Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 02.08.2018 Uruchomiony przez Kamil (15-08-2018 17:19:28) Uruchomiony z C:\Users\Kamil\Downloads Windows 10 Home Wersja 1709 16299.431 (X64) (2018-02-08 15:09:46) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-1357859409-3981079408-4033691241-500 - Administrator - Disabled) defaultuser0 (S-1-5-21-1357859409-3981079408-4033691241-1000 - Limited - Disabled) => C:\Users\defaultuser0 Gość (S-1-5-21-1357859409-3981079408-4033691241-501 - Limited - Disabled) iwona (S-1-5-21-1357859409-3981079408-4033691241-1003 - Limited - Enabled) => C:\Users\iwona Kamil (S-1-5-21-1357859409-3981079408-4033691241-1001 - Administrator - Enabled) => C:\Users\Kamil Konto domyślne (S-1-5-21-1357859409-3981079408-4033691241-503 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-1357859409-3981079408-4033691241-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70} AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-1357859409-3981079408-4033691241-1001\...\uTorrent) (Version: 3.5.3.44396 - BitTorrent Inc.) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.5.0.331 - Adobe Systems Incorporated) Adobe Flash Player 28 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 28.0.0.137 - Adobe Systems Incorporated) Adobe Flash Player 29 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 29.0.0.140 - Adobe Systems Incorporated) Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_1_2) (Version: 19.1.2 - Adobe Systems Incorporated) Aktualizacje NVIDIA 31.1.10.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.1.10.0 - NVIDIA Corporation) Hidden Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 385.41 - NVIDIA Corporation) Hidden ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.12 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.14.0006 - ASUS) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0040 - ASUS) AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.85 - ICEpower a/s) AVG Secure VPN (HKLM\...\{078F51FA-D92F-419A-9E69-08BC59265F7E}_is1) (Version: 1.5.664 - AVG) Bandicam (HKLM-x32\...\Bandicam) (Version: 2.1.0.708 - Bandisoft.com) Bandicut (HKLM-x32\...\Bandicut) (Version: 3.1.2.441 - Bandicam.com) Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com) Brother MFL-Pro Suite DCP-J100 (HKLM-x32\...\{B742757A-7658-4E09-A51A-085CF0F7F4D3}) (Version: 1.0.0.0 - Brother Industries, Ltd.) Camtasia 9 (HKLM\...\{33E08945-3D7B-40BB-B34F-1A3C8B9650DE}) (Version: 9.1.2.3011 - TechSmith Corporation) Hidden Camtasia 9 (HKLM-x32\...\{34ab05ac-3089-417f-828e-c2da3d5b4e09}) (Version: 9.1.2.3011 - TechSmith Corporation) CLEO 4.3 (HKLM-x32\...\{A8F37EB0-C741-41D7-8CAB-5B40ECEEF094}_is1) (Version: 4.3 - Seemann, Deji, Alien) Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.30.60 - Conexant) Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.2.5 - ASUSTek COMPUTER INC.) Discord (HKU\S-1-5-21-1357859409-3981079408-4033691241-1001\...\Discord) (Version: 0.0.301 - Discord Inc.) Disk Drill 2.0.0.334 (HKLM-x32\...\{4A80D83B-1C64-48C6-A4ED-04FF9BC07F65}) (Version: 2.0.334 - CleverFiles) Epic Games Launcher (HKLM-x32\...\{B8DD5307-C57A-4F11-B0E4-B18F9B855B3E}) (Version: 1.1.139.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden ESET Security (HKLM\...\{79AE1BDC-BD8A-4186-96FF-F893108DB7D9}) (Version: 11.0.154.0 - ESET, spol. s r.o.) Facebook Gameroom 1.21.6663.39782 (HKLM-x32\...\{68176DF0-3139-406A-955D-E90916FB9EE8}) (Version: 1.21.6663.39782 - Facebook) FileZilla Client 3.33.0 (HKLM-x32\...\FileZilla Client) (Version: 3.33.0 - Tim Kosse) Game Booster 3 (HKLM-x32\...\Game Booster_is1) (Version: 3.4 - IObit) GameFirst IV (HKLM-x32\...\{795A0031-3DD5-43F1-BCBA-AEBA756D0FBB}) (Version: 1.5.23 - ASUS) Hidden GameFirst IV (HKLM-x32\...\GameFirst IV 1.5.23) (Version: 1.5.23 - ASUS) GIANTS Editor 4.1.9 (HKLM-x32\...\giants_editor_4.1.9_is1) (Version: 4.1.9 - GIANTS Software GmbH) GIMP 2.8.22 (HKLM\...\GIMP-2_is1) (Version: 2.8.22 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 68.0.3440.106 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden Intel(R) Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10600.150 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4550 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{9A287643-10C5-4463-B9D1-B2404CE18CCF}) (Version: 17.1.1529.1620 - Intel Corporation) Intel® Security Assist (HKLM-x32\...\{B294CE94-FE0F-4427-910C-180AF9FCFED1}) (Version: 1.0.1.620 - Intel Corporation) Java 8 Update 151 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180151F0}) (Version: 8.0.1510.12 - Oracle Corporation) Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden LinuxLive USB Creator (HKLM-x32\...\LinuxLive USB Creator) (Version: 2.9 - Thibaut Lauziere) LogMeIn Hamachi (HKLM-x32\...\{892DB406-ADF8-4C30-9840-8438AF5B8763}) (Version: 2.2.0.607 - LogMeIn, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.607 - LogMeIn, Inc.) Malwarebytes (wersja 3.4.5.2467) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.4.5.2467 - Malwarebytes) MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation) Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.10325.20082 - Microsoft Corporation) Microsoft Office Language Pack 2010 - Polish/Polski (HKLM-x32\...