Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 01.12.2018 01 Uruchomiony przez Adi (08-12-2018 13:10:40) Uruchomiony z C:\Users\Adi\Desktop Windows 10 Home Wersja 1803 17134.112 (X64) (2018-06-03 21:58:37) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Adi (S-1-5-21-1962681985-163799491-3190242698-1000 - Administrator - Enabled) => C:\Users\Adi Administrator (S-1-5-21-1962681985-163799491-3190242698-500 - Administrator - Disabled) Gość (S-1-5-21-1962681985-163799491-3190242698-501 - Limited - Disabled) Konto domyślne (S-1-5-21-1962681985-163799491-3190242698-503 - Limited - Disabled) Marcin (S-1-5-21-1962681985-163799491-3190242698-1003 - Administrator - Enabled) => C:\Users\Marcin WDAGUtilityAccount (S-1-5-21-1962681985-163799491-3190242698-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-1962681985-163799491-3190242698-1000\...\uTorrent) (Version: 3.5.4.44846 - BitTorrent Inc.) µTorrent (HKU\S-1-5-21-1962681985-163799491-3190242698-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-12082018115612144\...\uTorrent) (Version: 3.5.4.44846 - BitTorrent Inc.) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.101 - Adobe Systems Incorporated) Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.101 - Adobe Systems Incorporated) Adobe Reader 8.1.2 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A81200000003}) (Version: 8.1.2 - Adobe Systems Incorporated) AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD) AMD Catalyst Install Manager (HKLM\...\{308051DA-0048-7A07-FE8B-9B6EC119A9E8}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.) Aplikacja Blizzard (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Call of Duty Modern Warfare 2 full game MP - SP+updater -=AviaRa=- 1.00 (HKLM-x32\...\Call of Duty Modern Warfare 2 full game MP - SP+updater -=AviaRa=- 1.00) (Version: - ) Call of Juarez - Bound in Blood (HKLM-x32\...\{FEFAF112-4DA8-479C-89E2-7DE25091711A}) (Version: 1.00.0000 - Ubisoft) Hidden Call of Juarez - Bound in Blood (HKLM-x32\...\InstallShield_{FEFAF112-4DA8-479C-89E2-7DE25091711A}) (Version: 1.00.0000 - Ubisoft) Camtasia Studio 8 (HKLM-x32\...\{A2A41B60-D51F-4C04-BC94-B4C94F7B6DC0}) (Version: 8.6.0.2054 - TechSmith Corporation) CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform) Centrum obsługi urządzeń z systemem Windows Mobile (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation) CLEO 4.3 (HKLM-x32\...\{A8F37EB0-C741-41D7-8CAB-5B40ECEEF094}_is1) (Version: 4.3 - Seemann, Deji, Alien) Counter-Strike 1.6 v43 (HKLM-x32\...\{1BD2212B-8287-4F33-A6DC-903D423AB814}_is1) (Version: v43 - CSSetti.pl) CPUID HWMonitor 1.32 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.32 - ) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.7.0.0333 - Disc Soft Ltd) Discord (HKU\S-1-5-21-1962681985-163799491-3190242698-1000\...\Discord) (Version: 0.0.301 - Discord Inc.) Discord (HKU\S-1-5-21-1962681985-163799491-3190242698-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-12082018115612144\...\Discord) (Version: 0.0.301 - Discord Inc.) Epic Games Launcher (HKLM-x32\...\{47BF3B09-07F0-4411-BB00-3EB481DB3220}) (Version: 1.1.125.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden FIFA 11 (HKLM-x32\...\{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}) (Version: 1.0.0.0 - Electronic Arts) FIFA 15 (HKLM-x32\...\FIFA 15_R.G. Mechanics_is1) (Version: - R.G. Mechanics, ProZorg_tm) GameRanger (HKU\S-1-5-21-1962681985-163799491-3190242698-1000\...\GameRanger) (Version: - GameRanger Technologies) GameRanger (HKU\S-1-5-21-1962681985-163799491-3190242698-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-12082018115612144\...\GameRanger) (Version: - GameRanger Technologies) GIMP 2.8.22 (HKLM\...\GIMP-2_is1) (Version: 2.8.22 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.80 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.0.0.11" - Rockstar Games) GTA San Andreas (HKLM-x32\...\GTA San Andreas) (Version: - ) GTA San Andreas SA-MP Addon (HKLM-x32\...