Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 04-11-2016 Uruchomiony przez Kamilos (09-11-2016 22:10:52) Uruchomiony z C:\Users\Kamilos\Desktop\Nowy folder Windows 10 Pro Wersja 1607 (X64) (2016-10-01 13:30:50) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-235085378-2933528215-4077111654-500 - Administrator - Disabled) Gość (S-1-5-21-235085378-2933528215-4077111654-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-235085378-2933528215-4077111654-1005 - Limited - Enabled) Kamilos (S-1-5-21-235085378-2933528215-4077111654-1000 - Administrator - Enabled) => C:\Users\Kamilos Konto domyślne (S-1-5-21-235085378-2933528215-4077111654-503 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Kaspersky Total Security (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Kaspersky Total Security (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Kaspersky Total Security (Enabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-235085378-2933528215-4077111654-1000\...\uTorrent) (Version: 3.4.9.42606 - BitTorrent Inc.) 64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated) Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.205 - Adobe Systems Incorporated) AIO_CDA_ProductContext (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden AIO_CDA_Software (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden AIO_Scan (x32 Version: 130.0.421.000 - Hewlett-Packard) Hidden AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.) BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC) BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden C3100 (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden c3100_Help (x32 Version: 82.0.256.000 - Hewlett-Packard) Hidden Catalyst Control Center Next Localization BR (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHS (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHT (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CS (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DA (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DE (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization EL (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization ES (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FI (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FR (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization HU (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization IT (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization JA (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization KO (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NL (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NO (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization PL (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization RU (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization SV (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TH (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TR (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden Cheat Engine 6.6 (HKLM-x32\...\Cheat Engine 6.6_is1) (Version: - Cheat Engine) Classic Shell (HKLM\...\{383BB30A-B4A7-4666-9A83-22CFA8640097}) (Version: 4.3.0 - IvoSoft) C-Media PCI Audio Device (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392008738}) (Version: 1.00.0003 - ) Copy (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden Crusader Kings II The Reaper's Due (HKLM-x32\...\Crusader Kings II The Reaper's Due_is1) (Version: - ) Dead Age (HKLM-x32\...\Dead Age_is1) (Version: - ) Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden DocProc (x32 Version: 140.0.185.000 - Hewlett-Packard) Hidden Earth Universe: Earth 2150 (HKLM-x32\...\Earth Universe: Earth 2150) (Version: - ) Earth Universe: Lost Souls (HKLM-x32\...\Earth Universe: Lost Souls) (Version: - ) Earth Universe: The Moon Project (HKLM-x32\...\Earth Universe: The Moon Project) (Version: - ) Enemy Territory: Legacy (HKLM-x32\...\Enemy Territory - Legacy) (Version: 2.74.0 - ET: Legacy Team) Europa Universalis IV Rights of Man (HKLM-x32\...\Europa Universalis IV Rights of Man_is1) (Version: - ) Fax (x32 Version: 140.0.307.000 - Hewlett-Packard) Hidden GG (HKU\S-1-5-21-235085378-2933528215-4077111654-1000\...