Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 16-11-2017 Uruchomiony przez Profil (16-11-2017 19:27:31) Uruchomiony z C:\Users\Profil\Desktop Windows 7 Professional Service Pack 1 (X64) (2017-02-05 10:29:48) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Admin (S-1-5-21-3295605243-3104791100-1276282624-1000 - Administrator - Enabled) => C:\Users\Admin Administrator (S-1-5-21-3295605243-3104791100-1276282624-500 - Administrator - Disabled) Damian (S-1-5-21-3295605243-3104791100-1276282624-1006 - Administrator - Enabled) => C:\Users\Damian Gość (S-1-5-21-3295605243-3104791100-1276282624-501 - Limited - Enabled) HomeGroupUser$ (S-1-5-21-3295605243-3104791100-1276282624-1005 - Limited - Enabled) Profil (S-1-5-21-3295605243-3104791100-1276282624-1001 - Administrator - Enabled) => C:\Users\Profil ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: COMODO Defense+ (Enabled - Up to date) {CE351521-78FA-2048-BB22-B68A4A5CA7EC} FW: COMODO Firewall (Enabled) {4D6F75E0-14AF-2E9E-AACD-24CDCF08AA2A} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKLM-x32\...\uTorrent) (Version: 1.6 - ) Adobe Flash Player 27 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 27.0.0.187 - Adobe Systems Incorporated) Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.187 - Adobe Systems Incorporated) Adobe Reader 9.4.0 - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-A94000000001}) (Version: 9.4.0 - Adobe Systems Incorporated) AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 1.01.14 - ASUSTeK) Aktualizacje NVIDIA 28.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 28.0.0.0 - NVIDIA Corporation) Hidden Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 387.92 - NVIDIA Corporation) Hidden Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Aslain's WoT Modpack (wersja 9.20.1.2.03) (HKLM-x32\...\Aslains_WoT_Modpack_Installer_is1) (Version: 9.20.1.2.03 - Aslain) Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team) BlueStacks 3 (HKLM-x32\...\BlueStacks) (Version: 3.7.44.1625 - BlueStack Systems, Inc.) BlueStacksFriends 11.0.2 (only current user) (HKU\S-1-5-21-3295605243-3104791100-1276282624-1001\...\d7102876-3e3d-5287-80d2-e4af8b7891ff) (Version: 11.0.2 - BlueStack Systems, Inc.) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) CMS (HKLM-x32\...\CMS) (Version: - ) COMODO Internet Security (HKLM\...\{D6AB1F5B-FED6-49A9-9747-327BD28FB3C7}) (Version: 5.9.23255.2196 - COMODO Security Solutions Inc.) CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Dev-C++ (HKLM-x32\...\Dev-C++) (Version: 5.11 - Bloodshed Software) Device Manager (HKLM-x32\...\Device Manager) (Version: - ) DeviceManage (HKLM-x32\...\DeviceManage) (Version: - ) Discord (HKU\S-1-5-21-3295605243-3104791100-1276282624-1001\...\Discord) (Version: 0.0.298 - Discord Inc.) Drakensang Online (HKLM-x32\...\Drakensang Online) (Version: - ) FireAlpaca 1.7.1 (HKLM-x32\...\FireAlpaca_is1) (Version: 1.7.1 - firealpaca.com) GIMP 2.8.20 (HKLM\...\GIMP-2_is1) (Version: 2.8.20 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.94 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software) Home Ftp Server 1.14.0.176 (HKLM-x32\...\Home Ftp Server_is1) (Version: - Pikivirta) iMetin (HKLM-x32\...\iMetin) (Version: - ) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation) Java 8 Update 131 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180131F0}) (Version: 8.0.1310.11 - Oracle Corporation) League of Legends (HKLM-x32\...\{8CE67B9E-3AC8-4ED2-A8EE-28E6FE3D0B51}) (Version: 4.2.1 - Riot Games) Hidden League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games) Light Image Resizer 4.5.7.0 (HKLM-x32\...\{EBE030DD-D404-4D92-85E9-8C3624820808}_is1) (Version: 4.5.7.0 - ObviousIdea) Metin2 (HKLM-x32\...\Metin2_PL_is1) (Version: - Gameforge 4D GmbH) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 54.0.1 (x86 pl) (HKLM-x32\...\Mozilla Firefox 54.0.1 (x86 pl)) (Version: 54.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 53.0.3 - Mozilla) MSI Afterburner 4.3.0 (HKLM-x32\...\Afterburner) (Version: 4.3.0 - MSI Co., LTD) MSI DragonEye (HKLM\...