\{47E4F6A3-F01C-4538-9925-CAE42C1CF7216}_is1) (Version: 2.4 - Absolute Play www.gta-samp.ru) Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation) Java 8 Update 181 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180181F0}) (Version: 8.0.1810.13 - Oracle Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Lightshot-5.4.0.35 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.35 - Skillbrains) LogMeIn Hamachi (HKLM-x32\...\{892DB406-ADF8-4C30-9840-8438AF5B8763}) (Version: 2.2.0.607 - LogMeIn, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.607 - LogMeIn, Inc.) Malwarebytes (wersja 3.6.1.2711) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes) Microsoft DirectX SDK (August 2007) (HKLM-x32\...\{F0A4913F-46A5-48F2-BC73-EE41A6C81EB3}) (Version: 9.20.1057 - Microsoft® Corporation) Microsoft Office Standard 2016 (HKLM\...\Office16.STANDARD) (Version: 16.0.4266.1001 - Microsoft Corporation) Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1962681985-163799491-3190242698-1000\...\OneDriveSetup.exe) (Version: 18.212.1021.0008 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1962681985-163799491-3190242698-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-12082018115612144\...\OneDriveSetup.exe) (Version: 18.212.1021.0008 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.11.25325 (HKLM-x32\...\{404c9c27-8377-4fd1-b607-7ca635db4e49}) (Version: 14.11.25325.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) MPC-HC 1.7.11 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.11 - MPC-HC Team) MSI Afterburner 4.4.2 (HKLM-x32\...\Afterburner) (Version: 4.4.2 - MSI Co., LTD) MTA:SA v1.5.5 (HKLM-x32\...\MTA:SA 1.5) (Version: v1.5.5 - Multi Theft Auto) Mumble 1.2.19 (HKLM-x32\...\{A48010F5-18AB-465E-9831-07636D40A831}) (Version: 1.2.19 - Thorvald Natvig) NVIDIA PhysX (HKLM-x32\...\{E10DB5DA-E576-40EA-A7FC-1CB2A7B283A6}) (Version: 9.09.1112 - NVIDIA Corporation) Office Tab (HKLM\...\{DE469D65-1DEB-4058-BF95-C642D733668D}_is1) (Version: 11.00 - Addin Technology Inc.) OneClickFirewall (HKLM\...\OneClickFirewall) (Version: 1.0.0.2 - hxxp://winaero.com) Opera Stable 56.0.3051.116 (HKLM-x32\...\Opera 56.0.3051.116) (Version: 56.0.3051.116 - Opera Software) Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Password Safe (64-bit) (HKLM-x32\...\Password Safe) (Version: 3.46.0 - Rony Shapiro) Praetorians (HKLM-x32\...\{AAC8AF92-DAEC-45D2-B77D-36699E3751A9}) (Version: - Pyro Studios) Realtek Ethernet Controller Driver For Windows Vista and Later (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0009 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.) RivaTuner Statistics Server 7.0.2 (HKLM-x32\...\RTSS) (Version: 7.0.2 - Unwinder) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.0 - Rockstar Games) Serious Sam TFE HD (Jimbus edition) (HKLM-x32\...\Serious Sam TFE HD) (Version: 117727 - Jimbo) Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.104 - Skype Technologies S.A.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.1.4 - TeamSpeak Systems GmbH) The Sims 4 version final (HKLM-x32\...\The Sims 4_is1) (Version: final - The) TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team) Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.8.9 - Tunngle.net GmbH) VCRedistSetup (HKLM-x32\...\{3921A67A-5AB1-4E48-9444-C71814CF3027}) (Version: 1.0.0 - Nero AG) Hidden WinRAR 5.40 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2017-12-15] (Disc Soft Ltd) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2017-12-15] (Disc Soft Ltd) ContextMenuHandlers4: [Convert] -> {9f95ca1a-e80e-4c0f-acd1-4c9b7900b982} => C:\Program Files (x86)\Microsoft DirectX SDK (August 2007)\Utilities\Bin\x64\TxView.DLL [2007-07-20] (Microsoft Corporation) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc.) ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Brak pliku ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-09-19] (Alexander Roshal) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0B702545-8FF1-4B26-AE0E-AB41E6715A46} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {108C56FF-35B7-4EAC-9075-4642C57188C9} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: ) Task: {16540846-F894-44BB-B690-BABDBB00C2B4} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation) Task: {21FC641E-9A7A-4974-A72E-396B600FECC8} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-09-11] (Piriform Ltd) Task: {232B1A01-3F2D-40F1-ACB0-C04423F75FA2} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {2918BAF1-55A5-4C27-8F39-433C12CDDFF0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation) Task: {29984EB1-1AA7-4E09-A275-9E88A1AEED0D} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {2A559BB0-C560-44BD-8A36-7EC0FF62972D} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {30B49A50-6FCE-4F83-9BFA-3DEF53C67A37} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {384011D4-4CBE-489B-8B70-79EC26199EFE} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_pepper.exe [2018-12-06] (Adobe Systems Incorporated) Task: {3AFEA2AC-E59D-45A9-BE54-8C1EBF742129} - System32\Tasks\Driver Booster SkipUAC (Adi) => C:\Program Files (x86)\IObit\Driver Booster\5.2.0\DriverBooster.exe Task: {3C3CC6D0-6D8F-4B50-8AFF-03F75FCD42CA} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {40553473-575B-4120-9316-5CC1ABEED949} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {4A53D0A6-A9DE-46AF-BCCE-30C701EBC802} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {4B1871B4-5513-4886-AB35-BB9AEA0373A5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-12-06] (Adobe Systems Incorporated) Task: {5C4F8C6F-8327-4307-A719-66268A180972} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation) Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] () Task: {68E27AC9-7AF0-4D5A-B4EB-6DFDB2E8BF46} - System32\Tasks\{0C9F2D7B-AC39-495E-9F10-F32CD649CC10} => c:\program files\opera\launcher.exe [2018-11-26] (Opera Software) Task: {771CC085-3849-449D-883B-4F8BE0609C01} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {7CC6A2CD-F184-4ED1-A669-FC25445B41FB} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {805BD5DB-239F-401E-96D8-0371E54A0987} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {856A42CB-0BFD-4B33-9B29-2FF3DD00C0B6} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_Plugin.exe [2018-12-06] (Adobe Systems Incorporated) Task: {86CE9A58-601D-42A1-A5B8-96349027BEA0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-05-25] (Google Inc.) Task: {90703678-38DD-4011-A6C1-44BFCD1793A0} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {91C297C0-329B-4F3B-A9D9-7277A27915DE} - System32\Tasks\S-1-5-21-1962681985-163799491-3190242698-1000\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2018-04-12] (Microsoft Corporation) Task: {937BD652-D292-44EE-A786-70D1E5C8CCAF} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe Task: {945A3C82-7094-4F68-A631-6773E4B5D80F} - \Microsoft\Windows\Setup\EOSNotify -> Brak pliku <==== UWAGA Task: {B611F870-A7D4-4584-A19A-3ACC6A05F2E9} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary => rundll32.exe StartupCheckLibrary.dll,DllMainRunLibrary Task: {B62F7A89-8039-471E-8A3A-10C7FF9ADC9C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-09-11] (Piriform Ltd) Task: {C471C35A-0E6A-43A5-912E-DA643A6EF8F1} - System32\Tasks\update-S-1-5-21-1962681985-163799491-3190242698-1000 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: ) Task: {C6E3FEFC-0559-4824-AE74-391DA3CB0CE1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {CE96B96F-6748-45F5-B4DF-770F4F5CB55C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-05-25] (Google Inc.) Task: {DEF1D954-7F00-4FE1-A58D-B0A79AD2D594} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {E2FFABAF-FFB1-480F-B1DD-F744E4804A66} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {E69D7ED1-4FC1-4847-B53B-E59D564331A0} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {E769D460-742B-4E19-9A04-DDC63307E43B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {E82E19F1-4073-4308-85AA-51498E4C4332} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {EAF2743F-9963-4636-9990-9D82236381FC} - System32\Tasks\Opera scheduled Autoupdate 1495220256 => C:\Program Files\Opera\launcher.exe [2018-11-26] (Opera Software) Task: {F1F3F6A9-58EC-4FD5-BEF1-161ED2F42EEB} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {F2585029-357F-45B8-B4B1-F3FEB8033BD5} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {F741B65B-D24B-4EA5-B927-F1EFAE468452} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\update-S-1-5-21-1962681985-163799491-3190242698-1000.