Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 20-08-2017 Uruchomiony przez Tomek (07-09-2017 17:55:46) Uruchomiony z C:\Users\Tomek\Desktop Windows 7 Home Premium Service Pack 1 (X64) (2017-05-16 08:41:32) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-1845470907-587333324-2587052956-500 - Administrator - Disabled) Gość (S-1-5-21-1845470907-587333324-2587052956-501 - Limited - Disabled) Tomek (S-1-5-21-1845470907-587333324-2587052956-1000 - Administrator - Enabled) => C:\Users\Tomek ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: COMODO Antivirus (Disabled - Up to date) {0C515E80-E355-69BD-3445-A511E5C186FD} AS: COMODO Advanced Protection (Enabled - Up to date) {B730BF64-C56F-6633-0EF5-9E639E46CC40} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: COMODO Firewall (Enabled) {346ADFA5-A93A-68E5-1F1A-0C241B12C186} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Activision(R) (HKLM-x32\...\{2A96D655-4FEF-4512-9468-0AABA70CD389}) (Version: 1.0 - Activision) Hidden Activision(R) (HKLM-x32\...\{BDA6A019-2695-4AE1-88CE-EE7801BD41AA}) (Version: 1.00.0000 - Activision) Hidden Adobe Flash Player 26 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 26.0.0.151 - Adobe Systems Incorporated) American Truck Simulator (HKLM\...\Steam App 270880) (Version: - SCS Software) Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 382.05 - NVIDIA Corporation) Hidden Assassin's Creed Chronicles India (HKLM-x32\...\Uplay Install 1847) (Version: - Ubisoft) Assassin's Creed Rogue (HKLM-x32\...\Uplay Install 895) (Version: - Ubisoft) ASUS Xonar DG Audio Driver (HKLM\...\C-Media Oxygen HD Audio Driver) (Version: - ) Batman: Arkham Asylum (HKLM-x32\...\{4E79A60F-15D2-4BEC-91AD-E41EC42E61B0}) (Version: 1.0.0.0 - Eidos Interactive Limited) BulletStorm (HKLM-x32\...\{45410935-B52C-468A-A836-0D1000058201}) (Version: 1.0.0005.130 - EA) Hidden Bully: Scholarship Edition (HKLM\...\Steam App 12200) (Version: - Rockstar New England) CCleaner (HKLM\...\CCleaner) (Version: 5.33 - Piriform) COMODO Internet Security Premium (HKLM\...\{51E5F3BE-F3D1-4F44-B49F-05BFA7E0D2D2}) (Version: 10.0.1.6294 - COMODO Security Solutions Inc.) Hidden COMODO Internet Security Premium (HKLM\...\COMODO Internet Security) (Version: 10.0.1.6294 - COMODO Security Solutions Inc.) Darksiders II (HKLM\...\Steam App 50650) (Version: - Vigil Games) Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD) Dying Light (HKLM\...\Steam App 239140) (Version: - Techland) F1 2010 (HKLM-x32\...\{434D0831-A4CC-401A-9E74-621000018401}) (Version: 1.0.0001.132 - Codemasters) Hidden F1 2010™ (HKLM\...\Steam App 44310) (Version: - Codemasters - Birmingham Studio) F1 2016 (HKLM\...\Steam App 391040) (Version: - Codemasters) Fahrenheit: Indigo Prophecy Remastered (HKLM\...\Steam App 312840) (Version: - Aspyr) FIFA 16 (HKLM-x32\...\{28FA2805-7992-4A28-844B-040C57204718}) (Version: 1.44.20513.9 - Electronic Arts) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 8.3.0.14878 - Foxit Software Inc.) GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games) Guilty Gear X2 #Reload (HKLM\...\Steam App 314030) (Version: - Arc System Works) Hotline Miami (HKLM\...\Steam App 219150) (Version: - Dennaton Games) Intel(R) Network Connections 18.5.54.0 (HKLM\...\PROSetDX) (Version: 18.5.54.0 - Intel) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation) Komunikator WTW 1.24.0.4848 (HKLM\...\{1DF5019A-68B5-4ba1-8E59-E185C7B7FF11}) (Version: 1.24.0.4848 - K2T.eu) LEGO® City Undercover (HKLM\...\Steam App 578330) (Version: - Traveller's Tales) LEGO® Harry Potter™: Lata 1-4 (HKLM-x32\...\{EDADEAB8-3E3E-4171-A299-FD7F3D574C8F}) (Version: 1.0.0.0 - WB Games) LEGO® Jurassic World (HKLM\...\Steam App 352400) (Version: - TT Games Ltd) LEGO® MARVEL Super Heroes (HKLM\...\Steam App 249130) (Version: - Traveller's Tales) LEGO® MARVEL's Avengers (HKLM\...\Steam App 405310) (Version: - Traveller's Tales) LEGO® The Hobbit™ (HKLM\...