92 - NVIDIA Corporation) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.9.422.2016 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8023 - Realtek Semiconductor Corp.) SHIELD Streaming (Version: 7.1.0351 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 3.4.0.70 - NVIDIA Corporation) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKU\S-1-5-21-4259783707-2282555008-1561178269-1001\...\TeamSpeak 3 Client) (Version: 3.1.2 - TeamSpeak Systems GmbH) The Witcher 3 - Wild Hunt (HKLM-x32\...\1495134320_is1) (Version: 2.0.0.51 - GOG.com) Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.0a - Ghisler Software GmbH) Total War: WARHAMMER (HKLM\...\Steam App 364360) (Version: - Creative Assembly) vs_filehandler_amd64 (x32 Version: 15.0.26228 - Microsoft Corporation) Hidden vs_filehandler_x86 (x32 Version: 15.0.26228 - Microsoft Corporation) Hidden vs_FileTracker_Singleton (x32 Version: 15.0.26208 - Microsoft Corporation) Hidden vs_minshellmsi (x32 Version: 15.0.26228 - Microsoft Corporation) Hidden Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.) WinDirStat 1.1.2 (HKU\S-1-5-21-4259783707-2282555008-1561178269-1001\...\WinDirStat) (Version: - ) Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation) WinRAR 5.40 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) World of Tanks (HKU\S-1-5-21-4259783707-2282555008-1561178269-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net) XAMPP (HKLM-x32\...\xampp) (Version: 5.6.30-0 - Bitnami) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-4259783707-2282555008-1561178269-1001_Classes\CLSID\{cece6816-6107-4dc7-bdbc-20cd5ae1ffed}\localserver32 -> C:\ProgramData\Lenovo\ImController\Plugins\LenovoAppPromotionPlugin\x64\DesktopToastsHelper.exe (Lenovo Group Limited) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {021616B5-B8E1-4D73-BEE7-5CAFC252974A} - System32\Tasks\Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\Logon => C:\Windows\system32\UNP\UNPUXLauncher.exe [2017-04-02] (Microsoft Corporation) Task: {02627C70-1BBC-4F70-812C-3B88337990CF} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32 Task: {05B9F04F-3A81-40F7-8E73-A170DF48A423} - System32\Tasks\PDVDServ14 Task => C:\Program Files (x86)\CyberLink\PowerDVD14\PDVD14Serv.exe [2016-04-08] (CyberLink Corp.) Task: {13C7AFD2-4C75-4722-A3FD-E909AD521C61} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\lenovo\Power2Go\CLMLSvc_P2G8.exe [2016-08-12] (CyberLink) Task: {1B04974D-02BA-4408-A870-B4EF3A48DC16} - System32\Tasks\CyberLink\Photo Master Gadget startup => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe [2016-09-22] (CyberLink Corp.) Task: {1E98F993-5334-40DA-BED9-4E019F5E55EA} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-02-23] (NVIDIA Corporation) Task: {31F9F36A-C94B-4504-81D3-E754B34BEAD7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-02-23] (NVIDIA Corporation) Task: {35ADFAB6-2C38-497D-8FFB-77A28BA6D280} - System32\Tasks\App Explorer => C:\Users\jjcie\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [2016-11-08] (SweetLabs, Inc) Task: {43FAE44E-B437-4340-81CC-E7E173BC3F8F} - System32\Tasks\Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\OnIdle => C:\Windows\system32\UNP\UNPUXLauncher.exe [2017-04-02] (Microsoft Corporation) Task: {46C822CC-FFEA-438E-844B-7752596F6B8B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-02-23] (NVIDIA Corporation) Task: {5FB956EC-DF4F-42B1-89E4-0E6CB0508E72} - System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.50.1291.1\mcdatrep.exe [2017-03-24] (McAfee, Inc.) Task: {63602FE4-06F4-4336-9A84-CB985A1F9D49} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-26] (Microsoft Corporation) Task: {676EA7FA-0296-439E-8116-4AE0E68B2606} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-02-23] (NVIDIA Corporation) Task: {6E582342-0724-4F05-AFAA-7534F4DA0159} - System32\Tasks\Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\RunCampaignManager2 => C:\Windows\system32\UNP\UNPCampaignManager.exe [2017-04-02] (Microsoft Corporation) Task: {715E06D3-ABB3-4D2D-ACD3-74EDE1B6A714} - \Microsoft\Windows\Media Center\RegisterObject -> Brak pliku <==== UWAGA Task: {79A5A0EC-3AA4-4F56-8A6B-B8B45665D981} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent Task: {7B5DB956-4AD3-40FB-B7AD-75B03BD085C2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-02-02] (Adobe Systems Incorporated) Task: {7D0BE186-42F6-4E8C-A213-BC4814FF72CA} - System32\Tasks\Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\Unlock => C:\Windows\system32\UNP\UNPUXLauncher.exe [2017-04-02] (Microsoft Corporation) Task: {A5EA762B-9505-496A-9783-71ACD7964D46} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\11674997-1cdc-4b05-874f-2072aeea07c3 => powershell.exe -nologo -noninteractive "& {New-Item -Path Registry::HKCU\Software\Lenovo\ImController\ScheduledTasks\11674997-1cdc-4b05-874f-2072aeea07c3 -type directory -force;$conter=Get-Date;$conter=$conter.ToUniversalTime();Set-ItemProperty -Path Registry::HKCU\Software\Lenovo\ImController\ScheduledTasks\1 (dane wartości zawierają 73 znaków więcej). Task: {AB0A5E93-1EA0-40A1-A433-BFDAE6AC7300} - System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.50.1291.1\mcdatrep.exe [2017-03-24] (McAfee, Inc.) Task: {B5AD0683-BA1B-480C-8E25-1453E09AC3D5} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\cc6967e8-7252-4847-a78a-d1fde0b06b43 => powershell.exe -nologo -noninteractive "& {New-Item -Path Registry::HKCU\Software\Lenovo\ImController\ScheduledTasks\cc6967e8-7252-4847-a78a-d1fde0b06b43 -type directory -force;$conter=Get-Date;$conter=$conter.ToUniversalTime();Set-ItemProperty -Path Registry::HKCU\Software\Lenovo\ImController\ScheduledTasks\c (dane wartości zawierają 73 znaków więcej). Task: {B5BEC476-13DD-4044-A62B-F0C4503F02C0} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-02-23] (NVIDIA Corporation) Task: {BEF88D9B-28C0-46F6-B354-4AA8AD03A8A8} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-02-23] (NVIDIA Corporation) Task: {CA718910-6ECC-4DD8-BF77-04C840C25724} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-26] (Microsoft Corporation) Task: {D5E96A68-D752-466D-850A-DEA373E54E17} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\lenovo\Power2Go\CLVDLauncher.exe [2015-07-06] (CyberLink Corp.) Task: {D7979D70-C886-48A9-BB3B-1E83981F41A5} - System32\Tasks\Microsoft\Windows\UNP\RunCampaignManager => C:\Windows\System32\UNP\UNPCampaignManager.exe [2017-04-02] (Microsoft Corporation) Task: {E1517977-136A-4A8B-ADDA-4FEBB9632710} - System32\Tasks\McAfee\McAfee Idle Detection Task Task: {EBDE470A-0BE4-4A6F-B93E-F97793089602} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\ada9f557-bfdb-4503-bc76-e8c9949ccfb2 => powershell.exe -nologo -noninteractive "& {New-Item -Path Registry::HKCU\Software\Lenovo\ImController\ScheduledTasks\ada9f557-bfdb-4503-bc76-e8c9949ccfb2 -type directory -force;$conter=Get-Date;$conter=$conter.ToUniversalTime();Set-ItemProperty -Path Registry::HKCU\Software\Lenovo\ImController\ScheduledTasks\a (dane wartości zawierają 73 znaków więcej). Task: {F0456745-8954-41E2-B772-5D41DDF6B6F6} - System32\Tasks\DiagnosticTask => C:\Users\jjcie\AppData\Roaming\Crusader.Kings.II.v2.7.Incl.Monks.and.Mystics.DLC\tkxna.exe Task: {F3CD5CA1-0EE7-4BD7-A014-472978B3BB5A} - System32\Tasks\Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\Time => C:\Windows\system32\UNP\UNPUXLauncher.exe [2017-04-02] (Microsoft Corporation) Task: {F5000D3B-6F21-402A-8126-CFE59647E294} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-02-23] (NVIDIA Corporation) Task: {F6A8ED96-47CB-4ACF-AB10-164D83EAC08E} - System32\Tasks\Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\OutOfIdle => C:\Windows\system32\UNP\UNPUXLauncher.exe [2017-04-02] (Microsoft Corporation) Task: {F943E8E3-A597-4796-84F4-813A393226E1} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => Sc.exe START ImControllerService Task: {FD6E0BD1-343C-43B4-B8B7-6DACB80A0E2C} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\platform\McUICnt.exe [2017-02-22] (McAfee, Inc.) Task: {FFB5886D-F9D9-40EA-A2B5-E48C0B8A9138} - System32\Tasks\Nvbackend_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) Shortcut: C:\Users\jjcie\Desktop\Wоrld оf Tanks.lnk -> C:\Users\jjcie\AppData\Roaming\Browsers\exe.rehcnualtow.bat (Brak pliku) <===== Cyrillic Shortcut: C:\Users\jjcie\Desktop\ЕVE Lаuncher.lnk -> C:\Users\jjcie\AppData\Roaming\Browsers\exe.rehcnualeve.bat (Brak pliku) <===== Cyrillic Shortcut: C:\Users\jjcie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks\Wоrld of Tаnks.lnk -> C:\Users\jjcie\AppData\Roaming\Browsers\exe.rehcnualtow.bat (Brak pliku) <===== Cyrillic Shortcut: C:\Users\jjcie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EVE Launcher\ЕVE Launсhеr.lnk -> C:\Users\jjcie\AppData\Roaming\Browsers\exe.rehcnualeve.bat (Brak pliku) <===== Cyrillic Shortcut: C:\Users\jjcie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeBlocks\СоdeBlоcks (Lаunchеr).lnk -> C:\Users\jjcie\AppData\Roaming\Browsers\exe.rehcnualbc.bat (Brak pliku) <===== Cyrillic Shortcut: C:\Users\jjcie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Intеrnet Ехplоrer.lnk -> C:\Users\jjcie\AppData\Roaming\Browsers\exe.erolpxei.bat (Brak pliku) <===== Cyrillic Shortcut: C:\Users\jjcie\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Мozilla Firefoх.lnk -> C:\Users\jjcie\AppData\Roaming\Browsers\exe.xoferif.bat (Brak pliku) <===== Cyrillic Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Мozilla Firefох.lnk -> C:\Users\jjcie\AppData\Roaming\Browsers\exe.xoferif.bat (Brak pliku) <===== Cyrillic Shortcut: C:\Users\Public\Desktop\Арlikacjа Вlizzard.lnk -> C:\Users\jjcie\AppData\Roaming\Browsers\exe.rehcnual ten.elttab.bat (Brak pliku) <===== Cyrillic Shortcut: C:\Users\Public\Desktop\Мinecrаft.lnk -> C:\Users\jjcie\AppData\Roaming\Browsers\exe.rehcnualtfarcenim.bat (Brak pliku) <===== Cyrillic Shortcut: C:\Users\Public\Desktop\Нeаrthstonе.lnk -> C:\Users\jjcie\AppData\Roaming\Browsers\exe.rehcnual ateb enotshtraeh.bat (Brak pliku) <===== Cyrillic ==================== Załadowane moduły (filtrowane) ============== 2017-03-25 11:09 - 2017-02-23 20:36 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll 2017-03-25 11:09 - 2017-02-23 20:36 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-09-19 05:02 - 2016-09-19 05:02 - 00163336 _____ () C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe 2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\Windows\SYSTEM32\ism32k.dll 2017-04-11 19:59 - 2017-03-28 08:22 - 02681200 _____ () C:\Windows\System32\CoreUIComponents.dll 2016-11-09 18:42 - 2017-03-17 01:16 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2017-04-11 19:59 - 2017-03-28 08:22 - 02681200 _____ () C:\Windows\system32\CoreUIComponents.dll 2017-04-11 19:59 - 2017-03-28 08:22 - 02681200 _____ () C:\Windows\SYSTEM32\CoreUIComponents.dll 2017-03-08 04:42 - 2017-03-08 04:42 - 00230064 _____ () E:\Notepad++\NppShell_06.dll 2017-03-22 15:12 - 2016-09-07 06:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2017-03-22 