Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 11.03.2018 01 Uruchomiony przez pycio (12-03-2018 22:28:42) Uruchomiony z C:\Users\pycio\Downloads Windows 10 Home Wersja 1709 16299.125 (X64) (2017-12-05 11:56:12) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2948902497-3262320950-2415622978-500 - Administrator - Disabled) defaultuser0 (S-1-5-21-2948902497-3262320950-2415622978-1000 - Limited - Disabled) => C:\Users\defaultuser0 Gość (S-1-5-21-2948902497-3262320950-2415622978-501 - Limited - Disabled) Konto domyślne (S-1-5-21-2948902497-3262320950-2415622978-503 - Limited - Disabled) patry (S-1-5-21-2948902497-3262320950-2415622978-1002 - Limited - Disabled) pycio (S-1-5-21-2948902497-3262320950-2415622978-1001 - Administrator - Enabled) => C:\Users\pycio WDAGUtilityAccount (S-1-5-21-2948902497-3262320950-2415622978-504 - Limited - Disabled) witop (S-1-5-21-2948902497-3262320950-2415622978-1003 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: 360 Total Security (Enabled - Up to date) {0371CA44-3F80-A1D3-BECE-910620B58D50} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: 360 Total Security (Enabled - Up to date) {B8102BA0-19BA-AE5D-847E-AA745B32C7ED} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-2948902497-3262320950-2415622978-1001\...\uTorrent) (Version: 3.5.1.44332 - BitTorrent Inc.) 360 Total Security (HKLM-x32\...\360TotalSecurity) (Version: 8.8.0.1050 - 360 Security Center) 4K Video Downloader 4.4 (HKLM-x32\...\{F350AF86-CD2C-45DC-9F5E-9C1A6789E537}) (Version: 4.4.0.2235 - Open Media LLC) 7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov) Adobe Reader XI (11.0.23) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated) Aktualizacje NVIDIA 31.0.11.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.0.11.0 - NVIDIA Corporation) Hidden Backup and Sync from Google (HKLM-x32\...\{AC62F3F2-61A2-4357-93EC-C308E3FEDF4E}) (Version: 3.39.8370.7843 - Google, Inc.) Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.8.2.48475 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB) CCleaner (HKLM\...\CCleaner) (Version: 5.39 - Piriform) Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform) DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 391.01 - NVIDIA Corporation) Hidden Dropbox (HKLM-x32\...\Dropbox) (Version: 44.4.58 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.65.1 - Dropbox, Inc.) Hidden DVDFab Virtual Drive (HKLM\...\DVDFab Virtual Drive_is1) (Version: 1.5.1.1 - Fengtao Software Inc.) ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB) Fotosizer 3.06.0 (HKLM\...\Fotosizer) (Version: 3.06.0.564 - Fotosizer.com) GameRanger (HKU\S-1-5-21-2948902497-3262320950-2415622978-1001\...\GameRanger) (Version: - GameRanger Technologies) GIMP 2.8.20 (HKLM\...\GIMP-2_is1) (Version: 2.8.20 - The GIMP Team) GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 64.0.3282.186 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software) Java 8 Update 161 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180161F0}) (Version: 8.0.1610.12 - Oracle Corporation) K-Lite Mega Codec Pack 13.7.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 13.7.5 - KLCP) Logitech SetPoint 6.67 (HKLM\...\sp6) (Version: 6.67.83 - Logitech) Microsoft Office Professional Plus 2016 - pl-pl (HKLM\...\ProPlusRetail - pl-pl) (Version: 16.0.9029.2167 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2948902497-3262320950-2415622978-1001\...\OneDriveSetup.exe) (Version: 18.025.0204.0009 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Motorsport Manager (HKLM-x32\...\Motorsport Manager_is1) (Version: - ) NVIDIA GeForce Experience 3.12.0.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.12.0.84 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 391.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 391.01 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.36.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.36.6 - NVIDIA Corporation) NVIDIA Sterownik graficzny 391.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.01 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.9029.2167 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.9029.2167 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.9029.2167 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0415-0000-0000000FF1CE}) (Version: 16.0.9029.2167 - Microsoft Corporation) Hidden OnePlus USB Drivers 1.00 (HKLM-x32\...\OnePlus USB Drivers 1.00) (Version: 1.00 - OnePlus, Inc) Origin (HKLM-x32\...\Origin) (Version: 10.5.14.38647 - Electronic Arts, Inc.) Panel sterowania NVIDIA 391.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 391.01 - NVIDIA Corporation) Hidden Preorder Super Hudson Skin (HKLM-x32\...