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\Adi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5d696d521de238c3\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default ==================== Załadowane moduły (filtrowane) ============== 2018-04-12 00:34 - 2018-04-12 00:34 - 000444416 _____ () c:\windows\system32\SSDM.dll 2017-08-28 02:05 - 2017-08-28 02:05 - 000075136 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2018-12-08 11:38 - 2018-12-08 12:12 - 002695360 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll 2018-04-12 00:34 - 2018-04-12 00:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll 2018-06-12 21:18 - 2018-06-08 09:56 - 002185216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-06-26 20:37 - 2018-06-26 20:37 - 027126784 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18052.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe 2018-06-26 20:37 - 2018-06-26 20:37 - 000306176 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18052.10711.0_x64__8wekyb3d8bbwe\SharedUI.dll 2018-06-26 20:37 - 2018-06-26 20:37 - 006735872 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18052.10711.0_x64__8wekyb3d8bbwe\EntCommon.dll 2018-04-12 16:56 - 2018-04-12 16:56 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18052.10711.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2018-06-26 20:37 - 2018-06-26 20:37 - 009360384 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18052.10711.0_x64__8wekyb3d8bbwe\EntPlat.dll 2017-07-16 02:47 - 2017-02-26 21:50 - 000228352 _____ () C:\Program Files (x86)\SteamServerBrowser\SteamServerBrowser.exe 2018-08-29 12:37 - 2018-09-23 01:00 - 102804768 _____ () D:\Steam\bin\cef\cef.win7x64\libcef.dll 2018-08-29 12:37 - 2018-10-30 19:06 - 001057056 _____ () D:\Steam\bin\cef\cef.win7x64\SDL2.dll 2018-08-29 12:37 - 2018-09-23 01:00 - 004866336 _____ () D:\Steam\bin\cef\cef.win7x64\libglesv2.dll 2018-08-29 12:37 - 2018-09-23 01:00 - 000116000 _____ () D:\Steam\bin\cef\cef.win7x64\libegl.dll 2018-12-07 02:56 - 2018-11-30 23:34 - 005237216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.80\libglesv2.dll 2018-12-07 02:56 - 2018-11-30 23:34 - 000117216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.80\libegl.dll 2018-06-09 07:37 - 2018-06-09 07:37 - 000478720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2018-06-09 07:37 - 2018-06-09 07:37 - 067232256 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2018-06-03 23:25 - 2018-06-03 23:27 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll 2018-06-03 23:25 - 2018-06-03 23:27 - 000010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll 2018-06-03 23:25 - 2018-06-03 23:26 - 004214784 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll 2018-06-03 23:25 - 2018-06-03 23:26 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\ImagePipelineNative.dll 2018-06-03 23:25 - 2018-06-03 23:27 - 000035840 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll 2018-06-03 23:25 - 2018-06-03 23:27 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll 2018-06-09 07:37 - 2018-06-09 07:37 - 014851072 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll 2018-06-03 23:25 - 2018-06-03 23:26 - 004058624 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\MediaEngine.dll 2018-06-09 07:37 - 2018-06-09 07:37 - 003266048 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll 2018-06-03 23:25 - 2018-06-03 23:27 - 001393664 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll 2018-06-03 23:25 - 2018-06-03 23:27 - 004218080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2018-06-03 23:25 - 2018-06-03 23:27 - 000872448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll 2018-06-09 07:37 - 2018-06-09 07:37 - 000165376 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\SKU.dll 2017-07-19 23:14 - 2018-10-30 19:06 - 000879904 _____ () D:\Steam\SDL2.dll 