\{7116875E-F251-4C33-AB3F-37DE05B15595}_is1) (Version: 0.0.2.5 - MSI) MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.1.0.15 - MSI) MSI Kombustor 3.5.0 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD) MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.06 - MSI) MSIRegister (HKLM-x32\...\{80B995A4-3A86-4690-98A6-563F1A788835}_is1) (Version: 2.0.0.05 - MSI) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Nero 8 (HKLM-x32\...\{D6D5CB84-0E6E-4E69-B300-C690B6911045}) (Version: 8.3.38 - Nero AG) Nexus Mod Manager - Legacy (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.52.3 - Black Tree Gaming) Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.5.1 - Notepad++ Team) NVIDIA GeForce Experience 3.9.0.97 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.9.0.97 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 387.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 387.92 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation) NVIDIA Sterownik graficzny 387.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 387.92 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 17.0.2 - OBS Project) Obsługa programów Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) osu! (HKLM-x32\...\{5aaabf3f-a3c8-4df9-b7d6-2210dbf4eb55}) (Version: latest - ppy Pty Ltd) osu! (HKLM-x32\...\{98a3daae-2021-4cd0-b82d-21fcb7f50d72}) (Version: latest - ppy Pty Ltd) osu! (HKLM-x32\...\{a05c7ff4-0f04-48aa-bdae-3b98dafedc0f}) (Version: latest - ppy Pty Ltd) Overwolf (HKLM-x32\...\Overwolf) (Version: 0.107.257.0 - Overwolf Ltd.) Panel sterowania NVIDIA 387.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 387.92 - NVIDIA Corporation) Hidden PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.0 - pdfforge) Pic2Pic 1.4 (HKLM-x32\...\Pic2Pic PC format special version_is1) (Version: - WaveL Software) Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Hidden Player (HKLM-x32\...\Player) (Version: - ) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.37.1229.2010 - Realtek) RivaTuner Statistics Server 6.5.1 (HKLM-x32\...\RTSS) (Version: 6.5.1 - Unwinder) screenSHU - the fastest screen capture ever. (HKLM-x32\...\screenSHU) (Version: - ) SHU (HKLM-x32\...\{DF11DD92-DBB8-4F3F-9564-A8BBDBE986F5}_is1) (Version: 1.0 - ScreenShu Software) Skype™ 7.39 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.39.102 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-3295605243-3104791100-1276282624-1001\...\Spotify) (Version: 1.0.49.125.g72ee7853 - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH) Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 8.51a - Ghisler Software GmbH) Twitch (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Twitch Interactive, Inc.) Universal Media Server (HKLM-x32\...\Universal Media Server) (Version: 5.2.3 - Universal Media Server) VCRedistSetup (HKLM-x32\...\{3921A67A-5AB1-4E48-9444-C71814CF3027}) (Version: 1.0.0 - Nero AG) Hidden VIA Platforma Menedżera urządzeń (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) VLC media player 1.0.3 (HKLM-x32\...\VLC media player) (Version: 1.0.3 - VideoLAN Team) Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) WinRAR archiver (HKLM-x32\...\WinRAR archiver) (Version: - ) WinZip (HKLM-x32\...\WinZip) (Version: - ) World of Tanks - Common Test (HKU\S-1-5-21-3295605243-3104791100-1276282624-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812ct}_is1) (Version: - Wargaming.net) World of Tanks - Sandbox (HKU\S-1-5-21-3295605243-3104791100-1276282624-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812sb}_is1) (Version: - Wargaming.net) World of Tanks (HKU\S-1-5-21-3295605243-3104791100-1276282624-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2017-08-29] () ContextMenuHandlers1: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2011-12-19] (COMODO) ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero8\Nero CoverDesigner\CoverEdExtension.dll [2008-02-28] (Nero AG) ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers1-x32-x32-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files (x86)\WinZip\WZSHLSTB.DLL [2000-04-19] (WinZip Computing, Inc.) ContextMenuHandlers2: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2011-12-19] (COMODO) ContextMenuHandlers4-x32: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers4-x32-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files (x86)\WinZip\WZSHLSTB.DLL [2000-04-19] (WinZip Computing, Inc.