\Office14.OMUI.pl-pl) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1357859409-3981079408-4033691241-1001\...\OneDriveSetup.exe) (Version: 18.131.0701.0007 - Microsoft Corporation) Microsoft PowerPoint 2010 (HKLM-x32\...\Office14.POWERPOINT) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Mozilla Firefox 61.0.2 (x64 pl) (HKLM\...\Mozilla Firefox 61.0.2 (x64 pl)) (Version: 61.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 59.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 61.0.2.6793 - Mozilla) Mozilla Thunderbird 52.8.0 (x86 pl) (HKLM-x32\...\Mozilla Thunderbird 52.8.0 (x86 pl)) (Version: 52.8.0 - Mozilla) MTA:SA v1.5.5 (HKLM-x32\...\MTA:SA 1.5) (Version: v1.5.5 - Multi Theft Auto) NordVPN (HKLM-x32\...\{36D81B7E-3941-4D8D-B2E7-7D29141F4B77}) (Version: 6.16.9 - NordVPN) Hidden NordVPN (HKLM-x32\...\NordVPN 6.16.9) (Version: 6.16.9 - NordVPN) NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.1 - Notepad++ Team) NVIDIA GeForce Experience 3.13.1.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.13.1.30 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10325.20082 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10325.20082 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.10325.20082 - Microsoft Corporation) Hidden OpenOffice 4.1.4 (HKLM-x32\...\{BA41785F-1DB1-4CEA-830A-149E940786B8}) (Version: 4.14.9788 - Apache Software Foundation) Opera Stable 54.0.2952.64 (HKLM-x32\...\Opera 54.0.2952.64) (Version: 54.0.2952.64 - Opera Software) Oprogramowanie Intel® PROSet/Wireless (HKLM-x32\...\{5853172b-5520-4089-9ef4-e26c594382b3}) (Version: 19.30.0 - Intel Corporation) osu! (HKLM-x32\...\{c45a78fb-f29a-4e3d-bd0e-3af22ac10753}) (Version: latest - ppy Pty Ltd) Panel sterowania NVIDIA 385.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 385.41 - NVIDIA Corporation) Hidden PLAY INTERNET (HKLM-x32\...\PLAY INTERNET) (Version: 23.015.11.00.264 - Huawei Technologies Co.,Ltd) Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) PuTTY release 0.70 (64-bit) (HKLM\...\{45B3032F-22CC-40CD-9E97-4DA7095FA5A2}) (Version: 0.70.0.0 - Simon Tatham) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10143.21278 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.9.422.2016 - Realtek) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.3.8 - Rockstar Games) ROG Gaming Center (HKLM-x32\...\{CC182DBF-FC67-4F79-9930-6A2682E60BDD}) (Version: 1.0.8 - ASUS) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0000-0000-0000000FF1CE}_Office14.POWERPOINT_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 32-Bit Edition (HKLM-x32\...\{90140000-0100-0415-0000-0000000FF1CE}_Office14.OMUI.pl-pl_{11B0F533-C8CF-420C-A43C-C7F93773CA62}) (Version: - Microsoft) SIM Dashboard (HKLM-x32\...\{d8f25faf-6f9c-4251-8dde-d19cb30b0faa}) (Version: 2.6.9.2 - stryder-it) SIMDashboardServer (HKLM-x32\...\{35E2DCAB-7641-48AB-8F17-2CDA1E9C11F4}) (Version: 2.6.9.2 - stryder-it) Hidden SmartPSS 1.10.1 (HKLM-x32\...\SmartPSS) (Version: 1.10.1 - ) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - ) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.6 - TeamSpeak Systems GmbH) TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.2.5287 - TeamViewer) The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version: - Ubisoft) TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{A951B9A0-13C0-4A4B-8E04-3CCF05701086}) (Version: 2.47.0.0 - Microsoft Corporation) UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden Uplay (HKLM-x32\...\Uplay) (Version: 4.9 - Ubisoft) UxStyle (HKLM\...\{28A17CCB-77BB-49C9-847B-60E076DC43D1}) (Version: 0.2.4.2 - The Within Network, LLC) Hidden UxStyle (HKLM-x32\...\{6bf90d91-c5db-454e-a7b4-81bc6cbbe13f}) (Version: 0.2.4.2 - The Within Network, LLC) Vulkan Run Time Libraries 1.0.51.0 (HKLM\...\VulkanRT1.0.51.0) (Version: 1.0.51.0 - LunarG, Inc.) Windows Driver Package - ASUS (AsusSGDrv) Mouse (11/11/2015 8.0.0.23) (HKLM\...\FF0137EA2940E916D51DA702B6425126CC7C89BF) (Version: 11/11/2015 8.0.0.23 - ASUS) Windscribe (HKLM-x32\...\{fa690e90-ddb0-4f0c-b3f1-136c084e5fc7}_is1) (Version: 1.82 Build 17 - Windscribe Limited) WinRAR 5.40 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) WinSCP 5.13.2 (HKLM-x32\...