\Steam App 285160) (Version: - Traveller's Tales) LEGO® Worlds (HKLM\...\Steam App 332310) (Version: - TT Games) Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech) Mass Effect™ 3 (HKLM-x32\...\{534A31BD-20F4-46b0-85CE-09778379663C}) (Version: 1.05.0.0 - Electronic Arts) Metro: Last Light (HKLM\...\Steam App 43160) (Version: - 4A Games) Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation) Microsoft .NET Framework 4.7 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.7.02053 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation) Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation) Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation) Microsoft Server Speech Recognition Language - TELE (pl-PL) (HKLM-x32\...\{BEFB9378-5E88-4266-8EB1-C92869449885}) (Version: 11.0.7400.335 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation) Mortal Kombat Komplete Edition (HKLM\...\Steam App 237110) (Version: - NetherRealm Studios) NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation) NVIDIA Sterownik graficzny 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.05 - NVIDIA Corporation) NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.4.8.0 - NVIDIA Corporation) Hidden OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Opera Stable 47.0.2631.71 (HKLM-x32\...\Opera 47.0.2631.71) (Version: 47.0.2631.71 - Opera Software) Origin (HKLM-x32\...\Origin) (Version: 10.5.2.49155 - Electronic Arts, Inc.) Panel sterowania NVIDIA 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 382.05 - NVIDIA Corporation) Hidden Rapture3D 2.4.4 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: - Blue Ripple Sound) Rayman Origins (HKLM-x32\...\Uplay Install 80) (Version: - Ubisoft) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.9 - Rockstar Games) Saints Row IV (HKLM\...\Steam App 206420) (Version: - Deep Silver Volition) Saints Row: The Third (HKLM\...\Steam App 55230) (Version: - Volition) Spider-Man(TM) - Friend or Foe (HKLM-x32\...\InstallShield_{BDA6A019-2695-4AE1-88CE-EE7801BD41AA}) (Version: 1.00.0000 - Activision) Star Horizon (HKLM\...\Steam App 352960) (Version: - Orbital Knight) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Tomb Raider - Anniversary (HKLM-x32\...\{C72941B7-0D21-493B-B61A-3E3F09E28C1D}) (Version: 1.00.0000 - Eidos) Transformers - Wojna o Cybertron (HKLM-x32\...\InstallShield_{2A96D655-4FEF-4512-9468-0AABA70CD389}) (Version: 1.0 - Activision) Transformers: Fall of Cybertron (HKLM\...\Steam App 213120) (Version: - Mercenary Technologies) Uplay (HKLM-x32\...\Uplay) (Version: 32.1 - Ubisoft) Valiant Hearts (HKLM-x32\...\Uplay Install 659) (Version: - Ubisoft) VC_CRT_x64 (HKLM\...\{54F2237F-018C-483B-8884-9FC0D88840C3}) (Version: 1.02.0000 - Intel Corporation) Hidden Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.) Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation) WinRAR 5.40 (32-bitowy) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ContextMenuHandlers1: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2017-08-29] (COMODO) ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => D:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-03-31] (Foxit Software Inc.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files (x86)\WinRAR\rarext64.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files (x86)\WinRAR\rarext.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers2: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2017-08-29] (COMODO) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-05-01] (NVIDIA Corporation) ContextMenuHandlers6: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2017-08-29] (COMODO) ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => D:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-03-31] (Foxit Software Inc.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files (x86)\WinRAR\rarext64.