\GG) (Version: 12 - GG Network S.A.) Glary Utilities 5.63 (HKLM-x32\...\Glary Utilities 5) (Version: 5.63.0.84 - Glarysoft Ltd) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.87 - Google Inc.) Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden HD Tune Pro 5.60 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software) HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP) HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP) HP Photosmart All-In-One Driver Software (HKLM\...\{4F6C1178-3FC0-44BB-8F9A-28D8516DFEE2}) (Version: 14.0 - HP) HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP) HP Support Solutions Framework (HKLM-x32\...\{B65BC649-C9D2-45F6-9DD6-D189BD91F02E}) (Version: 12.5.32.37 - HP) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden Java 8 Update 111 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180111F0}) (Version: 8.0.1110.14 - Oracle Corporation) Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation) Java 8 Update 112 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180112F0}) (Version: 8.0.1120.15 - Oracle Corporation) Java 8 Update 112 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180112F0}) (Version: 8.0.1120.15 - Oracle Corporation) Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{1CF84962-50F8-48CA-9082-B70F3A02C686}) (Version: 17.0.0.611 - Kaspersky Lab) Kaspersky Secure Connection (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden Kaspersky Total Security (HKLM-x32\...\InstallWIX_{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab) Kaspersky Total Security (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden K-Lite Mega Codec Pack 12.5.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.5.0 - KLCP) KVIrc (HKLM\...\KVIrc) (Version: 4.9.2 - Szymon Stefanek and The KVIrc Development Team) Maple 2015 (HKLM\...\Maple 2015) (Version: 2015 - Maplesoft) MarketResearch (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 49.0.2 (x64 pl) (HKLM\...\Mozilla Firefox 49.0.2 (x64 pl)) (Version: 49.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 49.0.2.6136 - Mozilla) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.1 - Notepad++ Team) OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Opera Stable 41.0.2353.56 (HKLM-x32\...\Opera 41.0.2353.56) (Version: 41.0.2353.56 - Opera Software) Platform (x32 Version: 1.42 - VIA Technologies, Inc.) Hidden PlaysTV (HKLM-x32\...\PlaysTV) (Version: 1.13.3-r115627-release - Plays.tv, LLC) Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.) Raptr (HKLM-x32\...\Raptr) (Version: 5.2.6-r115593-release - Raptr, Inc) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.) Resident Evil Revelations 2 version 5.0.0.0 (HKLM-x32\...\Resident Evil Revelations 2_is1) (Version: 5.0.0.0 - Mr DJ) Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP) SHU (HKLM-x32\...\{DF11DD92-DBB8-4F3F-9564-A8BBDBE986F5}_is1) (Version: 1.0 - ScreenShu Software) Sid Meiers Civilization Beyond Earth version 1.1.2.4035 (HKLM-x32\...\Sid Meiers Civilization Beyond Earth_is1) (Version: 1.1.2.4035 - Mr DJ) Skype™ 7.29 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.29.101 - Skype Technologies S.A.) SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - ) Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 11.0.0.19 - Bioware/EA) Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.) Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden UltraISO Premium V9.65 (HKLM-x32\...\UltraISO_is1) (Version: - ) VIA Platforma Menedżera urządzeń (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) Vulkan Run Time Libraries 1.0.17.0 (HKLM\...\VulkanRT1.0.17.0) (Version: 1.0.17.0 - LunarG, Inc.) WDPack (HKLM-x32\...\{B20E2CCF-9E40-4889-82C3-4AB93EADD12C}) (Version: 0.81 - Inside Earth Operations) WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden Windows Desktop Gadgets (HKLM\...\Windows Desktop Gadgets_is1) (Version: 2.0 - hxxp://gadgetsrevived.com) WinRAR 5.40 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) Wolfenstein - Enemy Territory (HKLM-x32\...