\winscp3_is1) (Version: 5.13.2 - Martin Prikryl) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-1357859409-3981079408-4033691241-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-F4C39456FB23}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-1357859409-3981079408-4033691241-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Kamil\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Kamil\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Kamil\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] () ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Kamil\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Kamil\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Kamil\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] () ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2017-08-29] () ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-07-20] (ESET) ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Kamil\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-07-20] (ESET) ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Kamil\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers3: [GB3ContextMenu] -> {3A488FE8-9916-4F36-BDFF-3DED559142E5} => C:\Program Files (x86)\IObit\Game Booster 3\GBV3ContextMenu.dll [2011-11-29] (IObit) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-27] (Malwarebytes) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Kamil\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Kamil\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxDTCM.dll [2016-11-30] (Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-08-22] (NVIDIA Corporation) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] () ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-07-20] (ESET) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-27] (Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-09-19] (Alexander Roshal) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {040D81A3-7075-400E-9592-B3E0446257D8} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.) Task: {1046B426-AE61-465B-ACE1-C9F711569B37} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-07-22] (Microsoft Corporation) Task: {19DD4D20-1141-46A4-9A94-75CFD5D1E85B} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-kamilwalczak88@outlook.com => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-05-11] (Adobe Systems, Incorporated) Task: {1DB8292D-C326-48B2-BB4E-53C26C69C1C2} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-12-18] (AsusTek) Task: {24474E94-82F1-4494-878C-D9B175F3B7CF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-03-14] (NVIDIA Corporation) Task: {2A1E9731-51CA-46A2-B7D5-05F0A42BA069} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_28_0_0_137_pepper.exe [2018-01-13] (Adobe Systems Incorporated) Task: {37C63A9B-B07C-4556-B501-9005AC45679C} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe [2018-04-29] () Task: {404F3822-7ED5-4781-84A5-CD66FD8DB66D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-03-14] (NVIDIA Corporation) Task: {41217F9B-49BF-4418-83DB-820A3A5A530F} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.) Task: {41D4626C-E05C-4F6A-BE53-6B7F2B4E314D} - System32\Tasks\ROG Gaming Center => C:\Program Files (x86)\ASUS\ROG Gaming Center\ROGGamingKey.exe [2016-03-14] (ASUSTek Computer Inc.) Task: {47F57A0F-B17E-43D5-812D-62EBFE98241D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-01-07] (Google Inc.) Task: {4D37AC53-4857-4554-A855-A4154C8B7546} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-1357859409-3981079408-4033691241-1001 => C:\Users\Kamil\AppData\Local\MEGAsync\MEGAupdater.exe [2018-01-15] (Mega Limited) Task: {606C4A69-ADBA-4091-BC5E-F7C7AE94D6C8} - System32\Tasks\AVG Secure VPN Update => C:\Program Files (x86)\AVG\Secure VPN\VpnUpdate.exe [2018-07-26] (AVG Technologies CZ, s.r.o.) Task: {66CF933E-6816-4F93-A776-DA2691D8B819} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-03-14] (NVIDIA Corporation) Task: {782C2908-B4C1-44D0-A982-5F60AA9F11E4} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-02-19] (Intel(R) Corporation) Task: {799295C7-53BF-43E5-A5D2-809151A94EC8} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK Task: {7D56365B-709A-4361-947C-59335449500F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-03-14] (NVIDIA Corporation) Task: {7DCD1810-B814-47D1-B75D-11C45DA8C58E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-03-14] (NVIDIA Corporation) Task: {7E8B8212-97A3-4F2F-BB4C-215A8AFCD4F9} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\Program Files\rempl\sedlauncher.exe [2018-08-03] (Microsoft Corporation) Task: {880CD551-631B-4B7F-903A-DFC15E3739CE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-01-07] (Google Inc.) Task: {8885EA2B-80A7-4DD8-BFB5-7537AE12F144} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_140_Plugin.exe [2018-04-15] (Adobe Systems Incorporated) Task: {8FA6C4B3-CBDD-4956-B6DA-99E52BAC5CE6} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA Task: {989982C4-82A7-4E99-BC9F-8FB212166DFF} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\WINDOWS\system32\MRT.exe [2018-08-14] (Microsoft Corporation) Task: {BF19EBC9-3FED-4B26-AA12-88EA9E629150} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-03-14] (NVIDIA Corporation) Task: {C6B6319E-D932-4C93-A254-1DE19F634B20} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-03-14] (NVIDIA Corporation) Task: {CF3B0950-46E9-4951-AA6A-0D3A44377149} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-03-14] (NVIDIA Corporation) Task: {D81FF288-7101-479D-A50C-96F80DAFDC0C} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2016-07-07] (ASUSTek COMPUTER INC.) Task: {D8381908-0FF9-4DA1-9482-6CF2702B1FA6} - System32\Tasks\Opera scheduled Autoupdate 1502295465 => C:\Program Files\Opera\launcher.exe [2018-07-25] (Opera Software) Task: {D96F3194-FD05-402C-80BD-C8AF5E77189F} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\osfinstaller.exe [2018-07-29] (Microsoft Corporation) Task: {DCC8CA1B-1F0A-4C8D-B2DC-9090EBE51B3C} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2015-12-02] (ASUS) Task: {DE8F59C5-3AAD-4BEF-92A2-9F8DC3F3E47C} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-kamilwalczak88@outlook.