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-10-06] (NVIDIA Corporation) ContextMenuHandlers6: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2011-12-19] (COMODO) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers6-x32-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files (x86)\WinZip\WZSHLSTB.DLL [2000-04-19] (WinZip Computing, Inc.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0681BFDD-AA8B-4741-A9CA-D29A2B7EBD49} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_187_pepper.exe [2017-11-14] (Adobe Systems Incorporated) Task: {109179C7-BCEF-45E4-842A-0D20E85823AF} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-09-19] (NVIDIA Corporation) Task: {15D838B5-4A0D-4492-8155-5B7C109D791F} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [2015-08-18] (MSI) Task: {3CB6E1C5-0E91-4A4D-9DE4-E1CC50F48D99} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-11-14] (Adobe Systems Incorporated) Task: {45A05E94-2762-4461-BA27-8417BC519BAC} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-09-19] (NVIDIA Corporation) Task: {5B54E05F-F0C5-49DF-8C9E-80B9CBE3539D} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-09-19] (NVIDIA Corporation) Task: {60058599-AED7-4459-9713-416366B37E19} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-05] (Google Inc.) Task: {66389C4D-F015-4562-8796-CEDAFD859BD8} - System32\Tasks\MSIOSDx64_Host => C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe [2016-07-28] (Micro-Star INT'L CO., LTD.) Task: {6F9CDEF4-5705-4A93-B0E1-25B0E4288299} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-09-19] (NVIDIA Corporation) Task: {7ECC37A6-0D24-4CF1-A019-3AA4F3E68BB8} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2010-11-26] (ASUSTeK Computer Inc.) Task: {9FB37716-5675-4E52-BDCA-70EF49A4A003} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-09-19] (NVIDIA Corporation) Task: {B28B3E3E-D1FF-4153-968D-F9E686C66EEB} - System32\Tasks\{5D3B2F41-8AEB-4027-A086-42C853FBC316} => C:\Windows\system32\pcalua.exe -a "C:\Users\Profil\Desktop\Windows 7 Loader.exe" -d C:\Users\Profil\Desktop Task: {B5EF65B5-84F1-4DFC-9A81-1624D6A0DDE8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-05] (Google Inc.) Task: {C59510A8-8C76-47C5-8EAB-F7632C802A80} - System32\Tasks\MSIGH_Host => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe [2017-01-10] (Micro-Star INT'L CO., LTD.) Task: {DF478769-E4A7-4C7B-9FA5-5C400C03D693} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-09-19] (NVIDIA Corporation) Task: {E267E748-B0CF-42D8-9FC9-29929622E4D3} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-09-19] (NVIDIA Corporation) Task: {E42FE0C1-83BF-45AF-AE98-03B265734666} - System32\Tasks\MSIOSDx86_Host => C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe [2016-07-28] (Micro-Star INT'L CO., LTD.) Task: {F75E40A6-A5E2-48BE-AC7D-AF2633AF079E} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-10-23] (Overwolf LTD) Task: {FEB1C68D-814C-4865-ABC0-366BA022954B} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-09-19] (NVIDIA Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\Profil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome\LINE.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=menkifleemblimdogmoihpfopnplikde ==================== Załadowane moduły (filtrowane) ============== 2010-11-03 10:30 - 2010-11-03 10:30 - 000918144 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe 2010-12-02 03:15 - 2010-12-02 03:15 - 000915584 ____R () C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe 2017-02-13 16:44 - 2010-10-21 10:52 - 000586880 ____R () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe 2017-02-19 15:01 - 2017-09-19 08:23 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-02-05 14:10 - 2016-06-14 16:35 - 000187392 _____ () C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\D3D11FontDraw.dll 2006-07-02 17:29 - 2006-07-02 17:29 - 000174163 _____ () C:\Program Files (x86)\uTorrent\utorrent.exe 2017-02-05 11:41 - 2010-08-11 04:32 - 000078448 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll 2017-02-05 11:41 - 2010-08-11 04:32 - 000386160 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll 2017-02-05 11:41 - 2010-08-11 