\Wolfenstein - Enemy Territory) (Version: 2.60b - ACTIVISION) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-235085378-2933528215-4077111654-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-235085378-2933528215-4077111654-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Kamilos\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-235085378-2933528215-4077111654-1000_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\Kamilos\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll (GG Network S.A.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0F2A14AE-45EF-48E1-8550-E3E3733EDC42} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-05-09] (Hewlett-Packard) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {3924E476-96F3-4C44-A065-0EE9DE251288} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA Task: {45A5F58A-4C28-423E-8664-0502A7D560FB} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA Task: {4A74DC39-98EC-46A1-A50B-AEF0C67231B6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated) Task: {636C6A74-BCC0-4039-805E-B5B21D280B34} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-12] (Google Inc.) Task: {6F2FDC0C-76A9-410B-AA5E-59E84DA84DA4} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2016-07-18] (Advanced Micro Devices, Inc.) Task: {73DEF26A-C401-4DC8-A5C0-80ABE79FD490} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA Task: {75356D6D-18C8-424F-9353-969FA012435C} - \Microsoft\Windows\Setup\GWXTriggers\Time-3xd -> Brak pliku <==== UWAGA Task: {7B06094C-E24F-41D6-8FA5-A9571581061B} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA Task: {7B86D3C4-AFAB-4BAB-9857-51A8652D8B4C} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS.exe [2016-04-09] () Task: {80DB432F-326F-4780-9A9F-DFF7FFAE66D8} - System32\Tasks\Opera scheduled Autoupdate 1434146957 => C:\Program Files (x86)\Opera\launcher.exe [2016-11-07] (Opera Software) Task: {AD034FB0-8377-40CA-868F-313A890BB020} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-10-10] () Task: {BDDA8733-CD2F-4651-8E1F-9BAD5151ADE4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-08-03] (HP Inc.) Task: {BFAAE513-70E7-4F70-AB6E-05CA6491F131} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Brak pliku <==== UWAGA Task: {CFC74486-5DD3-44EB-8B48-F741070B3706} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2016-11-04] (Glarysoft Ltd) Task: {DDE1CF18-C6DE-415A-AA97-CF016E9CB0E9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-12] (Google Inc.) Task: {EB6E9548-736E-49BF-B6D7-31A3321F84ED} - System32\Tasks\b2929b72a96a471893ecaa9c51368bae => C:\PROGRA~2\rdh55F2\p4k55F2.bat <==== UWAGA Task: {F0256DE7-A5DC-4834-8FBE-56BC5F40DC5B} - System32\Tasks\{D6F21D7E-3DA4-4576-B8FB-0035975C575F} => pcalua.exe -a "D:\Gry\Reality Pump\Lost Souls\LostSouls.exe" -d "D:\Gry\Reality Pump\Lost Souls" Task: {F6C05397-792E-467D-85AB-70D228330FE0} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA Task: {FB6EEB60-532E-4A53-BCEB-410141BEED8D} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2016-11-04] (Glarysoft Ltd) Task: {FEAC1C37-FC73-420E-9E72-EE905921ABE1} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-11-09] (Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\AutoKMS.job => C:\WINDOWS\AutoKMS.exe Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2016-04-15 18:03 - 2016-04-15 18:12 - 00075136 _____ () C:\WINDOWS\SysWoW64\PnkBstrA.exe 2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-10-01 14:52 - 2016-10-01 14:52 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-10-01 14:52 - 2016-10-01 14:52 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-10-01 14:52 - 2016-10-01 14:52 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll 2016-10-01 14:35 - 2016-10-01 14:35 - 00959168 _____ () C:\Users\Kamilos\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll 2013-09-04 23:17 - 2013-09-04 23:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2016-10-01 14:52 - 2016-10-01 14:52 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2016-10-12 14:51 - 2016-10-05 10:35 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2016-10-28 14:13 - 2016-10-15 04:41 - 09760256 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-10-28 14:13 - 2016-10-15 04:34 - 01401344 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-10-28 14:13 - 2016-10-15 04:34 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2016-10-28 14:13 - 2016-10-15 04:34 - 02424832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-10-28 14:13 - 2016-10-15 04:38 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2016-11-05 15:28 - 2016-11-05 15:28 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.251.