2017-07-19 23:14 - 2018-11-26 21:29 - 002649376 _____ () D:\Steam\video.dll 2017-07-19 23:14 - 2016-09-01 02:02 - 004969248 _____ () D:\Steam\v8.dll 2017-12-15 06:56 - 2017-12-20 02:43 - 000695584 _____ () D:\Steam\libavformat-57.dll 2017-12-15 06:56 - 2017-12-20 02:43 - 000847136 _____ () D:\Steam\libavutil-55.dll 2017-12-15 06:56 - 2017-12-20 02:43 - 000351520 _____ () D:\Steam\libavresample-3.dll 2017-12-15 06:56 - 2017-12-20 02:43 - 005137696 _____ () D:\Steam\libavcodec-57.dll 2017-07-19 23:14 - 2016-09-01 02:02 - 001563936 _____ () D:\Steam\icui18n.dll 2017-12-15 06:56 - 2017-12-20 02:43 - 000783648 _____ () D:\Steam\libswscale-4.dll 2017-07-19 23:14 - 2016-09-01 02:02 - 001195296 _____ () D:\Steam\icuuc.dll 2017-07-19 23:14 - 2018-11-26 21:29 - 001028384 _____ () D:\Steam\bin\chromehtml.DLL 2017-07-19 23:14 - 2016-07-04 23:17 - 000266560 _____ () D:\Steam\openvr_api.dll 2018-06-03 23:16 - 2018-04-30 22:01 - 001891672 _____ () C:\Users\Adi\AppData\Local\Discord\app-0.0.301\ffmpeg.dll 2018-06-03 23:16 - 2018-04-30 22:01 - 001937752 _____ () C:\Users\Adi\AppData\Local\Discord\app-0.0.301\libglesv2.dll 2018-06-03 23:16 - 2018-04-30 22:01 - 000095576 _____ () C:\Users\Adi\AppData\Local\Discord\app-0.0.301\libegl.dll 2018-06-03 23:16 - 2018-12-08 09:43 - 011317080 _____ () \\?\C:\Users\Adi\AppData\Roaming\discord\0.0.301\modules\discord_voice\discord_voice.node 2018-06-03 23:16 - 2018-11-16 06:24 - 001639256 _____ () \\?\C:\Users\Adi\AppData\Roaming\discord\0.0.301\modules\discord_utils\discord_utils.node 2018-06-03 23:16 - 2018-06-03 23:16 - 001910104 _____ () \\?\C:\Users\Adi\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\cld\build\Release\cld.node 2018-06-03 23:16 - 2018-06-03 23:16 - 000422744 _____ () \\?\C:\Users\Adi\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\spellchecker\build\Release\spellchecker.node 2018-06-03 23:16 - 2018-06-03 23:16 - 000145240 _____ () \\?\C:\Users\Adi\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\keyboard-layout\build\Release\keyboard-layout-manager.node 2018-06-03 23:16 - 2018-06-03 23:16 - 000512856 _____ () \\?\C:\Users\Adi\AppData\Roaming\discord\0.0.301\modules\discord_erlpack\discord_erlpack.node 2018-06-03 23:16 - 2018-11-16 06:24 - 001658712 _____ () \\?\C:\Users\Adi\AppData\Roaming\discord\0.0.301\modules\discord_game_utils\discord_game_utils.node 2018-10-01 17:22 - 2018-10-10 10:37 - 009621848 _____ () \\?\C:\Users\Adi\AppData\Roaming\discord\0.0.301\modules\discord_cloudsync\discord_cloudsync.node 2018-06-03 23:16 - 2018-11-28 07:07 - 001718104 _____ () \\?\C:\Users\Adi\AppData\Roaming\discord\0.0.301\modules\discord_overlay2\discord_overlay2.node 2018-06-03 23:16 - 2018-06-03 23:16 - 002722648 _____ () \\?\C:\Users\Adi\AppData\Roaming\discord\0.0.301\modules\discord_rpc\discord_rpc.node 2018-08-11 07:06 - 2018-11-10 11:58 - 001261400 _____ () \\?\C:\Users\Adi\AppData\Roaming\discord\0.0.301\modules\discord_modules\discord_modules.node 2018-08-11 17:15 - 2018-11-28 07:07 - 024944472 _____ () \\?\C:\Users\Adi\AppData\Roaming\discord\0.0.301\modules\discord_dispatch\discord_dispatch.node 2018-06-03 23:18 - 2018-06-03 23:18 - 002760536 _____ () \\?\C:\Users\Adi\AppData\Roaming\discord\0.0.301\modules\discord_contact_import\discord_contact_import.node 2018-06-03 23:18 - 2018-06-03 23:18 - 001249112 _____ () \\?\C:\Users\Adi\AppData\Roaming\discord\0.0.301\modules\discord_vigilante\discord_vigilante.node ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40] AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [432] AlternateDataStreams: C:\Users\Public\AppData:CSM [460] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-1962681985-163799491-3190242698-1000\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-1962681985-163799491-3190242698-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-12082018115612144\...