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2018-04-11] (Adobe Systems Incorporated) Task: {E693C54B-41D2-464D-81CD-4F72B9D424C0} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-07-29] (Microsoft Corporation) Task: {E8E615F5-2645-4235-847F-379278DBFF8E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-07-22] (Microsoft Corporation) Task: {F1BF6F52-19A1-4349-A55B-CB0E78E8B23A} - System32\Tasks\WpsExternal_20161114022915 => C:\Program Files (x86)\Kingsoft\WPS Office\ksolaunch.exe Task: {F3562049-64DF-4B1D-8A03-CB464A8ECD74} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-07-29] (Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\WpsExternal_20161114022915.job => C:\Program Files (x86)\Kingsoft\WPS Office\ksolaunch.exe ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2017-09-29 15:41 - 2017-09-29 15:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2017-09-29 15:41 - 2017-09-29 15:41 - 000419840 _____ () c:\windows\system32\SSDM.dll 2014-01-15 05:42 - 2014-01-15 05:42 - 000351824 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe 2017-09-01 09:31 - 2018-03-14 15:05 - 001267648 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2018-04-16 11:44 - 2018-03-12 15:09 - 002300192 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2017-08-11 10:36 - 2013-10-26 11:45 - 000651856 _____ () C:\ProgramData\PLAY INTERNET\OnlineUpdate\ouc.exe 2017-10-18 23:51 - 2017-10-18 23:51 - 000598528 _____ () C:\Users\Kamil\AppData\Local\MEGAsync\ShellExtX64.dll 2018-02-27 20:08 - 2018-02-27 20:08 - 000614856 _____ () C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll 2018-03-18 11:56 - 2018-02-22 02:26 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2018-03-18 11:55 - 2018-02-22 02:21 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-08-11 10:36 - 2013-08-31 07:44 - 002417152 _____ () C:\ProgramData\PLAY INTERNET\OnlineUpdate\QtCore4.dll 2017-08-11 10:36 - 2009-01-10 20:32 - 000011362 _____ () C:\ProgramData\PLAY INTERNET\OnlineUpdate\mingwm10.dll 2017-08-11 10:36 - 2013-08-31 07:46 - 001148416 _____ () C:\ProgramData\PLAY INTERNET\OnlineUpdate\QtNetwork4.dll 2017-08-11 10:36 - 2009-06-23 04:42 - 000043008 _____ () C:\ProgramData\PLAY INTERNET\OnlineUpdate\libgcc_s_dw2-1.dll 2017-09-01 09:31 - 2018-03-14 15:05 - 001041344 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2015-12-02 19:01 - 2015-12-02 19:01 - 000027648 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll 2015-12-02 19:01 - 2015-12-02 19:01 - 000124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll 2015-12-02 19:01 - 2015-12-02 19:01 - 000029184 _____ () C:\Program Files (x86)\ASUS\Splendid\VideoEnhance.dll 2016-05-25 23:52 - 2016-05-25 23:52 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40] AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [432] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2018-08-10 06:30 - 2018-08-10 06:30 - 000000913 _____ C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 bandicam.com 127.0.0.1 ssl.bandisoft.com ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-1357859409-3981079408-4033691241-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg DNS Servers: 192.168.43.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == HKLM\...\StartupApproved\StartupFolder: => "AVG Secure VPN.lnk" HKLM\...\StartupApproved\Run: => "SecurityHealth" HKLM\...\StartupApproved\Run: => "Classic Start Menu" HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run: => "XboxStat" HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "ControlCenter4" HKLM\...\StartupApproved\Run32: => "BrStsMon00" HKLM\...\StartupApproved\Run32: => "BCSSync" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKU\S-1-5-21-1357859409-3981079408-4033691241-1001\...\StartupApproved\StartupFolder: => "Facebook Gameroom.lnk" HKU\S-1-5-21-1357859409-3981079408-4033691241-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk" HKU\S-1-5-21-1357859409-3981079408-4033691241-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1357859409-3981079408-4033691241-1001\...\StartupApproved\Run: => "ycAutoLaunch_24EDAE64DA1779CC6D4B044E88B2A9A8" HKU\S-1-5-21-1357859409-3981079408-4033691241-1001\...\StartupApproved\Run: => "pnmqczwuvm" HKU\S-1-5-21-1357859409-3981079408-4033691241-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-1357859409-3981079408-4033691241-1001\...\StartupApproved\Run: => "OneDriveSetup" HKU\S-1-5-21-1357859409-3981079408-4033691241-1001\...\StartupApproved\Run: => "PC-NVR.exe" HKU\S-1-5-21-1357859409-3981079408-4033691241-1001\...\StartupApproved\Run: => "NordVPN" HKU\S-1-5-21-1357859409-3981079408-4033691241-1001\...