Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 20.01.2019 Uruchomiony przez Maciek (21-01-2019 20:42:48) Uruchomiony z C:\Users\Maciek\Downloads Windows 7 Professional Service Pack 1 (X64) (2018-10-14 12:52:10) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-431844057-659013853-3473270766-500 - Administrator - Disabled) Gość (S-1-5-21-431844057-659013853-3473270766-501 - Limited - Disabled) Maciek (S-1-5-21-431844057-659013853-3473270766-1000 - Administrator - Enabled) => C:\Users\Maciek Mlacek (S-1-5-21-431844057-659013853-3473270766-1001 - Limited - Enabled) => C:\Users\Mlacek ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-431844057-659013853-3473270766-1000\...\uTorrent) (Version: 3.5.5.44994 - BitTorrent Inc.) Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated) Aktualizacje NVIDIA 34.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 34.0.0.0 - NVIDIA Corporation) Hidden Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.57.44284 - Electronic Arts) Blood and Wine (HKLM-x32\...\1441620909_is1) (Version: 1.32 - GOG.com) Brother MFL-Pro Suite DCP-135C (HKLM-x32\...\{A3FEC306-FBFF-4B0D-95B9-F9C67C65079E}) (Version: 1.0.2.0 - Brother Industries, Ltd.) Cities Skylines Industries (HKLM-x32\...\Cities Skylines Industries_is1) (Version: - ) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.9.0.0650 - Disc Soft Ltd) Dev-C++ (HKLM-x32\...\Dev-C++) (Version: 5.11 - Bloodshed Software) DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 416.34 - NVIDIA Corporation) Hidden Far Cry 4 version 1.10.0.0 (HKLM-x32\...\Far Cry 4_is1) (Version: 1.10.0.0 - Mr DJ) Free DLC program (16 DLC) (HKLM-x32\...\1430743168_is1) (Version: 1.32 - GOG.com) GIMP 2.10.8 (HKLM\...\GIMP-2_is1) (Version: 2.10.8 - The GIMP Team) GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden Hearts of Stone (HKLM-x32\...\1441355562_is1) (Version: 1.32 - GOG.com) League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc) Malwarebytes (wersja 3.6.1.2711) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes) Memsoria 8.6 wersja 8.6 (HKLM-x32\...\{1CA6A4DC-07FE-478D-A500-F695D396A5CA}_is1) (Version: 8.6 - Memsoria) Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation) Microsoft .NET Framework 4.7.2 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.7.03062 - Microsoft Corporation) Microsoft Office Professional Plus 2016 (HKLM-x32\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML4 Parser (HKLM-x32\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios) Narzędzia sprawdzające pakietu Microsoft Office 2016 — polski (HKLM-x32\...\{90160000-001F-0415-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.12 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 3.16.0.140 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.16.0.140 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 416.34 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.37.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.5 - NVIDIA Corporation) NVIDIA Sterownik graficzny 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 416.34 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation) Origin (HKLM-x32\...\Origin) (Version: 10.5.33.19463 - Electronic Arts, Inc.) Overlay (HKLM-x32\...\1430742867_is1) (Version: 1.32 - GOG.com) Panel sterowania NVIDIA 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 416.34 - NVIDIA Corporation) Hidden PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.77.1126.2013 - Realtek) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.2.3 - TeamSpeak Systems GmbH) The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.24.0.0 - GOG.com) The Witcher 3: Wild Hunt - Serca z kamienia (HKLM-x32\...\Hearts of Stone_is1) (Version: 1.24.0.0 - GOG.com) The Witcher 3: Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.32 - GOG.com) Tibia (HKU\S-1-5-21-431844057-659013853-3473270766-1000\...\Tibia) (Version: - CipSoft GmbH) Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.21a - Ghisler Software GmbH) Update for Skype for Business 2016 (KB4022155) 32-Bit Edition (HKLM-x32\...