\localhost -> localhost ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2018-07-20 11:54 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-12082018115610222\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-12082018115610988\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg HKU\S-1-5-21-1962681985-163799491-3190242698-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Adi\Desktop\migos.jpg HKU\S-1-5-21-1962681985-163799491-3190242698-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-12082018115612144\Control Panel\Desktop\\Wallpaper -> C:\Users\Adi\Desktop\migos.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Brak pliku) Zapora systemu Windows [funkcja wyłączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == Załączenie wejścia w fixlist spowoduje jego usunięcie. HKU\S-1-5-21-1962681985-163799491-3190242698-1000\...\StartupApproved\StartupFolder: => "Wysyłanie do programu OneNote.lnk" HKU\S-1-5-21-1962681985-163799491-3190242698-1000\...\StartupApproved\Run: => "vidnotifier.exe" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{1726FB79-4122-4226-970B-37C3623A47D3}] => (Block) c:\program files\voicemod desktop\voicemoddesktop.exe FirewallRules: [{E700A599-D817-4348-9999-49844A7F3952}] => (Block) c:\program files\voicemod desktop\voicemoddesktop.exe FirewallRules: [{2120FC7F-B506-4104-AB0A-4F0C1C607431}] => (Block) c:\program files\voicemod desktop\voicemoddesktop.exe FirewallRules: [{34A562A8-EA65-4147-9266-C39597BC62AC}] => (Block) c:\program files\voicemod desktop\voicemoddesktop.exe FirewallRules: [{4F3F1BFC-E1A7-4347-B906-F59D702E6B08}] => (Block) c:\program files\voicemod desktop\voicemoddesktop.exe FirewallRules: [{F077559B-B8F6-46C4-B684-F02812A0DCD2}] => (Allow) D:\Steam\steamapps\common\H1Z1\H1Z1_BE.exe FirewallRules: [{7B347238-C562-4E6B-8C70-48559899C89B}] => (Allow) D:\Steam\steamapps\common\H1Z1\H1Z1_BE.exe FirewallRules: [{C14756EB-6EBF-4517-9BB5-A55BD3691DBA}] => (Allow) D:\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{58829EE3-EC3F-4828-9F3A-23965EDED2A9}] => (Allow) D:\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{880CCF40-6A69-46F4-801A-721515E3688F}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe FirewallRules: [{7E6C4616-DC01-4745-85CC-A080C8C7EA1F}] => (Allow) D:\Steam\steamapps\common\Business Tour\BusinessTour.exe FirewallRules: [{48C775EC-BDAF-4030-9535-5637556A9EA9}] => (Allow) D:\Steam\steamapps\common\Business Tour\BusinessTour.exe FirewallRules: [{EC45C5D1-9F60-4B0C-8E05-D76852EE8430}] => (Allow) LPort=8889 FirewallRules: [{D8BA755B-CF97-40D9-A0AE-7B019FA7D704}] => (Allow) LPort=8889 FirewallRules: [{A708E76C-E061-4AA1-ADB4-C86E91842846}] => (Allow) LPort=8889 FirewallRules: [{E427AE1A-BA46-4637-9697-F2A31A5509A6}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{772F4F5B-3D58-4622-A7B4-1CA1332DA711}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe FirewallRules: [{EF0FFD96-D65B-4046-9E6B-7DE663565DE0}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe FirewallRules: [{DDE99B11-CC10-4903-A247-EE86B357F0B9}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe FirewallRules: [{41838C37-025F-40A4-A20B-3C7AACC67B02}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe FirewallRules: [{965D9735-4CAF-4BC3-BA50-04A4549FE5D6}] => (Allow) C:\Users\Adi\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{FC5EC1C6-26CB-4E0A-98A7-C286111A7A98}] => (Allow) C:\Users\Adi\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{3A3BE40E-2960-41D3-B668-E5F7D2B243E1}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{35A79D49-09FD-4A5D-9719-D571EAC1C549}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{76EE2D2C-BE8A-4846-95BE-D08C66DD21C2}] => (Allow) D:\Steam\steamapps\common\Terraria\Terraria.exe FirewallRules: [{E9895130-4BBD-466A-9D05-710BE6A66F98}] => (Allow) D:\Steam\steamapps\common\Terraria\Terraria.exe FirewallRules: [{CAAAB021-451A-4097-B829-F2A4AA18A1AE}] => (Allow) D:\Steam\steamapps\common\Team Fortress 2\hl2.exe FirewallRules: [{4EDF0EA6-E788-4A8E-B382-4DD4888CF433}] => (Allow) D:\Steam\steamapps\common\Team Fortress 2\hl2.exe FirewallRules: [{701A630D-66AB-49B0-843B-C219A1FED990}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{C98C7DE2-7E6B-457D-BEDC-7EFDE8A5E77F}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{8EC3F305-F91B-43DF-B4BA-2C5917779C0B}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{B035EA41-9AD6-4BB4-BDB4-5BFBEE7A9D0B}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{D2641869-9BF3-4635-97C7-631371958E04}] => (Allow) LPort=8317 