\StartupApproved\Run: => "CyberGhost" HKU\S-1-5-21-1357859409-3981079408-4033691241-1001\...\StartupApproved\Run: => "SIMDashboardServer" HKU\S-1-5-21-1357859409-3981079408-4033691241-1001\...\StartupApproved\Run: => "Discord" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{1DDF94A2-736C-445E-8E60-8921D3DD6BE8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe FirewallRules: [UDP Query User{0AA681D2-18F7-471F-96D3-302763882B17}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [TCP Query User{3725E756-4FED-4603-A63B-C899287ED795}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [UDP Query User{A983C58C-1A17-44C8-83DB-8DE19ECCDB59}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [TCP Query User{7039973D-75D8-40F5-90A3-74E3A2CCE119}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [{F012DB72-A58D-47A4-9EB1-C3D19FEC18E5}] => (Allow) C:\Users\Kamil\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{0288553C-062F-4B1B-8002-4A4EC3CC78C8}] => (Allow) C:\Users\Kamil\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [UDP Query User{18F40845-BF6D-456F-AE54-6697BD1835AD}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{5A4F19C6-2972-43B1-9D73-5A94596FDE6B}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{2BFD2189-4A88-4407-A98C-005A30D60E34}C:\programdata\oracle\java\javapath_target_505502578\java.exe] => (Allow) C:\programdata\oracle\java\javapath_target_505502578\java.exe FirewallRules: [TCP Query User{981DDC09-8FBD-4355-BF09-B792A76ED13C}C:\programdata\oracle\java\javapath_target_505502578\java.exe] => (Allow) C:\programdata\oracle\java\javapath_target_505502578\java.exe FirewallRules: [{41BB59EC-D627-4782-8F61-F5FC7C367F31}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [UDP Query User{D8A254C5-8607-4FFA-B787-95E4FA0DD1F3}C:\program files (x86)\steam\steamapps\common\outlast\binaries\win64\olgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\outlast\binaries\win64\olgame.exe FirewallRules: [TCP Query User{87649A4E-632F-49D2-940B-D8E3CCA22618}C:\program files (x86)\steam\steamapps\common\outlast\binaries\win64\olgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\outlast\binaries\win64\olgame.exe FirewallRules: [UDP Query User{CDB90778-EE13-46BC-95BA-8649F31C87E9}C:\program files (x86)\smart professional surveillance system\pc-nvr\challenge.exe] => (Allow) C:\program files (x86)\smart professional surveillance system\pc-nvr\challenge.exe FirewallRules: [TCP Query User{069B8032-F6F7-4311-9C3C-8E457BD2A432}C:\program files (x86)\smart professional surveillance system\pc-nvr\challenge.exe] => (Allow) C:\program files (x86)\smart professional surveillance system\pc-nvr\challenge.exe FirewallRules: [UDP Query User{2FFF82E3-FB5F-46D9-9B34-E3C739ECE3FC}C:\program files\java\jre1.8.0_151\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_151\bin\javaw.exe FirewallRules: [TCP Query User{9A856E5C-5849-4B45-8D5B-8F9E708FABB3}C:\program files\java\jre1.8.0_151\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_151\bin\javaw.exe FirewallRules: [{AA6D0168-AF7C-468F-970B-F0E47EB0A51F}] => (Allow) C:\Users\Kamil\AppData\Local\yc\Application\yc.exe FirewallRules: [{281EED1B-CFE7-4DA4-9596-061BE06949EA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1\LaunchPad.exe FirewallRules: [{AF16D015-CC25-42FF-8D09-304F55D4896F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1\LaunchPad.exe FirewallRules: [{B6D377A3-DE10-44FD-A262-C07A15AF81C0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTA5.exe FirewallRules: [{5F3E5CB5-FDEB-45ED-9247-32E7DBDFB373}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTA5.exe FirewallRules: [UDP Query User{3E1B80A6-B327-4B00-B880-6483C22CB9AD}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{F30245AE-3956-4EA6-A7C5-A57CF1918E65}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{478FC066-B7B7-459C-9FDA-06D7FEB3CA19}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe FirewallRules: [{9E98E400-9D15-4666-8EFF-E02845BF8458}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe FirewallRules: [{6BD9071A-228B-4BEC-B8FF-13543FEBF31F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{BB67C5AA-4F09-455D-828F-4165DC692C32}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{B513CF28-BB2F-4635-8855-07C741750416}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{B3EB05E2-ABC7-4124-9603-A6C10A2EEEDD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{A6FEEAC1-5B99-4E7A-9FA5-79D0E6AC3163}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{AEFEF6DA-CAF6-4570-AA2C-EEBADAB4EA9B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{A3F38528-34E3-49E6-A88D-AE8CE0B31740}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [TCP Query User{F2C4E347-0DB3-4375-A352-7C7D1D514450}C:\users\kamil\desktop\mapeditor\server\mta server.exe] => (Allow) C:\users\kamil\desktop\mapeditor\server\mta server.exe FirewallRules: [UDP Query User{EA997DFB-81BF-49B3-9375-EE44DCD12B82}C:\users\kamil\desktop\mapeditor\server\mta server.exe] => (Allow) C:\users\kamil\desktop\mapeditor\server\mta