\{90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{850616DD-781F-40BD-A7A0-4676BFDA87E2}) (Version: - Microsoft) Update for Skype for Business 2016 (KB4022155) 32-Bit Edition (HKLM-x32\...\{90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{850616DD-781F-40BD-A7A0-4676BFDA87E2}) (Version: - Microsoft) Update for Skype for Business 2016 (KB4022155) 32-Bit Edition (HKLM-x32\...\{90160000-012B-0415-0000-0000000FF1CE}_Office16.PROPLUS_{850616DD-781F-40BD-A7A0-4676BFDA87E2}) (Version: - Microsoft) VIA Platforma Menedżera urządzeń (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.) Windows 7 USB/DVD Download Tool (HKLM-x32\...\{F92064F6-BDE8-46FC-A19F-4E12D311BE3A}) (Version: 1.0.30 - Microsoft Corporation) WinRAR 5.60 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH) XAMPP (HKLM-x32\...\xampp) (Version: 7.2.12-0 - Bitnami) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-07-16] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-07-16] (Alexander Roshal) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-10-19] (Disc Soft Ltd) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-10-19] (Disc Soft Ltd) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-10-11] (NVIDIA Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-07-16] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-07-16] (Alexander Roshal) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0427A256-BECF-4994-994A-4F3858A227AB} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-12-06] (NVIDIA Corporation) Task: {053AF5F4-6695-4293-AF6A-ED18AA5DEC5B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-12-06] (NVIDIA Corporation) Task: {0A0EEB1F-EF4D-4E02-8861-D73B07DB8749} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-12-06] (NVIDIA Corporation) Task: {11ED2892-8A09-4E1E-9CC2-BBC855DB7702} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-12-06] (NVIDIA Corporation) Task: {16CA406A-BF86-4637-B16B-6557E28D5621} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation) Task: {2A750C21-F19C-49FE-AE86-16B1B40C0DE8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-01-21] (Google Inc.) Task: {3D735553-0F50-4067-A58D-B217CF9F57AD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-01-21] (Google Inc.) Task: {572CAA81-17A1-4A36-B62F-EDF8959C3B28} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-12-06] (NVIDIA Corporation) Task: {58765788-59BE-4FF7-A201-E9C0E45385BA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation) Task: {70131420-1F00-40D9-A71D-6D47E290598E} - System32\Tasks\{8D83D6EE-B1EC-4965-BFE7-94ED5E06A3BF} => C:\Windows\system32\pcalua.exe -a "C:\Users\Maciek\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe" -c /uninstall Task: {78F146D0-C265-41F2-89B6-C380DE2889CA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-12-06] (NVIDIA Corporation) Task: {A01B31F9-C807-45E5-BFF9-32A5E2BC704F} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-12-06] (NVIDIA Corporation) Task: {A123770E-DCD7-49F6-9FDF-5C0628CE0779} - System32\Tasks\{45193F67-56C3-415F-98E8-397A2827C853} => C:\Program Files (x86)\Microsoft Games\Age of Mythology\aomstart.exe [2006-09-07] () Task: {A36C7937-CAAF-43C9-8F03-A97A94EE0144} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe Task: {A47F9E3D-24B9-427A-9FF2-927CE001AF5F} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-12-06] (NVIDIA Corporation) Task: {AE3966F1-CB8D-4806-A0E2-DB4D1D6DCC5E} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-12-06] (NVIDIA Corporation) Task: {CA2175AF-F506-4077-B692-5AD2126E807E} - System32\Tasks\AdobeAAMUpdater-1.0-Maciek-Komputer-Maciek => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated) Task: {DED09A58-DFFA-4A7D-9E0E-217DFA86E411} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-12-06] (NVIDIA Corporation) Task: {ED966643-1AC2-4F4F-8423-663CBAA540A6} - System32\Tasks\{6D97F651-1858-4C85-8D70-57AE5B81FDEF} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Microsoft Games\Age of Mythology\ar505enu.exe" -d E:\ -c E:\_aom.exe Task: {F364548F-2B8A-4C63-A027-6F929CDAE2F0} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-12-06] (NVIDIA Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\": WMI:subscription\__EventFilter->BVTFilter: WMI:subscription\CommandLineEventConsumer->BVTConsumer: ==================== Załadowane moduły (filtrowane) ============== 2018-10-14 14:32 - 2018-12-06 11:14 - 001315312 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2019-01-21 00:01 - 2018-11-15 11:01 - 002712432 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2018-11-03 11:38 - 2012-10-25 10:26 - 000078456 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll 2018-11-03 11:38 - 2012-10-25 10:26 - 000386168 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll 2019-01-09 18:38 - 2019-01-09 18:38 - 003083264 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\DotNetCommon\8bf2cf1fd0841673060d18a3fe9bc111\DotNetCommon.ni.dll 2018-10-21 17:44 - 2009-02-27 15:38 - 000139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll 2018-10-14 14:32 - 2018-12-06 11:14 - 001033200 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2018-11-03 19:51 - 2018-10-22 18:35 - 067919944 _____ () C:\Program Files (x86)\GOG Galaxy\libcef.dll 2018-11-03 19:51 - 2018-10-22 18:35 - 000503368 _____ () C:\Program Files (x86)\GOG Galaxy\PocoUtil.dll 2018-11-03 19:51 - 2018-10-22 18:35 - 000513608 _____ () C:\Program Files (x86)\GOG Galaxy\PocoXML.dll 2018-11-03 19:51 - 2018-10-22 18:35 - 000152648 _____ () C:\Program Files (x86)\GOG Galaxy\expat.dll 2018-11-03 19:51 - 2018-10-22 18:35 - 001656392 _____ () C:\Program Files (x86)\GOG Galaxy\PocoFoundation.dll 2018-11-03 19:51 - 2018-10-22 18:35 - 000426568 _____ () C:\Program Files (x86)\GOG Galaxy\pcre.dll 2018-11-03 19:51 - 2018-10-22 18:35 - 000107592 _____ () C:\Program Files (x86)\GOG Galaxy\zlib.dll 2018-11-03 19:51 - 2018-10-22 18:35 - 000327752 _____ () C:\Program Files (x86)\GOG Galaxy\PocoJSON.dll 2018-11-03 19:51 - 2018-10-22 18:35 - 001071176 _____ () C:\Program Files (x86)\GOG Galaxy\PocoNet.dll 2018-11-03 19:51 - 2018-10-22 18:35 - 001856072 _____ () C:\Program Files (x86)\GOG Galaxy\PocoData.dll 2018-11-03 19:51 - 2018-10-22 18:35 - 000387656 _____ () C:\Program Files (x86)\GOG Galaxy\PocoDataSQLite.dll 2018-11-03 19:51 - 2018-10-22 18:35 - 000681032 _____ () C:\Program Files (x86)\GOG Galaxy\sqlite.dll 2018-11-03 19:51 - 2018-10-22 18:35 - 000306248 _____ () C:\Program Files (x86)\GOG Galaxy\PocoNetSSL.dll 2018-11-03 19:51 - 2018-10-22 18:35 - 000157256 _____ () C:\Program Files (x86)\GOG Galaxy\PocoCrypto.dll 2018-11-03 19:51 - 2018-10-22 18:35 - 000130120 _____ () C:\Program Files (x86)\GOG Galaxy\xdelta3.dll 2018-11-03 19:51 - 2018-10-22 18:35 - 000270920 _____ () C:\Program Files (x86)\GOG Galaxy\PocoZip.dll 2018-11-03 19:51 - 2018-10-22 18:35 - 003176448 _____ () C:\Program Files (x86)\GOG Galaxy\libglesv2.dll 2018-11-03 19:51 - 2018-10-22 18:35 - 000079872 _____ () C:\Program Files (x86)\GOG Galaxy\libegl.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2019-01-21 08:50 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-431844057-659013853-3473270766-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Maciek\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 195.3.203.3 - 195.66.73.10 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == Załączenie wejścia w fixlist spowoduje jego usunięcie. MSCONFIG\startupfolder: C:^Users^Maciek^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Shortcut to Primary output from Start (Active).lnk => C:\Windows\pss\Shortcut to Primary output from Start (Active).lnk.Startup ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Corporation) FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Corporation) FirewallRules: [{FB1B9287-3081-4877-AFC9-62D74904BE4A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) FirewallRules: [{1131A295-C1DF-4F95-944B-6CF0BFC7F572}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) FirewallRules: [{A530F1D7-36E2-4E2C-8D50-4CDCF8176BE1}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe Brak pliku FirewallRules: [{38A5B008-2F87-4F12-90CE-5269BE4BA409}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe Brak pliku FirewallRules: [{F23068D5-5C15-47F5-A3D3-3143BCB7BCDD}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe Brak pliku FirewallRules: [{B843A751-196A-4B6E-A0FD-B7711D0BF15D}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe Brak pliku FirewallRules: [{3ADE02F8-8D2E-435E-A5FB-A8BA76455B93}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (Disc Soft Ltd) FirewallRules: [{EE466E0E-A33A-4390-9710-00B3F57D2B65}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation) FirewallRules: [{AD70453A-BF91-4CD6-B613-62DB1EA3BB69}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation) FirewallRules: [{5F16432B-A51D-488B-A26E-A10B244CF785}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation) FirewallRules: [{3D6A97C1-B4EA-4C34-9601-E0F5820325B4}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation) FirewallRules: [{E9EAF5B4-AA11-49C5-B80F-26E8217165E7}] => (Allow) C:\Users\Maciek\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.) FirewallRules: [{AE0A95CA-7E18-4653-BD12-252AE1EB8676}] => (Allow) C:\Users\Maciek\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.) FirewallRules: [{3152C993-655D-48EA-848D-499859E72F81}] => (Allow) C:\Program Files (x86)\Far Cry 4\bin\FarCry4.exe (Ubisoft Entertainment) FirewallRules: [{0D184E78-3A6D-4038-B669-268572CAE76B}] => (Allow) C:\Program Files (x86)\Far Cry 4\bin\FarCry4.exe (Ubisoft Entertainment) FirewallRules: [TCP Query User{B94CB77C-902D-4ECA-BE60-F40C35FFA46B}C:\users\maciek\downloads\football.manager.2019-fckdrm\football manager 2019\fm.exe] => (Allow) C:\users\maciek\downloads\football.manager.2019-fckdrm\football manager 2019\fm.exe Brak pliku FirewallRules: [UDP Query User{3D1197AB-7C97-4110-AC34-BA3FF72BF9C2}C:\users\maciek\downloads\football.manager.2019-fckdrm\football manager 2019\fm.exe] => (Allow) C:\users\maciek\downloads\football.manager.2019-fckdrm\football manager 2019\fm.exe Brak pliku FirewallRules: [{8B5B14BF-9E35-4AD9-BA49-1BB0C2C24308}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe (EA Digital Illusions CE AB) FirewallRules: [{C0F5454A-8C50-4549-8475-83783F901F0F}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe (EA Digital Illusions CE AB) FirewallRules: [{2A6318A8-F9D1-431D-9C2D-F4DDC5925770}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe (EA Digital Illusions CE AB) FirewallRules: [{8DDAAC41-1DAB-4173-9A66-6DC7927404C4}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe (EA Digital Illusions CE AB) FirewallRules: [{1CEF23BB-DF8C-4E14-B13F-C3863D827254}] => (Allow) D:\Valve\Steam\Steam.exe (Valve Corporation) FirewallRules: [{24696417-FB61-47D9-A299-FC40EBE81715}] => (Allow) D:\Valve\Steam\Steam.exe (Valve Corporation) FirewallRules: [{69A685EE-C5D7-46E7-AFDA-707D0F8AA2DF}] => (Allow) D:\Valve\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corporation) FirewallRules: [{D157CCF9-48CD-4715-968A-6982E85BA6FD}] => (Allow) D:\Valve\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corporation) FirewallRules: [{4794C1B8-4254-43ED-946F-F6F24016970C}] => (Allow) D:\Valve\Steam\SteamApps\common\Half-Life\hl.exe (Valve) FirewallRules: [{C3F4895D-2BCF-4A9C-88B4-8C3162B3FE24}] => (Allow) D:\Valve\Steam\SteamApps\common\Half-Life\hl.exe (Valve) FirewallRules: [{2B05C5C0-8177-4F28-AC88-015864560B92}] => (Allow) D:\Valve\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe (Firaxis Games) FirewallRules: [{75AD55F1-AD4F-4387-BCA9-E2582938EB38}] => (Allow) D:\Valve\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe (Firaxis Games) FirewallRules: [{22513C5E-91A1-4958-88B9-1A10504DF6DE}] => (Allow) D:\Valve\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe () FirewallRules: [{608F5AAE-3FC9-420B-953F-504323DBB1CF}] => (Allow) D:\Valve\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe () FirewallRules: [TCP Query User{54F0084D-F602-49F4-9108-574A113AADE7}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) FirewallRules: [UDP Query User{07365844-521B-433A-9D7B-ACF8BE966017}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) FirewallRules: [TCP Query User{6DE64666-DD2B-449E-A7DC-A218B16CC539}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe () FirewallRules: [UDP Query User{A105EAC6-6AEA-4417-B49A-E020A18F438A}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe () FirewallRules: [{84C72314-49D8-4A1B-BFD8-CA4503F3FBC1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) FirewallRules: [{C57DF742-0B2A-4649-829E-71620983C580}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) FirewallRules: [{014AEB24-FDB8-41FE-BD52-0EB4E5AA99B2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation) FirewallRules: [{ECE73D86-8411-46AC-9F90-723A1771E7FC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation) FirewallRules: [TCP Query User{687C41C4-1BAB-4F0E-900F-C96F42A6EB7E}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe Brak pliku FirewallRules: [UDP Query User{62773472-F961-4385-A18B-E1F8C6382341}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe Brak pliku FirewallRules: [{614B6B71-5EA7-41B3-BA74-D09B93C40A6E}] => (Block) %ProgramFiles% (x86)\Cities Skylines Industries\Cities.exe Brak pliku FirewallRules: [{05EFB487-9CE5-4D5F-901D-42864160737F}] => (Allow) D:\Valve\Steam\SteamApps\common\Human Fall Flat\Human.exe () FirewallRules: [{BBDA28AC-CC13-402C-8F92-726C488BABA0}] => (Allow) D:\Valve\Steam\SteamApps\common\Human Fall Flat\Human.exe () FirewallRules: [TCP Query User{1763F9F3-73F9-4B07-9FD2-0DA2865A9DB1}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe Brak pliku FirewallRules: [UDP Query User{A5935256-0B25-4A75-AB3E-FE4722BF8D50}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe Brak pliku FirewallRules: [{406874A4-4067-4E56-A4B0-97B0C50DEE30}] => (Allow) D:\Valve\Steam\SteamApps\common\Sid Meier's Civilization V\LaunchPad\LaunchPad.exe () FirewallRules: [{16E31C82-9CEE-43FA-8E79-BDE1BF8250D9}] => (Allow) D:\Valve\Steam\SteamApps\common\Sid Meier's Civilization V\LaunchPad\LaunchPad.exe () FirewallRules: [TCP Query User{93FC44BE-54AF-4EA3-A03D-7F59C69E35FD}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe () FirewallRules: [UDP Query User{D0EB7628-A233-4FA7-A5F3-5A792F1A0B78}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe () FirewallRules: [TCP Query User{CBD9E83F-F93E-4D52-815C-B1C39BECE894}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe () FirewallRules: [UDP Query User{0876D1F0-0B13-465D-A975-2D151D7BC60A}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe () FirewallRules: [{DE83DB57-AB96-4F3C-B730-16367B758D69}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ==================== Punkty Przywracania systemu ========================= 20-01-2019 23:15:34 Removed WhiteClick 20-01-2019 23:18:56 Removed WhiteClick 20-01-2019 23:19:13 Removed WhiteClick 20-01-2019 23:34:27 Removed WhiteClick 20-01-2019 23:35:22 Removed WhiteClick 20-01-2019 23:44:44 Removed WhiteClick ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Kontroler magistrali zarządzania systemem Description: Kontroler magistrali zarządzania systemem Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (01/21/2019 08:21:28 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Dziennik System: ============= ==================== Statystyki pamięci =========================== Procesor: Intel(R) Xeon(R) CPU E3-1230 V2 @ 3.30GHz Procent pamięci w użyciu: 40% Całkowita pamięć fizyczna: 8141.77 MB Dostępna pamięć fizyczna: 4841.98 MB Całkowita pamięć wirtualna: 16281.67 MB Dostępna pamięć wirtualna: 11970.55 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:443.13 GB) (Free:219.56 GB) NTFS Drive d: () (Fixed) (Total:488.28 GB) (Free:95.29 GB) NTFS \\?\Volume{d7ad8e39-cfac-11e8-a59e-806e6f6e6963}\ (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: A3C2D017) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=443.1 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=488.3 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================