\1351967636_is1) (Version: 1.1.1.17568 - GOG.com) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) Railway Empire (HKLM-x32\...\1556481953_is1) (Version: 1.1.1.17568 - GOG.com) Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.28.1 - Renesas Electronics Corporation) Hidden Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.28.1 - Renesas Electronics Corporation) Rise Of Industry (HKLM-x32\...\1259329786_is1) (Version: 0.5.0.0902 - GOG.com) Sid Meiers Civilization VI Rise and Fall (HKLM-x32\...\Sid Meiers Civilization VI Rise and Fall_is1) (Version: - ) Skype™ 7.37 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.37.103 - Skype Technologies S.A.) Speccy (HKLM\...\Speccy) (Version: 1.31 - Piriform) Spotify (HKU\S-1-5-21-2948902497-3262320950-2415622978-1001\...\Spotify) (Version: 1.0.73.345.g6c9971ef - Spotify AB) The Sims 4 - Deluxe Edition - Version 1.33.38.1020 (HKLM-x32\...\The Sims 4 - Deluxe Edition_is1) (Version: 1.33.38.1020 - ) The Witcher 3 - Wild Hunt (HKLM-x32\...\1495134320_is1) (Version: 2.0.0.51 - GOG.com) TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.2 - TrueCrypt Foundation) TS Compatibility Fix (HKLM\...\{3f4535f8-e996-4cf1-bb6d-66eb87969155}.sdb) (Version: - ) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN) Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden War Thunder Launcher 1.0.3.48 (HKU\S-1-5-21-2948902497-3262320950-2415622978-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment) Wondershare Filmora(Build 8.5.1) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software) Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare) Zeus Pan Olimpu - Złota Edycja (HKLM-x32\...\{9F08B250-6805-4CBA-8014-6D927767A3F6}) (Version: 2.0 - VUGames) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-01-29] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-01-29] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-01-29] (Google) ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ContextMenuHandlers1: [DVDFABVirtualDrive] -> {71343FFB-3ECB-4FA7-BAAC-8DB614DE3C05} => C:\Program Files\DVDFab Virtual Drive1\vdrive.dll [2014-08-29] (DVDFab Software) ContextMenuHandlers1-x32: [DVDFABVirtualDrive32] -> {71343FFB-3ECB-4FA7-BAAC-8DB614DE3C04} => C:\Program Files\DVDFab Virtual Drive1\vdrive32.dll [2014-08-29] (DVDFab Software) ContextMenuHandlers1-x32: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-01-29] (Google) ContextMenuHandlers1-x32: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2017-12-25] () ContextMenuHandlers2: [DVDFABVirtualDrive] -> {71343FFB-3ECB-4FA7-BAAC-8DB614DE3C05} => C:\Program Files\DVDFab Virtual Drive1\vdrive.dll [2014-08-29] (DVDFab Software) ContextMenuHandlers2-x32: [DVDFABVirtualDrive32] -> {71343FFB-3ECB-4FA7-BAAC-8DB614DE3C04} => C:\Program Files\DVDFab Virtual Drive1\vdrive32.dll [2014-08-29] (DVDFab Software) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-01-29] (Google) ContextMenuHandlers4: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2017-12-25] () ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2018-02-26] (Dropbox, Inc.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-02-23] (NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) ContextMenuHandlers6: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2017-12-25] () ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {003303FB-96F4-4B79-AD2B-45CFD28FA294} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-01-10] (NVIDIA Corporation) Task: {09F20CA9-FC96-4763-9CCC-AA47649BD18C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-01-09] (Piriform Ltd) Task: {0ECAE3E3-77AF-4F6D-928F-16F2B77EF4B3} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2017-12-20] () Task: {2C70CB22-FE7A-4AA7-9C43-3417063AD589} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-01-10] (NVIDIA Corporation) Task: {3015551E-B6F6-430A-ABB0-1B88C3B5C9CF} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-02-28] (Microsoft Corporation) Task: {3A0C7292-4725-468F-90F6-3ED21AB58BC7} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-01-10] (NVIDIA Corporation) Task: {3A6A2C66-FA01-4E13-ACD5-66E221910F27} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-02-28] (Microsoft Corporation) Task: {3B014143-3BCE-4A78-A2FE-82A112D54330} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-02-22] (Microsoft Corporation) Task: {53B80350-C36B-4AEE-A941-F72CC14D63F3} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-01-10] (NVIDIA Corporation) Task: {5914043B-51C5-4CD5-9FDD-47AD4E3E208C} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-02-28] (Microsoft Corporation) Task: {87EB7DC0-6F2E-4F3A-A731-CA625771D891} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA Task: {9A978785-9386-48C5-90AC-67F4B13488E6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-30] (Google Inc.) Task: {9D752060-DB42-44AB-8625-EAEE29C0D0F3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated) Task: {BEA2DEC9-5416-456E-B563-BE53659A344D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-01-09] (Piriform Ltd) Task: {C50E6081-74EB-4CB6-B58D-D39E8416B828} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-01-10] (NVIDIA Corporation) Task: {CCE2DB4F-2E3A-434E-8A39-5BB46E3B4029} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-02-28] (Microsoft Corporation) Task: {D22AAB5D-AFDE-4FAF-AB96-17079936EA1E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-02-22] (Microsoft Corporation) Task: {D55E6BED-665E-44D4-9ECA-1A4AF065B931} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-30] (Google Inc.) Task: {D6F4A522-8831-416C-8EF8-FA776E40DAE9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-01-10] (NVIDIA Corporation) Task: {DE358B6E-A959-4A97-BD16-CE5600DE5CE5} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-01-10] (NVIDIA Corporation) Task: {EA33718A-D191-4D84-BDCD-E1333D80A460} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-01-10] (NVIDIA Corporation) Task: {EAC0F4C0-CF5B-4341-B28F-C74DBBD00CAC} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-12-05] (Dropbox, Inc.) Task: {FF335B1B-9CCD-4817-AAAB-088CCF546D5A} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-12-05] (Dropbox, Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2017-09-29 14:41 - 2017-09-29 14:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2018-01-09 00:11 - 2018-02-24 05:36 - 000543248 _____ () C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\DisplayDriverAnalyzer\_DisplayDriverCrashAnalyzer64.dll 2017-03-30 10:38 - 2018-01-10 15:33 - 001268024 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-08-02 15:07 - 2017-08-02 15:07 - 000076152 _____ () C:\WINDOWS\system32\PnkBstrA.exe 2017-05-29 13:37 - 2017-12-25 06:33 - 000785360 _____ () C:\Program Files (x86)\360\Total Security\MenuEx64.dll 2017-12-05 12:42 - 2017-12-05 12:42 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-12-05 12:42 - 2017-12-05 12:42 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-01-29 12:42 - 2018-01-29 12:42 - 041100328 _____ () C:\Program Files (x86)\Google\Drive\googledrivesync.exe 2017-05-29 13:37 - 2017-12-25 06:33 - 001168992 _____ () C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe 2018-03-01 20:30 - 2018-02-22 04:57 - 002918744 _____ () C:\Program Files (x86)\Google\Chrome\Application\64.0.3282.186\swiftshader\libglesv2.dll 2018-03-01 20:30 - 2018-02-22 04:57 - 000138072 _____ () C:\Program Files (x86)\Google\Chrome\Application\64.0.3282.186\swiftshader\libegl.dll 2017-05-29 13:37 - 2017-12-25 06:33 - 000099240 _____ () C:\Program Files (x86)\360\Total Security\deepscan\qutmload.dll 2017-03-30 10:38 - 2018-01-10 15:33 - 001041208 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2018-03-12 22:20 - 2018-03-12 22:20 - 000088064 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\_ctypes.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000069120 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\bz2.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000920064 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\_hashlib.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000098816 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\win32api.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000110080 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\pywintypes27.dll 2018-03-12 22:20 - 2018-03-12 22:20 - 000364544 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\pythoncom27.dll 2018-03-12 22:20 - 2018-03-12 22:20 - 000686080 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\unicodedata.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000320512 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\win32com.shell.shell.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 001177088 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\wx._core_.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000806912 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\wx._gdi_.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000816640 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\wx._windows_.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 001067520 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\wx._controls_.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000733696 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\wx._misc_.