04:32 - 000105584 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\VMicApi.dll 2017-02-05 11:41 - 2010-08-11 04:32 - 064643696 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll 2017-11-14 00:09 - 2017-11-10 10:57 - 004135768 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.94\libglesv2.dll 2017-11-14 00:09 - 2017-11-10 10:57 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.94\libegl.dll 2017-02-13 16:44 - 2017-11-16 18:53 - 000019456 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.13\PEbiosinterface32.dll 2017-02-13 16:44 - 2010-06-29 03:58 - 000104448 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.13\ATKEX.dll 2017-02-05 13:34 - 2005-07-18 13:43 - 000160256 _____ () C:\Program Files (x86)\MSI\Live Update\unrar.dll 2017-02-05 14:10 - 2016-06-14 16:35 - 000163328 _____ () C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\D3D11FontDraw.dll 2017-02-13 16:45 - 2010-12-02 17:28 - 000143360 _____ () C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll 2017-02-13 16:45 - 2010-06-21 15:21 - 000208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll 2017-02-13 16:45 - 2009-08-12 20:15 - 000253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll 2017-02-13 16:45 - 2010-10-15 17:40 - 001031680 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ASUS Update\Update.dll 2017-02-13 16:45 - 2010-11-19 10:53 - 000963584 _____ () C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll 2017-02-13 16:46 - 2010-12-01 12:33 - 001244672 _____ () C:\Program Files (x86)\ASUS\AI Suite II\MyLogo\MyLogo.dll 2017-02-13 16:47 - 2011-01-06 10:38 - 001027072 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Probe_II\ProbeII.dll 2017-02-13 16:45 - 2010-09-27 20:51 - 000881664 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll 2017-02-13 16:45 - 2010-09-27 20:51 - 001607168 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll 2017-02-13 16:45 - 2010-11-19 10:55 - 001246208 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll 2017-02-13 16:45 - 2010-08-06 18:11 - 000850944 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll 2017-02-13 16:45 - 2010-08-06 18:13 - 000886272 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll 2017-02-13 16:44 - 2010-08-23 03:17 - 000662016 ____R () C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMLib.dll 2017-02-13 16:45 - 2010-06-21 15:21 - 000208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\ImageHelper.dll 2017-02-19 15:01 - 2017-09-19 08:23 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2017-02-05 11:35 - 000000921 _____ C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 genuine.microsoft.com 127.0.0.1 mpa.one.microsoft.com 127.0.0.1 sls.microsoft.com ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-3295605243-3104791100-1276282624-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Profil\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 109.196.145.10 - 109.196.152.60 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja wyłączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\Services: MBAMService => 2 MSCONFIG\Services: TrueKey => 2 MSCONFIG\Services: TrueKeyScheduler => 2 MSCONFIG\Services: TrueKeyServiceHelper => 2 MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HandyAndy.lnk => C:\Windows\pss\HandyAndy.lnk.CommonStartup MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: IDMan => C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot MSCONFIG\startupreg: Live Update => C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER MSCONFIG\startupreg: Malwarebytes TrayApp => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe MSCONFIG\startupreg: MSIRegister => "C:\MSI\MSIRegister\MSIRegister.exe" MSCONFIG\startupreg: NBKeyScan => "C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" MSCONFIG\startupreg: screenSHU => "C:\Program Files (x86)\screenSHU\screenSHU.exe" --hidden MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{D4BD2574-FFD4-4183-99C3-A08F2EFFD582}] => (Allow) C:\Program Files (x86)\uTorrent\utorrent.exe FirewallRules: [{7DDCA703-F275-4C1F-B636-A024361E3AB6}] => (Allow) C:\Program Files (x86)\uTorrent\utorrent.exe FirewallRules: [{DC3168E2-5DA4-4CB0-8A8F-91EEF531F6C3}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe FirewallRules: [{DD4CAF31-6C28-4A24-84BA-12CA7D993177}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe FirewallRules: [{16958A46-A159-4F9C-915E-B711B250DA55}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe FirewallRules: [{A07C0E40-2B70-402B-B6AC-3877439E0D32}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe FirewallRules: [{C4DE9C63-BAA9-49ED-9979-9563D1864216}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{3ECB5B1C-D3BC-4BC6-8D82-C8FF869CC81F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{2A415A42-B9DE-4E3D-B4DF-1E0887C95BE2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{7DB7BC7E-F4C1-4C2C-9448-BA03A934CE90}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{C5A5F791-F20F-4143-9D50-CE0C6C641F26}] => (Allow) E:\_WaszeDane\Damian\dfbn1\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{BBF4EE59-291F-4C3F-BCA4-12A8D38BF830}] => (Allow) E:\_WaszeDane\Damian\dfbn1\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{9F6FBA1F-0A10-44A3-8B29-565D22046028}] => (Allow) E:\_WaszeDane\Damian\dfbn1\Steam\steamapps\common\Rust\Rust.exe FirewallRules: [{4AC2A993-D209-49B4-84C0-50ECD6253401}] => (Allow) E:\_WaszeDane\Damian\dfbn1\Steam\steamapps\common\Rust\Rust.exe FirewallRules: [{D97B55E8-01EC-4850-90F3-828415EB79C9}] => (Allow) D:\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe FirewallRules: [{7281FD36-49EF-4CC9-A67C-17A96011C679}] => (Allow) D:\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe FirewallRules: [{BEB6FB5B-CEDF-4EBA-B23B-5E5773E17412}] => (Allow) E:\_WaszeDane\Damian\dfbn1\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{5067ED77-D443-4184-AB9C-82A5EE5479A2}] => (Allow) E:\_WaszeDane\Damian\dfbn1\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{C6203C2E-93DE-4399-A5B5-6F1CF3B7B469}] => (Allow) E:\_WaszeDane\Damian\dfbn1\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe FirewallRules: [{6E058289-248F-42B9-BF8B-40801A6C3A0F}] => (Allow) E:\_WaszeDane\Damian\dfbn1\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe FirewallRules: [{0B128F94-1B66-4300-B0B7-8A2A0497F632}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{82E65EBE-0511-4CBD-A9D6-496086306F0E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{0A436E52-64E4-460C-9547-497D44A52BEC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{92E946E8-E274-4BF8-9301-70A908E2FFB1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{DC11E176-46EA-48CB-8D3E-1C129220424E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{FDE4A9F6-25A9-4620-9CE7-33A848C5C6EF}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{70DE2627-648F-4563-9C2B-57AE175640A8}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [{1C250499-764F-42A8-9FDA-2BE799431FEE}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [{65FA76D4-4A3A-40DB-BDF6-3E0C10781E21}] => (Allow) D:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{53029E51-D4DD-4C56-9493-40917DFE37C3}] => (Allow) D:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{08B0386A-0B6E-4383-A20A-4A4DEBC82461}] => (Allow) D:\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe FirewallRules: [{551D6E5A-DB42-4E04-B3E1-8A1FF4701383}] => (Allow) D:\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe FirewallRules: [{05168AE7-21D4-4910-9AD2-8AE390506BDD}] => (Allow) E:\_WaszeDane\Damian\dfbn1\Steam\steamapps\common\Team Fortress 2\hl2.exe FirewallRules: [{67E0CCCF-09DA-45AE-B6E0-2C42EC366B72}] => (Allow) E:\_WaszeDane\Damian\dfbn1\Steam\steamapps\common\Team Fortress 2\hl2.exe FirewallRules: [{DC902C2B-A634-4A7B-A8A3-526D7836AC5F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{FD569168-4BCF-4BA3-8FD6-C5783CFE0219}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{B1E7A483-AA70-4468-B1F7-55C815C48F5C}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe FirewallRules: [{2D0C9D48-DEFB-4B7D-9992-F2B3D55F9E88}] => (Allow) E:\_WaszeDane\Damian\dfbn1\Steam\steamapps\common\Skyrim\skse_steam_boot.exe FirewallRules: [{BC94E5DE-5B40-4AA5-8EF9-36E81230082F}] => (Allow) E:\_WaszeDane\Damian\dfbn1\Steam\steamapps\common\Skyrim\skse_steam_boot.exe FirewallRules: [{6BBD0E06-41BF-4B11-B461-4C86E1D2F852}] => (Allow) E:\_WaszeDane\Damian\dfbn1\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe FirewallRules: [{6869F90D-BA5C-4C5B-9F7D-768F08070165}] => (Allow) E:\_WaszeDane\Damian\dfbn1\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe FirewallRules: [{B1C87F1A-5EEB-4A18-A4CC-3AC354F8E021}] => (Allow) D:\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe FirewallRules: [{FCC3CD01-D3AE-4A57-A1B6-030FE4BF4A7E}] => (Allow) D:\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe FirewallRules: [{9AA8AB77-4787-47F8-A6B3-5E7F6B3699EA}] => (Allow) C:\Users\Profil\AppData\Local\Temp\andy-x64\Setup.exe FirewallRules: [{78A5DC6E-BC0F-4AED-BE21-15A3F08EEB05}] => (Allow) C:\Users\Profil\AppData\Local\Temp\andy-x64\Setup.exe FirewallRules: [{3037B7B7-968F-40EB-9412-19C58F2C0E4A}] => (Allow) C:\Program Files\Andy\andy.exe FirewallRules: [{260ABCE5-6F6D-4229-BBBC-AEF54BEC1F8B}] => (Allow) C:\Program Files\Andy\andy.exe FirewallRules: [{22F68497-5CD8-45B1-B484-90CC039AD90B}] => (Allow) C:\Program Files\Andy\AndyConsole.exe FirewallRules: [{4632534F-C7DC-4826-8E5E-C93579BD0617}] => (Allow) C:\Program Files\Andy\AndyConsole.exe FirewallRules: [{AA3BBC65-0186-4B89-8E40-4F2A914A19AE}] => (Allow) C:\Program Files\Andy\HandyAndy.exe FirewallRules: [{BB08C120-6ACF-4480-8B0E-C8A0D21026A1}] => (Allow) C:\Program Files\Andy\HandyAndy.exe FirewallRules: [{4518BD2A-F964-4D84-8CD8-CE6575FD0F41}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe FirewallRules: [{1B530EB5-8195-454D-A7D2-97DD072C1DFC}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe FirewallRules: [{090BE846-006F-47F5-AE91-D31A3E4FF977}] => (Allow) C:\Users\Profil\AppData\Local\Temp\RemoveTemp.exe FirewallRules: [{20CFBE4B-0376-4909-9673-B1F5ADB42070}] => (Allow) C:\Users\Profil\AppData\Local\Temp\RemoveTemp.exe FirewallRules: [{D28C50E4-E5E8-4FF7-86F8-BE5432FD8EC2}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe FirewallRules: [{F612A563-0F13-43B3-82CD-17B0AB35B099}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe FirewallRules: [{F5566339-E2F3-49F3-ADB5-6FA7670E4457}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe FirewallRules: [{0D22A2C4-9D38-4950-B69E-D9D736264213}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe FirewallRules: [{453407B6-DC1A-4933-A3F5-316413E12E15}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{2AE06F76-6893-477A-8D0A-967AD581E2B1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{DB0CDF1B-58EC-4AD1-9CDB-176F5BCE4DCB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{D18D3F05-50F5-49C7-BED4-D72516D86AA9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{40AC16D8-232B-478E-9F88-022BFA88BDF2}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe FirewallRules: [{3C58F0F1-F64C-423D-9B30-1590F55390CF}] => (Allow) D:\Steam\steamapps\common\Call of Duty WWII Beta\s2_mp64_ship.exe FirewallRules: [{102EB57F-6C1A-440F-9418-B2122F79CDAB}] => (Allow) D:\Steam\steamapps\common\Call of Duty WWII Beta\s2_mp64_ship.exe FirewallRules: [{B01D87A4-A053-43CD-9BEA-530751867B5B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{93D43AE3-5BFB-4EEB-B27B-AF2F58F3B9CD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{842E0FC0-7E7F-461F-94F4-345B22BA7E8A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{0C315C0A-3C32-43F4-B55C-CA8A62AEDA1B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{9693D562-6FE1-4F63-8021-783CC5777F5E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{79604C09-92C5-4554-B637-C7A055D13526}] => (Allow) C:\Games\World_of_Tanks_SB\WoTLauncher.exe FirewallRules: [{85875109-E5AD-48AD-9707-74D7B2A34101}] => (Allow) C:\Games\World_of_Tanks_SB\WoTLauncher.exe FirewallRules: [{1A5AAA10-66FE-4438-BEC2-1D53AD53FE33}] => (Allow) C:\Games\World_of_Tanks_SB\worldoftanks.exe FirewallRules: [{1B026A6A-2AAB-4DBE-82A0-B3E976346C89}] => (Allow) C:\Games\World_of_Tanks_SB\worldoftanks.exe FirewallRules: [{DF72B755-45CF-4ED5-B299-FC537FA629D6}] => (Allow) LPort=26789 FirewallRules: [{1DCC5781-B416-46F6-B1D5-CC04A5F9229B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Punkty Przywracania systemu ========================= 12-11-2017 13:19:09 Zaplanowany punkt kontrolny ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (11/15/2017 10:17:53 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: AUDIODG.EXE, wersja: 6.1.7601.23471, sygnatura czasowa: 