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2016-11-05 15:28 - 2016-11-05 15:28 - 00178688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.251.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2016-11-05 15:28 - 2016-11-05 15:28 - 41608704 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.251.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2015-06-25 15:34 - 2015-06-25 15:34 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll 2015-06-25 15:37 - 2015-06-25 15:37 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll 2015-06-25 15:35 - 2015-06-25 15:35 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll 2015-06-25 15:38 - 2015-06-25 15:38 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll 2015-06-25 14:53 - 2015-06-25 14:53 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll 2015-06-25 14:51 - 2015-06-25 14:51 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll 2016-08-29 07:03 - 2016-10-12 16:51 - 01058472 _____ () C:\Program Files (x86)\SHU\SHU.exe 2016-08-29 07:03 - 2016-10-12 16:51 - 00017064 _____ () C:\Program Files (x86)\SHU\QtWebEngineProcess.exe 2016-08-29 07:03 - 2016-10-12 16:49 - 00221184 _____ () C:\Program Files (x86)\SHU\graphics-hook64.dll 2016-08-16 13:08 - 2016-08-16 13:09 - 00017408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2016-08-16 13:08 - 2016-08-16 13:09 - 13475840 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2016-06-03 11:46 - 2016-06-03 11:47 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll 2016-03-20 07:04 - 2016-03-20 07:04 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll 2015-11-24 21:48 - 2015-11-24 21:48 - 00028160 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\servicemanager.pyd 2015-11-24 21:46 - 2015-11-24 21:46 - 00110592 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\pywintypes26.dll 2015-11-24 21:48 - 2015-11-24 21:48 - 00041472 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32service.pyd 2015-11-24 21:48 - 2015-11-24 21:48 - 00096256 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32api.pyd 2015-11-24 21:43 - 2015-11-24 21:43 - 00356864 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_hashlib.pyd 2015-11-24 21:48 - 2015-11-24 21:48 - 00017920 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32event.pyd 2015-11-24 21:48 - 2015-11-24 21:48 - 00019968 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32evtlog.pyd 2015-11-24 21:48 - 2015-11-24 21:48 - 00036352 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32process.pyd 2015-11-24 21:43 - 2015-11-24 21:43 - 00043008 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_socket.pyd 2015-11-24 21:43 - 2015-11-24 21:43 - 00805376 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_ssl.pyd 2015-11-24 21:43 - 2015-11-24 21:43 - 00087040 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_ctypes.pyd 2015-11-24 21:46 - 2015-11-24 21:46 - 00354304 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\pythoncom26.dll 2015-11-24 21:48 - 2015-11-24 21:48 - 00167936 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32gui.pyd 2015-11-24 21:47 - 2015-11-24 21:47 - 01980928 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtGui.pyd 2015-12-07 21:57 - 2015-12-07 21:57 - 00077824 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\sip.pyd 2015-11-24 21:47 - 2015-11-24 21:47 - 01862144 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtCore.pyd 2015-11-24 21:47 - 2015-11-24 21:47 - 00516608 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtNetwork.pyd 2015-11-24 21:47 - 2015-11-24 21:47 - 04060160 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtWidgets.pyd 2015-11-24 21:43 - 2015-11-24 21:43 - 00010240 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\select.pyd 2016-03-17 23:12 - 2016-04-22 11:18 - 03716144 _____ () C:\Users\Kamilos\AppData\Local\GG\Application\xulrunner\mozjs.dll 