Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 14-08-2019 Uruchomiony przez Kasztanobil (20-08-2019 03:06:43) Uruchomiony z C:\Users\Kasztanobil\Desktop Windows 10 Pro N Wersja 1903 18362.295 (X64) (2019-07-20 01:29:56) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-79719383-1044133241-1635262486-500 - Administrator - Disabled) Gość (S-1-5-21-79719383-1044133241-1635262486-501 - Limited - Disabled) Kasztanobil (S-1-5-21-79719383-1044133241-1635262486-1001 - Administrator - Enabled) => C:\Users\Kasztanobil Konto domyślne (S-1-5-21-79719383-1044133241-1635262486-503 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-79719383-1044133241-1635262486-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70} AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-79719383-1044133241-1635262486-1001\...\uTorrent) (Version: 3.5.5.45311 - BitTorrent Inc.) Aktualizacje NVIDIA 37.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 37.0.0.0 - NVIDIA Corporation) Hidden Brother MFL-Pro Suite DCP-J105 (HKLM-x32\...\{B742757A-7658-4E09-A51A-085CF0F7F4D3}) (Version: 1.0.0.0 - Brother Industries, Ltd.) CCleaner (HKLM\...\CCleaner) (Version: 5.57 - Piriform) CPUID HWMonitor 1.40 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.40 - CPUID, Inc.) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.10.0.0811 - Disc Soft Ltd) Discord (HKU\S-1-5-21-79719383-1044133241-1635262486-1001\...\Discord) (Version: 0.0.305 - Discord Inc.) ESET Security (HKLM\...\{EC96F234-2A42-4D7D-9C33-443566F72BF5}) (Version: 12.2.23.0 - ESET, spol. s r.o.) GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 76.0.3809.100 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation) Java 8 Update 221 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180221F0}) (Version: 8.0.2210.11 - Oracle Corporation) Lightshot-5.4.0.35 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.35 - Skillbrains) Microsoft Office 365 ProPlus - pl-pl (HKLM\...\O365ProPlusRetail - pl-pl) (Version: 16.0.11901.20218 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-79719383-1044133241-1635262486-1001\...\OneDriveSetup.exe) (Version: 19.123.0624.0005 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation) MSI DragonEye (HKLM\...\{7116875E-F251-4C33-AB3F-37DE05B15595}_is1) (Version: 0.0.2.5 - MSI) MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.2.0.11 - MSI) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 3.19.0.107 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.19.0.107 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation) NVIDIA Sterownik graficzny 431.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 431.60 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11901.20218 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11901.20218 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11901.20218 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0415-0000-0000000FF1CE}) (Version: 16.0.11901.20218 - Microsoft Corporation) Hidden OpenOffice 4.1.6 (HKLM-x32\...\{F03D2388-158B-4F8A-B195-CBCA5F459197}) (Version: 4.16.9790 - Apache Software Foundation) Origin (HKLM-x32\...\Origin) (Version: 10.5.43.28287 - Electronic Arts, Inc.) Panel sterowania NVIDIA 431.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 431.60 - NVIDIA Corporation) Hidden Pillars of Eternity (HKLM-x32\...\1207666813_is1) (Version: 3.7.0.1280 - GOG.com) Pillars of Eternity: The White March - Part 1 (HKLM-x32\...\1439895308_is1) (Version: 3.7.0.1280 - GOG.com) Pillars of Eternity: The White March - Part 2 (HKLM-x32\...\1439897569_is1) (Version: 3.7.0.1280 - GOG.com) Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 2.10.6 - Razer Inc.) Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.24.1 - Razer Inc.) Skyrim by DanteJinx (HKLM-x32\...