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000736256 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\pysqlite2._sqlite.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000119808 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\win32file.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000108544 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\win32security.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000007168 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\hashobjs_ext.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000017920 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\thumbnails_ext.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000082432 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\usb_ext.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000013824 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\common.time34.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000018432 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\win32event.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000027648 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\windows.conditional.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000017408 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\windows.winwrap.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000089088 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\windows.volumes.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000167936 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\win32gui.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000046080 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\_socket.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 001311232 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\_ssl.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000135680 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\_elementtree.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000133632 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\pyexpat.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000038912 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\win32inet.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000077824 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\wx._html2.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000036864 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\_psutil_windows.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000524248 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\windows._lib_cacheinvalidation.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000010240 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\select.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000011264 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\win32crypt.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000218624 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\PIL._imaging.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000027648 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\_multiprocessing.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000020480 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\_yappi.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000035840 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\win32process.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000024064 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\win32pipe.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000025600 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\win32pdh.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000059392 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\windows.device_monitor.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000017408 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\win32profile.pyd 2018-03-12 22:20 - 2018-03-12 22:20 - 000022528 _____ () C:\Users\pycio\AppData\Local\Temp\_MEI10322\win32ts.pyd 2017-05-29 13:37 - 2017-12-25 06:33 - 000592992 _____ () C:\Program Files (x86)\360\Total Security\safemon\wdui2.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\52C1530C.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\52C1530C.sys => ""="Driver" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2016-07-16 12:47 - 2017-04-05 14:30 - 000000861 _____ C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 platform.wondershare.com ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2948902497-3262320950-2415622978-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg HKU\S-1-5-21-2948902497-3262320950-2415622978-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\pycio\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\db0fad40bfc01189a3ff_1920x1200_cropromiar-niestandardowy.