15:11 - 2017-03-04 08:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2017-03-22 15:12 - 2017-03-04 08:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-03-22 15:12 - 2017-03-04 08:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-03-22 15:11 - 2017-03-04 08:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2017-04-11 19:59 - 2017-03-28 07:08 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2017-04-11 19:59 - 2017-03-28 07:11 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2017-04-10 09:24 - 2017-04-10 09:24 - 00077312 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.13.133.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2017-04-10 09:24 - 2017-04-10 09:24 - 00189952 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.13.133.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2017-04-10 09:24 - 2017-04-10 09:24 - 42507264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.13.133.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2017-04-10 09:24 - 2017-04-10 09:24 - 02334184 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.13.133.0_x64__kzf8qxf38zg5c\skypert.dll 2016-11-09 18:04 - 2016-12-07 17:41 - 00141664 _____ () C:\Program Files\Lenovo\Nerve Center\bin\x64\Xmlparser.dll 2016-11-09 18:13 - 2016-11-09 18:13 - 00791848 _____ () C:\Program Files\Lenovo\LenovoUtility\utility.exe 2016-11-09 18:13 - 2016-11-09 18:13 - 00097048 _____ () C:\Program Files\Lenovo\LenovoUtility\kbdhook.dll 2016-06-24 02:33 - 2016-06-24 02:33 - 00829632 _____ () C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe 2016-11-09 18:05 - 2016-12-07 17:42 - 00031072 _____ () C:\Program Files\Lenovo\Nerve Center\bin\x64\res_PL_Polish_POL.dll 2016-11-09 18:05 - 2016-12-07 17:42 - 02783072 _____ () C:\Program Files\Lenovo\Nerve Center\bin\x64\res_UI_OEB.dll 2016-11-09 18:05 - 2016-12-07 17:42 - 01190240 _____ () C:\Program Files\Lenovo\Nerve Center\bin\x64\res_UI.dll 2017-04-17 19:24 - 2017-03-22 10:24 - 02271520 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll 2017-04-17 19:24 - 2017-03-23 19:40 - 02267600 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll 2017-04-17 19:35 - 2017-04-17 19:35 - 00380928 _____ () C:\Users\jjcie\Downloads\udmezit1.exe 2016-11-09 18:13 - 2015-02-12 17:02 - 00224696 _____ () C:\Program Files (x86)\Lenovo\CCSDK\SDKClient.dll 2017-03-25 11:09 - 2017-02-23 20:36 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2017-03-25 11:09 - 2017-02-23 20:36 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll 2017-03-25 11:09 - 2017-02-23 20:36 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-03-25 11:09 - 2017-02-23 20:35 - 65708992 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll 2017-03-25 11:09 - 2017-02-23 16:30 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node 2017-03-25 11:09 - 2017-02-23 16:30 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node 2017-03-25 11:09 - 2017-02-23 16:30 - 02443320 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node 2017-03-25 11:09 - 2017-02-23 16:30 - 00385592 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node 2017-03-25 11:09 - 2017-02-23 16:30 - 00543288 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node 2017-03-25 11:09 - 2017-02-23 16:30 - 00468536 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node 2017-03-21 22:45 - 2017-01-04 15:28 - 01958912 _____ () C:\Users\jjcie\AppData\Local\Discord\app-0.0.297\ffmpeg.dll 2017-03-21 22:45 - 2017-03-21 22:45 - 01082880 _____ () \\?\C:\Users\jjcie\AppData\Roaming\discord\0.0.297\modules\discord_voice\discord_voice.node 2017-03-21 22:45 - 2017-03-21 22:45 - 03750400 _____ () \\?