server.exe FirewallRules: [{C884DE9B-FA42-4F5B-B41D-B3B48315526B}] => (Allow) C:\Program Files (x86)\VPN Unlimited\vpn-unlimited.exe FirewallRules: [{AE48D24B-387F-44D8-A3BB-DA6AF06E8589}] => (Allow) C:\Program Files (x86)\VPN Unlimited\vpn-unlimited.exe FirewallRules: [TCP Query User{EA3662D0-83D1-4954-9C24-6F645DFDDA16}C:\users\kamil\appdata\local\fivem\fivem.exe] => (Allow) C:\users\kamil\appdata\local\fivem\fivem.exe FirewallRules: [UDP Query User{069B7441-9F5A-4CFA-AF3D-D06167DD835B}C:\users\kamil\appdata\local\fivem\fivem.exe] => (Allow) C:\users\kamil\appdata\local\fivem\fivem.exe FirewallRules: [TCP Query User{3FE006EF-EB81-40F4-B1DF-9360DBC2EFEE}C:\users\kamil\appdata\local\gamerhash\miners\claymore_cryptonote_v1\nscpucnminer64.gh] => (Allow) C:\users\kamil\appdata\local\gamerhash\miners\claymore_cryptonote_v1\nscpucnminer64.gh FirewallRules: [UDP Query User{5AAC556C-58E7-4959-9D2C-4BF7AC7BA872}C:\users\kamil\appdata\local\gamerhash\miners\claymore_cryptonote_v1\nscpucnminer64.gh] => (Allow) C:\users\kamil\appdata\local\gamerhash\miners\claymore_cryptonote_v1\nscpucnminer64.gh FirewallRules: [{CBB015A3-AA5F-40D0-A278-E812FE925696}] => (Allow) LPort=8318 FirewallRules: [{383F236C-A998-41E9-8206-DB38CFBA1DC3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe FirewallRules: [{A3A46124-2615-42B8-B5F8-9032441D4286}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe FirewallRules: [{009BD514-AAB3-4B16-BAAA-F2F6D2E2D702}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{91384D4B-B4D2-43BF-8311-A7252D10974B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{2392D4BB-9BE9-4C5A-9B2C-D0B3E17EA0AB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{FD1D6B71-2547-4AB7-9F7C-F06A07F4F72C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [TCP Query User{A3A49410-F491-4FF1-A9A7-7BD7A7FFCED5}C:\program files (x86)\rockstar games\mta san andreas 1.5\server\mta server.exe] => (Block) C:\program files (x86)\rockstar games\mta san andreas 1.5\server\mta server.exe FirewallRules: [UDP Query User{34955DC7-7EAE-4111-948A-4B4C282F780F}C:\program files (x86)\rockstar games\mta san andreas 1.5\server\mta server.exe] => (Block) C:\program files (x86)\rockstar games\mta san andreas 1.5\server\mta server.exe FirewallRules: [TCP Query User{A803FF10-D9F9-43ED-96FC-BCD1B358B433}C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe FirewallRules: [UDP Query User{6DC4C32E-E23F-49E8-95CD-B97991D5B76D}C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe FirewallRules: [{8CFCF22B-10C6-4BD3-BEC5-E5CE31E24F98}] => (Allow) C:\Program Files (x86)\SIMDashboardServer\SIMDashboardServer.exe FirewallRules: [{A6162609-34A2-4DDE-97E4-E616A31D9948}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\House Flipper\HouseFlipper.exe FirewallRules: [{363664D2-4ADC-49D9-B667-D4E89F67383E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\House Flipper\HouseFlipper.exe FirewallRules: [TCP Query User{7BFA3260-6E6F-4EE1-A314-23E3D61B44A0}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe FirewallRules: [UDP Query User{1E00F06C-6098-49B3-B49B-0DE76AC53B6F}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe FirewallRules: [TCP Query User{DA5B9634-8802-492F-AC3D-CCB62CE2E961}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe FirewallRules: [UDP Query User{13139C1C-A5D3-40CE-B1F5-FB79FAC427C6}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe FirewallRules: [TCP Query User{87552BC7-7CE3-419B-AFF2-602C83432DF8}C:\program files (x86)\steam\steamapps\common\grand theft auto san andreas\proxy_sa.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto san andreas\proxy_sa.exe FirewallRules: [UDP Query User{05E1839B-C3F7-4CB8-8616-D612C12C7751}C:\program files (x86)\steam\steamapps\common\grand theft auto san andreas\proxy_sa.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto san andreas\proxy_sa.exe FirewallRules: [TCP Query User{8011A680-8814-444E-B5C5-914F91681030}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe FirewallRules: [UDP Query User{A132F2C2-B7AF-43FC-AACE-A793C2A73E67}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe FirewallRules: [{18827EE7-12C6-43E4-B98F-E940387B8D13}] => (Allow) C:\Program Files (x86)\Ubisoft\Ivory Tower\The Crew (Worldwide)\TheCrew.exe FirewallRules: [{6C4055A8-5C39-4597-8993-4EE19E420547}] => (Allow) C:\Program Files (x86)\Ubisoft\Ivory Tower\The Crew (Worldwide)\TheCrew.exe FirewallRules: [{07BA37BE-7A6A-4A96-96C6-4A5A603D4AD2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Bus Simulator 18\BusSimulator18.exe FirewallRules: [{66304415-6CB3-4C9C-93C7-17E66C40E6C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Bus Simulator 18\BusSimulator18.exe FirewallRules: [TCP Query User{278671D8-BBA1-4F85-B42A-32479DB94AF0}C:\program files (x86)\steam\steamapps\common\bus simulator 18\bussimulator18\binaries\win64\bussimulator18-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\bus simulator 18\bussimulator18\binaries\win64\bussimulator18-win64-shipping.exe FirewallRules: [UDP Query User{9A288A64-096D-4724-83B7-5797B9DF67C2}C:\program