FirewallRules: [{E54F11D1-ABA0-4FFB-9ED0-0563496593EC}] => (Allow) D:\Steam\steamapps\common\Ball 3D\Ball 3D.exe FirewallRules: [{C3557A0F-4CAB-404F-8F64-CED574D22EE7}] => (Allow) D:\Steam\steamapps\common\Ball 3D\Ball 3D.exe FirewallRules: [{036B7DBD-B920-4AE2-B703-D001C20C6845}] => (Allow) D:\Call of Juarez - Bound in Blood\CoJBiBGame_x86.exe FirewallRules: [{D7DDDC29-1269-413C-8A1D-CE898898B7B4}] => (Allow) D:\Call of Juarez - Bound in Blood\CoJBiBGame_x86.exe FirewallRules: [{47A089DC-FD1F-44A5-BD44-1856DBB63F8C}] => (Block) e:\the sims 4\game\bin\ts4.exe FirewallRules: [{BCC5A4D3-A5B4-446E-BEA6-FA156757170A}] => (Allow) E:\The Sims 4\Game\Bin\TS4_x64.exe FirewallRules: [{0F504649-142F-4246-9093-68771389429D}] => (Allow) E:\The Sims 4\Game\Bin\TS4_x64.exe FirewallRules: [{DC634013-E50C-4825-8067-90F24779420F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{8B5BC3E4-53F7-46F4-B20E-36F442DFB95C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{0CBC263E-0EBB-46C6-8EF8-6E6C35E82764}] => (Allow) D:\Steam\steamapps\common\Unturned\Unturned_BE.exe FirewallRules: [{7B361769-76FD-4C87-A15F-C1BDF374396D}] => (Allow) D:\Steam\steamapps\common\Unturned\Unturned_BE.exe FirewallRules: [{D540BFDE-5276-4BD9-BA6C-BBC1BF7FC9AC}] => (Allow) D:\Steam\steamapps\common\Unturned\Unturned.exe FirewallRules: [{46D27CD4-5F9A-4761-92D6-33C1526E6120}] => (Allow) D:\Steam\steamapps\common\Unturned\Unturned.exe FirewallRules: [{FFFA3BAD-411E-43B3-B48E-03F8956F68CA}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe FirewallRules: [{2D736EB2-3D69-43B9-BE3F-9201EF2C9CF1}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe FirewallRules: [{C1C6860F-97CB-4FCD-94AC-AA0ED1CDA333}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [{288D02F4-7AC2-4D81-967F-0CDAC500B84C}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [{6ECF0C68-C7D8-4429-94E1-A9F1BE848B8E}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{A11D72BD-B734-41CE-BEAB-DFFC8514DBB2}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{857FB0F4-5B7C-4BE1-9A8F-D6CA1CD32E1C}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{D386BE60-F9E0-4DF3-86A2-274C0791BE2E}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{C29B1227-75D2-4866-BAA4-D82839FC2E49}] => (Allow) C:\Program Files\Opera\56.0.3051.104\opera.exe FirewallRules: [{E2204C68-F317-400C-B8C4-4BB5CDA54CC4}] => (Allow) C:\Program Files\Opera\56.0.3051.116\opera.exe FirewallRules: [{865ED34D-5ED6-4DDD-B6C7-AE8B0C1C6EB2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{2412BD25-C2A6-478F-A0E3-09424172D040}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{9E0A4720-EB89-479F-B51F-3C9168EEBE26}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{DE4B650F-86D6-4E7B-9B94-A015419A0970}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{6B43613E-5336-4029-B705-A2752C47FC27}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe ==================== Punkty Przywracania systemu ========================= UWAGA: Przywracanie systemu jest wyłączone ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: TAP-Win32 Adapter V9 (Tunngle) Description: TAP-Win32 Adapter V9 (Tunngle) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: TAP-Win32 Provider V9 (Tunngle) Service: tap0901t Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Anchorfree HSS VPN Adapter Description: Anchorfree HSS VPN Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Anchorfree HSS VPN Adapter Service: taphss6 Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (12/08/2018 12:06:00 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: Adi-Komputer) Description: httphttp-2147467263 Error: (12/08/2018 11:57:39 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: Adi-Komputer) Description: httphttp-2147467263 Error: (12/08/2018 11:57:20 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: SoundMixer.exe, wersja: 2.6.0.0, sygnatura czasowa: 0x5bbf2e60 