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\Services: WSearch => 2 HKLM\...\StartupApproved\Run: => "Logitech Download Assistant" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "GrpConv" HKLM\...\StartupApproved\Run32: => "Dropbox" HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe" HKU\S-1-5-21-2948902497-3262320950-2415622978-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2948902497-3262320950-2415622978-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-2948902497-3262320950-2415622978-1001\...\StartupApproved\Run: => "Gaijin.Net Agent" HKU\S-1-5-21-2948902497-3262320950-2415622978-1001\...\StartupApproved\Run: => "World of Tanks" HKU\S-1-5-21-2948902497-3262320950-2415622978-1001\...\StartupApproved\Run: => "Spotify Web Helper" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{066127B9-A379-4903-B081-E080420C6281}] => (Allow) Z:\Steam\steamapps\common\RimWorld\RimWorldWin.exe FirewallRules: [{3F2ECFC8-7191-4571-919D-FBBE66E43169}] => (Allow) Z:\Steam\steamapps\common\RimWorld\RimWorldWin.exe FirewallRules: [{249D6887-4550-463A-8D55-83C164CFC369}] => (Allow) Z:\Steam\steamapps\common\Cities_Skylines\Cities.exe FirewallRules: [{BD2CF4E2-7AF7-4336-970B-8F99B15D0A2A}] => (Allow) Z:\Steam\steamapps\common\Cities_Skylines\Cities.exe FirewallRules: [{FDC1A51F-3A83-469E-B6DB-ADE0E2D204FA}] => (Allow) Z:\Steam\steamapps\common\Transport Fever\TransportFever.exe FirewallRules: [{F46D1898-E6F3-4AAD-A1C8-86BB9BC91B51}] => (Allow) Z:\Steam\steamapps\common\Transport Fever\TransportFever.exe FirewallRules: [{DB71707D-1A0C-4F84-89BB-C585F7350652}] => (Allow) Z:\Steam\steamapps\common\Car Mechanic Simulator 2018\cms2018.exe FirewallRules: [{37D3023C-216F-4C0D-8DE5-F8DDBD80D468}] => (Allow) Z:\Steam\steamapps\common\Car Mechanic Simulator 2018\cms2018.exe FirewallRules: [{093891DC-4F92-4DC4-9D00-67F2DFBAB074}] => (Allow) Z:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{8730C56D-014C-4308-874A-AB5C1BE6BD43}] => (Allow) Z:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{956F8676-0999-4D64-8E0E-4D897266C2C2}] => (Allow) Z:\Steam\Steam.exe FirewallRules: [{41750A9E-2C75-4B71-8BD1-DD91005BEBD2}] => (Allow) Z:\Steam\Steam.exe FirewallRules: [{D26CF5F7-5209-4321-AEC4-7350E673C000}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{B3B78BC6-7B68-4D13-844A-D2BA6E691B91}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [UDP Query User{F8513855-7B80-4D3F-A13C-AE4266A2D52A}Z:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) Z:\program files (x86)\origin games\battlefield 4\bf4.exe FirewallRules: [TCP Query User{21F5F3F7-8C03-454E-80EF-B1C84FA686EE}Z:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) Z:\program files (x86)\origin games\battlefield 4\bf4.exe FirewallRules: [{2870B0C5-BB3E-41A0-BC37-979EC8B5EB54}] => (Allow) Z:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher_x86.exe FirewallRules: [{E4ADF07A-E1A1-4CA1-BDC7-6999CF4E98F3}] => (Allow) Z:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher_x86.exe FirewallRules: [{CB84C880-BFE0-4587-B13E-434882862BBE}] => (Allow) Z:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher.exe FirewallRules: [{39E39BA2-3938-43A5-B050-3942D2696BBD}] => (Allow) Z:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher.exe FirewallRules: [{B5BEEC6D-61A3-4B71-B9E4-76B5B8B5EE80}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe FirewallRules: [{32336070-B7CE-4525-9F8D-9BFBCADE51B5}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe FirewallRules: [{E6DD1FF5-CD34-45FC-A972-EEFCF1A45CFC}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{7A6E0B57-5189-41FC-8233-9515BBE27A3B}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{0DD6E68A-4994-44F6-AB60-34A2745811ED}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{DE861EBA-EC19-48A8-98DC-E076B43BCFCC}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{E2E1CCE1-9099-4700-898F-353CF8CF9AEA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{FE6AB065-8303-4D75-9E2E-3E65D2E97E13}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{4B138821-596C-4EFA-BA29-A9977C97F0E8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{DAD423F0-238C-4250-9E97-CFEBA4769A00}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{FC69F612-D286-4FA7-8030-1F8283276D72}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe FirewallRules: [{E9D5677D-5984-4218-A48D-06844A83574F}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe FirewallRules: [{52DF7BD3-0D99-4B16-BFDA-53C18B2C0FD2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{24475498-9579-41F0-9ADF-2DC6867A7C3C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{059A3C90-0904-4E9C-BD5C-A6F48065D3F7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{DA3EF70F-1EF8-42B3-A9C7-09AE28AF83FD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{55F09A10-0E81-44F7-954E-DFA09945CA36}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{FE18FA37-7ADE-41A4-A157-3CFF7081BCA7}] => (Allow) E:\Games\Steam\Steam.exe FirewallRules: [{50373678-1490-423F-A730-F1E7324B1157}] => (Allow) E:\Games\Steam\Steam.exe FirewallRules: [{9A99CBAA-6893-4472-B943-8D9A77B37644}] => (Allow) E:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{B5B622AE-4814-44CF-A1DF-74DB69403610}] => (Allow) E:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{ACEEB9A6-7D79-4A35-808B-8816B852D556}] => (Allow) E:\Games\Steam\steamapps\common\Cities_Skylines\Cities.exe FirewallRules: [{ADE35E84-7661-4848-8FB5-10AC61B6B5D3}] => (Allow) E:\Games\Steam\steamapps\common\Cities_Skylines\Cities.exe FirewallRules: [{4B4D034D-3C8D-4E83-9556-DA6439637026}] => (Allow) E:\Games\Steam\steamapps\common\RimWorld\RimWorldWin.exe FirewallRules: [{6188EA39-AB99-4F05-9E3B-226516163CA6}] => (Allow) E:\Games\Steam\steamapps\common\RimWorld\RimWorldWin.exe FirewallRules: [{60187B26-28DA-434D-BE5A-02780C494A04}] => (Allow) E:\Games\Steam\steamapps\common\Prison Architect\Prison Architect.exe FirewallRules: [{898723B0-2412-4700-9603-C5DDEA511AD1}] => (Allow) E:\Games\Steam\steamapps\common\Prison Architect\Prison Architect.exe FirewallRules: [{55A88954-7693-41C3-83F4-E4AFBC891ED7}] => (Allow) E:\Games\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe FirewallRules: [{5438B803-7EB8-4200-B5AD-6509049D8A8B}] => (Allow) E:\Games\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe FirewallRules: [{26260018-BBE7-4DD8-9783-A2EAB4E9193D}] => (Allow) C:\Users\pycio\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{A74131F2-610A-422D-8A88-B48E8B13908A}] => (Allow) C:\Users\pycio\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{EA36703A-62DC-4DB7-8BAC-92F9A1EE140D}] => (Allow) C:\Users\pycio\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{9513CEF0-86C8-424B-8386-0165F59A90A3}] => (Allow) C:\Users\pycio\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{FA3274FD-9463-405A-A438-79484A0DF61A}] => (Allow) C:\Users\pycio\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{F0261035-964A-485D-9722-41CAB70E9083}] => (Allow) C:\Users\pycio\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{96476551-E111-441E-BCB6-7FC45461BA26}] => (Allow) Z:\Steam\steamapps\common\Prison Architect\Prison Architect.exe FirewallRules: [{20583BA2-11FF-4976-9B59-ACC635EFB208}] => (Allow) Z:\Steam\steamapps\common\Prison Architect\Prison Architect.exe FirewallRules: [{9B32B7D0-D0B7-4352-BD9D-4AFC03E196B0}] => (Allow) Z:\Steam\steamapps\common\Football Manager 2018\fm.exe FirewallRules: [{7002208C-DBA8-40E0-B44E-152C3E129A2D}] => (Allow) Z:\Steam\steamapps\common\Football Manager 2018\fm.exe FirewallRules: [{8B81FDA7-633C-435E-BA8E-EA053B1F9CEE}] => (Allow) Z:\Steam\steamapps\common\Crusader Kings II\CK2game.exe FirewallRules: [{8A2BDCDD-F372-4FD1-81AC-35DFE9E8AF0E}] => (Allow) Z:\Steam\steamapps\common\Crusader Kings II\CK2game.exe FirewallRules: [TCP Query User{6FDED39C-0325-4893-9AB2-1F4C75B78C76}C:\games\warthunder\win64\aces.exe] => (Allow) C:\games\warthunder\win64\aces.exe FirewallRules: [UDP Query User{41949351-C636-4F65-B50D-7741E6A78A4C}C:\games\warthunder\win64\aces.exe] => (Allow) C:\games\warthunder\win64\aces.exe FirewallRules: [{85CD33BF-4779-423C-9273-DFD057F72EA2}] => (Block) Z:\Program Files (x86)\Filmora\Filmora.exe FirewallRules: [{83FE5D9F-01BE-4EB2-99CD-AD18AD74196E}] => (Block) Z:\Program Files (x86)\Filmora\Filmora.exe FirewallRules: [TCP Query User{671FAF45-52BE-4C87-90B7-F16DBF892B06}Z:\games\railway empire\railwayempire.exe] => (Block) Z:\games\railway empire\railwayempire.exe FirewallRules: [UDP Query User{2A74EA59-9912-435D-8080-7AE97F8DF4DF}Z:\games\railway empire\railwayempire.exe] => (Block) Z:\games\railway empire\railwayempire.exe FirewallRules: [{40DA46C5-2D2A-4038-AE21-3BC0D0FCBF5F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{B21ADFD8-1013-4729-8BC7-4B93F911C41B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{6066BDEE-E3B0-4374-A90B-048336B77988}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{79D0761C-9EF1-4117-93F9-DA3CF7E73669}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{C34841C6-B5FC-4690-B60C-8DDE3A125E30}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [TCP Query