\C:\Users\jjcie\AppData\Roaming\discord\0.0.297\modules\discord_voice\libdiscord.dll 2017-03-21 22:45 - 2017-03-21 22:45 - 00914432 _____ () \\?\C:\Users\jjcie\AppData\Roaming\discord\0.0.297\modules\discord_utils\discord_utils.node 2017-03-21 22:45 - 2017-03-21 22:45 - 01127424 _____ () \\?\C:\Users\jjcie\AppData\Roaming\discord\0.0.297\modules\discord_toaster\discord_toaster.node 2017-03-21 22:45 - 2017-01-04 15:28 - 02278912 _____ () C:\Users\jjcie\AppData\Local\Discord\app-0.0.297\libglesv2.dll 2017-03-21 22:45 - 2017-01-04 15:28 - 00096768 _____ () C:\Users\jjcie\AppData\Local\Discord\app-0.0.297\libegl.dll 2017-04-17 10:17 - 2017-04-17 10:17 - 00148992 _____ () \\?\C:\Users\jjcie\AppData\Local\Temp\8AB4.tmp.node 2017-03-21 22:45 - 2017-03-21 22:45 - 02658304 _____ () \\?\C:\Users\jjcie\AppData\Roaming\discord\0.0.297\modules\discord_rpc\discord_rpc.node 2017-03-21 22:46 - 2017-03-22 21:05 - 02665976 _____ () \\?\C:\Users\jjcie\AppData\Roaming\discord\0.0.297\modules\discord_contact_import\discord_contact_import.node 2016-11-09 18:17 - 2015-07-06 12:01 - 00627672 _____ () C:\Program Files (x86)\lenovo\Power2Go\CLMediaLibrary.dll 2015-07-06 19:01 - 2015-07-06 19:01 - 00016856 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvcPS.dll 2017-03-21 22:45 - 2016-12-07 17:40 - 01904480 _____ () C:\Program Files\Lenovo\Nerve Center\bin\x86\GameRecorderApi.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ModuleCoreService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ModuleCoreService => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2016-07-16 13:47 - 2017-04-15 08:27 - 00000822 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-4259783707-2282555008-1561178269-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\jjcie\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img13.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == HKLM\...\StartupApproved\Run32: => "Discord" HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui" HKLM\...\StartupApproved\Run32: => "GamingMouse" HKU\S-1-5-21-4259783707-2282555008-1561178269-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-4259783707-2282555008-1561178269-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-4259783707-2282555008-1561178269-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-4259783707-2282555008-1561178269-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-4259783707-2282555008-1561178269-1001\...\StartupApproved\Run: => "GalaxyClient" HKU\S-1-5-21-4259783707-2282555008-1561178269-1001\...\StartupApproved\Run: => "World of Tanks" HKU\S-1-5-21-4259783707-2282555008-1561178269-1001\...\StartupApproved\Run: => "Innkeeper" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{85ACFF5A-8F9A-47DE-BFFE-516E3D4C1B56}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe FirewallRules: [{C4B48E3C-71A5-48CF-8A5E-1CE88F48646D}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe FirewallRules: [{2AFDB88F-2E97-4C75-BD62-7164812470A7}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe FirewallRules: [{FF5AC769-EB1C-4CF7-AD35-E4F4DCF8AF59}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe FirewallRules: [{7CB9C12E-681C-4384-9092-99605C8A6B98}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe FirewallRules: [{EF478BE7-A844-416F-9B45-09FDAF53975B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{C0928C1C-9B71-4095-A1BB-334C07E5960F}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe FirewallRules: [{39D05B52-4870-4ED7-82A7-91D3F1E5914A}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{82F2D498-F4A1-4F2F-B72F-2BE8A74A1C7B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{5403CA2B-786C-4ABA-B49B-0AF0535538A1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{C553C371-BB26-4467-86F4-A4148DA7C7C9}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{5E9A57E8-1200-43E6-8A09-6ABC43DD7042}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{F00D2436-8A0B-4034-A175-16C6E3270A52}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{DAB797EF-2172-4E17-AAA1-0D269396CB15}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{C468C3F5-D56B-48CF-9346-48EFCF378518}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{3B0238FB-1F82-4323-858B-A15BF503C033}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{8EDB25C8-2E0D-4F74-B7CB-F1A70E318609}] => (Allow) D:\Steam\steamapps\common\Crusader Kings II\CK2game.exe FirewallRules: [{E47ED3AB-28CC-4991-BEDC-7AEBEB538770}] => (Allow) D:\Steam\steamapps\common\Crusader Kings II\CK2game.exe FirewallRules: [{536BDA62-9183-4FCA-980D-677CC2E771C4}] => (Allow) D:\Steam\steamapps\common\Europa Universalis IV\eu4.exe FirewallRules: [{6509CAEC-0672-4448-A24B-3553ABC14D39}] => (Allow) D:\Steam\steamapps\common\Europa Universalis IV\eu4.exe FirewallRules: [{C007CFA6-DD24-4C09-A29A-56B3761CE021}] => (Allow) C:\Users\jjcie\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{91CBF5B2-0D01-4898-BF3B-4D96B175AFFB}] => (Allow) C:\Users\jjcie\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{CDC74ECF-7782-407F-80CC-2D071C714861}] => (Allow) C:\Users\jjcie\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{8F7EF4AF-C0B4-459D-B636-50830F45284F}] => (Allow) C:\Users\jjcie\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D9E2ABAA-47F1-4A3C-8FF8-1E35F8A6A237}] => (Allow) C:\Users\jjcie\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{BE1574AA-BF71-4CA1-A27E-1D6054EEA0DB}] => (Allow) C:\Users\jjcie\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{2A9BD51F-966B-4047-8E43-6FE30BC1E996}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{11A6C8C9-F9C4-4F35-99F7-3C7F480E1DB2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{6F62A375-2EBC-4215-BC6D-578088F5C2B5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{EE484685-6519-49D9-AED7-7C8DF9E4DEE4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{59EFDA43-790C-4EBB-B49B-880980D74224}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{E7814907-265F-412E-96DF-09B1CB0037E1}] => (Allow) D:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe FirewallRules: [{D18FF6AC-0A4E-4BB4-9333-533BBDA4A199}] => (Allow) D:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe FirewallRules: [{D6337F53-8CDE-4306-B6FD-BC2A60592E79}] => (Allow) D:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe FirewallRules: [{248F9401-489C-4E75-B198-9320C9BA7509}] => (Allow) D:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe FirewallRules: [{F5B1ADCB-2C21-49EE-B093-26D9CB8F504D}] => (Allow) D:\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe FirewallRules: [{DBEB1A8B-06BA-4AB1-953C-99A732E740F5}] => (Allow) D:\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe FirewallRules: [{8554DA95-8E92-4C06-AB1F-414275DCB5EF}] => (Allow) D:\Steam\steamapps\common\Total War WARHAMMER\launcher\launcher.exe FirewallRules: [{5183AA70-F1D5-443F-B2C8-8FF9B04BFCE9}] => (Allow) D:\Steam\steamapps\common\Total War WARHAMMER\launcher\launcher.exe FirewallRules: [{D434CC57-5449-4488-B40F-E16D1AE4CCC1}] => (Allow) D:\Gry\World_Of_Tanks\WoTLauncher.exe FirewallRules: [{FFABBBF7-8FE4-463D-9DC6-BA529BF96C83}] => (Allow) D:\Gry\World_Of_Tanks\WoTLauncher.exe FirewallRules: [{2233F24D-D4E6-4E08-94DC-12A19042165E}] => (Allow) D:\Gry\World_Of_Tanks\worldoftanks.exe FirewallRules: [{DF10CEFC-ADE3-4B32-AE1E-AACAE0586689}] => (Allow) D:\Gry\World_Of_Tanks\worldoftanks.exe ==================== Punkty Przywracania systemu ========================= UWAGA: Przywracanie systemu jest wyłączone ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (04/17/2017 07:04:23 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-A2LKQ3UV) Description: Aktywacja aplikacji E046963F.LenovoCompanion_k1h2ywk1493x8!App nie powiodła się. Błąd: -2143322111. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (04/17/2017 01:39:16 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-A2LKQ3UV) Description: Aktywacja aplikacji E046963F.LenovoCompanion_k1h2ywk1493x8!App nie powiodła się. Błąd: -2143322111. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (04/17/2017 12:59:28 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-A2LKQ3UV) Description: Aktywacja aplikacji E046963F.LenovoCompanion_k1h2ywk1493x8!App nie powiodła się. Błąd: -2143322111. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (04/17/2017 10:25:47 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-A2LKQ3UV) Description: Aktywacja aplikacji E046963F.LenovoCompanion_k1h2ywk1493x8!App nie powiodła się. Błąd: -2143322111. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (04/17/2017 10:13:11 AM) (Source: Microsoft-Windows-EFS) (EventID: 4401) (User: LAPTOP-A2LKQ3UV) Description: 7.488: usługa systemu szyfrowania plików nie mogła zainicjować obsługi użytkownika w funkcji EDP. Kod błędu: 0x80070005. Error: (04/16/2017 05:36:34 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-A2LKQ3UV) Description: Aktywacja aplikacji E046963F.LenovoCompanion_k1h2ywk1493x8!App nie powiodła się. Błąd: -2143322111. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (04/16/2017 05:33:07 PM) (Source: Microsoft-Windows-EFS) (EventID: 4401) (User: LAPTOP-A2LKQ3UV) Description: 7.488: usługa systemu szyfrowania plików nie mogła zainicjować obsługi użytkownika w funkcji EDP. Kod błędu: 0x80070005. Error: (04/15/2017 10:50:28 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-A2LKQ3UV) Description: Aktywacja aplikacji E046963F.LenovoCompanion_k1h2ywk1493x8!App nie powiodła się. Błąd: -2143322111. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (04/15/2017 09:23:04 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-A2LKQ3UV) Description: Aktywacja aplikacji E046963F.LenovoCompanion_k1h2ywk1493x8!App nie powiodła się. Błąd: -2143322111. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (04/15/2017 09:05:05 PM) (Source: Microsoft-Windows-EFS) (EventID: 4401) (User: LAPTOP-A2LKQ3UV) Description: 7.488: usługa systemu szyfrowania plików nie mogła zainicjować obsługi użytkownika w funkcji EDP. Kod błędu: 0x80070005. Dziennik System: ============= Error: (04/17/2017 07:27:35 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} i identyfikatorem aplikacji APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} użytkownikowi ZARZĄDZANIE NT\SYSTEM o identyfikatorze zabezpieczeń SID (S-1-5-18) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (04/17/2017 07:22:27 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} i identyfikatorem aplikacji APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} użytkownikowi ZARZĄDZANIE NT\SYSTEM o identyfikatorze zabezpieczeń SID (S-1-5-18) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (04/17/2017 07:17:59 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} i identyfikatorem aplikacji APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} użytkownikowi ZARZĄDZANIE NT\SYSTEM o identyfikatorze zabezpieczeń SID (S-1-5-18) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (04/17/2017 07:04:23 PM) (Source: DCOM) (EventID: 10001) (User: LAPTOP-A2LKQ3UV) Description: Nie można