0x57601f74 Nazwa modułu powodującego błąd: VIASysFx.dll, wersja: 1.0.0.0, sygnatura czasowa: 0x4c59383d Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00000000000594a1 Identyfikator procesu powodującego błąd: 0x444 Godzina uruchomienia aplikacji powodującej błąd: 0x01d35e3ff814fe02 Ścieżka aplikacji powodującej błąd: C:\Windows\system32\AUDIODG.EXE Ścieżka modułu powodującego błąd: C:\Windows\system32\VIASysFx.dll Identyfikator raportu: 70933e76-ca4a-11e7-8a8f-14dae93af129 Error: (11/15/2017 08:29:14 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: worldoftanks.exe, wersja: 0.9.20.109, sygnatura czasowa: 0x59e776b7 Nazwa modułu powodującego błąd: ucrtbase.DLL, wersja: 10.0.10240.16384, sygnatura czasowa: 0x559f3aa5 Kod wyjątku: 0x40000015 Przesunięcie błędu: 0x0007d85a Identyfikator procesu powodującego błąd: 0x1294 Godzina uruchomienia aplikacji powodującej błąd: 0x01d35e480516be8c Ścieżka aplikacji powodującej błąd: C:\Games\World_of_Tanks\worldoftanks.exe Ścieżka modułu powodującego błąd: C:\Games\World_of_Tanks\system\ucrtbase.DLL Identyfikator raportu: 42dcfbf6-ca3b-11e7-8a8f-14dae93af129 Error: (11/15/2017 08:29:04 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: worldoftanks.exe, wersja: 0.9.20.109, sygnatura czasowa: 0x59e776b7 Nazwa modułu powodującego błąd: ucrtbase.DLL, wersja: 10.0.10240.16384, sygnatura czasowa: 0x559f3aa5 Kod wyjątku: 0x40000015 Przesunięcie błędu: 0x0007d85a Identyfikator procesu powodującego błąd: 0x1d7c Godzina uruchomienia aplikacji powodującej błąd: 0x01d35e47fa5f83d1 Ścieżka aplikacji powodującej błąd: C:\Games\World_of_Tanks\worldoftanks.exe Ścieżka modułu powodującego błąd: C:\Games\World_of_Tanks\system\ucrtbase.DLL Identyfikator raportu: 3ce13828-ca3b-11e7-8a8f-14dae93af129 Error: (11/12/2017 01:12:23 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\Program Files (x86)\Nero\Nero8\Nero PhotoSnap\PhotoSnapViewer.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Error: (11/12/2017 01:12:23 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\Program Files (x86)\Nero\Nero8\Nero PhotoSnap\PhotoSnap.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Error: (11/12/2017 01:12:23 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\Program Files (x86)\Nero\Nero8\Nero Toolkit\DiscSpeed.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Składnik 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Error: (11/09/2017 08:29:25 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: TriggerModeMonitor.exe, wersja: 1.0.1.8, sygnatura czasowa: 0x585c7e7b Nazwa modułu powodującego błąd: KERNELBASE.dll, wersja: 6.1.7601.23889, sygnatura czasowa: 0x598d50ba Kod wyjątku: 0xe0434352 Przesunięcie błędu: 0x000000000001a06d Identyfikator procesu powodującego błąd: 0x92c Godzina uruchomienia aplikacji powodującej błąd: 0x01d35990fab8d5c0 Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe Ścieżka modułu powodującego błąd: C:\Windows\system32\KERNELBASE.dll Identyfikator raportu: 4b30c98e-c584-11e7-ab17-14dae93af129 Error: (11/09/2017 08:29:10 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Application: TriggerModeMonitor.exe Framework Version: v4.0.30319 Description: The process was terminated due to an unhandled exception. Exception Info: System.Net.HttpListenerException Stack: at System.Net.HttpListener.Start() at TriggerModeMonitor.App.StartWebServer() at TriggerModeMonitor.App.Application_Startup(System.Object, System.Windows.StartupEventArgs) at System.Windows.Application.<.ctor>b__1(System.Object) at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32) at MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate) at System.Windows.Threading.DispatcherOperation.InvokeImpl() at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) at System.Windows.Threading.DispatcherOperation.Invoke() at System.Windows.Threading.Dispatcher.ProcessQueue() at System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) at MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) at MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object) at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32) at MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate) at System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32) at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr) at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef) at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef) at System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame) at System.Windows.Application.RunInternal(System.Windows.Window) at System.Windows.Application.Run() at TriggerModeMonitor.App.Main() Error: (11/09/2017 04:26:03 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\Program Files (x86)\Nero\Nero8\Nero PhotoSnap\PhotoSnapViewer.