\Skyrim by DanteJinx_is1) (Version: 0.1 - DanteJinx) Smart Technology Programming Software 7.0.45.2 (HKLM\...\{431DEFDE-6862-4CBC-AA44-112164825D73}) (Version: 7.0.45.2 - Mad Catz) Sound Blaster Recon3Di (HKLM-x32\...\{918F3CE9-7164-4C6D-9530-66F12EFB4585}) (Version: 1.03.00 - Creative Technology Limited) Sound Blaster Recon3Di Extras (HKLM-x32\...\{536BDBFC-CA1A-4AC0-A8EB-BB2D0F1F522E}) (Version: 1.0 - Creative Technology Limited) STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.7.38635 - Electronic Arts) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.10168 - Microsoft Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.2.3 - TeamSpeak Systems GmbH) Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version: - Ubisoft Montreal) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{B2E25355-C24E-4E7D-8AD3-455D59810838}) (Version: 2.57.0.0 - Microsoft Corporation) Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{344F3227-F502-4219-9DC4-1967E586FAFA}) (Version: 2.51.0.0 - Microsoft Corporation) Uplay (HKLM-x32\...\Uplay) (Version: 86.0 - Ubisoft) VLC media player (HKLM\...\VLC media player) (Version: 3.0.7.1 - VideoLAN) WinRAR 5.70 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH) Packages: ========= Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-04-25] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-04-25] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.6132.0_x64__8wekyb3d8bbwe [2019-06-17] (Microsoft Studios) [MS Ad] MSN Pogoda -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-21] (Microsoft Corporation) [MS Ad] Poczta i Kalendarz -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11901.20184.0_x64__8wekyb3d8bbwe [2019-08-01] (Microsoft Corporation) [MS Ad] ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-04-05] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-03-13] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-03-13] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-04-26] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-04-05] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-04-26] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-07-17] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-04-05] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-03-13] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-03-13] (win.rar GmbH -> Alexander Roshal) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2019-04-26 00:11 - 2016-06-14 16:35 - 000187392 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\D3D11FontDraw.dll 2019-04-26 00:11 - 2016-06-14 16:35 - 000163328 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\D3D11FontDraw.dll 2019-05-08 18:11 - 2005-04-22 06:36 - 000143360 _____ () [Brak podpisu cyfrowego] C:\WINDOWS\system32\BrSNMP64.dll 2019-07-23 01:57 - 2019-07-12 09:23 - 000015360 _____ () [Brak podpisu cyfrowego] D:\Gry\Origin\libEGL.DLL 2019-07-23 01:57 - 2019-07-12 09:23 - 003090944 _____ () [Brak podpisu cyfrowego] D:\Gry\Origin\libGLESv2.dll 2019-05-08 18:11 - 2012-10-19 14:02 - 000087040 _____ (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\WINDOWS\system32\BrNetSti.dll 2019-04-26 00:11 - 2015-06-23 16:41 - 000082432 _____ (Fintek) [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI\Gaming APP\Lib\FintekUSBDll.dll 2019-07-23 01:57 - 2019-06-11 08:21 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] D:\Gry\Origin\LIBEAY32.dll 2019-07-23 01:57 - 2019-06-11 08:22 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] D:\Gry\Origin\ssleay32.dll 2019-07-23 01:57 - 2019-07-12 09:23 - 001611264 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Gry\Origin\platforms\qwindows.dll 2019-07-23 01:57 - 2019-07-12 09:23 - 005487104 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Gry\Origin\Qt5Core.dll 2019-07-23 01:57 - 2019-07-12 09:23 - 005841920 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Gry\Origin\Qt5Gui.dll 2019-07-23 01:57 - 2019-07-12 09:23 - 001179136 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Gry\Origin\Qt5Network.dll 2019-07-23 01:57 - 2019-07-12 09:23 - 000207360 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Gry\Origin\Qt5Positioning.dll 2019-07-23 01:57 - 2019-07-12 09:23 - 000310272 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Gry\Origin\Qt5PrintSupport.dll 2019-07-23 01:57 - 2019-07-12 09:23 - 003513344 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Gry\Origin\Qt5Qml.dll 2019-07-23 01:57 - 2019-07-12 09:23 - 003390976 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Gry\Origin\Qt5Quick.dll 2019-07-23 01:57 - 2019-07-12 09:23 - 000068096 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Gry\Origin\Qt5QuickWidgets.dll 2019-07-23 01:57 - 2019-07-12 09:23 - 000116224 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Gry\Origin\Qt5WebChannel.dll 2019-07-23 01:57 - 2019-07-12 09:23 - 054071296 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Gry\Origin\Qt5WebEngineCore.dll 2019-07-23 01:57 - 2019-07-12 09:23 - 000211456 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Gry\Origin\Qt5WebEngineWidgets.dll 2019-07-23 01:57 - 2019-07-12 09:23 - 000146432 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Gry\Origin\Qt5WebSockets.dll 2019-07-23 01:57 - 2019-07-12 09:23 - 005089792 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Gry\Origin\Qt5Widgets.dll 2019-07-23 01:57 - 2019-07-12 09:23 - 000184832 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Gry\Origin\Qt5Xml.dll 2019-04-26 00:11 - 2016-10-03 13:43 - 000399872 _____ (TODO: <公司名稱>) [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI\Gaming APP\Lib\SDKDLL.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\Users\Kasztanobil\Dane aplikacji:00e481b5e22dbe1f649fcddd505d3eb7 [394] AlternateDataStreams: C:\Users\Kasztanobil\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2017-09-29 15:45 - 2017-09-29 15:43 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps HKU\S-1-5-21-79719383-1044133241-1635262486-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Kasztanobil\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == Załączenie wejścia w fixlist spowoduje jego usunięcie. HKLM\...\StartupApproved\Run: => "SaiMfd" HKLM\...\StartupApproved\Run: => "ProfilerU" HKLM\...\StartupApproved\Run32: => "BrHelp" HKLM\...\StartupApproved\Run32: => "BrStsMon00" HKLM\...\StartupApproved\Run32: => "ControlCenter4" HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller" HKLM\...\StartupApproved\Run32: => "Lightshot" HKU\S-1-5-21-79719383-1044133241-1635262486-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-79719383-1044133241-1635262486-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{D38F2EFD-6F33-43F4-80C7-420C9335ED70}] => (Allow) D:\Gry\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Brak podpisu cyfrowego] FirewallRules: [{1A7FD543-ED70-404A-857C-D0D2A1F43339}] => (Allow) D:\Gry\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Brak podpisu cyfrowego] FirewallRules: [{243DE705-749E-4703-9FC9-0B8982237FA8}] => (Allow) D:\Gry\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{49F7C89E-83DF-435B-B959-016A39D6E9D1}] => (Allow) D:\Gry\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{EFC837CA-59B0-499C-9E18-A8A84C1FBA5E}] => (Allow) D:\Gry\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{3D6A3B6D-91C0-4646-8F05-314650041755}] => (Allow) D:\Gry\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{E1A7BA75-36E8-48E6-92D1-4B0C9C88D59F}] => (Allow) D:\Gry\Steam\steamapps\common\Undertale\UNDERTALE.exe (Toby Fox ) [Brak podpisu cyfrowego] FirewallRules: [{028F3467-124E-4983-890C-5DE7A3871812}] => (Allow) D:\Gry\Steam\steamapps\common\Undertale\UNDERTALE.exe (Toby Fox ) [Brak podpisu cyfrowego] FirewallRules: [{2C3D9210-68AF-4C4C-A9FD-C018F092317A}] => (Allow) D:\Gry\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Brak podpisu cyfrowego] FirewallRules: [{3AFCCF36-77F1-44D1-9403-8CC445CF5761}] => (Allow) D:\Gry\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Brak podpisu cyfrowego] FirewallRules: [{4218DAF9-0823-4118-AFDA-A10B8387A472}] => (Allow) D:\Gry\Steam\steamapps\common\Cossacks 3\modman.exe (GSC Game World) [Brak podpisu cyfrowego] FirewallRules: [{9445B70A-4FC0-4F0B-84AF-180C967F8F3F}] => (Allow) D:\Gry\Steam\steamapps\common\Cossacks 3\modman.exe (GSC Game World) [Brak podpisu cyfrowego] FirewallRules: [{304697FB-042A-4B54-893A-AE70CBD5DF41}] => (Allow) D:\Gry\Steam\steamapps\common\Cossacks 3\editor.exe (GSC Game World) [Brak podpisu cyfrowego] FirewallRules: [{71D79CF4-DFB9-4629-91BF-4F7B1FB04E13}] => (Allow) D:\Gry\Steam\steamapps\common\Cossacks 3\editor.exe (GSC Game World) [Brak podpisu cyfrowego] FirewallRules: [{E091AE08-BC7B-4804-A7C8-5D669CA9673B}] => (Allow) D:\Gry\Steam\steamapps\common\Cossacks 3\config.exe (GSC Game World) [Brak podpisu cyfrowego] FirewallRules: [{442835E0-F535-44D7-8A69-76539C2EC847}] => (Allow) D:\Gry\Steam\steamapps\common\Cossacks 3\config.exe (GSC Game World) [Brak podpisu cyfrowego] FirewallRules: [{A299FAB9-E8CA-4082-BB91-82BEACB91C7B}] => (Allow) D:\Gry\Steam\steamapps\common\Cossacks 3\cossacks.exe (GSC Game World) [Brak podpisu cyfrowego] FirewallRules: [{EBCC7419-857C-4ED2-AC74-7B1F246E8D1C}] => (Allow) D:\Gry\Steam\steamapps\common\Cossacks 3\cossacks.exe (GSC Game World) [Brak podpisu cyfrowego] FirewallRules: [{60D8D980-4D86-4F8F-A6E0-018BC6133290}] => (Allow) D:\Gry\Steam\steamapps\common\Age2HD\Launcher.exe (TODO: ) [Brak podpisu cyfrowego] FirewallRules: [{61238EF5-3346-49E9-97C2-B968356C5FA7}] => (Allow) D:\Gry\Steam\steamapps\common\Age2HD\Launcher.exe (TODO: ) [Brak podpisu cyfrowego] FirewallRules: [{652AF58D-08A7-4CCE-9B38-4FB9A0EB17F6}] => (Allow) D:\Gry\Steam\steamapps\common\Napoleon Total War\Napoleon.exe (Sega Europe Limited -> The Creative Assembly Ltd) FirewallRules: [{A7705FAB-5254-4FD9-8065-E7B5342F0857}] => (Allow) D:\Gry\Steam\steamapps\common\Napoleon Total War\Napoleon.exe (Sega Europe Limited -> The Creative Assembly Ltd) FirewallRules: [{83846850-F0C3-45A3-AFE0-D8C60138B0B1}] => (Allow) D:\Gry\Steam\steamapps\common\Underlords\game\bin\win64\underlords.exe (Valve -> ) FirewallRules: [{4EA79FA4-3E53-4FDD-A0D4-578B3160784E}] => (Allow) D:\Gry\Steam\steamapps\common\Underlords\game\bin\win64\underlords.exe (Valve -> ) FirewallRules: [{A65C82B6-0FC0-41A7-8EB7-C4130A9283A7}] => (Allow) D:\Gry\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe (Tripwire Interactive, LLC.) [Brak podpisu cyfrowego] FirewallRules: [{A3C9B13C-573B-4A8E-AFE6-557FFADCB00D}] => (Allow) D:\Gry\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe (Tripwire Interactive, LLC.) [Brak podpisu cyfrowego] FirewallRules: [{373D651E-EF9C-45C3-963F-DA5238B6EC70}] => (Allow) D:\Gry\Steam\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe (Fatshark AB -> Fatshark AB) FirewallRules: [{8E5E9173-DB8A-4D28-A987-F99377230622}] => (Allow) D:\Gry\Steam\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe (Fatshark AB -> Fatshark AB) FirewallRules: [{76579E76-B8F7-4AAC-9FD8-9B2A67C86C11}] => (Allow) D:\Gry\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{50D11142-E9AF-48DC-BAFB-0A6951C05EC2}] => (Allow) D:\Gry\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{834094D3-68C9-442C-AD01-C3B914ACCF20}] => (Allow) D:\Gry\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{4E9FDD63-F5D3-4139-951B-F25D56F53BFC}] => (Allow) D:\Gry\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{F6AD38C4-549A-403B-87EE-B66BC1AE566B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{A822BDCB-6B41-4829-AAE9-5811F2169E1C}D:\gry\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) D:\gry\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{08C93300-62C1-4780-B3F8-523019A222A7}D:\gry\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) D:\gry\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [Brak podpisu cyfrowego] FirewallRules: [{0277E279-59C1-4CB9-A718-6031D7BC4A98}] => (Allow) D:\Gry\Steam\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{740C870A-710B-41E2-B3F2-DF6371612336}] => (Allow) D:\Gry\Steam\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [UDP Query User{DC73C643-475A-4E88-9AF8-E1E88CCA44BF}C:\gry\steam\steamapps\common\total war three kingdoms\three_kingdoms.exe] => (Allow) C:\gry\steam\steamapps\common\total war three kingdoms\three_kingdoms.exe (The Creative Assembly Limited -> The Creative Assembly Ltd) FirewallRules: [TCP Query User{CA4C5FB2-6C56-4FDF-B58A-C12D606ACA29}C:\gry\steam\steamapps\common\total war three kingdoms\three_kingdoms.exe] => (Allow) C:\gry\steam\steamapps\common\total war three kingdoms\three_kingdoms.exe (The Creative Assembly Limited -> The Creative Assembly Ltd) FirewallRules: [{30CDB29C-87A2-4469-A0D7-F6187FB8B8A9}] => (Allow) D:\Gry\Steam\steamapps\common\MountBlade Warband\mb_warband.exe ( Taleworlds Entertainment) [Brak podpisu cyfrowego] FirewallRules: [{27C75DCD-DEE3-4F45-8987-7E9EFD3DF666}] => (Allow) D:\Gry\Steam\steamapps\common\MountBlade Warband\mb_warband.exe ( Taleworlds Entertainment) [Brak podpisu cyfrowego] FirewallRules: [{E8196EDC-9007-408D-9FBA-16CC0B3D3CA2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{9AFB997A-1EB8-40E0-A88B-F42A83D55CC7}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{4BBB00CB-5B53-4DA2-9D75-25366C2931B4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{B8F40AE6-E14A-4D31-8F5D-57C0FC3D6133}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{2C56D6EA-2E6F-4F24-81D7-DD7095C73E30}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe () [Brak podpisu cyfrowego] FirewallRules: [{3503AA75-E5AD-4AAC-89DC-2B086AC5B84B}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe () [Brak podpisu cyfrowego] FirewallRules: [{BE58C130-36FE-4607-ACBA-17C38EE74B90}] => (Allow) LPort=54925 FirewallRules: [{A778BCEA-22E1-4E02-ACF9-69483D5BA09F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{877C2111-CA3F-4C0A-B081-5541C9D32883}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{BE6F11E5-3CF5-4D3F-B828-906E7519F97A}] => (Allow) D:\Gry\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{696940AF-622A-4ECC-B7DE-B23DD1EA68D6}] => (Allow) D:\Gry\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{54D4B94C-2C80-4029-85E0-70B12EBE4B7A}] => (Allow) D:\Gry\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [{32A75E1B-9220-4082-9260-22A7648CBC7B}] => (Allow) D:\Gry\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [{1301DBF7-865F-441A-A36F-22E826E424D0}] => (Allow) D:\Gry\Steam\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe (Kakao Games Europe B.V. -> KakaoGames USA Inc.) FirewallRules: [{C313D58D-0D35-42A0-AE61-F56E5D5F2459}] => (Allow) D:\Gry\Steam\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe (Kakao Games Europe B.V. -> KakaoGames USA Inc.) FirewallRules: [{137BBC9F-D073-4465-B95C-8655FB0F6BDB}] => (Allow) C:\Users\Kasztanobil\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{66F8A07E-A7DB-4242-B299-48348D352E99}] => (Allow) C:\Users\Kasztanobil\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{A8E9BBF1-B27B-445A-A57F-7EC7A3B6E093}] => (Allow) D:\Gry\Steam\steamapps\common\Europa Universalis IV\eu4.exe (Paradox Interactive) [Brak podpisu cyfrowego] FirewallRules: [{41FCA970-5565-43AB-B8BB-E80F8E0ABDE8}] => (Allow) D:\Gry\Steam\steamapps\common\Europa Universalis IV\eu4.exe (Paradox Interactive) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{EBBD0E3E-44F8-4F1D-8195-7F10C28E99D9}C:\gry\steam\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) C:\gry\steam\steamapps\common\total war warhammer ii\warhammer2.exe (The Creative Assembly Limited -> The Creative Assembly Ltd) FirewallRules: [UDP Query User{64C02875-7B73-4CB4-BDBF-76ECCE6C6670}C:\gry\steam\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) C:\gry\steam\steamapps\common\total war warhammer ii\warhammer2.exe (The Creative Assembly Limited -> The Creative Assembly Ltd) FirewallRules: [{D55ED381-925A-4586-8BBB-505E7D85CB2B}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [{C7C2E263-0311-4A7D-9F89-46E3E5D9E1FC}] => (Allow) D:\Gry\Steam\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe (Activision Publishing Inc -> ) FirewallRules: [{B0008A31-FA70-4419-A34D-1470691052B2}] => (Allow) D:\Gry\Steam\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe (Activision Publishing Inc -> ) FirewallRules: [{960FFC7E-4A76-4B9F-B52A-FEC04AE38D1E}] => (Allow) D:\Gry\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{F89F97AB-DC85-47FF-9076-54BF4D9A9FBE}] => (Allow) D:\Gry\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [TCP Query User{9321F973-803A-4589-A5EB-086F7D36F94B}C:\program files\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_221\bin\javaw.exe FirewallRules: [UDP Query User{5310115F-9AAB-4545-AB3A-D09AB9371F91}C:\program files\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_221\bin\javaw.exe FirewallRules: [{12E1D108-1FFC-4248-9771-6E77B9396793}] => (Allow) D:\Gry\Steam\steamapps\common\Monster Hunter World\MonsterHunterWorld.exe (CAPCOM CO., LTD. -> CAPCOM CO., LTD.) FirewallRules: [{D43A39B7-0C80-469E-85B6-77054C5CD6EF}] => (Allow) D:\Gry\Steam\steamapps\common\Monster Hunter World\MonsterHunterWorld.exe (CAPCOM CO., LTD. -> CAPCOM CO., LTD.) FirewallRules: [{872A9C4D-DA44-43CF-AD7A-4DCF4E83D036}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{04C25813-4874-40C6-A8AE-FD647562E56C}] => (Allow) D:\Gry\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation ) FirewallRules: [{D2A2FC6A-3ECB-4ED5-A21F-B0718ABDE807}] => (Allow) D:\Gry\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation ) FirewallRules: [TCP Query User{9CD97044-389E-4877-8005-2BF90730DD96}D:\gry\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\gry\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.) FirewallRules: [UDP Query User{F01CBFBB-CBC4-4459-95BE-70B718E28489}D:\gry\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\gry\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.) FirewallRules: [{18D809D6-C6E8-4964-B8E0-4D525ACF3D62}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{7EE17B47-24B3-41A5-96AE-9D171B211CDD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{47C99E7D-96B2-4B74-BFB4-04C0E74467C0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{A5570F66-7DE4-4E96-8B3B-410B13219441}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{B6B50C6C-978C-448B-8AF3-1ACED961631C}] => (Allow) C:\Gry\Steam\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe (The Creative Assembly Limited -> Creative Assembly Ltd) FirewallRules: [{AFE90B07-4FEC-4F61-803D-C33FF3C5C5CF}] => (Allow) C:\Gry\Steam\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe (The Creative Assembly Limited -> Creative Assembly Ltd) FirewallRules: [{1B52B383-E287-4A62-8E78-3317B9C2649E}] => (Allow) C:\Gry\Steam\steamapps\common\Total War THREE KINGDOMS\launcher\launcher.exe (The Creative Assembly Limited -> Creative Assembly Ltd) FirewallRules: [{A34E4E7E-5336-4026-83DA-519E4683533C}] => (Allow) C:\Gry\Steam\steamapps\common\Total War THREE KINGDOMS\launcher\launcher.exe (The Creative Assembly Limited -> Creative Assembly Ltd) FirewallRules: [{D25DC0AB-4C22-46AB-9AA3-134740ED0A65}] => (Allow) LPort=1688 FirewallRules: [{2D33102B-076F-4645-8F9D-AC617A8CA60E}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe (@ByELDI -> @ByELDI) [Brak podpisu cyfrowego] FirewallRules: [{3EE2E34D-719E-4ABE-A676-E9F0E2794AFA}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe (@ByELDI -> @ByELDI) [Brak podpisu cyfrowego] ==================== Punkty Przywracania systemu ========================= 02-08-2019 19:25:12 Zaplanowany punkt kontrolny 12-08-2019 02:18:00 Zaplanowany punkt kontrolny ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (08/20/2019 02:54:56 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (4648,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (08/20/2019 02:47:51 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: CtHdaSvc.exe, wersja: 6.0.101.1042, sygnatura czasowa: 0x55892600 Nazwa modułu powodującego błąd: CtHdaSvc.exe, wersja: 6.0.101.1042, sygnatura czasowa: 0x55892600 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000367b Identyfikator procesu powodującego błąd: 0xe60 Godzina uruchomienia aplikacji powodującej błąd: 0x01d556f0e34a89d3 Ścieżka aplikacji powodującej błąd: C:\WINDOWS\sysWow64\CtHdaSvc.exe Ścieżka modułu powodującego błąd: C:\WINDOWS\sysWow64\CtHdaSvc.exe Identyfikator raportu: 7ceb9ce9-b860-4d80-be23-f175a62ed243 Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (08/20/2019 02:05:33 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (4924,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (08/20/2019 01:58:28 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: CtHdaSvc.exe, wersja: 6.0.101.1042, sygnatura czasowa: 0x55892600 Nazwa modułu powodującego błąd: CtHdaSvc.exe, wersja: 6.0.101.1042, sygnatura czasowa: 0x55892600 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000367b Identyfikator procesu powodującego błąd: 0xde0 Godzina uruchomienia aplikacji powodującej błąd: 0x01d556e9fd7b4a40 Ścieżka aplikacji powodującej błąd: C:\WINDOWS\sysWow64\CtHdaSvc.exe Ścieżka modułu powodującego błąd: C:\WINDOWS\sysWow64\CtHdaSvc.exe Identyfikator raportu: b59f1991-711e-4f20-9be1-309054fe4c23 Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (08/20/2019 01:49:10 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: CtHdaSvc.exe, wersja: 6.0.101.1042, sygnatura czasowa: 0x55892600 Nazwa modułu powodującego błąd: CtHdaSvc.exe, wersja: 6.0.101.1042, sygnatura czasowa: 0x55892600 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000367b Identyfikator procesu powodującego błąd: 0xe3c Godzina uruchomienia aplikacji powodującej błąd: 0x01d556e8b0ed0295 Ścieżka aplikacji powodującej błąd: C:\WINDOWS\sysWow64\CtHdaSvc.exe Ścieżka modułu powodującego błąd: C:\WINDOWS\sysWow64\CtHdaSvc.exe Identyfikator raportu: 6e1edff9-6d38-4450-bfd2-e6069379e07f Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (08/20/2019 01:44:18 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (4800,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (08/20/2019 01:37:14 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: CtHdaSvc.exe, wersja: 6.0.101.1042, sygnatura czasowa: 0x55892600 Nazwa modułu powodującego błąd: CtHdaSvc.exe, wersja: 