files (x86)\steam\steamapps\common\bus simulator 18\bussimulator18\binaries\win64\bussimulator18-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\bus simulator 18\bussimulator18\binaries\win64\bussimulator18-win64-shipping.exe FirewallRules: [{51BC2F0D-B6C0-44B2-B985-D705BC3BDCA8}] => (Allow) C:\Program Files\Opera\54.0.2952.60\opera.exe FirewallRules: [{2D5A60F5-B1FA-45E6-85F8-ABDE65B7A426}] => (Allow) C:\Program Files (x86)\AVG\Secure VPN\VpnUpdate.exe FirewallRules: [{1EB11EE9-4E55-4ECF-871C-9F7376A7AFF5}] => (Allow) C:\Program Files (x86)\AVG\Secure VPN\VpnUpdate.exe FirewallRules: [{D7EA8A57-DACA-4151-941F-6074F34AE034}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{36523C19-323A-478E-90A8-A9C57D67F900}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{FD5F81C1-27CF-42C7-85D4-C943E7E35F86}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{2863CE4E-A229-41D6-80B6-23333DC35F58}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{E1F1C726-1587-4511-A431-77FF2E1314E8}] => (Allow) C:\Program Files\Opera\54.0.2952.64\opera.exe FirewallRules: [{7FD032D1-1F40-4DFF-ACE1-46797D85035E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe FirewallRules: [{1BA83412-2CE4-4D67-9D7C-EB473EF8E594}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe FirewallRules: [TCP Query User{9B09F63A-7166-434B-9616-E40ADE033072}C:\programdata\oracle\java\javapath_target_505502578\javaw.exe] => (Allow) C:\programdata\oracle\java\javapath_target_505502578\javaw.exe FirewallRules: [UDP Query User{1D806F5F-4D0F-4DEE-8492-E211105AF690}C:\programdata\oracle\java\javapath_target_505502578\javaw.exe] => (Allow) C:\programdata\oracle\java\javapath_target_505502578\javaw.exe FirewallRules: [{73D0E9DA-BFD1-4696-BED4-F110F74595A4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [TCP Query User{475560EA-1F4C-4CAB-BFD6-E0DCC5C7B3C2}C:\program files\java\jre1.8.0_151\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_151\bin\javaw.exe FirewallRules: [UDP Query User{FAC5A54A-0DC7-4DD5-B0AE-D92F8652260D}C:\program files\java\jre1.8.0_151\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_151\bin\javaw.exe FirewallRules: [TCP Query User{DE5DE114-F3D2-416A-A89B-8BD1ABE9F599}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe FirewallRules: [UDP Query User{15EB48F3-BF65-4459-B81F-F853352EFFE3}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe ==================== Punkty Przywracania systemu ========================= 10-08-2018 08:06:22 Zaplanowany punkt kontrolny 14-08-2018 18:23:31 Installed Disk Drill 2.0.0.334 ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: LogMeIn Hamachi Virtual Ethernet Adapter #3 Description: LogMeIn Hamachi Virtual Ethernet Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: LogMeIn Inc. Service: Hamachi Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: LogMeIn Hamachi Virtual Ethernet Adapter #2 Description: LogMeIn Hamachi Virtual Ethernet Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: LogMeIn Inc. Service: Hamachi Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: AVG TAP Adapter v3 Description: AVG TAP Adapter v3 Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: TAP-Windows Provider V9 Service: avgTap Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Bluetooth Device (Personal Area Network) Description: Urządzenie Bluetooth (sieć osobista) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: BthPan Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (08/15/2018 05:08:23 PM) (Source: DPTF) (EventID: 256) (User: ) Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10600.150) TYPE: ERROR DPTF Build Version: 8.1.10600.150 DPTF Build Date: Jun 26 2015 11:46:12 Source File: ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737 Executing Function: DptfEvent Message: Received unexpected event Framework Event: DptfResume [3] Error: (08/15/2018 07:39:39 AM) (Source: COM) (EventID: 10031) (User: ) Description: Podczas anulowania kierowania obiektu skierowanego niestandardowo wykonano sprawdzanie zasad anulowania kierowania i klasa {95CABCC9-BC57-4C12-B8DF-BA193232AA01} została odrzucona. Error: (08/15/2018 07:39:37 AM) (Source: COM) (EventID: 10031) (User: ) Description: Podczas anulowania kierowania obiektu skierowanego niestandardowo wykonano sprawdzanie zasad anulowania kierowania i klasa {95CABCC9-BC57-4C12-B8DF-BA193232AA01} została odrzucona. Error: (08/15/2018 07:18:01 AM) (Source: DPTF) (EventID: 256) (User: ) Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10600.150) TYPE: ERROR DPTF Build Version: 8.1.10600.150 DPTF Build Date: Jun 26 2015 11:46:12 Source File: ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737 Executing Function: DptfEvent Message: Received unexpected event Framework Event: DptfResume [3] Error: (08/14/2018 08:54:05 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: Nie powiodło się wykonanie procedury otwierania dla usługi „BITS” w bibliotece DLL „C:\Windows\System32\bitsperf.dll”. Dane wydajności dla tej usługi nie będą dostępne. Pierwsze cztery bajty (DWORD) sekcji danych Data