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Error: (11/09/2017 04:26:03 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\Program Files (x86)\Nero\Nero8\Nero PhotoSnap\PhotoSnap.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Dziennik System: ============= Error: (11/16/2017 06:55:45 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: VBoxNetAdp Error: (11/16/2017 06:55:15 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Usługa GamingApp_Service zawiesiła się podczas uruchamiania. Error: (11/15/2017 07:32:18 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: VBoxNetAdp Error: (11/14/2017 06:48:00 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: VBoxNetAdp Error: (11/14/2017 06:47:29 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Usługa GamingApp_Service zawiesiła się podczas uruchamiania. Error: (11/13/2017 06:47:35 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: VBoxNetAdp Error: (11/13/2017 06:47:05 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Usługa GamingApp_Service zawiesiła się podczas uruchamiania. Error: (11/12/2017 10:55:58 AM) (Source: DCOM) (EventID: 10016) (User: Stacjonarny) Description: Zgodnie z ustawieniami uprawnienia domyślne ustawienia komputera nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C} i identyfikatorem aplikacji APPID {CE79BC8B-2980-4CA9-9570-6E0BF5B93BF2} użytkownikowi Stacjonarny\Damian o identyfikatorze zabezpieczeń SID (S-1-5-21-3295605243-3104791100-1276282624-1006) z adresu LocalHost (użycie LRPC). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (11/12/2017 10:27:47 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: VBoxNetAdp Error: (11/12/2017 01:03:55 AM) (Source: DCOM) (EventID: 10016) (User: Stacjonarny) Description: Zgodnie z ustawieniami uprawnienia domyślne ustawienia komputera nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C} i identyfikatorem aplikacji APPID {CE79BC8B-2980-4CA9-9570-6E0BF5B93BF2} użytkownikowi Stacjonarny\Damian o identyfikatorze zabezpieczeń SID (S-1-5-21-3295605243-3104791100-1276282624-1006) z adresu LocalHost (użycie LRPC). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. CodeIntegrity: =================================== Date: 2017-10-01 00:53:28.254 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2017-10-01 00:53:28.254 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2017-09-30 13:26:37.911 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2017-09-30 13:26:37.911 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2017-09-30 00:01:16.536 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2017-09-30 00:01:16.536 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2017-09-29 20:24:00.921 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2017-09-29 20:24:00.918 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2017-09-29 18:42:48.252 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2017-09-29 18:42:48.249 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-3570 CPU @ 3.40GHz Procent pamięci w użyciu: 45% Całkowita pamięć fizyczna: 7157.3 MB Dostępna pamięć fizyczna: 3921.55 MB Całkowita pamięć wirtualna: 22486.79 MB Dostępna pamięć wirtualna: 18455.3 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:172.69 GB) (Free:25.4 GB) NTFS Drive d: (Nowy) (Fixed) (Total:292.97 GB) (Free:178.62 GB) NTFS Drive e: (DANE) (Fixed) (Total:465.76 GB) (Free:218.49 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: EE2AF1BB) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=293 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=172.7 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 694F99AB) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================