6.0.101.1042, sygnatura czasowa: 0x55892600 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000367b Identyfikator procesu powodującego błąd: 0xdd0 Godzina uruchomienia aplikacji powodującej błąd: 0x01d556e7062a8c0a Ścieżka aplikacji powodującej błąd: C:\WINDOWS\sysWow64\CtHdaSvc.exe Ścieżka modułu powodującego błąd: C:\WINDOWS\sysWow64\CtHdaSvc.exe Identyfikator raportu: 43a26a64-dce0-4aa4-93b0-0d76e983322c Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (08/20/2019 01:29:32 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (4772,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Dziennik System: ============= Error: (08/20/2019 02:47:55 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa SB Recon3D Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (08/20/2019 01:58:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa SB Recon3D Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (08/20/2019 01:49:14 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa SB Recon3D Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (08/20/2019 01:37:18 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa SB Recon3D Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (08/20/2019 01:22:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa SB Recon3D Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (08/20/2019 01:22:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa KMS-R@1n niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (08/20/2019 01:21:18 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa KMS-R@1n niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (08/20/2019 01:17:54 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa KMS-R@1n zakończyła działanie; wystąpił następujący błąd: Parametr jest niepoprawny. CodeIntegrity: =================================== Date: 2019-08-20 02:50:56.860 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Microsoft signing level requirements. Date: 2019-08-20 02:50:56.852 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Microsoft signing level requirements. Date: 2019-08-20 02:50:56.846 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Microsoft signing level requirements. Date: 2019-08-20 02:50:56.838 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Microsoft signing level requirements. Date: 2019-08-20 02:50:56.825 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Microsoft signing level requirements. Date: 2019-08-20 02:50:56.822 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Microsoft signing level requirements. Date: 2019-08-20 02:50:56.788 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Microsoft signing level requirements. Date: 2019-08-20 02:50:56.777 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Microsoft signing level requirements. ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. F1 10/16/2013 Motherboard: Gigabyte Technology Co., Ltd. G1.Sniper Z87 Procesor: Intel(R) Core(TM) i5-4670K CPU @ 3.40GHz Procent pamięci w użyciu: 21% Całkowita pamięć fizyczna: 16270.55 MB Dostępna pamięć fizyczna: 12731.71 MB Całkowita pamięć wirtualna: 18702.55 MB Dostępna pamięć wirtualna: 13286.41 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:237.87 GB) (Free:91.96 GB) NTFS Drive d: (Dysk lokalny) (Fixed) (Total:931.51 GB) (Free:347.2 GB) NTFS \\?\Volume{823d8aec-adfc-4437-83cd-d4a3a6030929}\ (Odzyskiwanie) (Fixed) (Total:0.49 GB) (Free:0.05 GB) NTFS \\?\Volume{f18dd654-efb5-430c-9f65-28ac709d0c82}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 685DF90F) Partition: GPT. ======================================================== Disk: 1 (Size: 238.5 GB) (Disk ID: B41F081F) Partition: GPT. ==================== Koniec Addition.txt ============================