User{6ECFAA02-16E8-4E33-9F94-C203E0A763AA}C:\users\pycio\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\pycio\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{FC0DD7A0-A09E-4990-8A61-779DE50B03E0}C:\users\pycio\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\pycio\appdata\roaming\spotify\spotify.exe FirewallRules: [{69DC73E7-C901-41D0-82FF-AD9976C2B6E7}] => (Block) Z:\GAMES\Sid Meiers Civilization VI Rise and Fall\Base\Binaries\Win64Steam\CivilizationVI_DX12.exe FirewallRules: [{856503EB-6C08-4454-B882-B56FE5317F3B}] => (Block) Z:\GAMES\Sid Meiers Civilization VI Rise and Fall\Base\Binaries\Win64Steam\CivilizationVI_DX12.exe FirewallRules: [{0556E67E-72D2-4B44-82AD-F994482D6147}] => (Block) Z:\GAMES\Sid Meiers Civilization VI Rise and Fall\Base\Binaries\Win64Steam\CivilizationVI.exe FirewallRules: [{0BBB2966-63F9-4467-9AD7-18DE801574B1}] => (Block) Z:\GAMES\Sid Meiers Civilization VI Rise and Fall\Base\Binaries\Win64Steam\CivilizationVI.exe FirewallRules: [{79BA424E-C95C-4DB3-8C30-BC6F465A98AC}] => (Allow) Z:\Steam\steamapps\common\Airport CEO\Airport CEO.exe FirewallRules: [{A4AFC03E-FC1A-4F74-B8A1-9AC54D706042}] => (Allow) Z:\Steam\steamapps\common\Airport CEO\Airport CEO.exe FirewallRules: [{6DC9E53E-4687-4ED2-B9B7-2FEA1AFD8656}] => (Allow) Z:\Steam\steamapps\common\KingdomComeDeliverance\Bin\Win64\KingdomCome.exe FirewallRules: [{5BC5863F-DC6B-49C5-94B3-733F90406F3B}] => (Allow) Z:\Steam\steamapps\common\KingdomComeDeliverance\Bin\Win64\KingdomCome.exe FirewallRules: [{F8383CE0-A327-4167-A792-6753928DD463}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe FirewallRules: [{C6E9CEA2-D72B-4A18-A409-FF765C574459}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{DFB2BC4A-5931-4BE0-B352-2C23AA729246}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe FirewallRules: [{8BEBBA85-F036-46CB-A391-245843F6D161}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe ==================== Punkty Przywracania systemu ========================= UWAGA: Przywracanie systemu jest wyłączone ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: NVIDIA Virtual Audio Device (Wave Extensible) (WDM) Description: NVIDIA Virtual Audio Device (Wave Extensible) (WDM) Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: NVIDIA Service: nvvad_WaveExtensible Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Dziennik System: ============= Error: (03/12/2018 10:21:26 PM) (Source: DCOM) (EventID: 10016) (User: MACIEK) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} i identyfikatorem aplikacji APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} użytkownikowi MACIEK\pycio o identyfikatorze zabezpieczeń SID (S-1-5-21-2948902497-3262320950-2415622978-1001) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (03/12/2018 10:20:15 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} i identyfikatorem aplikacji APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} użytkownikowi ZARZĄDZANIE NT\USŁUGA LOKALNA o identyfikatorze zabezpieczeń SID (S-1-5-19) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (03/12/2018 10:20:15 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} i identyfikatorem aplikacji APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} użytkownikowi ZARZĄDZANIE NT\USŁUGA LOKALNA o identyfikatorze zabezpieczeń SID (S-1-5-19) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (03/12/2018 10:20:15 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} i identyfikatorem aplikacji APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} użytkownikowi ZARZĄDZANIE NT\USŁUGA LOKALNA o identyfikatorze zabezpieczeń SID (S-1-5-19) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (03/12/2018 10:20:15 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} i identyfikatorem aplikacji APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} użytkownikowi ZARZĄDZANIE NT\USŁUGA LOKALNA o identyfikatorze zabezpieczeń SID (S-1-5-19) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-3450 CPU @ 3.10GHz Procent pamięci w użyciu: 22% Całkowita pamięć fizyczna: 16353.43 MB Dostępna pamięć fizyczna: 12645.19 MB Całkowita pamięć wirtualna: 18785.43 MB Dostępna pamięć wirtualna: 14992.21 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:118.69 GB) (Free:16.61 GB) NTFS Drive z: (Maciek DANE) (Fixed) (Total:465.76 GB) (Free:148.6 GB) NTFS \\?\Volume{a6bb5b0a-24e9-4cad-8e39-81a6b3a78e85}\ (Odzyskiwanie) (Fixed) (Total:0.44 GB) (Free:0.05 GB) NTFS \\?\Volume{f1c22f17-a272-417a-a8e8-16ed00d57c27}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 119.2 GB) (Disk ID: F238A5F2) Partition: GPT. ======================================================== Disk: 1 (MBR Code: Windows XP) (Size: 465.8 GB) (Disk ID: B0473F95) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================