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00000000003b8516 Identyfikator procesu powodującego błąd: 0x11b0 Godzina uruchomienia aplikacji powodującej błąd: 0x01d48ee4c2a02003 Ścieżka aplikacji powodującej błąd: C:\Users\Adi\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe Ścieżka modułu powodującego błąd: unknown Identyfikator raportu: a614cea4-f16f-4991-a2c1-799a4f0214a8 Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (12/08/2018 11:49:28 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: Adi-Komputer) Description: httphttp-2147467263 Error: (12/08/2018 11:49:28 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: Adi-Komputer) Description: httphttp-2147467263 Error: (12/08/2018 11:38:46 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: Adi-Komputer) Description: httphttp-2147467263 Error: (12/08/2018 11:36:47 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: Adi-Komputer) Description: httphttp-2147467263 Error: (12/08/2018 11:35:21 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: SoundMixer.exe, wersja: 2.6.0.0, sygnatura czasowa: 0x5bbf2e60 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00000000003b8516 Identyfikator procesu powodującego błąd: 0x19f4 Godzina uruchomienia aplikacji powodującej błąd: 0x01d48ee1b802aa31 Ścieżka aplikacji powodującej błąd: C:\Users\Adi\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe Ścieżka modułu powodującego błąd: unknown Identyfikator raportu: 7f1785d7-98bb-47c2-aa52-eab6962339a6 Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Dziennik System: ============= Error: (12/08/2018 12:05:11 PM) (Source: DCOM) (EventID: 10016) (User: Adi-Komputer) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} i identyfikatorem aplikacji APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} użytkownikowi Adi-Komputer\Adi o identyfikatorze zabezpieczeń SID (S-1-5-21-1962681985-163799491-3190242698-1000) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (12/08/2018 12:00:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Disc Soft Lite Bus Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (12/08/2018 11:57:57 AM) (Source: DCOM) (EventID: 10016) (User: Adi-Komputer) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} i identyfikatorem aplikacji APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} użytkownikowi Adi-Komputer\Adi o identyfikatorze zabezpieczeń SID (S-1-5-21-1962681985-163799491-3190242698-1000) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (12/08/2018 11:54:25 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Kolejkowanie komunikatów niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 120000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (12/08/2018 11:54:25 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Disc Soft Lite Bus Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (12/08/2018 11:54:25 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Steam Client Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (12/08/2018 11:54:25 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Intel(R) Management & Security Application User Notification Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (12/08/2018 11:54:25 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa LogMeIn Hamachi Tunneling Engine niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i3 CPU 530 @ 2.93GHz Procent pamięci w użyciu: 66% Całkowita pamięć fizyczna: 3963.49 MB Dostępna pamięć fizyczna: 1333.09 MB Całkowita pamięć wirtualna: 7931.49 MB Dostępna pamięć wirtualna: 4505.11 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:97.56 GB) (Free:25.39 GB) NTFS Drive d: () (Fixed) (Total:146.48 GB) (Free:73.72 GB) NTFS Drive e: () (Fixed) (Total:221.62 GB) (Free:90.88 GB) NTFS \\?\Volume{999b987e-3cba-11e7-b4e4-806e6f6e6963}\ (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 640FE1F7) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=97.6 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=146.5 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=221.6 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================