uruchomić serwera DCOM: App.AppX98wb6g77tn4g47pmhnngvex75z63bw5e.mca jako Niedostępny/Niedostępny. Błąd: 317 Błąd wystąpił podczas uruchamiania polecenia: "C:\Windows\syswow64\backgroundTaskHost.exe" -ServerName:App.AppXvp7ftfmygftsst0n1x3194vqevfpwc6t.mca Error: (04/17/2017 05:37:59 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Wykrywanie usług interakcyjnych zakończyła działanie; wystąpił następujący błąd: Niepoprawna funkcja. Error: (04/17/2017 01:39:16 PM) (Source: DCOM) (EventID: 10001) (User: LAPTOP-A2LKQ3UV) Description: Nie można uruchomić serwera DCOM: App.AppX98wb6g77tn4g47pmhnngvex75z63bw5e.mca jako Niedostępny/Niedostępny. Błąd: 317 Błąd wystąpił podczas uruchamiania polecenia: "C:\Windows\syswow64\backgroundTaskHost.exe" -ServerName:App.AppXvp7ftfmygftsst0n1x3194vqevfpwc6t.mca Error: (04/17/2017 12:59:28 PM) (Source: DCOM) (EventID: 10001) (User: LAPTOP-A2LKQ3UV) Description: Nie można uruchomić serwera DCOM: App.AppX98wb6g77tn4g47pmhnngvex75z63bw5e.mca jako Niedostępny/Niedostępny. Błąd: 317 Błąd wystąpił podczas uruchamiania polecenia: "C:\Windows\syswow64\backgroundTaskHost.exe" -ServerName:App.AppXvp7ftfmygftsst0n1x3194vqevfpwc6t.mca Error: (04/17/2017 10:25:47 AM) (Source: DCOM) (EventID: 10001) (User: LAPTOP-A2LKQ3UV) Description: Nie można uruchomić serwera DCOM: App.AppX98wb6g77tn4g47pmhnngvex75z63bw5e.mca jako Niedostępny/Niedostępny. Błąd: 317 Błąd wystąpił podczas uruchamiania polecenia: "C:\Windows\syswow64\backgroundTaskHost.exe" -ServerName:App.AppXvp7ftfmygftsst0n1x3194vqevfpwc6t.mca Error: (04/17/2017 10:13:11 AM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} i identyfikatorem aplikacji APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} użytkownikowi ZARZĄDZANIE NT\USŁUGA LOKALNA o identyfikatorze zabezpieczeń SID (S-1-5-19) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (04/17/2017 10:13:11 AM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} i identyfikatorem aplikacji APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} użytkownikowi ZARZĄDZANIE NT\USŁUGA LOKALNA o identyfikatorze zabezpieczeń SID (S-1-5-19) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. CodeIntegrity: =================================== Date: 2017-04-14 08:43:22.069 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-04-12 09:20:02.782 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-04-10 18:40:51.667 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-04-04 08:19:22.989 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-03-29 17:32:07.923 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-03-28 19:09:03.748 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-03-28 19:05:09.857 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-03-25 16:44:52.569 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-03-24 13:21:51.152 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-03-24 13:19:45.553 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz Procent pamięci w użyciu: 46% Całkowita pamięć fizyczna: 16211.78 MB Dostępna pamięć fizyczna: 8651.78 MB Całkowita pamięć wirtualna: 18643.78 MB Dostępna pamięć wirtualna: 11366.02 MB ==================== Dyski ================================ Drive c: (Windows) (Fixed) (Total:100.1 GB) (Free:25.67 GB) NTFS Drive d: (LENOVO) (Fixed) (Total:731.39 GB) (Free:491.48 GB) NTFS Drive e: (Nowy) (Fixed) (Total:200 GB) (Free:198.48 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 119.2 GB) (Disk ID: 48E63E0A) Partition: GPT. ======================================================== Disk: 1 (Size: 931.5 GB) (Disk ID: 8D775645) Partition: GPT. ==================== Koniec Addition.txt ============================