2016-08-29 07:03 - 2016-10-12 16:51 - 00140800 _____ () C:\Program Files (x86)\SHU\quazip.dll 2016-08-29 07:03 - 2016-08-02 17:48 - 01574912 _____ () C:\Program Files (x86)\SHU\libGLESv2.dll 2016-08-29 07:03 - 2016-08-02 17:49 - 00011264 _____ () C:\Program Files (x86)\SHU\libEGL.dll 2016-08-29 07:03 - 2016-10-12 16:49 - 00140288 _____ () C:\Program Files (x86)\SHU\SGM32.dll 2016-08-29 07:03 - 2016-10-12 16:49 - 00081408 _____ () C:\Program Files (x86)\SHU\SVM32.dll 2016-11-06 00:50 - 2016-09-08 04:14 - 00784672 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2016-11-06 00:50 - 2016-09-01 02:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll 2016-11-06 00:50 - 2016-10-13 02:58 - 02321696 _____ () C:\Program Files (x86)\Steam\video.dll 2016-11-06 00:50 - 2016-01-27 08:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll 2016-11-06 00:50 - 2016-01-27 08:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll 2016-11-06 00:50 - 2016-01-27 08:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll 2016-11-06 00:50 - 2016-01-27 08:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll 2016-11-06 00:50 - 2016-01-27 08:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll 2016-11-06 00:50 - 2016-09-01 02:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2016-11-06 00:50 - 2016-09-01 02:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2016-11-06 00:50 - 2016-10-13 02:58 - 00836896 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2016-11-06 00:50 - 2016-07-04 23:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll 2016-11-06 00:50 - 2016-08-04 21:56 - 49825056 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.winxp\libcef.dll 2016-11-04 08:25 - 2016-11-04 08:25 - 00086992 _____ () C:\Program Files (x86)\Glary Utilities 5\zlib1.dll 2016-06-27 23:19 - 2016-06-27 23:19 - 00865232 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 17.0.0\kpcengine.2.3.dll 2016-11-06 00:50 - 2015-09-25 00:52 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2013-08-22 14:25 - 2016-11-06 01:25 - 00000826 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-235085378-2933528215-4077111654-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Kamilos\AppData\Roaming\Mozilla\Firefox\Tapeta pulpitu.bmp DNS Servers: 188.120.239.115 - 8.8.8.8 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == HKLM\...\StartupApproved\Run32: => "PlaysTV" HKLM\...\StartupApproved\Run32: => "Raptr" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{1C6C6F47-8BF3-4677-865D-59C3123EE557}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe FirewallRules: [{344816DD-0ED7-44CF-8854-EE95D83E801F}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe FirewallRules: [{5222FB69-8ADC-41E1-8E5D-0EEFFB06E00C}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe FirewallRules: [{1D699704-5CD7-4B69-A544-2201B6EE7286}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe FirewallRules: [{DA8BF3E4-6961-4F79-A3D8-A9F969B846D5}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe FirewallRules: [{50B70AD0-814C-43AB-BC1E-79C75B9CA0C8}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe FirewallRules: [{FDB8AB15-EA87-4712-BFB2-5C67215DFF79}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{1F8D2ECA-2C90-43B8-9907-8238F0AC21D3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{4261E452-7CA8-47A7-8716-56B6057B496E}] => (Allow) D:\Gry\Resident Evil Revelations 2\rerev2.exe FirewallRules: [{E0BBA54A-C867-4C49-B6C3-F69135584DBF}] => (Allow) D:\Gry\Resident Evil Revelations 2\rerev2.exe FirewallRules: [{A3C2E2E5-493B-4692-9921-28D7E084168D}] => (Allow) D:\Gry\Reality Pump\Lost Souls\LostSouls.exe FirewallRules: [{EF66B0B4-4CC9-4C55-931D-E028D593BA56}] => (Allow) D:\Gry\Reality Pump\Lost Souls\LostSouls.exe FirewallRules: [{AF536787-2017-4AE2-A290-6BA54F359895}] => (Allow) D:\Gry\Reality Pump\The Moon Project\TheMoonProject.exe FirewallRules: [{9E65FCDC-F64D-46D4-99BE-244C65A53EA4}] => (Allow) D:\Gry\Reality Pump\The Moon Project\TheMoonProject.exe FirewallRules: [{47C56320-F21C-4DF2-9583-D7D22287E3D8}] => (Allow) D:\Gry\Reality Pump\Earth 2150\Earth2150.exe FirewallRules: [{36DEADDF-D6A9-4300-85FC-738C5C7BCD37}] => (Allow) D:\Gry\Reality