zawierają kod błędu. Error: (08/14/2018 08:49:16 PM) (Source: Windows Search Service) (EventID: 3079) (User: ) Description: Powiadomienia dla woluminu F:\ są nieaktywne. Kontekst: aplikacja Windows Szczegóły: Dziennik zmiany woluminu nie jest aktywny. (HRESULT : 0x8007049b) (0x8007049b) Error: (08/14/2018 08:36:11 PM) (Source: DPTF) (EventID: 256) (User: ) Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10600.150) TYPE: ERROR DPTF Build Version: 8.1.10600.150 DPTF Build Date: Jun 26 2015 11:46:12 Source File: ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737 Executing Function: DptfEvent Message: Received unexpected event Framework Event: DptfResume [3] Error: (08/14/2018 07:39:33 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program LiLi USB Creator.exe w wersji 2.9.88.82 przestał współpracować z systemem Windows i został zamknięty. Aby sprawdzić, czy jest dostępnych więcej informacji na temat tego problemu, sprawdź historię problemu w oknie Zabezpieczenia i konserwacja w Panelu sterowania. Identyfikator procesu: 400c Godzina rozpoczęcia: 01d433f443aa8436 Godzina zakończenia: 4294967295 Ścieżka aplikacji: C:\Program Files (x86)\LinuxLive USB Creator\LiLi USB Creator.exe Identyfikator raportu: 329e2ebb-3ee0-4d67-901b-243df3f498c9 Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Dziennik System: ============= Error: (08/15/2018 05:09:58 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Wykrywanie usług interakcyjnych zakończyła działanie; wystąpił następujący błąd: Niepoprawna funkcja. Error: (08/15/2018 05:09:58 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Wykrywanie usług interakcyjnych zakończyła działanie; wystąpił następujący błąd: Niepoprawna funkcja. Error: (08/15/2018 05:09:58 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Wykrywanie usług interakcyjnych zakończyła działanie; wystąpił następujący błąd: Niepoprawna funkcja. Error: (08/15/2018 05:09:58 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Wykrywanie usług interakcyjnych zakończyła działanie; wystąpił następujący błąd: Niepoprawna funkcja. Error: (08/15/2018 05:09:57 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Wykrywanie usług interakcyjnych zakończyła działanie; wystąpił następujący błąd: Niepoprawna funkcja. Error: (08/15/2018 08:30:52 AM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} i identyfikatorem aplikacji APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} użytkownikowi ZARZĄDZANIE NT\USŁUGA LOKALNA o identyfikatorze zabezpieczeń SID (S-1-5-19) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (08/15/2018 08:27:46 AM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} i identyfikatorem aplikacji APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} użytkownikowi ZARZĄDZANIE NT\USŁUGA LOKALNA o identyfikatorze zabezpieczeń SID (S-1-5-19) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (08/15/2018 08:26:19 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-0DPTCNE) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} i identyfikatorem aplikacji APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} użytkownikowi DESKTOP-0DPTCNE\Kamil o identyfikatorze zabezpieczeń SID (S-1-5-21-1357859409-3981079408-4033691241-1001) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. CodeIntegrity: =================================== Date: 2018-07-25 20:36:26.840 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system. Date: 2018-07-25 20:36:20.446 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system. Date: 2018-07-25 20:36:20.206 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system. Date: 2018-06-05 17:11:17.611 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system. Date: 2018-06-05 17:10:59.985 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system. Date: 2018-06-05 17:10:59.303 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system. Date: 2018-04-23 14:23:02.453 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-04-23 14:23:01.496 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-6300HQ CPU @ 2.30GHz Procent pamięci w użyciu: 39% Całkowita pamięć fizyczna: 8090.86 MB Dostępna pamięć fizyczna: 4899.25 MB Całkowita pamięć wirtualna: 10394.86 MB Dostępna pamięć wirtualna: 7175.5 MB ==================== Dyski ================================ Drive c: (OS) (Fixed) (Total:929.99 GB) (Free:709.14 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive e: (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive f: () (Fixed) (Total:931.41 GB) (Free:522.7 GB) NTFS \\?\Volume{01effba6-4043-4574-aa8d-b178adbbe9c2}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.23 GB) FAT32 \\?\Volume{24b0dd68-7fe3-4914-9d07-b99e34b67d7c}\ () (Fixed) (Total:0.47 GB) (Free:0.08 GB) NTFS \\?\Volume{ddf62616-93a7-4cb6-8241-8e1c9638fe8e}\ (RECOVERY) (Fixed) (Total:0.78 GB) (Free:0.44 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 0543AB2C) Partition: GPT. ======================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 46417E8E) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================