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files (x86)\WinRAR\rarext.dll [2016-09-19] (Alexander Roshal) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {134A119B-2EB6-4473-903E-92F36ED9F5B1} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-08-29] (COMODO) Task: {67F501C0-513D-4DD4-AF86-5471D2998036} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2017-08-29] (COMODO) Task: {78D297E2-1188-4386-8A69-FC31A735E690} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-08-29] (COMODO) Task: {7E7915D9-D7E2-43AA-9A81-4A6E9DEC8534} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-08-08] (Adobe Systems Incorporated) Task: {96EA266A-0967-4EA9-A8FA-857CFCC9066B} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-08-29] (COMODO) Task: {ADFC4174-6A6E-4635-8F0B-B184C73D1672} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_26_0_0_151_pepper.exe [2017-08-08] (Adobe Systems Incorporated) Task: {B4C685E3-370A-4F86-A9DC-E6A39C314A82} - System32\Tasks\Opera scheduled Autoupdate 1499383539 => C:\Program Files\Opera\launcher.exe [2017-08-25] (Opera Software) Task: {D6F07BCC-BE88-4095-8817-48801541623A} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-08-29] (COMODO) Task: {DC9769AA-1372-420E-9B0D-87E8C66FDD13} - System32\Tasks\CCleanerSkipUAC => D:\Program Files\CCleaner\CCleaner.exe [2017-08-03] (Piriform Ltd) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) Shortcut: C:\Users\Tomek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\K2T\WTW\Forum.lnk -> hxxp://forum.k2t.eu Shortcut: C:\Users\Tomek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\K2T\WTW\Zgłoś błąd.lnk -> hxxp://bugtraq.k2t.eu Shortcut: C:\Users\Tomek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\K2T\WTW\Zgłoś propozycję.lnk -> hxxp://bugtraq.k2t.eu ==================== Załadowane moduły (filtrowane) ============== 2017-04-22 23:27 - 2017-08-29 06:56 - 000244928 _____ () C:\Program Files\COMODO\COMODO Internet Security\cmdcomps.dll 2017-04-22 23:27 - 2017-08-29 06:55 - 000107200 _____ () C:\Program Files\COMODO\COMODO Internet Security\cavwpps.dll 2016-03-16 11:25 - 2017-07-20 17:03 - 000073920 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav 2017-08-26 20:00 - 2017-08-26 20:00 - 090054232 _____ () C:\Program Files\Opera\47.0.2631.71\opera_browser.dll 2017-08-26 20:00 - 2017-08-26 20:00 - 003972696 _____ () C:\Program Files\Opera\47.0.2631.71\libglesv2.dll 2017-08-26 20:00 - 2017-08-26 20:00 - 000100440 _____ () C:\Program Files\Opera\47.0.2631.71\libegl.dll 2017-05-16 14:31 - 2011-04-19 14:56 - 000143360 ____N () C:\Program Files\ASUS Xonar DG Audio\Customapp\VmixP8.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-1845470907-587333324-2587052956-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Tomek\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.20 - 8.8.8.8 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) mpsdrv => Usługa "Zapora systemu Windows" nie jest uruchomiona. MpsSvc => Usługa "Zapora systemu Windows" nie jest uruchomiona. ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\startupreg: amd_dc_opt => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe MSCONFIG\startupreg: Cmaudio8788GX => C:\Windows\syswow64\HsMgr.exe Envoke MSCONFIG\startupreg: Cmaudio8788GX64 => C:\Windows\system\HsMgr64.exe Envoke MSCONFIG\startupreg: Start WingMan Profiler => C:\Program Files\Logitech\Gaming Software\LWEMon.exe /noui ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{B0935E3F-F771-467B-B49F-48F8B811F9D1}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{AF50F3D2-3C2A-4AF5-9222-60DF5429CC67}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{7DE57DE8-E035-4971-98DE-59FA212B222C}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{060E4124-3827-4840-9F6C-793E8A520168}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{5DBD5269-3616-4C16-BBAE-5B3355356250}] => (Allow) G:\steam\steamapps\common\L.A.Noire\LANLauncher.exe FirewallRules: [{4CC5F6A0-348B-4288-813E-83A7B6904F0E}] => (Allow) G:\steam\steamapps\common\L.A.Noire\LANLauncher.exe FirewallRules: [{96D36B2C-4E5F-4BEF-A0EE-D1F817849997}] => (Allow) F:\steam\steamapps\common\LEGO Marvel Super Heroes\LEGOMARVEL.exe FirewallRules: [{941F0CE2-89FD-4D93-8217-63CC93C378D8}] => (Allow) F:\steam\steamapps\common\LEGO Marvel Super Heroes\LEGOMARVEL.exe FirewallRules: [{E7892336-3233-4088-A668-9665C6BB60CE}] => (Allow) F:\steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKKE.exe FirewallRules: [{5BCA11F5-ACDB-4E73-9293-9A682CD1A413}] => (Allow) F:\steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKKE.exe FirewallRules: [{3089B574-46F1-4A45-9D6A-0D2FF74F7423}] => (Allow) F:\steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKLauncher.exe FirewallRules: [{A39187A5-1EE6-4DD1-A89F-ED8C3699E0CB}] => (Allow) F:\steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKLauncher.exe FirewallRules: [{990C510C-7E42-4B61-A69C-5C76D14C8CB2}] => (Allow) G:\steam\steamapps\common\LEGO Marvel's Avengers\LEGOMARVELAvengers.exe FirewallRules: [{A32BC0F2-926E-4544-A5A1-2949A621D17E}] => (Allow) G:\steam\steamapps\common\LEGO Marvel's Avengers\LEGOMARVELAvengers.exe FirewallRules: [{03C298BE-6C2D-46A5-87F2-6F9127746CF0}] => (Allow) G:\steam\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\Injustice.exe FirewallRules: [{9DEB4CCA-5A66-4297-BF77-9FA05FC06849}] => (Allow) G:\steam\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\Injustice.exe FirewallRules: [{801593E2-BAC5-4125-8349-BE61156A7D68}] => (Allow) G:\steam\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\InjusticeLauncher.exe FirewallRules: [{02B07D13-F728-41BC-A4E8-C34B277D279A}] => (Allow) G:\steam\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\InjusticeLauncher.exe FirewallRules: [{B82BE773-42EB-45E6-B656-ED017FE3CD33}] => (Allow) G:\Program Files (x86)\Eidos\Batman Arkham Asylum\Binaries\ShippingPC-BmGame.exe FirewallRules: [{95A75F77-63F1-4D8B-87F7-80DBC36CEA8D}] => (Allow) G:\Program Files (x86)\Eidos\Batman Arkham Asylum\Binaries\ShippingPC-BmGame.exe FirewallRules: [{81EC392A-E53A-46A2-B58D-965019E65187}] => (Allow) F:\steam\steamapps\common\Dying Light\DyingLightGame.exe FirewallRules: [{14956BF5-CF1C-4D63-A8D6-CB971A9C9AE7}] => (Allow) F:\steam\steamapps\common\Dying Light\DyingLightGame.exe FirewallRules: [{7C6CD52C-04D4-40AD-ACA3-34FF8143D72C}] => (Allow) F:\steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe FirewallRules: [{39B6A79C-2B02-4D6F-B9FA-277EB5FF65E6}] => (Allow) F:\steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe FirewallRules: [{31D8D108-1692-4BAA-841F-13A1C6097888}] => (Allow) F:\steam\steamapps\common\LEGO City Undercover\LEGOLCUR_DX11.exe FirewallRules: [{69DB049D-9BB6-4EF1-9155-89F21B4CBA2A}] => (Allow) F:\steam\steamapps\common\LEGO City Undercover\LEGOLCUR_DX11.exe FirewallRules: [{91370BFB-419A-451C-88BF-6248F415E051}] => (Allow) F:\Program Files (x86)\Activision\Transformers - Wojna o Cybertron\Binaries\TWFC.exe FirewallRules: [{836EDBCD-0EC1-4306-88B8-6AF78CFAD1C6}] => (Allow) F:\Program Files (x86)\Activision\Transformers - Wojna o Cybertron\Binaries\TWFC.exe ==================== Punkty Przywracania systemu ========================= 24-08-2017 19:08:48 Removed Spider-Man 3(TM) 26-08-2017 14:58:45 Zainstalowany program DirectX 28-08-2017 19:58:43 Zainstalowany program DirectX 29-08-2017 20:20:58 Zainstalowany program DirectX 06-09-2017 14:17:39 Installed GTA San Andreas Sprawdź usługę "winmgmt" lub napraw WMI. ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (09/07/2017 04:51:27 PM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Error: (09/07/2017 04:51:27 PM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for D:\Program Files (x86)\Steam\steam.exe Error: (09/07/2017 04:44:12 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/07/2017 12:42:22 PM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Error: (09/07/2017 12:42:22 PM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for D:\Program Files (x86)\Steam\steam.exe Error: (09/07/2017 12:03:22 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/06/2017 12:09:15 PM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Error: (09/06/2017 12:09:15 PM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for D:\Program Files (x86)\Steam\steam.exe Error: (09/06/2017 11:11:00 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/05/2017 08:11:28 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Dziennik System: ============= Error: (09/07/2017 04:41:57 PM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: Usługa NPEService jest oznaczona jako usługa interakcyjna. System jest jednak skonfigurowany tak, aby nie zezwalać na usługi interakcyjne, dlatego ta usługa może nie działać właściwie. Error: (09/07/2017 12:02:34 PM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT) Description: Odebrano następujący alert krytyczny: 20. Error: (09/06/2017 07:56:03 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Origin Web Helper Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (09/06/2017 12:27:14 AM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT) Description: Odebrano następujący alert krytyczny: 20. Error: (09/05/2017 08:57:22 PM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT) Description: Odebrano następujący alert krytyczny: 20. Error: (09/05/2017 08:07:31 PM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT) Description: Odebrano następujący alert krytyczny: 20. Error: (09/05/2017 07:54:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Origin Web Helper Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (09/05/2017 01:10:51 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Usługa KSU niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (09/05/2017 12:45:11 AM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT) Description: Odebrano następujący alert krytyczny: 20. Error: (09/04/2017 08:17:16 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Origin Web Helper Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. CodeIntegrity: =================================== Date: 2017-09-07 17:51:13.731 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system. Date: 2017-09-07 17:51:13.694 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system. Date: 2017-09-07 17:32:45.453 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system. Date: 2017-09-07 17:32:45.418 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system. Date: 2017-09-07 17:20:17.926 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system. Date: 2017-09-07 17:20:17.886 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system. Date: 2017-09-07 16:42:20.004 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system. Date: 2017-09-07 16:42:19.972 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system. Date: 2017-09-07 16:41:25.264 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system. Date: 2017-09-07 16:41:25.227 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Xeon(R) CPU E3-1230 v3 @ 3.30GHz Procent pamięci w użyciu: 18% Całkowita pamięć fizyczna: 8111.07 MB Dostępna pamięć fizyczna: 6632.55 MB Całkowita pamięć wirtualna: 10157.25 MB Dostępna pamięć wirtualna: 8654.91 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:107.32 GB) (Free:66.78 GB) NTFS Drive d: () (Fixed) (Total:116.15 GB) (Free:82.47 GB) NTFS Drive e: (SA_EU_V201B) (CDROM) (Total:3.92 GB) (Free:0 GB) CDFS Drive f: (Nowy) (Fixed) (Total:298.09 GB) (Free:61.71 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: E1DE87FF) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=107.3 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=116.1 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 0D1B0D1B) Partition 1: (Not Active) - (Size=298.1 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================