Pump\Earth 2150\Earth2150.exe FirewallRules: [{A86E8E3B-4038-4483-BF8A-71149B29E8DE}] => (Allow) D:\Gry\Star Wars-The Old Republic\launcher.exe FirewallRules: [{24A62BE2-6356-45A5-A297-5411B975989A}] => (Allow) D:\Gry\Star Wars-The Old Republic\launcher.exe FirewallRules: [{D3884CD6-64AF-4959-84D3-4A655383C9A5}] => (Allow) D:\Gry\Star Wars-The Old Republic\launcher.exe FirewallRules: [{ADDB22C3-A3B6-4D5F-8333-A7EB46FF9FF0}] => (Allow) D:\Gry\Star Wars-The Old Republic\launcher.exe FirewallRules: [UDP Query User{026D84EA-BB08-4CE8-8866-032A03465109}C:\program files\logitech gaming software\lcore.exe] => (Block) C:\program files\logitech gaming software\lcore.exe FirewallRules: [TCP Query User{210AFE99-5411-4136-8FD2-5382350A17D6}C:\program files\logitech gaming software\lcore.exe] => (Block) C:\program files\logitech gaming software\lcore.exe FirewallRules: [{44C74D12-3232-42D4-9DA9-336F9209E7A3}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe FirewallRules: [{CDEC234F-A3F4-4AB4-82AC-322B1310D56D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe FirewallRules: [{33586D95-1662-4AC9-A270-095C9DA7647B}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe FirewallRules: [{B601B845-9F7E-425E-B509-A59B413B2A3E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe FirewallRules: [{83545758-CE46-4F29-B5AB-785F3E0DDECD}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe FirewallRules: [{D73406AA-1E06-4055-8842-C425355A56F6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe FirewallRules: [{5BAA71B2-BC28-4047-8E74-32DCBDFFF569}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe FirewallRules: [{AFEE8307-1EE6-4FD8-A893-501928BA5C09}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe FirewallRules: [{1B191244-30A6-47A3-8AD3-F55ABB4C8DA9}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqnrs08.exe FirewallRules: [{719D7935-F23B-400C-A252-702B759DFCD2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe FirewallRules: [{13A3E1CA-1AE8-4B49-A616-BCD0B01CC461}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe FirewallRules: [{5C629FED-0FA6-4AAC-8207-FD3DB2786ECF}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe FirewallRules: [{2DA028BC-8763-44FD-B7A1-26523A6FDE82}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe FirewallRules: [{2A915716-1DAE-4090-BFF7-38F1111754D0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe FirewallRules: [{8BDB0C46-739A-46A7-A190-1965E206CBD4}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe FirewallRules: [{71743AE7-198B-4E6C-809C-A3194D93871A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe FirewallRules: [{B998A500-5738-442C-B2FD-33471CF0FC8A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe FirewallRules: [{C88029E2-9991-4B60-8150-53FC0B8B0557}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe FirewallRules: [{61E77357-3A6C-461A-9E43-B44EE6F9B22A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe FirewallRules: [{4D6A5418-E96C-413A-B8DD-BB3CF097E2D8}] => (Allow) C:\Users\Kamilos\AppData\Local\Temp\7zS15B6\HPDiagnosticCoreUI.exe FirewallRules: [{46C34034-6662-41F2-87BA-33BD21ED5F2F}] => (Allow) C:\Users\Kamilos\AppData\Local\Temp\7zS15B6\HPDiagnosticCoreUI.exe FirewallRules: [{A1692439-6AF1-4A7A-A10D-8022E3328E30}] => (Allow) C:\Users\Kamilos\AppData\Local\Temp\7zS1541\HPDiagnosticCoreUI.exe FirewallRules: [{723D13EE-2CC6-4F76-B2FF-D60A67AF0B4B}] => (Allow) C:\Users\Kamilos\AppData\Local\Temp\7zS1541\HPDiagnosticCoreUI.exe FirewallRules: [{EC4220C4-18AC-465A-AF57-93FCA6D9B3F3}] => (Allow) D:\Gry\Wolf ET Legacy\etlded.exe FirewallRules: [{DDB6C9CD-92CE-4F04-9975-547483E0D011}] => (Allow) D:\Gry\Wolf ET Legacy\etlded.exe FirewallRules: [{6C8A574B-5C54-49A7-95E5-B017C5D87D35}] => (Allow) D:\Gry\Wolf ET Legacy\etl.exe FirewallRules: [{71399C00-B536-48B8-806A-71FA828A3EB7}] => (Allow) D:\Gry\Wolf ET Legacy\etl.exe FirewallRules: [{F0013A69-BCEB-4E4D-BCB2-10B0F008FC8A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{B2FF0AE2-B1EB-4C07-83C2-25D85EAFCE09}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{950AD83B-3C7A-43A4-BA55-107CCB5506D8}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{95A87C14-9EFD-4E2A-A10C-0179A81549AA}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [UDP Query User{A4674327-5BB4-4917-919A-4CB2D3DF6F41}C:\program files\kvirc\kvirc.exe] => (Allow) C:\program files\kvirc\kvirc.exe FirewallRules: [TCP Query User{1633C7B3-5D1D-44CB-9BB9-E6127D2C12D3}C:\program files\kvirc\kvirc.exe] => (Allow) C:\program files\kvirc\kvirc.exe FirewallRules: [{D4638A3F-5348-43AD-A29B-BB43D28D34A0}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [{4A2BA1EE-333D-43BD-913A-A47024805092}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [UDP Query User{BE21DC0B-F98F-4763-9275-D439C1C6A28D}C:\program files (x86)\kvirc\kvirc.exe] => (Allow) C:\program files (x86)\kvirc\kvirc.exe FirewallRules: [TCP Query User{D11EABE8-3289-48E2-A124-F8F51AA71B5B}C:\program files (x86)\kvirc\kvirc.exe] => (Allow) C:\program files (x86)\kvirc\kvirc.exe FirewallRules: [{B8DF884D-2AA9-4845-BFF9-D1B0F689707A}] => (Allow) C:\Users\Kamilos\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{062AAD77-7481-4BB9-8096-63BAE80377D2}] => (Allow) C:\Users\Kamilos\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{E01D21B9-80B5-4131-82C0-B75DA79C77D1}] => (Allow) D:\Gry\Sid Meiers Civilization Beyond Earth\CivilizationBE_DX11.exe FirewallRules: [{9EE5EB56-08B3-40D1-913B-59B66E4F2DDB}] => (Allow) D:\Gry\Sid Meiers Civilization Beyond Earth\CivilizationBE_DX11.exe FirewallRules: [{E828E48E-7931-4103-B69D-412122C0DE65}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{349AF31B-EE1C-4958-8DB2-3F8D73C5F2FD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{4CA1586D-9055-4BC6-9BD3-DEE59EC2ADF3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Punkty Przywracania systemu ========================= UWAGA: Przywracanie systemu jest wyłączone ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Realtek High Definition Audio Description: Realtek High Definition Audio Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: Realtek Service: IntcAzAudAddService Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: HID Non-User Input Data Filter Description: HID Non-User Input Data Filter Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: Microsoft Service: Problem: : The software for this device has been blocked from starting because it is known to have problems with Windows. Contact the hardware vendor for a new driver. (Code 48) Resolution: Download the latest drivers from the manufacturer, uninstall the current driver, and then install the latest drivers. Name: HID Non-User Input Data Filter Description: HID Non-User Input Data Filter Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: Microsoft Service: Problem: : The software for this device has been blocked from starting because it is known to have problems with Windows. Contact the hardware vendor for a new driver. (Code 48) Resolution: Download the latest drivers from the manufacturer, uninstall the current driver, and then install the latest drivers. Name: AMD High Definition Audio Device Description: AMD High Definition Audio Device Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: Advanced Micro Devices Service: AtiHDAudioService Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (11/09/2016 04:39:54 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: Nie powiodło się wykonanie procedury otwierania dla usługi „BITS” w bibliotece DLL „C:\Windows\System32\bitsperf.dll”. Dane wydajności dla tej usługi nie będą dostępne. Pierwsze cztery bajty (DWORD) sekcji danych Data zawierają kod błędu. Error: (11/09/2016 06:24:35 AM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\steamwebhelper.exe Error: (11/08/2016 08:19:17 PM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\steamwebhelper.exe Error: (11/08/2016 08:18:00 PM) (Source: Windows Search Service) (EventID: 3104) (User: ) Description: Wyliczenie sesji użytkownika w celu wygenerowania puli filtrów nie powiodło się. Szczegóły: (HRESULT : 0x80040210) (0x80040210) Error: (11/08/2016 02:02:29 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: Nie powiodło się wykonanie procedury otwierania dla usługi „BITS” w bibliotece DLL „C:\Windows\System32\bitsperf.dll”. Dane wydajności dla tej usługi nie będą dostępne. Pierwsze cztery bajty (DWORD) sekcji danych Data zawierają kod błędu. Error: (11/08/2016 10:55:15 AM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\steamwebhelper.exe Error: (11/08/2016 08:25:17 AM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\steamwebhelper.exe Error: (11/08/2016 04:39:09 AM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\steamwebhelper.exe Error: (11/08/2016 01:08:45 AM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\steamwebhelper.exe Error: (11/07/2016 10:33:21 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: firefox.exe, wersja: 49.0.2.6136, sygnatura czasowa: 0x5807bcf4 Nazwa modułu powodującego błąd: apphelp.dll, wersja: 10.0.14393.0, sygnatura czasowa: 0x578999e1 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000000000003685b Identyfikator procesu powodującego błąd: 0x18d4 Godzina uruchomienia aplikacji powodującej błąd: 0x01d238d9fa8839f1 Ścieżka aplikacji powodującej błąd: C:\Program Files\Mozilla Firefox\firefox.exe Ścieżka modułu powodującego błąd: C:\WINDOWS\system32\apphelp.dll Identyfikator raportu: 8f1e3073-0713-4532-9259-4f0a793028fa Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Dziennik System: ============= Error: (11/09/2016 06:23:10 AM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} i identyfikatorem aplikacji APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} użytkownikowi ZARZĄDZANIE NT\SYSTEM o identyfikatorze zabezpieczeń SID (S-1-5-18) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (11/09/2016 01:46:03 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 5 Error: (11/08/2016 08:18:00 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} i identyfikatorem aplikacji APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} użytkownikowi ZARZĄDZANIE NT\SYSTEM o identyfikatorze zabezpieczeń SID (S-1-5-18) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (11/08/2016 04:02:56 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 5 Error: (11/08/2016 10:53:34 AM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} i identyfikatorem aplikacji APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} użytkownikowi ZARZĄDZANIE NT\SYSTEM o identyfikatorze zabezpieczeń SID (S-1-5-18) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (11/08/2016 08:43:59 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 5 Error: (11/08/2016 08:23:53 AM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} i identyfikatorem aplikacji APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} użytkownikowi ZARZĄDZANIE NT\SYSTEM o identyfikatorze zabezpieczeń SID (S-1-5-18) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (11/08/2016 07:01:38 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 5 Error: (11/08/2016 04:37:12 AM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} i identyfikatorem aplikacji APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} użytkownikowi ZARZĄDZANIE NT\SYSTEM o identyfikatorze zabezpieczeń SID (S-1-5-18) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (11/08/2016 01:36:58 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 5 ==================== Statystyki pamięci =========================== Procesor: AMD FX(tm)-6350 Six-Core Processor Procent pamięci w użyciu: 47% Całkowita pamięć fizyczna: 8156.67 MB Dostępna pamięć fizyczna: 4256.71 MB Całkowita pamięć wirtualna: 9436.67 MB Dostępna pamięć wirtualna: 5187.9 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:99.56 GB) (Free:45.6 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano odczytując BCD)] Drive d: (Dysk Lokalny) (Fixed) (Total:198.09 GB) (Free:76.77 GB) NTFS Drive e: (Dysk Lokalny) (Fixed) (Total:99.29 GB) (Free:99.01 GB) NTFS Drive f: () (Fixed) (Total:133.59 GB) (Free:133.28 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: E889E889) Partition 1: (Active) - (Size=99.6 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=450 MB) - (Type=27) Partition 3: (Not Active) - (Size=198.1 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or Vista) (Size: 232.9 GB) (Disk ID: D43B24BE) Partition 1: (Active) - (Size=99.3 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=133.6 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================